-------------------------------------------------------------------------------
                      H A C K I N G  O N  I N T E R N E T
-------------------------------------------------------------------------------


     Hacking on Internet is easy. Internet is an information communications
network consisting of around 30,000 university, buisiness and government agency
computer systems all over the world. It is also connected in one way or another
to other networks like BITNET, Compuserve, and yes..Fidonet. Most systems 
directly on internet are mainframes, but you can connect to anything from a 
CRAY to even an amiga connected at 9600 baud to the net via ALTERNET or some 
other public network communication line service. For many, the biggest trick 
is obtaining a local dialup. If there isn't one then you could allways call 
long-distance to a BBS that charges you for internet access. OR, if your like 
most that read FBI mags, you'll phreak and hack your way in. I'm not going to
attempt to explain how to phreak in this article, but hack, yeah. 

- OBTAINING A DIALUP

    1. If you live near a university then give them a call saying your a 
       student and you need to find out where you can get the number to
       connect to their computer system there, blah, blah.

    2. Large Buisinesses or government agencies may have computers on internet. 
       Call those and social engineer the numbers out of them.
  
    3. Systems on X.25 (Tymnet/Telenet/etc) can have internet access. PCP and
       Sprintnet outdials work, but they are usually slow. 

    4. Last resort: (808)-988-7611,3191,5018 then type connect <IP Number>
       Where <IP #> is in the form #.#.#.# Such as: 129.57.7.7 Restricted
       like hell. 

===============================================================================
- BASIC COMMANDS TO GET AROUND UNIX

  Unix is easy once you get used to it. It's not so hard a switch from MSDOS.
  It's a hell of alot better than MSDOS, that's all. Here is a list of basic
  commands. If you don't know anything or very little about Unix, then these
  should get you started. You can't do much of shit if you don't know some
  of them.

  NOTE: EVERYTHING IN UNIX IS CASE SENSITIVE

  man - Online manual. Not every Unix has this command, but it will give you
        a good index and explanation on every/most command(s) there are. Abuse
        this. If man doesn't work, try help.
  ls  - brief listing of files in your CWD (Current Working Directory)
        There are options to this. ls -l will give a long listing.
  cd  - Change to directory. cd <directory> cd .. <- back up a directory
        cd ~ Zaps you to your home directory. cd / is main root directory
  rm  - Remove a file. rm <filename> rm -r <directory>  <- wipes out all
  ren - rename file or directory. 
  telnet - opens a terminal to another sys. telnet <enter> then open <address>
  ftp - let's you send and receive files to and from other systems.
        ftp <enter> then open <address>. Once you are connected log in as
        anonymous and type whatever you want for a password. Not all systems
        allow anonymous logins with ftp, but most do. ls and cd work the same 
        as regular unix ? gives you help. Use help <command>. To transfer a 
        file into your account type get <filename> and wait for a few. 
        (56kbit connections!)

===============================================================================
- INFORMATION SOURCES / MAIL

  There are lots of services. USENET is one of them. There is also networked
  mail. The commands may be different or non-existant for your system, but
  I'll write them anyway.

- Sending Mail

  mhmail <user>@<host> -subject "SUBJECT IN QUOTES LIKE THIS"

  If mhmail does nothing then try mail. There are different mail systems out 
  there. You'll have to mess around to find out where your mail is kept and
  how to use it. On most systems, everything is documentated online so get
  ready to read alot more than mail. On my system the mail is kept in 
  the Mail/inbox directory and mhmail is the command to send mail and take
  mail and shove it into my mailbox so I can read it.

- USENET

  USENET is useful. It's made up of 1000s of public posting groups (newsgroups)
  You can find a newsgroup that deals with allmost any topic you can think of.
  The command that I use to read these groups is:

  rn

  This fires up everything I need to read and post messages. There are many 
  commands you can use, but just like everything else, typing h will get you
  a list of commands and help on them. Here are a few:

  l <subject> searches through all the newsgroup names for the pattern that 
              matches the subject you are looking for.
  g <newsgroup> subscribe to a newsgroup. g alt.hack will subscribe you to
                alt.hack and you will be prompted to read the messages.
  = while you are in a newsgroup you can list out all the subjects of every
    message with the =. Then write down the numbers of the messages and type
    them in when after you have reached the end of the messages.
  # Reads <message number>
  s Saves the current message in a file. The file is named after the newsgroup
    and is stored in the News directory on my system. It should tell you where
    it was written.

There are many more information services that you can connect to. You will
find out more when you connect to ---> 
                                           
===============================================================================
- IRC (INTERNET RELAY CHAT)

   IRC is a way to talk to other people on systems that are capable of 
   connecting to others on the net with telnet. There are usually around
   300 users at once on IRC and roughly 50 differnet topic channels to 
   talk to other users on. There are a few ways to get to irc.

   Client service:

     A Client is the best way to reach IRC since it doesn't go through a mess
     of bullshit, it's easy to use and you can see what's going on. Some 
     systems allready have irc set up and all you have to type is irc just
     like any other unix command. If you don't have it on your system then
     you have to get a client from somewhere. The best way to find one is to 
     look for users that are on the same system as you are and ask them what 
     they are doing to get there. Make them tell you.   

   Telneting to an IRC Client: 

     I only know of one place right now that will let you telnet right to it
     and kick you to an IRC Client. It's really slow, but it works and it's
     mostly dependable. It should be around for a long time at least.

     To do it:

     telnet bradenville.andrew.cmu.edu

     After you type this, you will see what to do to log on, etc.

 - IRC Commands:

   Here are the ones you really need to know:

   /nick <nickname> Change your nickname.
   /list Lists all the channels by thier topics
   /join <channel> Joins a channel so you can talk to users that are in it.
                   You must you the # before the channel name like this:
                   /join #hack
  /msg <nickname> <message> Sends a private message to whoever <nickname>
  /who * Lists all that are in the current channel
  /who <address> List's everyone that is on the same system as you.
  /help Hmmmm.
  /quit Hmmmmm.

It's a good idea to get right into irc. You can get alot of help with stuff
and find out information on anything you want, whether legal or maybe-not-legal

===============================================================================
- BASIC HACKING WHILE ON THE NET / PASSWORD CRACKING

 Hopefully you have a UNIX account. There aren't too many operating systems out
 there, but from what I've messed around with, Unix is the best and it's also
 geared towards the hacker. It's a security orientated security hole. Even with
 new holes being literally patched now and then, there are still enough holes
 to keep yourself on internet by cracking passwords and grabbing other systems'
 password files. The entire list of accounts and passwords for a single system
 is located in one public file. The passwords are encrypted with DES, and thus 
 irreversable, but apply the same DES algorythm on every word in a good sized 
 dictionary and compare each result with the original encrypted password and 
 you can put together a great list of accounts. One system I'm on (SUN MP670) 
 does 3000 'cracks' every second which is slow really... 

- Location of the password file:

  /etc/passwd    (Most systems)

This is located off the main root directory. Do a cd /etc then you will be in
the directory that contains the file - passwd. passwd is an ASCII text file
that lists every account line by line and includes name, encrypted password,
user id, real name, directory and shell program for every account.

- Cracking passwd:

 You should get a copy of Killer Cracker, Crack4 or some other cracker to do 
 the job. Crack4.0a is available at:

      nic.sura.net  directory /pub/security/programs/unix/Crack
      get the filename: crack4.0a.tar.Z

 This file is archived (.tar) and compressed (.Z) do:

    uncompress crack4.0a.tar.Z
    tar xvf crack4.0a.tar  (xvf - x means eXtract v is View. <filename> after f)
    cd crack4.0  (To change into the crack directory)
    Crack /etc/passwd  (Begin cracking)

 Check back with it in a few days or whatever. Since it's run as a background 
 process you can hang up and call back and it will still be running. (That is 
 if the sysadmins don't kill it)
 
   The list of cracked passwords is stored in a file called out.something
   'something' is a number. The process number actually. To stop cracking 
    you have to kill the process. Type:

      kill 574782  if your output file is say.. out.574783

- Getting password files from other systems:

     Really simple. This seems to work on 2% of the systems out there, you 
     never know what kind of security holes you can find though.

 Type tftp <system address>

    tftp nic.sura.net      (Don't bother with this address)

 Then:

    get /etc/passwd

Wait awhile. Anything could happen now. Most likely it'll crap out, but you may
notice a large file called passwd in your current dir after you go through with
this. (Unlikely though, but I've found a few)

- Finger

    On most systems you can see who is on a certain system by using telnet in
    a certain way. By using what's known as port services you can initiate
    certain services on other machines with telnet. Port 79 will simply just 
    dump out a list of account names. You then can brute force hack these out 
    if you want. To use:

       telnet <address> 79
ex:    telnet nic.sura.net 79 





Bluesman
