Haxoring .

printerhole [tutor]
Software Required
SFind.exe (scanner) - http://scanspace.myetang.com/else/sfind.rar
iishack.zip (exploit) - http://www.peckerland.com/software/iishack.zip
SecureCRT (telnet client) (scrt408.exe) - https://secure.vandyke.com/vandyke-...
ODUCT=SecureCRT
Ultraedit (text editor) - http://www.ultraedit.com/
FlashFXP (FTP Client) - http://www.flashfxp.com/
ServU (FTP Server) - 3.0, regged, compressed, renamed...
Other stuff required
A good socks proxy server
A good scanstro
Step 1 - Scanning
This is pretty easy, find a fast usa / canadian range (exploit doesnt seem to wo
rk for eu versions of win2k ), then upload sfind.exe to ur scanstro use a raw co
mmand in FlashFXP (ctrl-R):
site exec sfind.exe -pri 10.100.0.1 10.127.255.254
When ur stro is done scanning u should have a 'sfind.txt', download this & open
it in ultraedit, look @ ur results
Step 2.1 - Hacking
For this u need iishack.zip make sure ur read the readme.txt then upload iis5hac
k.exe to ur stro.
Go back to ulraedit, delete the 1st line & the last line, then use the search/re
place function (ctrl-r) to turn ur results file into a batch file for iis5hack.e
xe
In the 'find what:' box type 'find .printer hole', in the 'replace with:' box ty
pe '80 2 666' - then click 'replace all'. Then, tick the 'regular expressions' b
ox & in the 'find what' box type '^p', type '^piis5hack ' in the replace with bo
x, then click replace all, then click cancel to close the replace box.
Press ctrl-end to go to the end of ur file & u will see a line with just 'iis5ha
ck ' on it, cut this & paste it on the 1st line of the file, where it is missing
.
You should now have a file (big as u like ) with
iis5hack 80 2 666
on each line, save as (F12) iistmp.bat
Upload iistmp.bat to ur stro, then use a raw command (ctrl-r in flashfxp):
site exec cmd /c iistmp.bat > iistmp.txt
Wait a while (have a cup of tea, smoke, etc ) - then go back to ur stro & downlo
ad iistmp.txt
Open iistmp.txt in ultraedit, then search (alt-F3) for 'good luck', make a list
in notepad, or in a sperate file in ultraedit of all the ips that have 'good luc
k' after them
Step 2.2 - Building the stro
You then need to try to connect to these ips with Secure crt, make sure the prot
ocol is set to telnet, the port is set to 45454, & 'use firewall to connect' is
ticked (set up a socks proxy before, in options->global options->firewall). Then
paste each ip into the 'hostname' box & click connect. You should be able to co
nnect to abt half ur results.
Now u use the same commands u would use to hack a sql stro, this is a bit easier
than using sqlexec, because u can paste multiple lines at once You also have sy
stem access, which is nice (better than administrator)
All done? check ur stro is working & post in hacked pubs
myself i don't think this should be in public, if sent to priv, send me with it.
....hehe
wanted you guys to know that i've found several with speeds over 8600kbs from ft
p.chello.nl
greetz jurk-off