Computer Security - Hacking And Hackers Information Security Resource Portal security hacking hackers hacker news downloads crackers virus virii viruses hacked webpages DOS denial of service hacking files hack files hack links hacking links encryption spoofing news texts password crackers port monitors key logger phreaking boxes wardialers patches exploits computer security network security privacy encryption computer crime firewallsinformation warfare intrusion detection hackers elec



Providing

Our News Resources have been upgraded
to bring you the latest news from around the World.
Check out the latest news by clicking HERE
The Security Portal for Information System Security Professionals
The most comprehensive computer and network security resource on the Internet for Information System Security Professionals - Says Yahoo Editors

Return to Main Menu

Return to Main Menu

Our Research Facility

Audit - Detect Network Intrusions
Anonymity & Privacy
ATM - Asynchronous Transfer
Biometrics
Business Continuity Planning
Cellular Communications
Computer Crime & Investigations
Computer Hardware Tutorial
Corporate Violence in Workplace
Crypto & Encryption - Part I
Crypto & Encryption - Part II
Crypto & Encryption - Part III
Disaster Recovery Planning
Downloads - - Public Domain
Downloads - Packet Storm
Downloads - Hacker Domain
Employment and Job Opportunities
Ethics Law and Security Policy
Firewalls
Frame Relay Tutorials
FreeBSD - Berkeley Unix Clone
FreeBSD - OnlineBooks to Read
General Security Related Links
Hacking - How its done Guides
Hacked Web Sites
Information Warfare
Internet Telephony & Protocols
Intrusion Detection Library
Investigations and Courtrooms
Java Security Resources
Jobs & Employment Opportunities
Legal Resources - Legal Basics
Linux Resources - Basics
Linux Resources - Online Books
Mailing List - For Newsletters
Magazine Articles - SEARCHER
Magazine Store - CheapPrices
Military & Govt Security Docs
Networking - Internet Protocols
Novell Networking Security
Online Courses -Boost Your Skills
Pager Hardware Reprogramming
Penetration Testing -Intrusions
Physical and Facility Security
Privacy & Anonymity on the Net
Programming Tutorials
Protocols - Networking - Internet
Resume and Interview Resources
Security Magazines Online
Security Reference Library I
Security Reference Library II
Security Policy Library
Security Standards & Guidelines
Smart Cards
Telecommunication & Internet
Telecommunications Tutorials
Threat Risk Assessments
Unix Security Resources
Unix Security Online Books
VPN's - Virtual Private Networks
Virus Worms Trojans Hoaxs
Voice / IP Protocols and Standards
WIN NT Assorted Files
WIN NT Security Files
WIN 2000 Operating System
Workplace Violence
Y2K Year 2000 Information


Windows NT Resources and Information


Windows NT

Windows NT 4.0 Commands
NT Blue Screen Of Death Bug Codes
MCSE Braindump Heaven
Windows NT Server 4.0 Study Guide
The NEWest ©Tricks + Secrets
Windows NT Secrets Uncovered!
Windows NT Tips, Tricks and Registry Hacks
How to create Windows NT 4.0 boot disks
Integrating Windows NT into a UNIX Environment
Turning on NT Event Logging
Power Tools Home Page
Windrivers.com
NONAGS Shareware & Freeware
Systems Internals
Winfiles

Service Packs, Hotfixes, and Updates


NT 3.51 Service Pack 5
NT 4.0 Service Pack 5 Service Pack 5 (SP5) provides the latest updates to Microsoft® Windows NT® Workstation 4.0 and Windows NT Server 4.0 (including Enterprise Edition). SP5 contains known Year 2000 updates for Windows NT 4.0. These Year 2000 updates are also available as separate Web downloads that customers may apply to a Service Pack 4 system.
NetDDE-fix When a remote client in a DDE conversation with a server running on Windows NT 4.0 Service Pack 4 sends WM_DDE_TERMINATE to the server, Netdde.exe fails to relay the server's WM_DDE_TERMINATE response back to the remote client.
RAS-fix fixes Malformed Phonebook Entry Security Vulnerability in RAS Client.
RASPassword-fix
RRASPassword-fix
Winhlp32-fix addresses this vulnerablility.
Perfctrs-fix addresses Memory Leak When Performance Counters Are Not Available.
LSA3-fix Malformed Request Causes LSA Service to Hang.
IOCTL-fix Denial of Service Attack Using Unprotected IOCTL Function Call
Csrss-fix Exceeding MaxRequestThreads May Cause Windows NT to Hang
The Security Configuration Manager is an important new tool that will dramatically help customers establish and enforce consistent security policies throughout their Windows NT Server enterprises.

Security Precautions


How to enforce the use of strong (complex) passwords on Microsoft NT networks
Implementing strong encryption techniques to increase protection of account password information stored in the registry by the Security Account Manager (SAM).
SYSKEY adds an additional 128-bit encryption layer to the password database.
Securing Windows NT
Microsoft Internet Information Server 4.0 Security Checklist

Password/Account Exploits

RedButton
Logs on remotely to a Target computer without presenting any User Name and Password
Shows that unauthorized access to sensitive information stored in file system and registry available to Everyone group can be obtained.
Determines the current name of Built -in Administrator account (thus demonstrating that it is useless to rename it)
Reads several registry entries (i.e. it displays the name of Registered Owner)
Lists all shares (including the hidden ones)
Shows that identifier Everyone includes not only legitimate users of the network but everyone. Patch: Install Latest Service Pack

l0pthcrack 2.52 Password Auditing Tool
pwdump tool to extract password hashes from the registry. By Jeremy Allison.
pwdump2 tool to extract password hashes from the registry whether or not SYSKEY is enabled on the system.
samdump tool to extract password hashes from SAM files.
PPTP sniffer for Solaris PPTP sniffer works with any unix that has libpcap. This program also contains an active attack which exploits a MS-CHAP problem to retrieve the LANMAN and NT password hashes without the extra layer of encryption of the challenge/response. This makes password cracking much quicker.

Password Crackers for Microsoft Products

l0pthcrack 2.01 from l0pht (See Lan Manager Authentication Exploit)
95sscrk Microsoft Windows 95 Screen Saver Cracker (includes Windows 3.1 Screen Saver Cracker too)
wordcrk Microsoft Word Password Cracker
password.xla Microsoft Excel Password Cracker
Glide Windows 95 .PWL Password Cracker

Revelation 1.1 Windows 95 Password Cracker

netmonex Breaks the NT password scheme for Microsoft's Network Monitor

lsasecrets.c

Scannt from NTSecurity.com
The NT administrator account does not have the account lockout feature that other user accounts do. If administrator is allowed to logon from the network, a share or service can be attacked with password guessing without fear of account lockout. This atta ck can go unnoticed as failed logins are not logged in the event viewer by default.

TCP/UDP Port Scanners and Listeners

WinDump: TCPdump for Windows
NukeNabber 2.9a
Packetboy Sniffer
Netcat 1.1 for NT
NT Hack FAQ v2
Asmodeus 1.04

Sysinternals programs

NTFSDOS v2.0 Allows you to boot a DOS diskette and READ an NTFS Partition
NTRegmon v3.2displays all registry activity taking place on a Windows NT System
NTFilemon v3.1displays all file activity taking place on a Windows NT System
NTRecover Evaluation NT machines that fail to boot because of data corruption, improperly installed software or hardware, or faulty configuration, can be accessed and recovered using s Linux NTFS Driver NT secured filesystem (NTFS) can be read from Linux, bypassing filesystem security.




This web site is Copyrighted (c) 1998 - 2000 - All Rights Reserved
450,000 people visit here each month ... Originate - Don't Duplicate. They are watching