What's new
By:

Mega *anti-hacking* anti-intrusion* thread-share tips and tricks to stay protected

I am just going to ignore this thread! OP seems delusional! lol!
 
Well, most script-kiddies are. People who like to do simple crap like SQL injections into lazy administrators' databases and then tout their 733t abilities tend to be lonely people. People who desire notoriety but cannot find a way to do so normally. I am not saying OP is this way necessarily as I see what he was attempting to do. He is passionate about his interests and wants to be a help to others. I commend him for that at least and for keeping all of this in Off-Topic which is where it belongs. I don't see a problem with it.
 
AgentDrex said:
Well, most script-kiddies are. People who like to do simple crap like SQL injections into lazy administrators' databases and then tout their 733t abilities tend to be lonely people. People who desire notoriety but cannot find a way to do so normally. I am not saying OP is this way necessarily as I see what he was attempting to do. He is passionate about his interests and wants to be a help to others. I commend him for that at least and for keeping all of this in Off-Topic which is where it belongs. I don't see a problem with it.
Click to expand...

I deal with this crap day in and day out.. I guess I don't have your tolerance anymore! lol!
 
Between 2001 and 2003 I was learning to do the hacking thing but all that coding bored me. I noticed a lot of script-kiddies out there using the skills of others for malicious intent while having no true coding skill of their own. I decided there was no need for me to continue learning how to hack since I thought of some nifty workarounds to prevent it from happening to me to a point. I tried getting into some archaic languages (x86 assembly, C [mainly for Bourne-Again-Shell scripting] and my favorite GForth) but that too bored me. Ten years later, I wonder where I'd be if I would have kept going. It's interesting to see these new kids getting into it. I don't let it bother me, I understand their plight. Everyone wants to get noticed now for one thing or another. Its just a new paradigm-shift thanks to the internet.
 
AgentDrex said:
SQL injections? Geez. Setting database permissions and escape parameters too hard for some of these database administrators and coders? They deserve to be hacked then.

Darknet isn't special and is not separated from the internet in any shape or form. It is only hidden through heavily encrypted nodes and connections between the nodes (client, server and end). Tor with Vidalia or whatever you want still requires a regular internet connection to access it, hence it is a part of the normal internet and also does not have MORE data than the internet considering it is PART of it anyhow. Just because a room in the house has a hidden door does not mean it is a separate house.

Now, a true separated network would be cool if they'd design a box you could plug into the wall and connect to a inter-connected network that way (like Innbox or something similar). A new internet where all you need is access to a power-line (through a wall outlet or something) and connect to servers that way, perhaps even having exit nodes to the normal internet.

I can guarantee you I can make a hack-proof computer and I'm not a hacker, just a geek. Take one computer, remove harddrive, remove burner (if present). Install cd reader (read-only). Run some live cd. Have safe fun on the internet. Viruses attack data, trojans install hidden data, worms propogate payloads. All of these rely on a harddrive or some other write-able storage medium. Too bad that the only way to inject malicious code on the computer would be into volatile memory. Reboot and you're clean. No part of the OS can be tampered with as it is pre-written to a CD and there is no way to write to since you have no burning capabilities.

The hackproof system would include two more computers. From the first computer, you sneakernet a jumpdrive over to a second computer that has every malicious code aware program made and run the jumpdrive against it to ensure the safety of the data is intact. This computer is generally not hooked up to the internet unless updating of the malicious code databases need updating, maybe once a week or so. Then unplug from the network.

Third computer is the expensive beast you do all your work on. This is NEVER, EVER hooked up to the internet. Considering most updates are security related, you can bypass those anyways. No need for security updates if you never hook it into a internet-accessible network. Any other updates should be able to be gotten directly from the OS manufacturer (i.e Microsoft, etc.). Most updates end up slowing the machine down in the end due to bloating anyways and so that fast computer should stay fast for years to come.

If you're a gamer, well then you probably game over the internet and so this is no solution for you. This would be for the person who just spent a ton of money on a computer that can render huge files (audio, huge photos, video, etc.) or play games solo. Its a pain in the butt going back and forth with the jumpdrive (you'll need a good-sized jumpdrive or a huge harddrive and a USB converter [sate/ide/eide/etc.]) but it will be worth it to have a computer that continues to operate the same as the day you got it.

No need for a firewall either (hardware or software). After-all, how can one hack into a computer that is physically unhooked when not in use?

*sitting here on my custom Slack box live cd using firefox. I didn't do the second computer because I have no need to constantly download software and subsequently check it for malicious code. Everything I need is installed off of discs or from reputable sources. Its a 800mhz system with a gig of ram. Does the internet thang just fine. I can go anywhere on the internet and not worry. My main computer (2.20ghz Quadcore, 8gigs memory, 3.5TB storage) sits right by my legs and so there is no problem getting jumpdrive from puter to puter when needed. Using a 36" Sanyo LCD as the sole monitor. Have the net machine hooked up through VGA and the beast hooked up through HDMI. I have an old school KVM so I can just use the one mouse and keyboard for both puters.

pixmedic said:
You kids and your fancy domains. I was computer gaming before Slackware had a GUI.
Click to expand...

Wait, Slackware has a GUI??? I thought you had to choose one first like Gnome (DM), KDE(DM), fluxbox(WM), or my favorite Enlightenment (WM) otherwise you'd be left alone with the proper way to run Slack, the command-line (even if you chose to modify the shell to use ncurses, GTK, or QT) Weren't the desktop and window managers on the second disk anyways? I refuse to believe Slackware now comes with its own desktop manager other than the add-ons.
Click to expand...

Now here we go...at last some good info on computer security...and by internet..i meant the world wide web... just one little problem..if the system you are using have no harddrive...no burning device...nothing whatsoever...that practically means that you cannot actually do anything worthwhile on the internet...other than just browsing...and I am not sure your voaltile memory is of much use if you are in for long browsing hours....

regards... :)
 
AgentDrex said:
Between 2001 and 2003 I was learning to do the hacking thing but all that coding bored me. I noticed a lot of script-kiddies out there using the skills of others for malicious intent while having no true coding skill of their own. I decided there was no need for me to continue learning how to hack since I thought of some nifty workarounds to prevent it from happening to me to a point. I tried getting into some archaic languages (x86 assembly, C [mainly for Bourne-Again-Shell scripting] and my favorite GForth) but that too bored me. Ten years later, I wonder where I'd be if I would have kept going. It's interesting to see these new kids getting into it. I don't let it bother me, I understand their plight. Everyone wants to get noticed now for one thing or another. Its just a new paradigm-shift thanks to the internet.
Click to expand...


Drex..for me it was the other way round..i started programming.....loved coding...the first language i learnt was html...technically it is not even a programming language but anyhow ran a couple of sites....tried to run a lamp server... got hacked and then got into it because every book and site i consulted was using techniques that were way old...and script kiddies do not have much success with hacking except some phishing pages and some havij-ing....they mostly ddos you..and ddosing do not really have some cure except you pay really great attention to avoid a buffer overflow...even then good hackers.... i was not very good but have seen some good hackers use exclusive exploits to get into a system which is otherwise considered hackproof...i once met a hacker on hackbb on tornet who used a custom exploit against my gnome 2 desktop to gain access to my cursor...isn't that weird..
That's why I thought of running a thread so that we can share our tricks and tips to prevent hacking...I was not much impressed by your hackproof environment as it is not very economical.... i f i am ready to go so far why won't i hire the services of a penetration testing company..it will be much cheaper.... :)
 
Cannot do anything worthwhile on the internet??? Let's see. I watch videos, check email, check my bank, check unemployment, check ebt, read PDFs, listen to music, play simple flash games, come here to participate in this forum, keep up-to-date at flickr, talk over at facebook, I'm not sure what else I would really do. I'm not running a server for any reason and even then I could just set up the OS custom, then use BART to make a nice live cd to run a server as well.

Yes, the net computer bogs down but it usually takes around 36 hours to get to a point that it is sluggish enough for me to notice...then a 2 minute reboot and I am back cruising fast again.

Like I said, it has a gig of ram and the slack disc I made is of a relatively slim install (just the base OS requirements and enough extras to run enlightenment and firefox). I have everything else shutoff, just read access from the CD and read-write access (account limited) to one USB port. I have my IPTable set up as well so very little would even get through anyways.

By the way, why would you use Gnome. You're not a putz are you? ;) JK Seriously, sounds like you need to read up on some permissions. Perhaps you've done that by now but seriously, one has got to learn to secure the machine properly before hooking it up to the internet. That's why I like linux so much. The ability to fine tune the machine makes it way safer than that closed-sourced Windows.

I hear ya about the distributed denial attacks but then there's where having redundant networks and good firewall policies come in handy.

WWW is part of the internet, it is not THE internet. For clarity's sake, the tor network is not SEPARATE from the "world wide web" network protocol (http and https). Other protocols like GOPHER, email (smpt and pop), file-transfer, telnet, SSL, TLS, etc. are different from the WWW. Just because you need some program to access it does not make it special. You need a browser to view webpages on the "world wide web" as well, nothing special about that. Tor's just a hidden, encrypted service. Not all of Tor is simply .onion either. Plenty more places out there than onion. Bunch of sad, sick people there I'll tell ya. You want to see weird crap, .onion places are the places to be.
 
Last edited:
cgipson1 said:
AgentDrex said:
Well, most script-kiddies are. People who like to do simple crap like SQL injections into lazy administrators' databases and then tout their 733t abilities tend to be lonely people. People who desire notoriety but cannot find a way to do so normally. I am not saying OP is this way necessarily as I see what he was attempting to do. He is passionate about his interests and wants to be a help to others. I commend him for that at least and for keeping all of this in Off-Topic which is where it belongs. I don't see a problem with it.
Click to expand...

I deal with this crap day in and day out.. I guess I don't have your tolerance anymore! lol!
Click to expand...

If you have so much experience in these things...why not share some experiences with us...it will help us..especially me more than you think..
 
AgentDrex said:
Cannot do anything worthwhile on the internet??? Let's see. I watch videos, check email, check my bank, check unemployment, check ebt, read PDFs, listen to music, play simple flash games, come here to participate in this forum, keep up-to-date at flickr, talk over at facebook, I'm not sure what else I would really do. I'm not running a server for any reason and even then I could just set up the OS custom, then use BART to make a nice live cd to run a server as well.

Yes, the net computer bogs down but it usually takes around 36 hours to get to a point that it is sluggish enough for me to notice...then a 2 minute reboot and I am back cruising fast again.
Click to expand...

You do all this without any external memory except your volatile memory..pretty impressive...:)...how much ram do you have...
 
AgentDrex said:
Well, most script-kiddies are. People who like to do simple crap like SQL injections into lazy administrators' databases and then tout their 733t abilities tend to be lonely people. People who desire notoriety but cannot find a way to do so normally. I am not saying OP is this way necessarily as I see what he was attempting to do. He is passionate about his interests and wants to be a help to others. I commend him for that at least and for keeping all of this in Off-Topic which is where it belongs. I don't see a problem with it.
Click to expand...

Thanks... by the way I was into programming 5 years before i started hacking...and even if you know programming and very good at it...you still need to learn the tricks of the trade... i learnt it the hard way...and all that stuff on the net doesn't work 99% of the time..if you really want to root a server all that crap on the net is of no help to you .....
And answering your slur at the sql injections,sql injections are for most of the time,not "simple" in the usual sense of word...it takes days to find a vulnerability and again days to exploit that... if you are randomly running dorks on google then it is simple..i agree.. but most of the time it even difficult to detect a vulnerabilty than exploit it....just adding an " ' "
at the end of url doesn't always work...and I can assure you that all of the automatic injection programs out there on the net are useless if you want to target a specific system..and even after you have found passwords..it is very difficult to find a login page...

And I never said I am super good at hacking,if I was,I will never ask anyone for their advice...would I..?

regards.. :)
 
pixmedic said:
cgipson1 said:
PIX has no social skills... and you have to have social skills to be attacked with social engineering... so he has nothing to worry about! Right PIX? :)
Click to expand...

I dont need social skills. Im a paramedic.
I think this was a troll thread anyway, making outrageous claims with no way to back them up. Clandestine Internet hacking groups.... So 90's....
Everyone knows Anonymous is "in" now.
Click to expand...

I think you haven't read my posts yet,....ok they were quite boring....so let's cut it short... i never said that I am a super hacker...or I was a hacking wizard...i just know a few things about it...and if knew everything why would i post on a forum asking for everyone's advice... and I can assure you I was never a member of any clandestine hacking group....not that I did not try...but i never really got into one...the punks i am talking about are just some guys like me hanging around the net with lot's of time to waste and unlike me,some really...really good programming skills.....the type of people who makes cracks keygens and stuff..but the problem is..they also make viruses,keyloggers and lots of other types of malwares... you will be surprised to know that on hackBB their are people who give away the sites they hack and all the usernames,passwords..etc..for free!..they are the real goons... i am just trying to make a platform where all of us can share our experiences,tricks and tips...etc..


And anonymous...for the last time..is not primarily a hacking group...they mostly do DDOS.....i don't think ddosing need any skill other than lots of boxes and other resources to waste..even you can do that...

Regards... :)
 
aliyawar said:
I think you haven't read my posts yet,....ok they were quite boring....so let's cut it short... i never said that I am a super hacker...or I was a hacking wizard...i just know a few things about it...and if knew everything why would i post on a forum asking for everyone's advice... and I can assure you I was never a member of any clandestine hacking group....not that I did not try...but i never really got into one...the punks i am talking about are just some guys like me hanging around the net with lot's of time to waste and unlike me,some really...really good programming skills.....the type of people who makes cracks keygens and stuff..but the problem is..they also make viruses,keyloggers and lots of other types of malwares... you will be surprised to know that on hackBB their are people who give away the sites they hack and all the usernames,passwords..etc..for free!..they are the real goons... i am just trying to make a platform where all of us can share our experiences,tricks and tips...etc..

And anonymous...for the last time..is not primarily a hacking group...they mostly do DDOS.....i don't think ddosing need any skill other than lots of boxes and other resources to waste..even you can do that...

Regards... :)
Click to expand...

Have you considered a computer or software forum instead of a photography forum? Our idea of "hacking" is a bad photoshop job.
 
AgentDrex said:
Cannot do anything worthwhile on the internet??? Let's see. I watch videos, check email, check my bank, check unemployment, check ebt, read PDFs, listen to music, play simple flash games, come here to participate in this forum, keep up-to-date at flickr, talk over at facebook, I'm not sure what else I would really do. I'm not running a server for any reason and even then I could just set up the OS custom, then use BART to make a nice live cd to run a server as well.

Yes, the net computer bogs down but it usually takes around 36 hours to get to a point that it is sluggish enough for me to notice...then a 2 minute reboot and I am back cruising fast again.

Like I said, it has a gig of ram and the slack disc I made is of a relatively slim install (just the base OS requirements and enough extras to run enlightenment and firefox). I have everything else shutoff, just read access from the CD and read-write access (account limited) to one USB port. I have my IPTable set up as well so very little would even get through anyways.

By the way, why would you use Gnome. You're not a putz are you? ;) JK Seriously, sounds like you need to read up on some permissions. Perhaps you've done that by now but seriously, one has got to learn to secure the machine properly before hooking it up to the internet. That's why I like linux so much. The ability to fine tune the machine makes it way safer than that closed-sourced Windows.

I hear ya about the distributed denial attacks but then there's where having redundant networks and good firewall policies come in handy.

WWW is part of the internet, it is not THE internet. For clarity's sake, the tor network is not SEPARATE from the "world wide web" network protocol (http and https). Other protocols like GOPHER, email (smpt and pop), file-transfer, telnet, SSL, TLS, etc. are different from the WWW. Just because you need some program to access it does not make it special. You need a browser to view webpages on the "world wide web" as well, nothing special about that. Tor's just a hidden, encrypted service. Not all of Tor is simply .onion either. Plenty more places out there than onion. Bunch of sad, sick people there I'll tell ya. You want to see weird crap, .onion places are the places to be.
Click to expand...


Yes...everything is fine with my system now..it was ages ago...but the point is... i made a mistake...hooking up to the internet without any idea about security...that;s why I have created this thread...if i had any idea about it then,probably i would'nt have to take down my server due to some pretty interesting payloads.... so why not share some tips and tricks.....just to be informed about the latest things out there..?

:):)
 
No "external" memory, just the sticks of ram in the computer, a whole whopping gig of it. It's not like there's much to take up in memory over the OS using some of it, enlightenment using some of it and firefox using some of it (its actually the real hog by the way). Like I said, if the memory gets used up to the point it starts becoming sluggish, a two-minute reboot (I go have a ciggie while it does it) and I'm back on fresh as new.

The benefit of using SQL injections outside of database testing is beyond me. I see no reason other than to be malicious to even begin to think of doing something like that. Also like I mentioned, some initial permission setting and custom escape parameters (secure the damned data before sending the query, don't understand outside of laziness why more people wouldn't do that anyways) when creating the database make hacking that much more difficult that what you already mentioned it is like.
 
Last edited:
You must log in or register to reply here.

Most reactions

Similar threads

nerwin
    • Like
First week experience of switching to macOS from Windows.
Replies
0
Views
292
nerwin
nerwin
21limited
    • Like
Young Moose encounter 2010
Replies
3
Views
164
jeffashman
jeffashman
Dikkie
Instagram alternatives
2
Replies
15
Views
1K
dstreetphoto
dstreetphoto
nerwin
    • Like
    • Love
Fujica AX-1- An Easy Restoration (kinda)
Replies
2
Views
1K
Tartness9094
Tartness9094
A
  • Locked
Seeking a few good forums
Replies
11
Views
2K
Scott Whaley
S

New Topics

TPF Gallery Photos

1846-CRW_7865-web
4626-woody1
Jello1
10847-DSC_1414re
[No title]
7985-Website
1846-image034
1846-CRW_7867-web
Walk
7985-CarioFruit2TPF
7985-BasketsTPF
[No title]
Back
Top Bottom