Use netstat to determine whether port 22 is listening. If not, follow Thorin's suggestion.

Easiest way my be to use meterpreter's priv escalation module.

Just a suggestion. Demonstrate the importance of using secure passwords or pass phrases that meet the typical security requirements, like length, alphanumeric with symbols, not reusing the same...

Try using your own proxy. For example, on another machine or virtual machine, setup 3proxy's http proxy server and make sure this machine has an active internet connection. Then on your backtrack...

Thanks for sharing this info. Has helped me also. :D

MITM attacks are generally done in a LAN evironment, not over a WAN.

Either you "blow the 6 grand", as you put it, or take the time to learn it (this can be years).

More details please. I quickly went through this book with no issues so i can assume that you may have done something wrong.

fatback will work on the block device, the sdb1 partition in your case, which is encrypted. Because everything here is encryption, fatback will be unable to properly parse the fat32 partition...

In addition to what daedalus1776 said, using the "last" command should show you a listing if the last logged on users and the duration they were logged in. If you can identify an unusal root login...

How does the program generating random giberish help you in brute-forcing a long password? Have you heard of the program crunch or how does your program extend the capabilities of crunch? I'm just...

Its an online only attack. If it was possible to turn this into an offline attack, it would've (or will) been done for obvious reasons.

Are you sure fgdump isn't in BT5r2? I'm pretty sure it is. ("/pentest/windows/...") i cant remember the rest and i dont have my BT machine with me to check. You can search for it this way, updatedb...

No it will not. See aircrack-ng for your solution.

Here's an idea. I'm not that experienced with kismet but if you can have it log to syslog or a file, you can use a tool like swatch to continuously "tail" a file looking for certain data. When it...

If i remember correctly there is a registry setting that determines whether a particular account is hidden at the login screen. I'm sure you can find out what this key is from goggle. Hope this helps.

Log into XP as a user with admin rights. Go into control panel -> Administrative tools -> Computer management. Look for "local users and groups" (or something similar). From here, everything should...

The reason why you might not be getting the credentials is because the form fields might not have been defined in the etter.fields file located at /usr/local/share/ettercap/ directory.

Of course. You have to configure it. Create a new, empty, scan policy and only add the plugin/test that you will like to perform. The "full scan" is one of the default scan policies that comes with...

Dennis00 beat me to it :) . Ettercap will spoof a certifacate for https on the gmail website. Once the victim browser accepts that certificate, ettercap should be able to parse the username and...

Just FYI, BT5r2 postgres sql server is called metasploit-postgres in the /etc/init.d directory. You can start it by typing,

Essentially, it will do the same thing, so you can proceed with the...

The code that you copied only shows variable declarations and what happens if a particular file cannot be opened/read. Nothing more. Perhaps you didn't copy the entire code branch that you intended...

Airodump will capture wifi frames from the air. For your purposes, you will definitely want to set a filter for a particular AP while capturing with airodump. If the access point is open (not...

Can you simplify your question? Im trying my best to understand exactly what you are asking.

I'm still not 100% sure if i understand what you are saying but maybe the problem is that you are lazy :) ? Are you sure you understand what the dissectors do?