Computer Security, the LordB way

The information found on this page is for educational purposes ONLY. Do not try ANYTHING unless you are a sysadmin or get permission from your sysadmin!

Unix password cracking

John the Ripper Unix, Dos and Windows versions included.

Micro$oft Windows

Windows 95 Cracking Tutorial by ED!SON of UCF
Soft-ICE Used in ED!SON's Cracking examples
portpro Port Scanner by \\StOrM\\
pnewq Newqs a port on a selected host
ActiveX required by portpro & pnewq
netcat for NT. Handy little tool this one... Great readme file.

Linux

Note that Linux is a version of UNIX and some of the methods below will work on other versions of UNIX too (sun/solaris, hp-ux...).

Step 1, get root

LordB.sh A script that checks for some common Linux holes, the exploits can be found here. Update the script with more holes as you find them...
netcat for Linux. Use to scan ports and MUCH more...
stay Alert

Step 2, keeping root

When you get root, install a backdoor

logtroj.zip replacement for /bin/login that allows use of a "magic" password
cpass12.zip replacement for the passwd command that logs all password changes
duh10a.c password protected SUID root program, use this instead of a SUID root /bin/sh
Got these from Dimension7

Internet security

Allmost everything I intended to say here has allready been said at the Nomad Mobile Research Centre

Last updated 1997-05-18