Fools -- Nerdvana!

[ Show ]

Support VoyForums

[ Shrink ]

VoyForums Announcement: Programming and providing support for this service has been a labor of love since 1997. We are one of the few services online who values our users' privacy, and have never sold your information. We have even fought hard to defend your privacy in legal cases; however, we've done it with almost no financial support -- paying out of pocket to continue providing the service. Due to the issues imposed on us by advertisers, we also stopped hosting most ads on the forums many years ago. We hope you appreciate our efforts.

Show your support by donating any amount. (Note: We are still technically a for-profit company, so your contribution is not tax-deductible.) PayPal Acct: Feedback:

Donate to VoyForums (PayPal):

[ Login ] [ Contact Forum Admin ] [ Main index ] [ Post a new message ] [ Search | Check update time | Archives: 1, [2] ]

[ Next Thread | Previous Thread | Next Message | Previous Message ]

Date Posted: 19:22:32 02/02/02 Sat
Author: Kunt
Subject: Fools

Ok, lamerz. Unless you're on the same network as someone else, their name/pass won't work for you. My school just recently changed the password (everyone knew the previous one.) So I'm kinda starting on war on the Bitch in my school.
You can use the SASIC tools if you want, but I'd rather have the name/pass cuz if I keep things quiet, no one will ever know I have it. What you gotta do is not let authorities know you have it, make sure you're not typing it in or visiting blocked sites while they're present, and make sure you turn it back on when you're done (this is important.)
Now, depending on your expertise, there are many ways to find a password. One is to search your tech manager's office for it. Another is to pretend to be a teacher or something, leave a note or email or call them. If you really know your shit, try to reconfigure your school's router to not send through Bess (but this will get noticed quickly.)
Now, Bess has large security holes. One is that it will tell you on the Authorized Override page whether you have entered a valid username or not. How retarded is that! Another is that you can enter your override URL from anywhere. Try to crack it from home! Finally, their form is simple and unsecure, so you can try to snoop the password, or, as in my case, Brute-Force it.
Brute forcing is when a program tries a buncha passwords from a list to find the right one. My favorite Brute-forcer is Brutus (http://www.hoobie.net/brutus), it's the most stable and user-friendly. I won't get into every tiny detail, you should be able to figure that out if you have half a brain, but just use the HTTP(form) mode, hit Modify Sequence, copy your Bess Override page's URL into the box and hit Learn Form Settings. That helps a lot. Use its word list generator to make a nice word list related to your school, and then start the brute-forcing! You can even do it from within school, and if you run enough connections and attempts, it denies service to everyone else! Hahaha!
Well, I think I've said enough to give you a decent start, at least a few ideas, anyhow. Good luck!

[ Next Thread | Previous Thread | Next Message | Previous Message ]

[ Contact Forum Admin ]

Forum timezone: GMT-8
VF Version: 3.00b, ConfDB:
Before posting please read our privacy policy.
VoyForums^(tm) is a Free Service from Voyager Info-Systems.
Copyright © 1998-2019 Voyager Info-Systems. All Rights Reserved.