Jump to content


Photo

Ethical Hacking


  • Please log in to reply
70 replies to this topic

#21 bitterfrost_20

bitterfrost_20

    Devirginized

  • (02) Sinless
  • PipPip
  • 15 posts
  • Gender:Male

Posted 15 October 2010 - 11:36 PM

what are we looking into po ba? sa internal lang yung hacker or sa external? Kasi pwede deploy ng parang wormlike file na mag a act na mag phone home sa PC sa WAN eh. Or kung internal yan, nakalimutan ko yung technical term na pwedeng gamitin para mag act yung workstation niya as a decoy server eh. I think it's mac spoofing??? Oh, I forgot, the answer is yes.


quite correct,

Although this can be done thru internal network, if you want to intercept all email messages to your account you better be skillful enough to do a lot of hacking techniques.

Let's say you are in the same network using Outlook as your mail service. The easiest way to hack the account is to brute force the victim's account password. although this may take some time if the victim's password Complexity is strong (Combination of Symbols, Numbers, Special Characters etc.) but if it uses weak password, you'll be lucky enough to crack the password within minutes. Reliable and strong password cracker is John The Ripper. google it for the download but take precaution for possible trojans.

If you have no patience for cracking passwords, you may try Session Hijacking and Session Replay. this also can be done thru sniffing. just pray that you can find cleartext username and passwords during your capture. although, some drawback of sniffers is that they cannot sniff data if your network uses layer 2 devices or switches. This is where you can use the technique Mac Spoofing and Port Mirroring. B)

I have given you some ideas try researching and studying..it pays. B) B) B) B) B) B) B)

#22 keyholder

keyholder

    Chaser

  • (04) Casual
  • PipPipPipPip
  • 97 posts
  • Gender:Male

Posted 13 February 2012 - 11:25 PM

I'm just curious lang about hacking. Pag sinabing hacking sa company or corporations, gumagamit lang ba ang crackers ng nakukuhang application from underground or sila talaga yung gumagawa ng code? Naging interesado lang akong malaman dahil sa kaguluhan ng 'We are Anonymous' sa Pentagon at DoD.

#23 evilson

evilson

    Wanton

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPip
  • 789 posts
  • Gender:Male
  • Interests:Makati City

Posted 01 May 2012 - 01:55 AM

yup.pero ang info na nakuha ko dati yung mga dating nilabas na software,di na gumagan kasi mas mataas na security na ginagamit nila

#24 JayZip

JayZip

    daddy day care.

  • (13) Giga Poster
  • PipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPip
  • 12747 posts
  • Gender:Male
  • Interests:Toys. Ages 6-14.

Posted 14 May 2012 - 11:28 PM

would you hack into somebody else's computer if your boss tells you?

#25 magaling na lalake

magaling na lalake

    Chaser

  • (04) Casual
  • PipPipPipPip
  • 74 posts
  • Gender:Not Telling

Posted 15 May 2012 - 09:42 AM

depende siguro, if part yun ng work mo to find out kung sino ang corporate espionage or nagaaccess ng mga files na dapat di nya makita, why not

#26 lunchchow

lunchchow

    Experienced

  • (04) Casual
  • PipPipPip
  • 44 posts

Posted 12 June 2012 - 12:43 PM

MGA MASTERS, I need an advice or some general or even first hand knowledge about this one, i know off to sa topic thread na to, recently i got robbed in my office, dumaan ata sa bintana yung magnanakaw kasi walang force entry sa main door...anyhow....whats really concern me is the data in my laptop, it has a original windows OS, three account on my windows, two admin one guest, one admin is not password protected the other is password protected, the admin which is not admin protected cannot access the files in admin with password....ano ba usually modus operandi ng mga magnanakaw ng laptop.....once they get my laptop do they format it immediately to sell? kalkalin ang files? or any tips about this matter...thanks in advance please do pitch in.

#27 zairus

zairus

    Experienced

  • (03) Newbie
  • PipPipPip
  • 27 posts

Posted 22 June 2012 - 04:30 AM

MGA MASTERS, I need an advice or some general or even first hand knowledge about this one, i know off to sa topic thread na to, recently i got robbed in my office, dumaan ata sa bintana yung magnanakaw kasi walang force entry sa main door...anyhow....whats really concern me is the data in my laptop, it has a original windows OS, three account on my windows, two admin one guest, one admin is not password protected the other is password protected, the admin which is not admin protected cannot access the files in admin with password....ano ba usually modus operandi ng mga magnanakaw ng laptop.....once they get my laptop do they format it immediately to sell? kalkalin ang files? or any tips about this matter...thanks in advance please do pitch in.


Your admin password will not protect you or your files if someone has physical access to the laptop. And since yours was stolen, I suggest you prepare for the worse... financial records, bank accounts, online purchases, important , sensitive documents... find ways to prevent additional damage.


The simplest way to access files on a windows hard drive is by making it a slave drive or an external drive of a linux or mac system.

Password crackers are readily available. There even exist a free and open source software where one can create a live-cd and boot from it. this will do the rest of the job, and after a few minutes, appears the admin password.

If the drive is reformatted, there are data recovery softwares that can be used to recover most of the files inside a drive regardless of how many times it has been reformatted.

#28 simplyeric

simplyeric

    Player

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPipPipPip
  • 984 posts
  • Gender:Male

Posted 22 June 2012 - 09:42 AM

Your admin password will not protect you or your files if someone has physical access to the laptop. And since yours was stolen, I suggest you prepare for the worse... financial records, bank accounts, online purchases, important , sensitive documents... find ways to prevent additional damage.


The simplest way to access files on a windows hard drive is by making it a slave drive or an external drive of a linux or mac system.

Password crackers are readily available. There even exist a free and open source software where one can create a live-cd and boot from it. this will do the rest of the job, and after a few minutes, appears the admin password.

If the drive is reformatted, there are data recovery softwares that can be used to recover most of the files inside a drive regardless of how many times it has been reformatted.




Most ng mga magnanakaw ay kailangan lang ibenta ang goods once na naacquire. hindi nila gaano pinapakealam ang laman kasi mabusisi at most of them do not know anything about cracking a laptop

but the problem now is yung pagbebentahan, usually mga computer stores at repair yung mga bibili nun. the least they can do is format the laptop and use it for spare parts(since yung whole laptop is a "hot item")

but take note that scandals are a big thing right now. i dont want to scare you but if ever you have personal videos there, beware. tinatyaga nilang hanapin yun and they have programs to open your pc, lalo na pag windows XP, then search your hard disk for videos or pics.they can even scan your deleted items

for your recent browsing history, kapag pinili mo ay "save this password to your pc" then you may have a problem, kasi i-open lang nila ang browser then auto log in sa FB at social sites

as for your bank passwords, so far our criminals are not that sophisticated enough to delve into that kasi kailangan ng advance skill set to pull it off


but the best you could do is this:
1. never store very important information in your laptop/desktop like bank accounts
2. dont lose your laptop!

#29 simplyeric

simplyeric

    Player

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPipPipPip
  • 984 posts
  • Gender:Male

Posted 22 June 2012 - 09:48 AM

would you hack into somebody else's computer if your boss tells you?



if you are a network security analyst or it is your job to ensure the network security of your company, then it is ok. but take note that if it is your job, you are only allowed to break into the computer and not look at the contents. ibig sabihin, pag naaccess mo na ang system files and/or desktop ng target pc mo, then your job ends there.pag sinilip mo ang files niya then that is invasion of privacy.

if it is not your job, the i strongly suggest not to do it kasi may deniability ang boss mo, ikaw wala, so pag nahuli ka, tigok ka kasi you have no right to access other pc.

#30 simplyeric

simplyeric

    Player

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPipPipPip
  • 984 posts
  • Gender:Male

Posted 22 June 2012 - 09:54 AM

would you hack into somebody else's computer if your boss tells you?



if you are a network security analyst or it is your job to ensure the network security of your company, then it is ok. but take note that if it is your job, you are only allowed to break into the computer and not look at the contents. ibig sabihin, pag naaccess mo na ang system files and/or desktop ng target pc mo, then your job ends there.pag sinilip mo ang files niya then that is invasion of privacy.

if it is not your job, the i strongly suggest not to do it kasi may deniability ang boss mo, ikaw wala, so pag nahuli ka, tigok ka kasi you have no right to access other pc.


to those who are interested in hacking, please take note that in order for someone to hack into something, you have to know all the inner workings of the system. this mean that you have to study a lot of things in order to have the proper skill set to do the job. i for one am not a full on hacker. i am just curious on how things work and what i can do with it. i am also considered as a lazy hacker since i constantly try to look for a simple program to do all those commands. but believe me when i tell you, you still have to study a lot. there are only a handful of one click programs you can use and they can only do limited things

in the movies, they portray hackers as knowing simple commands to break in any pc. that is not the case in reality. in order to hack into something, you have to know what system they are using (in order to know what vulnerabilities that they have). then you have to know where you are in that system.you also have to learn how computers think and speak.

#31 JayZip

JayZip

    daddy day care.

  • (13) Giga Poster
  • PipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPip
  • 12747 posts
  • Gender:Male
  • Interests:Toys. Ages 6-14.

Posted 17 July 2012 - 02:06 AM

if you are a network security analyst or it is your job to ensure the network security of your company, then it is ok. but take note that if it is your job, you are only allowed to break into the computer and not look at the contents. ibig sabihin, pag naaccess mo na ang system files and/or desktop ng target pc mo, then your job ends there.pag sinilip mo ang files niya then that is invasion of privacy.

if it is not your job, the i strongly suggest not to do it kasi may deniability ang boss mo, ikaw wala, so pag nahuli ka, tigok ka kasi you have no right to access other pc.


to those who are interested in hacking, please take note that in order for someone to hack into something, you have to know all the inner workings of the system. this mean that you have to study a lot of things in order to have the proper skill set to do the job. i for one am not a full on hacker. i am just curious on how things work and what i can do with it. i am also considered as a lazy hacker since i constantly try to look for a simple program to do all those commands. but believe me when i tell you, you still have to study a lot. there are only a handful of one click programs you can use and they can only do limited things

in the movies, they portray hackers as knowing simple commands to break in any pc. that is not the case in reality. in order to hack into something, you have to know what system they are using (in order to know what vulnerabilities that they have). then you have to know where you are in that system.you also have to learn how computers think and speak.


say you are not a network security analyst but a systems admin. and the CEO wants you to check out the emails of an employee. would you do it?

#32 average_jo

average_jo

    Hottie

  • (05) Regular
  • PipPipPipPipPipPipPip
  • 318 posts
  • Gender:Male
  • Interests:Simple yet complicated.

Posted 17 July 2012 - 11:42 AM

say you are not a network security analyst but a systems admin. and the CEO wants you to check out the emails of an employee. would you do it?


Hi Sir,

I think when it comes to this request, you are covered by whatever IT policy that the company employs. If it doesnt suit any of those policy, you have the right to explain to your superior that this request may violate privacy issues in the company.

Cheers
;)

#33 simplyeric

simplyeric

    Player

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPipPipPip
  • 984 posts
  • Gender:Male

Posted 30 July 2012 - 05:15 PM

Hi Sir,

I think when it comes to this request, you are covered by whatever IT policy that the company employs. If it doesnt suit any of those policy, you have the right to explain to your superior that this request may violate privacy issues in the company.

Cheers
;)



true, ask for your privacy policy. kasi there are some na merong right to read everything in the computer. example siguro ay sa CIA or sa Pentagon sa US. but i think even they have no right to access all personal email,pwera lang kung pinagsususpetya.

when in doubt, ask someone from your company that knows more.

#34 evilson

evilson

    Wanton

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPip
  • 789 posts
  • Gender:Male
  • Interests:Makati City

Posted 09 August 2012 - 02:35 AM

would you hack into somebody else's computer if your boss tells you?


well dati i was asssign with this job and also naireason ko rin regarding privacy but there was one supervisor (one of the boss relative) who said to me na "At bakit me ganung rason, e computer ng company yan, binili namin yan sa kanila para gamitin sa trabaho, hindi sa pangsarili nilang interes"

but looking back and thinking about this, it looks to me na tama sya

#35 simplyeric

simplyeric

    Player

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPipPipPip
  • 984 posts
  • Gender:Male

Posted 09 August 2012 - 10:34 AM

that is true pero dapat yung reason for breaking into the computer is business related and well informed ang more than one concerned person (IT head for example)

even they cannot deny na they also use it for personal stuff.

#36 JayZip

JayZip

    daddy day care.

  • (13) Giga Poster
  • PipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPip
  • 12747 posts
  • Gender:Male
  • Interests:Toys. Ages 6-14.

Posted 09 August 2012 - 12:12 PM

i think the point im driving at here is not if we use company computers for personal use or if the company has rules and regulations about it but if your superior orders you to do it period.

in my case my boss wanted me to hack into someones email because they wanted to prove that that employee was leaking stuff to competitors.
my boss admitted that we were breaking "rules" but it was "necessary" to get the info we need.
But since we broke the rules although necessary eh is it still "ethical" hacking?

Edited by JayZip, 09 August 2012 - 12:13 PM.


#37 simplyeric

simplyeric

    Player

  • (05) Regular
  • PipPipPipPipPipPipPipPipPipPipPipPipPip
  • 984 posts
  • Gender:Male

Posted 09 August 2012 - 12:34 PM

a, kung yun yung purpose, as i have said company related, then pwede.

yun lang, kung non IT ang position sa company, at sa iyo ipinagawa,even though you know you can do it, medyo kaduda duda.better refer to the people who have the legal rights to do it...

basta hinay hinay at mahirap maging escape goat.

#38 dude07

dude07

    Virgin

  • (02) Sinless
  • Pip
  • 9 posts
  • Gender:Male

Posted 10 August 2012 - 02:36 PM

say you are not a network security analyst but a systems admin. and the CEO wants you to check out the emails of an employee. would you do it?

unless that employee or the employees on that company has an email ad which are being given to them for official use then yes .. but if it is/was a personal email address of the employee say yahoo address or alike.. then thats a different storyy..




#39 JayZip

JayZip

    daddy day care.

  • (13) Giga Poster
  • PipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPip
  • 12747 posts
  • Gender:Male
  • Interests:Toys. Ages 6-14.

Posted 10 August 2012 - 10:22 PM

unless that employee or the employees on that company has an email ad which are being given to them for official use then yes .. but if it is/was a personal email address of the employee say yahoo address or alike.. then thats a different storyy..





and if he was using that personal email to send out "company info" to say competitors what would you do?

#40 JayZip

JayZip

    daddy day care.

  • (13) Giga Poster
  • PipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPipPip
  • 12747 posts
  • Gender:Male
  • Interests:Toys. Ages 6-14.

Posted 10 August 2012 - 10:25 PM

a, kung yun yung purpose, as i have said company related, then pwede.

yun lang, kung non IT ang position sa company, at sa iyo ipinagawa,even though you know you can do it, medyo kaduda duda.better refer to the people who have the legal rights to do it...

basta hinay hinay at mahirap maging escape goat.


when you said pwede eh did you mean na it is still "ethical hacking?"

and when you said non IT position does that include the CEO or someone in the executive level?
  • Danielle likes this




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users