Author: Sky Ugh, who can be contacted at Ughster@gmail.com
Note: That these methods can be used on most networks, but I am focusing mostly on Colleges/schools, so the article makes several assumptions because of this. For example, most public colleges have windows based networks, so the tactics discussed in this article will be more useful if the target network is running a windows OS. Also this a N00b article. If you are a pro, you might as well pass this post. Digg this Post.
Warning: You can get into a lot of trouble by messing around on your college computers. In no way do I suggest you use the information below to actually try and hack into your college. This article is just to demonstrate how it would be done and what would be possible if you did manage to accomplish the task.
The main goal with any of the methods listed below is to obtain access to an account with suffecient network privilages, and it’s all uphill from there. To be clear, there is a very big difference between a network administrator, and a local administrator. A local administrator is only an administrator on one computer, and can not access other computers over the network. This is virtually useless unless you just want to mess with files on that paticular hard drive. On the other hand, a network administrator has access to all the other computers linked to the network, amoung other things.
Useful Tricks
There are a few tricks that may help you get past some of the college security features and restrictions along the way.
First off, one of the most annoying things that colleges tend to do is use an internet filter that blocks sites it shouldnt. The first way i know to get around that is to use a proxy, which is generally pretty effective.
http://www.browseatwork.com
http://www.proxify.com
http://www.novalok.net
Those are a few easily accessible web proxies. If they are blocked, you can try doing a google search for “cgi proxy” or “php proxy” to find one that works, or, alternatively you can also use googles “cache” feature to get into sites which are normally blocked, however this does limit your interaction with them.
I also suggest you take a look at a previous post on BotHack explaining how Your Freedom can help you Bypass Proxies.
I have also read that if you use the command prompt to ping a site using the “ping www.website.com” command to get its IP, that putting ‘http://”websitesip”‘ in the address bar will get around the filter.
Speaking of the command prompt, what happens if your college has disabled the command prompt? First off, make sure its disabled. Go to Start>Run then type cmd, if that’s disabled try the same thing except type command. If for some reason run is disabled, open the task manager by pressing Ctrl+Alt+Delete. Once it’s open click on “File>New task(run)”. If your colleges gone as far as to disable the task manager, there are programs which mimic the task manager that you can download.
Anyhow, so lets say none of the above methods worked. Don’t fret, we can just make a new command prompt. Open up notepad and type in this:
@echo off
command
@echo on
Save it as a .bat file, then open it, and you should have a functioning command prompt.
Sometimes network administrators get really paranoid and decide to disable primative functions, like the start menu, or the ability to right click on things and move icons. Sometimes pressing alt+enter can unlock the start menu. In the event that the network administrator has disabled the ability to save files onto the C drive, i would suggest trying to bring a floppy disk or a flash drive to college, and seeing if you can save files on there.
Anyway, onto the actual part where you hack into your college.
Method One: Command prompt
Most of the articles I’ve read that concern this topic involve using the command prompt and batch files to add/delete/change the privilages of the users on a computer.
In the command prompt you can use this command to create users on a computer:
net user usernamehere passwordhere /ADD
This command can be used to change the privilages of a specific user.
net localgroup administrators usernamehere /ADD
Wow, thats pretty neat isn’t it, you’ll be an admin at your college in a matter of seconds.
Too bad it wont work on any network with an admin who knows how to create acocunts with differnt privilages. Unless you already have access to a privilaged account, or your college is REALLY retarded with computers, this method is not for you.
About the only useful thing you can do with this method on a restricted account is use this command to message other users.
net send domainhere userhere(* for all users) “message here”
And that still isn’t very useful, although it might be a good way to pull a prank on a computer illiterate friend.
Method Two: The Network
This method is the one i have been most successful with, and while a network administrator who really has his act together may have a completely full proof network, most don’t.
This tactic consists of browsing the shared files of all the computers on a network. Most of the colleges that I’ve attended have neglected to put restrictions on the majority of their shared folders, and you can generally find some very interesting files using this method.
First of all, you need to find the list of all the computers on the network. Generally spekaing, this is pretty easy, however if the computers are really secure it might be a bit more difficult.
On most networks, it will be as easy as following this path:
My Network Places > Entire Network > Microsoft Windows Network
This should bring you to a folder that has a list of differnt work groups, at least one of which should contain the majority of the colleges computers. Getting to the shared folder on a computer should be as simple as clicking on the computer, or typing computername in the address bar.
If for some reason your college has these functions disabled, go to the command prompt and type “ipconfig/all” This should display your IP as well as some other information, such as the gateway IP. Type iphere in the address bar and it will access the computers shared folder. play with the last number in the address by changing its value to get into other computers shared folders. The gateway IP has some interesting things on it sometimes as well. in some cases, the gateway IP will be the address of the colleges router, in which case typing http://gatewayiphere may allow you to access and change the routers settings.
Most colleges name their computers apropriately, either by room number, department, section of building, or something to that extent. Most of the time there will also be a few computers that dont follow the general pattern of names. These computers generally hold some importance, and are often major servers.
Anyhow, for now just browse the shared folders and see what you can find. Check teachers computers for test answers. Check principals and counsellers computers for student databases, or locker information.
Explore every folder you can, sometimes you’ll get lucky. At one of the colleges i attended, the network administrator left a copy of his “my documents” folder on a computer named “test server”, and it was accessible to anyone. Within that folder he had various spreadsheets containing lists of staff passwords, as well as the master password to their copy of VNC (a program that lets you remotely control desktops) that they had installed on all of the colleges computers.
Method Three: Shoulder Surfing & Social Engineering
This is the method that requires the least computer literacy. You can either attempt to watch someone who has a privilaged account type in their password, and if you have a good enough eye you might be able to figure it out. Alternatively you can try to get someone with a privilaged account to trust you with their password.
Method Five: Keyloggers
If the above methods fail, you can try to install a keylogger on a machine at the college to obtain and privilaged login. However, any college running a decent fire wall or virus scanner will be able to render your keylogger useless.
However, if you have the money to blow, you can invest in a hardware keylogger, which you can physicaly attatch to the computer to steal peoples passwords.
Method Six: Remote Hacking
So, lets be honest, the previous methods barely qualify as hacking, but this method involves hacking into their servers from your own computer.
If your concerned about getting in trouble, I would definately not reccomend this method, as it’s not exactly discreet.
Go to your colleges website, if you dont know it, you should be able to find it by googling your colleges name. Now then, every college is going to have an E-mail system of some sort. Most of the time, every teacher and person of importance will have an E-mail account with the college. You’ll have to figure out how your college formats its employee’s E-mail log-ons. For example, at my old college, if a teacher was named John Smith, his E-mail would be jsmith@mycollege.org, and all the other teachers would have an E-mail address that followed that rule.
Now then, use a port scanner such as nmap to scan your colleges website for a port using POP3, or some other type of mail service. At this point its just a matter of getting ahold of a brute forcing program such as Brutus, and assulting the privilaged users E-mail account. Chances are his/her E-mail password will work on his/her’s computer log-on as well.
Using Your Privilaged log-on
Ok, hopefuly one of the above methods worked, now the question is, what can we do with our privilaged log-on. Hopefully your log-on is a network administrator, if not you should continue trying to get ahold of one.
First off, we can browse all the computers on the network, except it isn’t like before where we can just view the shared folders, now we can check out their C drive, read their personal documents, or delete them if we want.
To get to the C drive of a computer on your network, you enter computernamec$ in the address bar. If you have a privilaged log-on and that dosnt work, try replacing c$ with admin$, this will put you in the windows folder.
So now you most likely have access to all your teachers tests, all the confidential information the counsellers keep, and all the discipline records and locker information the principals keep. You’ve got alot of power in your hands at this point, for example, you could plant porn on a teachers computer and get them fired, or completely destroy a teacher’s lesson plans. If you know the main server the college uses, you might be able to get in and edit the colleges website, or maybe get rid of that pesky internet filter. Find the computer with all the year book stuff and edit the pictures. Send E-mails to teachers under the principals name. Your in complete control.
The best part is that colleges utilize more and more technology every year, most colleges these days have online grade books. If you use your privilaged login to get into that, you can probably change grades, attendance, seating charts, and various other things. Just use your imagination.
Not Getting Caught
If you used method six to obtain passwords, your on your own, as brute forcing is a very obvious method, and your liable to get caught if they find out. IP addresses are easily traced.
Now then, that aside, there are a few important things you should do, or rather, not do, to avoid getting caught.
First off, its not a good idea to tell alot of people about your abilities. I know it’s in human nature to boast, but the more people who know, the easier it is to get caught. If you go around telling everyone you can change grades and such, before you know it random people will be asking you for favors.
Secondly, its important to remember that alot of things on the computer are traceable. For example, every time you open a file on a computer, it can log the account that did it, and at what time, and possibly from what computer. If you pull a dramatic stunt that attracts attention to your colleges lack of secuirty, you might get found out.
Lastly, if your doing mallicious things on the colleges computer, don’t be stupid, make sure a teacher isn’t watching.
Related posts:
Blog
OMG u have only worked that out i told you that u prick
fucking hell
dip shit
ok sorry for the 2 messages but i have found a way to get rm tutor on your computer without the teacher nowing!!
1. logon on to computer
2. when everthing has finished loading pull out the network plug also called the internet plug
3. at the bottom screen ure see a funny icon and you click on that and go on to firewall
4. go to exceptions and look for rm tutor and open that up and look for t he shodtcut for that program.
4.go on to my documents and click on shortcut and then paste that address in and then next and there you have rm tutor
thevadiya
nice information.. thank you very much
hi,
i have a friend who wants to pay someone to go in and change her grade at a university. she doesn’t want to try it herself, can she pay people to do this for her? and if so how much?
hello again hackers, happy hacking. Welcome to my how to hack your school’s computer system!!! lol sorry about me going on but i am here to help.
today i hacked my school with a linux (backtrack) because it has network applications and i go into rm tutor 3 lol. and i stole it and il give it away “FREE” lol
and i annoyed some ppl blocked there screen and blocked there internet lol
i got a teacher and when he typed something in to google i pressed lette “a” {eq toterly random lol
and he got pissed off
CRASH-OVERRIDE
YH IL DO IT GIVE ME HER UNI WEBSITE
AND HER NAME
hi….
I need some help…. my sister studyin in one college and she got problem with the school teacher, lecturer kind of hate her so much… i want to know how to check my sister grade and attended in class for that subject…. thanks
i use www.zacc.info very fast and professional
www.glype.co.cc is not block by any firewall for now
Enjoy myspace lol xD
I don’t know what’s funnier, the teenager who wrote this, or the people who believe any of what he wrote would actually work effectively.
I use www.fishandchips.co.cc at school. It’s works… for now xD
Currently I use http://www.6feetunder.co.cc
Don’t know how long it will last but my school will block this for sure… 
Anyway, have a great summer everyone!
hi guis thanks! this post
i will try in my host,
=============================
what do u think go SEO here
http://admad-z.blogspot.com
www.caad.info
www.kaar.info
very fast and i can actually login and sometimes watch videos as well via these proxies
I use www.wiredtree.co.cc at school. It’s works… for now
Hey Crash Override, can you hack into my college and change a few grades for me?
right il need info about the school and if you go onto youtube and type in police512 and ur have some hackin videos that i made for hacking into school. if u get some idea then u can try but il give you some tips because i have some other ideas that i want to try out first before i make another video.
happy hacking
Hi i m a college student plz help us to how i know the administrator password. my colleges uses the WINNT1 server. and he can access the all the users network and read and write to all files of everyone users. but i can not access the teachers account. how can access yhe every teachers account
Hi i m a college student plz help us to how i know the administrator password. my colleges uses the WINNT1 server. and he can access the all the users network and read and write to all files of everyone users. but i can not access the teachers account. how can access the every teachers account
OMG I just failed 3 course and I am in college too! My parents are going to ****ing kill me, the methods in this article doesn’t seem to work when I tried to access the teacher file it ask for my user name and password, anyone here has anything that works 100%? thaxx
Crash – I go to UPenn. Pretty intense stuff but i need to change these grades. So I’ll check out ur videos first.
Can someone help me hax a grade or two? I am in college and ready ready need it! and for people who say go study, I actually do petty good in college, but my college has a rule that if you absent for 2 times, you are failing, how stupid is that? I am broke though, so the most I’ll pay would be 100$ come on help a brother out! anyone who want to help, my email is
flyingdeus@gmail.com
Crash – I’m a total noob so I just want you to do this for me. Post your email so I can send you my info.
hi sorry i havent been on for such a long time. the good thing is i can help u, look at my videos the best way i found is to boot linux from usb (backtrack) and take the sam files (where windows passwords are stored) also look in documents and settings and there will be a file called credentails that is there password. im a bit busy but check out my youtube police512
www.bypassfilter.co.cc works for me
Try unblock filter with that… 
Okay Crash, I’ve got the ubuntu on my usb. Now how do I take the sam files? What does that mean?
Three approaches: 1. Using the intra-net of the institution (wireless) to penetrate the security from inside. 2. Use the internet to penetrate externally. 3. Use yourself.
The Goal: It’s all about the grades database hacking.
Use a mobile/wireless, get on location, use netinfo – nmap – netcat, obtain as much information about their systems as possible. Find what services are running on what systems, penetrate a system by using a known or newly engineered exploit for one of the services on a machine. Once on the network using that system, now you look for a system that runs a database because the grade database will not be accessible directly from a wireless method. Unless they’re completely retarded! Use a number of different database interface software, perhaps if it was mysql (default port 3306), you might use Navicat for proper authentication. This would require normal user authentication by login and password and possibly only from a specific address. So, we will want to focus on obtaining user names and passwords of systems near this database. Scan them, rinse & repeat. Understand that it is not as simple as this.
most institutions have a capable IT department and dictate proper security measures.
If your college is new or hasn’t had their “network security nightmare” cherry popped yet, they may be lacking in that department.
And please people, delete or edit the logs! You want to be a ghost. If there is an intrusion detection system, you may or may not know what to do. DO YOUR RESEARCH!
You’ll want to know where log files are stored and how to access them as well.
The first choice should be to edit them to point to a normally authenticated system that accessed such documents. Any log “entry” that was recorded that made a “change” to a grade needs to be deleted or changed to a “viewed” log entry.
Learn the proper syntax for the systems they use! Most of this is research!
Hacking isn’t a walk in the park, it’s a night in a library.
An entirely more challenging method is physically obtaining access to the computers that govern the grade database. Physical security is an entirely different field all together. Night is the best time, unless it’s night school. And you need to know how telephone circuits work, alarm systems, fail-safe alarm sirens, motion detectors, and a multitude of other physical security detection methods. Lock-picking is the bread and butter of the espionage trade. Learn it and keep using it. Challenge yourself. If I have physical access to a machine it’s just straight up owned! This is tricky because it may require an accomplice to either run distractions or lookout. This is the perfect and most optimally clean method of hacking, there is no trace of access left after the fact. However, the chances and severity of getting caught is ten fold. You could bypass all these security measures by doing it during operational hours, but then you have to deal with the human variables walking around everywhere.
DO NOT GET CAUGHT. Physical access has to be planned out, but be willing to change it on a whim if the situation changes or variables unaccounted for interfere.
Negotiation is also key, no mater what personnel you encounter keep polite, bribery is always an option, if this fails, blackmail will usually prevail. Good old fashioned fear of the unknown can be a tool as well. Though, of course, keep it non-violent.
-pingray
these hacks are pretty cool but i am only a ametuer hacker
roflmao you call yourself hackers
www.zooe.info i use this to get on myspace, bebo, facebook etc at work and school
u dumb fuck u dont no anything rather not say, i told people about using linux on a memory stick, not you. And thanks to me people are getting into school system. i made videos about it on youtube but i delete them. i aid use backtrack because its made for hacking. Once u boot it up make sure u pic a distro that can access the hard drive and go to c:\windows\system32\config and take a file called “sam” not the “sam backup” file and also go to c:\documents and settings\administrator\local config\ something like that and look for a file called “credintals” that holds the passwords for that user.
THIS IS BY CRASH I TOLD PPL ABOUT BOOTING UP LINUX! DONT SAY IT WAS YOU!!!
no download, no register, no spyware and 100% free!! bypass web filter with http://www.orangezone.co.cc lay low and don’t share with your friends!!
remember to delete browser temporary files too.
p/s: don’t get caught by the teacher will ya
One way i found is get a portable ftp client, like filezilla. When i opens, go back a few directory’s and you should see a list of all students logged in. In my school you can’t onen them, but you might.
BTW,
Great article!
I need personal help with brutus if you can offer help PLEASE email me at ahidhiahimhi@gmail.com
greatly appreciated or if someone wants to email to ask on how to work we can at least discus!!
fuk sake i got kicked out of school cause i sent messages using (netsend *fuk school) i thought it will go to person i want. so when you do it becarful everyone
LOL net send is very dangerous thing if you dunno what your doin
You can use ‘Cain and Abel’ from oxid.it if you are on your school’s network to do some Arp Poision Routing. This aquires their password hashes. Then you can crack these. It also can crack WEP networks.
At our school, most of the teacher’s passwords were still ‘password’, so as you might expect we exploited the shit out of it – and sadly, they’ve put tighter restrictions on the teacher’s accounts. Before the extra restriction we were playing Quake 3 and what not, was pretty good.
Hi, this is PH03N1X ALSO KNOWN AS R@$H-0V3RR1DE!!!
i have had people asking me about hacking into there schools-colleges computer system!, here are some of my favourite tricks that i have used! and worked
1. Well this is one that i use the most, wht u have to do is find a computer that can boot from usb (which is what i use) and i usally boot a linux distribution called backtrack. (I WAS THE ONE WHO STARTED THIS OFF BOOTING FROM USB!) first i would get to know backtrack at home by booting it up and getting to know it, use this website for videos eq: www.offensive-security.com. Wen u get to kow it then you can go to a program on there called wireshark or ettercap, and you have to get the computers ip address which u want to sniff. eq a teachers computer.. you can do this by using a scanner like gfi languard and sniff that computers network name to get ip address, then you can sniff it and get passwords when that person login, but target a high teacher like head of ict or someone like that due to them being a “ADVANCED TEACHER”
!.
2. DISTRACTION. i have done this a few times and it works. when i was at school i used to target our ict teacher cuz she was a advanced admin and she had a lot of access to rm management but know i am in college. She used to always login to rm management and rm tutor so i did was we had to do a eportfolio basically a website and used to try it out on her computer, and what i did was use her usb to copy and goto her computer and she let us try it. then i gt my mate to pertend to get her to help him (this is fake) and act stupid to keep her there for as long as possible, while i used to go on to rm management, but i fotgot to say b4 i used to used to do a active directory search for teachers that i know have left my school and pupils in my year and i rote them down on my hand so i can change there password and user status to advanced, (but i didnt know was that for access to rm management they need to be in the teachers user group eq: mine year is cerion and teachers are there name eq: d.smith if i changed a pupils like cerion15 that wouldnt have access to rm management!) so i changed teachers that i no have left, and now since ive left i still have access to rm management
3. This is tricky and u have to have a good eye for, is watching ppl put there passwords in, if u can break a computer windows which isnt hard lol, by turning the computer on and when it goes to that loading bar turn off at wall a couple of times and that will destroy windows, u have to wait and hang around for tech to fix computers and type in password but this doesent always work!!!
4. I have done this and it worked for me!> what u do is if you are in computer room first lesson of the day and u have to turn on computers, well pull out the network plug or etternet plug or w.e u call it but it is really the etthernet plug., and turn on the computer and wait for it to go to the login screen and put back in and type ur login details and pull out st8 away!. then wait a couple of mins and put back in and if u did it right then u should c rm management on ur screen, (u mite have to try a couple of times like i did!) and u get access to everything.
5. HACKING LOCAL COMPUTER!. There are a couple of ways 1. booting linux backtrack ror slax or ubuntu or what u want and on the desktop goto the HDD and goto this place c:\windows\system32\config and find a file called SAM, copy this file to a usb and take home and use a program called saminside to crack it or another program and u can get the local admin password and ibet they keep all passwords the same!!!. or the file can be found in c:\windows\system32\repair!
2. try guessing the username and password… on rm login screen on the bottom right hand corner there is the login computer name type that in (only the computer name) and either \administrator and try guessing the password like this, my schools defualt password is password1
so try;
password
password1
guest
<schoolsname
I hope these work for you!!!.
2.
hey guys check out this new proxy http://www.fitnessgym.co.cc
it’s works for me here!!