May meeting recap.

Posted on May 6, 2012 by AnarchyAngel

May’s meeting was off the hook, one of our best yet! Lots of new faces which is always nice, good demos, and good beer. Ngharo started it off by talking about the hackathon and THOTCON. Klaiviel did his lock master thing and said a few words about TOOOL. Darkwind gave a awesome demo on sniffing pagers. Its crazy to see all the pager traffic that is still out there. Then I showed off my Arduino windows attack tool and pwned a windows 7 box, There will a blog post about that later. Congrats to Genero for winning the dc414 free junk giveaway! I did take a bunch of pictures but my phone was full of fail and didn’t save any of them 🙁 so no pictures of the meeting this time, sorry. I promise to do better next time 😛 later.

THOTCON greatness

Posted on April 30, 2012 by AnarchyAngel

This was the best THOTCON I have been to yet! Awesome talks, awesome beer, awesome food, and awesome people kinda sums it up for this year. Mine and ngharo’s talk went really well, and so far I have had lots of good feed back. I was a little drunk by the time we did our talk so that helped a lot, lol. My favorite talk was “Owning Payphones: 3650-Day Exploits” from savant, dude did a wonderful job and violated payphones in dirty ways! The one I learned the most from was “You put what in your DNS record?” from Mubix, yeah zone transfers are old school and I been using it for ever, but I had no idea you could do it to com and stuff, lol. Here are some pics of the swag and the con. Enjoy.

Me and ngharo giving our talk:

Hardware Hacker skillz badge preview

Posted on April 23, 2012 by AnarchyAngel

Just got this one finshed, bask in its leetness.

Photoshop and WIN!

Posted on April 19, 2012 by AnarchyAngel

Show off you leet photoshop skillz and win a dc414 t-shirt!! Make a image for the Web Hacker skills badge and submit it by May 1st for a chance to win. A winner will be picked by all attendees at Mays dc414 meeting for the shirt and as well as 10 runners up who will all get a free random sticker!! 🙂

When you submit your entry be sure to use anarchy at dc414 dot org with a subject of “Web Hacker Skills badge image entry” to make sure I get it. Remember the badges are all one inch circles so you can be sure this contest is a test of your skills. So get gimp or what ever you use fired up, show us what you got, and good luck.

April fun

Posted on April 8, 2012 by AnarchyAngel

Aprils meeting wasn’t for fools, it was for hackers 😛 It was another awesome meeting full of beer, pizza, lulz, and hacks. dw5304 got the night rolling with how to bypass windows 7 login password, then went on to talk bout how to pwn Time Warner internet! Then Klaiviel gave us a 101 style schooling on hand cuffs, tumbler, combo, and tubular locks and some others! He also covered some car locks, key impression and stuff. He explained the different picking methods and the tools of the trade. Ngharo and I topped off by giving the talk we have prepared for THOTCON! It went well but it is clear we need a little practice before the big event.

Here are some pictures from the meeting thanx to cmoney. Congrats to Klaiviel for getting so many achievements for the Lock Master badge in one night and to The Professor for winning the dc414 free junk giveaway!! He got a awesome CD/DVD/DVD-R external drive “lol”, enjoy!

Big winner of free dc414 junk 🙂

bucketwork.org build health event.

Posted on March 29, 2012 by dw5304

For 28 hours, from April 14-15, experts from the health care field will collaborate with hackers to solve relevant health care problems. Local health care experts will present contemporary health care challenges. Additionally, participants may present a health care challenge or solution. Participants will self-assemble around the problem or proposed solution they find most interesting and creatively problem solve, creating a working proof of concept to present to the judges. Solutions need not be software; they can be other instruments of social change.

Food, internet, and plenty of rest and work areas will be provided along with fabulous prizes!

Please visit BuildHealth.org for more info and to register.

make sure u register if ur coming 🙂 u will need a ticket to get in.

dc414 HashDB opening.

Posted on March 28, 2012 by AnarchyAngel

Here is another goody from dc414. HashDB is our MD5/SHA256/SHA384/SHA512/NTLM/LM cracker 🙂 The hash counts are totally user driven, that is the database only gets bigger if you help make it that way. Aside from the options given on the site to add to the database, every query made using ENCOSH gets added to the database. So do your part and help make it bigger!! Enjoy!!!1

Wireless hacker skills badge preview

Posted on March 24, 2012 by AnarchyAngel

I am pleased to release the Wireless hacker skills badge. Now appreciate its awesomeness.

March meeting madness!

Posted on March 21, 2012 by AnarchyAngel

March’s meeting was filled with all sorts of shenanigans. dw5304 started things off with a little demo of Windows Server 8 and some of its improved features and functions.

Ngharo kept the OS ball rolling by going over some Linux 101 and while he was showing us how grep can be used to find wanted data in Apache logs Castor pulled a little prank on Ngharo and left a message in the logs for him 😛 Every one got a big laugh out of it. Ngharo also has promised to give a new Linux demo every meeting!

Then I stepped in and gave a demo on how to use temp XSS attacks to gain access to user accounts on web sites, the target in this case was Daily Motion using a known vector. It was complete with a explanation of the attack string, the payload, how to use it, and how to fix it. I gave the room the opportunity to hack my Daily Motion account, using the cookie stolen during my demo which turned out to be a bad idea, Ngharo thought it was cute to replace my profile picture with the index picture from lemonparty2 😐 Yeah, ok I loled hard at that one 🙂

Then The Professor showed us how to use “The Social Engineering Tool Kit” to phish n00bs and pwn their passwords! He gave us a step by step of how to copy a website, how to access the phish page, and what happens when its used. Then we all talked about how to know when your being phished. It was a great first demo from The Professor.

A big congrats to The Professor for winning the dc414 Free Junk Giveaway “pic below”, Enjoy your new Launchpad 🙂 Here are some other pictures from the awesome Cmoney.

The big winner:

SIDE NOTE:
The next morning with a slight hangover I open my email and find this from Daily Motion:
Hello anarchyang31,

The avatar of your Dailymotion account “anarchyang31” has been deleted due to non respect of the General Terms Of Use (inappropriate content).
In any event, we ask that you observe those conditions. You can review them by clicking here: http://www.dailymotion.com/legal/terms

After 5 deleted avatars, you will no longer be able to change it and it will be replaced with a default avatar.

You can upload a new avatar by clicking here: http://www.dailymotion.com/profile/avatar

Best regards,

—
The Dailymotion Team

LMAO thanx Ngharo. Ok thats it, later.

Rdp 6.2.8250 for windows 7

Posted on March 9, 2012 by dw5304

So i went looking for a way to use the new rdp 6.2 in windows 7 and was unable to find an installer on microsoft website so i decieded to see if i could copy the files and get rdp to work. After several tries i was finaly able to get it to work :).

I included the files below.

on a vaild windows 8 machine:

create a new folder for files someone usb drive is a good palce,
inside this new folder make a folder called en-us and wbem

inside wbem create a folder called en-US (its important u have US captilized)

open Driveroot:\system32\

copy mstsc.exe,mstscav.dll in to the new folder on the usb

copy mstsc.exe.mui and mstscax.dll.mui from Driveroot:\system32\en-us to new folder\en-us

copy mstsc.mof and mstscax.mof from driveroot:\system32\wbem\ to new folder\wbem\

copy mstsc.mfl and mstscax.mof from driveroot:\system32\wbem\en-US\ to new folder\wbem\en-US

and u should be good to go.