Kn1ghtl0rd's Hacker Weblog

Hello Everyone.

Well today I am going to talk a little about hacking with Google.  Now I am going to warn you that no actually hacking techniques are neccessary to do these things, only the knowledge of directory structures within a web server or file server.  The basis of this technique is to search for specific things that will give you a back door into a web server so you can look around.  Some of the information will not be useful, but other information can be used to help in social engineering, or plotting network structure inside a specific business, or even give the passwords and login scripts for administrative areas of various web sites.  Now, I did not read a book to find out this stuff so if you see that it is somewhat similiar to somthing else you have read, I apologize.  I got the idea while browsing the security focus website and they had a section where you could read a few pages from a book about google hacking.  I figured that I could try and find out the info for myself so I went ahead and played around with different search strings and this is what I came up with.

First, it is neccessary to understand how a directory structure works inside a web server.  They are broken down into trees where there may be other directories or files inside, eg www/cgi-bin, etc.  It is also essential to know how a search engine crawls data on a web page.  Most crawlers use the first couple of words on the page when making search keywords if they are not specified via metatags, so if you have a heading on your page that reads "Page Heading" then most likely in a search engine it will say the same thing for your discription.  You may ask why this is important, well if you notice when looking at a web server directory, at the top of ever one is the words "Parent Directory".  This is the first hint on how to find open servers using google.  In the search bar type in parent directory and probably 8 out of 10 sites listed will be direcotry trees from with a web server!

Next thing is to look for specific file names or directory names if you wnat to narrow down your search, eg password.txt, /admin, /private, etc.  This will tell the search engine to look for those specific names when pulling up the sites so if you put "parent directory password.txt" in your search bar it will come up with all the sites within web servers that have a password.txt file. Now most of the time these files don't mean anything so this is mostly just an example, but if you use keywords like /admin, this can be very fruitful.  Also it is possible to search for specific sites you wish to target by usuing their URL in your search terms.

Another good thing you can do is to stake out specific servers that you have exploits for because the server type and version is usually listed at the very bottom of the page.  With this information you can look up the ip address to the site and run a port scan, use whatever exploits you wish and your in, theoretically.

When I performed these methods I sorted through about fifty pages of nonsense before I came up with anything good so patience is a vertue, but you will find somthing of interest if you are persistant.  I found secret encypted building plans to an office in Utah, I don't really know if they are that important, but it was pretty cool to download the docs and break the password on them and see blue prints for some building.  Now I will never do anything with these files but it does show you that you never know what you are going to find.

Well I hope that was mildly informative and that some of you can find other ways to get sensitive material just by searching for it.  By the way, all of the things I said above will work for any search engine like Yahoo!, Google, Excite, etc.  So have fun!

Talk to you all later!

Kn1ghtl0rd

kn1ghtl0rd@hotmail.com

Hey all,

Earlier I was on Yahoo! Chat and encountered a very nasty little bastard that called himself xxphrackxx, which is obviously a lamer name because he couldn't come up with his own so he went with the very popular name of phrack which is, if you don't know, a hacker ezine that is widely distributed and can be found and www.phrack.org.  So anyway, I was just sitting in the room talking to this one guy about IP addresses and xxphrackxx comes in and starts shooting his mouth off saying I don't know anything and whatever... bunch of looser BS.  Anyway, I am not complaining to much because to let this guy bother me is pointless, instead I would like to share with those of you who will agree with me why this guy is obviously not a hacker.

xxphrackxx may know a thing or two about computers but that does not make him a hacker.  It all actuallity you don't even need to know about computers to be a hacker, you just need to look at things a little differently.  The thing that bothers me the most about this guy is he thinks that because he knows about network protocols, and programming that gives him the right to be rude to people and but into other peoples conversations.  That just isn't right, and any hacker out there will agree with me.  Being a hacker is about learning and sharing, not be mean and rude and blowing off people who just want to learn.  Our community was developed because people could ask stupid questions and not be riticuled, within reason of course.  None of us would know what we do today if it wasn't for the people who came before us and what they learned from the people before them, you may say, "No I read a book or a file and that is why I know this stuff," well I hate to break it to you but, SOMEONE ELSE WROTE THAT!!!!!!  It is not like a computer sat down and scanned it's own system for vulnerabilities then wrote it all down for people to read, no a hacker wrote it.

Granted, most people will argue that I am missing a very important piece of the puzzle, people had to find those vulnerabilities in the first place, and they did it on their own right?  Wrong!  They had to learn how a system worked and what did what to find a vulnerability, and guess how they learned it, by reading what someone else wrote.  Now I know this may just seem like angry ranting, but it's not.  I am not angry and xxphrackxx for his rudeness, in fact I feel sorry for him because somewhere down the line he forgot what it is to be a hacker, a true hacker.

On a lighter(sorta) note, today I was trying to upgrade my work PC to SP2(don't ask).  Anyway, I went through the process of backing all my data up, and downloading the patch.  I started installing and about 45 minutes into the installation it tells me it cannot install because access was denied.  Now my question is, ACCESS TO WHAT?!?  It didn't give me any other information other than an alert window with the red circle symbol in it.  Man I hate windows!!  I wish I could just use Linux but my boss is an ancient computer guy, I mean ancient.  He was programming in punch cards in the prime of his life so new technology scares him and I cannot get him to go otherwise.  Luckily he has no idea about Knoppix or any of the other live cd distros of Linux so I am able to get away with using it sometimes.

Talk to you all later.


Kn1ghtl0rd
kn1ghtl0rd@hotmail.com

Today is the first day of this blog, and I am Kn1ghtl0rd.  I will be updating this blog every day, well at least I will try, so I can deliver the best information possible about the world of hacking, phreaking, and the computer underground.

I guess I should maybe tell you a little about myself.  I am a systems administrator and programmer for a medium sized manufacturing company in Ohio.  I have been working here for almost a year.  I don't really like it here because the technology is really antique, but if gives me the oportunity to play around with things that maybe I wouldn't have experienced otherwise.  I have a lot of downtime at work so I spend most of my time sitting around doing nothing, or reading misc files and books on networking, hacking, phreaking, social engineering, penetration test, password recovery, and just about anything else I can get my hands on.  I have been using computers for about 10 years and I have been hacking for about 8 of those 10.  I really enjoy what I do and the fact that I can wear the white hat at work and then go home and put on the black hat.

I have been getting more and more educated about different subjects and besides submitting an article to 2600 magazine, I have never attempted to publish any other knowledge, but I feel the time has come to open up and teach what I know.  I will try to be as factual and honest as I can in my posts and all though I will be posting everyday, I am not promising there will be new and interesting subjects all the time, but I will try my hardest to keep people informed and keep the information flowing.

I am a very firm believer in open source and free speach and I will probably visit those topics often throughout this journey so you can look forward to some good discussion about that stuff.

I guess that is really it.......Oh wait, I do want to say one more thing.  I REALLY REALLY REALLY want to get reader feedback from my stuff, I will be putting it on the blog and I wil answer EVERY email sent to me, and that is a solemn vow.  I started this blog to not only educate, but learn as well, so interaction from the community is neccesary.  So I will be posting my email address at the end of every one of my entries.

Well thanks a lot for visiting here and I will have some information up soon.

Kn1ghtl0rd

kn1ghtl0rd@hotmail.com