Hello,
I have some questions about hacking, and I'm new to these forums, I was wondering what forum should I pose my question in.
Thank You,
Kev
Printable View
Hello,
I have some questions about hacking, and I'm new to these forums, I was wondering what forum should I pose my question in.
Thank You,
Kev
well, generally you won't get help on any hacking questions where you are trying to hack something. There are rare occasions if you're really really good at wording stuff that you will get help. I would take a look at the faq of the site. This site is geared towards preventing hacking, not aiding it. As for which forum, just look at the name of each forum. And if you question doesn't have anything to do with security, don't post it in a security forum, choose the best non-security forum for your question. You usually can't go wrong with General Chit Chat. A lot of stuff is accepted there besides the obvious. Good luck.
Thanks for the advice...despite my screen name, I'm actually trying to prevent hacking....I work at a college, and our tech department is trying to prevent kids from hacking into their transcripts....I'm by no means an expert, just trying to do some side research on my own.
well kev.. this particular forum section "Questions About AntiOnline" is for questions relating to the forum itself.. So actually for the question on where do I post.. does sorta fit in.
Each forum section does have a description for what should go in there, it's mostly self explanatory. ie.. If you have a general question.. then stick it in general chit chat.
keep in mind that the forum is NOT about hacking into some server or defacing websites.. it's about how to protect against getting hacked. of course, if you want to hack your own computer on your own network.. well.. that's all well and good.. it's all about the knowledge of how it works and not about how you can do damage or upload warez files to some place.
read some of the FAQ's and stickies in each forum section.. you'll get some better ideas on what we're all about..
edit : man I type real slow.. there wasn't any responses when I first started.. lol
*Moved from Questions about AntiOnline*
well WestyHacker looks like negative answered your first question so ask away!
The best way to learn about hacking is to setup a small home network and experiment with both the computers. Research how/why they work and how they are vulnerable to attacks. Then, look up those attack's/exploit's online and play around on your network with them. However, NEVER use it for the wrong reasons. Hope I helped ya a little :)
Spyder32, peaple say that all the dang time but:
Afterwards what have you learned?
That you have a computer on LAN that is vulnerable to something?
Point 'n click?
C:\auto_rooter.exe 0.0.0.0 to 255.255.255.255
How to sandwhich code together?
Its really a rather sad thing once peaple take the advice you given, what many others have given in the past as well... and then suddenly all of these peaple wonder why its so easy to cuts and paste from exploits but only a hand full can actually find any of these vulnerabilities.
Grab a compiler, once you get into some of these higher leveled languages move on to MASM. MASM is easy to fallow... once you start out with MASM you'll find that registers are alot like variables. For example eax, ebx, & (ect)... they all can be compaired to Integer, string, boolean, byte, & stuff in other languages. Yep opcodes have similarities to things in HLL too. Just take a look at string manipulation & stuff like that.
Once you grab WDASM (and have TRUE) knowledge and understanding of how and why these things work its only a challenge of finding vulnerabilities before someone else does.
Also you could get into web-dev but bah... any freaking moronic monkey can perform SQL injection or XSS. Also If you have a question just ask... most peaple don't even give a damn as long as it doesn't involve hotmail or some trojan. But you'll find that mainly what peaple get pissed about is those who like tossing words like hack and hacker around... this just shows that your only interest in computers lies within "being called something", it shows that you are just another child to be entertained, and that you're into computers because you think its "the hip thing to do".
Hey, TheSpecialist.. do me a HUGE favor and shut the living **** up.Quote:
Spyder32, peaple say that all the dang time but bleh...
Serously afterwards what have you learned...
That you have a computer on LAN that is vulnerable to something?
Point 'n click?
C:\auto_rooter.exe 0.0.0.0 to 255.255.255.255
How to sandwhich code together?
Seriously... its really a rather sad thing once peaple take the advice you given... what many others have given as well... and then all of these peaple wonder why its so easy to cuts and pastes from exploits but only a hand full can actually find any of these vulnerabilities.
off topic:
Way to go Spyder! :D *cheers*
I'd also like to add that TheSpecialist needs to learn a bit more about spelling and grammar...
/off topic
WestyHacker, if you want to prevent people from hacking those computers, I'd suggest you read up on securing the OS that is running on those boxes. A firewall might be a good idea too (if you don't already have one). Always consider physical security as well. A firewall won't help much if some kid can sit down at the computer and do whatever he pleases. I'm guessing this is already in a locked room... But if someone's desperate enough, they can get past a door. Just keep that in mind.
That's my 0.02
mjk
if you work @ a college and your dealing with networks (which is how computers share info) than you may try reading about networking.Also goto http://www.warriorsofthe.net/movie.html to see a film on how the internet works it will help you understand how people do good and bad things with there knowledge. Well it did for me ...hope this helps
"I'd also like to add that TheSpecialist needs to learn a bit more about spelling and grammar..." Its a full sentence and paragraphed. It would have been nice to have just a period there instead of three or a pause "...".Quote:
Originally posted here by mjk
off topic:
Way to go Spyder! :D *cheers*
I'd also like to add that TheSpecialist needs to learn a bit more about spelling and grammar...
/off topic
WestyHacker, if you want to prevent people from hacking those computers, I'd suggest you read up on securing the OS that is running on those boxes. A firewall might be a good idea too (if you don't already have one). Always consider physical security as well. A firewall won't help much if some kid can sit down at the computer and do whatever he pleases. I'm guessing this is already in a locked room... But if someone's desperate enough, they can get past a door. Just keep that in mind.
Oh and I will stick to my typo filled statements that also contain alot of bad grammar. By downloading and running exploits you will learn nothing except that you need to patch up which should have been very clear before hand.
A majority if not all the educated & dedicated attackers,you would think became security gurus around the same time if not before they started they're malicious hobbies,jollies & pranks.?. Do the people of AO agree with that assumption in some degree?
I've read in several security books the percentage of real world attackers/pioneers, the people who actually have the eye to see, reconize & develope/produce methods & code for these upper level attacks, only make up a small percentage of gifted people on this planet.
I'm sure you have over heard or had a conversation with a person who has a "Good command of Spoken and Written English lanuage". Well these gifted attackers have a "good command of computer language" if you will.
Now, the copycats of the industry who actually copy and paste that code and use it are very smart aswell because they actually understand what they are doing with the code they useually have the ability to modify the code so it will work or work to their specific needs. The people usually have a decent command of the computer language. There is really a large sum of books available on ebay for cheap to read about this subject in general. I feel you will get 10 to 20 times more info on "hacking" by reading books than you will by reading "tid bits" off message boards
And then again experimenting with your own computer will more than likely IMHO only take you to the scr!pt Kiddo level at best. Opening and closing your cd-roms,printing out dirty words on a remote printer ect.....
I think the average person will actually graps the knowledge of security rather than the trying to figure out new holes and whatnot , unless, and there is always that 1% in a dicussion, that you could be one of those gifted people , and they just have an eye for it and it just comes to them naturally. A majority of these people that have been interviewed , say that usually what ever they do they pick up quick and they tend to take it over the top to perfect what they do. They sometimes are compulsive and tend to engulf themselves in what they are doing at the moment(left out period)
I guess all I can tell you is, if you really want to have a vast understanding of these methods and people your are really going to have to pick up a book or two on the subject. AO and slashdot are really the only two sites that I have visted where I found that educated people post regularly.What I've learned through several years of reading , is that even if you don't understand it, just keep reading and eventually it will come together as you pick up jargon and whatnot.
Do you see the exploit?Code:M35J0``,````$````__\``+@`````````0```````````````````````````
M````````````````````@`````X?N@X`M`G-(;@!3,TA5&AI<R!P<F]G<F%M
M(&-A;FYO="!B92!R=6X@:6X@1$]3(&UO9&4N#0T*)`````````!010``3`$%
M`&(3\C,``````````.``"@$+`04``!@```!"````````$!,````0````,```
M``!````0`````@``!``````````$``````````"@````!`````````,`````
M`!```!``````$```$````````!````````````````"```!0````````````
M`````````````````````````)```,0`````,```.```````````````````
M``````````````````````````````````````!$@0``]```````````````
M`````````````````````"YT97AT`````A8````0````&`````0`````````
M`````````"```&`N<F1A=&$``'@!````,`````(````<````````````````
M``!```!`+F1A=&$````@-P```$`````(````'@``````````````````0```
MP"YI9&%T80``U00```"`````!@```"8``````````````````$```,`N<F5L
M;V,``(@!````D`````(````L``````````````````!```!"````````````
M````````````````````````````````````````````````````````````
Quote:
Now, the copycats of the industry who actually copy and paste that code and use it are very smart aswell because they actually understand what they are doing with the code they useually have the ability to modify the code so it will work or work to their specific needs. The people usually have a decent command of the computer language. There is really a large sum of books available on ebay for cheap to read about this subject in general. I feel you will get 10 to 20 times more info on "hacking" by reading books than you will by reading "tid bits" off message boards
I only half agree with you. While they can read, cut, and paste the code. Some of these folks just peer over the shoulders of geniuses, and give them nothing in return. Personally these folks that alter exploit code for malicious ends are just wrong. They maybe smart, just miss guided. For example; This was back in the late 80's maybe early 90's. Everybody remembers BBS's. I found a hole in a BBS I visited on occasion that allowed complete control over the pc. I was so proud of what I had found I told a roommate about it. Instead of the BBS owner. What happened? The ass clown roommate of mine trashed this guys board. Totally trashed.
While he understood what he did, he had no real hold over the knowledge he then held. Knowledge comes with responsibility. Responsibility requires maturity. Maturity is gained through discipline. Discipline comes through self exploration.
I have alot of respect for those above me. I am **** compared to half of the people here. But I do understand.
Be safe and stay free
Ummm... yes lets all just ignore everything I have said about how running exploits will teach you nothing. Then lets all have a few peaple come back awhile later to basicly edit & repeat what I said only this time makeing it shorter & checked for proper spelling and grammar. Be carefull not to offend the dick-head with those posts guys. ;)Quote:
Hey, TheSpecialist.. do me a HUGE favor and shut the living **** up.
And by the way:
You did not spell script correctly. I assume this was done on purpose but its just oh so important to other peaple to correct these types of this. You also missed a space in the word printing which was probably not done on purpose. Of course you could always just deny this later.Quote:
Originally posted here by !mitationRust
And then again experimenting with your own computer will more than likely IMHO only take you to the scr!pt Kiddo level at best. Opening and closing your cd-roms,printing out dirty words on a remote printer ect.....
Hey TheSpecialist please quit bitching about what other people post. All they did was point out that your post was not clear and seamed to be filled with spelling errors. And let’s not complain when someone restates the same idea you had when their post is much more understandable than yours was.
No. Spyder32 is still mad because I said one of his tutorials sucked. He also said he doesn't like me anymore oh Boo hoo. :cool: My spelling was never and issue intil another person brought it up. Now then... if anyone else has any complaints just PM me next time so that I can take the advice of "shut the **** up" and "your a mother ****ing bitch and a *******".
I do not think I said eathier of those things
Actually im reffering to 3 other peaple right now who browse this site but don't have the balls to openly post how they feel about me (includeing many other members).
TheSpecialist, have the ball's to do what? Post how I feel on an internet message board? What's the risk in that? I'm not into starting "flame war's" and all that, but if that's your kind of style, then so be it.
Locate and purchase "THE UNOFFICIAL GUIDE TO ETHICAL HACKING" by Ankit Fadia. This is a good source for further understanding of technics, and more important protection against the ways of the wicked.
I dont agree much. Its more of the matter could be learnt online...Quote:
Originally posted here by Nurdreams
Locate and purchase "THE UNOFFICIAL GUIDE TO ETHICAL HACKING" by Ankit Fadia. This is a good source for further understanding of technics, and more important protection against the ways of the wicked.
I found this ULTIMATE LINKS PAGE in my favourites. U can learn all basic concepts there.
I reccomend you to buy Hacking Exposed. You can buy it here
Try to get a thorough knowledge of the ins and outs TCP/IP.
Use google to learn more. Stick on to AO to share and gain knowledge.
Thats all I could think of now.. Now I'm feeling sleepy :o ...Hope that helps..
Your excatly right, I see where you are coming from.Quote:
Originally posted here by dopeydadwarf
I only half agree with you. While they can read, cut, and paste the code. Some of these folks just peer over the shoulders of geniuses, and give them nothing in return.
Wrong!, I disagree and donot recommend this outdated book unless you are still working with 95, and are into antiques. That guy needs to put up some original content before he hits the shelfs again. That book was horrible IMHO!Quote:
Originally posted here by Nurdreams
Locate and purchase "THE UNOFFICIAL GUIDE TO ETHICAL HACKING" by Ankit Fadia. This is a good source for further understanding of technics, and more important protection against the ways of the wicked.
Quote:
Originally posted here by !mitationRust
Do you see the exploit?Code:M35J0``,````$````__\``+@`````````0```````````````````````````
M````````````````````@`````X?N@X`M`G-(;@!3,TA5&AI<R!P<F]G<F%M
M(&-A;FYO="!B92!R=6X@:6X@1$]3(&UO9&4N#0T*)`````````!010``3`$%
M`&(3\C,``````````.``"@$+`04``!@```!"````````$!,````0````,```
M``!````0`````@``!``````````$``````````"@````!`````````,`````
M`!```!``````$```$````````!````````````````"```!0````````````
M`````````````````````````)```,0`````,```.```````````````````
M``````````````````````````````````````!$@0``]```````````````
M`````````````````````"YT97AT`````A8````0````&`````0`````````
M`````````"```&`N<F1A=&$``'@!````,`````(````<````````````````
M``!```!`+F1A=&$````@-P```$`````(````'@``````````````````0```
MP"YI9&%T80``U00```"`````!@```"8``````````````````$```,`N<F5L
M;V,``(@!````D`````(````L``````````````````!```!"````````````
M````````````````````````````````````````````````````````````
That looks suspiciously like the code found in spooleak.exe....
It seems like a "pot calling the kettle black" if you ask me. 94.23% of the folks on this site misspell posts, including myself...and TheSpecialist.Quote:
Originally posted here by PoSer
Hey TheSpecialist please quit bitching about what other people post. All they did was point out that your post was not clear and seamed to be filled with spelling errors. And let’s not complain when someone restates the same idea you had when their post is much more understandable than yours was.
I mean, grammatically speaking, you should have had a comma after "Hey" ("Hey, TheSpecialist,").
Damn, good eye!Quote:
http://www.insecure.org/sploits/spoo...mory.leak.html
Yeah, I thought I saw it when browsing insecure.org.
To answer the original question - The best place to post a question about 'hacking' is in whatever forum it seems most appropriate, and if you aren't sure there are many sensible senior members you could send a personal message to, such as a mod. (click the purple pm button above one of their posts) for advice for anything about this forum.
You could even send me a personal message and I'll do my best to help.
Please forgive the following rant:
Once again, the AO anitpoints plague comes to haunt us.
Making a sweeping generalisation, with all the risks that implies, more posts in this thread have been rewarded with greens for telling others to STFU etc., and few, if any, for any serious or useful advice.
And this thread is far from the only example of this at the moment.
Is this what athe AP system is for, cause if it is, I think the FAQ needs re-writing:
Perhaps this isn't relevant anymore!Quote:
In general, users who are respected as posting userful information, being friendly, and who answer other's questions, will have a high number of AntiPoints. Users who spam, flame, harass other members, or post misleading information, will have a low or even negative number of AntiPoints.
[...]
If you post high quality and thoughtful messages, your fellow members will approve of your posts. By their approval you gain AntiPoints. If you post incorrect, misleading, harassing, or messages against the guidelines, they will disapprove and you will lose AntiPoints.
Lets just ask ourselves what would happen to a newbie who told someone to STFU in their first post?
However, their observations would be that this is a way to 'gain respect'.
Sorry for the rant
Steve
You can buy books like "Happy Hacker" but you have to go to their website for more info. or just read a lot of books that involve securities. or you can search using google. duh. but i dont recommend it.
actually, i once did the same quest and i understood that this site is for defence and not for attack . never ask questions related to hacking as your account can be deleted.a better idea is that you should go through the rules of this site.
bye!!
steve.milner: I never asked to be greened. To tell you the truth, I was surprised that I was. I just had to say something to TheSpecialist and I'll admit, it was not a post deserving of green's. It wasn't informative and I wasn't giving advice so your right, it didn't deserve green's. I agree with you on that. :)
spyder, TheSpecialist, and others that where bitching why start crap with each other on the internet of all places why give a **** about grammer typos happen and grammer isnt important here it is the advice given in the post i dont care if they spell something wrong i use bad grammer alot online and so do other and if u feel the need to bitch each other out like little skript kiddies do start a diffrent b/c 90% of use dont want to read ur drama we want to read the post (and by that i mean about the topic) to either learn of try to help someone
Which is why nobody takes you seriously...Quote:
i use bad grammer alot online and so do other
Haha, groovicus is my favorite smart-ass ;). Oh, and Lord_Of_Dragon's, I never complained about anybody's grammar. Thank you :DQuote:
i never said i wanted any of you to take me seriously now did i if i was speaking on a serious matter i would use proper grammer somewhat atleast but o'well realy doesnt mater i was just tring to say so what if someone leaves out a few periods or misspells something it doesnt matter on theses treads its the point of what is being said that matters the advice or the question on hand
*edit*
Spyder i wasnt just talking about you i was talkig about people here in general
Well, other than a couple of attempts I don't think anyone has really helped Westy with his question. OTOH, there has been a bunch of whining and complaining and some opinions that, while trying to be helpful may or may not have succeeded.
Let's start with the whining and complaining.....
1. It's awfully bad form to pick on peoples spelling and grammer on the web in general. Not only is it bad form it's actually pretty darned stupid.... Why? Easy, if you have to resort to that you probably really don't have anything intelligent to say about the content of the post. If you don't have anything intelligent to say then you should probably shut up or you are proving that you are responding over a personal issue rather then an intellectual one. Silly.......
2. Sending "background" PM's questioning peoples ancestry and sexual preference is really adult. I know... It's the Internet..... *YAWN*.... Grow the hell up or go back to AOL.....
3. Just for the specialist....
A good note for the rest of you. Say what you have to say to this "particular gentleman" publicly and professionally. Do it properly and he shuts up for a week or so. If we all do it when he starts to become the rather small male appendage he can be on an all too regular basis maybe we can muzzle his misplaced sense of self-importance for good.Quote:
Actually im reffering to 3 other peaple right now who browse this site but don't have the balls to openly post how they feel about me (includeing many other members).
Now..... on to Westy's question.....
There's three things you need to know.... Sounds simple huh..... ;)
1. How your OS and the apps/services you run work.
2. How the network/internet works.
3. How the people with talent work to find holes in 1 and 2.
I told you it sounds easy..... Ok... I lie a little..... ;)
It's not something you can pick up by reading a book..... or several books, though that helps.... Learn your OS first, understand that everything your PC provides in terms of services can be exploited somehow or somewhere... lesson one is to patch the thing as soon as is possible..... If you don't then you are exposing yourself worse than a pervert at Chucky Cheese... need I say more......
Then learn how the network works..... Why things happen and how they happen.... Read the RFC's themselves.... They are the bible.... Trust them, not peoples interpretation of them... Read them yourself.....
Lastly, look at case studies.... You can start by limiting these to the OS you run and the services you provide.... It helps to minimize your research..... learn what it is they try to do, and how they try.... Keep up with the latest known exploits and learn ways to mitigate the problem without having to be a uber leet coder.... there's always another way.....
When you get stuck ask here..... There's a lot of knowledge and experience here.... You'll find someone that can explain something..... I also find that even if you ask an really obscure question here you interest others with the question which spurs them to research it for themselves and post the results, (done it more than once myself). The result is that even though you might not understand the concepts or potential risks laid out in and RFC for example, someone else will and put it in plain english for you.....
It's not a short journey, and you won't find anyone sensible here that will claim to know everything about security...... But if it really interests you if a fun trip......
Good luck.....
well first i want 2 say hi 2 everyone on this site coz im new here and think this site is wicked! :)
and second i have a few things that i would like help with from a hacker if they dont mind..plz! :)
1. can u give me a code for hackin into hotmail and yahoo plz
2. can u give me a code for some viruses, worms, trojan horses and other stuff like that plz that i could forward 2 ppl?
and finally...
3. could sum1, any1 hack into the school computers near me and **** 'em up, i can give out passwords and usernames, e-mail addresses, usernames, passwords, thousands of credit card numbers,etc.
***** Moderator Please ******
Some prepubescent is playing silly games.... I have my suspicions.....
Hrmm, I don't suspect I know :D. CrackerHacker, leave the site.. please?
O.K. You know whats funny about this? this guy most likely had been banned for trying to social engineer before, and the only way he can get back at the mighty " AO " is joining under another name and posting garb like this!!!LOLQuote:
Originally posted here by crackerhacker
well first i want 2 say hi 2 everyone on this site coz im new here and think this site is wicked! :)
and second i have a few things that i would like help with from a hacker if they dont mind..plz! :)
1. can u give me a code for hackin into hotmail and yahoo plz
2. can u give me a code for some viruses, worms, trojan horses and other stuff like that plz that i could forward 2 ppl?
and finally...
3. could sum1, any1 hack into the school computers near me and **** 'em up, i can give out passwords and usernames, e-mail addresses, usernames, passwords, thousands of credit card numbers,etc.
I think JIM CARREY put it best when he said (with the voice of a motor shifting gears)LOOOOOOOOOOOOOOOOOOOOOOOSEEEEEEEEEEEEEEEEEEEEEEEEEER!!!!!!