Search Results - hack the mind

Topic: Cisco Unity (Cisco's voicemail system for VoIP): rk and I saw a Cisco VoIP 7912 Phone... needless to say, the wheels started turning. I realized its been quite some time since I've been publicly involved with the hack/phreak scene. As always, this is for educational purposes only... use this info at your own risk! What IS Cisco Unity? Cisco's definition is, "Cisco Unity is a Windows 2000-based communications solution that brings you voice mail and unified messaging, and integrates them with the desktop applications you use every day." In other words, it's an information goldmine. It gives the phreak-, uh, "user" the power to check his or her voicemail, e-mail, and fax from a telephone, computer, or the Internet (<--- thats the best part!). Users change their personal settings locally or remotely using the web-based Cisco Unity Assistant, and they can access the Assistant in the following format in a web browser: http:///ciscopca . Users can also check their messages and modify personal settings via telephone, by dialing either an internal (if your within the oganization... duh) or an external telephone number (<--- the one you will probably use). Included in this text are some basic commands to use when calling a Cisco Unity system. Finding a Cisco Unity system is just luck of the draw (unless you do some research on a target and know they have Unity), so the only thing you can do is scan for them... old skool style. The "r00t" of Cisco Unity: Gaining administrative privelages on any phone system is either really easy, or really difficult. Cisco Unity Administrator is god on a Unity system. It's a web-based tool, used by system administrators, to modify, create, and delete subscriber accounts... as well as perform various other types of account management such as recording greetings, running reports, and changing classes of service. To access the Cisco Unity Administrator remotely, the default url is "http:///web/sa". By default, Cisco Unity is configured to authenticate the user through NTLM by Windows user credentials (it can also be configured to use Anonymous authentication). NTLM is a little more secure, because when a user enters credentials under anonymous authentication, the user/pass is sent across the network in plain text, unless its configured to use SSL. Most likely the system will be using NTLM, and a password for Windows should be pretty easy to get your hands on. The user also has to be part of a trusted domain in order to gain access to the administrator, so keep that in mind when your looking for user/pass pairs. Once you get into Cisco Unity Administrator.... j00 bring teh phj33r. Getting Accounts: Getting regular level accounts on a Cisco Unity system is the same thing as any other voicemail system... by either sheer ignorance by users, or luck. However, like with any voicemail system there are a few things that will help out. Cisco Unity mailbox numbers are 4 digits long, and are usually the last 4 digits of the phone number (wow, what a concept). The password, by default is 12345 (how creative!). To login to an account, hit * then enter in user id and hit #, then the password. If its a new account, it will ask you to record your name and set a new password. Sometimes it might be a little tricky to identify a Unity system, because it can be setup to use a customized greeting. However, if you hit * to login, it should be a females voice saying "Please enter your ID, followed by pound." Outro: This was a quick overview of the Cisco Unity system. There is ALOT to learn about this system and is worth looking into. I guess this kinda brings breaking into VMB's and such to a new level, since its VoIP and its rich in features. I'm gonna start a database of Cisco Unity systems in my area, and you should do the same HOE! Here are a few links that should help you out: Cisco Unity Administration Manual (PDF): http://www.cisco.com/application/pdf/en/us/guest/products/ps4608/c2001/ccmigration_09186a00801ba750.pdf Cisco Unity Voicemail Commands http://www.csuci.edu/its/documents/Cisco_Unity_Voice_Mail_Commands.pdf Cisco Unity Phone Menus and Shortcuts http://www.cisco.com/univercd/cc/td/doc/product/voice/c_unity/unity40/wlt/wlt403/wlt403s.pdf Cisco Unity User Guide http://www.urbana.edu/computer_ops/User%20Guide.pdf Take it easy, hope this info gave you some motivation to go out and find some of these cool voicemail boxes. Feel free to send any questions/comments to me at bagel04@gmail.com... of yeah gmail rules so get an account there. Peace. Shoutz to Guy_SJS, Bizurke, Agent5, ic0n, chris, jdag, GameZ…; Added by Paulhammer at 6:40pm on December 13, 2008

Page: Access Granted " Chapter 6 ": ACCESS GRANTED Quite often I hear comments like “so what if they hack into my system there’s nothing on my system of interest.” I can’t tell you how more wrong you can be. The only thing I can think o; Added by MegaHackers.com at 2:42pm on October 16, 2007

Page: Customizing the Logon Screen: Working with the Welcome screen The Welcome screen is one of the most versatile parts of the whole operating system. It is possible to customize the heck out of this screen. You can completely change; Added by MegaHackers.com at 6:12pm on November 22, 2007

Topic: null_script's guide to Wwin32 API: refer to all versions from Windows 95 A to Windows CE to Windows .NET Server. This Guide is about Windows API and programming for the windows environment. Even if you are not interested in programming, you will learn how the real engine below the hood works. This can help you to understand the nity gritty of your OS. I will try to keep it as simple as possible. N.B -- One can many use programming languages to code API stuff. C/C++, VC ++, VB, DELPHI, JAVA, VJ++ and even PERL and many others. I personally prefer VB, but I do use VC++ for very hardcore stuff or for which there is no method in VB. The learning curve in VB is a lot less then VC and it can do almost all Win32 API stuff. I only talk abt VC++ and VB as a tool, but u can use any u like. 1. What is heck is API? 2. The Windows Working Model a. Win9x b. Win NT/.NET 3. Types of API's in Windows 4. Windows 9x and Windows NT - two different Win32 APIs 5. What is the need for API? 7. Conclusion 1. What is heck is API? Simply put Application Programming Interface or API for short is the programming interface that is used to programmatically control the Windows O.S. More specifically, the Win32 API consists of a collection of function and subroutines, supplied in a handful of Dynamic Link Libraries (DLLs), that provide programmatic access too the features of the O.S. This is similar to the various modules/headers/source and c/c++/gcc complier files provided by a LINUX kernel. 2. The Windows Working Model As most readers must be aware that broadly speaking the Windows O.S is divided into two types of flavors. Windows 9x and Windows NT (Also the Windows 3.x now obsolete, if u still use it stop reading!). What many ppl do not know that these names actually refer to the underling engine that powers their O.S. a. Win9x When we say 9x we are referring to Win 95 -- till -- Windows ME. These are O.S made by MS to run on desktop PC's and stand alone systems. They do have networking ability but cannot handle high volume networks. It uses a complex mix of 16 bit (a.k.a D.O.S, Vxd,16 bit com/exe/dll's) and 32 bit code (32 bit com/exe/dll's,WDM's will not run in pure D.O.S) to do it's memory management, process marshelling,multitasking,I/O, Interrupts handling etc. It is just like a car using manual transmission, old engine (16 bit) but Nitro Charged Fuel (32 bit) to run. :) b. Win NT/.NET While NT refers to a much stable line of windows Win NT 3.0 -- till -- Windows .NET Server. These are N.O.S made by MS to run on Servers and networked PC's. They have networking ability from ground up, can handle high volume networks and have most to all the features of a good N.O.S. from version to version. Supports high end features like support for Multi-processors, large RAM, RAID volumes, scalability and cutting edge networking and routing methods. It uses a very complex mix of 32 bit code (32 bit com/exe/dll's,WDM's will not run in pure D.O.S) to do its memory management, process marshalling, preemptive multitasking, I/O, Interrupts handling etc. In fact there is no pure D.O.S. All the function of D.O.S are emulated by a 32 bit Command.com and it's more powerful counter part Cmd.exe It is just like a car using automatic transmission, powerful turbo charged engine and Nitro Charged Fuel to run. ;) It also has a sub-system to run legacy 16 bit application in emulated mode. For D.O.S and POSIX systems compliant binaries. But support for this will soon be gone. As this is no longer needed. MS has also announced that Windows NT line will be the choice for all further Windows versions to come. This is a good thing as who would not like to have a faster and stable car ;). If u use windows as your primary O.S then move on to the NT model as soon as possible. The only reason u would not want to do this is when u r stuck some legacy app that u must use or using a low end system. If it is so then u must read my "Guide to tweaking windows" part 1 and 2. 3. Types of API's in Windows As said before API is a programming interface. All major programs in windows have their own API. For example I. E has its own API which helps developers to code add-ons and more functions into I.E without re-coding Internet Explorer itself !. Another good example could be Direct-X 8/9 which essentially provides developers a platform to code massive multiplayer games with all kind of fancy lights/effects and rich colors. Or a media player which is fast and easy to use and also uses the power of a system to its best use. All this too without re - inventing the wheel. The API I refer all along in this guide is Win32 which is an programming interface to the Windows O.S itself. There is also a Win16 API which deals with the 16 bit system discussed before. When MS released NT, It also released a subset of Win32 API known as Win32s. Win32s was designed to give the developer the ability to create a Win32 app that would run on Win NT and Windows 3.x. The problem with Win32s was that it could not make up for the deficiencies in the underlying O.S. It sort of got stuck in the middle and was limited in there support for Win32 features such as multithreading. MS has quit supporting Win32s now that Windows 3.x is basically gone. This leads to a question . Will the introduction of 64 bit version of Windows .NET will Win32 head the same way ? Let's wait and see. :) 4. Windows 9x and Windows NT - two different Win32 APIs Anyone who has worked with both win9x and Win NT knows that these are quit different O.S. They have very similar interfaces, but they are quit different underneath the surface. Aside from fact like security vices and symmetric multiprocessing, the most two significant difference from the API programmer's view is that win9x does not support Unicode character set, and it does not protect its own memory from errant applications. As a result Win9x is far less stable than Win NT. Strangely, Win 9x does protect each apps memory from access by other applications, but it does not protect its own memory from access by an application. therefore an errant prog cannot corrupt another program, it can corrupt the O.S itself, causing and system-wide crash ! (LOL) 5. What is the need for API ? generally speaking, API takes the form of a collection of functions that provide application's services. The win32 API is no exception. The Win32 API has the following advantages. -- True multithreaded applications (true preemptive multitasking on 9x and NT) -- 32 bit linear memory (all memory pointers are based on the application's virtual address and are represented as a 32-bit integer) -- No Memory model (The memory models small, medium ,large and so on have no meaning in the 32 bit environment. this means there is no need for near and far pointers, as all pointers can be thought of as far) -- Common API for all Platforms (The Win32 API is supported on Win 9x, Win NT, Win CE and the Apple Macintosh) The Win32 API contains well over 2,000 functions performing all sorts of O.S services. The core API divides into three sections: KERNEL All the low level kernel services GDI Graphics Device Interface: drawing and printing USER User Interface controls, windows and messaging services Each is pretty much built on top of the other. In Windows 95 the services are provided by three DLLs -USER32, KERNEL32 and GDI32, which either implement the calls or pass them down to their 16 bit predecessors. In Windows NT many of the services are implemented in Kernel Mode and various forms of inter-process communication are used to manage this. 7. Conclusion Why should I port my code to 32 bits? When starting out coding a new program, it is far easier to write a pure 32 bit app than old 16 bit programs -even if you used to use the large model. For working 16 bit apps there are a lot of benefits to be gained by porting to 32 bits:- To get the much coveted Designed for Windows logo . To improve programmer productivity through state of the art development tools and a better API. To take advantage of the new APIs and more stable execution environment. To work with long file names. [NB: some workarounds here for MSDOS/win16 applications] To multitask properly, and be more robust. To hack up the fastest code possible. To stop appearing like an old-fashioned program. To escape many of the 64k limits of 16 bit programs. To have a program which runs well on modern CPUs and under Windows NT So your code has a future, and an easily maintainable one at that. Why shouldn't I port my code to 32 bits? You've lost the source You depend on a third party DLL or VBX for which there is no 32 bit equivalent. Partial fix: thunking You don't need any of the new API features and UI improvements. Your users will not gain much from improved multitasking or mind suffering on a modern CPU. You need to support "legacy" Windows 3.x systems. This is a list of shipping products which can be used to generate Win32 code. Visual C++/Visual Studio Visual Basic Borland/Inprise Delphi Borland/Inprise C++ and C++ builder Metrowerks CodeWarrior Intel VTune lcc-win32 Assemblers Microsoft Visual J++ Gnu for Win 32 Perl for Win32 C# A Web Server Other Tools: A Database Pencil and paper Books The C and C++ compilers are probably the currently most popular compilers of these languages in the Win32 community. They are also invariably the first compilers to support new OS developments from Microsoft. Compilation speed and generated code performance are usually adequate, debugging facilities excellent once you get the hang of them. Hardcore and low level Windows hacking can only be done in VC++, as most of the code in the DLL's is/was written in C++/VC++. :( Although through VB many Win32 API calls can be made, you need to cut and paste in every function declaration prior to usage. Some data structures and programming paradigms do not translate easily to the VB world. Visual Basic is a very fast way of getting an application up and running -and the built in setup kit is pretty good for distributing programs. In particular it's very good at seamless OLE Automation and ActiveX integration -much better than Visual C++. This -and the fact that cut down versions come with MS Office programs means it is worth learning and using in the 'appropriate' parts of any major programming project. For example, it can be used to integrate your compiler, source code and project management tools with relative ease. In terms of popularity, Visual Basic is probably the most widely used language on the planet, It's good for quick and dirty development, database integration and the development of usable front ends. For low level Windows hacking, it is not the tool of choice -unless backed up by DLLs, OCXs or even device drivers. :( Intel VTune This is an add on compiler and profiler for Visual Studio. Its key features are C++ and Fortran compiler that knows about Pentium III floating point registers and can generate code which makes use of them. Other compiler switches to do RISC-style aggressive optimization techniques such as loop unrolling and conditional moves instead of branching. A very good graphical code profiler. Metrowerks CodeWarrior Mac programmers will know and love this product, which has long been the definitive development tool for "the other platform". Borland/Inprise Delphi Delphi combines the Pascal programming language with a GUI focused on RAD -both database and low level programs are possible in this IDE. Like VB, it can be a fast development tool in the hands of a moderately experienced user, and there is enough of a developer community to ensure that support for new OS technologies -DirectX, IE Common Controls- comes out relatively rapidly. Perl is a great language for Win32 scripting, as it can interoperate with COM objects, and it may actually be possible to implement COM objects in Perl. Perl scripts can be cross platform (handy), and because PERL is rarer than Vbscript or Javascritpt, nobody has got around to doing a PERL email worm/virus for windows yet. That means that while .vbs and .js file extensions can be remapped to notepad for safety, the .pl PERL extension can stay bound to the execution engine. Perl is a very common language for web site development, with reasonable database access (better than OLE DB). The .net runtime will execute PERL too. So it is a worthwhile accessory in a development box, even if you could not write a Win32 GUI app in it. Pencil and paper Great for UI design, application architecture design and note taking. Best backed up with a filing system and a routine of reviewing past notes to question documented design decisions. So what is the bottom line? There are no silver bullets in software engineering. Despite what the advertisements will tell you about application development at a click of a button, Windows programming requires skill, knowledge and hard work. Debug facilities and customer support can be as important as compilation speed or syntax highlighting. By now u must be ready to get your hand wet with Win32 API, so get your fav compiler started and "Hack into the Light" :) null_script…; Added by Paulhammer at 11:44am on March 25, 2008

Topic: Cisco Unity (Cisco's voicemail system for VoIP): I've been publicly involved with the hack/phreak scene. As always, this is for educational purposes only... use this info at your own risk! What IS Cisco Unity? Cisco's definition is, "Cisco Unity is a Windows 2000-based communications solution that brings you voice mail and unified messaging, and integrates them with the desktop applications you use every day." In other words, it's an information goldmine. It gives the phreak-, uh, "user" the power to check his or her voicemail, e-mail, and fax from a telephone, computer, or the Internet (<--- thats the best part!). Users change their personal settings locally or remotely using the web-based Cisco Unity Assistant, and they can access the Assistant in the following format in a web browser: http:///ciscopca . Users can also check their messages and modify personal settings via telephone, by dialing either an internal (if your within the oganization... duh) or an external telephone number (<--- the one you will probably use). Included in this text are some basic commands to use when calling a Cisco Unity system. Finding a Cisco Unity system is just luck of the draw (unless you do some research on a target and know they have Unity), so the only thing you can do is scan for them... old skool style. The "r00t" of Cisco Unity: Gaining administrative privelages on any phone system is either really easy, or really difficult. Cisco Unity Administrator is god on a Unity system. It's a web-based tool, used by system administrators, to modify, create, and delete subscriber accounts... as well as perform various other types of account management such as recording greetings, running reports, and changing classes of service. To access the Cisco Unity Administrator remotely, the default url is "http:///web/sa". By default, Cisco Unity is configured to authenticate the user through NTLM by Windows user credentials (it can also be configured to use Anonymous authentication). NTLM is a little more secure, because when a user enters credentials under anonymous authentication, the user/pass is sent across the network in plain text, unless its configured to use SSL. Most likely the system will be using NTLM, and a password for Windows should be pretty easy to get your hands on. The user also has to be part of a trusted domain in order to gain access to the administrator, so keep that in mind when your looking for user/pass pairs. Once you get into Cisco Unity Administrator.... j00 bring teh phj33r. Getting Accounts: Getting regular level accounts on a Cisco Unity system is the same thing as any other voicemail system... by either sheer ignorance by users, or luck. However, like with any voicemail system there are a few things that will help out. Cisco Unity mailbox numbers are 4 digits long, and are usually the last 4 digits of the phone number (wow, what a concept). The password, by default is 12345 (how creative!). To login to an account, hit * then enter in user id and hit #, then the password. If its a new account, it will ask you to record your name and set a new password. Sometimes it might be a little tricky to identify a Unity system, because it can be setup to use a customized greeting. However, if you hit * to login, it should be a females voice saying "Please enter your ID, followed by pound." Outro: This was a quick overview of the Cisco Unity system. There is ALOT to learn about this system and is worth looking into. I guess this kinda brings breaking into VMB's and such to a new level, since its VoIP and its rich in features. I'm gonna start a database of Cisco Unity systems in my area, and you should do the same HOE! Here are a few links that should help you out: Cisco Unity Administration Manual (PDF): http://www.cisco.com/application/pdf/en/us/guest/products/ps4608/c2001/ccmigration_09186a00801ba750.pdf Cisco Unity Voicemail Commands http://www.csuci.edu/its/documents/Cisco_Unity_Voice_Mail_Commands.pdf Cisco Unity Phone Menus and Shortcuts http://www.cisco.com/univercd/cc/td/doc/product/voice/c_unity/unity40/wlt/wlt403/wlt403s.pdf Cisco Unity User Guide http://www.urbana.edu/computer_ops/User%20Guide.pdf Take it easy, hope this info gave you some motivation to go out and find some of these cool voicemail boxes. Feel free to send any questions/comments to me at bagel04@gmail.com... of yeah gmail rules so get an account there. Peace. Shoutz to Guy_SJS, Bizurke, Agent5, ic0n, chris, jdag, GameZ…; Added by Paulhammer at 3:43pm on February 26, 2008

Page: Method Of Cracking e-mail: One of the most successful method is achieved with the used of k*ylo**ers and s** software. There are lots of s*y*are, lo**ing tools available today such as 007, RemoteSpy, Netvizor, Email Spy, Chat S; Added by MegaHackers.com at 4:14pm on October 9, 2007

Comment for: Rajat: mail. hoping to hear from you.…; Added by Osbalt at 2:37am on August 2, 2008

Comment for: SaChINpEtErJaMeS: ear from you soonest.…; Added by Bona Mbah at 7:51pm on May 30, 2009

Topic: hacking linka: rmany created one of the most robust Hacker Challenge sites. (3153 hits) Cryptoanalysis Challenges - Every year tehere is the competition in cryptoanalysis. You have to break secure messages and you can win prizes. (Czech only) (1236 hits) Dare Your Mind - Hacker-Challenge - Enter the game to entertain your mind and progress in the computer security on H-C! There are more than 100 fresh challenges for you! So, join us and dare your mind! (141 hits) Encryption Challenge - Encrypt the coded message given in red characters at the bottom of the index page. (2950 hits) EscuelaHacker - In Spanish. English under construction (279 hits) FATE - Downloadable hacking challenge that features a cool story line and realistic hacking missions. Also 40 training/tutorials available on everything from basic unix exploits to lock picking. (7461 hits) Hack This Site - Great site with encryption and SQL challenges. (5035 hits) Hacker-Challenge - Enter the game to entertain your mind and progress in the computer security on H-C! There are more than 100 fresh challenges for you! So, join us and dare your mind! Thireus. (1083 hits) hackergames.net - Lots of links to other hacking challenges! (21254 hits) Hackits - 2 Challenges with 8 and 9 Levels, Ranking, Avatar and Scoresystem. (3297 hits) HackQuest - a nice hack challenge for beginners and intermediates. Try your skills without getting thrown in jail. (18139 hits) HellBoundHackers - Masses of Hacking Challenges in different Sections. JavaScript, Basic & Realistic Hacking, Cracking,Rooting (1358 hits) IHackedThisBox.com Hacker Challenges - You will be able to participate in a series of online internet security challenges designed to test your skills in various fields of security. IHackedThisBox hacker/security challenges are always under construction, and is updated frequently (1440 hits) intruded - Offers wargames: Shell, Webb and crypto A great site! (592 hits) Learn To Hack - This site consists of hacking challenges (wargames), and crypto challenges. A forum is available for hints/help. (18854 hits) Mod-X Security Challenge - A site to test your abilities and general IT knowledge. You will have to pass a basic test before you can use the site. (538 hits) Pulltheplug.org - Has wargames of diffrent levels to challenge you. (1386 hits) The CrackMe Site - It Conatins Large Volume Of CrackMes. Crackmes are the programs created by crackers to test skills of fellow crackers. (1169 hits) Try2Hack - A basic security challange. (10987 hits) TT0 hack challenges - Pretty new site with interesting challenges. Some are very easy but some can take days for You to break :) (2327 hits) Uplink. High tech computer crime and industrial espionage on the Internet of 2010. - You play an Uplink Agent who makes a living by performing jobs for major corporations. Your tasks involve hacking into rival computer systems, stealing research data, sabotaging other companies, laundering money, erasing evidence, or framing innocent people. You use the money you earn to upgrade your computer systems, and to buy new software and tools. As your experience level increases you find more dangerous and profitable missions become available. You can speculate on a fully working stock market (and even influence its outcome). You can modify peoples academic or criminal records. You can divert money from bank transfers into your own accounts. You can even take part in the construction of the most deadly computer virus ever designed. (1441 hits) Virtual Security - Virtual Security, the place to learn about computer security. We provide many kinds of security, logical and other related IT (Information Technology) subjects challenges. With us, you will learn step by step, how computers work, how to secure code and how to program. (135 hits) War Industries - Hacking challenges and some tutorials. (5807 hits)…; Added by Paulhammer at 10:50am on October 12, 2007

Comment for: HAKER12466: please i need to hak a website ive tried my best but i dont mind if you can tutor me or help me hack it thanks pls reply asap; Added by jerry john at 12:49pm on September 12, 2009