LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 11-18-2004, 09:54 PM   #16
NeoRage
LQ Newbie
 
Registered: Nov 2004
Location: Dagenham, Essex, UK
Distribution: Slackware 10.0
Posts: 17

Original Poster
Rep: Reputation: 0

Quote:
Originally posted by predator.hawk
I'd setup a fake exploitable server to work on . Then i'd proble nmap it, use say a classic ssh hole and gain access. All of this done within a local network . as for the boot stuff, you can just hack up a bootsplash theme and you should be fine.
THis was aan idea.. but it means setting up a machine ( Non of wich i have are free) and setting up the network..

if push comes to shove ide have to do this.. but im trying to simulate it if possible.. saves time, and fucking about..

plus i have about 1 min to sho the whole prosedure..
 
Old 11-18-2004, 11:13 PM   #17
benjithegreat98
Senior Member
 
Registered: Dec 2003
Location: Shelbyville, TN, USA
Distribution: Fedora Core, CentOS
Posts: 1,019

Rep: Reputation: 45
Here's some stuff:
Code:
#!/bin/bash
#

echo "> nmap 172.16.1.2"
echo "Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2004-11-18 21:59 CST"
sleep 1
echo "Initiating SYN Stealth Scan against 172.16.1.2 [1660 ports] at 21:59"
sleep 1
echo "Discovered open port 22/tcp on 172.16.1.2"
sleep 1
echo "The SYN Stealth Scan took 2.26s to scan 1660 total ports."
echo "For OSScan assuming that port 22 is open and port 1 is closed and neither are firewalled"
echo "Insufficient responses for TCP sequencing (1), OS detection may be less accurate"
echo "Host 172.16.1.2 appears to be up ... good."
sleep 1
echo "Interesting ports on 172.16.1.2:"
echo "(The 1659 ports scanned but not shown below are in state: closed)"
echo "PORT   STATE SERVICE"
echo "22/tcp open  ssh"
sleep 1
echo "Device type: general purpose"
echo "Running: Linux 2.4.X|2.5.X|2.6.X"
echo
echo
sleep 1
echo "Nmap run completed -- 1 IP address (1 host up) scanned in 2.592 seconds"
echo
sleep 2
echo "> myExploiter"
echo "breaking into server..."
sleep 3
echo "Entry Gained!"
sleep 3
echo "Need password:"
sleep 1
You probably want to bust that up into 2 scripts. The nmap simulation and the fake exploit. I didn't do anything near authenic but you can kind of see how to do that. By the way, to run that save that code in a file and on the command line do a chmod +x filename and the ./filename

Last edited by benjithegreat98; 11-18-2004 at 11:14 PM.
 
Old 11-19-2004, 06:58 AM   #18
NeoRage
LQ Newbie
 
Registered: Nov 2004
Location: Dagenham, Essex, UK
Distribution: Slackware 10.0
Posts: 17

Original Poster
Rep: Reputation: 0
Thanx Benji,
that looks great.. with a bit of tweaking ill get that runing...

Where can i find the basic command list or How-TO for this...

i remeber when writing in BASIC (ok im going back now... ya woundt believe i was 17)

how do i give an input command.... for instance

echo "Enterpass", Input p$

is that correct or is there another way to do it... i know its written like basic but i only language i know.. (:S:S)

Added in:: whats the command to clear the screen.. i know its CLS of CLEAR in basic... what is it in bash???

Added:: Ok i know i spell bad.. Seems Clear does work

Last edited by NeoRage; 11-19-2004 at 08:36 AM.
 
Old 11-19-2004, 09:20 AM   #19
benjithegreat98
Senior Member
 
Registered: Dec 2003
Location: Shelbyville, TN, USA
Distribution: Fedora Core, CentOS
Posts: 1,019

Rep: Reputation: 45
2 sources for linux and bash commands
http://www.linuxdevcenter.com/linux/cmd/
http://www.ss64.com/bash/

I believe there is a "select" command that does what you want for keyboard input. I've never really used it so I don't know if it will do what you want.

Here is a tutorial for shell scripting
http://www.freeos.com/guides/lsst/
and another
http://www.tldp.org/LDP/abs/html/

If you google around some you can find some more resources for guides and how-tos and what not.
 
Old 11-19-2004, 10:07 AM   #20
NeoRage
LQ Newbie
 
Registered: Nov 2004
Location: Dagenham, Essex, UK
Distribution: Slackware 10.0
Posts: 17

Original Poster
Rep: Reputation: 0
cheerz..

what im doing atm is making the GUI in flash..

Basically a login screen ad then the file manager system..

the linux console will basically simulate the hack..

what i wanna do is using the bash scripts. make it look like im actially giving the system varible to hack with.. so it dosnt look like im runnimng a pre configured script.. and am actallr running a program..

so far its looking good...
thanx..
 
Old 11-19-2004, 10:28 AM   #21
benjithegreat98
Senior Member
 
Registered: Dec 2003
Location: Shelbyville, TN, USA
Distribution: Fedora Core, CentOS
Posts: 1,019

Rep: Reputation: 45
One more thing about the realism.....

The ip address that I used in there is an IP that you would use if you were already on the network of the targeted computer. If you are already on the network then you can safely use 192.168.*.* or 10.*.*.* or 172.16.*.* - 172.31.*.*

If you are going across the net you have to use another IP address where the each of the 4 numbers is between 0 and 255.

BUT......

I've never seen a movie or TV show that used a real IP address. They will make one of the number greater than 255 (like 264 or so). This is similar to using the 555 telephone numbers like they do on TV. Otherwise you are giving out some inocent person's IP and they are likely to get attacked. If you are using one of the above internal IP addresses then you can use a real one of those.

And to answer how to simulate how to clean up your traces, don't actually show it. Just use a verbal cue to say the guy is doing it.
 
Old 11-19-2004, 10:58 AM   #22
NeoRage
LQ Newbie
 
Registered: Nov 2004
Location: Dagenham, Essex, UK
Distribution: Slackware 10.0
Posts: 17

Original Poster
Rep: Reputation: 0
Yeah.. i know what ya mean...

i just randomly typed in an ip addy. lol

also to get round the cleanup im just making a Bash Script that basicly says its cleaning up the logs.. and just random file locations..
 
Old 11-19-2004, 11:02 AM   #23
benjithegreat98
Senior Member
 
Registered: Dec 2003
Location: Shelbyville, TN, USA
Distribution: Fedora Core, CentOS
Posts: 1,019

Rep: Reputation: 45
Oh, ok. Most log files are located in /var/log/ if that helps.
 
Old 11-19-2004, 11:39 AM   #24
NeoRage
LQ Newbie
 
Registered: Nov 2004
Location: Dagenham, Essex, UK
Distribution: Slackware 10.0
Posts: 17

Original Poster
Rep: Reputation: 0
Chrz..
 
Old 11-19-2004, 01:14 PM   #25
AxeZ
Member
 
Registered: Sep 2002
Location: Novi Sad, Vojvodina
Distribution: Slackware, FreeBSD
Posts: 386

Rep: Reputation: 32
Just use real tools out there.
There is Nessus vulnerability scanner with nice gui, plethora of exploits.

Get older vulnerable version of Linux, some exploit, run it, film it....

Much easier then learning shell scripting, plus it would be real...
Check http://packetstormsecurity.nl for exploits
 
Old 11-19-2004, 02:09 PM   #26
bignerd
Member
 
Registered: Nov 2004
Distribution: FC1, Gentoo, Mdk 8.1, RH7-8-9, Knoppix, Zuarus rom 3.13
Posts: 98

Rep: Reputation: 15
Quote:
Originally posted by AxeZ
Just use real tools out there.
There is Nessus vulnerability scanner with nice gui, plethora of exploits.

Get older vulnerable version of Linux, some exploit, run it, film it....

Much easier then learning shell scripting, plus it would be real...
Check http://packetstormsecurity.nl for exploits

I agree with AxeZ.

I was gonna post some advice but what's the point. What is real and what people want to see isn't even on the same bell curve.

-b
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Film Editor for Linux sanmartin Linux - Software 1 02-16-2005 04:18 PM
Dedicated film scanner for Linux hellwyn Linux - Hardware 0 02-15-2005 05:29 PM
Linux System To Be Used In a Film. NeoRage Linux - General 2 11-18-2004 06:12 PM
film scanner compatibility with linux ralita34 Linux - General 0 06-05-2003 10:12 PM
nvidia drivers kill system -- film at 11 keating_5 Linux - Hardware 2 11-07-2002 10:57 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 09:30 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration