.

hacking adware.

<<

iSmith

User avatar

Full Member
Full Member

Posts: 157

Joined: Sun Jan 20, 2008 12:01 pm

Post Wed Mar 12, 2008 9:35 am

hacking adware.

This hack was done in firefox. go to tools \ options.
ten go to the content tab, and next to the tick "load images automatically" press 'exceptions'. the block "ad.doubleclick.net". This will stop ad images, but not flash-based ads.
In my eyes, your operating system is as solid as swiss cheese.
<<

straylight

Newbie
Newbie

Posts: 1

Joined: Mon Mar 10, 2008 5:33 pm

Post Wed Mar 12, 2008 1:32 pm

Re: hacking adware.

For flash based ads....actually most ads...i would strongly suggest installing noscript.  Besides blocking annoying flash ads it will also block a whole slew of potentially nasty java script.
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 928

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Wed Mar 12, 2008 2:40 pm

Re: hacking adware.

vote for noscript seconded.

I'll have to keep the exceptions tip in mind for some 'specialist' uses (namely some possible office pranks ;) ) cheers iSmtih
<<

g00d_4sh

User avatar

Sr. Member
Sr. Member

Posts: 394

Joined: Tue Sep 18, 2007 1:50 pm

Location: Guayaquil, Ecuador

Post Wed Mar 12, 2008 5:49 pm

Re: hacking adware.

No script is cool.  I never really use firefox though.  I just use Opera all the time.  For office pranks... my favorite is to take  a screenshot of someones desktop, remove all their desktop icons... move their toolbar to the top of their screen/hide it.. and then apply the screenshot as a 'background'.  I've had people click on their desktop for half an hour.. or reboot their machine over and over trying to figure out what was wrong with their machine.
"Bad.. Good?  I'm the guy with the gun"
<<

eth3real

User avatar

Sr. Member
Sr. Member

Posts: 309

Joined: Wed Feb 27, 2008 10:35 am

Location: US

Post Wed Mar 12, 2008 10:28 pm

Re: hacking adware.

g00d_4sh wrote:No script is cool.  I never really use firefox though.  I just use Opera all the time.  For office pranks... my favorite is to take  a screenshot of someones desktop, remove all their desktop icons... move their toolbar to the top of their screen/hide it.. and then apply the screenshot as a 'background'.  I've had people click on their desktop for half an hour.. or reboot their machine over and over trying to figure out what was wrong with their machine.


That is hilarious! I'm going to have to try that.

The funniest thing I've managed to pull off was taking a Windows screenshot and setting it as the desktop on a Mac. Or the good old BSOD screensaver.

I also mostly use Opera, but I do use Firefox for the sites that require the most recent version of Flash. I will check out no script.
Put that in your pipe and grep it!
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 928

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Thu Mar 13, 2008 4:49 am

Re: hacking adware.

eth3real wrote:Or the good old BSOD screensaver.


Liked that one, my favourite which I've now lost, was a little VB app that mirrored the windows explorer window and had a pop-up asking if you wanted to delete the contents of the C:\ drive, regardless of user action it then showed a video of the drive being deleted before turning the screen blank ;)

A long 10seconds later it slowly typed "Thank God I'm just joking..."

Managed to get the school admins with that several times in my yoof ;D
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Mar 13, 2008 9:38 am

Re: hacking adware.

These are great. Sounds like a great new thread. Wink wink nod nod.

Don
CISSP, MCSE, CSTA, Security+ SME
<<

iSmith

User avatar

Full Member
Full Member

Posts: 157

Joined: Sun Jan 20, 2008 12:01 pm

Post Sat Mar 15, 2008 6:45 pm

Re: hacking adware.

g00d_4sh wrote:No script is cool.  I never really use firefox though.  I just use Opera all the time.  For office pranks... my favorite is to take  a screenshot of someones desktop, remove all their desktop icons... move their toolbar to the top of their screen/hide it.. and then apply the screenshot as a 'background'.  I've had people click on their desktop for half an hour.. or reboot their machine over and over trying to figure out what was wrong with their machine.

if they are using a ball mouse you can put tape inside.
In my eyes, your operating system is as solid as swiss cheese.
<<

Bogwitch

Jr. Member
Jr. Member

Posts: 51

Joined: Wed Aug 16, 2006 3:29 am

Post Sun Mar 16, 2008 5:02 pm

Re: hacking adware.

A bit convoluted, but here goes.
You'll have to cast your mind back several years.
I created a file called 'ver', just like the old MS-DOS command, it printed the version string for MS-DOS 6.22 when 'type ver' was issued, so 'type ver' was placed into the autoexec.
The file ALSO used ANSI commands to remap the 'S' and the 'D' keys, to swap them around. I also prised the keycaps off the keyboard for the 'S' and 'D' keys and swapped them so when the 'S' key was pressed, an 'S' was displayed and the same for the 'D' key.
To all intents and purposes, the system worked fine but the user was convinced he had forgotten the keyboard layout as usual typing produced very wrong results but if he concentrated on which keys he was tapping away at, all was well.
To add to the confusion, when Windows 3 was started, the keymappings reverted back to the original configuration as Windows bypassed the ANSI driver.
CISSP, C|EH, C|HFI
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 928

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Mon Mar 17, 2008 3:37 am

Re: hacking adware.

Bogwitch wrote:A bit convoluted,


but quite evil ;)
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 928

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Wed Mar 19, 2008 7:58 am

Re: hacking adware.

Just had this link from ThinkGeeks http://www.thinkgeek.com/gadgets/electronic/a11e/ and it reminded me of this thread. Basically it plugs in a free USB port and randomly sends fake keyboard and mouse input.

My first thought was, 'oohhhh cool prank' but thinking about it a bit more, I'm sure this could end up being nasty in many cases. Don't think I'd want to find someone had added this to my machine whilst I'm in config mode of a live Cisco device for example.

Has anyone done or seen pranks that have gone wrong in similar ways? It's all fun an games until someone loses their job...

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software