======================================================== +HCU Maillist Issue: 291 08/13/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: Re: Website #2 Subject: KeyGen Tut on mIRC 5.41 #3 Subject: Delphi things ARTICLES: -----#1------------------------------------------------- Subject: Re: Website Hi Rundus! If you got anything on your page, your page provider shouldn't see, just create an index.htm with a fake page, where you write about you and your life. Then create a main.htm, which is your main entry to your site. Then set up another account (ie: rundus.home.ml.org), which forwards to your main.htm at your other provider. Then everybody can reach your homepage with rundus.home.ml.org, but when your page provider checks your page for anything illegal, he will only get the index.htm. This only works, if your provider checks your page as a normal user. When they're entering your account with your password, this will not help. byez, Dynamite (dynamite98.home.ml.org) -----#2------------------------------------------------- Subject: KeyGen Tut on mIRC 5.41 Hi +All :-) I wrote a KeyGen Tut on mIRC 5.41. Anybody interested? You can find it on my page * dynamite98.home.ml.org. byez, Dynamite -----#3------------------------------------------------- Subject: Delphi things Sorry for abusing this mailing list, but does anyone knows about a good Delphi hex edit / hex view component (for 2.0 or 3.0) ??? Or any huge component resources, where I can search for one ??? I'm fed up with messing around with these xtra slow StringGrids ... Reply please to the mailing list or directly to ***************** Thanx =====End of Issue 291=================================== ======================================================== +HCU Maillist Issue: 292 08/15/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: gthorne-more on keeping your website #2 Subject: Re: Unknown Email ARTICLES: -----#1------------------------------------------------- Subject: gthorne-more on keeping your website Message Body = in addition to hidden pages behind the index file, the really security conscious could double zip something with passwords i know this doesnt sound useful, but let me explain how i mean if you have a few different websites, and the one with whatever files you dont want your provider to suspect... say for instance you have the newest numega tool and it isnt supposed to be where you have it, or just about anything else you think your provider may be unhappy about make your main page refer to spreadsheet data or programming tools, or just about anything using some kind of crazy data files numegatool.zip for example is our new toy we could either make an index.html that advertises strawberry shortcake and friends or the great smurf debate and then have a bunch of files in the directory that are named what they are, numegatool.zip being there and as previously mentioned, it is hidden, and you can make a website on a different free web provider that has links to the files on this one except in the case of mygale.org (which actually took the time and effort to have my hotmail account removed along with my mygale accounts at one point, most providers dont tend to do anything but remove your page and of course the number one thing to do is have a home.ml.org forwarder go to your hack-n-crack site so if yo do lose it it doesnt matter and people can always find it by name hobo.home.ml.org points at oh-gee-cities.com/yourdirectory/files.htm (index.htm is your bs page with smurfy stuff on it and files.htm is your contents page that points to the other server) analfire.com/yourdirectory/index.htm would be some cheesy other lame page that looks like a class project or something else that way if the people who run the page actually peek in your directory behind your index.htm they see files named whatever.dat(s) and it looks official still dont link them to the cover page though just in case - especially if you make your page look too interesting and some idiot starts spam mailing you asking for help installing the new files to his wordperfect database now back to the security anal stuff if you pkzip something once, it still shows what files are in the archive even if you have passworded it so pkzip it the first time as data1.zip (dont bother to password this unless you are in need of help from the men in the little white coats this is just to cover the filename data1.zip contains the zipped file numega1.zip now and you could pkzip -v the file (or check it with winzip and you will see numega1.zip in there) then you do the second zip with password bigdata1.zip is passworded (pkzip -s or winzip zip with password option) inside that is data1.zip - now the thing cant be checked on your other page somewhere (do not ever put contents page on same server as your files or you ruin all this handy work) hopefully you got all that :) +gthorne -----#2------------------------------------------------- Subject: Re: Unknown Email Hi Rundus! I found something, that could interest you. It's the alt.spam FAQ. They explain how to trace faked emails only with the message-ID. You can find the FAQ at **************************************** l8er, Dynamite =====End of Issue 292=================================== ======================================================== +HCU Maillist Issue: 293 08/16/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: mailing list #2 Subject: Reply to : mailing list (+Chineese) #3 Subject: Sockets de troie ! ARTICLES: -----#1------------------------------------------------- Subject: mailing list What happened to the mailing list ? Cronos -----#2------------------------------------------------- Subject: mailing list Hi ALL About the Mailing list, i'm using a new Mailer for HCUML so if u got any trouble send an email to **************** Cronos tell me more about your problem ! +Chineese -----#3------------------------------------------------- Subject: Sockets de troie ! Hi, Did any of you guys hear of a french program called "Sockets de troie" ,that's used to browse victims hard drives through ip connection. I have version 1 but can't crack through the first time login password . Is there any other progies that can let you access people's HDDs and excute commands remotely (on WIN95) . [Tazz]. =====End of Issue 293=================================== ======================================================== +HCU Maillist Issue: 294 08/17/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: gthorne - accessing remote win95 machines #2 Subject: Website #3 Subject: Great Assembly Anti Virus Software ! #4 Subject: Reply to issue 293 #5 Subject: gthorne-posting regarding icq ARTICLES: -----#1------------------------------------------------- Subject: gthorne - accessing remote win95 machines Message Body = there are applications that can allow you to get into remote win95 machines as suspected one of which that is available is called win95 gold and is at rootshell.com it uses internet explorer's ability to resolve remote drive information to allow you to map a foreign drive to your computer as if it was one of your hard drives this idea has been done before, but not as easily as this method it pretty much requires someone set up their machine with drive sharing set up - obvious mistake in installation - but dont think that is the only way, i have come across someone recently who has a problem with this kind of thing recently and she did not have sharing enabled because we only know that her hard drive was accessed, and not by who or where, considering she is not a techie, there is no way to know how it was accomplished another is a new trojan horse program called back orifice (by cult of the dead cow hacker group) they unveiled it at DEFCON (hacker convention for those of you who dont know) and it blew everyone away as to how much control it gave remote people due to flaws in the windows based architecture relating to security (security? whats that?!?) it is available on the net but since it is a trojan program it requires (like a virus) someone to be fooled into running it, or you to install it when someone is not looking a filename to look for might be boclient.exe or bo120.zip if you are interested in locating it while we are on the topic, just for fun - there are other fun ways to truly annoy win95 machines the cdrom autorun works even when in screensaver password mode what this means is (and yes it has been done though not by me) you can burn a cdrom with a screensaver password cracker as an autorun program, and have the output placed on the clipboard the next time you are in a location with supposedly secure machines you could then put in your custom cdrom, hit ctrl-V to paste the password into the password field, and there you go if anyone finds the article where this is done, whether it came from an issue of phrack, or a 2600, please post it i havent seen it since a friend and i were discussing it some months ago for those of you who are trojan or virus happy, learn (yes it sucks to have to) VBA (visual basic for applications) and get into macro virii, since you can have a document place a mcro trojan on a machine with the ability to do anything including use debug to write out a binary file then you can have it add either a line to autoexec.bat to run it, or create win.bat in the windows directory to run it (which insanely enough runs when win95 executes since the program actually types WIN to start itself just like a user would from DOS back in the win95 days another route is to use the registry to execute programs on startup - boclient mentioned above does this and of course the system.ini and related files are always nice little culprits as well one more thing - the cult of the dead cow mentioned that they are nearly ready to show a program like back orifice that works on secure machines (probably not requiring a placed trojan but the article did not say that much about it, just that it was in the works) the article on zdnet describing their programs is at: ************************************************* take care for now +gthorne -----#2------------------------------------------------- Subject: Website Hello Everyone Hello Dynamite Hello Gthorne Thank you the information and Iam in the process of implementing your recommendations. Like you guys finding time to do these things is hard, so it will be a while before my website has reached an advance level. cheers Rundus ______________________________________________________ Get Your Private, Free Email at ********************** -----#3------------------------------------------------- Subject: Great Assembly Anti Virus Software ! Hi gurus, I found an anti-virus program that are written in ASSEMBLY. The author said that he is able to deprotect nearby all of the protection techniques used. --> **************************************************** I am wandering whether we can check it out and see how good the protection is. His homepage is : ******************************************** Please provide some feedback to the list. Thanks ! and happy cracking. ______________________________________________________ Get Your Private, Free Email at ********************** -----#4------------------------------------------------- Subject: Reply to issue 293 Subject: Reply to Sockets de troie ! > but can't crack through the first time login password . The Password is "ClaudioClaudioCC" it's very simple to cracking with W32Dasm. >Is there any other progies that can let you access people's HDDs and >excute commands remotely (on WIN95) . It's a fake. The program works only if on the other computer runs "Socket de troie!". Socket de troie, It's a simple "LapLink" clone. SteX. Saluti STEX ******************* -----#5------------------------------------------------- Subject: gthorne-posting regarding icq Message Body = poking around rootshell.com i found this article on how bad icq security is i thought you guys might want to see this +gthorne - - - >From ***************** Thu Aug 13 22:34:42 1998 Date: Thu, 13 Aug 1998 23:25:49 -0300 From: zack ******************* To: ***************** Subject: Major ICQ security hole. Greetings... I code a linux ICQ clone, and after one of my users mistyped his password, and was allowed into his account anyway. After further investivating, this is what I found. * It is possible to log in to the ICQ servers as ANYONE without having to know their password. This leads to all sorts of comprimises. This is *not* simply spoofing How it works: The mirabilis server uses a password of 8 chars. Their clients do the range checking and only send in passwords of 8 or less chars. The Linux clones, mine in particular, don't do this. * When a password of 9 or more characters is sent, their buffer is over-run, and it allows you to log in. The exploit: Download any ICQ clone (example: ************************** Set the UIN to be the targets UIN Set the password to "123456789" <-- Just large enough to overflow Start the ICQ program. If all goes well, it will log in and connect, as that user. Any waiting (offline) messages will be delivered to you. You can now send _and_ recieve messages and URLS as the client allows. Notes: This is NOT spoofing, you are actually logged in as the selected UIN. Unlike spoofing you can recieve messages as well. All UINS will work, as long as someone is not already logged in with that UIN. Mirabilis / AOL really needs to fix this problem. Zack =====End of Issue 294=================================== ======================================================== +HCU Maillist Issue: 295 08/18/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: gthorne-more ways to get things to run #2 Subject: gthorne-orc fun ARTICLES: -----#1------------------------------------------------- Subject: gthorne-more ways to get things to run Message Body = before when i was referring to ways to get a trojan to run on a machine i mentioned a registry key i went back and found the one i was referring to for those of you who might be interested any strings you load in the registry at: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run will execute early in the win95 loadup process it happens before things in your start menu in the startup folder and is less obvious for those who intend on writing or installing applications which you wish not to be noticed for whatever reason +gthorne -----#2------------------------------------------------- Subject: gthorne-orc fun Message Body = an excerpt from a mailing i got today you guys might find interesting Although religion has nothing to do with computing I am always amused by the +ORC decision to use the prefix +. All Roman Catholic Bishops sign their names that way e.g. + Dermot, Bishop of Dublin. ! +gthorne =====End of Issue 295=================================== ======================================================== +HCU Maillist Issue: 296 08/19/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #0 Subject: Some problem with Hotmail Mail server (+Chineese) #1 Subject: Abit of Humor #2 Subject: Problems with list ? ARTICLES: -----#0------------------------------------------------- Hi +all Trouble with the list ? send an email to **************** ! To vrax , it seem that Hotmail have some Problem thes last days cause all the mail i send to ******** subcriber return with this message "could not send message for past 4 hours" So please dont worry and i will resend last Issue ASAP +Chineese -----#1------------------------------------------------- Subject: Abit of Humor Hello Everyone >Although religion has nothing to do with computing > I am always amused by the +ORC decision to use the > prefix +. > All Roman Catholic Bishops sign their names that way > e.g. + Dermot, Bishop of Dublin. ! So if I add the prefix + to my name and get caught doing something wrong. Can I use the excuse "The devil make me do it" :)) Excuse my attempt at humor. cheers Rundus ______________________________________________________ Get Your Private, Free Email at ********************** -----#2------------------------------------------------- Subject: Problems with list ? Hello, Is there some kind of a problem with the list ? or is it just me ? I get 2 copies of the list everytime for the past hmmm 6 isues or something close to that. is it just me ????????? cheers nIabI ______________________________________________________ Get Your Private, Free Email at ********************** =====End of Issue 296=================================== ======================================================== +HCU Maillist Issue: 297 08/20/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: re:remote machines #2 Subject: gthorne - posting - what again? :) #3 Subject: Another bit of humor ARTICLES: -----#1------------------------------------------------- Subject: re:remote machines Subject: gthorne - accessing remote win95 machines Message Body = there are applications that can allow you to get into remote win95 machines as suspected yepp;) i have tried bo on som lame ducks in irc.bar*, and it works, it do not work if the target has not set up their w95 machine as a networkmachine.......... and if u on internet ..???? i dont even try to explain the different here have any1 tryed wwwhack? ther's a free;) upgrade..but still just an brute force still on vacation ice gator ______________________________________________________ Get Your Private, Free Email at ********************** -----#2------------------------------------------------- Subject: gthorne - posting - what again? :) rundus - bill gates made you do it, remember that it will at least get a laugh out of the prison guards... niabi... i have no idea why you are getting double mailings niabi... i have no idea why you are getting double mailings sorry - my sense of humor is kinda sick ;) for those of you who send me direct mailings, just a hint - (ignore this if you have no idea what i am talking about) 1) if you report a bug to me on one of my items of software, please dont just say 'there is a bug' - i need just a little something more to work with... and NO, saying that there is more than one bug is still not enough 2) if you wish a response, try one of these methods: - give me a nickname and tell me if you are on hcuml if you dont want me to respond directly - anonymous mail is great way to send things to me, but with no aforementioned nickname, then even i have no idea who you are - an email address would be nice in case you are wondering, i get a few of these on occasion that are about useless since certain content is missing :) for those of you who correspond with me alot, i have been quite thrilled with the level of your questions - as they say the only stupid question is one where (you dont tell me what the problem is and you dont include a way for me to respond) - okay so i made that up... off again to the simple electronic world of japanese animation and little blippy lights i like to call home :) +gthorne -----#3------------------------------------------------- Subject: Another bit of humor The Devil and Jesus got into a heated argument about whose the better programmer, Satan saids "I can out write code twice as good as you Jesus", and Jesus responds, " right that'll be the day you Devil", so God steps in and said, "ok you two here's what we'll do, we'll have a programming contest and I'll be the the judge, the one who right the better code win, so the devil lines up in front of his computer and Jesus lines up in front of his puter, then god saids "on you march get ready set go", and the two of them start typing like mad then all of the sudden god throws a lighting bolt and the power go's out God saids times up, time to judge, god looks at the devil computer and booting up to win95 then the devil puter crashes into a blank screen, he look at Jesus computer and Jesus has written a new operating system that runs like a charm plus a bunch of new cracking tuts, the devil looks at God all confused and saids how in world did he do that, God looks at the devil and laughs "Everyone know Jesus save"! =====End of Issue 297=================================== ======================================================== +HCU Maillist Issue: 298 08/22/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: Code Snippets ARTICLES: -----#1------------------------------------------------- Subject: Code Snippets Hello Everyone Iam interested in setting up a section on code snippets at my website. The code snippets will be the different solutions used to Reverse a program. The idea behind it is a leaning tool, rather than a compare of who produced the best solution. Thus increasing one's knowledge and maybe learn circuitous methods. If you are interested in contributing. Iam asking that the code snippets be about 15 lines or less. A format of: the address of the instruction with code, the change make and a comment. The idea is not to produce a tutorial or be didacted. Also you can remain anonymous. Please sent your code snippets to ***************** cheers Rundus ______________________________________________________ Get Your Private, Free Email at ********************** =====End of Issue 298=================================== ======================================================== +HCU Maillist Issue: 299 08/23/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: One (maybe) stupid question. ARTICLES: -----#1------------------------------------------------- Subject: One (maybe) stupid question. Hi! I've been readind this list for 13 days. And i didn't found anything about crack! What's wrong with this list or me? Maybe i'm on the wrong list, list about jokes and other funny things like pink rabbits and blue elephants. Could somebody tell me what's wrong. Regards Zomo =====End of Issue 299=================================== ======================================================== +HCU Maillist Issue: 300 08/24/1998 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** Web Repository.........................hcuml.home.ml.org ======================================================== CONTENTS: #1 Subject: gthorne-posting on purpose of hcuml ARTICLES: -----#1------------------------------------------------- Subject: gthorne-posting on purpose of hcuml Message Body = why no cracking infos you say? why no questions i ask. basically, a mailing list like this one is a forum for questions and answers, as well as other related topics (basically we want people to be a happy family here, as i have found that when people are discussing topics of interest together they get more familiar with eachother and tend to become stronger in groups effectively, those of you who want to learn about cracking need to know how to ask try posting questions along the lines of: i have been working on this project for a while, here is the work i have done, and here is what i need help on this list is free form of course and not restrictive, and programming topics are of course welcome as well because this list is not actually a class lesson like in a university, it does not follow a directed course of study - hence the 'students' only get out of it what they put into it as they are running the show as always, HCU stands for doing your own work, posting information to help others with your findings, and requesting information on difficult topics (as well as keeping the members and friends close) so unless specific technical topics are requested, there tend not to be any posted such is the way of a (mostly) unmoderated mail list - some days much is discussed, some days not much at all +gthorne =====End of Issue 300===================================