Printable View
I'm completely new to this set of mind, and I tried reading a tutorial by someone called Revelation and got completely lost.
So I figured I'd ask you guys. :)
Exactly how does a hacker get into a computer like mine?
Is it like how we see it in the movies like Hackers or SwordFish?
Is it just a push of a few magic buttons and tada?
And information would help me understand.
Thanks :cool:
An attack can come many ways. E-mail, remote, locally, infected floppies, downloads, etc etc...
As for actual attacks, firewalls are fine and dandy, but not full proof. There are many ways to get thru, disable, take down, and crash firewalls. The key word in defending your box is frequent updates to both the firewall and the AV software. Now, in a firewall you will want to "stealth" your ports. This basicly means that when a person pings you, they will not get a response from your machine. But, you can still be DoS'd regardless. The packets will still be reaching your machine, your machine just won't send a responce. Firewalls are good, but are pointless if you allow every connection. There are many vulnerabilities in many everyday programs. For instance if you have an old version of winamp 2, and allow an outgoing connection from winamp's browser, you just opened a window for a hacker. Upgrade to 3 and you've closed it. Just about every program out there that makes a connection to the internet, can be exploited. This is the reason for different versions of software. In winamp 3, they have fixed the previous bug. Hence why constant updates are a priority. So, Every program you have connected is a window a hacker can try and enter. These commonly include IE, AIM, YIM, Kazaa, etc...
Well, I hope that helped clear up some stuff for you.
Wow! There's a question.
Well, it actually quite a mouthful.
The first step usually intells someone getting your IP address (ie: 216.234.23.9) and trying to connect to your computer to view your ports.
How do they get your IP?
Well there's programs like ICQ or mIRC that gives that info away in chat sessions.
There are also people who IP Scan (using a program that searching a range of IPs for a running machine - useful on networks with set IP)
As well as other means (google: keyword "find ip", "locate ip", "find target")
What are ports?
Ports are on your computer for "services" that are run.
The ports "hackers" use are virtual, as in they don't physically exist.
Examples of "services" ports run are like port 80 for http connection (internet) or 25 for smtp (e-mail)
What hackers do is scan those ports and find which are open and try to compremise them with known vulnerabilities. (google: "windows9x vulnerabilities", "linux vulnerabilities")
What's a vulnerability?
It's a programming error or a flaw in the code.
What happens is that a hacker does something with the service which is not intended to do and when it runs the "problem" the vulnerability will either crash your computer or open it up for access.
There's also Trojans!
Trojans are computer programs that makes a connection from your computer to someone elses. Usually, these are transfered by e-mail or chat apps like ICQ or Messengers. Someone runs it (not knowing what it is) and then it opens up your computer ports (usually above 2000 me think) to connections by other persons. Popular trojans are NetBus, Sub7 and BackOrifice.
What about NetBios.
While this isn't really a hack, it can give out information the attacker needs.
When you enable file&printer sharing it allows others to connect to your computer and view/copy your files to your select shared files (*depending on security mesures in place)
If you have a password file or something saved in that directory, the snooper can see it and use your accounts.
There are other things too, programs and such, but others here can give you move info about it. Also check sites like hackers.com and hackersplayground.org (while it might be a little much/confusing on information, it is sites like this that will give some light)
Also check this sites tutorials and forums for such topics. If there's something that confuses you about the topic, Prvate Message the author for more explinations
Hope this helps!
Computers are broken into by a variety of ways. To name some of the most common methods:
1. The services running on your machine. Services running can open ports which makes you vulnerable to being attacked.
2. Viruses can infect your machine and cause malicious damage. And Trojans (usually destributed by email) can actually open connections to a hackers computer, or open ports allowing a hacker to compromise your PC.
3. hackers can also exploit buggy vulnerabilities in OS's or software. Thats it why it is important to obtain the lastest bugfixes and security patches for your software and OS's.
A Personal Firewall and some good AntiVirus software is highly recommended for the adequate protection for the average home user.
Hope that this sheds a little light.
PC Girl check some good security/computer sites like www.packetstormsecurity.org www.antionline.com www.safehack.com and generally just do a search for it on www.google.com info on the topic can be found just about anywhere. join some chans on the topic on IRC i always found that a good way to learn
www.attrition.org
www.slashdot.org
www.w00w00.org
www.wiretrip.net/rfp
they are all good and they all provide informations relative to security in some form or another there are many many more aswell
Hey guys, thanks for the information.
I'll check out those sites and read some of the suggested readings. I guess there's no straight answer to it, is there? At least it isn't that easy for anyone to learn, right?
learn an operating system first inside and out then go onto programming etc and more advanced stuff :) there are a few threads about where to start for beginners .. just do a quick search .. good luck
Well I just want to add my two cents here, not by technical, but all good advice isn't always technical ;). Anyway, I do happen to know that Revelation has written some text files a few years back. I haven't seen any up to date information written by him, so just to point out reading out dated guides and tutorials isn't really going to help you, if you're not looking to read up on the history of hacking, and what was useful back then. The best way to really learn is to pick up a copy of Hacking Exposed (http://www.hackingexposed.com) or some security book like Security Complete (http://www.sybex.com) and read it to a point where you have a pretty firm grip on what you're doing. Then, you'd be sure to know what is enough to keep the negative things out, like worms and hackers.
Regards,
Silentstalker
reading old hacking/computer stories i find is good for motivation tho. dont count out the old heh :)
btw, Any of u guys can hack a system in just 60 sec while there's a girl beneath u like in "swordfish"?
apreasher: Get me the girl, and I'll do my absolute best... ;)
AJ
Quote:
Originally posted here by apreasher
btw, Any of u guys can hack a system in just 60 sec while there's a girl beneath u like in "swordfish"?
nothing impposible.. man..
lol in 60 seconds. I think he had the IP, the ports, and a Netbus with him.
Of course, having a female companion helps. :p
the female support makes the brain running at full speed....:)
All I need is 30 ;)
Exploits, Exploits, Exploits- if you keep your updates updated, you should be fine... 98% of haxors are "skript kiddies" and can only use other's techniques. it would be very rare for a master h4ck3r to even bother him/her-self with your sys/network... (btw- I didn't think swordfish was a good hacker movie... try watching "WarGames" :-)
If your looking for what I thought was a good computer security book, which is really clear and is an easy read try getting Hacking exposed ( whatever the newest version is ) and Maximum Linux security. I thought they were very good and helped me understand the security makeups of computers much better.
Another great book to pickup is called Counter Hack by Ed Skoudis. I thought it was great. It was one of the books I picked up when I was first starting to learn, and it helped a great deal. I have the Hacking Exposed books as well. You will also probably want to learn TCP/IP if you want to get into security. Definitely do a search here on AO as there are many many threads relating to these topics for newbies. I wish you the best.
t2k2
I can, as long as her ports are open!:lildevil:Quote:
Originally posted here by apreasher
btw, Any of u guys can hack a system in just 60 sec while there's a girl beneath u like in "swordfish"?
BTW, PCGirl might want to check out a book called Steal This Computer Book. Not only does it have simple, understandable
information, but it also has loads of links and comes with a CD of programs with which to experiment!:D
My advise would be to get a few cheap computers and network them. You will learn more from this legal experience than
from reading a tutorial that may or may not be clearly written.
30 SECONDS...is that something you really want to brag about xmaddness ??Quote:
OH.....I see, your talking about the hack of course.... :p
Cheers:
If you stay with your path of getting knowledge of the minds behind exploring "flaws" then you understand why its an need .
There is an diffrence of hacking-cracking-phreaking.An system atleast thats how the laws are set around us.We who like to know how an system is an vulnerbal of diffrent things makeing an antiprogram for a time beeing untill some other great mind finds flaw to get arround it. Thats what some hacking is allbout.
The "cracking" is an other breed of their own.Takeing hacking an step up of knowledge how an single operating system works and exploiting its vulnerabilyts to an MAX level.Many crackers that has this ability is not hateful to the society inpact about rules and laws some likes the challenge to "crack" some old mathematical formulas that our defined educational system gives for free.Some very basic underlaying facts is very common with "Cracker" minded person, one is saying hey i just broke your software code where i can live an higer standard of self beeing by letting some ohter people get your code for free.Or an cracker could take your hard-disk volume on the net that he/she just cracked by takeing what ever was there to help him/her to be an better "cracker".So there fore laws set by our society to protect you are limited mind are set.Many ISP admins hates them that are a step a head of them selfs.Besides the hole society picture what internet was then in the golden days was taken away.Few minds that they thought they were so bright were silly and thought they were on the top of the mind chain.I dont comend their liberal belives if they had one in the golden age of the liberal www.So many have so many things to say about our modern society that hates putting out laws.Its like if you say to an christian person that your god is an total curifix and you should let go of what you know for i just broke in the >lib.Saying that anything that you belived in with was so wrong."cracker" wants to prove you and the society wrong.Wich is not a really bad thing if you dont judge them for i dont.They will help your society to grow if your mind can keep them on the edge.
If you get to an poinst where you can Understand many computer languages,maybe makeing some help programs that helps you or anyone else out then you know the mind set of an Cracker and an Hacker.!
The "Phreakers" mind.They exploits in a diffrent mind set.They want to make any system vulnerable by any mean for they dont hate the system .They just want to make sure that their exploits gets an hands on signature for their knowledge.Phreaking in on a system by physical means is unlegall in so many countries that these minded people are very rear or are they.Some that not long ago with the just phone lines open to anything the our own goverments been listening to anytype of conversations in so many countires that only few peoples that are still a live knows about them.So are these ubnoxial mineded people a real security threath to an modern society.Well i leave anybody thinking about where we live with the modern"phreakers" attitude.For there will be them that is out on for the challenge to phreake anything at anytime to make the system.Are we that far from that when we daily surf in the net searching knowledge in anything.? I dont judge anything i leave that to flaws of laws to be judged when that time come in any country.Go Globalism of anything that just feeds out what we dont know.So if you want to exploit an phone line then the freedom of choise is up to "graps". :)
Just an freedom of an mind....
zip2dip, what are you smoking?!
Cheers:
Ok **** readin those useless texts an books. Just get straight into the Action an go to
WWW.HULLA-BALLOO.COM
This is a good place to learn, **** it teaches you stuff that you carn't learn from those useless BOOKS.
Why read when u can get hands on experience.......
And what r all u guys talking about........Man if u lot had a chicky near u's would cream ur pants before you even started hacking, and doing it in 30 seconds.......Yep SURE.,
And to the person who said that 98% of hackers are SCRIPT KIDDIES..........Well u got that right, you are all SCRIPT-KIDDIES WHILE ME AND MY ELITE HAQOR KRUE ARE THE 2% PERCENT OF ACTUALL HACKER,...................
SO **** YOU **** YOU ALL AND HAVE A NICE DAY.............
(If you dont like it then go and **** your sister you computer GEEKS)..............
:wow: Somebody needs a nap! :wow:
<n.3.c>[i] Wow you are really clever and using strong language accenuates that fact. Are you eminems close relative.
Its people like you that have made me post less and less on this what used to be the best site to come and learn and exchange infomation with other knowledgable people.
So <n.3.c>[i] why dont you go find a hole to crawl into and stay there.
As to everyone else take care.
See you around NGsec is a good site at the moment with some great kind of war game.
well PCgal i wud say as other have also said....Hacking exposed books "hacking exposed" "hack exposed linux" hackinh exposed windows
and dont forget Maximum security...definately gud.
Yeah, but aren't the "glory" days of hacking basically over? Aside of defacing a few websites here and there, do they ever even accomplish anything besides breaking into the average person's computer?