Posted February 28, 200718 yr Not allowed here? - Delete this topic. "omg this is gay and easy and old and blah blah blah" - I don't care, take it somewhere else. No, seriously, I couldn't care less. I figure that if there's tutorials on doing something as simple as joining an IRC server, then there should be a tutorial on cracking Windows 2003 servers, no matter how easy. This isn't CS:S specific, and can actually be used against some webservers as well. Cracking into CS:S servers is fairly simple. At least the Windows Server 2003 ones which, believe it or not, there are an assload of. Most of these servers have the Microsoft Terminal Service enabled (because it is by default) so you can simply crack your way into the admin account and you have access to the server as if you were sitting at a monitor in front of it logged into the administrator's account. The only tool that's needed is a dictionary-based cracker named "tsgrinder" and "nmap" if you would like to scan for "vulnerable" servers before you go ahead and just try to crack it. Either way works. So: Dictionary-Based Microsoft Terminal Service Cracker: - download - http://www.msterminalservices.org/img/upl/image0041153397962524.jpg Usage: tsgrinder.exe [options] server Options: -w dictionary file (default 'dict') -l 'leet' translation file -d domain name -u username (default 'administrator' -b banner flag -n number of simultaneous threads -D debug level (default 9, lower number is more output) Example: tsgrinder.exe -w words -l leet -d workgroup -u administrator -b -n 2 10.1.1.1 All you need to do is get the tool "nmap" and do something along the lines of "nmap -A -T4 x.x.x.x" and see if the Microsoft Terminal Service is running. I've noticed that it is, almost all of the time. You can make sure that you're able to connect by typing "mstsc" into start -> run and then just typing in the server's IP in the box you see. You can maybe even look up some exploits over at milw0rm for the other services running. Oh, and you definitely want to get a better dictionary list. Google. Also, I can't forget, this is all for informational purposes so you can pen-test your own server to see if someone can do this to you. If you want to prevent against an attack like this, Google for tips.
February 28, 200718 yr Well on a more serious not jett. thanks bro seems like it would be fun to fuck around with.
February 28, 200718 yr And you were doing so well... Too long; Didn't read. Shorter please. Then don't. That's one less dumbfuck that knows how to do it <3
February 28, 200718 yr Wow, Jett posts something usefull, and you fuckheads are too 'cool' to appreciate it. Nice work Jett.
February 28, 200718 yr cpt looses, jett thanks for posting a real topic. cpts never gunna get in themarines. watanewb
February 28, 200718 yr cpt looses, jett thanks for posting a real topic. cpts never gunna get in themarines. watanewb Agreed.
February 28, 200718 yr Author LOL NO0BS!:gaysex: I appreciate your contribution, just as I'm sure everyone else here does.
February 28, 200718 yr Well Jett, I said thanks for posting something cool, but good games on the virus in there
February 28, 200718 yr Author Well Jett, I said thanks for posting something cool, but good games on the virus in there Honestly, I have no idea what you just said. Are you suggesting that I posted a virus? Or what? I really don't know. tsgrinder is probably detected as a virus, if that's what you're saying, for the same reason that Net Cat is. It can be used legitimately but a majority of users use it for malicious purposes. Now, if you found a trojan in the tsgrinder executable, that's not my problem. hammerofgod.com isn't owned by me, it's owned by the person who makes and distributes tsgrinder.
February 28, 200718 yr Well Jett, I said thanks for posting something cool, but good games on the virus in there OMG TEH VIRSUES SERVER CSS AND GAME ERRRDURRRR
March 1, 200718 yr My antivirus kept screaming at me when I extracted the files, but it listed the place I downloaded it from as safe, so im just gonna take a chance with this and let you know that if this kills my computer im gonna fuck you up.
March 1, 200718 yr Author My antivirus kept screaming at me when I extracted the files, but it listed the place I downloaded it from as safe, so im just gonna take a chance with this and let you know that if this kills my computer im gonna fuck you up. I can assure you that any damage done by the program isn't my fault. tsgrinder is a widely used program (google it) and hammerofgod.com is the official site for it.
