|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Socket De Troie
#2668498 - 05/12/04 12:44 PM (19 years, 10 months ago) |
|
|
Damn frenchmen writing french trojans ! I just found this one my laptop, so i'm going to connect to my network with a different computer and try to exploit my own laptop...
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668611 - 05/12/04 01:17 PM (19 years, 10 months ago) |
|
|
heh but yeah dude I don't get that. why would a coder with such knowledge be lame and write such things ... troyan is ok in this category but spyware and dialers, wtf dude, thats retarded in my books.
-------------------- Cuba Libre
Edited by T0aD (05/12/04 01:17 PM)
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668691 - 05/12/04 01:33 PM (19 years, 10 months ago) |
|
|
im not sure i fully understand?
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668711 - 05/12/04 01:37 PM (19 years, 10 months ago) |
|
|
just rambling
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668716 - 05/12/04 01:38 PM (19 years, 10 months ago) |
|
|
ahh, i gotcha....
So do you know about remoe exploits at all toad?
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668731 - 05/12/04 01:40 PM (19 years, 10 months ago) |
|
|
well I have some general knowledge, do you want to know something?
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668756 - 05/12/04 01:45 PM (19 years, 10 months ago) |
|
|
yes,
I'm just curious as to something, I suppose I already know the answer, , but i will ask anyway.
My laptop is infected with this trojan, so I should be able to connect to it with my desktop right? i mean knowing what trojan is there and on what port, but how do i do it? does it matter on the trojan?
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668797 - 05/12/04 01:50 PM (19 years, 10 months ago) |
|
|
usually trojans come with a file that infects (server) and one that manipulates the server (client). So you have been infected with the server, you should now find the client and use it to connect... Depends on the trojan, if its famous, you'll probably find one, but it may be private or something so you won't be able to connect to it in that way. Also, it may ask for a pass you probably don't know. You can also check on which port the trojan runs on the infected machine and try to telnet to it or something - may give some result Peace
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668827 - 05/12/04 01:54 PM (19 years, 10 months ago) |
|
|
yes i just got a login prompt... that's all i dont know how to run password crackers from a login prompt
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668850 - 05/12/04 01:57 PM (19 years, 10 months ago) |
|
|
what login prompt did you get, using the client of the trojan?
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668879 - 05/12/04 02:03 PM (19 years, 10 months ago) |
|
|
telnet "username:" i believe it was
Edited by funkymonk (05/12/04 02:03 PM)
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668939 - 05/12/04 02:16 PM (19 years, 10 months ago) |
|
|
aha, but you connected to the port of the server and not the default one, 23, right? cause I think you just did like >> telnet 127.0.0.1*IP of infected machine* and not >> telnet *IP* 1234*the port on which the trojan server is running*
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668966 - 05/12/04 02:20 PM (19 years, 10 months ago) |
|
|
syntax....ip.ip.ip.ip:port? ip.ip.ip.ip port?
neither seem to work
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: funkymonk]
#2668967 - 05/12/04 02:21 PM (19 years, 10 months ago) |
|
|
it's xxx.xxx.xxx.xxx:port but i can't connect to it
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2668993 - 05/12/04 02:28 PM (19 years, 10 months ago) |
|
|
the syntax for telnet is telnet IP port for example: telnet 10.1.1.1 22 I would recommend you to look in google for more info about that particular trojan, I tried to find you something, but lots of the sites with explanations are in french and I dunno if you're in the french part of canada (I presume you live there ), so just search there peace
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2668997 - 05/12/04 02:30 PM (19 years, 10 months ago) |
|
|
i have, but to no avail, i'll keep at it though...
im also trying to exploit mydoom on the same computer now..practise is nice, but i cant really do anything which sucks
|
T0aD
Stranger
Registered: 06/18/02
Posts: 4,475
Last seen: 15 years, 17 days
|
Re: Socket De Trois [Re: funkymonk]
#2669022 - 05/12/04 02:35 PM (19 years, 10 months ago) |
|
|
dude why would you want to exploit virii? They are there to exploit your machine Just get rid of them, and if you want to exploit something, read: www.securityfocus.com www.securiteam.com www.astalavista.com www.neworder.box.sk install the exploitable services (usually old versions of progs) on your machine and practice. also learning to program (C/C++) will let you, hopefully, code your own exploits learning linux would be cool too do all that and you be a hacker
danga zone riddim\02-bling_dawg-no_odda_girl_like_you-rks.mp3
-------------------- Cuba Libre
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: T0aD]
#2669031 - 05/12/04 02:38 PM (19 years, 10 months ago) |
|
|
well, i just figured since they were alread installed onto one of my machines that i'd fool around withit..it's nothing i can't fix so i'm not worried about that.
i post at neworder already, and check those sites all the time, thanks though.
|
MAIA
World-BridgerKartikeya (DftS)
Registered: 04/27/01
Posts: 7,396
Loc: Erra - 20 Tauri - M45 Sta...
Last seen: 2 months, 16 days
|
Re: Socket De Trois [Re: funkymonk]
#2672701 - 05/13/04 08:23 AM (19 years, 10 months ago) |
|
|
Why don't you start with good&old netbus or backorifice ? I believe they are available on the net.
MAIA
-------------------- Spiritual being, living a human experience ... The Shroomery Mandala Use, do not abuse; neither abstinence nor excess ever renders man happy. Voltaire
|
funkymonk
Get's down, withthe get-down.
Registered: 11/29/02
Posts: 8,160
Loc: saskatchewan
|
Re: Socket De Trois [Re: MAIA]
#2675140 - 05/13/04 06:31 PM (19 years, 10 months ago) |
|
|
just cause this was already on there.
|
|