Hacking and Cracking from Windows
60 views
Hey. I wrote this article a long while back on how to hack/crack from Windows. It only covers what tools, and maybe some time I’ll write tutorials on how to use them. I just figured someone may be interested. Note that my *nix mastery has since increased by quite a bit, heh.
Disclaimer:
I realize that some of the information in this series of articles could potentially be used to do illegal things. I do not condone the attacking of machines that don’t belong to you, and niether should you. I only practice cracking on my network, with my machines. To know how helps you understand how to defend.
I’ve been using Windows since I was about two years old. I’ve been using *nix since I was fifteen. Needless to say there’s a big gap between my Windows mastery and my *nix one, though I’ve got a firm grip on both as a user. Due to this gap, I prefer to use Windows for more technical and/or complex tasks, simply because I know more about the underlying OS, and how to fix things if something goes wrong. This is why I prefer hacking from Windows, rather than Linux.
Many would have you believe that if you want to hack “seriously”, you need “a Linux”. This is untrue. While the majority of tools are intended for *nix-based systems, there are equivalents of every one on Windows, as well as some that cannot be found on *nix. Any exploits you’d like to compile for delivery can be compiled on Windows too, usually, even if it is a bit more work. Besides, with exploit frameworks like Metasploit being Win32-compatible, it doesn’t matter anymore (unless you attack something bleeding-edge).
Here’s a list of tools I’ve found that actually work:
-Cain & Abel
-SoftPerfect Network Scanner
-Metasploit Framework
-TSCrack
-VNCrack
-KaHT 2
-NetCat
The primary tools are NetCat, Cain, Metasploit, and NetScan. However, the others are useful on occasion.
Here’s a breakdown of what each tool is used for:
-Cain & Abel
This program consists of two parts: Cain, a very multipurposed tool for sniffing, defeating hashes, and obtaining passwords, as well as injecting Abel (once you have admin access), which is essentially an “uber” trojan. Abel gives you a system-level shell, among several other interesting abilities, all controlled through Cain.
-SoftPerfect Network Scanner (NetScan.exe)
This is my favorite Win32 IP scanner. It allows you to input a range of IPs, and it will multithread and scan apx. 50 at a time. It will show if the PC is alive or not, and reveal any hidden shares. It will also provide convenient shortcuts to try telnetting, ftping, and connecting to any web services.
-Metasploit Framework
This is the best out of the free exploit frameworks available for Win32. It contains a huge number of exploits targeting almost any type of system. It allows you to combine exploits with various payloads, choosing the attack that’s right for you! 
I typically get a reverse shell out of the deal, as I like to set up my entry manually ^-^.
-TSCrack
…is an excellent Microsoft Terminal Services cracker. It uses optical recognition to watch the screen images fed by the terminal server, and brute forces or dictionary-attacks the server until it gets in. This is a *very* l33t way to get into a TS.
-VNCrack
This is to VNC what TSCrack is to TS, though it doesn’t use optical recognition techs. This is a pretty leet tool.
-KaHT 2
This is an exploit for the XP SP1 or lower RPC DCOM. This tool uses the exploit to give the hacker a shell (with very little access) which can be used to scout the system and enumerate vulnerable services and applications. It is an autohack tool, essentially, and requires very little work.
-NetCat (nc.exe)
“The Network Swiss Army Knife”. This program can do anything and everything. It essentially gives you raw socket access to your NIC. You can send things, recieve things, set up a server for things, or probe things for raw data, all on any port. Extremely useful in every situation. Missing a tool? No you’re not, you have NetCat!
Please wait for Part 2 if you’d like to learn how to use each tool. ^-^
Popularity: 4% [?]
Explore posts in the same categories: articles, hacking, technical, windows