UGN Security
Posted By: trackrules69 Knowledge? - 12/02/02 02:46 AM
Hello everyone im pretty new, and i was wondering if anyone could help me.
Im extremely interested in learning hacking/& phreaking and unlike other newbies i would actually like to learn something and not just want to "hack my freinds hotmail account" or whatever.
It would be greatly appreciated if someone would point me in the direction of some books or sites that i can read up on and hopefully learn some of this stuff.
Posted By: Moffesto Re: Knowledge? - 12/02/02 03:02 AM
hacking exposed series is good.
Posted By: Le4rner Re: Knowledge? - 12/02/02 03:43 AM
Good first post. I applaud you. Well what do you know. If nothing about hacking, I recomend Unix, Telnet, Study the TCP/IP protocol suit and maybe some other networking suits, Learn a language or 2. I recomend if you don't know any start easy. Qbasic, Pascal, HTML(Not realy a language but a start) Then C, C++ maybe C#.

If you are intrested in servers, read up on Unix, apache server, Learn Perl, ASP, PHP, Python, unix shells

sh
csh
ksh
bash
tcsh
zsh
rc
es

shell scripting http://www.injunea.demon.co.uk/pages/page201.htm

Try some of those terms in http://google.com

wink
Posted By: Asteos Re: Knowledge? - 12/02/02 09:28 PM
http://en.tldp.org/LDP/abs/html/index.html
Posted By: trackrules69 Re: Knowledge? - 12/02/02 10:44 PM
I know html if you could even consider that a language,and i am currently taking computer science classes over java at school. Someone said something really fun to do was "packet sniffing" or something of that nature, is this even something worth looking into,or is it a waste of time. oh and thank you for the links....
Posted By: pergesu Re: Knowledge? - 12/02/02 11:18 PM
Might want to get a jump start on Java. Check out www.javaspot.net
Posted By: Le4rner Re: Knowledge? - 12/03/02 12:35 AM
Sum mentioned packet sniffing in another post. Yes this is good to learn. Hell anything you learn is another gem for you mind. Java is very good to learn. I never knew how much you could do with it till pergesu came to my site.
Posted By: Infinite Re: Knowledge? - 12/03/02 01:19 AM
I find sniffing entertaining. I'm a netwroking student and this is the kinda thing I'm supposed to be into though. I sniff around my school's network once or twice a week just to see what's floating around.

The only thing that makes it somewhat boring is the fact that more and more networks are switched networks now as opposed to networks using hubs. This means that the amount of worthwhile traffic you'll see is greatly reduced. In an ideally switched network all you'll see is your own traffic and the broadcasts from your subnet. While you can learn a lot from reading through endless amounts of ARP and DHCP, it does get boring real quick.

One thing I see at my school (due to a poor configuration I would imagine) is a few protocols called HSRP, STP, and CDP. In order those are:

Hot Standby Router Protocol

Spanning Tree Protocol

Cisco Discovery Protocol

So now you're asking what those are right? Ok then:

HSRP: A protocol that provides high network availability and provides nearly instantanieus hardware fail-over without administrator intervention. It generates a Hot Stanby router group, including a lead router that lends its services to any packet being transfered to the Hot Standby address. If the lead router fails, it will be replaced by any other routers-the standby routers-that monitor it.

STP: The bridge protocol (IEEE 802.1D) that enables a learning bridge to dynamically avoid loops in a network topology by creating a spanning tree using the spanning-tree algorithm. Spanning-tree frames called Bridge Protocol Data Units (BPDU's) are sent and received by all switches in the network at regular intervals. The switches participating in the spanning tree don't forward the frames; instead, they're processed to determine the spanning-tree topology itself.

CDP: Cisco's proprietory protocol that's used to tell a neighbour Cisco device about the type of hardware, software version, and active interfaces that the Cisco device is using. It uses a SNAP frame between devices and is not routable.

So what does all that mumbo-jumbo mean? Well, basically it means that the devices that make up the network backend are telling me everything there is to know about themselves. USing these 3 protocols I can:

- Layout the exact physical AND logical topology of the network
- Know the IOS version running on any given switch or router
- Know the exact capabilites of any network device
- Know any services running on any network device

And much more. About the only thing these devices aren't telling me is passwords and logins (which you can find with sniffing too :x ).

But like I said, my school network is switched so this is really the more boring stuff you can find out by sniffing. For someone like me though who has aspirations of designing and maintaining networks this sort of thing is insightful and interesting.

It never hurts to just load a good packet-sniffer up and let it go for a while. If you don't find anything interesting or are just plain bored with it then stop. You never know what you're gonna find though unless you look.

As far as packet sniffers go, there are two that I reccomend:

Ethereal - for windows
http://www.ethereal.com/

Snort - for *nix
http://www.snort.org/

If you would like a more comprehensive list of available sniffers you can try
http://neworder.box.sk/codebox.links.php?&key=sniff

Any other questions feel free to shout em out.

sum
Posted By: pergesu Re: Knowledge? - 12/03/02 01:43 AM
I came from Bolt smile
Posted By: trackrules69 Re: Knowledge? - 12/03/02 10:05 PM
thanks
© UGN Security Forum