<body><script type="text/javascript"> function setAttributeOnload(object, attribute, val) { if(window.addEventListener) { window.addEventListener('load', function(){ object[attribute] = val; }, false); } else { window.attachEvent('onload', function(){ object[attribute] = val; }); } } </script> <div id="navbar-iframe-container"></div> <script type="text/javascript" src="https://apis.google.com/js/platform.js"></script> <script type="text/javascript"> gapi.load("gapi.iframes:gapi.iframes.style.bubble", function() { if (gapi.iframes && gapi.iframes.getContext) { gapi.iframes.getContext().openChild({ url: 'https://www.blogger.com/navbar.g?targetBlogID\x3d9515291\x26blogName\x3d192.168.0.1\x26publishMode\x3dPUBLISH_MODE_BLOGSPOT\x26navbarType\x3dBLUE\x26layoutType\x3dCLASSIC\x26searchRoot\x3dhttps://dosshell.blogspot.com/search\x26blogLocale\x3den_US\x26v\x3d2\x26homepageUrl\x3dhttp://dosshell.blogspot.com/\x26vt\x3d-5074834188165755409', where: document.getElementById("navbar-iframe-container"), id: "navbar-iframe" }); } }); </script>

Thursday, September 22, 2005

The Dreams of our Fathers

FTP is an age old p2p style of transfer. How many of you know what ftp is based off of and how many different options you have when it comes to ftp?

For starters ftp = file transfer protocol. This is pretty much the entirety and essence of p2p. Just tossing files between computers. FTP works off an 8 bit client server protocol. This means the protocol distinguishes between the client and the server in the process of transfer. Most people require a client of some sort to browse ftp servers. The possibilities here are endless. SmartFTP, FTP Explorer, Bulletproof FTP, Cute FTP, etc. There are loads and loads more, but those are the most well known. Windows has a built in ftp client/server which you can set up if you know what you're doing but they don't make it easy. Firefox has a built in client which is pretty easy to use and is suggested by myself.

There are problems with ftp, but most clients have eliminated those problems. Slow transfer rate, download start, and login procedures are a few of those problems.

FTP connections can be hard on your bandwidth though cause of the connection stylization that is used. Plus once the client opens the port to actively participate in file transfer. The ports used by ftp are most often 20 or 21. Each port has a purpose. 20 is where the info streams to and 21 is where commands are sent/recieved. This is very useful to know when you know someone has a ftp set up. There are numerous tools that all you need is an ip address and a port number to get access to someone's pc...if you're a script kiddie that is.

Personally I enjoy ftp "hacking" because I love DoS attacks. This can only be accomplished if the ftp allows anonymous access or the attacker has a login AND if it's on an IIS server. Using the ability to input a raw ftp command we can overflow IIS. Sending a 316 character sequence will bypass the minimum buffer in which you'll have to get by in order for the DoS attack to work. Anything over 316 should be successful but if you figure out the specific number of characters then it will appear as a simple overflow of the IIS rather than a DoS attack. Of course we'll still need to send a command through when we do this so just use a ls which will list the files in the specified folder. Then any character following that should be good. You could do nothing but the letters DOS over and over till you hit it and it'll work.

*hint 505...0x41414141

Please not that with the DoS attack and the imminent overflow of IIS then ALL IIS services will be disabled. This includes NNTP, SMTP, (whatever web service there may be), etc. HMMM, I do believe I just told novices how to DoS attack an ftp...Shit happens.

This isn't the only exploit that you can take advantage of when it comes to FTPs. If you wanna know more you could always do some research ;-) knowledge is power.

AK

posted by Akiratima at 9/22/2005 06:23:00 PM 0 comments

Tuesday, September 20, 2005

this is an audio post - click to play

posted by Akiratima at 9/20/2005 08:33:00 PM 0 comments

Tuesday, September 13, 2005

Tech Girl

First, I want to pose a question. Why aren't there more tech girls out there? Girl geeks are so hot!
anyway.
Next, just a few amazing news updates. September 11th 2005 - Advent Children dvd was leaked. Wonderful ;)
Another thing is the NES pattent, it either recently ran out or is about to run out. Either way you'll soon be able to purchase your very own NES again. This is wonderful since I have loads of games for NES but mine barely works. Time to bust out some Castlevania or something.

Now, since I've been around quite a few hard drives I figured I'd do a super short rundown of the benefits of both the most common types.

IDE vs. SATA!!!!!

dum dum dummmmmmmmmmm

cough, ok...wow I'm a loser

Ok, Benefits of IDE

IDE is currently the most common type of hard drive connection. Some motherboards don't support SATA. It is powered through the most common power cord type(4 pin connection) which is the norm on most power supplies.

Benefits of SATA

SATA is currently the fastest growing connection out there. Yes there are more types besides these 2. The most up to date motherboards will support this type of connection. The most allotted to a single motherboard is 4 but theres probably more out there. It can be powered by either the most common power cord type(4 pin connection) or the new power strip that powers SATA drives. This can be found on the most up to date power supplies.

SATA has their own informational website while IDE doesn't. My personal opinion is that SATA is the next big thing. It's a lot harder to raid multiple drives together...but I'm sure that the capabilities of this will be introduced soon enough.

I think I have to declare SATA the winner. Differences in transfer rates are not noticed in my eyes. If you notice something then you need more ram and a better processor.

Random Shite!!!
Better than an ipod?
Cheep bluetooth adapter Invite people to hack your pc or anything that you have thats bluetooth compliant...

Thats all I got for now.
AK

PS. If you are a geek girl...HOT!!! thats all I gotta say ;-)

posted by Akiratima at 9/13/2005 10:30:00 PM 0 comments

Friday, September 09, 2005

All About The Ladies

Well I'm not quite sure what to do for this post. I recently was emailed by someone from a prominent University wondering if I could figure out how to get into the directory for his University. It's hard for me since I don't have direct access to the system at hand, but for you, it should be much easier. You simply need to work in the science that hackers have worked for ages. Reverse Engineering, Troubleshooting, and Social Engineering. By combining these three things then you should be able to find your way into the directories.

If we go the troubleshooting path then we would have to look at the setup. Not much in depth searching here. Figure out the mail system, use google (it always helps), learn how student web pages offered by the school are set up.

In reverse engineering you could learn the security setup and do research on how to bypass it. Figure out it's weaknesses. Perhaps even saving the entire website onto your hd and modifying the html in the document itself. This can be useful in getting to limited parts of the site and is commonly overlooked as a technique that could be used. This is one of my favorites personally.

Finally social engineering, you'll have to use this to con the tech people into telling you what you want and need to know about the system's security. If they're stupid enough they'll let you log in with their password and username. Plus if you talk a bit of tech with them they'll usually open up to ya. The best way around this is to never volunteer information. NEVER! this blog is MY personal exception to the rule.

I'll post again in a few days since this one kinda sucked.

AK

posted by Akiratima at 9/09/2005 09:21:00 AM 0 comments

Friday, September 02, 2005

Music Makers want YOU!

So this post is about a few free software bits o info. First is Propellerhead's music and sound synthesizing software which they discontinued. This means you can download it for free from their site now. The only problem with this is the fact that you need to register for the site and then you'll end up getting more spam mail and all that annoying shit. So I figured I'd help ya bypass that all together.

Link - this link is a direct download of the windows version 2.0.1 of their software

Link - This link is a direct download of the macos version 2.0.1 of their software
Link - and cd bootable version

There are loads of mods for this software that are downloadable from their site. I don't know if you need to register for that or not but if you do simply use bug me not and you can get to them.

Next we're going to talk about Fruity Loops
Now fruity loops allows you to creat music as well, and it offers a fully functional demo, but it doesn't work nonstop. The demo has it's limits. It's a really good music based program and it'd be a shame if I didn't tell you about it. Now you can do the legit thing and pay for the full version, or you can just download
either
A: a crack for the demo version which is very easy to find by searching google.
or
B: the full and pirated version from a torrent site in which you can't be sued for using because of the country it's based in..

Personally I don't condone piracy.....cough cough

Those are the best 2 programs out there.

Ever since I put a script that keeps track of people on here, kinda like a counter only theres more to it, I've noticed that my blog is checked out by a whole lot of people. I'm so glad that I can supply you with some sort of useful knowledge. I hope that you enjoy this for a good long while to come. If theres anything specific you'd like me to post about feel free to leave a comment to a post and I'll get on it.

AK

posted by Akiratima at 9/02/2005 05:55:00 PM 0 comments