We've seen hacks like this before, no doubt about it - but it's a really nice trick which you gotta love (and hate) - check it out here!

So, basically this hack requires PHYSICAL ACCESS to the harddrive, using BackTrack (or some other boot utility capable of reading/writing NTFS) the file Utilman.Exe in \Windows\System32 is replaced with Cmd.exe - after a reboot, at the logon screen, if Utilman is called (by hitting Win-key + U) you'll get a nice command prompt running under SYSTEM credentials - pretty powerfull... From there the only limit is your imagination!

Yes, Bitlocker protects us from attacks like these - so somebody please call Mr. Bitlocker!

.

Unlock your nokia cell phones for free, without any cables Now Anyone can now calculate their own DCT4 Nokia unlock codes, and Unlock their Nokia Cell phones. Why? If you unlock your phone then you can go to a different provider with the same phone. This is usually something for the people with tri-band phones. Some take it out of the country and use the phone with the local sim card provider. You can now buy phones off ebay, and won’t have to pay someone $$ to unlock it for you. {mos_sb_discuss: 18} It has been released for free!! Anyone can now calculate their own DCT4 Nokia unlock codes. Download CyberGSM and Hollowmans software HERE! (this is their latest release 1.4). Cyber’s software seems to work on all Windows operating systems including XP! Also it is the most stable and user friendly! To calculate the correct unlock code you will need to enter into the software three pieces of information about your locked phone: 1) Lock type: This is either 2 or 5. Always select 2 unless your handset is a 7650, 3650, 3660 N-gage, 6600 in which case select 5. 2) IMEI The 15 digit serial number of your handset. This can be found by pressing *#06# into your handset. 3) Network provider This refers to the network your handset is locked too. For UK providers Orange = 23433 T-Mobile = 23430 Vodafone = 23415 O2 = 23410 Virgin = 23400 (although can vary from handset to handset) The latest version of Cybers software makes selecting the correct network code very easy indeed! Just select the network your handset is locked to using the drop down listboxes. You can view a page containing a complete world wide list for all network provider codes HERE. (thanks to Yeldar) Ready? Step 1 Unzip cyber & hollowmans software and double click the file named: DCT4 Calculator 1.4.exe Step 2 Complete the IMEI field, and then select the country and network your handset is locked too using the drop down list boxes. Now you need to select a lock type: either 2 or 5. Always leave this as type 2 UNLESS the phone you want to unlock is a 7650 or 3650 in which case select type 5. You will also See a check box - make sure this REMAINS checked (as this means the software will calculate the latest version 2 codes not the older less reliable version 1 codes) See the screen shot below! The program will produce a set of 7 codes, something like those below: #pw+378826702640327 +1# #pw+294365624205166 +2# #pw+843021176162422 +3# #pw+444037775262334 +4# #pw+494237425204736 +5# #pw+733110464133112 +6# #pw+145234270304737 +7# Any one of the 7 codes codes will probably unlock your phone but I normally use Code 7 first, if that does not work then code 1 and on the rare occasion they both fail I try code 5. Step 3 Now enter code 7 into your phone with NO sim card in! To access “p” just press “*” three times within one second. To access “w” press “*” four times within one second. To access button “+” you have to press twice “*” within less than a second. If successful you will see the message ‘Phone restriction off’ (if not you will get a ‘code error’ message). THAT’S IT, YOUR PHONE IS UNLOCKED! ITS THAT SIMPLE!! IF YOU HAVE 3 FAILED ATTEMPTS AT ENTERING IN THE CODE (I.E YOU SEE “CODE ERROR” 3 TIMES) THEN STOP AND PLACE YOUR DETAILS ON MY FORUM. Warning and Tips!!! If the unlock code has been entered incorrectly 5 times or more then upon entering in further codes the phone will display “cannot undo restriction” (or “Not Allowed” for Symbian phones - 7650 / 3650 / N-Gage) message instead of “code error”. If you see the “cannot undo restriction” or “Not Allowed” message then only a proffesional unlocker can help you by using an expensive cable soloution! If the code does not work after a couple of tries: 1) Double check you have entered the correct IMEI - press *#06# into the handset to display your IMEI. (many people type a digit in wrong) 2) Double check what network the handset is locked too and your network code. 3) Make sure your phone is not already unlocked! sounds daft but some people just don’t know what they are doing! To check if your phone is locked, insert a foreign sim into the handset. (i.e. a sim that the handset will not accept) - the phone should display something like ‘enter restriction code’ - if you do not see this then your phone is not locked! If Your phone is already unlocked you will always get code error regardless if you enter the correct code or not!!! As mentioned earlier, to prevent dissapointment please post your details on my forum if you have 3 failed attempts. NB. Do not worry, you CAN NOT damage your phone by entering the incorrect code more than 5 times! Its just that you will not be able to unlock it even with a correct code if you have! So unlocking by codes is very safe! :-)

Today I went for the CEH v5 exam, EC-Council certification# 312-50, I'd been studying for it for a while. It had no less than 150 questions - and pretty tough ones too - but I managed to pass it (85% which is OK considering US law was part of the Qs).

I can really recommend you to go for this exam - it's somethin' else dude! The questions are short and exact (still multiple choice), but just the process of going there is VERY cool and interesting. Personally I downloaded a lot of spooky tools and guides, created an isolated network with virtual machines and tested, tested, tested. It was fun I can tell you - I can't seem to stop studying this stuff!

I also read 2 books on the journey:
- Michael Gregg: Certified Ethical Hacker Exam Prep (very good)
- Kimberly Graves: Official Certified Ethical Hacker Review Guide (very brief)

If you're a totally cool (and white) hacker dude already, you could probably go for the latter only (it will give you the overall idea of what this exam is all about, the CEH terminology etc). BUT the first one mentioned, by Michael Gregg, is a VERY good introduction (broad and deep) into the world of haxin' actually.

The whole idea with this exam is, that to be a professional penetration tester or security consultant, you need the skills and tools of the hackers. Put yourself in their place and start looking for your (or your customers) weakest link! A security system is only as strong as its weakest link - that also means, that security is a process (maintenance).

 

Security is, and always will be, a mixture of: Prevention + Detection + Response!

 

.

If you have looked into "The onion ring", or just "Tor", you have probably wondered if it would be wise to block access from these anonymous servers (or maybe just the exit nodes). I am not gonna talk about how the encrypted Tor network works, as a great deal of info can be found "out there". Main source should be: www.torproject.org - and perhaps WikiPedia.

As a security guy (or ISA administrator maybe), you ask yourself "why do these people want to be anonymous"? In this case "anonymous" means that "they" don’t want targets on the Internet to see the originating IP address (the source). A "target" is typically a web site or some other web service.

The answer? Well, first you gotta ask yourself: "who are they"? And there’s really no good answer to that question I guess - who really knows? All we can do is guess, so let me turn these questions around: if I were to try out a hack, or some new exploit, would I do it directly over my personal WAN IP? Or would I try to "hide" my originating IP? If you look at it in that perspective Tor networks are GREAT for hiding out - the whole idea is that it shouldn’t be possible to track the communication. What you don’t know can hurt you, right? I’m not saying all Tor users are hackers or anything, because they are not, but you have to look at the odds… What do you think? I cant help thinking, that if you hide from someone you have something (bad) to hide - but hey, it could be a Christmas present, right?

Anyway - you have to decide - do I want these people to be able to access my web sites and services or not? I’m not going to decide on your behalf - that’s politics!

So, what can we do about it if we want them out? Well, after reading Thomas Shinders Blog entry "HammerOfGod Computer Sets — Block and Log by Country" I got an idea. How about downloading a list of Tor servers, import it into a Computer Set (CS) and make sure that CS is an Exception on all of you Published services? This way hackers out there, behind Tor servers, won’t be able to poke around your IIS servers or whatever you have.

 

So, I started a search for Tor lists - the best thing would probably be to create it yourself dynamically - but that would take programming skills that I unfortunately haven’t got. I’m just a scripting kinda guy… The thing is, you would need to have a Tor client installed and from that extract the list once in a while - not possible for me (maybe you can do it easily - please post a "how to" then).

But, then I found a list on Proxy.org - this list it updated regularly - the only thing is, that this list is formatted for easy import on Apache servers, definitely not ISA. But hey, we can change the formatting in a script and then call the "AddComputersToComputerSet.vbs" script from Microsoft… Simple, all we have to do then, is to configure the CS exceptions on our ISA rules, schedule the script and never touch it again!

So, I created a simple script for:

a) Downloading the latest Tor server list from Proxy.org
b) After the download it creates a new file with the correct format (machine_name<tab>IP_address)
c) And then it calls the AddComputersToComputerSet.vbs with the correct parameters

You can download the script here - also download the script from MS (link above) and place them in the same directory. You will need a bit of VBS knowledge to "tweak" the script(s), but I’ve tried to make the code "easy understandable". Now, make sure you can run it from your ISA box (it downloads over HTTP), and then schedule the thing (oh, and remember to remove the Msgbox "Done!" line if you want this as a scheduled task).

If you want it to run from another machine, take a look at the link to the AddComputersToComputerSet I provided above (some changes are needed).

Please report back if you have any bug reports or ideas! It provided "As Is" - after downloading you’re on your own :)

 

The dynamically created/updated ISA Computer Set:

The ISA Rule/Publishing Exceptions:

What’s missing?
I can think of a lot of things I’d like to add in there - but the idea with this blog entry is to "spread the word" and a Proof of Concept.

Personally I want to add logging of script actions, email alerts if the list is unavailable or some other errors occur. Also, there’s a weakness in case the downloadable list is compromised somehow. Say someone adds Internal/Private/"not-Tor" IPs etc. to the list, it just might give some strange results for your users. So, we have to trust the list is OK secure - but it would be a good idea to put in some sort of validation on what IP addresses are put into this particular CS.

 

Hope you can use this :)

.

The software provided is not available on net anymore.It is called ERD Commander 2005.The company which made it was bought by Micro$oft and they discontinued it.It is a VERY POWERFUL software SO DON”T SHARE IT CUZ THEN THEY MIGHT HACK U.

1. Download this file from here(click here to download)
2. It is a rar file.Extract it to get a ISO file.
3. Write the iso file to a cd.
4. Boot the computer using the cd.
5. Use the lock smith using to remove the password.

Other Features Of ERD Commander

ERD Commander

When your server or workstation won’t boot, you need ERD Commander 2005. ERD Commander 2005 boots dead systems directly from CD into a Windows-like repair environment. You’ll have full access to the dead system’s volumes, so you can diagnose and repair problems using tools located on the ERD Commander 2005 Start menu. And you’ll have built-in network access to safely move data off of, or on to, the dead system. With ERD Commander 2005 you can repair a system quickly and easily, saving you time and rescuing your critical data.

* Boots dead systems directly from CD
* Easy, familiar Windows-like interface
* Intuitive Solution Wizard helps you select the right tool to correct your system issue
* Includes Crash Analyzer Wizard to pinpoint the cause of recent system crashes for repair
* Allows complete disk sanitizing/data removal with Disk Wipe utility
* Includes the Locksmith utility to reset lost Administrator passwords
* Includes FileRestore so that you can quickly find and recover deleted files
* Provides access to XP Restore Points on unbootable Windows XP systems
* Detect malware and other applications that may be consuming system resources
* Includes an Internet browser to facilitate downloading needed files and patches
* Compares key info on unbootable systems with that of a working system for diagnosis and troubleshooting
* Automatically identifies and replaces critical system files that have become corrupt
* Allows for formatting and partitioning of disks
* Provides emergency removal capability for faulty hotfixes
* Built-in network access to safely copy data to/from dead systems
* Repair and diagnostic tools located on Start menu
* Repair tools include System Restore tool, System File Repair, Service and Driver Manager, Hotfix Uninstall Wizard, Locksmith, Registry Editor, Explorer, Disk Management, and Command Prompt
* Data recovery tools include Disk Commander and FileRestore
* Diagnostic tools include Crash Analyzer Wizard, System Compare, Autoruns, Event Log Viewer, System Information, TCP/IP Configuration, and Logical volumes utilities
* Compatible with Windows NT, 2000, XP, and Server 2003

My friend asks that whenever he tries to open the task manager, he is encountered by the following error:

“Task Manager has been disabled by your administrator”

Here is solution about enabling the task manager:

Enabling Task Manager from Group Policy Editor
1. Go to “Start” -> “Run” -> Write “Gpedit.msc” and press on “Enter” button.
2. Navigate to “User Configuration” -> “Administrative Templates” -> “System” -> “Ctrl+Alt+Del Options”
3. In the right side of the screen verity that “Remove Task Manager”” option set to “Disable” or “Not Configured”.
4. Close “Gpedit.msc” MMC.
5. Go to “Start” -> “Run” -> Write “gpupdate /force” and press on “Enter” button.

Enabling Task Manager from Registry Editor
1. Go to “Start” -> “Run” -> Write “regedit” and press on “Enter” button.
Warning: Modifying your registry can cause serious problems that may require you to reinstall your operating system.
Always backup your files before doing this registry hack.

2. Navigate to the following registry keys and verity that following settings set to default:
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“DisableTaskMgr”=dword:00000000
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy Objects\LocalUser\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“DisableTaskMgr”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\]
“DisableTaskMgr”=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
“DisableCAD”=dword:00000000
3. Reboot the computer.

For your convenience, I have created a registry file. Just download, double click it and add the info to your registry. The task manager will be enabled. Post your experiences please.

Enabling Task Manager from the Run Menu

Abdullah mailed me this solution. Go to Start –> Run and copy and paste the following and press OK.

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /fPublish Post