satzo password hacking Serial Number

Browse through all of the satzo password hacking serials and keys on this page to find the right serial number or activator you are looking for.

Downloading satzo password hacking full free version from our serial, crack and key database.

Click Here to load serial number

KonBoot v1.0

FAKE VIRUS ALERT
-----------------------------------------
NOTE: THIS GIVES A FALSE POSITIVE FROM A FEW AV SOFTWARES WHEN YOU DOWNLOAD IT. 100% CLEAN. The virus scan at virus total will show you that it includes code that "not-a-virus". 




WHAT IS KONBOOT
-----------------------------------------
Kon-Boot is an prototype piece of software which allows to change contents of a Linux kernel (and now Windows kernel also!!!) on the fly (while booting). In the current compilation state it allows to log into a Linux system as 'root' user without typing the correct password or to elevate privileges from current user to root. For Windows  systems it allows to enter any password protected profile without any knowledge of the password. It was actually started as silly project of mine, which was born from my never-ending memory problems :) Secondly it was mainly created for Ubuntu, later i have made few add-ons to cover some other Linux distributions. Finally, please consider this is my first Linux project so far :) Entire Kon-Boot was written in pure x86 assembly, using old grandpa-geezer TASM 4.0.



TESTED ON
-----------------------------------------
Windows Server 2008 Standard SP2 (v.275)
Windows Vista Business SP0
Windows Vista Ultimate SP1
Windows Vista Ultimate SP0
Windows Server 2003 Enterprise
Windows XP
Windows XP SP1
Windows XP SP2
Windows XP SP3
Windows 7



INSTRUCTIONS
-----------------------------------------
Kon-Boot for Windows enables logging in to any password protected machine profile without without any knowledge of the password.


1. Burn the small image. 
2. Set the computer you wish to bypass the password on to boot from cd, then boot to the cd. 
3. The administrator password will be gone. 





One more note: I used this several times on several jobs, and it has failed about 3 out of 100 times, so its pretty successful program.










=========================================

G U R U F U E L 
           .com

HARDWARE, SOFTWARE, PROGRAMMING, HACKING.		

Crack Windows Password With Windows Password Recovery Tool bootable CD

It's a software ISO, you can burn it into a blank cd, reboot your computer and load from cd, then you can reset windows password easily.
		

hiermee kan je windows mee hacken je gaat naar deze computer windows explorer.exe dan kan je gaan hacken		

COME AND VISIT US ON www.FILMULMEU.tk !! BEST WAREZ!!


Trojan Horses
- Yuri RAT v1.2
- MofoTro v1.7 BETA
- Charon
- Beast v2.0.7
- Omerta v1.3
- Theef v2.10
- Combined Forces R.A.T
- MoSucker v3.0
- ProRat v1.9 Fix2

Keyloggers
- Elite Keylogger v1.0
- SKL v0.1
- KeySpy v2.0
- A++++
- Curiosity
- Keylogger
- KeyCopy

Binders
- Daemon Crypt Public v2
- NT Packer v2.1
- EES binder v1.0
- File Injector v3
- Bytes Adder
- FreshBind v2.01
- YAB v2.01
- NakedBind v1.0
- Amok Joiner

WebHacks/WordLists

Brute Forcers
- Munga Bunga 's Official
- Brutus - Authentication Engine Test 2
- wwwHack v1.946
- FTP Brute Hacker
- FTP Brute Forcer.tar.gz - Unix
- Wbrute.tar.gz - Unix
- Shadow Scanner-Brute Forcer
- Hackers Utility v1.5
- POP3 brute forcer.tar.gz - Unix

CGI-Bug Scanners
- NStealth HTTP Security Scanner v5.8
- Attack Toolkit v4.1 & source code included
- Scanarator
- Legion NetBios Scanner v2.1
- NetView v1.0
- CGI Vulnerability Scan
- CGI Scanner v4.0
- VoidEye CGI scanner

Virus!

Viruses
- Hippi virus
- Sasser
- W32. Blaster .Worm
- Midnight Massacre
- 00001
- Nimda
- Loveletter virus
- Happy '99
- MXZ

Virus Builders
- DR VBS
- VBSwg 2 beta - Virus builder
- p0ke's WormGen 2.0
- RESIDUO - DoS Virus

MSN Hacks & Bots
- HoaX Toolbox 1.1
- MSN Extreme 3.0
- MessenPass v1.06
- Advanced Blood Scroller
- Nudge Madness
- Advanced Instant Messengers Password Recovery
- Contact Spy
- Msn Explosion
- Encrypted Messenger

Port & IP Scanners
- Blues Port Scanner
- ProPort v2.2
- SuperScan v3.0
- Net Scan Tools v4.2
- LanSpy v2.0
- Bitchin Threads v3.1
- Trojan Hunter v1.5
- SuperScan v4.0
- Neotrace PRO v3.25 trial&crack

Nukers And Flooders
- Rocket v1.0
- RPCNuke v1.0
- Panther Mode1 - 56k
- Panther Mode2 - ISDN +
- Final Fortune v2.4
- Battle Pong - Technophoria
- Assault v1.0
- ICMP Nuker
- CLICK v2.2

EXTRA!
- Telnet Tutorial  		

Collection of hacking E-books. details of contents:

Directory \\\"Hacking eBooks Collection\\\":
    Directory \\\"hackers_black_book\\\":
      Hackers Black Book.htm
      Directory \\\"hacking\\\":
        Hackers Survival Guide.rtf
        Hacking for Dummies 2.doc
        Hacking Into Computer Systems - Beginners.pdf
        Maximum Security - A Hacker\\\'s Guide to Protecting Your Inter.pdf
        Directory \\\"text\\\":
          admin.pdf
          agentsteal-fbi.pdf
          alt-2600-hack-faq.pdf
          anony.pdf
          begin-guide.pdf
          cablehijack.pdf
          cert_ip_spoof.pdf
          cover-your-tracks-large.pdf
          crackupc.pdf
          etherfaq.pdf
          findholes.pdf
          ftpbounce.pdf
          getinfo.pdf
          hackbeg.pdf
          hackfromlinux.pdf
          hackmind.pdf
          hackpage.pdf
          ipaddressforgery.pdf
          iphijack.pdf
          ms2-proxyserver.pdf
          neoguide.pdf
          ntexploits.pdf
          psychotics-unix-bible.pdf
          raising-hell-with-unix.pdf
          starthak.pdf
          unix.pdf
          unixbible.pdf
          virpgm01.pdf
          virpgm02.pdf
          win95pw.pdf
        Tricks Of The Internet Gurus.zip

    Directory \\\"Hacking\\\":
      0849308887.pdf
      A Buffer Overflow Study - Attacks and Defenses (2002).pdf
      Computer Vulnerability(March 9 2000).pdf
      Crackproof Your Software(No Starch-2002).pdf
      Credit Card Visa Hack(Cambridge Lab-2003).pdf
      ebook__hackers_secrets.pdf
      For.Dummies.Hacking.for.Dummies.Apr.2004.eBook-DDU.pdf
      Google Hacking for Penetration Tester (Syngress-2005).pdf
      Hack Attacks Revealed- A Complete Reference with Custom Security Hacking Toolkit (Wiley-2001).pdf
      Hack Proofing Your Identity in the Information Age (Syngress-2002).pdf
      Hack Proofing Your Network - Internet Tradecraft (Syngress-2000).pdf

      Directory \\\"Hacking Tools\\\":
        Directory \\\"Hacking Tools\\\":
          
          Directory \\\"Newbie Cracking Tutorials\\\":
            Directory \\\"Newbie Cracking Tutorials\\\":         
      Windows XP Hacks (O\\\'reilly- Auguest 2003).chm
    Hacking_Windows_XP.pdf

    Directory \\\"Wireless\\\":
      For.Dummies.Hacking.Wireless.Networks.For.Dummies.Sep.2005.eBook-DDU.pdf
    Directory \\\"Wireless Hacking Projects for Wi-Fi Enthusiasts\\\":

      Syngress - Wireless Hacking. Projects for Wi-Fi Enthusiasts.pdf
      Wireless Sensor Networks Architectures and Protocols  - CRC Press.chm		

This is a hacking tutorial for maplestory gms version 0.37

it's fully working		

This is a hacking tool kit for all you hacking wannabes

It contains all you need to break in to a computer or server and includes:

-port scanner
-IP scanner
-LANguard
-Exploit 
-Net scanner
-Mail brute
-Mail checker
-Password brute
-Admin finder


To use simply extract  		

A brief description.........
Hardware Hacking Projects for Geeks
Heck Attacks Denied
PayPal Hacks

Author/Publisher.........[Unknown]

Year release.........[2010]

Genre.........[All Mix]

Category.........[Books]

Format.........[PDF,CHM]

Language.........[English]

ISBN.........[No]

[ If You Like It...Please Buy It ]		

This hacking and cracking softwares package includes the following:

1.Clonyxxl

2.HIEW

3.OLLYDBG 

4.PEID 

5.Runasdate 

6.SoftIce

7.W32SASM



1.Clonyxxl - ClonyXXL is a copyprotection detection scanner, wich can show what kind of protection is used on a disc.

2.HIEW -Hiew (short for Hacker's view) is a popular console hex editor for DOS and Windows written by Eugene Suslikov (sen).The program is particularly useful for editing executable files such as COFF,PE or ELF executable files. 

3.OLLYDBG -OllyDbg is a debugger that emphasizes binary code analysis, which is useful when source code is not available.

4.PEID -PEiD detects most common packers, cryptors and compilers for PE files. It can currently detect more than 600 different signatures in PE files.

5.Runasdate -RunAsDate is a small utility that allows you to run a program in the date and time that you specify. This utility doesn't change the current system date and time of your computer, but it only injects the date/time that you specify into the desired application.

6.SoftIce -SoftICE is a kernel mode debugger for Microsoft Windows. Crucially, it is designed to run underneath Windows such that the operating system is unaware of its presence. Unlike an application debugger, SoftICE is capable of suspending all operations in Windows when instructed.

7.W32SASM -W32DASM is the perfect utility to learn how Windows programs operate.Disassembles Both 16 and 32 Bit Windows Programs. Displays for Exports, Imports, Menu, Dialog, and Text References.
		

This Is all you need to hack your Xbox 360 Dvd Drive!

- This Pack includes Video tutorials on flashing all drives, and opening the 360
- All files needed for the hack are also included!


Do this:
----------------------

1. Read trough Textbooks Guide to Hacking the Xbox 360.pdf
2. Watch Video Tutorials
3. Open the Xbox
4. Flash That drive!
5. Play those Backups!


Files Included:

- Textbooks Guide to Hacking the Xbox 360.pdf
- xbins auto connect.rar
- the drives.jpg
- Opening The Xbox 360.avi                       by Syrax2Beta (www.Youtube.com)

Flash Hitachi 46D, 47D and 59:
--------------------------------
- Maximus-Garyopa_XTRM-HITACHI_v2_3_Stealth_Rev2
- Cmd Here Powertoy
- Slax 2.1 iso
- Flashing Xbox 360 Hitachi 47D.avi              by Textbook (www.360mods.com)
- hack Hitachi 46D and 47D Drive Xbox 360.avi    by XtremeTekno (www.youtube.com)

Flash Hitachi 0078:
-----------------------------------
- Maximus.Xtreme.1_6.for.Hitachi.v0078.rar
- 360 Firmware Toolbox 3.0
- Slax 2.1
- Cmd Here Powertoy
- Flashing an Xbox 360 Hitachi v0078FK Drive.avi  by Textbook (www.360mods.com)
- 360 Firmware Toolbox on a V78 Drive.avi         by Maximus  (www.youtube.com)
- 0078 tutorial.avi                               by direcx   (www. prmafia.com

Flash Samsung ms25:
--------------------------------
- Xtreme52.rar
- NTFS4DOS CD
- Xtreme Boot Maker 3.6
- How To Modify An Xbox 360 (Samsung MS25).avi    by Textbook (www.360mods.com)

Flash Samsung ms28:
--------------------------------
- Xtreme52.rar
- NTFS4DOS CD
- Xtreme Boot Maker 3.6
- Flashing an Xbox 360 Samsung MS28.avi           by Textbook (www.360mods.com)




Good Luck!		

4 programs on hacking your xbox live account's gamerscore and gamertag.

Sorry that the instuctions didn't load...best place to find how to use the programs, checkI'm very sorry to who ever downloaded it already.

Free WinRAR download: http://download.cnet.com/WinRAR-32-bit/3000-2250_4-10007677.html
		

Live Hacking CD is a new Linux distribution packed with tools and utilities for ethical hacking, penetration testing and countermeasure verification. Based on Ubuntu this ΓÇÿLive CDΓÇ¥ runs directly from the CD and doesnΓÇÖt require installation on your hard-drive. Once booted you can use the included tools to test, check, ethically hack and perform penetration tests on your own network to make sure that it is secure from outside intruders.

The CD comes in two forms. A full Linux desktop including a graphical user interface (GNOME) and applications like Firefox along with tools and utilities for DNS enumeration, reconnaissance, foot-printing, password cracking and network sniffing. For greater accessibility there is a Live Hacking menu to help you quick find and launch the tools.
 
The second variation is the Live Hacking Mini CD, which is command line only. However this doesn't detract from the power of the tools and utilities included as most of the penetration testing and ethical hacking tools are command line tools. The included /lh directory has symbolic links to the different tools included.
 
The system requirements for the Live Hacking CDs are quite reasonable. A fast Pentium 3 or any Pentium 4 class processor (or greater) is sufficient. For the desktop version 512MB of memory is required with 1GB recommended. For the command line version just 128MB of memory is needed.

DNS Enumeration

DNS is the Internet service that translates domain names into IP addresses. Each time you use a domain name, DNS is used to translate the name into the corresponding IP address. To do the translation DNS holds records for each domain. The Live Hacking CD includes tools specifically designed for working with DNS.

Reconnaissance

Just like in the military the first step to any mission is reconnaissance; exploring the network to gain information. The idea is to map out the target network and systems before trying to find the potential security weaknesses. Included on the Live Hacking CD are a set of tools to help you perform reconnaissance on your network.

Foot-printing

Once the network has been mapped out, you need to gather information about the specific computers on the network. To help you do this the Live Hacking CD includes the tools you need.

Password Cracking

While trying to penetrate your network you will need to test the strength of the passwords being used. The Live Hacking CD has the tools you need to try and crack the passwords used on your network and on your systems.

Network Sniffing

The technique used to monitor and analyze the traffic on your network is called network sniffing (or some times data packet sniffing). Here a packet sniffer captures the packets of data that pass around the network. Within your network you may find that usernames and passwords are being sent in clear text meaning that the information would be viewable to anyone who can capture your network traffic. The Live Hacking CD contains network sniffing tools to enable you to capture, monitor and analyze your network traffic.

Spoofing (or Masquerading)

Spoofing is the creation of network packets in such a way that they appear as if they came from somewhere or someone else. Spoofing is an integral part of many network attacks and the Live Hacking CD has the tools you need to help you create fake network traffic in order to penetrate your network.

Wireless Networking Utilities

Many networks now use Wi-Fi to enable laptops and mobile devices to connect to the network without wires. The strength and simultaneously the weakness of Wi-Fi is that the network traffic is broadcast to every device. The Live Hacking CD is packed with tools to help you monitor and secure your wireless network.

Open Source and Ethical:

The Live Hacking CD is designed for ethical computer hacking, meaning that it contains the tools and utilities you need to test and hack your own network but using the tools and techniques that more malicious hackers would use.

The Live Hacking CD is based on open source technology and uses the popular Ubuntu Linux distribution as its base. All the tools included can be freely found in either the Ubuntu repositories on the Internet. The CD is designed to be a platform to help IT security professionals (as well as those with a general interest in information security) to start, understand and conduct penetration tests and ethical hacking.

Dr. Jahangiri, the world renowned security expert and the brain-child behind the Live Hacking CD, has made it available to the public for free to encourage IT professionals and others to enhance their knowledge and to prepare for the malicious activities of the unscrupulous hacker.

As with all community and open projects, Dr. Jahangiri and his team welcome all comments, and suggestions along with possible cooperation opportunities to make the Live Hacking CD as complete and useful as possible.



Application List:



The Live Hacking CD is packed with tools and utilities for ethical  hacking, penetration testing and countermeasure verification. The CD includes hacking tools for DNS, reconnaissance, foot-printing (gathering information about computers on the network), password cracking, network sniffing, spoofing (or masquerading) and wireless networking utilities.

 Here is a list of the hacking tools you can find on the Live Hacking CD:

     Reconnaissance (and DNS)

        Dig - DNS lookup utility
        DNSMap - DNS mapping is a mechanism which allows hosts on a private LAN to use DNS Services even if the address of an actual DNS Server is unknown.
        DNSTracer - Trace DNS queries to the source
        DNSWalk - Checks DNS zone information using nameserver lookups
        Netmask - Helps determine network masks
        Relay Scanner - This program is used to test SMTP servers for Relaying problems
        TCPTraceroute - Traceroute implementation using TCP packets
        Firewalk - Firewalk is a network auditing tool that attempts to determine what transport protocols a given gateway will pass.

     Foot-printing

        Amap - Performs fast and reliable application protocol detection, independent of the TCP/UDP port they are being bound to.
        Curl - Get a file from an HTTP, HTTPS or FTP server
        Fping - Sends ICMP ECHO_REQUEST packets to network hosts
        Hping3 - Active Network Smashing Tool
        HTTprint - A web server fingerprinting tool
        Ike-Scan - IPsec VPN scanning, fingerprinting and testing tool
        MetoScan - HTTP method scanner
        Namp - The Network Mapper
        Netcat - TCP/IP swiss army knife
        P0f - Passive OS fingerprinting and masquerade detection utility
        Zenmap - The Network Mapper Front End

     Password Cracking

        Chntpw - NT SAM password recovery utility
        Rainbowcrack ΓÇô Crack LM, MD5 and SHA1 hashes
        THC PPTP Bruter - A brute forcing program against PPTP VPN endpoints (TCP port 1723)
        VNCrack ΓÇô Crack VNC passwords
        John the ripper - A fast password cracker

     Network Sniffing

        DHCP Dump ΓÇô DHCP packet dumper
        Dsniff ΓÇô Password sniffer
        SSLDump ΓÇô Dump SSL traffic on a network
        Ntop ΓÇô Displays top network users
        Wireshark ΓÇô Interactively dump and analyze network traffic

     Spoofing (or Masquerading)

        File2cable - Sends a file as a raw ethernet frame
        Netsed ΓÇô Network packet streaming editor
        Sing ΓÇô Send ICMP Nasty Garbage packets to network hosts
        TCPreplay ΓÇô Replay network traffic stored in pcap files

     Wireless Networking Utilities

        Aircrack-ng - Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured.
        Kismet ΓÇô Wireless sniffing and monitoring
        THC Leap Cracker - The THC LEAP Cracker Tool suite contains tools to break the NTChallengeResponse encryption technique e.g. used by Cisco Wireless LEAP Authentication.
        WEPCrack - WEPCrack is an open source tool for breaking 802.11 WEP secret keys.
        WIDZ - Wireless Intrusion Detection System
        Cowpatty - Brute-force dictionary attack against WPA-PSK

    Miscellaneous

        GDB ΓÇô The GNU Debugger.
        Hexdump ΓÇô ASCII, decimal, hexadecimal and octal dump tool.
        Hexedit ΓÇô View and edit file in hexadecimal or in ASCII
        Wipe ΓÇô Securely erase files
        Madedit -Text/Hex Editor



		

NB! [b]This version is for all systems except systems with the Intel B/G wireless cards (IPW2200).[/b]





[img]http://img115.imageshack.us/img115/489/hackingo3831165fj.jpg[/img]


- Live CD with all the tools you need to hack a WLAN / wireless Access point -
Linux Live-CD - OS runs from CD - 635 mb - .iso
- also used by the FBI ...


WEP Hacking - The Next Generation

WEP is an encryption scheme, based on the RC-4 cipher, that is available on all 802.11a, b and g wireless products. WEP uses a set of bits called a key to scramble information in the data frames as it leaves the access point or client adapter and the scrambled message is then decrypted by the receiver.

Both sides must have the same WEP key, which is usually a total of 64 or 128 bits long. A semi-random 24 bit number called an Initialization Vector (IV), is part of the key, so a 64 bit WEP key actually contains only 40 bits of "strong" encryption while a 128 bit key has 104. The IV is placed in encrypted frame's header, and is transmitted in plain text.

Traditionally, crac*ing WEP keys has been a slow and boring process. An attacker would have to capture hundreds of thousands or millions of packets?a process that could take hours or even days, depending on the volume of traffic passing over the wireless network. After enough packets were captured, a WEP crac*ing program such as Aircrac* would be used to find the WEP key.

Fast-forward to last summer, when the first of the latest generation of WEP cracking tools appeared. This current generation uses a combination of statistical techniques focused on unique IVs captured and brute-force dictionary attacks to break 128 bit WEP keys in minutes instead of hours. As Special Agent Bickers noted, "It doesn't matter if you use 128 bit WEP keys, you are vulnerable!"

Basic Directions:

1)Boot from cd

2)get the wep key

3)write it down

4)reboot into windows

5)connect using wep key.




[size=5]By Soletti[/size]		

 HACKING

--------------------------------------------------------------------------------------------------------------------------------------------------
 Who is Hacker?

A hacker is a person who breaks into computers.
The subculture that has evolved around hackers is often referred to as the computer underground.
Proponents claim to be motivated by artistic and political ends,
but are often unconcerned about the use of criminal means to achieve them.

While other uses of the word hacker exist that are not related to computer security 
(computer programmer and home computer hobbyists),
they are rarely used in mainstream context.

Hacking: Breaching into any security system by Hackers is called Hacking. Hacking was born at
the same time with computer machines. Hacking is always questioned by many people if it is 
legal or not and offcourse most of the time it is not. But we can use it legally, for example we 
can any system without harming or putting some virus into it  then there will be no questions
      


---------------------------------------------------------------------------------------------------------------------------------------------------


Filename: Collection of Ebooks Part 1

Fileformat: PDF, WORD and CHM

Total size: 98.6 mega byte

No. of books: 17

-------------------------------------------------------------------------------------------------------

 LIST OF BOOKS:

1. Basic guide to Hacking

2.Hacker Jargon Dictionary

3.Hackers Black Book

4.Hackers

5.How  to crack CD protections

6.1337. H4X0r

7.Hackers Delight

8. Maximum Security(a hackers guide to protect ur internet)

9.Flickr Hacks(2006)

10.Hack proofing Linux

11.Hack proofing your web applications

12.Hacker Cracker

13.Hackers Beware

14.Hacking delicious

15.Hacking exposed windows-win security solutions

16.Hacking for Dummies 2006

17. The secrets of wireless Hacking		

Career Academy Hacking, Penetration Testing and Countermeasures 17 CDs
Total Size: 4Gb

Release includes:
Featuring live instructor-led classroom sessions with full audio, video and demonstration components
Printable courseware
300+ Penetration Testing Review Questions
eWorkbook - 725 pages Student eWorkbook developed by Shon Harris

Our training videos will show you how to scan, test, hack and secure your own systems. The intensive demonstrations give each student in-depth knowledge and practical experience with the current security systems. You will begin by understanding how perimeter defenses work and then be lead into scanning and attacking your own networks. You will then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Penetration Testing and Countermeasures, Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation.

Author:
Michael J Lester - (CISSP, MCSE:Messaging & Security, MCSE+I, MCSA, MCT, CCNP, CCDP, CCSE+, CCI, CCEA, CTT+, Linux+, Security+, Network+, I-net+, A+)
Michael holds a Bachelor of Science degree in Information Technology, and is a senior consultant and instructor for MicroLink Corporation. He divides his time between consulting and teaching. In his consulting work he performs security audits, penetration testing, network reconfigurations and design, and general troubleshooting for a range of small to large businesses. He has taught and written curricula for a variety of courses, including bootcamps for Microsoft and Cisco certification, Check Point, Citrix and IT security, and has worked for IBM Learning Services, the University of Miami and other institutions. For the individual needs of his clients he has created specialized courses that combine several technologies into week-long, hands-on training workshops.


Course Detail:
Module 1
Ethical Hacking and Penetration Testing
Security 101
Hacking Hall of Fame
What are Today's hackers Like?
Today's Hackers
Risk Management
Evolution of Threats
Typical Vulnerability Life Cycle
What is Ethical Hacking?
Rise of the Ethical Hacker
Types of Security Test
Penetration Test (Pen-test)
Red Teams
Testing Methodology
VMWare Workstation
Windows and Linux Running VMWare
Linux Is a Must
Linux Survival Skills
Useful vi Editor Commands
Module 1 Review

Module 2
Footprinting and Reconnaissance
Desired Information
Find Information by the Target (Edgar)
terraserver.microsoft.com
Network Reconnaissance & DNS Search
Query Whois Databases
Command-Line Whois Searches
ARIN whois: Search IP Address Blocks
SamSpade Tool and Website
Internet Presence
Look Through Source Code
Mirror Website
Find Specific Types of Systems
Big Brother
AltaVista
Specific Data Being Available?
Anonymizers
Countermeasures to Information Leakage
Social Engineering
DNS Zone Transfer
Nslookup command-line utility
Zone Transfer from Linux
Automated Zone Transfers
Zone Transfer Countermeasures
www.CheckDNS.net
Tracing Out a Network Path
tracert Output
Free Tools
Paratrace
War Dialing for Hanging Modems
Manual and Automated War Dialing
Case Study
www.guidedogs.com
Footprinting Countermeasures
Demo - Footprinting & Info Gathering
Module 2 Review

Module 3
TCP/IP Basics and Scanning
The OSI Model
TCP/IP Protocol Suite Layers
Encapsulation
Data-Link Protocols
IP - Internet Protocol, Datagram (Packet)
ICMP Packets
UDP – User Datagram Protocol
UDP Datagram
TCP – Transmission Control Protocol
TCP Segment
TCP/IP 3-Way Handshake and Flags
TCP and UDP Ports
Ping Sweeps
Good Old Ping, Nmap, TCP Ping Sweep
TCP Sweep Traffic Captured
Unix Pinging Utilities
Default TTLs
Pinging Countermeasures
Port Scanning
Nmap
Advanced Probing Techniques
Scanrand
Port Probing Countermeasures
Watch Your Own Ports
Demo - Scanning Tools
Module 3 Review

Module 4
Enumeration and Verification
Operating System Identification
Differences Between OS TCP/IP Stack
Nmap -O
Active vs Passive Fingerprinting
Xprobe/Xprobe2
Countermeasures
SNMP Overview
SNMP Enumeration
SMTP, Finger, and E-mail Aliases
Gleaning Information from SMTP
SMTP E-mail Alias Enumeration
SMTP Enumeration Countermeasures
CIFS/SMB
Attack Methodology
Find Domains and Computers
NetBIOS Data
NBTscan
NULL Session
Local and Domain Users
Find Shares with net view
enum: the All-in-one
Winfo and NTInfoScan (ntis.exe)
Digging in the Registry
NetBIOS Attack Summary
NetBIOS Countermeasures
What’s this SID Thing Anyway?
Common SIDs and RIDs
whoami
RestrictAnonymous
USER2SID/SID2USER
psgetsid.exe and UserDump Tool
LDAP and Active Directory
GUI Tools to Perform the Same Actions
Demo - Enumeration
Module 4 Review

Module 5
Hacking & Defending Wireless/Modems
Phone Numbers & Modem Background
Phone Reconnaissance
Modem Attacks
Wireless Reconnaissance
Wireless Background
Wireless Reconnaissance Continued
Wireless Sniffing
Cracking WEP Keys
Defending Wireless
Module 5 Review

Module 6
Hacking & Defending Web Servers
Web Servers in General: HTTP
Uniform Resource Locator: URL
Apache Web Server Functionality
Apache: Attacking Mis-configurations
Apache: Attacking Known Vulnerabilities
Defending Apache Web Server
Microsoft Internet Information Server (IIS)
IIS: Security Features
IIS: Attacking General Problems
IIS: IUSER or IWAM Level Access
IIS: Administrator or Sys Level Access
IIS: Clearing IIS Logs
IIS: Defending and Countermeasures
Web Server Vulnerability Scanners
Demo - Hacking Web Servers
Module 6 Review

Module 7
Hacking & Defending Web Applications
Background on Web Threat & Design
Basic Infrastructure Information
Information Leaks on Web Pages
Hacking over SSL
Use the Source, Luke…
Functional/Logic Testing
Attacking Authentication
Attacking Authorization
Debug Proxies: @stake webproxy
Input Validation Attacks
Attacking Session State
Attacking Web Clients
Cross-Site Scripting (XSS) Threats
Defending Web Applications
Module 7 Review

Module 8
Sniffers and Session Hijacking
Sniffers
Why Are Sniffers so Dangerous?
Collision & Broadcast Domains
VLANs and Layer-3 Segmentation
tcpdump & WinDump
Berkley Packet Filter (BPF)
Libpcap & WinPcap
BUTTSniffing Tool and dSniff
Ethereal
Mitigation of Sniffer Attacks
Antisniff
ARP Poisoning
MAC Flooding
DNS and IP Spoofing
Session Hijacking
Sequence Numbers
Hunt
Ettercap
Source Routing
Hijack Countermeasures
Demo - Sniffers
Module 8 Review

Module 9
Hacking & Defending Windows Systems
Physical Attacks
LANMan Hashes and Weaknesses
WinNT Hash and Weaknesses
Look for Guest, Temp, Joe Accounts
Direct Password Attacks
Before You Crack: Enum Tool
Finding More Account Information
Cracking Passwords
Grabbing the SAM
Crack the Obtained SAM
LSA Secrets and Trusts
Using the Newly Guessed Password
Bruteforcing Other Services
Operating System Attacks
Hiding Tracks: Clearing Logs
Hardening Windows Systems
Strong 3-Factor Authentication
Creating Strong Passwords
Authentication
Windows Account Lockouts
Auditing Passwords
File Permissions
Demo - Attacking Windows Systems
Module 9 Review


Module 10
Hacking & Defending Unix Systems
Physical Attacks on Linux
Password Cracking
Brute Force Password Attacks
Stack Operation
Race Condition Errors
Format String Errors
File System Attacks
Hiding Tracks
Single User Countermeasure
Strong Authentication
Single Sign-On Technologies
Account Lockouts
Shadow Password Files
Buffer Overflow Countermeasures
LPRng Countermeasures
Tight File Permissions
Hiding Tracks Countermeasures
Removing Unnecessary Applications
DoS Countermeasures
Hardening Scripts
Using SSH & VPNs to Prevent Sniffing
Demo - Attacking Unix Systems
Module 10 Review

Module 11
Rootkits, Backdoors, Trojans & Tunnels
Types Of Rootkits
A Look at LRK
Examples of Trojaned Files
Windows NT Rootkits
NT Rootkit
AFX Windows Rootkit 2003
Rootkit Prevention Unix
Rootkit Prevention Windows
netcat
netcat: Useful Unix Commands
netcat: What it Looks Like
VNC-Virtual Network Computing
Backdoor Defenses
Trojans
Back Orifice 2000
NetBus
SubSeven
Defenses to Trojans
Tunneling
Loki
Other Tunnels
Q-2.4 by Mixter
Starting Up Malicious Code
Defenses Against Tunnels
Manually Deleting Logs
Tools to Modify Logs
Demo - Trojans
Module 11 Review

Module 12
Denial of Service and Botnets
Denial-of-Service Attacks
CPUHog
Ping of Death
Teardrop Attacks
Jolt2
Smurf Attacks
SYN Attacks
UDP Floods
Distributed DoS
DDoS Tool: Trin00
Other DDoS Variation
History of Botnets
Anatomy of a Botnet
Some Common Bots
Demo - Denial of Service
Module 12 Review

Module 13
Automated Pen Testing Tools
General: Definitions
General:What?
General: Why?
Core Impactâ„¢ Framework
Core Impactâ„¢ Operation
Canvasâ„¢ Framework
Canvasâ„¢ Operation
Metasploit Framework
Metasploit Operation
Demo - Automated Pen Testing
Module 13 Review

Module 14
Intrusion Detection Systems
Types of IDSs
Network IDSs
Distributed IDSs (DIDSs)
Anomaly Detection
Signature Detection
Common IDS Software Products
Introduction to Snort
Attacking an IDS
Eluding Techniques
Testing an IDS
Hacking Tool - NIDSbench
Hacking Tool - Fragroute
Hacking Tool - SideStep
Hacking Tool - ADMmutate
Other IDS Evasion Tools
Demo - IDS and Snort
Module 14 Review

Module 15
Firewalls
Firewall Types
Application Layer Gateways
ALGs (Proxies)
Stateful Inspection Engine
Hybrid Firewall
Host-Based Firewall
Network-Based Firewall
DMZ (Demilitarized Zone)
Back-to-Back Firewalls
Bastion Hosts
Control Traffic Flow
Multiple DMZs
Controlling Traffic Flow
Why Do I Need a Firewall?
What Should I Filter?
Egress Filtering
Network Address Translation (NAT)
Firewall Vulnerabilities
IPTables/NetFilter
Default Tables and Chains
iptables Syntax 1
iptables Syntax 2
Sample IPTables Script 1
Sample IPTables Script 2
Persistent Firewalls
Firewall Identification
Firewalk
Tunneling with Loki
Tunneling with NetCat/CryptCat
Port Redirection with Fpipe
Denial-of-Service Attacks Risk?
Demo - Firewalls and IP Tables
Module 15 Review

Module 16
Honeypots and Honeynets
What Is a Honeypot?
Advantages and Disadvantages
Types and Categories of Honeypots
Honeypot: Tarpits
Honeypot: Kfsensor
Honeypot: Honeyd
Sample Honeyd Configuration
High-Interaction Honeypot
Project HoneyNet
Types of Honeynets
The Main Difference is Data Control
GEN II Data Control: Honeywall CD
Gen II Data Capture: Sebek & Sebek II
Automated Alerting
Testing
Legal Issues
Demo - Setting up a Honeypot
Module 16 Review

Module 17
Ethics and Legal Issues
The Costs
Relation to Ethical Hacking?
The Dual Nature of Tools
Good Instead of Evil?
Recognizing Trouble When It Happens
Emulating the Attack
Security Does Not Like Complexity
Proper and Ethical Disclosure
CERT’s Current Process
Full Disclosure Policy
Organization for Internet Safety (OIS)
What Should We Do from Here?
Legal Meets Information Systems
Addressing Individual Laws
18 USC SECTION 1029
18 USC SECTION 1030
1030: Worms and Viruses
Blaster Worm Attacks
Civil vs. Criminal
18 USC SECTIONS 2510 and 2701
Digital Millennium Copyright Act
Cyber Security Enhancement Act
Module 17 Review
Course Closure