---------------------------------------------------------------------------- ============================================================================ _____________ _________ // \ \ / \ ||\ \ _____/ =/ .---, \ \\\ \/---' =/ / ```=\ / \\ \ =/ / =/ / \\ \ .---, .---, =/ / =/ / \\ \ +/ / +/ / =/ / =/ / \\ \ +/ / +/ / =/ / =/ / _______/\ /| +/ / +/ / =/ / =/ / ./ \_// +/ \_+/ / =/ `--/ / \\___________/ +`\ / =/________/ `---------' `+\-\-\-\' `='='='=' ---------------------------------,, ||| Southern Underground Digest || |\`------------------------------,;; `-------------------------------' -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD Su D SuD SuD SuD SuD S+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+D SuD SuD SuD SuD SuD S uD SuD SuD SuD Su |+ -2 Main Complete Subjects- +|uD SuD SuD SuD SuD SuD SuD SuD SuD SuD S +| (South African H/P FaQ) |+SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD |+ -Sektion A: Hacking +| SuD SuD SuD SuD SuD Su D SuD SuD SuD SuD +| -Sektion B: Phreaking |+D SuD SuD SuD SuD SuD S uD SuD SuD SuD Su |+ +|uD SuD SuD SuD SuD SuD SuD SuD SuD SuD S +|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD uD SuD SuD SuD SuD SuD Su D SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD S uD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD SuD +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= |==INR0DUKTI0N BY THAH EDIT0R >>>>>>>\>\>\\>\\>\\\>\\\>\\\\>\\\\>\\\\\ =-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- h0h0h0 this is Z0rpHix I saw there are a very weak UG scene in South Africa, and saw all the lame attempts to improve the situation without success. Well, there are millions of misconceptions and myths hanging around, actually a hell lot of bullshit. It was funny to hear things like that first, but too much of it became a pathetic sight. bah! So with this gnuzletter/zine I want to clear out all those rubbish. I will post full articles on every issue YOU want me to write articles on. Because I never wanted to have a part in the SA scene I spent most of my time on international systems, and made overseas friends, that will be glad to help. I need your feedback... Z0rpHix -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= HACKING HACKING HACKING HACKING HACKING HACKING HACKING HACKING HACK HACKING HACKING HACKING HACKING HACKING HACKING HACKING HACKING HA -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= X.25: there are a lot of NUI's hanging around, abused all the time, this kind of computer fraud is about the only type that are fully investigated by a special division of the SAP, so being carefull is cool, unlike the other forms of hacking. Saponet Easy Access isn't the only way to access the X.25 network you get service providers like Sprint in the USA that will gladly install a direct x.25 line to your computer, with speeds up to 2M/s. But it costs a lot of money. You also get Unix systems connected to the internet, and those at university you can log into that got x.25 ports, but you usually need to have an account with a high enough access level to use the PAD command, or to connect to a host. Banks usually use x.25 because it's safer than to use an internet link, the caller adress is always passed over to the called host, and the hosts the banks are running can then be selective about the sites that may call it, and things like packet stealing are not possible, like with the internet. \=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\=\ Internet: The internet is the solution for all your needs: it gives you access to song lyrics and libraries and dictionaries and medical studies (YAWN, DuLL) Or....it gives you access to k-rad eleet computers, like microsoft's, maxtor's the US military computers, the movie company's comp, just depending on your hacking skills. It gives you IRC (Internet Relay Chat) that is VeRy eleet. It got mail and UseNet that is so fast that it lets Fidonet look like a snail that stepped into glue. It got all the latest HACKING and PHREAKING files, it got all your 0-day eleet WaReZ, like Doom II, even before it was officially released. It got lots more than I can think of, 20 million users can't be wrong, 1,5 million hosts can't be little, can it? You get BBS's that carry internet mail and UseNet, but usally as slow as other mailnetworks, if you want live access you can either get it it through a BBS like Digitec online or Netline Flagship BBS, or you can get access through dialups at your local university (Do some social engineering to get an account) There are commercial internet providers like Compustat and Internet Solutions, wich also aoffer dialup access, aswell as cool stuf like a direct SLIP internet link through a leased line to your house, that will certainly let a BBS r0q ;) The internet are growing in South Africa, like mad, MAKE SURE YOU DON'T MISS OUT!! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-= Well, that's just a bit, SEND YOUR REQUESTS TO ME ABOUT HACKING THESE THINGS! I'll always be there to answer. Although I'm a phreak, I couldn't think about all sorts of hacking to describe....but here are some facts: | There are no laws for cracking games and having the cracks for them, | the only illegal things there are the OWNING of the cracked WaReZ and | the buying and selling thereof. The only organisation that cares a | bit about pirating is the BSA, that only got about a handfull of | cases that they won, they couldn't even take on others, because getting | a search warrant is hard, because THEY HAVE TO HAVE EVIDENCE BEFORE | THEY MAY BE GRANTED A SEARCHWARRANT, so don't go advertise the selling | of WaReZ in the newspaper, then they got the evidence. | But at all other times, copy, smash, crash, pirate etc. as much as you | like, no one will come to get you, because no one cares. +|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+ |+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+| +| |+ K-rad eleet k-spiffy r0qn killin c00l w00tn d00dleb0yish kiff bah!+| +| |+|+| +|+| PHREAK PHREAK PHREAK PHREAK |+| PHREAKING PHREAKING PHREAKING +| __.,,.. |_ .####H#HIL+- :##HIL+LH##IL+- // // :###HL;;:##HIL- // // :##HHLL+H##HI+-// // :####HXL#HI+- // // :###HIL- // //// //// //// //// // // /// :###HL- //// // // // // // // /// // /// :###HL+ /// // // ////// // /// ///// :###HL- // // // // / // /// // // `''''' // // // ///// /// // // // !@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@#!@# ::+%:%+:%+:%+:%+:%+:+%:+%:+%:%+:%+:%+:%+::%+:%%+:%+:%+:%+:% +_+ All known boxes: _+_+_+_+_+_+_+_+_+_+ Acrylic Steal Three-Way-Calling Call Waiting and programmable Call Forwarding on old 4-wire phone systems, it will not work in South Africa because we have no 4-wire phone systems. Aqua Drain the voltage of the FBI lock-in-trace/trap-trace, or that is what they say, but this thing is bullshit. Beige Lineman's hand set Black Allows the calling party to not be billed for the call placed if the receiver of the call is on an electro mechanical 7 exchange. Blast Phone microphone amplifier Blotto Supposedly shorts every fone out in the immediate area, will also only work on pulse exchanges, on an electronic exchange you will just blow a fuse or melt one wire. Blue Emulate a true operator by siezing a trunk with a 2600hz tone (Partially true) Brown Create a party line from 2 phone lines Bud Tap into your neighbors phone line Chartreuse Use the electricity from your phone line Cheese Connect two phones to create a divertor Chrome Manipulate Traffic Signals by Remote Control Clear A telephone pickup coil and a small amp use to make free calls on Fortress Phones, we just don't have Frortress Phones in South Africa. Color Line activated telephone recorder Copper Cause crosstalk interference on an extender Crimson Hold button Dark Re-route outgoing or incoming calls to another phone Dayglo Connect to your neighbors phone line Divertor Re-route outgoing or incoming calls to another phone DLOC Create a party line from 2 phone lines Gold Trace calls tell if the call is being traced and can change a trace, but only on US systems with old CID. Green Emulate the Coin Collect on US payphones. Coin Return and Ringback tones Infinity Remotely activated phone tap Jack Touch-Tone key pad Light In-use light Lunch AM transmitter Magenta Connect a remote phone line to another remote phone line Mauve Phone tap without cutting into a line Neon External microphone Noise Create line noise Olive External ringer Party Create a party line from 2 phone lines Pearl Tone generator Pink Create a party line from 2 phone lines Purple Telephone hold button Rainbow Kill a trace by putting 220v into the phone line (joke, try it and let Telkom kill you for blowing a fuse) Razz Tap into your neighbors phone Red Make free phone calls from pay phones by generating quarter tones [on payphones that takes quarters and is in the USA, just won't work in South Africa] Rock Add music to your phone line Scarlet Cause a neighbors phone line to have poor reception Silver Create the DTMF tones for A B C and D Static Keep the voltage on a phone line high on pulse exchanges. Switch Add hold indicator lights conferencing etc.. Tan Line activated telephone recorder Tron Reverse the phase of power to your house causing your electric meter to run slower TV Cable "See" sound waves on your TV [Record it on video and play it back through your amp if you have time to waste] Urine Create a capacitative disturbance between the ring and tip wires in another's telephone headset [really funny joke, like those Doctor Hex tells all the time] Violet Keep a payphone from hanging up, NOT SOUTH AFRICAN PAYPHONES White Portable DTMF keypad Yellow Add an extension phone +++-+-+--+---+----+-----+------+-------+--------+--------> 80% or more of these boxes are either fake or jus rubbish or comes from the lamest of urban legends. Boxes that are worth something are: the Blue box, beige box, cheese box, lunch box and maybe the black box. A while ago some circuit was released for some box that allows you to make free phonecalls by using some resistors and crap. A lot of people swallowed that crap, but it actually works: that is if you are on a pulse exchange and make calls to numbers on the SAME EXCHANGE, usually if you phone number is: 443-1543, and it's on a very shitty pulse exchange you can make the free calls to 443-xxxx. So I hope none of you made all those eleet calls to your favourate WaReZ boardz in the USA, thinking you will not get billed ;) Blue boxing: People ask a lot: do blueboxes actually work in South Africa? the answer is: YeS!! but..... not the : dial 0800-XX-XXXX and send a 2600hz tone and all those other shit. IT WILL NOT WORK, if you send a 2600hz down and you hear a little beep-kerchunk, and the line goes dead you should contact me immediately, because you are SOOO lucky to be on whatever exchange that can do it, I think there are some exchanges that can still be seized by a 2600hz, but they are VERY rare. Okay, so you may ask, how do I box then, okay.....let me clear up a few things: a) You will not be able to dial a local phone number and seize the trunk, NEVER! b) Wanting to bluebox to make free calls within you town/city ARE S000 LAME. [Local calls are dirt cheap, but not free, if you want a local connection get a 2 way radio] c) If the call is free, YOU WILL KNOW IT'S FREE, and will never have to hope. get any lame file on blueboxing from your local underground board, the info are all there, BUT NO ONE WAS EVER SMART ENOUGH TO TO ANYTHING WITH IT!@#!@ Because you can't Box off National trunks, you have to box off International trunks, because somewhere in 1992 or so Telkom switched to CCiTT 7 signalling between exchanges, wich is Digital, so NO tones like with CCITT 5. I have it that a CCITT 7 system detects a disconnection by an open/closed circuit detection method, so the line have to be rather direct. A physical connection are not possible internationally and not all international links can handle CCITT 7, so they use the old CCITT 5 signalling to certain coutries. Don't rush off and haul out the old TLO, bbeep or bluedial, and phone your uncle in the USA and try to zap the line with a 2600Hz tone, you will waste time and money. The trunks are a dual tone of 2600/2400Hz, but trick, the local circuits detect a full diconnection if you seize the line and will cut you off, so after the 2600/2400Hz you send a 2400Hz to put the exchange on the other end in command mode. The problem is TIMING, you should use precise timing, so it's not 2400/2600 for about a second and 2400hz for 2 seconds, it should be very short, so that the fancy equipment of Telkom (German equipment) wont pick it up and cut you off, the favourate timings are: 2600/2400 for 140ms and then directly after that the 2400hz for 90ms. BUT..... If you phone the whitehouse....eg: 091-202-456-1414 and as the receptionist at the Whitehouse pick up you blast the tones down. The exchange at the other end will think you have disconnected and will be ready to accept commands. Say you phone 212-445-4321 after you seized that trunk, you will be connected and all happy, the trick is, the EXCHANGE in the USA think you diconnected, and not the one in South Africa, and will keep on billing the hell out of you until you physically hang up. The thing around blue boxing is to seize a cheaper call and route it to a more expensive location. So what now... but Telkom followed the trend of providing cool things like Home Direct numbers, where you can reach overseas operators by dialling toll free numbers eg: 0800990061 : Australia Direct 0800990123 : USA Direct through AT&T 0800990049 : Germany direct AND IT'S TOLL-FREE!!!!! Let me clear up another myth: TOLL-FREE PHONE NUMBERS ARE FREE TO DIAL, FROM THE TIME YOU PICK UP THE PHONE AND HANG UP AFTER THE CALL, IT IS FREE. Years ago when Telkom introduced the experimental Toll-free system, on the old 0-100 numbers (remember them?) it was not totally free because it was experimental and couldn't be made free because of some technical reasons. with the introduction of the 080- system it was totally free, with the old 0100 system they charged you 10-15c everytime you made a call. Tip: don't think of trying to get a blue box circuit, if you really want one contact me and I'll design you one, but you will need to figure out how to let it be controlled by digital timers, because..if you are cool enough to send tones out at exact timings without using timers....MoRe PoWeR To eWe!@!#!@# Rather use Soft-blueboqzs like: TLO: The Little Operator BlueBeep or Bluedial. And don't ever use the excuse "I don't have a soundcard :<" you can box without the soundcard, oh...and never think TLO will do it for you through the modem, it will not work!#@!#! If you are as poor as I am, build a DAC as described in hardware.doc that you should get with Modplay ver 2 or Modobj etc. by Mark J. Cox, if you can't get that I'll advize you to go buy yourself a vibrator and go fuck yourself (The same counts if you say you can't afford it, I built mine for R4) <-[actually I built about 8 because it's fun to make ;)] At the moment only bluedial support the DAC, getting the software is your problem, not mine. +-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+-=+--==++---===+++----====++++ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Payphones --------- In South Africa we don't have have specially assigned lines for payphones that is why it makes that Bleep-Blop all the time, so Telkom operators will know if you phone from the payphone. We use exactly the same type of payphones Germany use, so I got some tips from German d00dz like Onkel D. If you take a card phone and pull the hook down very slowly, it will disconnect and be ready, and if you pick it up, there will be no bleep bleep sounds, so you can practice a bit and hold it down while someone makes a collect call to that number, and when you pick up, with no beeps, the call will be charged to Telkom, because they own the line. There are no operators that have lists of payphone numbers, the bleep-blop sound is the only way they'll know it's a payphone. So run confrences off that green phones!@@#! If you hold down that hook, and pick it up, you can dial any number you want, and it will put you through, but when the person picks up at the other side the phone will try to bill, and see there's no card and will disconnect you, but you can still let a lot of phones ring for free ;) The payphone knows when the call is charged not by the old way on wich the chargebox is supposed to work where the current reverses. I tried to put a rectifier on the line to keep the current in onle one direction, but it wont work. What actually happens is, as soon as the person on the other side pick up, a 16kHz tone is sent down by the exchange, I think it should be the local exchange, because it can't send higher tones as about 3500Hz over normal long distance lines. What will work is to filter out the high pitch tone, by shorting the 2 wires of the phone line of the payphone (if you can work a bit on the wires unseen) with a cap, I'm not sure what value, but try various, because it will filter out high pitch sounds so the phone will think the phone on the other side never answered. We have a rather sophisticated coin recognition device on the payphone here on South Africa, so fake coins are a bit tricky. The phonecard can NOT be refilled, and putting it in the microwave oven will only work once in about 431234125473568 tries. I lost the Pinout diagrams if various phonecard chips, so my developing of an 'eleet' card has stopped, but I'll get those pinouts again! +|+_+|_+_+|+|_+|_+|_+|_+|_|+_|+_+|_+_+|_+|_+|_+|_+|__+|_++|_+\=-=+_|+_+| I will describe cellular phreaking some other time, depending on the demand. Other things I'll describe later is: VMB hacking PBX hacking Advanced Lineman knowledge for beigeboxing Loops Bridges Confrencing Just tell me wich of those you would like to know about. Contact me on the internet at: ktucker@docnet.infolink.co.za or Beltel mailnumber : 837050 or phone number (Yes my phone number if it's not busy) 05861-30012 (Prank calls are welcome as long as they are funny, and don't be ruse to my father, he'll kill you) Well, if you want to contact me on BBS'es, forget it, South African boards are way too expensive for me to phone, because I live in such a bad spot :( $#^$%&$%^*$%^@#$^%@$%&$%#^*@!~@#%^#$^#@3$%&$%^*%^&*(*@$%&$^!%$^#$%&%^#%&#$^ #$^@#$^@%$ ######*#% ##^*# ##&*# ####$%^&*f%*#^!#$$%&(&*)*^&%#$!@#%!#@#$$%^ $#$#$^$%%^ # *(^& ###*$ ##%@$ ## ##%^!#@%@#$^@#$!@$%#$%&^&*&^^&*^$%#&%^ $#$%^#$^#$ ####$^@#$ ## ## ##^@@ ##$ ##^#$%^&%^$*%^&*$%^*$%^$%#^$@#^#$@^@$# $@#%#$$%^& # $*^&*^ ## ####$%^ ##% ##$%^$%^#$@#!%#$^$%#&$%^&#$%^$%#%^#$@% $%^#$%!@## #####$^#$ ##% ##%^& #####$%^&#$%&@#$%^@#$%^$%^&*&*(^^&*)^&*(%^ $!@#!%%$@# #!@#$ @#@# !@#@ $#@#$%#$$^$%^$#$%$@##$$#%#$#$%#$%#$%#$ $#%$$@##$%^@#$#$%^$%#$%#$%%^&^&**%^&^&*^%&*%^&*^&$%&^#^$#%^$%^$%^$#^^#$^#$$