Follow us on Twitter!
It is never to LATE to become what you never WERE.
Thursday, April 17, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 20
Guests Online: 19
Members Online: 1

Registered Members: 82815
Newest Member: medjiking
Latest Articles
View Thread

HellBound Hackers | Computer General | Hacking in general

Page 1 of 2 1 2 >
Author

Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-09-09 20:10
At my school we have this thing where we have to do a senior project on my career choice and I have to present it in front of a group of people that consist of the Superintendent of our school system, the principle of each of the four high schools in our school district and the director of the program that I go to since it isn't a traditional high school. I have to present this project after December of this year, so I have time to work on it, but I would like to rehearse and make sure I don't look like an idiot and ruin my chances of graduating early.

My career in mind is IT security, and I'm trying to think of a way that I can present this to the judges. I have thought of using our schools network as my project since I already know it inside and out, but I've already talked with the IT guy for our school system and he said that wouldn't work because someone on the board might find a 16 year old getting into the school system full of sensitive information as a threat.

But would anyone know how I could present this, or any ideas? Any help at all would be greatly appreciated.

If this is the wrong place for this, I apologize. I'll re-post this in the correct forum if someone would tell me where the correct place would be if this isn't it.

Edited by on 04-09-09 20:13
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-09-09 20:57
To start with you should never show exploits on someone else's site/network and especially not in real time.
But when you say "IT security" do you mean on websites or networks?
If you know some PHP or Perl you could make your own website and show some common exploits there.
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-09-09 21:42
I'm not really all that good with PHP or Perl to be totally honest. Only thing I really know fluently is HTML and CSS and they are the same thing and it's pretty sad. Everything else I just have secondhand knowledge off of. I thought about getting into my own personal network at home, but I live in a house full of Macs, and as far as I know, they are way out of my league.

I would really be fine with either networks or websites. I thought of making a LAN type network with a few other laptops or desktops, but I wasn't sure exactly how that would work out for me. I'm just open for ideas on both ends. I have a few months to figure out exactly what I'm doing and how to put it all into a presentation...

Thanks for telling me not to show them anything in real time :/ That'd probably save me a lot of trouble...
Author

RE: Senior Project

chess_rock
Member



Posts: 244
Location:
Joined: 20.02.08
Rank:
Apprentice
Posted on 04-09-09 22:23
Maybe you could program a set of tools for security purposes, like a port-scanner, pinger and other easy to program tools. You could add information about their uses and so. Read about sockets if you like the idea. There are lots of information about that on the internet.

Anyway, that's just a suggestion...
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-09-09 23:43
I most likely will make my own tools and things like that, but I'd want to have something to test them and and prove that they work. But that's a great idea.

I don't know if I should make my own network, make a website or use someone elses website.
Author

RE: Senior Project

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 05-09-09 00:09
If you want to test shit out, either get two spare boxen and configure those, or go virtual.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Senior Project

WightBoy
Member



Posts: 35
Location: Australia - NSW
Joined: 08.06.09
Rank:
Apprentice
Posted on 06-09-09 11:43
Fre Quen C wrote:
I most likely will make my own tools and things like that, but I'd want to have something to test them and and prove that they work. But that's a great idea.

I don't know if I should make my own network, make a website or use someone elses website.


You may use my site if you like... onewayexpress.ismywebsite.com. However, because i dont host the server, it is somewhat secure. And doesn't have a lot to hack. (Small site, small purpose. Use if it helps.) The whole idea it is a proxy may help you out aswell i guess...

You could make the portscanner, and ask the IT Security guy to open some ports to show that it does work. (Tell your audience the IT Security person allowed it beforehand of course Smile. If that wont lose his job...)

Goodluck


i195.photobucket.com/albums/z148/gabfrab/sig-1.jpg

Edited by WightBoy on 06-09-09 11:46
http://onewayexpress.ismywebsite.com
Author

RE: Senior Project

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 06-09-09 11:52
WightBoy wrote:
You may use my site if you like... onewayexpress.ismywebsite.com. However, because i dont host the server, it is somewhat secure. And doesn't have a lot to hack. (Small site, small purpose. Use if it helps.) The whole idea it is a proxy may help you out aswell i guess...

You could make the portscanner, and ask the IT Security guy to open some ports to show that it does work. (Tell your audience the IT Security person allowed it beforehand of course Smile. If that wont lose his job...)

Goodluck


Are you a complete, total idiot, or are you just trying to mess with that guy?



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Senior Project

WightBoy
Member



Posts: 35
Location: Australia - NSW
Joined: 08.06.09
Rank:
Apprentice
Posted on 06-09-09 11:58
complete total idiot?

if its about the port scanner... just a suggestion... calm down
if its about my site i seriously dont care.. ill make another one later if he fucks it up. Only get 1gig bandwidth anyways >.>


i195.photobucket.com/albums/z148/gabfrab/sig-1.jpg

Edited by WightBoy on 06-09-09 12:02
http://onewayexpress.ismywebsite.com
Author

RE: Senior Project

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 06-09-09 19:29
WightBoy wrote:
complete total idiot?

if its about the port scanner... just a suggestion... calm down
if its about my site i seriously dont care.. ill make another one later if he fucks it up. Only get 1gig bandwidth anyways >.>


You_are_not_the_owner.

You cannot give permission.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 06-09-09 19:31
I'm trying to see what I can do about buying my own website and bringing two computers with an internet connection using one to show what I could use to deface the site and the other to fix what was defaced through totally different methods. I might just use one computer if I can't get my idea to work out right...

Talked with a few friends and they said messing with a website would probably be the easiest way, and it'd keep me from having to set up my own network. Gotta figure out how to buy a domain to set it up though.

Thanks for offering to let me use your site, but I'm going to have to decline. I wouldn't want to get in trouble for it.

Author

RE: Senior Project

fashizzlepop
Member



Posts: 482
Location: Old folks home.
Joined: 08.04.08
Rank:
Moderate
Posted on 07-09-09 05:24
1. DVL
2. Your PC

Show 'em what you know.


"The definition of insanity is doing the same thing over and over again and expecting different results.”
~Albert Einstein~


csullivan.codeinspire.net/images/boomsig2.png
fashizzlepop@gmail.com http://csullivan.codeinspire.net/
Author

RE: Senior Project

stealth-
Member



Posts: 1003
Location: Eh?
Joined: 10.04.09
Rank:
Mad User
Posted on 07-09-09 06:26
Personally, If I was in your situation, I'd set up a video recording session on my desktop and record me breaking into a linux box with a few pre set up vulnerabilities, and make it really realistic. Such as trying a few vulnerabilities that dont work, then getting access to a user level account and running a permissions upgrade vulnerability to root the box. Perhaps there are other things that could be demonstrated aswell, such as WEP encryption breaking and packet sniffing. Then you could just show the video and explain it as it goes along, pausing if necessary.

EDIT: Don't forget that by "pre set up vulnerabilities" I mean use a box you have permission to use, cause obviously it would be a bad idea to show crime evidence to your school principal Wink


The irony of man's condition is that the deepest need is to be free of the anxiety of death and annihilation; but it is life itself which awakens it, and so we must shrink from being fully alive.
http://www.stealt. . .

Edited by stealth- on 07-09-09 06:28
http://www.stealth-x.com
Author

RE: Senior Project

WightBoy
Member



Posts: 35
Location: Australia - NSW
Joined: 08.06.09
Rank:
Apprentice
Posted on 07-09-09 07:51
spyware wrote:
WightBoy wrote:
complete total idiot?

if its about the port scanner... just a suggestion... calm down
if its about my site i seriously dont care.. ill make another one later if he fucks it up. Only get 1gig bandwidth anyways >.>


You_are_not_the_owner.

You cannot give permission.

I am the owner of what is mine.. i DID NOT mean going that deeply into the server. Anyway he declined so eh...


To the op:
You could simulate the hacking of a wireless network. So write a program looking and behaving like aircrack but not actually doing anything wirelessly, just showing the processes of hacking using particular software, then of course show the best methods in which secure the network.


i195.photobucket.com/albums/z148/gabfrab/sig-1.jpg

Edited by WightBoy on 08-09-09 04:05
http://onewayexpress.ismywebsite.com
Author

RE: Senior Project

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 07-09-09 10:46
WightBoy wrote:
I am the owner of what is mine.. i did not mean going that deeply into the server.


You are an idiot.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s

Edited by spyware on 07-09-09 10:46
http://bitsofspy.net
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 07-09-09 16:27
I actually didn't even consider using DVL shizzlepop. Probably going to try and use that with some other things. I'm going to try and cram as much in the presentation as I can.


I haven't gotten to where I know much about programming... Kinda feel bad about it. But if I'm going to simulate a wireless network what language should I try to use to make one?
Author

RE: Senior Project

fashizzlepop
Member



Posts: 482
Location: Old folks home.
Joined: 08.04.08
Rank:
Moderate
Posted on 07-09-09 20:25
You can't really program a wireless network... you would actually need the real deal. You can find a cheap(cheap at Best Buy or Frys) wireless router and ask the tech guy if you can set it up and show a quick demo of breaking the security and accessing a box of yours. This will take a lot of planning. But you can make the box you break into run DVL.


"The definition of insanity is doing the same thing over and over again and expecting different results.”
~Albert Einstein~


csullivan.codeinspire.net/images/boomsig2.png
fashizzlepop@gmail.com http://csullivan.codeinspire.net/
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 08-09-09 02:24
I agree with the above posts. Setting up an insecure network and breaking into it and explaining would be alright. Just keep legal, as previously said: you don't want to simply show crime evidence to the principle and admins.




Edited by on 10-09-09 01:15
Author

RE: Senior Project


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 08-09-09 03:12
I'm going to see what I can do about going to Best Buy tomorrow and buying a router and making my own little network. Would I need to get two, or would one suffice? I don't know much about actually setting up a network, I apologize...
Author

RE: Senior Project

WightBoy
Member



Posts: 35
Location: Australia - NSW
Joined: 08.06.09
Rank:
Apprentice
Posted on 08-09-09 03:55
MoshBat wrote:
spyware wrote:
WightBoy wrote:
I am the owner of what is mine.. i did not mean going that deeply into the server.


You are an idiot.

Seconded.

From what I've managed to translate from something that I can only assume is known as "utter shite", you're trying to hand out permission for people to fuck with a server that isn't yours, even if it's just the bit you pay(?) for.
Well, let's see if that holds up in a court of law should anyone be so stupid as to take the "permission".


Can you read? i didn't mean the server... i meant entirely what is mine. Hacking isn't all about hacking solely the server... correct me if im wrong.

I basically meant the OP could start with the most basic methods and build to more technical ones.

Such example of one so simple is a comment injecting some javascript... (ie: <script>alert("XSS"Wink;</script>Wink. Yes i know it is nothing big and technical, but it is still a form of hacking, not affecting a server just the page, and may also be a method which is skipped over by particular people.

Im sorry if what i meant didn't make sense at first (lack of sleep + constant training don't mix)


i195.photobucket.com/albums/z148/gabfrab/sig-1.jpg

Edited by WightBoy on 08-09-09 06:47
http://onewayexpress.ismywebsite.com
Page 1 of 2 1 2 >