Archived: Complete Guide to Cybercrime Tools (NS&H Edition)

v0x · #1 08-31-2009, 11:49 PM

After reading the cybercrime thread, I realized that malware and hacking tools really do facilitate a large part of cybercrime itself. Unfortunately, no one had described any of these two things, so I just made this guide to things you need to become a successful cyber criminal

. Enjoy.

Types of hacking tools:

Vulnerability Scanner - By vulnerability, I mean remotely exploitable and locally exploitable ones, not including web script vulnerabilities. This is mostly for things like vulns in OS's, services (HTTP/FTP/etc. servers), remote access solutions (VNC, SSH, Terminal Services, etc.). Weak passwords ARE a vulnerability, so scannerbruters (for SSH/RPC) are included in this area.
Example Process/Use: Scan for vulns, exploit, get admin/root
Example Tool: Nmap (duh)
Web Scanner - Since web scripts have tons of vulnerability, and hacking a web site often requires a different skill set than directly hacking a server does, this gets its own category.
Example Process/Use: Scan for vulns, exploit, upload shell or get admin account on script, exploit further using local exploit, get root/admin
Example Tools: Acunetix, Wikto, Shadow Security Scanner, Fuzzers
Mailer - Good for sending emails, whether it's to phish, spread, mail bomb, spam, or just screw around. You need a newer one, because several older ones get the mail marked as spam
Example Process/Use: Send mail, direct people to phishing site, get passwords
Example Tools: 1st Mail Sender, Atomic Mail Sender, Dark Mailer
Exploits - Whether it's code, an executable, or a script, this is what actually does the exploit and grants you access on the site/server.
Example Process/Use: Scan, exploit, get admin/root
Example Tools: ms08-067.exe (google for it )
Crackers - For cracking hashes, not bruteforcing accounts. Whenever you get hashes (which are encrypted passwords, for anyonw who doesn't know), whether it's from a web script, or an OS, you need to crack them to gain access to the account.
Example Process/Use: SQL Inject a site, get hashes, crack hashes, get admin account on site, use local exploit, get admin/root
Example Tools: John the Ripper, OphCrack, Cain & Abel
Vulnerability Tools - Basically tools that help you take advantage of vulnerabilities. Can be things that help you to do a blind SQL injection attack, make an XSS, forge headers, etc.
Example Process/Use: Find vuln, realize it's a blind sql injection, use tool to automate attack
Example Tools: SQL Power Injector, TamperData
Anonymizers - Basically anything that allows you to become anonymous. This includes programs that anonymize you, as well as tools that use proxies. Includes tools that check/get info on proxies, and MAC/HWID/etc changers
Example Process/Use: Most of the time, you should use a proxy when you hack
Example Tools: SocksCap, ProxyJudge, SMAC, FreeGate, Tor
DoS Tools - DO NOT USE THESE, THEY ARE FOR SKIDDIES!!!
Example Process/Use: Use tool, site owner identifies IP address, Feds arrest you
Example Tools: LOIC (Low Orbit Ion Cannon), DoSHTTP, anything with nuker or bomber in the name
Sniffers - For capturing traffic in a network. Sniffing can yield passwords, juicy info, and give you an idea of the network you're on.
Example Process/Use: ARP poison the network, use a sniffer to capture passes to logins, do some more investigating, get admin/root
Example Tools: Wireshark, Kismet, Ettercap
Wireless Hacking - Hacking into wireless networks is one of the easiest, most fun, most low risk things you can do. War driving ftw! Includes radio and bluetooth hacking tools.
Example Process/Use: Break pass for wifi, ARP poison, sniff. Or break pass, remote exploit, get admin/root. Or break pass, use network as a proxy.
Example Tools: AirCrack, Bluesnarfer
Phishing Tools - Most just phishing pages here, but also some phishing page creator software
Example Process/Use: phishing. duh.
Example Tools: Phishing pages, FishingBait
Other Tools - Just a category for other stuff and miscellanea
Your Brain - Most important one! You can't use any tools or malware without it. Knowing how to hack and program help. Teach yourself too, no one likes a skiddie.

Types of malware:

Virus - Pure virii are not useful for cybercrime, just for destruction. No one needs more of that, so these are mostly defunct. Having a backdoor that spreads by file infection though is fine, and often very successful.
Comment: Code your own!
Shell - Web shell that is. Allows you to take control over a web site just by uploading a script onto it. Basically a malicious control panel.
Comment: I use c99, r57, or a private one
Keylogger - Just as the name says, it logs the keys pressed (and often the window they're entered into). Some also take pictures and video, and almost all of them send the logs to a remote location.
Comment: I don't use them, no comments here
Downloader - Great tools, basically they just download and execute a file from a site, silently and quickly.
Comment: I love using them
Trojan - Basically gives you complete control of the computer. It allows you to view the files, give commands, keylog, see the desktop, open the CD tray, kill the OS, turn the computer into a proxy, and tons of other shit. Works in a client <-> server configuration. Also called RAT's.
Comment: Only use them to micromanage important computers I've infected, like servers. PoisonIvy, SharK, and PainRAT are popular ones. If you want to know more about these in detail, visit this thread I made in NS&H
Rootkit - Often come un-compiled, in code form, or incorporated into the malware already. Rarely standalone, unless it's for Linux. Used to hide files, entries, ports, etc., etc.
Comment: One of the best types of malware ever, it hides everything else
Worm - VERY important for spreading. Basically it's a program that auto-spreads itself via some method. Some send spam, some share infected programs via P2P shared folders, some infect USB drives.
Comment: If you're serious about spreading, you have to use a worm
Bot - Like a trojan, but aimed at controlling vast amounts of computers (upwards of at least 1,000, usually around 10,000 - 50,000, can get up to 100,000 if you're really good). Used to build botnets. Can DDoS, steal information, turn computers into proxies, and much more. Often incorporates a worm and rootkit.
Comment: Only for the pros, THE best type of malware ever
Adware - Everyone hates it, except the people who made it. Displays pay-per-view ads to users, creator gets paid lots of $$$.
Comment: I've never gotten into making them, but it's a hugely lucrative business.
Binder/Crypter - Gives new life to old malware, and helps you spread. Binders allow you to join two executable files (usually malware & a legit file), thereby infecting the main file. People download & execute the legit file, and it silently executes your malware too. Crypters re-encrypt old malware that's been detected by AV's. Unfortunately, the AV company often catches on, and makes a signature for the crypter itself, which also re-detects all the crypted files
Comment: the one thing you'll really need to buy from someone if you can't code. They run $50 - $300.
Other - Includes all the things that are too small to have categories of their own, or were just seen a couple times, such as hardware based malware, ransomware, DNS changers, screenshot makers, etc.
Social Engineering - Sometimes better than all the malware in the world combined. You can secure computers, but human stupidity doesn't have a patch.

Hope you've enjoyed this, and please thank me if it's helped

Dfg · #2 09-01-2009, 06:43 AM

Thanks for contributing OP

.

A bit more about Viruses:
http://www.spamlaws.com/virus-types.html

P.S: Fixed the problem.

v0x · #3 09-01-2009, 07:25 AM

Quote:

Originally Posted by Dfg

Thanks for contributing OP

.

A bit more about Viruses:
http://www.spamlaws.com/virus-types.html

P.S: Fixed the problem.

Thanks. Btw, if anyone wants downloads or more info on the tools or malware that I mentioned, feel free to ask & discuss.

***WARNING*** I am not responsible if you fuck up your computer with the things you download! And I ONLY use 7zip to make archives, so if you get an unzipping error, go download 7zip at http://www.7-zip.org/, and use that to unzip my archives.

***DOWNLOADS***
Page 1: Web Shells
Page 2: Trojans

5024L · #4 09-01-2009, 07:27 AM

I can has shell?

v0x · #5 09-01-2009, 07:37 AM

Quote:

Originally Posted by 5024L

I can has shell?

Yarp, no problem. I have several shells, in fact. Do you want a specific one, or just a whole bunch to experiment with?

LSA King · #6 09-01-2009, 07:38 AM

If my proxy would thank I would thank so someone thank for me.

5024L · #7 09-01-2009, 07:39 AM

Quote:

Originally Posted by v0x

Yarp, no problem. I have several shells, in fact. Do you want a specific one, or just a whole bunch to experiment with?

I would prefer to experiment

v0x · #8 09-01-2009, 07:56 AM

Quote:

Originally Posted by LSA King

If my proxy would thank I would thank so someone thank for me.

Your proxy? Does your country block access to Zoklet or something? you could always tunnel things through Tor btw, and have full web access.

Quote:

Originally Posted by 5024L

I would prefer to experiment

Ok, here's a huge pack of web shells that you can use.
[Warning: Zoklet is not responsible for the content. Use at your own risk]
Download: http://sharebee.com/8ab9f571
Mirror: http://www.rapidspread.com/file.jsp?id=xct10pp9nm
Password to zip file: "totse/zoklet"

Enjoy

Also: don't worry about the content, shells are code, and code = .txt files. No need to use these in a VM or in a machine running DeepFreeze. Of course, uploading the shells to the website after exploiting it is a whole different story, but editing the code and looking at it doesn't present any risk to infection. ANY OTHER FILE is to be treated as a potential security risk though, and should be run in a VM.

Paco · #9 09-01-2009, 08:06 AM

Quote:

Originally Posted by v0x

Your proxy? Does your country block access to Zoklet or something? you could always tunnel things through Tor btw, and have full web access.

Ok, here's a huge pack of web shells that you can use.
Download: http://sharebee.com/8ab9f571
Mirror: http://www.rapidspread.com/file.jsp?id=xct10pp9nm
Password to zip file: "totse/zoklet"

Enjoy

Your my new favorite poster on zoklet

Paco · #10 09-01-2009, 08:29 AM

maybe my computer is just failing but when i try to extract the shells i get this

anyone else not able to extract them?

5024L · #11 09-01-2009, 08:30 AM

Quote:

Originally Posted by Paco

maybe my computer is just failing but when i try to extract the shells i get this

anyone else not able to extract them?

I got the same error.

Syphilis · #12 09-01-2009, 08:33 AM

I'm pretty sure it means the program you tried to unzip them with doesn't support archives with passwords.

v0x · #13 09-01-2009, 08:36 AM

Quote:

Originally Posted by Syphilis

I'm pretty sure it means the program you tried to unzip them with doesn't support archives with passwords.

Yup, exactly this. I made that zip in 7zip, so it's probably not compatible with WinZip/WinRAR. Go download 7zip at http://www.7-zip.org/. It's the best archive manager anyway, believe me. Compresses stuff really well, takes up less than a megabyte, and it's freeware.

Edit: Added a warning to my second post about 7zip, please download it to open my archives. And if you think I'm trying to infect you, think again. I don't infect people from Zoklet, period. I wouldn't compromise my reputation and 625+ posts just for a couple more bots. 7zip is real software, it's clean, and it's free. Go check wikipedia or download.com if you doubt me.

Paco · #14 09-01-2009, 09:12 AM

You think you could send me a trojan

peas and thank you.

Dfg · #15 09-01-2009, 09:12 AM

Quote:

Originally Posted by v0x

Yup, exactly this. I made that zip in 7zip, so it's probably not compatible with WinZip/WinRAR. Go download 7zip at http://www.7-zip.org/. It's the best archive manager anyway, believe me. Compresses stuff really well, takes up less than a megabyte, and it's freeware.

Edit: Added a warning to my second post about 7zip, please download it to open my archives. And if you think I'm trying to infect you, think again. I don't infect people from Zoklet, period. I wouldn't compromise my reputation and 525+ posts just for a couple more bots. 7zip is real software, it's clean, and it's free. Go check wikipedia or download.com if you doubt me.

Actually Winrar extracts them easily. Disable your AntiVirus. Eset or another AV will pick them up and might not allow the file to be extracted.

5024L · #16 09-01-2009, 09:14 AM

Quote:

Originally Posted by Dfg

Actually Winrar extracts them easily. Disable your AntiVirus. Eset or another AV will pick them up and might not allow the file to be extracted.

Pick up textfiles?

Paco · #17 09-01-2009, 09:14 AM

Quote:

Originally Posted by Dfg

Actually Winrar extracts them easily. Disable your AntiVirus. Eset or another AV will pick them up and might not allow the file to be extracted.

my winrar didnt work but 7-zip did

Dfg · #18 09-01-2009, 09:24 AM

Quote:

Originally Posted by 5024L

Pick up textfiles?

PHP/C99Shell.W trojan

Get a better AV. (spammer)

5024L · #19 09-01-2009, 09:34 AM

Quote:

Originally Posted by Dfg

PHP/C99Shell.W trojan

Get a better AV.

Ask your call center if I can have a copy of theirs

Dfg · #20 09-01-2009, 09:38 AM

Quote:

Originally Posted by 5024L

Ask your call center if I can have a copy of theirs

You're asking for an infraction right there.

5024L · #21 09-01-2009, 09:41 AM

Quote:

Originally Posted by Dfg

You're asking for an infraction right there.

But what if I worded it "Recommend a good free AV"?

Also, when you say "infraction" how many points and what for?

Paco · #22 09-01-2009, 09:50 AM

Quote:

Originally Posted by 5024L

Ask your call center if I can have a copy of theirs

Quote:

Originally Posted by Dfg

You're asking for an infraction right there.

i lolled

DeshiKicksFTP · #23 09-01-2009, 04:37 PM

DFG works in a call center? I worked in Wise-Tone, BAS, Hello Tech (for like a day), and I had Touchstone call me a few times asking me to come in for an interview and stuff but I didn't go.

I remember this one time in Wise-Tone, we were dialing the UK pitching Orange and T-mobile and such, and one guy a few seats down got this crazy dude on the phone that was yelling at him and such then the guy hung up. The number was passed down to everyone, who called him, and he answered the phone to yell at us. Good times.

EDIT: To make this relevant, thanks to OP for the information.

nm43388 · #24 09-01-2009, 09:48 PM

So i'm trying to use Cain and Abel and when I use the sniffer to get the other networks so i can APR them i get NOTHING any ideas? I couldnt find a tutorials or troubleshooting gigs. I was thinking that maybe it was my wireless adapter I'm using an Atheros AR5007EG. Any ideas?

Syphilis · #25 09-01-2009, 11:12 PM

Quote:

Originally Posted by nm43388

So i'm trying to use Cain and Abel and when I use the sniffer to get the other networks so i can APR them i get NOTHING any ideas? I couldnt find a tutorials or troubleshooting gigs. I was thinking that maybe it was my wireless adapter I'm using an Atheros AR5007EG. Any ideas?

Which OS are you using? I've used Atheros cards before and they've worked fine.

Aircrack or Aircrack/Kismet are better than Cain for wireless cracking.

Transparent · #26 09-02-2009, 12:36 AM

Quote:

Originally Posted by Syphilis

Which OS are you using? I've used Atheros cards before and they've worked fine.

Aircrack or Aircrack/Kismet are better than Cain for wireless cracking.

I think it'd be useful if everyone was informed about Backtrack as well. It's an OS used for testing for vulnerabilities in your network, but it can obviously be used for other things, like finding vulnerabilities in other peoples' networks...

It comes preinstalled with most of the types of programs mentioned here and it can be booted off a DVD, no installation required.

Oh, and it's free.

nm43388 · #27 09-02-2009, 12:38 AM

Quote:

Originally Posted by Syphilis

Which OS are you using? I've used Atheros cards before and they've worked fine.

Aircrack or Aircrack/Kismet are better than Cain for wireless cracking.

I thought aircrack was only really good for Linux? So i've heard anyways... So ya I got it to work at picking up Ip's etc etc I just needed to unspoof my mac address. Having a problem cracking passwords though. Does anyone know a really good tutorial online? Perhaps someone should make one and it would probably be archived

v0x · #28 09-04-2009, 07:40 AM

Quote:

Originally Posted by Paco

You think you could send me a trojan

peas and thank you.

I'll definitely post a trojan or two here. Any other tools you'd like to see?

Quote:

Originally Posted by 5024L

Pick up textfiles?

Yea, technically those shells are backdoors for websites, so AV's do pick them up. Thankfully, a few of the ones I included are partially or fully UD (undetected). Btw, it's not the file format that determines the detection, it's the content. I could rename a malicious exe as a .txt and the AV would still pick it up because of the content.

Quote:

Originally Posted by nm43388

So i'm trying to use Cain and Abel and when I use the sniffer to get the other networks so i can APR them i get NOTHING any ideas? I couldnt find a tutorials or troubleshooting gigs. I was thinking that maybe it was my wireless adapter I'm using an Atheros AR5007EG. Any ideas?

Yea, C&A sucks for wireless sniffing. Use Wireshark and Aircrack for it. Wireshark captures the packets and Aircrack cracks the key to the network. Wireshark is easy to use if you have the right adapter, Aircrack is a little more complicated, but the site has some extremely detailed guides and tutorials for it, so you'll be fine. Btw, it's called Aircrack-ng now. But you can easily just google for each program and find the site, and a ton of other helpful things.

Quote:

Originally Posted by nm43388

I thought aircrack was only really good for Linux? So i've heard anyways... So ya I got it to work at picking up Ip's etc etc I just needed to unspoof my mac address. Having a problem cracking passwords though. Does anyone know a really good tutorial online? Perhaps someone should make one and it would probably be archived

Aircrack does work better and have better hardware compatibility on Linux, but it is usable in Windows too. Unspoofing your MAC can be done with any MAC changer, just change it back to the original. Cracking passes is done by Aircrack itself. Make sure of course that you are capturing packets from a WEP network, because WPA and WPA2 take much more time and effort to crack. I'd go to the Aircrack site to get some tutorials, find out about adapter compatibility, and learn more about wireless cracking.

Like Transparent said, BackTrack is a Linux Live CD based on Slack that has several useful hacking tools pre-installed and ready to use. It's great for wardriving. The only thing it kind of lacks is good tools for maintaining access (i.e. backdoors and rootkits). For that I'd recommend getting some external code. There's several backdoors and rootkits for Linux available out there.

Please keep this thread active btw. If you have ANY questions, no matter how stupid they may seem, about cybercrime tools, please post.

5024L · #29 09-04-2009, 11:57 PM

If one was to try and create a botnet, where could it be hosted at?

v0x · #30 09-07-2009, 11:35 PM

Quote:

Originally Posted by 5024L

If one was to try and create a botnet, where could it be hosted at?

A server in China is currently the best bet atm. If you can't get China, try some of these places:

Russia
Southeast Asian countries (Malaysia is one of many)
Some Caribbean countries (Panama comes to mind)
Some Middle Eastern countries (Iran is the best)
Some South American countries (Venezuela is a good example)
Anywhere in Africa (if you can trust those people, and make sure it's located in a stable country)

You usually host a botnet on a server that you've hacked, or a server from a bulletproof hosting provider. Bulletproof hosting involved basically owning a server or ten in one of the above countries, and renting it out to people, and ignoring abuse complaints. Might as well save the money (BP hosting is expensive shit), bypass the middleman, and use a hacked server. Before you do though, are you ABSOLUTELY SURE you know what you're doing with that botnet? Do you have a complete plan for it? If you need any help, post here.

I'll post the trojans soon, I've been really busy these past few days.

SLIM · #31 09-07-2009, 11:41 PM

Venezuela and Mexico are good places for hosting, although a little slow on speeds.

v0x's list is more or less right though.

Russia is admittedly a bit hit or miss, it's well policed but there's a lot of corrupt people working in authorities and a lot of bulletproof hosts ar ein Russia.

I had an idea to have a chan site that was on bulletproof hosting simply for illegal activities; I never went through with it.

5024L · #32 09-08-2009, 12:20 AM

Quote:

Originally Posted by v0x

A server in China is currently the best bet atm. If you can't get China, try some of these places:[list][*]Russia[*]Southeast Asian countries (Malaysia is one of many)[*]Some Caribbean countries (Panama comes to mind)[*]Some Middle Eastern countries (Iran is the best)[*]Some South American countries (Venezuela is a good example)[*]Anywhere in Africa (if you can trust those people, and make sure it's located in a stable country)

You usually host a botnet on a server that you've hacked, or a server from a bulletproof hosting provider. Bulletproof hosting involved basically owning a server or ten in one of the above countries, and renting it out to people, and ignoring abuse complaints. Might as well save the money (BP hosting is expensive shit), bypass the middleman, and use a hacked server. Before you do though, are you ABSOLUTELY SURE you know what you're doing with that botnet? Do you have a complete plan for it? If you need any help, post here.

I'll post the trojans soon, I've been really busy these past few days.

I'm not going to be doing it by myself, someone that is good at programming and has had a botnet before will be helping me with it.

I heard an IRC server where a lot of people usually idle at is a good place to host it too, is that a good idea?

v0x · #33 09-08-2009, 12:38 AM

Quote:

Originally Posted by slim-0v-derby

Russia is admittedly a bit hit or miss, it's well policed but there's a lot of corrupt people working in authorities and a lot of bulletproof hosts ar ein Russia.

Yea, ever since the RBN moved out of there, and several other groups followed (to China), Russia hasn't been looking too kindly on botnets, especially those run by people who aren't Russian. Probably last resort.

Quote:

Originally Posted by 5024L

I'm not going to be doing it by myself, someone that is good at programming and has had a botnet before will be helping me with it.

That's good. You're EXTREMELY lucky to have a mentor btw, thank him a ton.

Quote:

Originally Posted by 5024L

I heard an IRC server where a lot of people usually idle at is a good place to host it too, is that a good idea?

This is the LAST place you'd ever even think of running a botnet. NEVER run a botnet on a public IRC server, you'll get fucked faster than you can say "!login 1337-h4xx0r"

5024L · #34 09-08-2009, 12:40 AM

Quote:

Originally Posted by v0x

Yea, ever since the RBN moved out of there, and several other groups followed (to China), Russia hasn't been looking too kindly on botnets, especially those run by people who aren't Russian. Probably last resort.

That's good. You're EXTREMELY lucky to have a mentor btw, thank him a ton.

This is the LAST place you'd ever even think of running a botnet. NEVER run a botnet on a public IRC server, you'll get fucked faster than you can say "!login 1337-h4xx0r"

I know I am lucky to actually have a mentor.

So it is a 100% bad idea to host it on a public IRC channel?

v0x · #35 09-09-2009, 02:16 AM

Quote:

Originally Posted by 5024L

I know I am lucky to actually have a mentor.

So it is a 100% bad idea to host it on a public IRC channel?

Yup, correct on both statements.

Star Wars Fan · #36 09-11-2009, 10:13 PM

Quote:

Originally Posted by v0x

Yea, ever since the RBN moved out of there, and several other groups followed (to China), Russia hasn't been looking too kindly on botnets, especially those run by people who aren't Russian. Probably last resort.

What's the RBN? Also I didn't know China's censored internet was good for this-thought they'd be worse faggots re this.

v0x · #37 09-12-2009, 08:42 PM

Quote:

Originally Posted by Star Wars Fan

What's the RBN? Also I didn't know China's censored internet was good for this-thought they'd be worse faggots re this.

RBN = Russian Business Network. They're the biggest cybercrime group in the world, based out of Russia, hosted in China, and connected with the Russian Mafia and some top Russian political figures.

The Chinese government does not give one shit about cybercrime or spamming. Almost all the hosts in China have some sort of illegal operation going on their servers. This is mostly because China is only interested in controlling their own population. The people who rent the servers for illegal use are usually from other countries, like Russia or the US. Although China does have a strong hacker community, they aren't at the level of other countries in terms of creating gigantic botnets and using them only for cybercrime. They're more in the stage of using trojans and messing around. This is why China doesn't care

Edit: Trojans are coming extremely soon (within two hours), I know everyone will be very happy with the post

Snoopy · #38 09-12-2009, 08:47 PM

You forgot the most important tool of all: common sense.

v0x · #39 09-12-2009, 08:54 PM

Quote:

Originally Posted by Snoopy

You forgot the most important tool of all: common sense.

Lol, true. Everyone has a brain, but that doesn't mean that they have common sense.

Quote:

Originally Posted by Snoopy

Common sense in this case being mostly shutting the fuck up about your cybercrime dealings. The greatest of hackers, con artists, and cyber Gs are often caught thanks to their tongue.

This thread only about tools, not dealings. Bragging is the quickest way to get busted though.

Snoopy · #40 09-12-2009, 09:09 PM

Quote:

Originally Posted by v0x

Lol, true. Everyone has a brain, but that doesn't mean that they have common sense.

Common sense in this case being mostly shutting the fuck up about your cybercrime dealings. The greatest of hackers, con artists, and cyber Gs are often caught thanks to their tongue.

Register	Home	IRC Chat	FAQ	Members List
Social Groups
- View All Groups
- Your Group Messages
Calendar	Search	Today's Posts	Mark Forums Read