DSHIELD
join:2006-05-27
Micmac, NS | reply to Daniel
Re: Caution: This Hacker Will Crush You
There is a prank audio file about the DEL TREE: C:Program files I had it long time ago can't fine it anywhere on net |
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| reply to Bob from 1973
said by Bob from 1973 :
I didn't know routers could be hacked via the WWW.
Is this limited to wireless routers.
Well its not that simple. Some really baddly thought out routers had remtoe admin enabled by default as well as admin admin for the pass word. This ment that any one knowing your ip could change settigns on your router. Fairly harmless on the surface. But remember a router is kind of your first line of deffence if you got one. It acts as a very basic incoming firewall that can be hard to get past. So a attacker knowing your ip and that you have remote admin on with default pass and user name means your router does nothing to protect you. Now again still fairly harmless at this point as long as your comps have no flaws that can be used to trash your comp.
But lets say your son or daughter has a old windows 98 box they play with. It has by default port 139 open via netbios it resides on the local ip 192.168.1.101. Hacker forwards port 139 to the 101 address and starts dropping things in via admin shares (easy stuff because by defgault the entire hd was shared in win98 first ed if i recall) So hacker drops a trojan and other nasties on to the hd in start up folder. Then he just crashes the 98 computer useing some exploit or another. Now he fowards the trojans port to the proper computer and waits.
Hacker now owns that 98 ased computer that is useing the same routers as your winxp pro computer and for some reason you installed vnc on the 98 comp and your own with no pass because hey you dont need no pass word you only work this way on your lan.
So is only wifi routers vunrable? No but they are just eeasyer to get at because so many have stupid defaults.
Wifi enabled routers manufactures still tend to think of local computers are no threat so no need to secure the router by default from local attacks.
Little secret ab out my laptop its a war driving laptop (i do it for fun even got a gps on it so i can pin point a signal) It can even scan channels not normally available in the us. In my area (5 mile radious) there are over 300 wide open access points almost all are full blown routers with wifi accesspoints. There are another 50 that are secured in some fasion. 300 pluss open and only 50 secured. 2wires tend to always be locked down tight as they are that way by default. Most all linksys are open to the out side 100% default set up on them. Parker visions open or closed by default varies by firm ware.
So for all purposes i am local to over 300 peoples networks when i drive around. I could probably if i was a hacker and in to it take over all of those lans with some effort of course.
Its funny that this topic that was mostly ment as a joke has actually made some serious points.
--
Evil does exist and it has a face to often that face is one that should look on their child with love in their eyes.
Instead only hate exists in those eyes. |
|
jtc1
Go Pack Go
Premium
join:2000-02-13
Cedar Rapids, IA
| reply to inteller
said by inteller  :/q is for quiet. otherwise it prompts you to confirm. This is a standard thing, no need to read the help. I know what it's for. Did you watch the video? I'm quoting this so called "hacker" that thought /s is for silent and didn't know what /q was for.
/s is for sub-directories.
--
People do really stupid things, like paying too much for broadband phone service. |
|
inteller
Sociopaths always win.
join:2003-12-08
Tulsa, OK | reply to jtc1
/q is for quiet. otherwise it prompts you to confirm. This is a standard thing, no need to read the help.
--
"WHEN THE LAUGH TRACK STARTS THEN THE FUN STARTS!" |
|
Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
1 edit | reply to Daniel
And here all the time I was only worried about the bad boys who spread virus. Little did I know 
ht tp://video.google.com/videoplay?docid=-2077763117364757047&q=Talking++Cakes&hl=en
--
Gladiator Security Forum »www.gladiator-antivirus.com/
Missing Kids
»www.missingkids.com/ |
|
Serbtastic
You Know How Many People I Have Buried?
Premium
join:2002-02-24
Stoney Creek
| reply to NetFixer
Re: Caution: This Hacker Will Crush You
OMG, that made me cry it was so funny. |
|
bluezanetti
Premium
join:2003-10-04
| reply to dave
said by dave :"help rd" is for lusers. What about "rd /?" ? Is that OK? Am I still lusing it??
Blue |
|
Martinus
Premium
join:2001-08-06
EU
| reply to dave
said by dave :l33t h4x0rs don't need to read no steenkin' documentation. "help rd" is for lusers. OMG, WTF. LOL! |
|
dave
Premium,MVM
join:2000-05-04
not in ohio | reply to jtc1
l33t h4x0rs don't need to read no steenkin' documentation. "help rd" is for lusers.
--
Microsoft Security MVP, 2005-2007. |
|
jtc1
Go Pack Go
Premium
join:2000-02-13
Cedar Rapids, IA
| reply to dave
said by dave :said by matradley :Del tree stopped working after 9x/Me... It's simply spelled rd /s /q in the Windows NT family. Funny how he mentions that in his video and says the /s is for silent and the /q is for..... ummmmmmm..... I forget what the /q is for but you need both. 
--
People do really stupid things, like paying too much for broadband phone service. |
|
rmdir
join:2003-03-13
Chicago, IL | reply to XknightHawkX
His plan is to move to the US, but he doesn't want to leave his best friends behind. |
|
XknightHawkX
join:2003-02-13
Morton, IL
clubs: | reply to Daniel
LOL. Not laughing at the idiot that thinks he is elite. Ooops yea I am. No one can be a hacker if they don't know that 127.0.0.1 is the localhost. |
|
tomazyk
join:2006-12-04
| reply to Bob from 1973
said by Bob from 1973 :
I didn't know routers could be hacked via the WWW.
Is this limited to wireless routers.
Change your admin password and disable Wan acces to your router if you dont need it. |
|
Michieru2
zzz zzz zzz
Premium
join:2005-01-28
Miami, FL | reply to Daniel
It's so sad it's not even funny, literally.
I thought I knew trash, but this just breaks new grounds.
--
The only limits we have are the one's we set ourselves. |
|
NetFixer
Freedom is NOT Free
Premium
join:2004-06-24
Murfreesboro, TN
 ·Vonage
 ·AT&T Southeast
 ·Cingular Wireless
·AT&T CallVantage
1 edit | reply to Bob from 1973
said by Bob from 1973 :
I didn't know routers could be hacked via the WWW.
Is this limited to wireless routers...
If you are being serious, then perhaps this thread has accomplished something in addition to providing a few chuckles.
No, it is not limited to wireless routers.
Secure your router !
--
We can never have enough of nature.
We need to witness our own limits transgressed, and some life pasturing freely where we never wander.
Test your firewall. |
|
Bob from 1973
@telus.net
| reply to novaflare
I didn't know routers could be hacked via the WWW.
Is this limited to wireless routers.
And about the cracker.
His personality shows Me, ok, not you, it shows me that he can destroy property that is not his.
Nowadays this is old hat, but it still is nasty.
For being bad, I salute you. Now be good. You've proven your point that you can do this stuff. Don't hurt anybodies PC, please. Thank you.  |
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| reply to AB
said by AB :This 'hacking' business doesn't sound all that tough. I can get at 127.0.0.1 from MY computer! Boy, is THAT clown going to be in for a surprise when he sees what I do to his machine!   Normally id never post this type of hack on a public forum. But do to the fact the 3d chat in question is long sense dead i will.
Its funny you should mention the old 127.0.0.1 "hack. You see in this 3d chat we had 3d avatarrs you could load them up from any url that contained the file you wanted to use as a avatar in the format of wrl. Wrl for those who don't know is a vrml (virtual reality mark up language) format. Well if you for example fired up a web server on your own comp you could of corse load your avatar from there. But if you used 127.0.0.1 as the website you would see it just fine but every one else and the server would crash and crash hard. Server would be down for hours and for a hour so after it was vunrable to all manner of hacking.
easy stuff logging in to server admin accounts with no username or pass word for example inserting your own root access account all sorts of fun stuff. Like the deaply shrouded guy said real hackers do not do damage and leave thing as they found it. Now sure i played with it i did so when no one else was around to have their fun ruined etc. I dug around in the server configs with a friend we found the flaw reported it the company did nothign so we fixxed it heh.
What happened was the server would go in to a endless loop trying to load the avatar in to cache and test render locally. On the client side im guessing it was the same sort of deal. Client would go in to a endless loop trying to render the avatar and crash the comp in question.
--
Evil does exist and it has a face to often that face is one that should look on their child with love in their eyes.
Instead only hate exists in those eyes. |
|
rotty97
join:2005-06-30
Australia
| reply to novaflare
There was a hack where you simply spoofed the source IP of an SNMP packet (SNMP uses UDP, so it is effective) and use that to retrieve the configuration file and then upload the edited file to the router to change the settings.
I guess most routers now would detect this by physical means since it knows that since the traffic came from the WAN side with a local IP then it has got to be fake?? |
|
