Cheers dude

Cheers dudes,
my favourite part - the big red button in ezpwn :D awesome

I made a few minor changes to make a basic upgrade method:

You should already have swap so skip that part

After mounting your existing backtrack partition to /mnt/backtrack, copy any...

Thanks for the help guys I think this has pointed me in the right direction.

You learn something every day :)
Should do the trick

Man get ur ass movin you cant miss out on this :D

In my experiences 64 bit WEP can be done in as little as 10,000 ivs and 128 bit as little as 40,000 but a lot of the time its much higher. But if your just capturing data, and not injecting, then...

so you have your remote shell, and I presume that outbound port 80 is allowed? If so then it should be possible to start a atftpd server on port 80 and get the windows machine to dl from it. If port...

For a DOS attack, you would want to get the service version and OS info using a tool like nmap (e.g. nmap -sV -O <host>) then find a working exploit for that service (e.g. from milw0rm)

As an...

So what do you want?
To get around port blocking, if your trying a reverse connection from your windows box to your bt box, then you would want to use port 80 probably as its 99.9% of the time not...

In theory, just formatting your bt2 partition and installing bt3 afterwards would be fine. BUT, personally, I would make a backup of your master boot record, I've had too many bad experiences...

Couldn't you just leave airodump-ng running until you get home?
And you also asked your "friend" if you can do this? From what you wrote it sounds like you dont have permission.

Thanks for the reply,
I can manage to get app versions etc, and since I know the directory structure I would be able to get source code as well. Unfortunately though, my programming skills are...

Hi
I am doing a pen-test on one of my machines. I pretended I managed to get an unprivileged users password (e.g. from an sql injection attack) and im wondering now if its possible to get a remote...