Here is the table of contents: 1. Servers & Security 2. Hacking Examples and Most Common Hacks 3. How to get your hacks noticed! ------------------------------------------------------------------------------ Servers & Security The most common servers you will see on the net are: Unix-Linux-and Windows NT. These are the most popular and well windows Nt speaks for itself! All website admins and webmasters want their site to be easy to maintance and they want to feel secure. Well I'll tell you straight off that no system is secure no matter what, here are some popular hacks in the past: NASA-CIA-FBI-ETC... Now I will explain how its done! Hacking In General and Advanced Ok the most common hacks are, some aren't hacks!, easy guessing passes-backdoors-carding-.htpasswd and .htaccess files-admin folders-and others Easy Guessing Passes: They are well easy passes that some users/newbies submit because its easy to remember for them, even some admins do this? Such passes and logins can include: Login: asdf Password: asdf Login: 123456 Password: 123456 Login: amateurs (name of site example: amateurs.com) Password: amateurs Login: bob (Account Holders Name) Password: bob Then there are backdoors: Backdoors are just unprotected folders under the site, example of this would be: Hard Drive----->Web Server Folder----->Pics----->Protected Folder (the foler with the .ht files in it!)--->Members Area. Can you guess what the backdorr is here? Its the pics directory, for those of you who don't know directory is just another word for folfer on your/a hard drive, duh! The pics folder is not password protected because it is not placed in a protected folder, but I could be wronf it doesn't have to be placed in a protected folder it just has to be protected! Carding: This is just too easy, carding is simple all you need is a card # either fake from a cc#, credit card # generator, or a real cc#, and a fake ip#. To get a fake cc# just go here: http://macmaniac.eythan.com/cc#/ But Of Course legally you can't use them but only use them as entertainment on your own hard drive...blah blah blah.... To get/have a fake IP# there are many ways: either go to: www.anonymizer.com or iproxy.com or login through a proxy server, its ok if you don't know what a proxy server there are other ways, or if your on a network get admin access and change your IP# then switch it back (I know this is possible on Windows NT), or get a prog like "fake ip now" this file is every where, I don't have it on my server yet but when I do it will be in the filez section too... .htaccess & .htpasswd: These files are in the protected folders or most of the time just the main protected folder, the first folder like members/ or secure/ or admin/ the .htaccess file just tells you alot of details about the users and where to find more info on them, ie: etc/ folder. You can hack these files, well just the .htpasswd file using a brute force hack You can probably find one in my filez section: http://macmaniac.eythan.com/filez.html And there you free passes, unlimited passes!!! Admin Folders & Pages: Admin folders hold all of the info to maintance from out of the office/home and are usually admin.html or admin.htm or admin.shtml it can be anything but when you find it your set for LIFE!!!! Its kinda hard to find these pages/folders and I haven't found any yet but some of my hacker/cracker friends have. Others: There are many other ways that hackers/crackers get passwords and it can be tricky from ""denial or service attacks" from writing your own program! My sources to this document are simple: aol-irc-hotline-newgroups-newleters-mailing lists-text files-testing progrs-programming courses-icq-hacker/cracker friends-and of course other sites! Thanks, MacManiac