hacker_roott
05-11-2007, 10:00 AM
Yeni Baslayanlar için hacking bilgileri
Basliklar:
Hacking nedir?
Neden hacking?
Hacking temel kurallari nelerdir?
Hacking nedir?
Kisaca hacking bir bilgisayar sisteminin nasil çalistigini ögrenip , zayif yanlarindan yararlanip sisteme girmektir. Hacking illegaldir. Çünkü bizler girdigimiz bilgisayar sisteminden bedava access , data , dosya aliyoruz. Kimsenin izni olmadan yaptigimiz için hirsizlik kelimesinide kullanabilirsiniz. Genelde hackerler huzursuz olduklari web sitelerini kirarlar. Aslinda karsi bilgisayara zarar vermediginiz sürece hackerligin hiçbir kötü yani yoktur. Bedava access kim istemez ki? Önemli olan bu isi yakalanmadan basarabilmektir.
Neden hacking?
Yukarida belirtildigi gibi bedava acces en önemli nedendir. Bunun yaninda tekelci web siteleride hackerlerin gazabina ugrarlar. Hackerilk dünyadaki en güzel meslektir. Hackerlik yapmak için önce iyi bir port scanner saglamalisiniz. Portlar sitelerin ( evlerin ) kapilari gibidir. Bir bosluk bulup girdiniz mi is bitmistir , ev sizindir. Görüldügü gibi hack edilen web sitesini reklam etmek sakincalidir. Bazi kullanicilar girdikleri sitelere zarar verirler ( bunlar er , geç yakalanir ). Zarar verdikleri için agir yaptirimlara maruz kalirlar . Aslinda site hack edecekseniz asla siteye zarar vermeyiniz. Yakalanirsaniz sürünürsünüz. Çünkü inanin ... i islemleri yapmak için insanlar sabahlamistir.
Hacking kurallari:
Hacking 10 altin kuralini bilmek zorundasiniz
1 - Asla hiçbir sisteme zarar vermeyiniz , alacaginizi alip çikiniz. Bu inanin basiniza sorun çikaracaktir.
2 - Hiçbir sistem dosyasiyla oynamayiniz , hiçbir sistem dosyasina dokunmayiniz. Eger tesipt edilirse bir daha o siteye giremeyebilirsiniz.
3 - Hiçbir hacking projenizi baskasiyla paylasmayiniz.
4 - Kimsenin gerçek ismini , telefon numarasini kullanmayiniz.
5 - Asla sonu ".gov" olan siteleri hack etmeye çalismayiniz, geleceginiz pek parlak olmayabilir.
6 - Site kirmadan önce üstünüze rahat birseyler giyiniz .
7 - Telefonda asla hack projelerinizden bahsetmeyiniz.
8 - Rahat olunuz , kafaniza hiçbirsey takmayiniz.
9 - Kibirli olunuz . Yaptiklarinizi tekrar tekrar gözden geçiriniz.
10 - Bütün dosyalarinizi güvenli bir server araciligiyla saklayiniz.
Gerçek hacker olmak için hack etmek zorundasiniz. Bütün gün .txt okumakla hacker olumnaz.
BASLANGIÇ
Yukarida o kadar bilgi verdikten sonra temel konuya gelelim. Hack etmek istiyorsunuz. Nelere ihtiyaciniz oldugunu bilmiyorsunuz ama:
1- pkzip , winzip v.s gibi .zip file açabilen program ihtiyaciniz olacaktir
2- wardialer , port-scan gibi programlar mutlaka gerekecektir.
Burda genllikle çok kullanilan username , user-ID siralamasini bulabilirsiniz:
Password:
aaa
academia
ada
adrian
aerobics
airplane
albany
albatross
albert
alex
alexander
algebra
alias
alisa
alpha
alphabet
ama
amy
analog
anchor
andy
andrea
animal
answer
anything
arrow
arthur
ass
asshole
athena
atmosphere
bacchus
badass
bailey
banana
bandit
banks
bass
batman
beautiful
beauty
beaver
daniel
danny
dave
deb
debbie
deborah
december
desire
desperate
develop
diet
digital
discovery
disney
dog
drought
duncan
easy
eatme
edges
edwin
egghead
eileen
einstein
elephant
elizabeth
ellen
emerald
engine
engineer
enterprise
enzyme
euclid
evelyn
extension
fairway
felicia
fender
finite
format
god
hello
idiot
jester
john
johnny
joseph
joshua
judith
juggle
julia
kathleen
kermit
kernel
knight
lambda
larry
lazarus
lee
leroy
lewis
light
lisa
louis
love
lynne
mac
macintosh
mack
maggot
magic
malcolm
mark
markus
martin
marty
marvin
matt
master
maurice
maximum
merlin
mets
michael
michelle
mike
minimum
nicki
nicole
rascal
really
rebecca
remote
rick
reagan
robot
robotics
rolex
ronald
rose
rosebud
rosemary
roses
ruben
rules
ruth
sal
saxon
scheme
scott
secret
sensor
serenity
sex
shark
sharon
shit
shiva
shuttle
simon
simple
singer
single
singing
smile
smooch
smother
snatch
snoopy
soap
socrates
spit
spring
subway
success
summer
super
support
surfer
suzanne
tangerine
tape
target
taylor
telephone
temptation
tiger
tigger
toggle
tomato
toyota
trivial
unhappy
unicorn
unknown
urchin
utility
vicki
virgin
virginia
warren
water
weenie
whatnot
whitney
will
william
winston
willie
wizard
wonbat
yosemite
zap
Yukarida telnet yaparken en çok kulrlanilan username listesi verilmektedir. Asagidaki uniX hack bilgileri ingilizce olarak verilmistir. UniX sistemleri hac edebilmek için ingilizce bilgi sarttir.
. Basic UNIX hacking
UNIX is probably the most commonly used operating system on Telenet, and is the easiest to hack since it doesn't record bad login attempts. You know you've found a UNIX system when it gives you a "Login" prompt, and then a "Password" prompt. To get in you should first try the default logins.(Listed below.) If these don't work try some of the passwords listed in Section M. If these don't work try to find backdoors. These are passwords that may have been put in to allow the programmer (or someone else who could be in a position to make a backdoor) to get access into the system. These are usually not known about by anyone but the individual who made it. Try doing some research on the programmer and other people who helped to make the system. And, if these don't work, just try guessing them. The Login (usually the account holders name) has 1-8 characters and the Password is 6-8 characters. Both can be either letters or numbers, or a combination of the two.
Once you get in, you should get a "$" prompt, or some other special character like it. You should only use lower case letters when hacking UNIX, this seems to be standard format. If you type "man [command]" at the prompt, it should list all of the commands for that system. Anyway, here are the default Logins and Passwords:
Login: Password:
root root
root system
sys sys
sys system
daemon daemon
uucp uucp
tty tty
test test
unix unix
unix test
bin bin
adm adm
adm admin
admin adm
admin admin
sysman sysman
sysman sys
sysman system
sysadmin sysadmin
sysadmin sys
sysadmin system
sysadmin admin
sysadmin adm
who who
learn learn
uuhost uuhost
guest guest
host host
nuucp nuucp
rje rje
games games
games player
sysop sysop
root sysop
demo demo
Once you are in, the first thing that you need to do is save the password file to your hard drive or to a disk. The password file contains the Logins and Passwords. The passwords are encoded. To get the UNIX password file, depending on what type of UNIX you are in, you can type one of the following things:
/etc/passwd
or
cat /etc/passwd
The first one is the standard command, but there are other commands as well, like the second one. Once you get the password file, it should look like this:
john:234abc56:9999:13:John Johnson:/home/dir/john:/bin/john
Broken down, this is what the above password file states:
Username: john
Encrypted Password: 234abc56
User Number: 9999
Group Number: 13
Other Information: John Johnson
Home Directory: /home/dir/john
Shell: /bin/john
If the password file does not show up under one of the above two commands, then it is probably shadowed.
The following definition of password shadowing was taken from the alt.2600 hack f**:
"Password shadowing is a security system where the encrypted password field is replaced with a special token and the encrypted password is stored in a seperate file which is not readable by normal system users."
If the password file is shadowed, you can find it in one of the following places, depending on the type of UNIX you are using:
UNIX System Type: Path: Token:
AIX 3 /etc/security/passwd !
or /tcb/auth/files/<first letter of #
username>/<username>
A/UX 3.Os /tcb/files/auth/*
BSD4.3-Reno /etc/master.passwd *
ConvexOS 10 /etc/shadpw *
Convex0S 11 /etc/shadow *
DG/UX /etc/tcb/aa/user *
EP/IX /etc/shadow x
HP-UX /.secure/etc/passwd *
"
IRIX 5 /etc/shadow x
Linux 1.1 /etc/shadow *
OSF/1 /etc/passwd[.dir|.pag] *
SCO UNIX #.2.x /tcb/auth/files/<first letter of *
username>/<username>
SunOS 4.1+c2 /etc/security/passwd.adjunct ##
SunOS 5.0 /etc/shadow
System V 4.0 /etc/shadow x
System V 4.2 /etc/security/* database
Ultrix 4 /etc/auth[.dir|.pag] *
UNICOS /etc/udb *
Some passwords can only be used for a certain amount of time without having to be changed, this is called password aging. In the password file example below, the "C.a4" is the password aging data:
bob:123456,C.a4:6348:45:Bob Wilson:/home/dir/bob:/bin/bob
The characters in the password aging data stand for the following:
1. Maximum number of weeks a password can be used without changing.
2. Minimum number of weeks a password must be used before being changed.
3&4. Last time password was changed, in number of weeks since 1970.
The password aging data can be decoded using the chart below:
Character: Number:
. 0
/ 1
0 2
1 3
2 4
3 5
4 6
5 7
6 8
7 9
8 10
9 11
A 12
B 13
C 14
D 15
E 16
F 17
G 18
H 19
I 20
J 21
K 22
L 23
M 24
N 25
O 26
P 27
Q 28
R 29
S 30
T 31
U 32
V 33
W 34
X 35
Y 36
Z 37
a 38
b 39
c 40
d 41
e 42
f 43
g 44
h 45
i 46
j 47
k 48
l 49
m 50
n 51
o 52
p 53
q 54
r 55
s 56
t 57
u 58
v 59
w 60
x 61
y 62
z 63
Simdi dikkatli bir sekilde hack ediniz , basarilar.
1
Basliklar:
Hacking nedir?
Neden hacking?
Hacking temel kurallari nelerdir?
Hacking nedir?
Kisaca hacking bir bilgisayar sisteminin nasil çalistigini ögrenip , zayif yanlarindan yararlanip sisteme girmektir. Hacking illegaldir. Çünkü bizler girdigimiz bilgisayar sisteminden bedava access , data , dosya aliyoruz. Kimsenin izni olmadan yaptigimiz için hirsizlik kelimesinide kullanabilirsiniz. Genelde hackerler huzursuz olduklari web sitelerini kirarlar. Aslinda karsi bilgisayara zarar vermediginiz sürece hackerligin hiçbir kötü yani yoktur. Bedava access kim istemez ki? Önemli olan bu isi yakalanmadan basarabilmektir.
Neden hacking?
Yukarida belirtildigi gibi bedava acces en önemli nedendir. Bunun yaninda tekelci web siteleride hackerlerin gazabina ugrarlar. Hackerilk dünyadaki en güzel meslektir. Hackerlik yapmak için önce iyi bir port scanner saglamalisiniz. Portlar sitelerin ( evlerin ) kapilari gibidir. Bir bosluk bulup girdiniz mi is bitmistir , ev sizindir. Görüldügü gibi hack edilen web sitesini reklam etmek sakincalidir. Bazi kullanicilar girdikleri sitelere zarar verirler ( bunlar er , geç yakalanir ). Zarar verdikleri için agir yaptirimlara maruz kalirlar . Aslinda site hack edecekseniz asla siteye zarar vermeyiniz. Yakalanirsaniz sürünürsünüz. Çünkü inanin ... i islemleri yapmak için insanlar sabahlamistir.
Hacking kurallari:
Hacking 10 altin kuralini bilmek zorundasiniz
1 - Asla hiçbir sisteme zarar vermeyiniz , alacaginizi alip çikiniz. Bu inanin basiniza sorun çikaracaktir.
2 - Hiçbir sistem dosyasiyla oynamayiniz , hiçbir sistem dosyasina dokunmayiniz. Eger tesipt edilirse bir daha o siteye giremeyebilirsiniz.
3 - Hiçbir hacking projenizi baskasiyla paylasmayiniz.
4 - Kimsenin gerçek ismini , telefon numarasini kullanmayiniz.
5 - Asla sonu ".gov" olan siteleri hack etmeye çalismayiniz, geleceginiz pek parlak olmayabilir.
6 - Site kirmadan önce üstünüze rahat birseyler giyiniz .
7 - Telefonda asla hack projelerinizden bahsetmeyiniz.
8 - Rahat olunuz , kafaniza hiçbirsey takmayiniz.
9 - Kibirli olunuz . Yaptiklarinizi tekrar tekrar gözden geçiriniz.
10 - Bütün dosyalarinizi güvenli bir server araciligiyla saklayiniz.
Gerçek hacker olmak için hack etmek zorundasiniz. Bütün gün .txt okumakla hacker olumnaz.
BASLANGIÇ
Yukarida o kadar bilgi verdikten sonra temel konuya gelelim. Hack etmek istiyorsunuz. Nelere ihtiyaciniz oldugunu bilmiyorsunuz ama:
1- pkzip , winzip v.s gibi .zip file açabilen program ihtiyaciniz olacaktir
2- wardialer , port-scan gibi programlar mutlaka gerekecektir.
Burda genllikle çok kullanilan username , user-ID siralamasini bulabilirsiniz:
Password:
aaa
academia
ada
adrian
aerobics
airplane
albany
albatross
albert
alex
alexander
algebra
alias
alisa
alpha
alphabet
ama
amy
analog
anchor
andy
andrea
animal
answer
anything
arrow
arthur
ass
asshole
athena
atmosphere
bacchus
badass
bailey
banana
bandit
banks
bass
batman
beautiful
beauty
beaver
daniel
danny
dave
deb
debbie
deborah
december
desire
desperate
develop
diet
digital
discovery
disney
dog
drought
duncan
easy
eatme
edges
edwin
egghead
eileen
einstein
elephant
elizabeth
ellen
emerald
engine
engineer
enterprise
enzyme
euclid
evelyn
extension
fairway
felicia
fender
finite
format
god
hello
idiot
jester
john
johnny
joseph
joshua
judith
juggle
julia
kathleen
kermit
kernel
knight
lambda
larry
lazarus
lee
leroy
lewis
light
lisa
louis
love
lynne
mac
macintosh
mack
maggot
magic
malcolm
mark
markus
martin
marty
marvin
matt
master
maurice
maximum
merlin
mets
michael
michelle
mike
minimum
nicki
nicole
rascal
really
rebecca
remote
rick
reagan
robot
robotics
rolex
ronald
rose
rosebud
rosemary
roses
ruben
rules
ruth
sal
saxon
scheme
scott
secret
sensor
serenity
sex
shark
sharon
shit
shiva
shuttle
simon
simple
singer
single
singing
smile
smooch
smother
snatch
snoopy
soap
socrates
spit
spring
subway
success
summer
super
support
surfer
suzanne
tangerine
tape
target
taylor
telephone
temptation
tiger
tigger
toggle
tomato
toyota
trivial
unhappy
unicorn
unknown
urchin
utility
vicki
virgin
virginia
warren
water
weenie
whatnot
whitney
will
william
winston
willie
wizard
wonbat
yosemite
zap
Yukarida telnet yaparken en çok kulrlanilan username listesi verilmektedir. Asagidaki uniX hack bilgileri ingilizce olarak verilmistir. UniX sistemleri hac edebilmek için ingilizce bilgi sarttir.
. Basic UNIX hacking
UNIX is probably the most commonly used operating system on Telenet, and is the easiest to hack since it doesn't record bad login attempts. You know you've found a UNIX system when it gives you a "Login" prompt, and then a "Password" prompt. To get in you should first try the default logins.(Listed below.) If these don't work try some of the passwords listed in Section M. If these don't work try to find backdoors. These are passwords that may have been put in to allow the programmer (or someone else who could be in a position to make a backdoor) to get access into the system. These are usually not known about by anyone but the individual who made it. Try doing some research on the programmer and other people who helped to make the system. And, if these don't work, just try guessing them. The Login (usually the account holders name) has 1-8 characters and the Password is 6-8 characters. Both can be either letters or numbers, or a combination of the two.
Once you get in, you should get a "$" prompt, or some other special character like it. You should only use lower case letters when hacking UNIX, this seems to be standard format. If you type "man [command]" at the prompt, it should list all of the commands for that system. Anyway, here are the default Logins and Passwords:
Login: Password:
root root
root system
sys sys
sys system
daemon daemon
uucp uucp
tty tty
test test
unix unix
unix test
bin bin
adm adm
adm admin
admin adm
admin admin
sysman sysman
sysman sys
sysman system
sysadmin sysadmin
sysadmin sys
sysadmin system
sysadmin admin
sysadmin adm
who who
learn learn
uuhost uuhost
guest guest
host host
nuucp nuucp
rje rje
games games
games player
sysop sysop
root sysop
demo demo
Once you are in, the first thing that you need to do is save the password file to your hard drive or to a disk. The password file contains the Logins and Passwords. The passwords are encoded. To get the UNIX password file, depending on what type of UNIX you are in, you can type one of the following things:
/etc/passwd
or
cat /etc/passwd
The first one is the standard command, but there are other commands as well, like the second one. Once you get the password file, it should look like this:
john:234abc56:9999:13:John Johnson:/home/dir/john:/bin/john
Broken down, this is what the above password file states:
Username: john
Encrypted Password: 234abc56
User Number: 9999
Group Number: 13
Other Information: John Johnson
Home Directory: /home/dir/john
Shell: /bin/john
If the password file does not show up under one of the above two commands, then it is probably shadowed.
The following definition of password shadowing was taken from the alt.2600 hack f**:
"Password shadowing is a security system where the encrypted password field is replaced with a special token and the encrypted password is stored in a seperate file which is not readable by normal system users."
If the password file is shadowed, you can find it in one of the following places, depending on the type of UNIX you are using:
UNIX System Type: Path: Token:
AIX 3 /etc/security/passwd !
or /tcb/auth/files/<first letter of #
username>/<username>
A/UX 3.Os /tcb/files/auth/*
BSD4.3-Reno /etc/master.passwd *
ConvexOS 10 /etc/shadpw *
Convex0S 11 /etc/shadow *
DG/UX /etc/tcb/aa/user *
EP/IX /etc/shadow x
HP-UX /.secure/etc/passwd *
"
IRIX 5 /etc/shadow x
Linux 1.1 /etc/shadow *
OSF/1 /etc/passwd[.dir|.pag] *
SCO UNIX #.2.x /tcb/auth/files/<first letter of *
username>/<username>
SunOS 4.1+c2 /etc/security/passwd.adjunct ##
SunOS 5.0 /etc/shadow
System V 4.0 /etc/shadow x
System V 4.2 /etc/security/* database
Ultrix 4 /etc/auth[.dir|.pag] *
UNICOS /etc/udb *
Some passwords can only be used for a certain amount of time without having to be changed, this is called password aging. In the password file example below, the "C.a4" is the password aging data:
bob:123456,C.a4:6348:45:Bob Wilson:/home/dir/bob:/bin/bob
The characters in the password aging data stand for the following:
1. Maximum number of weeks a password can be used without changing.
2. Minimum number of weeks a password must be used before being changed.
3&4. Last time password was changed, in number of weeks since 1970.
The password aging data can be decoded using the chart below:
Character: Number:
. 0
/ 1
0 2
1 3
2 4
3 5
4 6
5 7
6 8
7 9
8 10
9 11
A 12
B 13
C 14
D 15
E 16
F 17
G 18
H 19
I 20
J 21
K 22
L 23
M 24
N 25
O 26
P 27
Q 28
R 29
S 30
T 31
U 32
V 33
W 34
X 35
Y 36
Z 37
a 38
b 39
c 40
d 41
e 42
f 43
g 44
h 45
i 46
j 47
k 48
l 49
m 50
n 51
o 52
p 53
q 54
r 55
s 56
t 57
u 58
v 59
w 60
x 61
y 62
z 63
Simdi dikkatli bir sekilde hack ediniz , basarilar.
1