home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Freaks Macintosh Archive
/
Freaks Macintosh Archive.bin
/
Freaks Macintosh Archives
/
Textfiles
/
Hacking
/
NT Attack Folder.sit
/
NT Attack Folder
/
README
< prev
next >
Wrap
Text File
|
1997-05-14
|
3KB
|
75 lines
NT Surprise Packet
Version 1.0 Source Code Available
k0ded by BlackHaze -> admin@bestmlm.net
How does it work?
----------------
By sending a packet to port 139 with an 'Out Of Band' flag set
exploits a bug in NT/Windows95 causing an exception to be thrown,
and the computer crashes.
Whats wrong? It doesn't seem to work
----------------------------------
Possibly your target has firewalled port 139 - Or your target
is not running NT.
How to use
---------
Find a target running Windows NT; our target is loretonh.nsw.edu.au
Let's ping our target to see if its alive ...
root@cybernet# ping loretonh.nsw.edu.au
PING loretonh.nsw.edu.au (198.142.96.1): 56 data bytes
64 bytes from 198.142.96.1: icmp_seq=0 ttl=52 time=483.314 ms
64 bytes from 198.142.96.1: icmp_seq=1 ttl=52 time=366.652 ms
64 bytes from 198.142.96.1: icmp_seq=2 ttl=52 time=349.986 ms
64 bytes from 198.142.96.1: icmp_seq=3 ttl=52 time=683.346 ms
64 bytes from 198.142.96.1: icmp_seq=4 ttl=52 time=350.026 ms
^C
--- loretonh.nsw.edu.au ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 349.986/446.664/683.346 ms
Now we see if port 139 is open ...
root@cybernet# ./portscan loretonh.nsw.edu.au
Host loretonh.nsw.edu.au, Port 7 ("echo" service) connection ... open.
Host loretonh.nsw.edu.au, Port 9 ("discard" service) connection ... open.
Host loretonh.nsw.edu.au, Port 13 ("daytime" service) connection ... open.
Host loretonh.nsw.edu.au, Port 17 ("qotd" service) connection ... open.
Host loretonh.nsw.edu.au, Port 19 ("chargen" service) connection ... open.
Host loretonh.nsw.edu.au, Port 21 ("ftp" service) connection ... open.
Host loretonh.nsw.edu.au, Port 25 ("smtp" service) connection ... open.
Host loretonh.nsw.edu.au, Port 42 ("nameserver" service) connection ... open.
Host loretonh.nsw.edu.au, Port 53 ("domain" service) connection ... open.
Host loretonh.nsw.edu.au, Port 70 connection ... open.
Host loretonh.nsw.edu.au, Port 79 ("finger" service) connection ... open.
Host loretonh.nsw.edu.au, Port 110 ("pop" service) connection ... open.
Host loretonh.nsw.edu.au, Port 135 connection ... open.
Host loretonh.nsw.edu.au, Port 139 connection ... open.
Launch NT Surprise Packet & connect to loretonh.nsw.edu.au
& click the 'Send Packet' button
root@cybernet# netstat -f inet
Active Internet connections
Proto Recv Send Local Address Foreign Address (state)
tcp 0 46 cybernet.org.au/33249 h1.n96.ausnet.net./139 ESTABLISHED
The connection is established.
Now, lets see if our host is alive ...
root@cybernet# ping loretonh.nsw.edu.au
PING loretonh.nsw.edu.au (198.142.96.1): 56 data bytes
^C
--- loretonh.nsw.edu.au ping statistics ---
10 packets transmitted, 0 packets received, 100% packet loss
May our target rest in peace.
Expect a patch by Microsoft to be released shortly
--------------------------------------------------
'r0xn yer werld in 1997'
http://gwc.com.au/admin
admin@gwc.com.au