Six Sigma is a Rigorous and disciplined problem solving methodology that uses data and statistical analysis to measue and improve a company's operating performance by identifying and eliminating defects in manufacturing and service related processes.
In Statistical Parlence Six Sigma is commonly defined as 3.4 defects per million opportunities(DPMO) or 2 defects per billion opportunities.
Six sigma can be understood at three different levels.........
1. Metric-it is a scale or level of quality which defined not more than 3.4 defects per million opportunities(DPMO).rule of thumb is to consider atleast three opportunities for a physical part-one for the form,one for and one for function
2.Methodology-there are several structural problem solving roadmaps and tools like
DMAIC,DMAIV,DMADV,PIDOV etc.
DMIAC=define,measure,analyze,improve and control
DMAIV=define,measure,analyze,improve and verify
DMADV= define,measure,analyze,design and verify
PIDOV=plan,identify,design,optimize and validate
it is a business improvement methodology that focus on..............
a.understanding customer requirement
b.aligning key busines processes to achieve the requirements
c.rigorous data analysis to minimize variations
d.sustainable improvement to business processes
3.Management-Reduce variation and take customer focussed data driven decisions.like...
a.align business strategy
b.accelerate improved business results
c.govern to ensure that results are sustained
where sigma denotes standard deviation
6 sigma means six standard deviations between the process mean and the nearest specification limit.
From where does the name Six Sigma formulated?
Bill Smith a quality engineer at Motorola was entrusted the task of suggesting measures to improve the manufacturing process,bill smith coined the improvement mesurements as Six Sigma in 1986
what is 1.5 sigma shift?
six sigma really corresponds to a sigma value of 4.5.where does this 1.5 sigma difference come from?Motorola has determined through years of process and data collection,that processes vary and drift over time-what they call the long term dynamic mean variation.this variation typically falls between 1.4 and 1.6, average comes to be 1.5.
After the process have been improved using the six sigma DMAIC methodology,we calculate the process standard deviation and sigma value.they are considered to be short term value because the data only contains common cause variation and not the special cause variation
where as the long term data contains both types of variation.since short term data does not contain special cause variation,it will typically be of higher process capability than the long term data.this difference is 1.5 sigma shift
the reporting convention of six sigma requires the process capability to be reported in short term sigma.
Why six sigma is implemented?
1.Improve customer satisfaction
2.Increase profitability
3.Increase Productivity
why an organization uses six sigma?
1. improve customer satisfaction
2.Lower cost
3.Grow revenue
4.increase capacity
5.Increase capability
6.Reduce complexity
7.Lower cycle time
8.Minimize defects and error
six sigma action occurs at two level
1.Managerial level-it includes
a.people
b.technologies
c.project
d.schedule
e.details to be managed and co-ordinated
2.Technical level-
a.set proper management orientation
Statistical tools
1.Measure of centeral tendency
2.Regresion analysis
3.co-relation
4.sampling Distribution
5.Hypothesis
6.design of experiments and ANOVA
7.goodness of fit
8.Control charts
Miscellaneous
1.critical to quality-attribute most important to customer
2.defect-failing to deliver what customer wants
3.variation-what customer sees and feels
4.Process capability-what our process can deliver
5. stable operations-ensuring consistent,predictable processes to improve the
variation
6.design of six sigma- designing to met customer needs and process capability
Friday, October 19, 2007
Tuesday, October 9, 2007
TOTAL QUALITY MANAGEMENT
ISO 8402:1994 All activities of the overall management function that determines the quality policy,objective and responsibilities,and implement them by means such as quality planning,quality assurance and quality improvement within the quality system.
TQM Elements
1.Ethics
2.Integrity
3.Trust
4.Training
5.Teamwork
6.Leadership
7.Recognition
8.Communication
TQM tools for Goal setting
1.Specific
2.Measurement
3.Attinable
4.Realistic
5.Time-Bound
Tools and Techneques for Process Improvement
1.Problem solving Methodology such as DRIVE
2.Process Mapping
3.Process Flowcharting
4.Field Force Analysis
5.cause and effect Diagram
6.CEDAC
7.Brainstorming
8.Pareto Analysis
9.Statistical Process Control
10.Control Charts
11.Check Sheets
12.Bar Charts
13.Scatter Diagram
14.Matrix Analysis
15.Dot Plot or Tally Chart
16.Histograms
Friday, September 14, 2007
Guide to Telnet
Guide to Telnet
Telnet is probablay one of the most confusing things for a newbie. You see alot of guides on it, but then still newbies post questions. Hopefully, I've created a guide that will explain telnet and aleviate the need for questions to be asked (although i doubt it). okay enough talk, lets get to it!
Telnet is a terminal emulation program. You see once upon a time, terminals were hardwired next to a console. Then with the rise of the PC and the Internet, a standard was needed. so they made telnet. nowadays telnet is pretty much obsolete. with the world wide web, you just use a browser, and SSH is used to login to shell accounts. but telnet is still a good thing to know.
there are several ways to start your telnet client. if your on windows 9x click start then programs, and then MS-DOS Prompt. once in the DOS prompt type telnet at the prompt. there that GUI windows is your telnet screen. or you can just click start>run and then type telnet and press. either way it will be the same. on Win2K/XP you can start telnet 2 ways. the first is to start a shell (start>run and type cmd and press ) and then type telnet at the prompt. the prompt will change to somthing like: Microsoft telnet> or you can do the start>run and type telnet and press method. either way will work. on Linux start a shell and type telnet. okay now that the telnet client is open we're ready to connect. well, almost. if you're on windows we need to make some configuration changes first. for windows 9x click prefrences and check "Localecho on". on widows 2K/XP type the following at the prompt:
Microsoft telnet> set term vt100
Microsoft telnet> set localecho
there now we're ready to go. what we just did was turn on the localecho. there is a bug(?) in MS telnet that won't display the text you type unless localecho is on. and also the telnet client in Win 2K/XP ships with the deafult term type as ANSI. but vt100 is the preferrerd term type. Linux telnet clients ship all set up and ready to go. now lets connect. for the Win 9x useres click connect>remote system. then in the host box type www.google.com. in the port box type 80. for the rest of us, just type the following (NOTE: in this part of the guide to telnet we're using the HTTP port. this port is used for the Internet. its number is 80. the deamon that runs on it is called the HTTPD):
telnet> open www.google.com 80
now hit connect or press and wait to connect. when your connected you will see a message like:
Trying 64.233.161.104...Connected to www.google.com.Escape character is '^]'.
it may be a little different. now what this all mean? well, 64.233.161.104 is google's IP. the thing about the escape character means that if you push ctrl+] it will cump you back in the shell on you machine at the telnet prompt. you can then type close to close the connection. the reason for this is because sometimes the service you connected to wont do anything when you type a command, co you need to close the connection, but quit, close, exit, and kill don't bring about a reply. so thats when you hit the escape character (win 9x useres: you dont have an escape character. to close your connection connect>disconnect). now by this time the connection will have probably timed out, do we have co connect again. after connecting again let's try out some HTTP requests. the first HTTP request to learn is the GET request (NOTE: HTTP is case sensitive). to issue a GET request type the following:
GET / HTTP/1.0
now press twice. whoa look at all that stuff!! that is the codee to google's main page, just like we would get if we did a right click>view source. now why did google close our connection? well its because HTTP is a stateless protocal (like UDP). so since there is no actual connection between you and the site (accept at the moment of transfer) your browser needs to reconnect every time you request a new page. however, there is a way to stay connected. did you know why you had to press twice after you connected? well, its because after the request (that was the GET) you are supposed to issue HTTP commands. there tell the server many things, including your user agent, browser type, and conection type (and alot more!). but before we get into those, lets take a closer look at that HTTP request we just issued:
GET = The request type. there are many of these. (i've included a list later in the guide)/ = the page. now when you tpye in a site name (http://www.google.com/) the computer connects to that site. now even if you dont type the / after .com its still the same site. you see the / is the sites homepage.HTTP/1.0 = this is the protocol type. a GET request is a HTTP/1.0 request, so thats what you type.
heres a list of some common requests:
name usage what it does
---- ----- ------------
CONNECT CONNECT proxy-server HTTP/1.1 sets up a tunnel through proxys (useful to avoid web-filters)
Host: site.to.connect.to
DELETE DELETE /uri HTTP/1.1 deletes the file specified by /uri
GET GET /uri HTTP/1.0 gets the file specified by /uriHEAD HEAD /uri HTTP/1.0 returns the header of /uri. used in a technique called a banner grab; which is used to identify the OS being ran onthe server.
OPTIONS OPTIONS * HTTP/1.1 returns info about the target host. if "*" is specified it Host: localhost returns info abouit the server it self. other wise it return-=OR=- info associated with the specified /uriOPTIONS /uri HTTP/1.1Host: localhost
POST POST /uri HTTP/1.1 adds data to /uri. the request defines content length. it mayHost: localhost include binary data.Content-length: N
n
n
PUT PUT /uri HTTP/1.1 adds data in the path specified by /uri (data like a new pageHost: localhost etc)Content-Length: N
n
n
TRACE TRACE / HTTP/1.1 causes a server to respond with all the headers contained in Host: localhost the original request.
TRACK TRACK / HTTP/1.1 an alias for TRACE. its only used in IIS.Host: localhost
okay now you should be able to do a lot of stuff but just using telnet to connect to the site. okay lets get on to those HTTP commands that i mentioned. now as i stated earlier, these comamnds do lost of stuff. the most useful would probably be theConnection: keep-alive command. this makes the connection stay alive so you can pump through command after comamnd. lets try it:
telnet> open www.google.com 80
Trying 64.233.161.99...
Connected to www.google.com.
Escape character is '^]'.
oaky, now lets try out the HEAD request combined with the Connection: Keep-alive command:
HEAD / HTTP/1.0
Connection: Keep-alive
HTTP/1.0 200 OK
Cache-Control: private
Content-Type: text/html
Set-Cookie:
PREF=ID=752b22c0c0526756:TM=1109357543:LM=1109357543:S=ntZTEgMD7QQDP6cP; expires=Sun, 17-Jan-2038 19:14:07 GMT; path=/; domain=.google.com
Server: GWS/2.1
Content-Length: 0
Date: Fri, 25 may 2007 18:52:23 GMT
Connection: Keep-Alive
kewl, the connection didn't drop. so now we can issue more requests with out having to reconnect. however to keep the connection alive, we need to specifiy this after every request. another common HTTP command sets your user-agent. the user-agent is used to identify the OS and browser that the client (you) is running. heres a log of a telnet session to google in which I issue a full HTTP request and specify all the parameters:
telnet> open www.google.com 80
Trying 64.233.161.99...
Connected to www.google.com.
Escape character is '^]'.
HEAD / HTTP/1.0
Connectiion: Keep-Alive
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
Accept-Charset: iso-8859-1,*,utf-8
Accept-Language:en
Host: localhost
User-Agent: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.3) Gecko/20040913
HTTP/1.0 200 OK
Cache-Control: private
Content-Type: text/html
Set-Cookie: PREF=ID=2e727971cb330368:TM=1109358158:LM=1109358158:S=IpSi5XsS1Eqo7hby; expires=Sun, 17-Jan-2038 19:14:07 GMT;
path=/; domain=.google.com
Server: GWS/2.1
Content-Length: 0
Date: Fri, 25 May 2007 19:02:38 GMT
Connection: Keep-Alive
okay there, that was a proper session, just like your browser would do. but we mostly dont bother with all that stuff, just a Connection: Keep-Alive will do just fine ;). anyways; here are some HTTP response headers:
name what it means---- -------------
Accept-Ranges The server indicates it will accept partial requests (requests within the accepted range) for the resource.
Age the servers guess in seconds of how old the cached object is
ETag Entity Tag. Used in cache control when the server doesnt track time-stamps. a strongvalidator when the browser is deciding if it should refresh a cached object
Location Redirects the client to a different source to a URI
Proxy-Authenticate carrys authentication creditals for proxy servers
Referer Specifies the URI from which the request was generated. it shouldnt be relied upon forsecurity testing.
Server identify the server product, OS, and other info. usually modded to block unsofisticated attacks and incompetent attackers.
Vary used to control the caching of objects
WWW-Authenticate Get user Authentication
so now you know what all that stuff in the servers reply means. now you may wonder what the "HTTP/1.0 200 OK" means. well this is called the status code. 200 indicates a successful transfer. heres what the ranges mean:
1xx: i'm not sure what this means; its rarley used
2xx: successful completion of the HTTP request
3xx: unsuccessful due to moving of ducuments (URIs)
4xx: client side error (an error on your end)
5xx: server side error
the 2 most common status codes returned are 200 OK (you get this every time a connection works and you successfuly retreive a page) and 404 which means file not found (you clicked on a bad link, etc). well now that you know a good deal about HTTP and port 80 in general, lets duscuss the most common use of these commands proxy tunneling. have you ever been at school and you try to show your friend a cool website and its blocked for sum bogus reason? wouldn't you like to get around that damn web-content filter? well trust me you can. the first thing to do is open up internet explorer. then click tools>>internet options>>LAN settings. (or sumthing similar) now you should see somthing like 'Address: webproxy Port: 80'. this is the arddress of your web proxy that the school makes you pipe all your requests through. but what if it wont let you access the tools tab in IE? what then? the first thing to do in that case is to open a shell (use you imagination on how to do this). later i will make a paper on how to get command line access when your not supposed to have it ;). now type netstat -n at the prompt. you should get some results. one of them will look something like this:
10.1.44.5:80 ESTABLISHED
the IP will probably not be the same at your school as it is at mine, but it does not matter. the important part is what comes after the colon. thats the port number. in this case it is the standard HTTP port (80). but what if you dont see one that has the port as 80? well look for 8080. thats a common proxy port. if you are absolutly stumped, you can simply telnet yo all the ports on all the computers that you are connected to under the netstat -n screen and issue a HEAD request. when you get a positive reply, you're in business! now that we have identified the webproxy lets tunnel out. issue the follow commands after connection:
CONNECT http://www.blockedsite.com HTTP/1.1
Host: localhost
now press enter.
you should see "HTTP/1.1 200 OK Connection established" from the proxy. and boom we're connected to www.blockedsite.com. now just use the different requests discussed earlier to get the HTML source code of the site and its various pages and compy and paste them into notepad. save it as a .html file, open up 'My Computer' and click on the newly created .html file to view the site as you normally would. when you want to click on a link (lets say its called 'hacking') reconnect to the proxy, tunnel out and request the source of the hacking link (for instance: GET /hacking HTTP/1.0). there, now that annoying web filter cant stop us!! of course we can connect to any port on a computer not just 80. so lets look at another one of my personal favorites, port 25 (SMTP).port 25 is the port used to send email. it runs the Simple Mail Transfer Protocal Deamon (SMTPD). with this port we can do lots of kewl stuff, including
1) verifying user accounts on the system
2) preforming a banner grab to determin the OS being run on the system
3) sending forged email
now the most exciting one for you right now would be sending forged email. haven't you ever wanted to send an email to someone but wanted to use a fake name? well its pretty easy to do! the first thing to do is to connect to a mail server over port 25 (NOTE: because most sysadmins don't like people abuing thier mail servers to send fake email, i'm not using any real mail servers in this section. you'll have to find some on your own. [well, i'll tell you in a minuet how to find a vulnerable mail server]. also don't even consider using hotmail.com or gmail.google.com or another big company for this purpose. if you do you will get into deep dark shit! period). the hard part is finding a mail server to connect to. however there are ways:the first thing to do is to type nslookup at the prompt. then type "set type=all". okay now consider your friend email addres. it is split up into 2 parts the user name and the host. say you wanna send a fake email to buddy@yahoo.com . so now we know that we wanna goto yahoo.com over port 25 (NOTE: that warning i gave earlier was just my attempt at getting you tto read the part on nslookup. you can relax now :) . but seriously, pls dont use the expan and verfy commands! they get logged as suspicious!) so now type "yahoo.com" (no quotes). see all those entries? well if you see one like: mx1.yahoo.com thats a mail server. generally if its mail.example.com or mx.example.com its a mail server.
NOTE: for those of us who use linux, our nslookup uses different commands to get the right resource record use the type
"set type=any" and then yahoo.com
okay so now we know the mail server. time to fire up telnet. this time though point it at port 25.
NOTE: theres an even eaiser way to telnet. just open up a shell and type "telnet www.site.com XX" where www.site.com is a hostname or IP and XX is a port number to connect to.
So to telnet to the mail server using our new method we would type the following at the prompt: telnet mx1.yahoo.com 25
yay now we're connected. so now the kewl thing about the SMTP deamon is that you can ask it for help (unlike the HTTPD). for this paper i set up a sendmail server on my home LAN (its not connected to the internet!!). sendmail is probably the buggiest deamon, and one of the most helpful. nowadays, sendmail isnt that common, but hey just look around and you might find a sendmail deamon around. okay so after connection, we see somthing like:
220-localhost.localdomain sendmail 8.6.12/8.9.6
ready at Fri, 25May 2007 19:34:53 GMT
220 ESMTP spoken here
what is all this? it is called the deamon banner. it tells us what version of sendmail the server is running and with a littel hunting on google we can use this info to identify the OS of the server. okay lets ask it for help:
HELP
214- Commands:
214- HELO HELO MAIL RCPT DATA
214- RSET NOOP QUIT HELP VRFY
214- EXPN VERB
214- for more info use "HELP"
214- to report bugs
214- for
214- end of help info
there now we no what commands are avalible. the second to last and the third to last lines i snipped their output, because i felt like it :). oaky again heres the commands along with what they do:
SMTP command What it does------------ ------------
HELO/HELO greets the server
RCPT specifies the recipent of the mail
MAIL specifies the sender of mail
DATA body of email
VERB turn on verbose mode
EXPN expand and email alias to full list of recipents
VRFY verify that the account exists
HELP display a help message
QUIT exit the server
NOOP do nothing
Telnet is probablay one of the most confusing things for a newbie. You see alot of guides on it, but then still newbies post questions. Hopefully, I've created a guide that will explain telnet and aleviate the need for questions to be asked (although i doubt it). okay enough talk, lets get to it!
Telnet is a terminal emulation program. You see once upon a time, terminals were hardwired next to a console. Then with the rise of the PC and the Internet, a standard was needed. so they made telnet. nowadays telnet is pretty much obsolete. with the world wide web, you just use a browser, and SSH is used to login to shell accounts. but telnet is still a good thing to know.
there are several ways to start your telnet client. if your on windows 9x click start then programs, and then MS-DOS Prompt. once in the DOS prompt type telnet at the prompt. there that GUI windows is your telnet screen. or you can just click start>run and then type telnet and press
Microsoft telnet> set term vt100
Microsoft telnet> set localecho
there now we're ready to go. what we just did was turn on the localecho. there is a bug(?) in MS telnet that won't display the text you type unless localecho is on. and also the telnet client in Win 2K/XP ships with the deafult term type as ANSI. but vt100 is the preferrerd term type. Linux telnet clients ship all set up and ready to go. now lets connect. for the Win 9x useres click connect>remote system. then in the host box type www.google.com. in the port box type 80. for the rest of us, just type the following (NOTE: in this part of the guide to telnet we're using the HTTP port. this port is used for the Internet. its number is 80. the deamon that runs on it is called the HTTPD):
telnet> open www.google.com 80
now hit connect or press
Trying 64.233.161.104...Connected to www.google.com.Escape character is '^]'.
it may be a little different. now what this all mean? well, 64.233.161.104 is google's IP. the thing about the escape character means that if you push ctrl+] it will cump you back in the shell on you machine at the telnet prompt. you can then type close to close the connection. the reason for this is because sometimes the service you connected to wont do anything when you type a command, co you need to close the connection, but quit, close, exit, and kill don't bring about a reply. so thats when you hit the escape character (win 9x useres: you dont have an escape character. to close your connection connect>disconnect). now by this time the connection will have probably timed out, do we have co connect again. after connecting again let's try out some HTTP requests. the first HTTP request to learn is the GET request (NOTE: HTTP is case sensitive). to issue a GET request type the following:
GET / HTTP/1.0
now press
GET = The request type. there are many of these. (i've included a list later in the guide)/ = the page. now when you tpye in a site name (http://www.google.com/) the computer connects to that site. now even if you dont type the / after .com its still the same site. you see the / is the sites homepage.HTTP/1.0 = this is the protocol type. a GET request is a HTTP/1.0 request, so thats what you type.
heres a list of some common requests:
name usage what it does
---- ----- ------------
CONNECT CONNECT proxy-server HTTP/1.1 sets up a tunnel through proxys (useful to avoid web-filters)
Host: site.to.connect.to
DELETE DELETE /uri HTTP/1.1 deletes the file specified by /uri
GET GET /uri HTTP/1.0 gets the file specified by /uriHEAD HEAD /uri HTTP/1.0 returns the header of /uri. used in a technique called a banner grab; which is used to identify the OS being ran onthe server.
OPTIONS OPTIONS * HTTP/1.1 returns info about the target host. if "*" is specified it Host: localhost returns info abouit the server it self. other wise it return-=OR=- info associated with the specified /uriOPTIONS /uri HTTP/1.1Host: localhost
POST POST /uri HTTP/1.1 adds data to /uri. the request defines content length. it mayHost: localhost include binary data.Content-length: N
n
n
PUT PUT /uri HTTP/1.1 adds data in the path specified by /uri (data like a new pageHost: localhost etc)Content-Length: N
n
n
TRACE TRACE / HTTP/1.1 causes a server to respond with all the headers contained in Host: localhost the original request.
TRACK TRACK / HTTP/1.1 an alias for TRACE. its only used in IIS.Host: localhost
okay now you should be able to do a lot of stuff but just using telnet to connect to the site. okay lets get on to those HTTP commands that i mentioned. now as i stated earlier, these comamnds do lost of stuff. the most useful would probably be theConnection: keep-alive command. this makes the connection stay alive so you can pump through command after comamnd. lets try it:
telnet> open www.google.com 80
Trying 64.233.161.99...
Connected to www.google.com.
Escape character is '^]'.
oaky, now lets try out the HEAD request combined with the Connection: Keep-alive command:
HEAD / HTTP/1.0
Connection: Keep-alive
HTTP/1.0 200 OK
Cache-Control: private
Content-Type: text/html
Set-Cookie:
PREF=ID=752b22c0c0526756:TM=1109357543:LM=1109357543:S=ntZTEgMD7QQDP6cP; expires=Sun, 17-Jan-2038 19:14:07 GMT; path=/; domain=.google.com
Server: GWS/2.1
Content-Length: 0
Date: Fri, 25 may 2007 18:52:23 GMT
Connection: Keep-Alive
kewl, the connection didn't drop. so now we can issue more requests with out having to reconnect. however to keep the connection alive, we need to specifiy this after every request. another common HTTP command sets your user-agent. the user-agent is used to identify the OS and browser that the client (you) is running. heres a log of a telnet session to google in which I issue a full HTTP request and specify all the parameters:
telnet> open www.google.com 80
Trying 64.233.161.99...
Connected to www.google.com.
Escape character is '^]'.
HEAD / HTTP/1.0
Connectiion: Keep-Alive
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
Accept-Charset: iso-8859-1,*,utf-8
Accept-Language:en
Host: localhost
User-Agent: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.3) Gecko/20040913
HTTP/1.0 200 OK
Cache-Control: private
Content-Type: text/html
Set-Cookie: PREF=ID=2e727971cb330368:TM=1109358158:LM=1109358158:S=IpSi5XsS1Eqo7hby; expires=Sun, 17-Jan-2038 19:14:07 GMT;
path=/; domain=.google.com
Server: GWS/2.1
Content-Length: 0
Date: Fri, 25 May 2007 19:02:38 GMT
Connection: Keep-Alive
okay there, that was a proper session, just like your browser would do. but we mostly dont bother with all that stuff, just a Connection: Keep-Alive will do just fine ;). anyways; here are some HTTP response headers:
name what it means---- -------------
Accept-Ranges The server indicates it will accept partial requests (requests within the accepted range) for the resource.
Age the servers guess in seconds of how old the cached object is
ETag Entity Tag. Used in cache control when the server doesnt track time-stamps. a strongvalidator when the browser is deciding if it should refresh a cached object
Location Redirects the client to a different source to a URI
Proxy-Authenticate carrys authentication creditals for proxy servers
Referer Specifies the URI from which the request was generated. it shouldnt be relied upon forsecurity testing.
Server identify the server product, OS, and other info. usually modded to block unsofisticated attacks and incompetent attackers.
Vary used to control the caching of objects
WWW-Authenticate Get user Authentication
so now you know what all that stuff in the servers reply means. now you may wonder what the "HTTP/1.0 200 OK" means. well this is called the status code. 200 indicates a successful transfer. heres what the ranges mean:
1xx: i'm not sure what this means; its rarley used
2xx: successful completion of the HTTP request
3xx: unsuccessful due to moving of ducuments (URIs)
4xx: client side error (an error on your end)
5xx: server side error
the 2 most common status codes returned are 200 OK (you get this every time a connection works and you successfuly retreive a page) and 404 which means file not found (you clicked on a bad link, etc). well now that you know a good deal about HTTP and port 80 in general, lets duscuss the most common use of these commands proxy tunneling. have you ever been at school and you try to show your friend a cool website and its blocked for sum bogus reason? wouldn't you like to get around that damn web-content filter? well trust me you can. the first thing to do is open up internet explorer. then click tools>>internet options>>LAN settings. (or sumthing similar) now you should see somthing like 'Address: webproxy Port: 80'. this is the arddress of your web proxy that the school makes you pipe all your requests through. but what if it wont let you access the tools tab in IE? what then? the first thing to do in that case is to open a shell (use you imagination on how to do this). later i will make a paper on how to get command line access when your not supposed to have it ;). now type netstat -n at the prompt. you should get some results. one of them will look something like this:
10.1.44.5:80 ESTABLISHED
the IP will probably not be the same at your school as it is at mine, but it does not matter. the important part is what comes after the colon. thats the port number. in this case it is the standard HTTP port (80). but what if you dont see one that has the port as 80? well look for 8080. thats a common proxy port. if you are absolutly stumped, you can simply telnet yo all the ports on all the computers that you are connected to under the netstat -n screen and issue a HEAD request. when you get a positive reply, you're in business! now that we have identified the webproxy lets tunnel out. issue the follow commands after connection:
CONNECT http://www.blockedsite.com HTTP/1.1
Host: localhost
now press enter.
you should see "HTTP/1.1 200 OK Connection established" from the proxy. and boom we're connected to www.blockedsite.com. now just use the different requests discussed earlier to get the HTML source code of the site and its various pages and compy and paste them into notepad. save it as a .html file, open up 'My Computer' and click on the newly created .html file to view the site as you normally would. when you want to click on a link (lets say its called 'hacking') reconnect to the proxy, tunnel out and request the source of the hacking link (for instance: GET /hacking HTTP/1.0). there, now that annoying web filter cant stop us!! of course we can connect to any port on a computer not just 80. so lets look at another one of my personal favorites, port 25 (SMTP).port 25 is the port used to send email. it runs the Simple Mail Transfer Protocal Deamon (SMTPD). with this port we can do lots of kewl stuff, including
1) verifying user accounts on the system
2) preforming a banner grab to determin the OS being run on the system
3) sending forged email
now the most exciting one for you right now would be sending forged email. haven't you ever wanted to send an email to someone but wanted to use a fake name? well its pretty easy to do! the first thing to do is to connect to a mail server over port 25 (NOTE: because most sysadmins don't like people abuing thier mail servers to send fake email, i'm not using any real mail servers in this section. you'll have to find some on your own. [well, i'll tell you in a minuet how to find a vulnerable mail server]. also don't even consider using hotmail.com or gmail.google.com or another big company for this purpose. if you do you will get into deep dark shit! period). the hard part is finding a mail server to connect to. however there are ways:the first thing to do is to type nslookup at the prompt. then type "set type=all". okay now consider your friend email addres. it is split up into 2 parts the user name and the host. say you wanna send a fake email to buddy@yahoo.com . so now we know that we wanna goto yahoo.com over port 25 (NOTE: that warning i gave earlier was just my attempt at getting you tto read the part on nslookup. you can relax now :) . but seriously, pls dont use the expan and verfy commands! they get logged as suspicious!) so now type "yahoo.com" (no quotes). see all those entries? well if you see one like: mx1.yahoo.com thats a mail server. generally if its mail.example.com or mx.example.com its a mail server.
NOTE: for those of us who use linux, our nslookup uses different commands to get the right resource record use the type
"set type=any" and then yahoo.com
okay so now we know the mail server. time to fire up telnet. this time though point it at port 25.
NOTE: theres an even eaiser way to telnet. just open up a shell and type "telnet www.site.com XX" where www.site.com is a hostname or IP and XX is a port number to connect to.
So to telnet to the mail server using our new method we would type the following at the prompt: telnet mx1.yahoo.com 25
yay now we're connected. so now the kewl thing about the SMTP deamon is that you can ask it for help (unlike the HTTPD). for this paper i set up a sendmail server on my home LAN (its not connected to the internet!!). sendmail is probably the buggiest deamon, and one of the most helpful. nowadays, sendmail isnt that common, but hey just look around and you might find a sendmail deamon around. okay so after connection, we see somthing like:
220-localhost.localdomain sendmail 8.6.12/8.9.6
ready at Fri, 25May 2007 19:34:53 GMT
220 ESMTP spoken here
what is all this? it is called the deamon banner. it tells us what version of sendmail the server is running and with a littel hunting on google we can use this info to identify the OS of the server. okay lets ask it for help:
HELP
214- Commands:
214- HELO HELO MAIL RCPT DATA
214- RSET NOOP QUIT HELP VRFY
214- EXPN VERB
214- for more info use "HELP
214- to report bugs
214- for
214- end of help info
there now we no what commands are avalible. the second to last and the third to last lines i snipped their output, because i felt like it :). oaky again heres the commands along with what they do:
SMTP command What it does------------ ------------
HELO/HELO greets the server
RCPT specifies the recipent of the mail
MAIL specifies the sender of mail
DATA body of email
VERB turn on verbose mode
EXPN expand and email alias to full list of recipents
VRFY verify that the account exists
HELP display a help message
QUIT exit the server
NOOP do nothing
Sunday, September 9, 2007
How To Set Up Proxies In Your Browser
How To Set Up Proxies In Your Browser
This is a small Tutor - try it out!
===================================
How to set up proxies in your browser, (!!!!be anonymous and make the passes last longer...!!!!!!
===================================
In Internet Explorer
===================================
Click "Tools", then "Internet Options", the in the "connections" Tab, click the "LAN Setup" Button in the bottom. There is a "Proxy Servers", tick the "Use a proxy....." and then enter the proxy in the bigger textbox and the port (the part that comes after the ":") in the smaller textbox. Hit okay, and then go to(obtain proxy from the websites I have mentioned )
http://www.whatismyip.com
this is how the proxy works when it is configured
to see if the proxy is now your IP.
===================================
In OPERA
===================================
Click "Files", then "Preferences", then "Network", then click the button "Proxy Servers", tick "HTTP", fill in with the proxy:port, click okay and that's it! Don't forget to check with
http://www.whatismyip.com
===================================
In Firefox
===================================
Tools -> Options
Then click the General Icon
Then the "Connection Settings..." button
Then click the "manually configure proxies" radio button, and enter the proxy address and port in the HTTP Proxy area.
Don't forget to check with
http://www.whatismyip.com
check proxies with these sites……………………….
http://www.proxy4free.com
http://www.safeproxy.org
http://www.megaproxy.com
http://www.guardster.com
http://www.silenter.com
http://www.anonymizer.com
http://www.aliveproxy.com/high-anonymity-proxy-list/ (best proxies-high anonymous proxies)
Happy Anonymous surfing!
To be clear: if I give you 255.255.255.255:8080, that means 255.255.255.255 is the proxy and 8080 is the port
To Optain Fresh and new proxies,u can always check Google...
This is a small Tutor - try it out!
===================================
How to set up proxies in your browser, (!!!!be anonymous and make the passes last longer...!!!!!!
===================================
In Internet Explorer
===================================
Click "Tools", then "Internet Options", the in the "connections" Tab, click the "LAN Setup" Button in the bottom. There is a "Proxy Servers", tick the "Use a proxy....." and then enter the proxy in the bigger textbox and the port (the part that comes after the ":") in the smaller textbox. Hit okay, and then go to(obtain proxy from the websites I have mentioned )
http://www.whatismyip.com
this is how the proxy works when it is configured
to see if the proxy is now your IP.
===================================
In OPERA
===================================
Click "Files", then "Preferences", then "Network", then click the button "Proxy Servers", tick "HTTP", fill in with the proxy:port, click okay and that's it! Don't forget to check with
http://www.whatismyip.com
===================================
In Firefox
===================================
Tools -> Options
Then click the General Icon
Then the "Connection Settings..." button
Then click the "manually configure proxies" radio button, and enter the proxy address and port in the HTTP Proxy area.
Don't forget to check with
http://www.whatismyip.com
check proxies with these sites……………………….
http://www.proxy4free.com
http://www.safeproxy.org
http://www.megaproxy.com
http://www.guardster.com
http://www.silenter.com
http://www.anonymizer.com
http://www.aliveproxy.com/high-anonymity-proxy-list/ (best proxies-high anonymous proxies)
Happy Anonymous surfing!
To be clear: if I give you 255.255.255.255:8080, that means 255.255.255.255 is the proxy and 8080 is the port
To Optain Fresh and new proxies,u can always check Google...
How to use RAT (Remote accessing tool)
RAT{remote accessing tools}how to use
well this is a short description on how to access remote pcs and perform control of victims pc using RAT tools.
types of RAT:
1)has a server n a client
2)just has a client
working of all RAT is same.
--------------------------
well the working is like this:
the server file is a combination of certain commands and operations.
most of the server files perform these activities.
1)disables firewall
2)disables antivirus
3)opens a port to link to the host
4)allows connection to host via ftp,http n telnet.
5)allows whole system sharing
6)allows system activities.
------------------------
how to use a RAT
-----------------------
in case the server file is not with the client.
then open the client and choose create server option and choose your req.
after you have created the server file..... follow these steps.
1) first open client and click on connector.check that the ip is 127.0.0.1 after that click on connect in the client see if you are connected to you own pc.
*- 127.0.0.1 is the default machine adress of every pc used to refer your own pc.
2)if you connect to your own pc then the RAT works fine now follow the rest.
3)send the server file to victim.
4)after victim runs the server file then open your client and then start the connector.
5)now type ip in the ip adress column and the port used by the server file(let it remain whatever it is mentioned as it is the port used by server file). click on connect.
6)now it will connect to victims pc nad you can retrieve passwords from his pc, control system activities.
this is how the prorat looks like.............
________________________________________
well this is a short description on how to access remote pcs and perform control of victims pc using RAT tools.
types of RAT:
1)has a server n a client
2)just has a client
working of all RAT is same.
--------------------------
well the working is like this:
the server file is a combination of certain commands and operations.
most of the server files perform these activities.
1)disables firewall
2)disables antivirus
3)opens a port to link to the host
4)allows connection to host via ftp,http n telnet.
5)allows whole system sharing
6)allows system activities.
------------------------
how to use a RAT
-----------------------
in case the server file is not with the client.
then open the client and choose create server option and choose your req.
after you have created the server file..... follow these steps.
1) first open client and click on connector.check that the ip is 127.0.0.1 after that click on connect in the client see if you are connected to you own pc.
*- 127.0.0.1 is the default machine adress of every pc used to refer your own pc.
2)if you connect to your own pc then the RAT works fine now follow the rest.
3)send the server file to victim.
4)after victim runs the server file then open your client and then start the connector.
5)now type ip in the ip adress column and the port used by the server file(let it remain whatever it is mentioned as it is the port used by server file). click on connect.
6)now it will connect to victims pc nad you can retrieve passwords from his pc, control system activities.
this is how the prorat looks like.............
________________________________________
Saturday, September 8, 2007
how to hack an IP
IP Address Hack, n all bt it !!
n here I have figure out some very easy but cool ways to trace out the geographical location and various other infos like ISP details etc of a remote computer using its IP.
Well I guess its one of the most important must learn manul for boys out there if you want to impress your friends particularly gals whom you’ll meet online in a chat room and tell them their geographical locations and ISP details and make them surprised and impressed .
In the practical execution of this manual you don’t have to work much as it is very simple only you have to use your brain to understand some symbols and some format of expressions and use your IQ to execute things the right way.
What is IP and how to get the IP of a remote system::
Getting the IP or Internet Protocol of a remote system is the most important and the first step of hacking into it. Probably it is the first thing a hacker do to get info for researching on a system. Well IP is a unique number assigned to each computer on a network. It is this unique address which represents the system on the network. Generally the IP of a particular system changes each time you log on to the network by dialing to your ISP and it is assigned to you by your ISP. IP of a system which is always on the network remains generally the same. Generally those kind of systems are most likely to suffer a hacking attack because of its stable IP. Using IP you can even execute system commands on the victim’s computer.
Lets take the example of the following IP address: 202.144.49.110 Now the first part, the numbers before the first decimal i.e. 209 is the Network number or the Network Prefix.. This means that it identifies the number of the network in which the host is. The second part i.e. 144 is the Host Number that is it identifies the number of the host within the Network. This means that in the same Network, the network number is same. In order to provide flexibility in the size of the Network, here are different classes of IP addresses:
Address Class Dotted Decimal Notation Ranges
Class A ( /8 Prefixes) 1.xxx.xxx.xxx through 126.xxx.xxx.xxx
Class B ( /16 Prefixes) 128.0.xxx.xxx through 191.255.xxx.xxx
Class C ( /24 Prefixes) 192.0.0.xxx through 223.255.255.xxx
The various classes will be clearer after reading the next few lines.
Each Class A Network Address contains a 8 bit Network Prefix followed by a 24-bit host number. They are considered to be primitive. They are referred to as "/8''s" or just "8's" as they have an 8-bit Network prefix.
In a Class B Network Address there is a 16 bit Network Prefix followed by a 16-bit Host number. It is referred to as "16's".
A class C Network address contains a 24-bit Network Prefix and a 8 bit Host number. It is referred to as
"24's" and is commonly used by most ISP's.
Due to the growing size of the Internet the Network Administrators faced many problems. The Internet routing tables were beginning to grow and now the administrators had to request another network number from the Internet before a new network could be installed at their site. This is where sub-netting came in.
Now if your ISP is a big one and if it provides you with dynamic IP addresses then you will most probably see that whenever you log on to the net, your IP address will have the same first 24 bits and only the last 8 bits will keep changing. This is due to the fact that when sub-netting comes in then the IP Addresses structure becomes:
xxx.xxx.zzz.yyy
where the first 2 parts are Network Prefix numbers and the zzz is the Subnet number and the yyy is the host number. So you are always connected to the same Subnet within the same Network. As a result the first 3 parts will remain the same and only the last part i.e. yyy is variable.
***********************
For Example, if say an ISP xyz is given the IP: 203.98.12.xx Network address then you can be awarded any IP, whose first three fields are 203.98.12. Get it?
So, basically this means that each ISP has a particular range in which to allocate all its subscribers. Or in other words, all subscribers or all people connected to the internet using the same ISP, will have to be in this range. This in effect would mean that all people using the same ISP are likely to have the same first three fields of their IP Addresses.
This means that if you have done a lot of (By this I really mean a lot) of research, then you could figure out which ISP a person is using by simply looking at his IP. The ISP name could then be used to figure out the city and the country of the person. Right? Let me take an example to stress as to how cumbersome but easy (once the research is done) the above method can be.
In my country, say there are three main ISP’s:
ISP Name Network Address Allotted
ISP I 203.94.47.xx
ISP II 202.92.12.xx
ISP III 203.91.35.xx
Now, if I get to know the IP of an e-pal of mine, and it reads: 203.91.35.12, then I can pretty easily figure out that he uses ISP III to connect to the internet. Right? You might say that any idiot would be able to do this. Well, yes and no. You see, the above method of finding out the ISP of a person was successful only because we already had the ISP and Network Address Allotted list with us. So, what my point is, that the above method can be successful only after a lot of research and experimentation. And, I do think such research can be helpful sometimes.
Also, this would not work, if you take it all on in larger scale. What if the IP that you have belongs to someone living in a remote igloo in the North Pole? You could not possibly get the Network Addresses of all the ISP’s in the world, could you? If yes please send it to me
Well now I guess you have pretty good knowledge about what an IP is and what you can do by knowing the IP of a remote system. Now lets come to the point of finding out the IP of remote system.
Well you can easily figure out the IP of a remote system using the netstat utility available in the microsoft’s version of DOS. The netstat command shows the connections in which your system is engaged to and the ports they are using. Suppose you are checking your mail in hotmail and you want to find out the IP of msn. All you need to do is to open a dos window (command.com) and type netstat. You will see all the open connections of your system. There you will see something :
Proto Local Address Foreign Address State
TCP shashank:1031 64.4.xx.xx:80 ESTABLISHED
Now you got the IP address of hotmail ass 64.4.xx.xx .
Similarly you can figure out the IP address of most http or ftp connections.
To know your own IP type the following command in a dos windows
C:\netstat –n
[this commands converts the IP name into IP addresses]
this is what you will probably see on typing the above command :
Local Address : It shows the local address ie the local IP. When the netstat command is executed without –n switch then the name of the local system is displayed and when the netstat is executed with –n switch then the IP of the local system is displayed. Here you can also find out the port used by the connection.
xxx.yyy.zzz.aaa:1024
in this format you will see the local address. Here 1024 is the port to which the remote system is connected in your system
Foreign Address :: It shows the IP address of the remote system to which your system is connected. In this case also if the netstat command is excuted with –n switch then you directly get the IP of the victim but if the netstat is executed without –n switch then you will get the address of the remote system. Something like
C:\netstat
Proto Local Address Foreign Address State
TCP shashank:1031 msgr.lw4.gs681.hotmail.com:80 ESTABLISHED
Here msgr.lw4.gs681.hotmail.com is the address of the foreign system . putting this address in any IP lookup program and doing a whois lookup will reveal the IP of the remote system.
Note: The port to which your system is connected can be found from this in the same way as I have shown in the case of local address. The difference is that, this is the port of the remote system to which your computer is connected to.
Below I have produced a list of ports and popular services generally found to be running.
21 :: FTP port
80 :: http port
23 :: Telnet port
Note: If your execute the netstat command and find ports like 12345,27374 are open and are in use then make it sure that your sweat heart computer is infected with her boyfriend.. J J J J I mean your computer is infected with some sort of Trojan.
Below I have produced a list of commonly known Trojans and the ports they use by default. So if you find these ports open then get a good virus buster and get these stupid servers of the Trojans kicked out. Well if you want to play with these Trojan by keeping them in your computer but not letting them ruin your system performance then just disble it from the system registry run and they wont be loaded to memory each time when windows starts up[This trick doesn’t work for all Trojans].
Netbus :: 12345(TCP)
Subseven :: 27374(TCP)
Girl Friend :: 21554(TCP)
Back Oriface :: 31337 (UDP)
Well guys and gals I hope you are now well familiar with the term IP and what is the utility of IP in cyber world and how to get the IP of a remote system to which you are connected. I hope you find my writings very easy to undertstand. I know I lack the capacity of explaining myself but I try my level best to make things very easy and clear for you’ll.
n here I have figure out some very easy but cool ways to trace out the geographical location and various other infos like ISP details etc of a remote computer using its IP.
Well I guess its one of the most important must learn manul for boys out there if you want to impress your friends particularly gals whom you’ll meet online in a chat room and tell them their geographical locations and ISP details and make them surprised and impressed .
In the practical execution of this manual you don’t have to work much as it is very simple only you have to use your brain to understand some symbols and some format of expressions and use your IQ to execute things the right way.
What is IP and how to get the IP of a remote system::
Getting the IP or Internet Protocol of a remote system is the most important and the first step of hacking into it. Probably it is the first thing a hacker do to get info for researching on a system. Well IP is a unique number assigned to each computer on a network. It is this unique address which represents the system on the network. Generally the IP of a particular system changes each time you log on to the network by dialing to your ISP and it is assigned to you by your ISP. IP of a system which is always on the network remains generally the same. Generally those kind of systems are most likely to suffer a hacking attack because of its stable IP. Using IP you can even execute system commands on the victim’s computer.
Lets take the example of the following IP address: 202.144.49.110 Now the first part, the numbers before the first decimal i.e. 209 is the Network number or the Network Prefix.. This means that it identifies the number of the network in which the host is. The second part i.e. 144 is the Host Number that is it identifies the number of the host within the Network. This means that in the same Network, the network number is same. In order to provide flexibility in the size of the Network, here are different classes of IP addresses:
Address Class Dotted Decimal Notation Ranges
Class A ( /8 Prefixes) 1.xxx.xxx.xxx through 126.xxx.xxx.xxx
Class B ( /16 Prefixes) 128.0.xxx.xxx through 191.255.xxx.xxx
Class C ( /24 Prefixes) 192.0.0.xxx through 223.255.255.xxx
The various classes will be clearer after reading the next few lines.
Each Class A Network Address contains a 8 bit Network Prefix followed by a 24-bit host number. They are considered to be primitive. They are referred to as "/8''s" or just "8's" as they have an 8-bit Network prefix.
In a Class B Network Address there is a 16 bit Network Prefix followed by a 16-bit Host number. It is referred to as "16's".
A class C Network address contains a 24-bit Network Prefix and a 8 bit Host number. It is referred to as
"24's" and is commonly used by most ISP's.
Due to the growing size of the Internet the Network Administrators faced many problems. The Internet routing tables were beginning to grow and now the administrators had to request another network number from the Internet before a new network could be installed at their site. This is where sub-netting came in.
Now if your ISP is a big one and if it provides you with dynamic IP addresses then you will most probably see that whenever you log on to the net, your IP address will have the same first 24 bits and only the last 8 bits will keep changing. This is due to the fact that when sub-netting comes in then the IP Addresses structure becomes:
xxx.xxx.zzz.yyy
where the first 2 parts are Network Prefix numbers and the zzz is the Subnet number and the yyy is the host number. So you are always connected to the same Subnet within the same Network. As a result the first 3 parts will remain the same and only the last part i.e. yyy is variable.
***********************
For Example, if say an ISP xyz is given the IP: 203.98.12.xx Network address then you can be awarded any IP, whose first three fields are 203.98.12. Get it?
So, basically this means that each ISP has a particular range in which to allocate all its subscribers. Or in other words, all subscribers or all people connected to the internet using the same ISP, will have to be in this range. This in effect would mean that all people using the same ISP are likely to have the same first three fields of their IP Addresses.
This means that if you have done a lot of (By this I really mean a lot) of research, then you could figure out which ISP a person is using by simply looking at his IP. The ISP name could then be used to figure out the city and the country of the person. Right? Let me take an example to stress as to how cumbersome but easy (once the research is done) the above method can be.
In my country, say there are three main ISP’s:
ISP Name Network Address Allotted
ISP I 203.94.47.xx
ISP II 202.92.12.xx
ISP III 203.91.35.xx
Now, if I get to know the IP of an e-pal of mine, and it reads: 203.91.35.12, then I can pretty easily figure out that he uses ISP III to connect to the internet. Right? You might say that any idiot would be able to do this. Well, yes and no. You see, the above method of finding out the ISP of a person was successful only because we already had the ISP and Network Address Allotted list with us. So, what my point is, that the above method can be successful only after a lot of research and experimentation. And, I do think such research can be helpful sometimes.
Also, this would not work, if you take it all on in larger scale. What if the IP that you have belongs to someone living in a remote igloo in the North Pole? You could not possibly get the Network Addresses of all the ISP’s in the world, could you? If yes please send it to me
Well now I guess you have pretty good knowledge about what an IP is and what you can do by knowing the IP of a remote system. Now lets come to the point of finding out the IP of remote system.
Well you can easily figure out the IP of a remote system using the netstat utility available in the microsoft’s version of DOS. The netstat command shows the connections in which your system is engaged to and the ports they are using. Suppose you are checking your mail in hotmail and you want to find out the IP of msn. All you need to do is to open a dos window (command.com) and type netstat. You will see all the open connections of your system. There you will see something :
Proto Local Address Foreign Address State
TCP shashank:1031 64.4.xx.xx:80 ESTABLISHED
Now you got the IP address of hotmail ass 64.4.xx.xx .
Similarly you can figure out the IP address of most http or ftp connections.
To know your own IP type the following command in a dos windows
C:\netstat –n
[this commands converts the IP name into IP addresses]
this is what you will probably see on typing the above command :
Local Address : It shows the local address ie the local IP. When the netstat command is executed without –n switch then the name of the local system is displayed and when the netstat is executed with –n switch then the IP of the local system is displayed. Here you can also find out the port used by the connection.
xxx.yyy.zzz.aaa:1024
in this format you will see the local address. Here 1024 is the port to which the remote system is connected in your system
Foreign Address :: It shows the IP address of the remote system to which your system is connected. In this case also if the netstat command is excuted with –n switch then you directly get the IP of the victim but if the netstat is executed without –n switch then you will get the address of the remote system. Something like
C:\netstat
Proto Local Address Foreign Address State
TCP shashank:1031 msgr.lw4.gs681.hotmail.com:80 ESTABLISHED
Here msgr.lw4.gs681.hotmail.com is the address of the foreign system . putting this address in any IP lookup program and doing a whois lookup will reveal the IP of the remote system.
Note: The port to which your system is connected can be found from this in the same way as I have shown in the case of local address. The difference is that, this is the port of the remote system to which your computer is connected to.
Below I have produced a list of ports and popular services generally found to be running.
21 :: FTP port
80 :: http port
23 :: Telnet port
Note: If your execute the netstat command and find ports like 12345,27374 are open and are in use then make it sure that your sweat heart computer is infected with her boyfriend.. J J J J I mean your computer is infected with some sort of Trojan.
Below I have produced a list of commonly known Trojans and the ports they use by default. So if you find these ports open then get a good virus buster and get these stupid servers of the Trojans kicked out. Well if you want to play with these Trojan by keeping them in your computer but not letting them ruin your system performance then just disble it from the system registry run and they wont be loaded to memory each time when windows starts up[This trick doesn’t work for all Trojans].
Netbus :: 12345(TCP)
Subseven :: 27374(TCP)
Girl Friend :: 21554(TCP)
Back Oriface :: 31337 (UDP)
Well guys and gals I hope you are now well familiar with the term IP and what is the utility of IP in cyber world and how to get the IP of a remote system to which you are connected. I hope you find my writings very easy to undertstand. I know I lack the capacity of explaining myself but I try my level best to make things very easy and clear for you’ll.
Broadband Hacking
Broadband Hacking
This is for broadband ADSL in india and think is working on all BroadBand .Some ISPs will bind username to specific router so this trick mite not work on those ISPs.
Step 1: Download any port Scanner (i preffer Super Scan or IPscanner)
Step 2: First Get your ip from
http://www.whatismyip.com
Asume your IP to be 59.x.x.17
Step 3: copy your ip in IPscanner Software and scan for alive IPs in the below range
start:59.x.x.1 to End:59.x.x.255
Step 4: Then check in your scanner which alive IPs has the port 80 open or somthing
Step 5: Enter that IP in your web browser
Step 6: It asks for user , pass
type user=admin password=admin
It is the default password for most of the routers.
if denied then use on another alive IP
Step 7: If success then it will show router settings page of tht IP user
There goto Home -> Wan Setting and the username and password of his account will appear there.
Step 8: use ShowPassword or Revelation software to view the password in asterisks
now you have username/password
This is for broadband ADSL in india and think is working on all BroadBand .Some ISPs will bind username to specific router so this trick mite not work on those ISPs.
Step 1: Download any port Scanner (i preffer Super Scan or IPscanner)
Step 2: First Get your ip from
http://www.whatismyip.com
Asume your IP to be 59.x.x.17
Step 3: copy your ip in IPscanner Software and scan for alive IPs in the below range
start:59.x.x.1 to End:59.x.x.255
Step 4: Then check in your scanner which alive IPs has the port 80 open or somthing
Step 5: Enter that IP in your web browser
Step 6: It asks for user , pass
type user=admin password=admin
It is the default password for most of the routers.
if denied then use on another alive IP
Step 7: If success then it will show router settings page of tht IP user
There goto Home -> Wan Setting and the username and password of his account will appear there.
Step 8: use ShowPassword or Revelation software to view the password in asterisks
now you have username/password
Subscribe to:
Posts (Atom)
