Land of great Hackers

How to change activation key of windows xp

iFaheem — Fri, 04 Nov 2011 01:37:26 +0000

Hello there. Howare you friends.
I came up with this post some time back bit didnt have the time to blog it. Today i got some, so here you have it. The steps to change the activation code in windows xp.
There are 5 steps in this tutorial
Step 01: First Go to Start then Run and type the command regedit click OK to open registry editor.Then Go to [HKey_Local_Machine
\Software\Microsoft\WindowsNT\Current Version\WPAEvents,] on the right double click on “oobetimer” and
change at least one digit of this value to deactivate windows. Click OK and close the Registry Editor.
Step 02: Open Start Run and type the command: %systemroot%\system32\oobe\msoobe.exe /a click Enter. This will bring up the “Activate
Windows” window. Check the option for “Yes” and then “I want to telephone a customer service representative to activate Windows” and click “Next”
Step 03: Then click “Change Product Key” don’t enter any other information on that screen
Step 04: Type in the new key and click on “Update”. The activate Windows by phone window will reappear at this point, just close it by clicking the X in the upper right hand corner of window. Step 05: This step is the verification step and it’s the last step if you done what I already told you before then you should pass this step. Reboot
your system and Go Start Run and type the command: %systemroot%\system32\oobe\msoobe.exe /a and click ENTER. If you see “Windows is already activated” then
you are done!
Another mission accomplished. Bye. Comments and queries to be posted below

JavaScript to unblock right-click on websites

iFaheem — Thu, 29 Sep 2011 01:37:40 +0000

There are many websites that surprisingly turn off the ability of right-click on their pages. Their Web
admins are using this to protect their
web pages from unauthorized copying. This was very common sight in past, but still there are lots of sites using this to protect copying there content
by others. They use simple JavaScript to disable the ability of right-clicking on there web pages.
Today, I’m going to show you a very simple way to turn this function ON. When ever you visiting offending website type the code in red below in the browser URL bar, with the most cases this will work perfectly and
enable you to write click on any web page and do what ever you want.
“ javascript:void(document.oncontextmenu=null) “
Here i have two types of that can be used in web sites to prevent copying of content.
#1 (document.all) {(message);return code #2 var msg =”Right Click is Disabled”;if
(document.layers)window.captureEvents
And #2 you can hold the right mouse button and hit enter to close the warning dialog box, and then release the right mouse button. So the next time you encounter this protection,
you know how to work your way around it….
Bye!
Enjoy

How to delete the super irritating autorun.inf virus

iFaheem — Fri, 16 Sep 2011 17:15:27 +0000

please admit that you are done with the ” autorun” virus in flash drives??
Isn’t it. I’ll accept, I too hate that guy.
Well, actually there are Numerous softwares available that exclusively deal with Autorun.inf and other Autorun viruses, for example ‘ USB Disk Security ‘. But Inspite of installing such kind of software, Sometimes you might accidentally open your USB disk Drive (Pen-drive) without looking at the warning by your Antivirus Software and thus Affecting your System with Autorun.inf virus. Once Autorun.inf gets control on your System, it will repeatedly Block any USB Scanning Software preventing it from deleting. It
also Restricts you from opening hard drives on a double click. In such cases, the Traditional Method of deleting Suspicious Programs Using Command
Prompt is quite Useful. So Lets start with theSteps:
# 1. Open command prompt. Go to start > Run,
and type “cmd” . Press enter.
# 2. Type “cd\” and press enter to get to the root directory of your System.
# 3. Type “attrib -h -r -s autorun.inf” and press enter. This will look for autorun.inf in the selected Drive.
# 4. Type “del autorun.inf” and press enter. This will delete autorun.inf virus from the selected Drive.
# 5. Repeat the above Steps for other drives. To navigate to other Drives, First type “cls” to clear your ‘command prompt’ then type “d:” .
Repeat the Steps for all the Drives including your USB Disk Drive.
# 6. Restart your System.
And when you do, u’ll be happy to just say “bye bye you old man”…

How to put a legal notice before logging into windows xp

iFaheem — Mon, 12 Sep 2011 17:37:43 +0000

Hey! I’m baxk after a long time… Was busy the entire time. But here i am, writing a post about how to display a banner which can contain any
message you want to display just before a user is going to log on.
Seems just like those yellow tapes and caution signs outside your door
So, the first thing you wanna do is go to run, then type in ‘regedit.exe’ without the quotes and hit enter. Then,
go to the key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinLogon
Here, create a new string Value in the right pane named LegalNoticeCaption and enter the value that you want to see in the Menu Bar. Now create yet another new string value and name it: LegalNoticeText. Modify it and insert the message you want to display each time Windows boots.
You can use this simple yet effective tip to display your private policy each time a user tries to log in.
If, by any chance you want It’s .reg file, then it would be: REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Winlogon]“LegalNoticeCaption”= “Caption here.”
Bye! Happy hacking.

How to lock icons on desktop

iFaheem — Sat, 13 Aug 2011 01:45:42 +0000

HaveYou have arranged your desktop to look nicely with your wallpaper. Presently comes someone and mess up the nice arrangement. And you want to rip his head off??? Well, don’t worry, with this procedure, u’ll be able to lock your desktop icons into their place.
Npw, To lock your desktop icons into place, first arrange it carefully the way you want it to be, then open up the registry editor,then Go to
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer.
Right-click in the right pane and select New, DWORD Value name NoSaveSettings and press the Enter key. Right-click on the new NoSaveSettings item and
select Modify.
Enter 1 in the Value data box. After this, whenever you restart Windows, your settings will return to their current state.

Nokia secret codes

iFaheem — Tue, 09 Aug 2011 10:13:06 +0000

Tell me. Haven’t you ever asked yourself “why don’t I know this code”.
Well now with this post, you can.
To perform them, you’ll need a nokia symbian mobile.
Then On the main screen type
*#06# for checking the IMEI (International Mobile Equipment Identity).
*#7780# reset to factory settings. *#67705646# This will clear the LCD display (operator logo).
*#0000# To view software version. *#2820# Bluetooth device address. *#746025625# Sim clock allowed status.
*#62209526# – Display the MAC address of the WLAN adapter. This is available only in the newer devices that
support WLAN
#pw+1234567890+1# Shows if sim have restrictions.
*#92702689# – takes you to a secret menu where you may find some of the information below: 1. Displays Serial Number. 2. Displays the Month and Year of Manufacture 3. Displays (if there) the date where the phone
was purchased (MMYY) 4. Displays the date of the last repair – if found
(0000) 5. Shows life timer of phone (time passes since
last start)
*#3370# – Enhanced Full Rate Codec (EFR) activation. Increase signal strength, better signal reception. It also help if u want to use GPRS and the
service is not responding or too slow. Phone battery will drain faster though. *#3370* – (EFR) deactivation. Phone will automatically restart. Increase battery life by 30% because phone
receives less signal from network. *#4720# – Half Rate Codec activation. *#4720* – Half Rate Codec deactivation. The phone will automatically restart If you forgot wallet code for Nokia S60 phone,
use this code reset: *#7370925538# Note, your data in the wallet will be erased. Phone will ask you the lock code. Default lock code is: 12345
Press *#3925538# to delete the contents and code of wallet.
Unlock service provider: Insert sim, turn phone on and press vol up(arrow keys) for 3 seconds, should say pin code. Press C,then press * message should flash, press * again and
04*pin*pin*pin#*#7328748263373738# resets
security code. Default security code is 12345

Name/rename multiple files at once

iFaheem — Tue, 09 Aug 2011 00:51:50 +0000

Has it ever come across you that for example when you download files from youOra memory stick or any other source, they often have names according to like the date of creation, random names, gibberish names & so on.
Now you can rename several similar files at once by the following procedure. Here i’m using pictures but this also works for renaming other types of files

1.Open the My Pictures folder. (Click Start, and then click My Pictures.) Or open another folder containing files that you want to rename.
2.Select the files you want to rename. If the files you want are not adjacent in the file list, press and hold
CTRL, and then click each item to select it.
3.On the File menu, click Rename. 4.Type the new name, and then press ENTER. All of the files in the series will be named in sequence using the new name you type. For example, if you type Hello, the first will be named Hello and subsequent files in the series will be named Hello (1), Hello (2), and so on.
To specify the starting number for the series, type the starting number in parentheses after the new file name. The files in the series will be numbered in sequence starting with the number you type.
For example, if you type Hello (5), the other files will be named Hello (6),
Hello (7), and so on.

Create a login page for your website in 7 steps

iFaheem — Thu, 07 Jul 2011 02:51:37 +0000

This 7 step tutorial is going to teach you how to
create a login system by using PHP/MYSQL.
( When copy and pasting scripts from this
tutorial, please notice that you have to change
the URL and database settings to your own. ) Required files for this tutorial: connect.php login.php logout.php actions.php create.php register.php index.php Step 1 – Creating the database and user table. To create a login system you must store your
users somewhere.
The easiest way to do this is to just store them
in your database. We will provide you with the script you need to
create the database + all tables needed for this
tutorial.
Copy and paste the code into the file: create.php Code: Once pasted into your file, change the database
details to your own to make this script work.
Please run this script, if you don’t get an error it
means your database has been created. Step 2 – Create the connect file To interact with your database we’re going to
create the connect file, please copy and paste
the following code into connect.php Code: Now this is done we can start creating a register
form to register the users to the database.
Why make a register form? Storing the personal data of a user has got to
happen safely.
If your database gets hacked, you don’t want
your users details to be literally offered to the
hacker. Besides, it’s none of your business what
other people their passwords are… So we use a form to let the user fill in their information.
As we save the information we can make the
password unreadable for people.
More information about this later. Step 3 – Register form We’re going to create the register form.
In this form we will let the user fill in all the
details we need. copy and paste this code into register.php : Code:

Username
Password
First name
Last name
E-mail adress

“; // As you can see here.. the actions we are going to perform will be made in ?> Because the actions will be performed in
actions.php we’re gonna get the actions.php up to put the actions in. Please copy and paste the following code into actions.php . Code: Now we have the form and the actions.. so it’s
time to run register.php by browsing to it:
www.domain.com/register.php
If everything has been filled in correctly.. the
user will be added,
so now we need the login form. Step 5 – Login form The login form will be made out of two text fields
and a submit button.
Why?
Because the username and the password are
the only two keys that make the user a unique
user. So copy and paste the follwing code into login.php Code: session_start(); echo"

Username
Password

“.$_SESSION['login_error']; ?> Just like the register form the actions will be
performed in actions.php To make all actions work replace all content of
actions.php with: Code: 0)// Means it’s got result. { $_SESSION ['s_username'] = $_POST['f_username']; $_SESSION ['s_password'] = md5($_POST ['f_password']); // The session variables have been made.
// You can send your user to the wanted page, in this case.. index.ph
// Please change the domain to your own. header(“Location: http:// www.domain.com/index.php”); }
else
{ $_SESSION ['login_error'] = “Your login information was incorrect.”; // Please change the domain to your own. header(“Location: http:// www.domain.com/login.php”); } } ?> If there is an error during the login it should look
like this: Information As you can see we use the md5() function of PHP.
The md5() function creates an md5 hash of the
string you put in.
This means it will transfer the string into a long
unreadable code which is very unlikely to get
hacked by just anyone. You use this function for the security of your
data and ofcourse your most valuable users. You can now log in using the form, browse to it
and fill it out.
After logging in you should be redirected to
index.php if your login information is right. We have now got the script that should let us
log in succesfully.
But why would someone log in if there are no
secured pages… and how do you make those
“secure pages”? We have told you to create a PHP file: index.php. This will be the page which we are going to
secure. Step 6 – Secured page Copy and paste the following script into index.php Code: 0)// Means it’s got result. { $row_user = mysql_fetch_array ($get_user);// provides you with user info echo ” Welcome “.$row_user ['firstname'].” “.$row_users ['lastname'].”

Click here to log out!”; // This will output a welcome message plus the link to the logout fil }
else
{ // The user is not logged in.. so that means he has got to go to the
// Please change the domain to your own. header(“Location: http:// www.domain.com/login.php”); } ?> All we do above here is check if the user his/her
infromation is unique and equals the database
records.
If so.. the user is logged in… if not… we will
send our user to the login form where he/she
can login anyway. Try to log in using the login form, when it’s
succesful you will automaticly be redirected to
index.php … the now secured file.
you will be able to view the content of this file
now, it should look like this ( also depending on
the username ): To test if it really works you could close your
browser and browse to index.php.
By closing the browser you will destroy your
session values, this way your script sees that
the person is not logged in and will redirect you
to login.php. All there is left to do now is create the logout.php file to allow the users to logout from your system. Step 7 – Logout The logout file is one of the most simple pages
you can imagine.
All this file will do is destroy the session
variables and send them to the login page.
This way the user won’t be able to access index.php anymore. Copy and paste the following code into logout.php: Code: And voilá … your own simple but secured login
system.
Now all you have to do is style and tune it and
it’s ready to use. If there are any errors or difficulties, please let
me know and i will help you. Thanks for reading
this tutorial and I hope you have learned
something from it. Bye

Input Validation Attacks

iFaheem — Thu, 07 Jul 2011 02:18:32 +0000

Input Validation Attacks are where an attacker intentionally sends unusual input in the hopes of
confusing the application.
The most common input validation attacks are as follows- 1) Buffer Overflow :- Buffer overflow attacks are enabled due to sloppy programming or mismanagement of memory by the application developers. Buffer overflow may be classified into
stack overflows, format string overflows, heap overflows and integer overflows. It may possible that
an overflow may exist in language ’s (php, java, etc.) built-in functions. To execute a buffer overflow attack, you merely dump as much data as possible into an input field.
The attack is said to be successful when it returns an application error. Perl is well suited for
conducting this type of attack.
Here’s the buffer test, calling on Perl from the command line: $ echo –e “GET /login.php?user=\ > `perl –e ‘print “a” x 500’`\nHTTP/1.0\n\n ” | \ nc –vv website 80 This sends a string of 500 “a” characters for the user value to the login.php file. Buffer overflow can be tested by sending repeated requests to the application and recording the
server ’s response. 2) Canonicalization :- These attacks target pages that use template files or otherwise reference alternate files on the web server. The basic form of this attack is to move outside of the web document
root in order to access system files, i.e., “../../../../../../../../../boot.ini ”. This type of functionality is evident from the URL and is not limited to any one programming language or web server. If the
application does not limit the types of files that it is supposed to view, then files outside of the web
document root are targeted, something like following-
/menu.asp?dimlDisplayer=menu.asp
/webacc?User.asp=login.htt
/SWEditServlet?station_path=Z&publication_id=2043&template=login.tem /Getfile.asp?/scripts/Client/login.js
/includes/printable.asp?Link=customers/overview.htm 3) Cross-site Scripting (XSS) :- Cross-site scripting attacks place malicious code, usually JavaScript, in locations where other users see it. Target fields in forms can be addresses, bulletin
board comments, etc.
We have found that error pages are often subject to XSS attacks. For example, the URL for a normal
application error looks like this: http://website/inc/errors.asp?Error=Invalid%20password This displays a custom access denied page that says, “Invalid password ”. Seeing a string on the URL reflected in the page contents is a great indicator of an XSS vulnerability. The attack
would be created as: http://website/inc/errors.asp?Error= books, feedback forms, etc. are specially targeted.
The easiest test for the presence of a SQL injection attack is to append “or+1=1 ” to the URL and inspect the data returned by the server.
example:- http://www.domain.com/index.asp?querystring=sports ’ or 1=1–

Reverse Engineering any demo software

iFaheem — Sun, 26 Jun 2011 08:10:01 +0000

Here is a simple yet effective trick to truely customize your free softwares. Thisis called reverse engineering & today I’ll teach you how to do it for your self with a demo version WinRAR 3.80 using a disassembler
and will tell you the same here. Furthermore, major
software are analysed using the same way,but just get
a bit complex in the methodology. This tutorial is intended for those who are new to reverse engineering
and disassembling.

Disclaimer – By Reading this tutorial You agree that this tutorial is
intended for educational purposes only
and the author can not be held liable
for any kind of damages done whatsoever
to your machine, or damages caused by
some other,creative application of this tutorial.
In any case you disagree with the above
statement,stop here. The Tools To perform this hack you will be needing – 1. Any De-assembler (I use Hackers Disassembler and Hview ) 2. Resource Hacker 3. A patch Creator ( Use Universal Patch Creator or Code fusion) You will be able to get them by yahoo searching…
How to Reverse Engineer? You need to have a bit knowledge of assembly language,and in case you
don’t have it,just cram the steps and it will work anytime,every time. Download
the latest version of WinRAR from their website and install it.
I will be cracking Winrar 3.80 here ( cuz I already have it:P ). This is basically a 2 step process ( 4 step ,if you want to do things with a professional touch,period ) . Now copy the WinRAR.exe file to desktop. Make a copy of it there. Step 1 – Hunting for Memory Address Now load Hackers Disasembler and load the copy in it. The Disassembler will disassemble the executable in assembly code. Now
you need to search for strings that are used in WinRAR program. Press Ctrl +
F and type “evaluation ” without quotes and search in the assembly code. Hit enter.. After you have reached this block of code by searching, just look at the block
of code above it. There you will find that some assembly values are being
compared and then code is jumped to some other function. Now see
carefully, the “evaluation copy ” function must be invoked after some specific condition is met. We need to look for it at the code and the make certain
changes to the condition so that the program doesn’t checks for the
condition. In the above code you can see this code – 00444B6A: 803DF4B84B0000 cmp byte ptr [004BB8F4], 00
00444B71: 0F859B000000 JNE 00444C12 This is the code responsible for validating you as a legal user . Just note
down the memory address that leads to jump (JNE) at some memory location.
In this case, note down 00444B71 . Note : For any WinRAR version, this code and memory address might be different,but the JNE will be same. Just note down the respective memory
address that checks. Now you need to search for the code that brings that ugly nag screen “Please purchase WinRAR license ” after your trial period of 40 days is over. For this,look over your toolbar and click on “D” which stands for looking for Dialog references. Now in the dialog box that opens,search for “please” and you will get the reference as – ID-REMINDER, “Please purchase WinRAR license” Double click on it and you will reach the subsequent code. The code will be something like * String: “REMINDER” 0048731A: 68EB5E4B00 push 004B5EEB Just note the memory address that invokes the REMINDER dialog. In this
case its 0048731A. Note it down . Note : For any WinRAR version, this code and memory address might be different.But the Reminder Memory address code will always PUSH
something. Just note down the respective memory address that PUSH ‘s. Step 2 – Fixing and Patching Now in this step we will be patching up values of memory addresses we noted
earlier. I will be doing this using HVIEW.
Now load the copy you disassembled in Hacker ’s Disassembler in Hview. After you have loaded it, you will see the code is unreadable. Its just like
opening an EXE file in notepad. You need to decode it. To do that, just press
F4 and yoiu will get an option to decode it. Hit DECODE and you will be able
to see code in the form of assembly code and memory addresses. After you have done that, you need to search for memory addresses you
noted down earlier. Just hit F5 and a search box will be there. Now you need
to enter the memory address. To do that, enter a “.” and the type memory address neglecting the earlier “00” . The “.” will suffice for “00”. ie – Type .444B71 in place of 00444B71 and search in the code. After you have reached the respective code, you need to make changes to it.
Press F3 and you will be able to edit the code.Now make the following
changes – After you have done it, save it by pressing F9.
Now search for next memory location by pressing F5 and entering it. Reach
there and make the following changes by pressing F3 – Save the changes by pressing F9 and exit HVIEW by pressing F10.
Congrats..You have cracked WinRAR Replace the original WinRAR.exe
with this copyofwinrar.exe by renaming it. It will work 100% fine Step 3 – Spicing up the EXE Now U have a 100% working version of EXE, you might want to change your
registration information in WinRAR. TO do this, you can use Resource
hacker. Launch Resource Hacker, load the copyofwinrar.exe in it Now go to DIALOG –> Expand tree –> ABOUTRARDLG and click it. Now Find Trial copy line and replace it with your favorite one and click on Compile Script button. Now save the file with any name on your desktop or any location what so
ever. Now you have a fully patched WinRAR.exe file ) . If you want to learn that,
move on to next step. Step 4 – Creating a working Patch (or giving Professional touch ) I will be using diablo2oo2′s Universal Patcher (UPE) for creating the patch.
The patch will work like any authentic one for that WinRAR version. Just like
the one U downloaded at anytime of your life from any Crack and Keygen
website.
Launch Patch Creator and click on add new project. Enter project Information
and click on save. Click on Add – ; Offset patch After you have done that, double click on offset patch and then 1. Give path of original winrar.exe 2. Give path of unmodified Winrar.exe (again) 3. Give path for fully patched Winrar.exe ( ie Cracked Winrar.exe in this case ) 4. Click on compare and it will show difference between both files 5. Click on save. Now in the next window, click on Create Patch and save it. The Patch will be
created. Now copy it in WinRAR installation directory and hit on patch, it WILL
work. Congrats you have created a patch of your own and have learned to reverse
engineer WinRAR You can crack other software in the same way …just practice,debug and disassemble and you will get the way [PS: The above is the long way to do it, I will be telling you the shortest way to crack WinRAR in just 1
step, the main aim of this tutorial was to introduce you
to disassemblers and tools, and do some dirty work with
your hand.
Enjoy!