How to Hack

from wikiHow – The How to Manual That You Can Edit
Hacking can be difficult and there are many different ways to hack and many different exploits to use. Hacking is neither defined nor limited by exploitation or exploration. Hacking into someone else’s system may be illegal, so don’t do it unless you are sure you have permission from the owner of the system you are trying to hack. Hacking was primarily used for learning new things about systems and computing in general, ‘in the good ol’ days’. In recent years it has taken dark connotations and in general has been looked down upon. Likewise, many corporations now employ “hackers” to test the strengths and weaknesses of their own systems. These hackers know when to stop, and it is the positive trust they have built that earn them large salaries. There is a major difference between a hacker and a cracker. A cracker is motivated by malicious reasons; a hacker is attempting to gain knowledge through exploration.

Steps

1. Learn a programming language. C++ is very useful, although difficult to learn. Python is much easier to learn, although less flexible. In order to break into web systems, learning server side languages such as PHP will help you immensely. Perl is also a very useful language to learn, as it can be used in many situations, and once you are familiar with the syntax (which is similar to that of C), you will be able to create Perl scripts very quickly.
2. Use a *nix terminal for commands. Cygwin will help emulate this for Windows users. DOS is more limiting than a *nix terminal. The tools in this article can be found for Windows based machines. Nmap particularly, uses WinPCap to run on Windows and does not require Cygwin. However, Nmap works poorly on Windows systems due to the lack of raw sockets. You should also consider using Linux or BSD, which are both more flexible, more reliable, and more secure. Most Linux distributions come with many useful tools pre-installed.
3. Try securing your machine first. Make sure you fully understood all common techniques, including the way to protect yourself.
4. Know your target. The process of gathering information about your target is known as ‘enumeration’. Can you reach the remote system? You can use the ping utility (which is included in most operating systems) to see if the target is ‘alive’, however, you can not always trust the results of the ping utility, as it relies on the ICMP protocol, which can be easily shut off by paranoid system administrators.
5. Determine the operating system (OS). This is important because how can you gain access to a system if you don’t know what the system is? This step involves running a scan of the ports. Try pOf, or nmap to run a port scan. This will show you the ports that are open on the machine, the OS, and can even tell you what type of firewall or router they are using so you can plan a course of action. You can activate OS detection in nmap by using the -O switch.
6. Find some path or open port in the system. Common ports such as FTP (21) and HTTP (80) are often well protected, and possibly only vulnerable to exploits yet to be discovered. Try other TCP and UDP ports that may have been forgotten, such as Telnet and various UDP ports left open for LAN gaming. An open port 22 is usually evidence of an SSH (secure shell) service running on the target, which can sometimes be bruteforced.
7. Crack the password or authentication process. There are several methods for cracking a password, including brute force. Using brute force on a password is an effort to try every possible password contained within a pre-defined dictionary of brute force software. Users are often discouraged from using weak passwords, so brute force may take a lot of time. You may try using Rainbow Tables for fastest password cracking. Notice that password cracking is good technique only if you already got the hash of password. Trying every possible password while logging to remote machine is not good idea, as it’s easily detected by intrusion detection systems, pollute system logs and may take years to complete. Actually it’s often much easier to find other way into system, than cracking password.
8. Get super user (root) privileges. Try to get root privileges if targeting a *nix machine, or administrator privileges if taking Windows systems. Most information that will be of vital interest is protected and you need a certain level of authentication to get it. To see all the files on a computer you need super user privileges. This is a user account that is given the same privileges as the “root” user in Linux and BSD operating systems. For routers this is the “admin” account by default (unless it has been changed), for Windows, this is the Administrator account, etc. Just because you have gained access to a connection doesn’t mean you can access everything. Only a super user, the administrator account, or the root account can do this.
9. Use various tricks. Often to gain super user status you have use tactics such as creating a “buffer overflow”, which is basically causing the memory to dump and allowing you to inject a code or perform a task at a higher level then you’re normally authorized. In unix-like systems this will happen if the bugged software has setuid bit set, so program will be executed as different user (superuser for example). Only writing or finding an insecure program that you can execute on their machine will allow you to do this.
10. Create a backdoor. Once you have gained full control over a machine, it’s best to make sure you can come back again. This can be done by ‘backdooring’ an important system service, such as the SSH server. However your backdoor may be removed upon the next system upgrade – really experienced hackers would backdoor the compiler itself, so every compiled software would be a potential way to come back.
11. Cover your tracks. Never ever let the administrator know that the system is compromised. Do not change the website (if any), do not create more files than you really need. Do not create any additional users. Act as fast as possible. If you patched a server like SSHD, make sure it has your secret password hard-coded. If someone tries to login with this password, server should let him in, but shouldn’t tell syslog about it.

Video

part 2 of How to become a hacker

Tips

• Read books discussing TCP/IP networking.
• This article discusses what is known in the hacking world as “cracking”. Hackers are those that built the internet, made Linux, and work on open source software. It is advisable to look into hacking, as it is respected and less likely to get you arrested.
• Using these tactics on a popular corporate or government computer is asking for trouble unless you’re a professional hacker. Keep in mind there are people a bit more knowledgeable than you who are protecting these systems for a living. Once found, they sometimes monitor intruders to let them incriminate themselves first before legal action is taken. This means you might think you have free access after hacking into a system, when in fact, you’re being watched, and may be stopped at any moment.
• Find information online related to hacking, or to even attend an “underground” hacking event, visit these sites:
  • enigmagroup.org A legal and safe network security resource where users test their hacking skills on various challenges and learn about hacking and network security. Also provided are articles, comprehensive and active forums, and guides and tutorials.
  • defcon.org Underground hacking event.
  • hackthissite.org Hacking site with a large selection of challenges to practice your skills in a safe and legal environment.
  • insecure.org Hacking tools and other software.
  • securityforest.com Tools, papers, exploits, and other reference material.

Warnings

• Misuse of this information may be a local and/or federal crime. This article is intended to be informational and should only be used for ethical purposes.
• Do not delete entire logfiles, instead, just remove the incriminating entries from the file. What do you think would look more suspicious; logs with a few entries missing, or the entire log file destroyed?
• Be extremely careful if you think you have found a very easy crack or a crude mistake in security management. A security professional that protects that system may be trying to track you or may be setting up a honeypot.
• Stay away from breaking into government networks. If you do find a vulnerability in such a network, the best plan of action is to inform the system administrator, and perhaps help them in patching the vulnerability.

Things You’ll Need

• A computer with a connection to the Internet.
• A proxy is always a good idea.
• An IP scanner
• Petraflops help

Related wikiHows

• How to Pretend to Hack a Website
• How to Hack Windows With a Limited Account
• How to Record Computer Sounds with Goldwave
• How to Hack the School Internet Filter (8E6 R3000)

Article provided by wikiHow, a wiki how-to manual. Please edit this article and find author credits at the original wikiHow article on How to Hack. All content on wikiHow can be shared under a Creative Commons license.

When God Made You lyrics

Artist – Natalie Grant

Album – Various Songs

Lyrics – When God Made You

It’s always been a mystery to me
How two hearts can come together
And love can last forever
But now that I have found you, I believe
That a miracle has come
When God sends the perfect one

Now gone are all my questions about why
And I’ve never been so sure of anything in my life

chorus:
I wonder what God was thinking
When He created you
I wonder if He knew everything I would need
Because He made all my dreams come true
When God made you
He must have been thinking about me

I promise that wherever you may go
Wherever life may lead you
With all my heart I’ll be there too
From this moment on I want you to know
I’ll let nothing come between us
I’ll love what ever you love

chorus:

He made the sun He made the moon
to harmonise in perfect tune
One can’t move without the other
They just have to be together
And that is why I know it’s true
You’re for me and I’m for you
Cause my world just can’t be right
Without you in my life

I wonder what God was thinking
When He created you
I wonder if He knew everything I would need
Because He made all my dreams come true
He must have heard every prayer I’ve been praying
Yes, He knew everything I would need
When God made you
When dreams come true
When God made you
He must have been thinking about me




Dont worry about a thing,
cause every little thing gonna be all right.
Singin: dont worry about a thing,
cause every little thing gonna be all right!Rise up this mornin,
Smiled with the risin sun,
Three little birds
Pitch by my doorstep
Singin sweet songs
Of melodies pure and true,
Sayin, (this is my message to you-ou-ou:)Singin: dont worry bout a thing,
cause every little thing gonna be all right.
Singin: dont worry (dont worry) bout a thing,
cause every little thing gonna be all right!Rise up this mornin,
Smiled with the risin sun,
Three little birds
Pitch by my doorstep
Singin sweet songs
Of melodies pure and true,
Sayin, this is my message to you-ou-ou:Singin: dont worry about a thing, worry about a thing, oh!
Every little thing gonna be all right. dont worry!
Singin: dont worry about a thing – I wont worry!
cause every little thing gonna be all right.Singin: dont worry about a thing,
cause every little thing gonna be all right – I wont worry!
Singin: dont worry about a thing,
cause every little thing gonna be all right.
Singin: dont worry about a thing, oh no!
cause every little thing gonna be all right!

50. Where the most happening places are not where the party is. Instead it is where the gang wars happen, where women strip and where the people overthrow a president.

49. Where even doctors, lawyers and engineers are unemployed.

48. Where everyone has his personal ghost story and superstition

47. Where mountains like Makiling and Banahaw are considered holy places.

46. Where everything can be forged.

45. Where school is considered the second home and the mall considered the third.

44. Where Starbucks coffee is more expensive than gas.

43. Where every street has a basketball court and every town only has one public school.

42. Where all kinds of animals are edible.

41. Where people speak all kinds of languages, and still call it Tagalog and where it is fast becoming unfashionable to speak English/Spanish.

40. Where students pay more money than they will earn afterwards.39. Where call-center employees earn more money than teachers and nurses, where doctors study to become nurses for employment abroad.

38. Where driving 4 kms can take as much as four hours.

37. Where flyovers bring you from the freeway to the side streets.

35. Where the personal computer is mainly used for games and Friendster.

34. Where all 13-year-olds are alcoholic.

33. Where colonial mentality is dishonestly denied!

32. Where 4 a.m. is not even considered bedtime yet.

31. Where people can pay to defy the law.

30. Where everything and everyone is spoofed.

29. Where even the poverty-stricken get to wear Ralph Lauren and Tommy Hilfiger (peke)!

28. Where the honking of car horns is a way of life.

27. Where being called a bum is never offensive.

26. Where floodwaters take up more than 90 percent of the streets during the rainy season.

25. Where everyone has a relative abroad who keeps them alive.

24. Where crossing the street involves running for your dear life.

23. Where wearing your national colors makes you baduy.

22. Where billiards is a sport, and darts is a bar game.

21. Where even the poverty-stricken have the latest cell phones. (GSM-galing sa magnanakaw)

20. Where insurance does not work.

19. Where water can only be classified as tap and dirty – clean water is for sale (35 pesos per 5-gallon).

18. Where the church governs the people (owwss!!!) and where the government makes the people pray for miracles. (Amen to that!)

17. Where University of the Philippines is where all the weird people go. Ateneo is where all the nerds go. La Salle is where all the Chinese go. College of Saint Benilde is where all the stupid Chinese go, and University of Asia and the Pacific is where all the irrelevantly rich people go.

16. Where fast food is a diet meal.
15. Where traffic signs are merely suggestions, not regulations.
14. Where all the trees in the city are below six feet.
13. Where being held up is normal. It happens to everyone.

12. Where kids dream of becoming pilots, doctors and basketball players.

11. Where rodents are normal house pets.

10. Where the definition of traffic is the “non-movement” of vehicles.

9. Where the fighter planes of the 1940s are used for military engagements, and the new fighter planes are displayed in museums.

8. Where Nora Aunor is an acclaimed actress and Boy Abunda is the best talk show host, where the population knows more their showbiz stars better than their national heroes and past presidents, knows more of showbiz gossips than their national history and current events.

7. Where cigarettes and alcohol are a necessity, and where the lottery is a commodity.

6. Where soap operas tell the realities of life and where the news provides the drama.

5. Where actors make the rules and where politicians provide the entertainment.

4. Where finding a deer on the road will be a phenomenon.

3. Where people can get away with stealing trillions of pesos, but not for a thousand.

2. Where being an hour late is still considered punctual. (Grabe talaga ‘to!)

1. Where the squatters have more to complain (even if they do not pay their tax) —- than those employed and have their tax automatically deducted from their salaries.

and finally….. .

0. Where everyone wants to leave the country!

 

Forms always require validation when they are used in not safe environments. One method is to verify the data submitted through POST or GET before actually executing the form action. Using Javascript it is possible to do this in a more simple way.

Here you have an example of how you can limit the number of characters an user can insert into a input or a textarea field.

The right field keeps track of how many characters a user can still insert and the characters that overtake that limit are removed.

The code explained: We create a javascript function that counts the number of remaining characters and trims the string if the length is bigger that the maximum allowed value.

he form will contain an input field for the text and one for the remaining number of characters.

he text input field will call the javascript function every time a up or down key event will arrise.

See the code below:

<script language = "Javascript">

function CountLeft(field, count, max) {
 // if the length of the string in the input field is greater than the max value, trim it
 if (field.value.length >= 5){
  field.value = field.value.substring(0, max);

 }
 else{
 // calculate the remaining characters
 count.value = max - field.value.length;}
 }
</script>

  <center>
 <form name=sample action="">
 <font size="1" face="arial, helvetica, sans-serif"> Only 50 characters allowed!
 // at every key up and key down event the upper function is called 
 <input name="text" type="text" size="40"
  onKeyDown="CountLeft(this.form.text,this.form.left,50);"
 onKeyUp="CountLeft(this.form.text,this.form.left,50);">
 <input readonly type="text" name="left" size=3 maxlength=3 value="50">
characters left</font>
 </form>
 </center>