Open command prompt from where it is Banned
Open up Command Prompt (Start>Run>Command.com)
IF U Can't use command prompt at your school?
Open up Microsoft word..Type:
Command.com
Then save it as Somthing.bat.
Warning: Make sure you delete the file because if the admin finds out your in big trouble.
--Adding a user to your network--
Type:
Net user Hacker /ADD
-----
That will add "Hacker" onto the school user system.
-----
Now you added users lets delete them!
Type: Net user Hacker /DELETE
Warning: Be carefull it deletes all their files.
-----
"Hacker" will be deleted from the user system.
-----
if It says access denied
it's because your not admin!
----
Now lets make your Admin!
----
This will make Hacker an admin. Remember that some schools may not call their admins 'adminstrator' and so you need to find out the name of the local group they belong to.
Type: net localgroup
It will show you what they call admin, say at my school they calll it
adminstrator so then i would
Type: net localgroup administrator Hacker /ADD
----
Getting past your web filter.
Easy way: Type whatever you want to go on say i wanted to go on miniclips bug on wire i would go to google and search miniclip bug on wire
then instead of clicking the link i would click "cached".
Hard way: I'm hoping you still have command prompt open.
Type: ping miniclip.com
And then you should get a IP type that out in your web browser, and don't forget to put "http://" before you type the IP.
-----
Sending messages throught your school server
Okay, here's how to send crazy messages to everyone in your school on a computer. In your command prompt, type
Net Send
Note:
Where
Net Send Hacker School * "The server is h4x0r3d"
The asterisk denotes wildcard sending, or sending to every computer in the domain. You can swap this for people's accounts, for example
NetSend Varndean dan,jimmy,admin "The server is h4x0r3d"
use commas to divide the names and NO SPACES between them.
or
Allowing dos and regedit in a restricted Windows
A very simple tactic I found after accidentally locking myself out of dos and regedit is to open notepad and type the following:
REGEDIT4
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesWinOldApp]
"Disabled"=dword:0
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
"DisableRegistryTools"=dword:0
Save it as something.reg then run it. Simple.
since i started learning SQLi , i have collected lots of good tools and documents , m still collecting more and more day by day as my scope of knowledge is increasing .
So thought of sharing what i have collected till now with everyone here,
My tool pack includes the following things.
DOWNLOADS :
SQLI SCANNER PACK : http://adf.ly/6tth
MD5 tools pack : http://adf.ly/6tuV
ADMIN FINDR : http://adf.ly/6tuk
SQLI TUTORIAL PACK : http://adf.ly/6tuw
DORKS PACK : http://adf.ly/6tv7
SHELLS PACK : http://adf.ly/6tvD
DONT DOWNLOAD IF YOU DONT KNOW WHAT ARE FALSE POSITIVE VIRUS ALERT
1) sqli scanner/automating injection pack :
contains 5 softwares for scanning ,and automating the hacking process
(a) Exploit scanner - for finding websites with dorks , and testing them for vulnerabilities.very famous
(b) Turkish ARTA - same as exploit scanner but not as famous bcos its turkish . i find it better then exploit scanner. but that my personal opinion
© Havij 1.12 free version : i guess everyone knows about it. it automates the process of performing sqli attack on any site.
it is extremely famous and efficient. but still it a tool :) nothing compared to manual process
(d) SQLI helper 2.7 : same like havij , but little fast .
(e)sqlinj Version 2 - another nice sql injection tool . i will write a tut later how to use this tool
2) ADMIN Finder pack :
After getting the logins from the database . one needs to get the admin finder page. for some sites its very easy while for smoe site its hellova tough
here are some nice admin finder tools and lists tht u may use. but these tools are never enough .i will keep uploaing the amin finder lists as i get more
(a)reiiuke admin finder ( u can upadt the original admin finder lists with the list i am providing)
(b)5 perl and python admin finder tools/scripts. update them as per ur need
© misc softwre : admin pass locater , to brute force admi pass if u cant find it
YOU MIGHT ALSO LIKE THIS SITE
http://th3-0utl4ws.com/tools/admin-finder/
3) DORKS Pack : Contains many files contiaing more then 7000 dorks.
4) Shells : this pack contins many shells and source codes , like c99 ,c100 , jackel and hellova more
( many shells like c99 are identified as trojans by many antivirus. so u might find ur antivirus shouting about this pack. )
U might also wanna see this site :
http://www.kinginfet.net/shells/
5) MD5 cracking tools : although havij have md5 tool but for some reason it never worked for me . so this pack contains some tools .
ASLO THESE SITES WILL PROVE YOU GREAT HELP
http://www.md5decrypter.com/
http://www.md5decrypter.co.uk/
http://md5.rednoize.com/
http://md5decryption.com/
http://passcracking.com/
http://www.xmd5.org/
http://www.md5cracker.com/index.php
http://md5.noisette.ch/index.php
http://md5cracker.org
6) SQLI tutorials pack : This pack contain complete html pages of sqli tutorails that i found useful from various forums and websites like hackforum , elitesoft ,warex , outlaws etc etc. i bet every newbe will love this pack .
u just need a firefox browser to open these html files.
NOTE: this pack also contain 2 of my own created sqli help files which i created myself, serves me as a very useful docment wheneever i m on to hack some site.
i will kep updating these packs as i learn and collect more and more .
4 comments:
yo lengend im new to this
ive got the hand of it
do u know how i can get other pepels paswords at school
or on msn
It worked, thanks mate!
I have only accesed the administrator though, havent changed anything in the system.
hate to break it to ya but it restricts creating account to higher lvls on my schools server students are below guest. we can hardly click with out permission.
At my school, I am a full admin! and a country network admin. I started by infecting a pc with a worm that emailed me all passwords. It was deleted after a month, but i had the info needed. I logged on, chacnged the passwords to MD5 and reign charge...it's awsome.
Post a Comment