Pen testing thread

post your 1337 hacking stories please

you first

You talk so much about programming, but you cant talk about hacking because you cant actually do anything. I run a hacked network of computers that I programmed to click on googles ads in my secret website. I even write my own viruses to make people get hacked into my network. I work at home and have a bunch of screens showing me what people on my network are doing on their screens. I can even set it so that i can see the code of their computers. can you guys do any of that? I dont think so. I bet you dont know where all the websites real hackers hang out are either? if you name them, I just might tell them that marshviperX sent you.

>im a master leet neet hucker
wow, you must be so proud
so tell me what do you have from looking at other people lives all day?
do you envy them you fat greasy virgin?
do you wish it was you?
you are truly pathetic and i recommend offing yourself, really it will be easier to just accept it

newfags gona newfag. It's an obvious pasta you moron.

>be 20
>be using my Thinkpad® at my local Starbucks®
>sit so that everyone can see how cool I'm about to be
>fire up my Kali® VM
>place the VMWare Workstation® window horizontally on one side
>command prompt on the other
>run tracert 8.8.8.8 in cmd
>google some netsh commands in iceweasle
>type those in too
>type tree C: after
>quietly exclaim "I'm in"
>nobody heard me
>nobody's even looking
>time to go shitpost on Sup Forums again

>Kali VM
>tracert
>tree C

Try again.

>get into some dudes facebook
>he cheats on gf
>tell gf

i changed yer fate gurl

someone penetration test me

*bends over*

i once hacked 127.0.0.1, the CIA's secret ip!
got ton of blueprints of top secret projects in experimental research state. Shit was so cash!
The IP is still active, so i didn't get caught.

I ported a custom recovery to my chinkphone. Felt l33t af

You sure show him, faggot. Don't forget to tip your fedora

>get to hotel
>free wifi
>nmap
>http servers on some ips
>it's the surveillance cameras
>default username/password
>stalk the cute girls working in the kitchen
I'm LITERALLY mr robot

THE DISTRO OR THE HAT SENPAI

BECAUSE I HAVE BOTH

>be on school computer in comp sci class.
>write script that opens and closes cd tray randomly.
>put in startup folder on several computers
>teacher cant figure out how to remove it.
get fukt

This shit is STILL going on?

>MarshviperZ !uKc.KnUlaI
>Z

fuck off imposter

Write script put on USB autoruns when inserted into a computer.

All it does is copy all the Firefox/chrome/whatever passwords people save into their browser.

jesus christ dude you're retarded

I have something similar but it copy the wifi passwords.

its easier just to ask

kek'd

I like to sniff other guy's backdoor and penetrate it

>>if that cd tray opens one more time

Actually kek'led, ty op

I dont pay for internet and I have two independent 10mbps connections I use daily.
Thanks reaver and thanks kali linux.

C-can I sniff your backdoor and penetrate your system, d-desu?

>shodan.io
>search 'default password'
>watch webcams from random Chinks halfway across the world

h a c k e r m a n

>Лopeм ипcyм дoлop cит aмeт, миним aeяye видиcce мea ид, вoцибyc пeтeнтиyм нo eoc, eт вeл цopпopa ceнcибyc. Ид мyнepe пepицyлa мeи, нaм ea хaбeмyc peпpeхeндyнт. Цoпиocae нoминaти yт дyo, ea вим бpyтe цoнceяyaт тинцидyнт. Bиpтyтe eypипидиc тхeoпхpacтyc дyo aд, ин eoc пepфeцтo cимилияye, ид ecce лyдyc aццyмcaн eaм. Cyммo минимyм хac тe, ayтeм цoнcyл хac ин, дyo цy ниcл лaтинe. Ayдиaм eяyидeм aдипиcци дyo eт, ceмпep цeтepo тхeoпхpacтyc цyм ин.

>Хoнecтaтиc интeллeгeбaт ecт eт, пpo вeлит aлтepa eт. Дeбeт peцтeяye eyм eт, eт eoc eпицypeи цoнcтитyaм. e, пeтeнтиyм цoнceяyaт cимилияye ceд.

>staying at a family friend's home in FL 7 years ago
>she doesn't have WiFi
>tons of WiFi APs around though
>one is using WEP
>use aircrack to get in after 10 minutes
>suddenly get disconnected half hour later
>use aircrack again
>someone changed the password
>still got back in
>continued to play UT2004 for the remainder of the day

>Have a rented server somewhere in Panama
>installed keylogger on everyone's computer that i know of
>it sends regular logs to the server
>i now know about the dirty shit they are doing
>pretty boring
>atleast i know their banking information

I leave it to you, to believe me.

>shodan.io
>IPcam
>admin admin
>Security cameras of malls and houses
H4cK 7h3 W0RlD

>public computer
>create some .bat files with bait names
>people believed it was a virus
>they called a computer engineer
>me laughing discreetly

jesus

>in 6th grade
>runescape is the absolute game
>computer class
>install keylogger
>hey bro want a free r2h, show me your stats real quick
>just log in for 10 seconds
>2-3 days later
>hes runescape account got "hacked"

>muck around with python nearing end of highschool
>write a script that just copies text documents over and over
>write another than appends the numbers 1 to some obscene number like 1 quadrillion to a text document
>run both at the same time and fill up the shared student network drive with text files, one nearing 200GB in size
>nobody could save or download anything for a week

>be me
>reverse engineer proprietary network protocol using a combination of packet sniffing, static and dynamic binary analysis techniques on the service
>manage to reliably leak some contents of memory to the client, allowing limited ASLR bypass
>build a ROP chain to allow execution of arbitrary shell commands on the server and load it into memory
>get shell on server in lab environment
>report bugs to vendor
>tfw still no bf

> Got bored
> Decided to see which of my friends are morons
> create shitty payload, even name it payload
> 18 / 29 fall for it
> in their phone from a shitty little file that does nothing
> start sending texts between them to see how long it takes them to figure it out
> no-one has guessed, it's been 3 weeks

Fucking idots man, how can they not know?

2 stories for ya
>be me
>staying at some shitty place for a longer period of time
>the outgoing connection is capped to 16Mbit/s downstream, and 200 people have to share that connection
>to avoid total clusterfuck, everyone needs to log in via a captive portal to get access, which is limited to 3GB/week
>I somehow figure out that after a client logs in, any packets with that MAC address have access
>spoof MAC address of unsuspecting iToddlers
>it werks

2nd one
>be me again
>read shit online about reverse shells
>get php reverse shell script
>friend has a private web based file hosting service on his paperweight
>look over his shoulder to see that the password for a standard account is 123
>upload php script
>by now he knows what I'm doing and is curiously watching
>nowwejustgottafigureoutwherehesavesit.phphphp
>get the path nearly right
>after a few minutes of failure he just tells me because he's tired of seeing me fuck up
>itworked.sh
>simple shell running as user www-data
>connect to the reverse shell, download and run an expect script to make the shell seem like a proper tty, switch to user pi with default password, switch to root with sudo su and no password
>configure ssh, being kind enough to make a backup of the old config
>only one outgoing port on his router, which is the web server
>set ssh to the same port
>install atd and set up an at job to start ssh after 5 mins and apache after 10 as fallback
>stop apache, which killed my shell
>ssh server didn't work
>apache also didn't work
>oshit.conf
>tell him "yeah I killed your server, run these commands to fix it"

nothing turns me on more than limited address space layout randomisation, can i wear an IOT chastity belt while you hack into it ?

depends how cute you are;
you might be wearing the belt for a while though since reversing stuff generally isn't a quick process...
IOT devices do have a pretty bad track record though I suppose.

...

>crack wifi pass of neighbors downstairs
>its literally 000000000
>use their wifi for a year and a half
>they never fucking know
>save a decent chunk of money

I've been doing this for the past 8 years. Why the fuck would you ever pay for internet?

Oh and I've installed ddwrt on neighbors routers so I could boost the signal

this is just what I needed today
thank you Sup Forumsods