http://infinityexists.com Geek How-to's Thu, 04 Sep 2008 16:02:08 +0000 http://backend.userland.com/rss092 en In this Underground video, Crash Overron demonstrates how to hide a RAR file inside an Image file. He does this by utilizing a binary combine which basically concatenates the two files together. To accomplish this in windows use the command: copy /B [File1 (Image)] + [File2 (RAR)] [Destination File ... http://infinityexists.com/2008/09/04/underground-combine-files/ XSS Shell is a cross-site scripting backdoor into the victim's browser which enables an attacker to issue commands and receive responses. During a normal XSS attack an attacker only has one chance to control a victim's browser; however, the XSS Shell keeps the connection between the attacker and the ... http://infinityexists.com/2008/08/22/episode-21-xss-tunnel/ Phishing is a method of obtaining sensitive information such as usernames and passwords by pretending to be a trusted website.  Tehdead shows us a variety of password phishing techniques that enable an attacker to trick a user into giving up their login information.  The first step is to create a ... http://infinityexists.com/2008/08/12/underground-password-phishing/ The last few days I've been helping my friend Charlie construct his Illinois State University (ISU) Beer Pong Table. The legs and supports of the table are made from his roommate Brandon's hockey sticks, and the table top is made of plywood with a 1/8" sheet of Acrylic on ... http://infinityexists.com/2008/08/08/beer-pong-table/ In this Underground video, Overide demonstrates how to obtain root access on a fully patched Windows XP SP3 Machine. He exploits a flaw in Windows Server Message Block (SMB) which is used to provide shared access to files between hosts on a network. Overide utilizes the Metasploits Framework ... http://infinityexists.com/2008/08/05/underground-windows-smb-relay-exploit/ For this episode of Full Disclosure, we illustrate the many features of Ettercap. Ettercap is a program designed to sniff passwords on a LAN. It can recognize several different packets that contain passwords including Http, Telnet, Ftp, Pop, Rlogin, SSH1, ICQ, SMB, MySql, NNTP, X11, IRC, IMAP, VNC, ... http://infinityexists.com/2008/08/03/episode-20-ettercap/ Crash Overron's second Underground video explains how to use Ollydbg to manipulate a simple program. OllyDbg is a debugger that analyzes binary code. Not only does Olly allow you to step through an executable's assembly code, but also, it can trace registers, recognize procedures, API calls, switches, tables, ... http://infinityexists.com/2008/07/30/underground-application-patching/ Last Thursday, my Acer Travelmate laptop crapped out on me and stopped booting Windows XP. I tried everything to fix it: booting into safe mode, using Windows recovery console to fix the boot.ini, fixing the corrupted partition boot sector with Fixboot, and fixing the Master boot record with Fixmdr. ... http://infinityexists.com/2008/07/29/recovering-an-acer-computer/ In this Underground Video, Copy explains how to use Metasploit's Autopwn. The Metasploit Framework is a tool for developing and executing exploit code against a remote target machine. Autopwn is a tool in Metasploit Framework version 3 that automates the exploitation process. Copy demonstrates how to use ... http://infinityexists.com/2008/07/20/underground-metasploit-autopwn/ The first Underground video explains how to send fake emails a.k.a. Email Spoofing. This video, submitted by Crash Overron, covers two methods of email spoofing. The first and older method is connecting directly to the SMTP server with Telnet; however, this method is usually blocked by the email ... http://infinityexists.com/2008/07/12/underground-email-spoofing/