Injecting RAT into my school system 02-05-2013, 06:48 PM
#1
My school have fairly fast internet, and I would love to add them as one of my zombies
My school have a really weak security, and they won't listen to me, i would love to perform a bit of Grey-hat hacking on them, to prove them wrong
------------------------------------------------------
Information i already know about their secuirty:
- You can bypass the local rights by forcing a shutdown then re-logging, giving you local admin but you still need to login with an admin acocunt to make admin changes (install/un-install)
- The machines boots over LAN
- They do not block the Secure Server
- The local computers use a old version of McAfee
- The servers are running windows
- The switch is not passworded ATAL
------------------------------------------------------
From what i know they do not shut-off their power or internet, as they host the website locally.
Would it be best to find a way to inject the RAT to the server that the computer boot the windows from? or to have a little arm computer running hooked up over Ethernet somewhere in school?
UPDATE #1:
Thanks for the reply's guys
I can log onto a computer where i perform the bug and gain local admin access, but still not modify anything on the servers, you need an admin account for that, but i do know a friend who has admin rights on his account, Due to the computers booting a fresh version of windows every time it boots, i would need to spread the RAT into the server that the computers boot from, and hide it somewhere in there itself, I can run stand-alone .exe's on the local computer, i will try putting an autorun onto a memory drive along with some other work, and see if i could get my teacher to plug it in, thanks for the help and i'll keep you all updated!
Feel free to post ideas/help!
My school have a really weak security, and they won't listen to me, i would love to perform a bit of Grey-hat hacking on them, to prove them wrong
------------------------------------------------------
Information i already know about their secuirty:
- You can bypass the local rights by forcing a shutdown then re-logging, giving you local admin but you still need to login with an admin acocunt to make admin changes (install/un-install)
- The machines boots over LAN
- They do not block the Secure Server
- The local computers use a old version of McAfee
- The servers are running windows
- The switch is not passworded ATAL
------------------------------------------------------
From what i know they do not shut-off their power or internet, as they host the website locally.
Would it be best to find a way to inject the RAT to the server that the computer boot the windows from? or to have a little arm computer running hooked up over Ethernet somewhere in school?
UPDATE #1:
Thanks for the reply's guys
I can log onto a computer where i perform the bug and gain local admin access, but still not modify anything on the servers, you need an admin account for that, but i do know a friend who has admin rights on his account, Due to the computers booting a fresh version of windows every time it boots, i would need to spread the RAT into the server that the computers boot from, and hide it somewhere in there itself, I can run stand-alone .exe's on the local computer, i will try putting an autorun onto a memory drive along with some other work, and see if i could get my teacher to plug it in, thanks for the help and i'll keep you all updated!Feel free to post ideas/help!
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)
![[Image: jWSyE88.png]](http://i.imgur.com/jWSyE88.png)