Nova's Blog (5)

#Tigger 1.0 written by NOVA # #This script will allow you to bounce through 3 penetrated zyxell routers. #Then display the arp cache of the last system. #Just edit the required data such as HOST and Passwords # NOTE #Each system needs telnet enabled import socket import getpass import sys import telnetlib #Place systems here HOSTA = "192.168.0.1" PASSA = "LLUcpe99\n" HOSTB = "192.168.0.2" PASSB = "LLUcpe99\n" HOSTC = "192.168.0.3" PASSC = "LLUcpe99\n" PORT = "23" tn = telnetlib.Telnet(HOS… Continue

Ok today we are going to make a simple shell script that will scan a range of hosts, parse the information and have he computer use voice synthesis to tell you when the scan is complete. This is for use with ubuntu as i cba with windows. I suppose you could do the same under windows but i will concerntrate on ubuntu. Stage 1. Installing packages --------------------------------- login as root and execute the following apt-get install festival; apt-get install flite; apt-get install nmap; sta… Continue

This is not a tut as such, more of a note and i take no credit for making the bomb as its in the public domain. If you go back to the oldskool days people was using fork bombs to crash a server or host. Now as many routers i have come across have a basic busybox shell with /bin/sh enabled. You are able to execute a forkbomb on the router which will make the router unresponsive. This only requires a reboot to fix but can be a devestating attack used in conjunction with other attacks. just creat… Continue

if you manage to find an open linksys or d-link router, you will find that telnet will drop you into a busybox shell. This is usful as you can upload and execute various scripts. This pingsweep script will use the routers builtin script to ping sweep a range of ip addresses. Modify the ipaddress to scan other ranges, this is set to 192.168.1.* cat > script.sh ----script------------------------------------------------------------------ #!/bin/sh ip=1 while [ $ip -lt 31 ] do ping -c 1 192.16… Continue

The aim of this excercise is to debug the Virtual drive using cygwin to find the usernames and passwords of users on the system. We will then be using john the cracker for cracking the password. We will be using debian as the guest machine and the host is based on a winblows XP system. Theory =-=-=- By examining a virtual drive we should be able to locate some basic stuff about the system. We are mainly looking for strings containing passwords, users, versions, services etc in this case stored… Continue