Previous Thread
Next Thread
Print Thread
Rate Thread
Joined: Aug 2002
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Aug 2002
Posts: 4
Our internet security at work has just been
violated by something called X-Stop .
If you try and enter any adult content site not that you
should be , you get an error message
"ACCESS DENIED
You have attempted to access information that is blocked from viewing by X-STOP.
X-STOP TM
Internet Content Management
Rating Value: 1
Threshold: 0"
Is there some way of bypassing this , I think this
program looks at the source code for words under
meta tags ?

<img border="0" alt="[Borg]" title="" src="graemlins/borg.gif" />

Joined: Mar 2002
Posts: 197
P
Member
Offline
Member
P
Joined: Mar 2002
Posts: 197
No, there is no way to bypass this. (Or maybe there is, but i really doubt that. If your able to directly connect to the router(or gateway) (if there is one at first place). (This is what i did in school, but they didn't have a hardware firewall, just a proxy server laugh )


Never argue with fools... They will only drag you down to their level, and beat you with experience...
Joined: Aug 2002
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Aug 2002
Posts: 4
Silly question , how do I directly connect to
the router or gateway ?

Joined: Mar 2002
Posts: 197
P
Member
Offline
Member
P
Joined: Mar 2002
Posts: 197
I don't know if it's possible but this is how you should do it.

At fisrt you need to know the ip.

Then fill this ip in in default gateway in network preferences


Never argue with fools... They will only drag you down to their level, and beat you with experience...
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
You could try a web based proxy of some sort, but I dunno if that would work. Here's an example for ya, but it is not supposed to be used for adult content, at least they ask you not to use it for that. But who knows, maybe they'll work for ya. Click the 'bypass url filter' link under the tile to take you to it.

http://www.gr2600.com/

sum

Last edited by Gremelin; 08/03/18 02:26 PM.
Joined: Mar 2002
Posts: 860
Likes: 1
Der �belt�ter
Offline
Der �belt�ter
Joined: Mar 2002
Posts: 860
Likes: 1
Since this isn't 100% Windows Security, I'm going to move this post to Newbie Questions...

Joined: Mar 2002
Posts: 257
Member
Offline
Member
Joined: Mar 2002
Posts: 257
Actually you can connect to routers. Most routers have their own type of lets say "O/S" installed, or in other words some kind of controlling firmware.

First you would need to enumerate what network devices you have and what their IP address is. If you perform a traceroute on your network you should come up with something like this (I am giving you an example of enumerating routers over the net given a domain)

Domain: www.somedomain.com
Traceroute results should look something like this before the last few hops (that is if you have not lost most of your packets by then or the request hasnt timed out.)

some-rtr.somedomain.com (192.168.0.1) <-- look at that bit
www.somedomain.com (192.168.21.3)

Now we finally got to our traget but we also know that there is another hop residing before our target that holds a rather aqueward IP address to be published on the www. 192.168.X.X usually are LAN only resident IP addresses which means that you will never find a machine on the net with that IP range. In this case you look at it a different way because the previous hop before our target holds the IP 192.168.0.1, which should be the routing machine on the LAN/WAN our target is running (dont get your hopes up, it could just be another server and not a router, or even in the unlucky cases a hub)

So we take our guesses upon it being a router (actually it is a router in this scenario hence it says, some-rtr. (only the dumb would think its short for UNIX server)

So we have successfully identified the IP of the router, now we want to perform a port scan, but wait you need to specify what region of ports to look for because different routers use different ports smile
A complete ports list can be found at http://www.neohapsis.com/neolabs/neo-ports/neo-ports.html

so well in this scenario we will take Cisco routers the most commonly used, which use port ranges between, 1-25, 80, 512-515, 2001, 4001, 6001 and 9001. Well do your scan(if your network permits you to do so.) So lets make up some fake results.

Interesting ports open on 192.168.0.1
Port 7 is OPEN running TCP offering ECHO
Port 9 is OPEN running TCP offering DISCARD
Port 13 is OPEN running TCP offering DAYTIME
Port 19 is OPEN running TCP offereing CHARGEN
Port 23 is FILTERED running on protocol TCP and its Telnet (we already have a good port here)
Port 2001 is OPEN running on protocol TCP and is a DC service(uhh not bad either)
Port 6001 is OPEN on TCP offering X11:1 (hehe good too the XRemote port is open)

Ok our guess us pretty certain we are dealing with a Cisco router here but yet we dont know [censored] about it, we want to know O/S its running.

Well before [censored] around too much we will try to telnet to the router itself on ports 23 and 2001.

Wow, look what we got here!
User Access Verification
Password:

We smile with great anticipation smile smile

We can connect to the router, now you can brute force the password, but I rather go a few steps further to find out exactely what we are dealing with.

So we enumerate the O/S now, piece of advice, do not try to scan several ports at once when enumerating the O/S since alot of modern technology has detection for such scanning attempts and will just block your packets frown
Or they can flood the remote machine and bring it down, which is not the idea here. If we wanted to DoS people we would be in 1996

So single port scan on port 13 for now, we launch beloved nmap (which also comes for winnt now) and a magical surge over the machine suddendly spits back this info at you.
Port State Protocol Service
3 filtered TCP Daytime
Remote operating system guess: Cisco Router/Switch with IOS 11.2

Rawwwwwwwwwww what bastards, we got what we wanted on the first attempt (wish real life was like this)

Well ive showed you how to enumerate the router, its O/S and how to connect to it. The rest is up to you. I suggest you go googling, I am sure there is tons of revelant information online.

And just a comment.
You can find tons of info out about X-Stop at their site
http://www.8e6technologies.com/
So all the above processes can be eliminated!

Never forget that social engeneering is a prime key to cracking, in most cases, Gizmo can tell you LOTS of [censored] about being "Social" with companies and large corporations
/me thinks of some weird telco but cant figure out the name

What a waste of time frown

Chau

<<psychogen>>


The use of "hacker" to mean "security breaker" is a confusion on the part of the mass media. We hackers refuse to recognize that meaning, and continue using the word to mean, "Someone who loves to program and enjoys being clever about it."
--------------------
"Its not a bug, its a feature" (Epic Games)
Joined: Mar 2002
Posts: 533
Enforcement Admin
Offline
Enforcement Admin
Joined: Mar 2002
Posts: 533
Or... You could email yourself the link with a Hotmail account, and open the link on the Hotmail website, so it will open within the Hotmail Frame...

Joined: Aug 2002
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Aug 2002
Posts: 4
Thanks SaintBase works


Link Copied to Clipboard
Member Spotlight
Phatal
Phatal
Houston, TX
Posts: 298
Joined: April 2004
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Cyrez 1
Girlie 1
unreal 1
Crime 1
Powered by UBB.threads™ PHP Forum Software 7.7.5