how to gain access

cpulocksmith's Avatar, Join Date: Jul 2008
Skilled contributor
ok i want to gain access to the files on a computer in the other room from here. i want to do this just for the hell of it, and the knowledge i will gain from this.

i ran some scans and i have found out that the computer has 2 ports open port 139 witch is tcp netbios-ssn
and
port 445 also tcp microsoft-ds
its also running windows xp
i also have the ip (duh) and the mac adress but i dont know how that would help. i also have quite a bit of other info but i dont know how i could help. could anyone please tell me what i can do?



ps. the computer in the other room is owned by me. and i dont think i will be all that pissed at myself if i hack into my own computer. but who knows, i might be.
neo_vi's Avatar, Join Date: Feb 2008
Invasive contributor
are the systems connected in LAN or only internet access.
cpulocksmith's Avatar, Join Date: Jul 2008
Skilled contributor
well lan
neo_vi's Avatar, Join Date: Feb 2008
Invasive contributor
LAN means a lot u can do. with C&B and as well as many softs.
cpulocksmith's Avatar, Join Date: Jul 2008
Skilled contributor
well teling me that i have opitions does not really help me on my path to discovering what those option are. so please if you could could you share some ideas and techniqes maybe that i could try. and also what is this "C&B"?
neo_vi's Avatar, Join Date: Feb 2008
Invasive contributor
Quote:
Originally Posted by cpulocksmith View Post
well teling me that i have opitions does not really help me on my path to discovering what those option are. so please if you could could you share some ideas and techniqes maybe that i could try. and also what is this "C&B"?
sorry its C&A (Cain and Abel).
cerebrum's Avatar
Go4Expert Member
I dont personally give a damn if it's on LAN or not.

the best way to hack is to exploit the vulnerabilities.
Use Nmap as the port scanner, try discovering more ports, I wud suggest you to use the command line instead of Nmap GUI (Zenmap) .
and i m sure if the OS is xp ( sp1 or 2 ) , you can get a hell lot of exploits from the net ( www.milw0rm.com)

Discover the other softwares installed, check if their exploits are out. try exploiting IE6 , IE7

and no wonder u can get the shell out of it .

Try not physically accessing the target pc ( if u r concerned about knowledge)

though these are the script kiddies' methods obviously as u use exploits created by other hackers but that is it, u can't help it unless you start coding yourself.

For more on netbios (139) and microsoft-ds (445)
see this video on youtube , it might help

http://in.youtube.com/watch?v=lT335Z2xFDY

Last edited by cerebrum; 26Jan2009 at 10:04..
fourthdimension's Avatar, Join Date: Jan 2009
Ambitious contributor
If you're going to go the usual portscan, service vulnerability probe, and service exploitation route, then using nessus would make your life much easier.
http://www.nessus.org/nessus/
You may have to read some documentation to get it working if you're not familiar with setting up both server and client sides of a program on the same machine, but it's pretty easy and will tell you all the known vulnerabilities of the services your other machine is running.
You can also look at sites like milworm, securityfocus, packetstormsecurity, and others to get more information on service vulnerabilities or exploitation.
Are you the only user? If not, sniff the LAN traffic with a tool like wireshark to pick up web logins of the other users. Chances are they'll reuse them for their personal passwords on your other machine.

Last edited by fourthdimension; 26Jan2009 at 11:10..