How to be a Super Criminal Online Michael Stevens 3-24-2000 Ok this recent rash of hackings on small businesses is really starting to get to me. Everyone just sits back and wonders why they got into some small business' site. Why they stole credit card numbers and reposted them everywhere on the internet. Yes you too Mr/Ms Clueless can be a super criminal too! It's really easy and _lame_. This document contains information on how a crime is commited. In no way, shape or form am I suggesting that you go out and do this. If you really want to try it out go out and _buy_ a copy of Windows NT 4 then load it up and exploit your own copy. If you don't have enough money to buy it then I guess you don't need to be exploiting anything. Supplies for the mission of crime -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- 1) Perl language interpreter (http://www.perl.org) 2) .Rain.Forest.Puppy's perl RDS exploit (http://www.wiretrip.net/rfp) 3) Some common dos commandline experience 4) A brain in your damn head. Just to say I'm shocked at the number of sites that this works on. The trick is to get a bunch of sites that have small online store fronts. A good method would be to search for "cheap online buy" in a search engine. However for true hacker eleetness to be gained it would be cooler to goto a computer show and pick up a few websites as these people are usually shady characters anyways. (I said usually so no flames there are exceptions) Next you goto the site's domain. http://www.samplesite.com/ Looks like a small stupid shop that runs a crappy NT box. Next check that our main component is there. http://www.samplesite.com/msadc/ If this returns a 404 then look elsewhere. If it says listing denied or some other cool error or even a listing then you are in luck so move on. That is just a ploy to not arouse too much suspicion. Next check this address. http://www.samplesite.com/msadc/msadcs.dll If it sends you back some meaningless text about X-Application type then they are vulnerable. Next you need to know where they post their web files. So visit this address to see where all the goodies are. http://www.samplesite.com/something.ida It should return a directory. This is where to copy files that you want to download. Next open up your RDS exploit from RFP and use the -s 4 switch at the command prompt to search for common mdb's. (If you are really eleet you will read RFPs other stuff on how to make a mdb with the IIS samples) Anyways it lets you execute commands on the prompt. Some things to help you. I will not provide any assistance from here because it will be diffrent based on the site. However if you make a bat file in c:\winnt\profiles\all users\startup (I think) hopefully only admins login on this box for this not to be too noisy. Mabey encapsulate a bat in a bat to delete the really evil one. Anyways... Here are a few commands and ideas for you to hear out and heed. You are not ADMIN but can be easily... You cannot dump the registry but if the ADMIN runs the batch script he can... (ADMIN ONLY) regedit /backup public_dir_for_your_theft net user hacker /add net localgroup administrators hacker /add (DUMBASS) copy c:\winnt\repair\sam._ public_dir (go for a few rounds of l0phtcrack) del c:\boot.ini (If you really want to be a jackass) dir c:\winnt > public_dir Well I hope that covers it for you. If you aren't that dumb you can now hack into tons of e-commie sites and steal all the credit cards you want. Then when the FBI busts your ass don't tell them about this paper 'cuz they already know (muhahahaha) Anyways anyone who does it from now on can be identified as the lamer they really are. More waves of theft are coming head to high ground admins! The lamers are coming in storms! Long Live Linux Mike