“They dont burn the books, they just remove them.”
- Rage against the Machine
Basically, I am not going to give you any pre-haxoring lectures. I assume you are a sane person and make the right decisions, etc... So lets get to the meat.
Oh yeah,and dont get caught, I got a suspension for changing a measly filename!
I dont know or care alot about Winblows so bare with me while I describe the Winskank OS (Does it deserve to be called an OS?) Fortres 1.0.1 is a security application created by Fortres Corporation. It is fairly simple in concept, and hacking it is hard until you find out a small exploit then all hell breaks loose. It goes like this:
Say you are on a system with Fortres loaded. If you will press Alt-Shift-Escape and a dialog will pop up. At the bottom at that ‘Start’ Task bar thing you will see that ‘Fortres 1.0.1’ is a application. You then will type in a password (which I have no idea how the password encryption scheme works) and when you press Enter a window will pop up. This window has a series of Tabs that allow you to edit different preferences and configurations such as regulating the deletion of files, installing software, moving icons on the desktop, etc... But Fortres Corporation has overlooked something extremely...well in our case...Cool.
Fortres either sets as default or doesnt have an implimentation of regulating file manipulation, and other commands it regulates in the desktop from within other applications. So, Yes, you can delete files from Words Open dialog box, and from PowerPoints Visual Basic DO BASICALLY ANYTHING to the system that you wish. Today I am going to demonstrate and discuss some of the many different exploitations of this measly wack-at-a-security application.
If your school is technology spooked as mine is, you probably will only have the basic suite of software: Word, PowerPoint, Excel, etc... That is enough to edit system files etc... Lets start simple and with some basic commands you would be able to do if your school wasnt paranoid(Well, now they have a real reason.)
First open up Word. Now, from the File menu select ‘Open.’ You will get the standard Open dialog box. Check it: Browse the C drive and look for either ‘fortres101’ or ‘Windows.’ Both pretty important directories. Now, Say you go to ‘Windows.’ Scroll down until you see the ‘Explorer’ a application that will allow you to browse through your hard drive and do stuff like rename files, etc... Control click that or any other application that is regulated by Fortres and you will get a contextual menu. Look at the menu items you get: Rename, Delete, Properties. You can use any of these commands, but sometimes the network itself, the server software wont allow the deletion of some files. But if its on your HD it probably isnt protected. Anyways, You can do all that stuff! Hurray. Jump for joy, Ok, Now shut up.
If you know Visual Basic, you can go to PowerPoint and open up VB and do all kinds of shit, its insane! Oh, and for my favorite trick of all:
Open up a blank presentation and goto the Slide Show menu, and then to the ‘Action Buttons’ Menu. You will see a sub-menu pop out. Just select any type of button picture. Now, Control click that Button that is on your presentation. From the contextual menu select ‘Action Settings.’
It will probably ask you if you would like to enable Macros, just click yes. Now that I think about it, i would like to apologize for the tutorial form, just a little blurb I had to say. Anyways, You will get a window that allows you to set the Button to do stuff. There is a option called ‘Run Application.’ Click the button, and browse the hard drive and select an application. Now when you click that button, it will run it. Pretty cool.
Thats all I have the patience to write tonight (or today, which ever you prefer.) Look for a Continuation of the Fortes 1.0.1 haxoring/Windows security software hacking series.
