Hacking Windows 95, Part 2

In the Hacking Windows 95, part 1 blog post, we covered that through a nasty bug affecting Windows 95/98/ME, the share password can be guessed in no time. In this article, I'm going to try to use this vulnerability to achieve remote code execution (with the help of publicly available tools only).

The first thing we can do when we have read access to the Windows directory through the share, is to locate all the *.pwl files on the c:\windows directory, copy them to your machine where Cain is installed, switch to Cracker tab, pwl files, load the pwl file, add username based on the filename, and try to crack it. If you can't crack it you might still try to add a .pwl file where you already know the password in the remote windows directory. Although this is a fun post-exploitation task, but still, no remote code execution. These passwords are useless without physical access.

One might think that after having a share password and user password, it is easy to achieve remote code execution. The problem is:

• there is no "at" command (available since Windows 95 plus!)
• there is no admin share
• there is no RPC
• there is no named pipes
• there is no remote registry
• there is no remote service management

If you think about security best practices, disabling unnecessary services is always the first task you should do. Because Windows 95 lacks all of these services, it is pretty much secure!

During my quest for a tool to hack Windows 95, I came across some pretty cool stuff:

Internet periscope

Winfingerprint

LanSpy

But the best of the best is Fluxay, which has been written by chinese hackers. It is the metasploit from the year 2000. A screenshot is worth more than a 1000 words. 4 screenshot > 4 thousand words :)

It is pretty hard to find the installer, but it is still out there!

But at the end, no remote code execution for me.

My idea here was that if I can find a file which executes regularly (on a scheduled basis), I can change that executable to my backdoor and I'm done. Although there is no scheduler in the default Windows 95, I gave it a try. 

Let's fire up taskman.exe to get an idea what processes are running:

Looks like we need a more powerful tool here, namely Process Explorer. Let's try to download this from oldapps.com:

LOL, IE3 hangs, can't render the page. Copying files to the Win95 VM is not that simple, because there are no shared folders in Win95 VM. And you can't use pendrives either, Win95 can't handle USB (at least the retail version). After downloading the application with a newer browser from oldapps, let's start Process Explorer on the test Windows 95.

Don't try to download the Winsocks 2 patch from the official MS site, it is not there anymore, but you can download it from other sites. 

Now let's look at the processes running:

After staring it for minutes, turned out it is constant, no new processes appeared.
Looking at the next screenshot, one can notice this OS was not running a lot of background processes ...

My current Win7 has 1181 threads and 84 processes running, no wonder it is slow as hell :)

We have at least the following options:

1. You are lucky and not the plain Windows 95 is installed, but Windows 95 Plus! The main difference here is that Windows 95 Plus! has built-in scheduler, especially the "at" command. Just overwrite a file which is scheduled to execution, and wait. Mission accomplished!
2. Ping of death - you can crash the machine (no BSOD, just crash) with long (over 65535 bytes) ICMP ping commands, and wait for someone to reboot it. Just don't forget to put your backdoor on the share and add it to autoexec.bat before crashing it. 
3. If your target is a plain Windows 95, I believe you are out of luck. No at command, no named pipes, no admin share, nothing. Meybe you can try to fuzz port 137 138 139, and write an exploit for those. Might be even Ping of Death is exploitable?

Let's do the first option, and hack Windows 95 plus!

Look at the cool features we have by installing Win95 Plus!

Cool new boot splash screen!

But our main interest is the new, scheduled tasks!

Now we can replace diskalm.exe with our backdoor executable, and wait maximum one hour to be scheduled.

Instead of a boring text based tutorial, I created a YouTube video for you. Based on the feedbacks on my previous tutorialz, it turned out I'm way too old, and can't do interesting tutorials. That's why I analyzed the cool skiddie videoz, and found that I have to do the followings so my vidz won't suck anymore:

• use cool black windows theme
• put meaningless performance monitor gadgets on the sidebar
• use a cool background, something related with hacking and skullz
• do as many opsec fails as possible
• instead of captions, use notepad with spelling errorz
• there is only one rule of metal: Play it fuckin' loud!!!!

Read more

1. Easy Hack Tools
2. What Are Hacking Tools
3. Hacker Tools List
4. Hacker Tools Github
5. Pentest Reporting Tools
6. Pentest Recon Tools
7. Hack Rom Tools
8. Underground Hacker Sites
9. Kik Hack Tools
10. Hacker Tools For Ios
11. Pentest Tools Kali Linux
12. Pentest Tools Alternative
13. Hack Tools For Games
14. Computer Hacker
15. Hacking Tools For Beginners
16. Hack Tool Apk No Root
17. Pentest Box Tools Download
18. Hacker
19. Android Hack Tools Github
20. Hacker Tools 2020
21. Pentest Reporting Tools
22. Hacker
23. Easy Hack Tools
24. Growth Hacker Tools
25. Hacker Tools For Windows
26. Pentest Tools Alternative
27. Pentest Automation Tools
28. Hacker Tools
29. Hacking Tools For Mac
30. Hack Tool Apk
31. Pentest Tools Kali Linux
32. Hack App
33. How To Hack
34. Tools 4 Hack
35. Hacking Tools Name
36. Tools Used For Hacking
37. Pentest Reporting Tools
38. Android Hack Tools Github
39. Hacking Tools
40. Hack Tools For Pc
41. Hacking Tools For Windows Free Download
42. Hacker Tools For Ios
43. Top Pentest Tools
44. Pentest Recon Tools
45. Hack Tools For Games
46. Hacker Hardware Tools
47. World No 1 Hacker Software
48. Pentest Tools Download
49. Hack Tools
50. Pentest Tools Android
51. Pentest Tools Subdomain
52. Hacking Tools Online
53. Hackers Toolbox
54. Best Pentesting Tools 2018
55. Hacking Tools Mac
56. Pentest Tools Website Vulnerability
57. Pentest Tools Android
58. Pentest Tools Linux
59. Hacking Tools For Windows 7
60. Hacking Tools Mac
61. Pentest Automation Tools
62. Hacking Tools For Kali Linux
63. Computer Hacker
64. Hack Apps
65. Hacker Tools For Mac
66. Hacker Tools Apk Download
67. Pentest Tools Subdomain
68. Hack Tools 2019
69. Hacker Tools Linux
70. Top Pentest Tools
71. Install Pentest Tools Ubuntu
72. Top Pentest Tools
73. Pentest Tools Download
74. Pentest Tools Free
75. Pentest Tools Apk
76. Pentest Tools Alternative
77. Hacking Tools For Windows 7
78. Hacking Tools For Windows 7
79. Hacker Tools Software
80. Kik Hack Tools
81. Hacker Tool Kit
82. Pentest Tools Nmap
83. Hacking Tools Mac
84. World No 1 Hacker Software
85. Hacking Tools 2020
86. Hack Tools For Ubuntu
87. Wifi Hacker Tools For Windows
88. Kik Hack Tools
89. Hacking Tools For Mac
90. Hacking Tools Hardware
91. Physical Pentest Tools
92. Physical Pentest Tools
93. Hack Rom Tools
94. Hacker Tools Online
95. Hack Tools For Pc
96. Hacking Tools 2019
97. Hack Tools For Ubuntu
98. Pentest Tools List
99. Hacker Tools For Ios
100. Hacker Tools Software
101. Pentest Automation Tools
102. Pentest Tools Framework
103. New Hacker Tools
104. Hacking Tools Kit
105. Pentest Tools Url Fuzzer
106. Pentest Tools Website
107. Hack Tool Apk No Root
108. Hacker Tools Software
109. Hacker Hardware Tools
110. Pentest Tools Tcp Port Scanner
111. Hacking Tools Free Download
112. Pentest Tools Port Scanner
113. Pentest Tools Open Source
114. Hacker Tools Software
115. How To Install Pentest Tools In Ubuntu
116. Pentest Tools Github
117. Free Pentest Tools For Windows
118. Pentest Tools For Mac
119. Kik Hack Tools
120. Pentest Tools Free
121. Tools 4 Hack
122. Top Pentest Tools
123. Hack Tools For Pc
124. Pentest Tools Android
125. Hacking Tools For Kali Linux
126. Hacker Tools 2019
127. Hack Tool Apk No Root
128. Easy Hack Tools
129. Hacking Tools For Kali Linux
130. Pentest Tools Nmap
131. How To Install Pentest Tools In Ubuntu
132. Pentest Tools Review
133. Android Hack Tools Github
134. Wifi Hacker Tools For Windows
135. Pentest Tools Subdomain
136. Hacker Hardware Tools
137. Free Pentest Tools For Windows
138. Best Hacking Tools 2020
139. Pentest Tools Open Source
140. Hacker Tools For Windows
141. Hacker Tools For Pc
142. Hack Tools For Ubuntu
143. Hacking Tools For Kali Linux
144. Hacker Tools For Mac
145. World No 1 Hacker Software
146. Pentest Automation Tools
147. Hacker Tools Apk Download
148. Pentest Tools Online

WHAT IS ETHICAL HACKING

What is ethical hacking?

Ethical hacking is identifying weakness in computer system and/or computer networks and coming with countermeasures that protect the weakness.

Ethical hackers must abide by the following rules-
1-Get written permission from the owner of the computer system and/or computer network before  hacking.
2-Protect the privacy of the organisation been hacked etc.

Ethical Hacking and Ethical Hacker are terms used to describe hacking performed by a company or individual to help identity potential threats on a computer or network.

 

An Ethical Hacker attempts to byepass system security and search for any weak point that could be exploited by Malicious Hackers.

More articles

• Pentest Tools Alternative
• Hacking Tools For Games
• Hacker Tool Kit
• Black Hat Hacker Tools
• Hack Rom Tools
• Nsa Hacker Tools
• Hacking Tools Mac
• Pentest Tools For Ubuntu
• Best Pentesting Tools 2018
• Tools Used For Hacking
• Tools 4 Hack
• Pentest Tools Free
• Tools 4 Hack
• Hacking Tools Download
• Pentest Tools For Android
• Pentest Tools Url Fuzzer
• Pentest Box Tools Download
• Hack Apps
• Hacker Tools Linux
• Nsa Hack Tools
• Pentest Tools Android
• Hacker Search Tools
• Hacker Tools For Pc
• Pentest Tools List
• Blackhat Hacker Tools
• Pentest Tools Tcp Port Scanner
• Pentest Tools Windows
• How To Install Pentest Tools In Ubuntu
• Hacker Tools For Windows
• Pentest Tools For Windows
• Pentest Recon Tools
• Pentest Tools Alternative
• Hacking Tools And Software
• Hacking Tools Kit
• Pentest Automation Tools
• Hack Tool Apk No Root
• Hacker Tools 2020
• Hacking Tools Name
• Hacking Tools For Windows
• Pentest Tools List
• Usb Pentest Tools
• Hacking Tools Hardware
• Hacking Tools Hardware
• Hack Tools Pc
• Hack Tools For Mac
• Hacking Tools For Windows
• Hacking Tools 2020
• Hack Tool Apk
• Hacking Tools 2020
• Hacking Apps
• Hacking Tools And Software
• Hacker Tool Kit
• Hacker Tools Apk Download
• Pentest Tools Github
• Pentest Tools Tcp Port Scanner
• Hacker Tools For Ios
• Hacker Tools Apk
• Hacker Search Tools
• Hacker Tools Apk Download
• Hack Rom Tools
• Pentest Box Tools Download
• Hack Tools For Pc
• Nsa Hack Tools
• Hacking Tools For Beginners
• Pentest Tools For Windows
• Hack And Tools
• Hacking Tools Pc
• Hacker Tools For Pc
• Pentest Tools Free
• Pentest Tools Online
• Pentest Tools Download
• Hackers Toolbox
• Free Pentest Tools For Windows
• Hacker Tools Free Download
• Hacking Tools Software
• Pentest Tools For Ubuntu
• Hacker Tools 2020
• Pentest Reporting Tools
• Hacking Tools For Windows
• Hacking Tools Download
• Best Hacking Tools 2020
• Hacking Tools For Windows
• Hack Tools Pc
• Hacker Tools Linux
• Hacker Search Tools
• Pentest Tools List
• Pentest Tools Framework
• What Are Hacking Tools
• Pentest Tools For Android
• Hacker Security Tools
• Pentest Tools Online
• Hack Tools Mac
• Hacking Tools Windows

Top 5 Most Useful Linux Tools For Programmers

Linux is a free and open-source software operating systems built around the Linux kernel. It typically packaged in a form known as a Linux distribution for both desktop and server use. It is a great development environment for programmers and developers. However, without the development tools, that would be impossible. Fortunately, plenty of Linux tools are available. Here are the top 5 most useful Linux tools for programmers.

Also Read;-  How To Clone One Android To Another

5 Most Useful Linux tools for Programmers

1. VIM

VIM is a free and open source software written by Bram Moolenaar in 1991. It is designed for use both from a command-line interface and as a standalone application in a graphical user interface. It comes standard with almost every Linux distribution and is also known as "the programmer's editor". VIM is great for coding and can also be used for editing things like configuration files and XML documents.

Vim has been developed to be a cross-platform that supports many other platforms. In 2006, it was voted as the most popular editor amongst Linux Journal readers. In 2015, Stack Overflow developer survey found it to be the third most popular text editor while in 2016, the Stack Overflow developer survey found it to be the fourth most popular development environment.

Read more;-  How To Use WhatsApp without Mobile No

2. Zsh

Zsh is written in C and initially released in 1990. It is a Unix shell that can be used as an interactive login shell and as a powerful command interpreter for shell scripting. Zsh is an extended version of Bourne shell (BASH) with a large number of improvements, including some features of Bash, ksh, and tcsh. Zsh gives a user-friendly experience on the command line. It also gives better auto-completion, Vim key bindings, and smart guesses when you write a command wrong.

Its features include (but not limited to):

• Programmable command-line completion,
• Sharing of command history among all running shells
• Extended file globbing
• Improved variable/array handling
• Editing of multi-line commands in a single buffer
• Spelling correction
• Various compatibility modes,
• Themeable prompts, and
• Loadable modules.

3. Byobu

It was initially released in 2009 written in Sh and Python. Byobu can be used to provide on-screen notification or status and tabbed multi-window management. Thus, it is intended to improve terminal sessions when users connect to remote servers with an operating system Linux and Unix-like. It is is an enhancement for the GNU Screen terminal multiplexer or tmux used with the GNU/Linux computer operating system.

4. GIT

Git was initially released on April 7, 2005. It is a version control system to track changes in computer files and to coordinate work on those files among multiple people. It is primarily used for source code management in software development and can be used to keep track of changes in any set of files available in the English language. It is aimed at speed, data integrity, and support for distributed, non-linear workflows. It is free and open source software distributed under the terms of the GNU General Public License version 2.

Moreover, Linus Torvalds was the creator of GIT for the development of the Linux kernel. On the other hand, its current maintainer since then is Junio Hamano. Thus, every Git directory on every computer is a full-fledged repository with complete history and full version tracking abilities, independent of network access or a central server.

Read more;-  How To change Facebook Default Theme

5. Docker

Written by Solomon Hykes in 2013, it is a computer program that performs operating-system-level virtualization, the containerization, which is developed by Docker, Inc. Primarily, Docker was developed for Linux to use as the resource isolation features of the Linux kernel. It is a tool that can package an application and its dependencies in a virtual container that can run on any Linux server. This helps enable the flexibility and portability on where the application can run, whether on premises, public cloud, private cloud, bare metal, etc.  Moreover, it accesses the Linux kernel's virtualization features either directly using the libcontainer library.

More information

1. Pentest Tools Github
2. How To Make Hacking Tools
3. Pentest Box Tools Download
4. Pentest Tools Alternative
5. Hacker Tools
6. Ethical Hacker Tools
7. Hacker Tools For Pc
8. Pentest Tools Url Fuzzer
9. Hacker Tools Github
10. Hacker Tools Free Download
11. Pentest Box Tools Download
12. Hacking Tools And Software
13. Hacker Tools Software
14. Hacking Tools Windows 10
15. Hack Tools For Mac
16. Hacking Tools Free Download
17. Pentest Tools List
18. Nsa Hack Tools
19. Usb Pentest Tools
20. Hacker Tools Mac
21. Pentest Automation Tools
22. Best Hacking Tools 2019
23. Hacking Tools Free Download
24. Hacker Tool Kit
25. Pentest Tools Website Vulnerability
26. Bluetooth Hacking Tools Kali
27. Hacking Tools Free Download
28. Hacker Techniques Tools And Incident Handling
29. Hacking Tools Github
30. Tools For Hacker
31. Pentest Automation Tools
32. Hack Tools Mac
33. What Is Hacking Tools
34. Beginner Hacker Tools
35. Growth Hacker Tools
36. Android Hack Tools Github
37. Hacking Tools For Windows
38. Pentest Tools Apk
39. Hacking Tools
40. Hacker Tools
41. Hacking Tools Hardware
42. Underground Hacker Sites
43. How To Make Hacking Tools
44. Hacker Tools Apk
45. Hack Tools
46. Hacks And Tools
47. Termux Hacking Tools 2019
48. Pentest Tools Github
49. Pentest Automation Tools
50. Hack Tools For Mac
51. Pentest Tools For Ubuntu
52. Top Pentest Tools
53. Pentest Tools Windows
54. Hacking Tools 2020
55. Hacking Apps
56. Hack App
57. Best Hacking Tools 2019
58. Hack Tools For Mac
59. Hacker Techniques Tools And Incident Handling
60. Hacking Tools Software
61. Hacker Tools Online
62. Pentest Tools For Windows
63. Pentest Tools Website Vulnerability

Advanced Penetration Testing • Hacking The World'S Most Secure Networks Free PDF

Related articles

1. Pentest Tools Online
2. Hacker Tools Github
3. Hacking Tools Github
4. Pentest Tools Find Subdomains
5. Hacking Tools Hardware
6. Wifi Hacker Tools For Windows
7. Hackrf Tools
8. Pentest Tools
9. Pentest Tools Github
10. Hacker Tools Apk
11. Pentest Tools Open Source
12. Pentest Tools List
13. Pentest Tools Kali Linux
14. Hacking Tools Pc
15. Hacker Tools 2020
16. Hacking Tools Kit
17. Hak5 Tools
18. World No 1 Hacker Software
19. Hacking Tools For Beginners
20. Best Hacking Tools 2019
21. Nsa Hack Tools Download
22. Black Hat Hacker Tools
23. Black Hat Hacker Tools
24. Pentest Tools Tcp Port Scanner
25. Install Pentest Tools Ubuntu
26. Hacking Tools Name
27. Kik Hack Tools
28. Easy Hack Tools
29. Github Hacking Tools
30. Install Pentest Tools Ubuntu
31. Hacking Tools 2019
32. Hacker Tools Windows
33. Hack Tools For Ubuntu
34. Pentest Tools Framework
35. Hacking Tools For Kali Linux
36. Hacker Tools
37. Tools 4 Hack
38. Android Hack Tools Github
39. Termux Hacking Tools 2019
40. Hack App
41. Pentest Tools Apk
42. Pentest Tools
43. Hacking Tools Name
44. Hacker Techniques Tools And Incident Handling
45. Beginner Hacker Tools
46. Pentest Tools Linux
47. Hacker Tools For Pc
48. Tools 4 Hack
49. Ethical Hacker Tools
50. Pentest Recon Tools
51. Hack Tools Mac
52. Hacking Tools Online
53. Physical Pentest Tools
54. Hacker Tools Free Download
55. Best Hacking Tools 2019
56. Hacker Tools Apk Download
57. Pentest Tools Port Scanner
58. Hack Tool Apk No Root
59. Hacker Tools Software
60. Hack Tools Github
61. Hacker Hardware Tools
62. What Is Hacking Tools
63. What Are Hacking Tools
64. Hacker Tools Free
65. Hacking Tools Usb
66. Pentest Tools Open Source
67. Pentest Tools
68. Hacking Tools 2019
69. Beginner Hacker Tools
70. Pentest Tools For Windows
71. Pentest Tools For Ubuntu
72. Pentest Tools For Mac
73. Pentest Tools Tcp Port Scanner
74. New Hacker Tools
75. Hacker Tool Kit
76. Pentest Tools Tcp Port Scanner
77. Hacker Tools 2020
78. Usb Pentest Tools
79. Hacking Tools For Windows
80. Wifi Hacker Tools For Windows
81. Pentest Reporting Tools
82. Hack Tools Pc
83. Pentest Tools Framework
84. Hacking Tools Mac
85. Hacker Tools Free
86. Growth Hacker Tools
87. Pentest Tools Free
88. Underground Hacker Sites
89. Pentest Tools Bluekeep
90. Pentest Automation Tools
91. Pentest Tools For Ubuntu
92. Pentest Tools Free
93. Android Hack Tools Github
94. Nsa Hack Tools Download
95. Hak5 Tools
96. Hack Tools 2019
97. Hack Tools For Pc
98. Pentest Tools Alternative
99. Hacking Tools Pc
100. Hack Tools For Games
101. Hacker Tools List
102. Hack Tool Apk
103. Growth Hacker Tools
104. Pentest Tools For Ubuntu
105. Underground Hacker Sites
106. Hack App
107. Hack Tools Online
108. Pentest Tools Tcp Port Scanner
109. Pentest Tools Alternative
110. Hacker Tools Apk
111. Hacker Tools For Mac
112. Hacking Tools Mac
113. Hacking Tools For Windows Free Download