Sign in to follow this  
Followers 0
orion

Your first hacks

135 posts in this topic

My first hack was when I found a password through a source, pressed control+f , "find javascript" then proceeded to find the password. I successfully entered a site that was password protected by javascript....

0

Share this post


Link to post
Share on other sites

My first hack was in my freshman year of HS. Our school used all Macs, and I was very very good friends with the guy who was teaching the Typing/Office Suite class and was in charge of the lab. Well, I had read some things about single user mode on linux being able to give you root access without a password, and even though I could get a terminal, it was just user level access and there were places on the local machine that we didnt have RW privledges for.

Well, I figured that maybe with root access there would be some interesting stuff on the local machine to explore. So, I talked to the teacher and he agreed to let me play around as long as he could watch. So, I re-started into single user mode, and lo and behold, I was quickly dropped into a root shell, and found out that I not only (as expected) had RWX permissions on the local machine, but also had RWX our admins desktop Mac, and could poke around in the servers. I never did anything with it though, just because there didn't seem to be anything to intersting on there, but it was fun none the less.

-Light

0

Share this post


Link to post
Share on other sites

My first "hack" was bypassing passwords in windows 98 ( i think? could of been 95)

Anyway I was 10 or younger, and I share a pc with my brother. We both had accounts with passwords.

I wanted to get a file from his account, so I try to guess his password, and fail. So I just login into my.

But when I login, I saw that I login into my brother account. I was like ".....wow"

So I can login into any account as long as I knew one of their passwords.

So let you sum it up, type in person login name. type in anything for a password.

It's will say wrong password. then login into your's. Then you will be in their account.

I think MS fix it. But we never updated that P.O.S PC.

0

Share this post


Link to post
Share on other sites

Windows 98 had something even simpler. Just press ESC at the login screen. Saved my mom's job at one point. :devil:

0

Share this post


Link to post
Share on other sites
Windows 98 had something even simpler. Just press ESC at the login screen. Saved my mom's job at one point. :devil:

Your story reminds me that I don't like computer-illiterate people being the boss of other people

0

Share this post


Link to post
Share on other sites

I got a late start, wasn't interested in computers until I was about 19. I blame it on hormones and pretty girls. Anyway, it was around the mid-90's, before the web was as commercial and as busy as it is now. Web chatrooms were primarily HTML-based, using forms and page refreshes. Also poorly designed.

One site that hosted several chatrooms allowed you to use font tags and img tags, but filtered everything else out. I had never heard of code injection or even the concept before, but I was curious as to what would happen if I started an img tag, and enclosed another "prohibited" tag within it. Would the site simply look for an "allowed" tag, and then just ignore everything until it encountered a closing tag? Well I decided to find out:

<img <body bgcolor="#000000">

And it worked. So, being the mischevious guy that I am, with a little less self-control than I have these days, I really fucked with the chatroom. Basically manipulating the page to my heart's content. People would get pissed and leave, which made it a bit boring, but they'd come back. It was after all, a "cyber sex" chat site. And just like with me as a teenager, people have a hard time keeping those damn hormones in check...

This is what got me interested in coding and web design. Well, with this newfound interest, I started to learn a bit of JavaScript and about HTML forms. JavaScript wasn't extremely common at this time, and guess what? The code validation in the chatrooms, though modified to check for my little code injection technique by this time, did not check for JavaScript. So, with an img tag (still allowed), I added event handlers such as onError (the now-all-too-common 1px by 1px image with no url in the src parameter to avoid detection), and was free to use JavaScript to manipulate the DOM and forms. This was even more fun for my mischevious binge, as I found great entertainment in changing form variables:

  • Setting everyone's chatroom refresh rate to 1 sec. This resulted in the inability of everyone to post anything, so it wasn't much fun after the 1st time.
  • PM'ing the chatroom jerk, and changing his username to "Micro Penis" or something just as demeaning, then forcing a form submit. What's funny, is that they usually didn't notice until after a few posts, sometimes even posting something to the effect of, "hey buddy, thanks for telling us about your tiny little dick!" and the realizing they are the ones posting under that handle.
  • Entering text into the chat post textarea and forcing a submit (i.e. chatroom jerk says, "I also like to put Micro Penises in my dirty mouth", etc.). This really pissed them off, and made everyone else very happy.
  • Changing the port in the site url (each chatroom was served on a different port) in the form's action parameter, so they'd end up posting their harrassment in another room. Kinda felt like Scotty from Star Trek, beaming those jerks to a far away land. This also made the chatters very happy.

Quickly went from being the chatroom trouble-maker to the vigilante enforcer. I wasn't keen on hanging around a cyber sex chatroom for anything other than mischief though, so this hobby faded rather quickly. No, seriously.

Anyway, a bit lame, but fun nonetheless, and it was a genuine spark of curiosity and testing the boundaries of an existing system.

0

Share this post


Link to post
Share on other sites
Windows 98 had something even simpler. Just press ESC at the login screen. Saved my mom's job at one point. :devil:

damn I wish I knew that almost 9 years ago. lol

0

Share this post


Link to post
Share on other sites
Windows 98 had something even simpler. Just press ESC at the login screen. Saved my mom's job at one point. :devil:

Your story reminds me that I don't like computer-illiterate people being the boss of other people

:voteno:

0

Share this post


Link to post
Share on other sites

I'm not really sure how old I was when I did this, but when I did this... I didn't even know I was hacking.

I was being a naughty boy and was browsing porno sites... I downloaded a sample video, that only lasted like 10 seconds... this made me sad. I looked where the file was located and it was something like this, "/videos/sample/jessica.wmv"

Of course, I do the obvious thing and look at "/videos/sample/" and bam! I get a decent size list of *.wmv files with different names. I dig deeper, "/videos/"... I see the folder "sample" and I see another folder called "membership".

"/videos/membership/"... JACKPOT! A big list of the full length pornos all for me!

Not much skill envolved, but I did enjoy the payoff.

0

Share this post


Link to post
Share on other sites

Well i dot a lot of lame stuff when i was like 13 and 14, most of them with subseven and stuff like that, send fil by msn, yahoomsn or irc (most irc) them just scan the range of the ip, jackpot start to check files i never did nothing really bad. Them i just have to stop with Computers. Since that i got like 2 years now back on my pc, my country have pretty shit economy (Venezuela) now in back trying to learn all i can and hopely i'll study something like Computer Ingeneer when i got more money to pay my professional career.

Now im trying to break some lame stuff like photobucket, or myspace, something don't hurt anybody just to get started.

Once Again Sorry about my bad english ^^

0

Share this post


Link to post
Share on other sites

When I was 10, I bypassed a simple javascript that protected images on a webpage by pulling the address from the source. I don't consider it my first 'hack' so much as the birth of my invassive curiousity.

First real 'hack' would be when I was 13. My school had that lame Foolproof thing on all the PCs (Win98). I booted into DOS and opened the exe for Foolproof in edit and deleted some code. Then, once it rebooted, it had no restrictions what-so-ever!

First hack I got busted for was changing local admin passwords on WinXP laptops (roughly goes like this: rightclick mycomputer>manage>users>rightclick administrator> set password). Got out of it by playing stupid. I was 14

First hack I got investigated for was a long process. I was 16 when it happend, but me and a few friends (the fiends) got into the head of security's PC and stole all sorts of confidential information including radio assignments, blueprints, schematics, disipline records, camera logs and IPs, budget and financial reports, porn (yes, the married girls softball coach had loads of porn. we made sure to make that known when we got caught) and (the centerpiece) the student SSN d-base. A year later when I was 17, IT did thier job and checked logs. This was followed by two interrogations for each of us and being pulled from classes/put in isolation for a week (each one was placed in a seporate room during school hours), and I (being suspected as the

'ringleader' in this massive conspiracy the school cooked up) had to go through a polygraph. Fun stuff!
0

Share this post


Link to post
Share on other sites

Gonna reveal my age a bit but oh well....

I was either 13 or 14, the Internet wasn't really popular yet. People used dial up BBS's (which rocked btw).

Not sure which came first.

* One time I modified an install disk for the shareware version of "Duke Nukem". I renamed the setup.exe and wrote a simple batch script that would back up the old autoexec file and then replace it with an autoexec that just printed a skull and cross bones(then it would run the setup normally) Then you would just leave the disk in the Computer lab and someone was bound to try to install it.......

* Another time I used a feature in word-perfect that allowed you to bind macros to any key. One afternoon I bound the home row to different letters on like 5 of the computers the next day the keyboarding classes had to share the computers because the computers in the back were "possessed"

This is back before anyone knew shit about managing a network and I almost got expelled for the word-perfect key-binding bit because I "wrote a virus and was going to try and take down the school network" Luckily a few knowlegable teachers stepped in because the principle was completely ignorant.... (this is a real good way to learn not to be an asshat btw)

I think 2 years later they upgraded from their 286,386,486 to Windows NT and paid for an IT Department (obviously the calculus teach doesn't know how to deal with information security when dealing with high school kids).

0

Share this post


Link to post
Share on other sites

Now i think back my first hack wasn't a novell setup. The school network had a win95 workstations, everone was playing this game, i can't remeber the name but it had a batch file that you click to run it. I was in one of the class rooms of the school and i access anought room and change the batch file to delete windows main file, i think vmm then run the program. The next i heard from a freind they hat to reinstall the OS.

If anyone has got any new or relivetly recent like the last 2 years please post.

It helps people learn new ways to hack thanks

0

Share this post


Link to post
Share on other sites
Now i think back my first hack wasn't a novell setup. The school network had a win95 workstations, everone was playing this game, i can't remeber the name but it had a batch file that you click to run it. I was in one of the class rooms of the school and i access anought room and change the batch file to delete windows main file, i think vmm then run the program. The next i heard from a freind they hat to reinstall the OS.

If anyone has got any new or relivetly recent like the last 2 years please post.

It helps people learn new ways to hack thanks

But it then wouldn't be your "first" hack now would it...

0

Share this post


Link to post
Share on other sites

Well I started off mainly as a "game hacker." There were some private servers for a game called Rose Online, and I'd go in and mess with them a bit. Dropping 1 money every .1 second, dropping 100,000 moneys every .1 second.. MAnaging to equip a weapon on my feet. (Which for some reason highly boosted my attack power..)

Well they got a little thing called an "item mall" which was web based. The parameters for what was being bought (and the price of it) was held client side. I'd just edit some values and get any item I wanted for free. I'd hold events for the newbies dropping money and items at a rapid rate.

..I got banned about 5 times, then came back and social engineered my way to admin. (...although it required redoing the site's template and a total game client overhaul.)

0

Share this post


Link to post
Share on other sites

Well this is my first 'hack'

i was 13 at the time (15 now) and i was hard at work making a mod for the old 1998 shooter 'Starsiege Tribes' and while i was looking through the code i wonderd if the code would stop you from running commands while in a server that was not your own, and no it didn't, thus i could execute commands that only an admin should be able to, and was able to give myself admin, restart the server and many other fun things.

-ZealĀ²

0

Share this post


Link to post
Share on other sites

I would say that my first 'hack' was about 2 or 3 years ago learning how to exploit the search computers at the library. They were connected to the library's web page to work as a book search and the address bar was not being shown and right click disabled. So after much toying with they system i discovered that you could use the right click key to right click on an image and choose email this picture. It would open Outlook, from there i choose help > search the web. Yay for internet access! No one has figured this out yet to my knowledge...

0

Share this post


Link to post
Share on other sites

my school was very very very dumb

I was age 14

I went into word and type in "\\cen\imc" and boom I got a link highlight. Don't ask me why or how I knew to do that. "\\cen" my school "\imc" is the main lab of computers hooked up on the network. My school was dumb and ran I think win98. The school network had 3 users; admin, teachers, students. When I typed that in word and clicked it, it sent me to a folder on the network. In this folder I found a a txt that had every students information in the school and even the teachers. I got addresses, phone numbers, parents, student id numbers, food account numbers. It was odd they just had that sitting so anyone can see. I don't even know why they even had that. I have some details missing because I dont remember the exact process I took to get their. But that was 6 years ago.

0

Share this post


Link to post
Share on other sites

Growing up in California <_< , My best friend "BlueBoy" and I loved to fuck with people :pirate: . We were partners in crime for many years, learning the ins and outs of systems since the age of 12. Being back in the Windows NT daze, it was rather easy to manipulate the systems. On one of our more adventurous outings, BlueBoy and I wreaked a small amount of havoc on the local CompUSA store. We went through all of the display models and changed a few small things. We would change the splash screen, the boot prompt, the BIOS, and just about anything else we had access to. Needless to say, we were permanently banned from CompUSA... not really much of a hack, but it's where I started. Mostly I think the employees were pissed because two twelve year olds were more intelligent than the whole staff. Lamers :glare:

0

Share this post


Link to post
Share on other sites
I would say that my first 'hack' was about 2 or 3 years ago learning how to exploit the search computers at the library. They were connected to the library's web page to work as a book search and the address bar was not being shown and right click disabled. So after much toying with they system i discovered that you could use the right click key to right click on an image and choose email this picture. It would open Outlook, from there i choose help > search the web. Yay for internet access! No one has figured this out yet to my knowledge...

Hehe, don't they have computers there that let you browse the web anyway? I mean they should...

But still clever way to get the web browser up.

Edited by ansichart
0

Share this post


Link to post
Share on other sites

When working at AOL all the computers were locked down with local Group Policies. I simply brought in my Windows 98 disc, went to start>help typed in something like cmd and there is this little icon with something like, "click here to run cmd", got a DOS command shell. Next, copy d:\whatever\poledit.exe c:\poledit.exe. Then finally c:\;> poledit.exe. Happily changed my themes and wallpapers, browsed the Internet etc.... Don't know if this was much of a hack though.

0

Share this post


Link to post
Share on other sites

Age 5. During playtime in kindergarten class I figured out how to play the melody on the teacher's piano that signaled all the kids that it was time to stop playing and to sit in our assigned spots on the "magic carpet".

0

Share this post


Link to post
Share on other sites

In sixth grade (1999-2000), the computers in the keyboarding lab weren't protected well and the sys admin was a complete dumbass. I don't remember how, but my friend and I managed to edit the group policy restrictions so we could add network printers. We printed to every office with a printer in the school. Also, my friend used to go to "inappropriate" sites every class - he never even bothered to erase the history. The teacher (who was also admin) called him on it, and he just denied it. She couldn't find a way to prove it, even though the cookies were still IN HIS ACCOUNT. I think it's hilarious when 12 year olds know more than people who are paid to do this shit.

My first "real" hack, though, was a couple years ago. My friend and I used Cain to ARP and establish a false certificate for myspace. We consequently got my sister's password and then used wireshark to see what her internet traffic looked like. Because she's an average girl, we figured that her myspace password would be her windows password. Remote desktop was enabled and we kicked her off.

0

Share this post


Link to post
Share on other sites

Age 13: Figured out how to print gay pr0n on a shared printer. It came up in the elementary school's principal's office. Thanks to the fact that the username is the same as the password for my school for class accounts, it looked like some ninth-grade classroom.

0

Share this post


Link to post
Share on other sites
I would say that my first 'hack' was about 2 or 3 years ago learning how to exploit the search computers at the library. They were connected to the library's web page to work as a book search and the address bar was not being shown and right click disabled. So after much toying with they system i discovered that you could use the right click key to right click on an image and choose email this picture. It would open Outlook, from there i choose help > search the web. Yay for internet access! No one has figured this out yet to my knowledge...

Hehe, don't they have computers there that let you browse the web anyway? I mean they should...

But still clever way to get the web browser up.

my library has doesnt have command prompt disabled or telnet.

And you have to be a valid cardholder to access the internet. so if helps if you know how to get past the system. i personally got my account locked.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0