But i ran the 6,6k in 25 minutes. So i was proud! Mostly because i have not done any form of sport, exercise etc. So yeah, even nerds run!

-Lut4

So i have looked into building my own linux system with help from LFS – Linux From Scratch(Here!)
There website have a 323 page long book on how to build a system. I checked it out and realized, that you need a very special set of tools with the right version. I started downloading some of them on Ubuntu, when some pages down, they told about their livecd which contained all the tools and everything needed for the build.

So i started downloading the livecd…once done i transfered to my USB so i could boot it on my laptop. LFS boots and then suddenly it says that i am missing the LFS livecd..?
Wtf?

I try to burn it onto a dvd instead but it is still giving me the exact same error. So i am pretty much stuck.

Ill continue the post once i get that livecd working!

-Lut4

I have promised you a tutorial of using Cain and Abel with Wireshark. Now it is finally here and i hope you have the tools ready. What we are going to perform is a MITM – man the in the middle, which basically means that we are the man in the middle. We positions ourself between the router and the victim.

Remember only do this on your own network or on networks, where you have permission by the owner. You cannot blame me, if you go to jail!

Tool list:
-Cain and Abel
-Wireshark
-Cola:)

Tutorial:
So..Lets get started. Fire up Cain and Abel so you get this screen:

Just a little reminder: I hope that you have installed WinPcap either when you installed Wireshark or Cain. WinPcap is crucial.
Do you see the network card button just besides the folder icon? Press the network card icon!

If it is the first time you have pressed it, you need to choose a interface for sniffing on. If you have doubts on which to choose, the go to windows start – run cmd.exe – ipconfig. There you can see your IP-address and then pick the right interface. Once you have done that, make sure the sniffing(network card icon) button is pressed down. Otherwise press it again.
Now we go over to the sniffing tab. Press the sniffing tab just below the blue plus sign. Here comes the exciting stuff!

Press the big blue plus! Hopefully you will see this:

Unless your network/subnet is weird go ahead and just scan all hosts in your subnet(subnet means local network). Now if other computer(yours i hope!) are showing, then great job! If not, then either you do not have any hosts on your subnet or you are scanning it wrong. Try to repeat the steps from the top.
Now the ARP poisoning! ARP poisoning is a process, where you send out ARP(Address Resolution Protocol) packets to the other hosts, explaining to them that you are actually the router. Windows is made to believe in such packets.
In the bottom of Cain, you see the ARP tab? Press it!
What you do, is that you click on the top window with tables and the the big blue plus should activate.
Now click the blue plus!
Now you get two lists of hosts. In both lists the same IP-addresses are listed. In one of them, you select your router.(most of the time – the ip address of the router ends with a .1) In the other list, you select all the hosts you want to sniff. After that you press OK and make sure that both the sniffing and ARP buttons in the top are pressed down. If Yes then we move on to Wireshark, if no check your stuff again.

Wireshark:

Now open Wireshark. Press the button right below the file tab and select the interface, where numbers appear. Those are packets and packets per second. Then press start and the packet should start rolling in! Remember both wireshark and cain must remain open for the ARP Poisoning to function.

If you are on a wireless network most of the times, you need to uncheck the promiscuous mode in the interface sniffing settings, which are the button right besides the one you pressed earlier.

Now i hope it works for everybody! And remember if i do not work either fool around with it till it does or google it – Never give up!
Hope you have enjoyed this tutorial

-Lut4

Introduction:
Cain and Abel is a multipurpose bruteforcing, password recovery, ARP poisoning, sniffing, decoding program. It has alot of tricks up its sleeve. It is the second Swiss Army knife of hacking tools!

Cain – Good, Bad or Ugly?
Cain is a great tool. Personally I only use it for the ARP poisoning and let Wireshark sniff the packets. Cain only sniffs for plain-text password packets and might miss some. I also enjoy to have all the “targets” traffic listed in Wireshark. If you have Cain installed on a pc, where Windows Live Messenger is installed, Cain can dump Messenger passwords. It will also dump saved wireless passwords. As said earlier it has a very very many functions.

A negative aspect of this is that for instance, the password sniffer is not working as good as you may have hoped.

Here are some screens of Cain:

Cain start screen:

Cain subnet scanning:

My network:

Conclusion:
I know i say this to every program/tool i talk about, but Cain is great! It is best combined with Wireshark and if you are going to crack passwords, then rainbow tables would also help a lot.
I recommend you to try the program(of course only and own network etc.)

p.s. Remember to look at the tutorial about Cain, Wireshark and ARP poisoning(Also called MITM, man in the middle)

-Lut4

Introduction:

Wireshark(Formerly know as Ethereal) is the greatest GUI packet sniffer. Wireshark is an opensource packet sniffer available in binaries for Mac and Windows. There is also a portable version for Windows, but it still requires the install of the WinPcap driver. And ofcourse free!

Wireshark And You:
Wireshark have great importance if you are, like myself, interested in hacking/It-security. Later i will point out the importance in especially packet sniffing and ARP poisoning. Wireshark is one of the dearest tools in the penetration testers toolkit, because it provides a layer of background knowledge and information in every single action you perform on your pc. Once i found my friends iphone on a huge school network by using Wireshark. My computer and his ipod did not have any direct information-sharing, but Wiresharks ability to capture promiscuous packets. Promiscuous packets are packets that are not really meant for you. Therefore without any form of ARP poisoning or MITM(Man in the middle, another subject for later) it can capture foreign packets.
I have some screens of Wireshark!:
Start screen of Wireshark:

Interface selector with packet counter(Makes it easier to choose interface):

Finally Wireshark capturing packets from my network(I am accessing google, if any are curious people):

Conclusion:
Wireshark is one of the most awesome packet sniffers of all time. The functions are simple but brilliant. All credits to the Wireshark crew for making packet sniffing so simple and educating! All people should try Wireshark.

-Lut4

In these 2 years i have gotten no more than 129 views!

I have decided to try to promote my blog a bit further, so i have added it to google and are involving me even more into the WordPress Community.

I hope that you will enjoy this blog and all the information it contains:)

p.s. If you actually read this and have any questions, request or anything else, then leave a comment! I would also love to check out your blog, if it has the same main subject:)

-Lut4

Introduction:
It has come to a point, where i will start talking a bit about hacking/it-security stuff.
One of the best penetration testing programs in the world is “The Metasploit Framework” created by HD Moore.
Metasploit can be found at this website: Metasploit!

What is it?
Metasploit is a penetration testing framework. Metasploit can help people testing their computer/website for known exploits. It has become extremely simple to use in the later versions and are a very reliable tool. It is also free! Big plus =P
Therefore you can download it and try it. Again remember only on your own pc or with the owners permission. I got some screens to you all:
Metasploit Logo:

Metasploit Console!:

It has always been lucky to get the cow, when you start metasploit console.(I do not know why, and i am not sure if they still have the cow =P)

Basic Metasploit GUI:

Conclusion:
I have followed Metasploit from version 2.0 and it has developed greatly since then. Unfortunately Metasploit looks to be degrading into commercialness like almost every good tool. It is still free, but i am afraid that it is going to cost money in a near future. But huge credits to HD Moore and the others! It is one hell of a great tool!

- Lut4

EDIT:
People have search alot on the metasploit cow – so here it is:

If you get banned because of this code or anything, that looks like this code, i hold no responsibility.
Use code at own risk!

This is a very long post, but if you have not got a clue on wow bots, you pretty much need to read it all.

I am playing the famous World of Warcraft game. Wow for short. Most people know it. Well i got fixated on the idea, that i had to buy a bot. That could help me level faster and get those crucial honor points! So i bought the bot and it works fine. Nothing to complain about. Then suddenly i got the idea of making my own wow bot. It sounds very hard and it is. I have read a lot on a forum with a section, just for botting and more specifically programming bots!

Now that you know the history, i am gonna get specific.(This is my attempt to get the breakthrough, i need to program more on my bot. I know, that no one is reading it =P)
First i found a thread about making a wow bot. It was like any other good guide, which of course didn’t give you the code in your hands. You had to put the pieces together! The guide was in AutoIt. It is a programming language, that is a bit simpler than most. I have programmed before and i had jumped to the conclusion, that i was never very good at it. Mostly because i never could get a great idea of what to program.

This idea of a wow bot had me hooked from the start! Or almost..

I put the pieces together to see if i could make any sense and understand what the code did. It took me approx 5 sec to think: “FUCK!”. I closed the code and watched some tv

After i while i gave it another try and that was were it hooked me! I suddenly understood the code!! Personal victory!?!?!

If you have read this post from the top, i promise you, hang on! If you are out to get a source code of a super-duper working bot, then gtfo! I can’t get the bot working properly yet. If you are here to learn, what i have learned in the past couple of days and want to understand it, then stick around!

It all begins were it all ends. Or it begins were it starts? Nevermind!

Offsets is the answer that all of you have been looking for! Atleast that was the conclusion that i personally found out. Now i will present to you some code!!!:

Here is an offset:

Global Const $ClientConnection = 0x8BF1A8

I had the exact same feeling that you have right now. “WTF i am going to do with that?”
That is what i am here to tell you! A program consists of a lot of data. For the program itself to know where to look for specific data, it uses offsets. That is the point, where the actual data starts. You are still: “WTF!!”

Now here is the exciting part! Here is where the actual wow bot comes in!

If you got these lines of code, you can get your program to tell you exactly how much hp, you got! POWER!!!:

$pObjectMemLoc = GetMemLocByGUID($pGUID)
$pDescriptor = _MemoryRead("0x" & Hex($pObjectMemLoc + $DescriptorOffset), $hWow , "dword")
$pHealth = _MemoryRead("0x" & Hex($pDescriptor + $PlayerHealthOffset), $hWow ,"dword")

And you are still: “WTF!!?!?!?”

To keep you reading and not spook you off, i have left some of the code out. Actually about two very major functions in this code. The first is GetMemLocByGUID. Do not worry about that one yet! I will explain later on. The new function is the called $hWow. In AutoIt, the dollar sign $ tells you that it is a variable. Therefore the variable is called hWow. What lies underneath this is somewhat simple. the h = handle, like handle to a bike. It controls something. Wow is kinda obvious. It is handling the Wow.exe process to allow us to extract memory from it.

Focus on this first:
$pDescriptor = _MemoryRead("0x" & Hex($pObjectMemLoc + $DescriptorOffset), $hWow , "dword")

Descriptors are like adjectives: He is a man. He is a good man. The descriptor is good. There health/hp of a player is ofcourse a descriptor. What this code very specifically does is, that it adds together two values. The first adds the values of $pObjectMemLoc, which is the players GUID(still no worries, i will get to that!) and $DescriptorOffset.

GUID stands for Global Unique Identifier. It is a unique code! Therefore the players guid could be described as the player itself. An example:

man

Here you have the “man” which is unique. If you add the descriptor to it:
Programming and programs are so simple, that you will not believe me when i say this. When you add these two values together, you get access to all of the things that are describing the man:

If we have another example. We have our man:

man

and underneath him lies a whole pile of adjectives.

good, handsome, nice, etc.

Therefore by adding the man with the adjectives, we can now describe the man!!!

Now focus on this:

$pHealth = _MemoryRead("0x" & Hex($pDescriptor + $PlayerHealthOffset), $hWow ,"dword")

We only have access to the “adjectives” if we add the offset of this special “adjective” to our descriptor, which are our pile of adjectives. I can show this to you! Time for some pictures!!

Here is a picture of my wow, noticed the health!

There are exactly 1943!

If i then launch my “bot” and tells it to give my health($pHealth):

This is not random, that the numbers are the same. That is the bot reading from memory, my current health.

So i need to post the necessaries for you to try this at home!

If there a enough readers or a very kind pm, ill talk about Objectmanagers in the next post.

Here is the link for the code:

http://www.nomorepasting.com/getpaste.php?pasteid=35971

The include can you find on the internet. So go home(you properly are at home) and try it out.
I know this is not classic guide style, but if you do not understand the code, you can only mess it up or get you health on a little msgbox.

If anyone reads this, i would like to thank gononono64, because it is actual his code, that i have altered a very tiny amount. I just thought that his guide did not explain it very well.

If you have come this far and understand it, then congrats! If you then think:”Dude, i need more offsets, to make my “bot” do other things”, then go google and if you cannot find it, then try to pm me.

If you still think: “WTF!!!”, then read this post a couple of times and if the result is the same, then take a very very good look at the actual code. If you still are: “WTF!!”, then i will suggest that you either learn a programming language basics or go buy a bot for about 15 euros.

Well thank you for reading(sadly no one is..) and i will post more, if you need it(in the sense of, if you have read this)

p.s. if i spell bad, then you have the problem =P

-lut4

Lut4…

When i just got a laptop, what else than to try out wireless hacking. I search around and found aircrack. I soon found out that if you wanted to get it up and running, you needed packet injection. I found a good stable usb wireless adapter ALFA usb 500…something.

I choose a usb wireless with RT73 chipset?? I did not know what it was but i asked around, and found out that it supported packet injection. Lets get to the point. Backtrack, the holy live linux cd of hacking. Just throw it in you cd-tray and restart pc. Backtrack is much, much more than wireless cracking, and is a tool worth of looking further into. But i downloaded the iso and burned it. At first i could not get a single thing to work. Not even the usb wireless to connect, to a network. Tried all the ifconfig up and down, iwconfig. When i finally got the wireless thing to work, i would try to crack my own network. Aircrack! It did not work…i was getting pretty tired of Backtrack, Aircrack and Wireless. Then in a glimpse of a magic moment, i found a program in Backtrack. The Program! It was a Gui and all of those comfortable things. Just entered the name of the network, selected my usb adapter. Then i just waited for the ARP packet. It worked perfect, 9 min to crack a 128 bit WEP Wireless network.

Quick tutorial

1. Get a laptop
2. Get a packet injection capable wireless adapter
3. Get backtrack
4. Learn the deadly arts of using backtrack
5. Go have fun.

Just love Backtrack, Aircrack and Packet Injection!