Page 1 of 1 [ 11 posts ] 

WillFill
Butterfly
Butterfly

User avatar

Joined: 22 Oct 2005
Gender: Male
Posts: 15

24 Oct 2005, 11:10 pm

From time to time I have wondered why my classmates do not respect me much. I conclude that I do not have the skills they have. Many of them participate in the martial arts, and some have gained great nunchuck skills. Other classmates go hunting with their fathers and have become expert marksmen. Other hunters do not use guns, and they have formidable bowhunting skills. My ability to recall quotes about Willard Fillmore or mention statistics about heavyweight boxing champions is not impressive. That is why I want to have computer hacking skills.

I have tried to gain computer hacking skills, but the tutorials that exist are very difficult to read because they are written in an obscure code of sorts. I already think Microsoft and America Online are detrimental to technological freedom. What should I learn next to have great hacking skills?



Scoots5012
Veteran
Veteran

User avatar

Joined: 1 Jul 2004
Age: 44
Gender: Male
Posts: 2,397
Location: Cedar Rapids Iowa

24 Oct 2005, 11:31 pm

WillFill wrote:
What should I learn next to have great hacking skills?


The king of hackers, Kevin Mitnick used social enginerring more than anything else to gain access to privilaged information that allowed him to simply walk right into systems.

With that in mind, one aspie to another, I suggest avoiding going the hacker route. NT's don't look up to hackers anymore than they would someone who knew that Holmes beat Ali by TKO in Vegas back in '80.

Also you could end up like mitnick, sitting in prison having made the FBI's top ten list and being featured on americas most wanted.


_________________
I live my life to prove wrong those who said I couldn't make it in life...


Klytus
Toucan
Toucan

User avatar

Joined: 1 Jul 2005
Gender: Male
Posts: 259

25 Oct 2005, 4:24 am

I'd love to know about hacking, or even cracking. :)

I'm in my final year of a part-time Masters degree in Computer Science, and I still know nothing about it.
Do these self-taught hackers generally teach themselves assembly programming before learning higher-level languages?



coyote
Supporting Member
Supporting Member

User avatar

Joined: 10 Nov 2004
Age: 55
Gender: Male
Posts: 388

25 Oct 2005, 9:31 am

You have to know how the machine works first.

Electronics, logic circuits, micro-controllers (using assembler), assembler programming, pure C programming (not ++, #, visual x...). Once one know that, one begins to comprehend what high level programming languages are hiding.

Then one can begin to guess where the ordinary high level language progammer makes mistakes (like not checking for a maximum size for a string of data before accepting it thus busting the buffer (buffer overflow)...) which one can exploit.



thadius
Yellow-bellied Woodpecker
Yellow-bellied Woodpecker

User avatar

Joined: 24 Oct 2005
Age: 58
Gender: Male
Posts: 62

25 Oct 2005, 2:46 pm

Klytus wrote:
I'd love to know about hacking, or even cracking. :)

I'm in my final year of a part-time Masters degree in Computer Science, and I still know nothing about it.
Do these self-taught hackers generally teach themselves assembly programming before learning higher-level languages?


A few years ago I was into cracking big time. I could crack any game or app. You need a windows disassembler and be able to read assembly language. My favorite disassembler was W32DASM.

[/img]



Klytus
Toucan
Toucan

User avatar

Joined: 1 Jul 2005
Gender: Male
Posts: 259

26 Oct 2005, 3:56 pm

coyote wrote:
You have to know how the machine works first.

Electronics, logic circuits, micro-controllers (using assembler), assembler programming, pure C programming (not ++, #, visual x...). Once one know that, one begins to comprehend what high level programming languages are hiding.

Then one can begin to guess where the ordinary high level language progammer makes mistakes (like not checking for a maximum size for a string of data before accepting it thus busting the buffer (buffer overflow)...) which one can exploit.


Then what do you do when you've found a mistake to exploit? :)

thadius wrote:

A few years ago I was into cracking big time. I could crack any game or app. You need a windows disassembler and be able to read assembly language. My favorite disassembler was W32DASM.



What do you do once you've cracked a game or app? :)



IronRoses
Tufted Titmouse
Tufted Titmouse

User avatar

Joined: 26 Aug 2005
Gender: Male
Posts: 37
Location: UK, England

26 Oct 2005, 5:20 pm

I find this post rather interesting...

to crack games:
IDA pro, W32DASM, softICE and the basic of hex and asm

breaking in to computer.

for this, you relly need to write your own scripts, for grabbing ips, checking open ports and so on. you can use: C, C++ and asm (start with C)


do not bother with those so called hacking progs, because they do nothing....seriously.

Like for instance I downloaded a mail bomber, it did nothing, I then wrote my own mail bomber in visual basic 6, worked nicely, only work with pop3 accounts though.


but, don't think this is gonna be easy, because it ain't, ASM itself, to really learn it can take many years, it's VERy hard and complicated language to learn.

C++ is hard and clubsy, meaning stupid somtimes, but is OOP which is great in some cases.

anyway, learn C++ to hack comps(write softare) to crack games and software, learn to disaemble .exe file and to read the hex or c code. learn about what dfferent strngs mean in different cases. how a program detects what your doing. you can get proga that tell you the protection and prog is using, then that helps you a bit more to crack the b***h.

if you want any help on the craking of games part, pm me.

I will NOT help you with hacking though!!


_________________
Think Linux Looks Awfull, Check This Screenshot Out!!
http://www.serialkeygen.net/screenshot.htm

That Pic Is Of My Desktop,The #Distro Of Choice Is SuSe 9.3 (with default kernel)


coyote
Supporting Member
Supporting Member

User avatar

Joined: 10 Nov 2004
Age: 55
Gender: Male
Posts: 388

26 Oct 2005, 8:31 pm

Quote:
Then what do you do when you've found a mistake to exploit



It depends. For the buffer overflow example, i'll take the one that was in Internet Explorer i don't know which version. The problem was with URL. When the URL of the page you wanted to visit exceed 1024 bytes, the rest of the string still got into memory but outside the allocated buffer so it was considered by the machine to be code. So what one would do is to create an HTML page that calls a bogus URL which is more than 1024 bytes long, and put some real asm code starting at the 1025th byte of the URL. This code would be executed on the target PC that has loaded the first page.

Each situation will call a different method depending on the caracteristics of the hole. Of course, once you found a hole, it is up to you to find a way to exploit it.

If what you want to do is to create a program that generate keys to unlock some specific software, that is another story.....



thadius
Yellow-bellied Woodpecker
Yellow-bellied Woodpecker

User avatar

Joined: 24 Oct 2005
Age: 58
Gender: Male
Posts: 62

27 Oct 2005, 1:06 pm

Quote:
What do you do once you've cracked a game or app?


You can do all kinds of things such as copy games and make them work without the original CD, enable demo cripple ware to run like the full version, and all sorts other things.[/quote]



alyks
Hummingbird
Hummingbird

User avatar

Joined: 31 Oct 2005
Gender: Male
Posts: 23
Location: Montana

01 Nov 2005, 2:44 pm

To enable a crippled demo, all you have to do is disassemble it, then change the disabled things on, then recompile it.

It's not that hard, really, I do it all the time.



danlo
Veteran
Veteran

User avatar

Joined: 11 Mar 2005
Age: 40
Gender: Male
Posts: 1,079
Location: Western Australia

04 Nov 2005, 11:10 am

coyote wrote:
It depends. For the buffer overflow example, i'll take the one that was in Internet Explorer i don't know which version. The problem was with URL. When the URL of the page you wanted to visit exceed 1024 bytes, the rest of the string still got into memory but outside the allocated buffer so it was considered by the machine to be code. So what one would do is to create an HTML page that calls a bogus URL which is more than 1024 bytes long, and put some real asm code starting at the 1025th byte of the URL. This code would be executed on the target PC that has loaded the first page.

Hey, I understand what you're talking about, woot. Couldn't program to exploit it if my life depended on it, but hey, cool.
Lemme see if I got this right. You allocate 1024 bytes of memory to hold the URL information. By parsing a value larger than 1024 bytes to that buffer, you overwrite the allocated space, and start putting the information in the memory spaces after the buffer. Then when the program tries to retrieve its own code which was stored in those spaces, its retrieves your code. Right? So how do you avoid buffer overflow bugs? Bounds-checking, right? So however much information they input, it only takes the first 1024 bytes of it?