7============================================================================ \\ \ __________ \\ \ _________ _______ //// \ \\ \ ||| \ /////\\\ //// ___ | \\ \ ||| ___ \ /////\\\\ \\\\ /\\\\/ \\ \ ||| |\\\ \ /////|\\\\ \\\\ \ \\ \ ||| | \\\ | ///// |\\\\ \\\\ \ __ \\ _\ ||| | ||| | ///// |\\\\ \\\\ \ ////\ ////\ ||| | ||| | /////___|\\\\_____ ___ \\\\ | ||| |:|| | ||| | ||| | \\\\\\\\\\\\\\\\\\ //// \/_// / ||| |:|| |\||| | ||| | \\\\\\\\\\\\\\\\\ \\\\ / \\\ \// / ||| |/// / |\\\\ \\\\______/ \\\____/\\ |||_______/ |\\\\ =-=-=-=- =-=-=- \\ =-=-=-=-= |\\\\ \\ \ \\_/ ` K-Rad Southern Underground Digest -Issue IV- oooo$$$$$$$$$$$$oooo oo$$$$$$$$$$$$$$$$$$$$$$$$o oo$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$o o$ $$ o$ o $ oo o$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$o $$ $$ $$o$ oo $ $ "$ o$$$$$$$$$ $$$$$$$$$$$$$ $$$$$$$$$o $$$o$$o$ "$$$$$$o$ o$$$$$$$$$ $$$$$$$$$$$ $$$$$$$$$$o $$$$$$$$ $$$$$$$ $$$$$$$$$$$ $$$$$$$$$$$ $$$$$$$$$$$$$$$$$$$$$$$ $$$$$$$$$$$$$$$$$$$$$$$ $$$$$$$$$$$$$ $$$$$$$$$$$$$$ """$$$ "$$$""""$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ "$$$ $$$ o$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ "$$$o o$$" $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$$o $$$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$" "$$$$$$ooooo$$$$o o$$$oooo$$$$$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ o$$$$$$$$$$$$$$$$$ $$$$$$$$"$$$$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$$$"""""""" """" $$$$ "$$$$$$$$$$$$$$$$$$$$$$$$$$$$" o$$$ "$$$o """$$$$$$$$$$$$$$$$$$"$$" $$$ $$$o "$$""$$$$$$"""" o$$$ $$$$o oo o$$$" "$$$$o o$$$$$$o"$$$$o o$$$$ "$$$$$oo ""$$$$o$$$$$o o$$$$"" ""$$$$$oooo "$$$o$$$$$$$$$""" ""$$$$$$$oo $$$$$$$$$$ """"$$$$$$$$$$$ $$$$$$$$$$$$ $$$$$$$$$$" "$$$"""" (######; (X; (X; (##; (##; (X; (##; (##; (XxXx. (X; .xXx. (##; .xXx. .xXx. (X (X; .xXx. (X; (##; (X; `X (X; `Xxx, (##; `Xxx, `Xxx, (XxxX; Xxxx' ``` ``` `` ``` .xxX' ``` .xxX' .xxX' ```` `Xxx. (X; ``` ``` ``` ``` .oOo. .oOo, .oOo, .oOo, .oOo, .oOo, .oOo, .oOo, . ' `OoO' `OoO' `OoO' `OoO' `OoO' `OoO' `OoO' `OoO' ` ` ` ` ` 1...Blue Boxing Quest 2...Random Hacking, step 1 .; ;;; ..,:|' Introduction: ::: `;:'' `:' h0h0h0, Ya...Z0rpHix here, as always, with this new eleet edition of SuD. It seems like I got some response to the zine, all was good, people telling me how nice it is and stuff, it really gives one more power to begin on the next issue. Feedback is needed, just pop me a message through SOME network, just saying "hi" or anything, or flame me 'till I roast, as long as I know there are people who'll still like me to dish out this cool info. If you got anything cool to share with me, any info and stuff, my 1npH0 is in SuD#1, you can even phone me if you want to. I got lots of stuff to share with you, but it's all in little bits, so just give me a hint on what you would like to know more about. hmmm, maybe I should make a little list of things I can write about... Blue boxing, beige boxing, making visual effects, explosives, drug making, weapon making, novell hacking, encryption, virii, cracking, x.25 hosts, internet sites, internet dialouts, carding scamming, confrencing and whatever else I could find info about ;) I'm thinking of providing you all with some internet access, maybe through a host on the x.25 network, but I'm still thinking ;) The internet is a VERY fast growing network, no that it has been commercialised and services are expanding like hell, and on top of all...hacking possibilities are increasing rapidly, 2 million computers to hack...when will we ever stop? Maybe you could get the boxing going and get a free SLIP connection to free.org in the USA ;) [That's what a friend on mine in Germany does] One thing is just for certain, I can't do all this by myself, so I need a little of your help, ideas at least. Hav phun |+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+|+ ______ / ___ |. dOP. / /|___; || ATO'| / '/...; /| ATO'/ / _____ __/ / ATO'/ uUu uUu eEEEee / /|____\ \_|/ ATO'/ UUU'| UUU'| eEE'|`EEe / /_/_____; /| ATO'/ UUU'/ UUU'/ eEEEeeEEE | \-------------' / ATOOOOOOOOo UUUuuUU'|/ `EEEe| ,.|/ |_____________|/ |.........| `------' |EEEEE' `----' uUuUuuUUUuuuUUUUuuuuUUUUUuuuu, `UUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUu -= Q U E S T ```````````````````````````````` ()()()()()()()>=-------------- --------- --- -- - - - - - - pOpOpOpOpOpOpOpOpOpOpOpOpOpOpOpOp SMEWCH XXX Ya, so we gawt to take aktion against tis evil phorce dat has bin maykeeng us lewze our gerlees and mounee, sew sad. The evil ph0rce is gn0wn az Telkom, thay haz bin taykin our munee for a lwong tyme gnow wif d0ze ouwtR4G3jez BILLS, and d0ze chargez ph0r EEnternationahl cawlz. It's tyme tew stryke baq!@# I think they are paying Mandela's salary with the international phone charges, and that is where we WANT and SHOULD ph0ne. ... Don't fear ;::::; ;::::; :; .----------------, ;:::::' :; |Death to Telkom | ;:::::; ;.`----, .---------' ,:::::' BluE ; / / OOO\ ::::::; ; / / OOOOO\ ;:::::; BoX ; |/ OOOOOOOO ,;::::::; ;' / OOOOOOO ;:::::::::`. ,,,;. / / DOOOOOO .';:::::::::::::::::;, / / DOOOO ,::::::;::::::;;;;::::;, / / DOOO ;`::::::`'::::::;;;::::: ,#/ / DOOO :`:::::::`;::::::;;::: ;::# / DOOO ::`:::::::`;:::::::: ;::::# / DOO `:`:::::::`;:::::: ;::::::#/ DOO :::`:::::::`;; ;:::::::::## OO ::::`:::::::`;::::::::;:::# OO `:::::`::::::::::::;'`:;::# O `:::::`::::::::;' / / `:# ::::::`:::::;' / / `# Well, here is the list of coutry directs.... AT&T USA : 0800990123 Sprint USA : 0800990001 MCI USA : 0800990011 Australia : 0800990061 Ireland : 0800990353 Japan : 0800990081 Netherlands: 0800990031 Portugal : 0800990351 BT UK : 0800990044 Mercury UK : 0800990544 Canada : 0800990014 Taiwan : 0800990088 Germany : 0800990049 Norway : 0800990047 Singapore : 0800990065 Hong Kong : 0800990052 New Zealand: 0800990064 Finland : 0800990358 Denmark : 0800990045 Belgium : 0800990032 France : 0800990033 Italy : 0800990039 Malaysia : 0800990060 Switzerland: 0800990041 You remember how ta b0x....you dial the Home direct number, as soon as they pick up at the other side, you blast down the right tones. For Mercury it's easy, just blast down a 2400Hz tone, and you are on your way...now use the blueboxing proggie and send down KP1-0-707-213-1231-ST, and u'll hear the ringing and shit ;) okay, but that's for the UK only, for the Netherlands it's usually 2400Hz/2600Hz (dual tone) for 150ms, a 10ms-20ms pause, and then a 2400Hz for about 150ms, or else the thing will cut you off, and bingo....free Netherlandz. Hong Kong is 2400/2600 for 140ms and then 2400Hz for 90ms, but it works only about 1 in 4 tries, and then to get it to dial properly is another chance of playing around with your luck, PheeD me baq wif yer inpho if you find out anything k-rad, from hong kong you can dial say....a number in Taiwan with KP2-88-0-143-1233-ST aswell as Macau and some other little coutries. Seize Malasia, because you can KP2-49-0-etc. to Germany from there, but someone got to fugure out the timings for malaysia. From Taiwan it's KP2-1-2-714-616-1231-ST to that number in the USA country code---^ ^-notice the 2, in other coutries it's 0, but from Taiwan it's 2 (w3rd) Well, great bonus for those who can figure out Sprint, so we'll get our phree phonecalls to the USA, the Germans send down a 2400Hz for 200ms, then a 33ms pause and then another 2400Hz for 350ms, and just before they dial the number they send another 2400Hz for 300ms, well.....Germany got 99% the same telephone system as South Africa, so it's similar, just you ALL help to figure those timings out, because it's eleet. Don't waste your time trying to do anything with New Zealand after you found it's seizable with a normal 2400Hz, because you can't dial, because it's CCiTT#7, and that is purely digital, so no CCiTT#5 tonez :( Same goes for Denmark, Australia, and some other coutries. From Canada you can dial any number in the USA, without any extra shit. try 0700-456-1000, if you get through CONTACT ME AS FAST AS YOU POSSIBLY CAN!@#!@, because then we could run the most eleet telephone confrences, the whole day long ;) Well, keep on trying, we all should, then we can get the eleet ph0ne cawlz!@##@! =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- ###\ ###\ $$$$\ ###\|###\| | o $$\\ ########\|.-,.-- |/ . |.-, .-, $$\ ###\|###\|`-|`-- |\ | | | `-| $$\ ###\|###\| | $$$$\ \__\\__\| `-' \\\\ This will be a series of atricles on hacking business networks, and I'll handle each type one by one, getting people that knows more about certain networks and/or software/hardware of a kind I am not so familiar with. 1. Finding the network ~~~~~~~~~~~~~~~~~~~~~~ I have mentioned that scanning is the way to go, so scan now, before they change the laws like they did in the USA. In the USA it's illegal to dial a number without the intention to communicate. (lame) So living in the 3rd world got some major advantages ;) You can start scanning toll-free numbers, a business would go for a toll-free line to encourage their employees to do some work from home after hours, remotely, and without paying the phone cost ;) The majority of companies use the toll-free system to encourage the public to phone them, a nice way of attracting customers ;) Companies that can handle this toll-free bill usually got a BiG network with BiG security, so going non-tollfree could be a better idea ;) Local calls are currently 24c the moment the modem/person on the other side pick the ringing phone up (the moment you hear the ringing stop on your side), and after that they charge you 24c every 300 seconds during office hours, and 24c every 5 minutes (I think) from 17:00 to 20:00. But the time I'll make the eleet calls will be after 20:00, when it's 24c every 10 minutes, and that is actually dirt cheap. So it's R1,44 per hour, R34,56 for 24 hours, and R1036,80 per month. So leaving you computer hooked to that certain network 24 hours a day will not be a good idea ;) If you modem around a lot, it will not make a huge difference to your phone bill. So you know that you have to scan... Telkom provides a telephone exchange for each 10000 lines, if you are in a certain part in JHB where there are a shortage of phone lines and they put up a new exchange, all the new numbers will normally be 011-xxx-yyyy, where xxx will be the same for all the phone numbers, and the yyyy will differ (or else everyone will have the same phone number when the yyyy are also the same, get it?) Go to your telephone directory and look up the phone number of a business you know that are situated in a certain business area, get the numbers from a few companies in the same area, until you figured out what the xxx value are for that area. Say you got 011-444-2345...then 444 will be the prefix you'll scan. Then dial up the numbers from 011-444-0000 to 011-444-9999, well none of us will scan all 10000 of them, if you don't get a phone ringing in about 20 numbers that's in sequence, skip 10 and go on, dial the number and wait for the phone to ring 4 times before you hang up, if the modem won't pick up, or a Auto Answer PaBX won't pick up in 4 rings, some useless person will pick up and cost you 24c, so 4 rings are c00l. First dial up a fax number and learn how to hear the difference between a modem and a fax machine, a fax machine sounds like a modem that had too many ACiD.(h0h0) When you get a connect, you should figure out what the hell you found, dial it up with your modem and see, sometimes it connects and do nothing sometimes it tries to swear at you in greek/cantonese/cyberese and all sorts of funny languages, so set you modem to 7-e-1 then, usually use 8-n-1 the first time. Some asks for a password like this: ----------- Press ...... password: ----------- Others ask "login name" (then it could be Novell and you could try Supervisor or Guest or some other default account that CouLD have no password , Novell is a kiddie network with Kaffirpr00f sekurity. (so go have a party if you get in) Sometimes the supervisor have a dialin number to the system, that usually got no password to access, that is how ESCOM's LAN got hacked in Witbank (the police are still investigating, too bad Telkom are too lame to be able to trace or figure out at what times from where what numbers are dialled) Some ask just plain "login:" and then "password:" then it could be Unix, and use that unix default list I've put in a previous issue of SuD. When the default account has not been secured yet it will just go in without asking you a password, or the password will be the same as the account id/name. Try "guest" with the password "guest", if you get in type: cat /etc/passwd or type /etc/passwd Then it will give you a list of accounts, At the left are the account names... like here: root:x:0:1:Superuser:/: daemon:x:1:1:System daemons:/etc: bin : x : 2 : 2 : Owner of system commands : /bin : / \ \ account name|Shadowed out password startup directory it could also be like this: root:hardhead:0:1:Superuser:/: ^^-that is the password@!# or this: daemon:f3W4ADasYx:1:1:System daemons:/etc: ^-encrypted password (VeRy G00D encryption) or.... daemon::1:1:System daemons:/etc: ^^--l00k mah, n0 password!@# use those accounts, the coolest would be sysadm, sys, adm and some others from where you can create your own account with full, cool access. - Sometimes when it connects and seems like it's hanging and doing nothing, then type "AT" and press if it responds with an "OK", you are in luck!@#!@#! that is a dial out modem, you should know how to dial (I hope) sometimes you should type "atdt0,,,,444-1245" that is when the modem is connected to a PABX where you have to press "0" to get the external line. There are lots of different kinds of systems you can find, fuq gn0wz what they are, it's for you to figure out and explore it, THAT IS HACKING, collecting 1985 Mark Tabas philes on blueboxing in the USA doesn't make you a hacker, or using a NUI you got from someone else to go where you want to go doesn't make you a hacker either, but writing programs to run dictionary files on systems and other cool thingies like a saponet DTE scanner, or whatever creative ways of pushing systems further and getting to explore the system deeper, and learning along the way, that is true hacking....learning more about anything electronic than you ought to know. --------------------------------------------------------------------------- %%%%%%%%%%%%%%%%%% Ho-KaY, I need some cool info on Novell hacking, because that kiddie system is popular ;) (well scan numbers and see which are the most common system to find...Novell or Unix, I'll bet you it will be Unix, and why on earth would novell bring out something like UnixWare, they knew that if they don't go unix, they will miss out) %%%%%%%%%%%%%%%%%% Well I'm rather subjective in SuD, because I'm the damn editor, and only the EDiT0R can be subjective, if you submit...try to be as objective as you can ;)