Tutorials

W A R N I N G

Networking and Network Security

IRC

* IRC Warfare Tutorial - Read the article HERE! Ever wanted to know how those lamers keep taking over your channel and/or kicking you off IRC? Learn to protect yourself here! WARNING: an attached file, flood.exe, which is an example program to many script-kiddie IRC flooders out there, is infected with a trojan. DO NOT run it!

*
Eggdrop Bots Tutorial (version 1.0) - learn how to set up your own Eggdrop bot on IRC, and how to send commands to it, make it execute automated processes or commands when certain credentials are met etc'.

*
The proper way to fserv - explains what fserv is, how it works, proper behavior, how to set up your own fserv etc'.

* Sendmail Tutorial (version 2.6) - find out why Sendmail is called 'the buggiest daemon on earth', and find out what a daemon is anyway. Tons of ways to crack into big computers as well as PCs unleashed, including, of course, information on how to block these holes. Oh, and you'll also learn how to send fake mails by easily fooling Sendmail or other SMTP daemons!

*
FTP Tutorial (version 2.2) - covers FTP hacking, FTP commands, what the hell is FTP and tons of tips and tricks (not all FTP-related) in the newbies corner.

*
RM Networks Tutorial (version 1.22) - yes, RM Networks. You know, those local networks, not Internet networks... RM Networks are so stupid that they rely on the fact that the user is even dumber. Stumbled across one in your school/university/college/working place? Want maximum priviledges on it? Then try this tutorial.

*
Ad Blocking Tutorial (version 1.8) - are you tired of seeing stupid commercials and popups popping on your screen and chewing up your bandwidth? Then read this!.

*
Various Sendmail Holes (version 1.0) - the most known Sendmail holes. Just to show you what we mean by "The Buggiest Daemon on Earth".

*
Anonymity Tutorial (version 1.5) - tired of people getting your IP over ICQ or IRC? Tired of website owners knowing EVERYTHING about you? Tired of people tracing you by your Email address? Read this one and learn how to anonymize yourself!

*
Proxy/WinGate/SOCKS Tutorial (version 1.0) - don't know what a Proxy is? Don't know what a WinGate is? Don't know what a SOCKS firewall is? Wanna learn how to increase your anonymity by using them to "bounce" your connection? Then read this one.

*
Info Gathering Tutorial (version 1.8) - want to find private information about people and scare them like hell? Then read this tutorial, you'll just love it!

*
ICQ Security (version 1.9 NEW) - learn about ICQ's security flaws, how to exploit them and how to protect yourself from malicious users who use these flaws against you. Stealing passwords, reading someone's entire hard drive, flooding, spoofing, DoSsing, utilizing the ICQ protocol and what not. It even teaches how to crack the ICQ password by yourself.

*
Mailing Lists Security (version 1.0) - how to improve your mailing list's security, how to hack other mailing lists and what is a mailing list anyway (plus different kinds of mailing lists, where and how to get them etc').

*
Sendmail and Beyond: Kewl Tips and Tricks (version 1.0) - another tutorial about SMTP protocol.

*
Exploits Explained II: The #2,000 "Bug" (version 1.1) - learn about the #2,000 "bug" in IRC, which in certain cases let's you screw up reeeeal bad with people and channels, and play cool jokes on people.

*
IP Masquerading Tutorial (version 1.1) - learn what IP Masquerading is, and what is it good for anyway.

*
Speeding Up Your Internet Connection Using DNS Caching Under Unix and Windows (version 1.0) - what the name says...

*
Trojans (version 1.0) - what are trojans (covers both Unix trojans and Windows trojans)? Different types of trojans, how to detect and defeat them etc'.

*
The POP Protocol (version 1.0) - learn more on how Email works. Learn to check your Email by hand from anywhere around the world without the need of any programs at all besides telnet. Learn how to delete mailbombs in seconds. Utilize the POP3 protocol by yourself with this tutorial.

*
Domain Hijacking (version 1.0) - check out this one to learn how to hijack domain names. By the time you read this, it might already be outdated, but what the heck, read it anyway.

*
Uploading/Downloading Files From/To Usenet Networks (version 1.0) - do it by yourself, instead of using a program, and learn just a bit more about MIME encoding.

*
HTTP Torn Apart - the inner workings of the http protocol, showing you what your browser does automatically, giving you greater control over what you send out and take in from the world.

*
Virus/Trojan - how the work and how to make them work ;)

*
Cracking File and Print Sharing (version 1.3) - learn about this method to crack into Windows box that has file and print sharing enabled (even if the shares are password-protected), how to protect yourself against it, and how to secure your shares (if you have any).

*
Net Tools Explained (version 2.0) - a complete revamp of the tutorial which shows how windoze can still be useful, this is an absolutely great tutorial for the newbie covering most aspects of using free tools as reconnaissance and hacking. There is also a version with notes from R a v e N here.

*
Firewalls Torn Apart (version 1.0) - shows you what firewalls are and their weaknesses, includes some information about the TCP/IP stack.

*
The Structure of an IP Address (version 1.0) - explains what's behind the numbers in an IP address, and some interesting or special IP ranges that you should know about.

*
DoS Attacks Tutorial - we've wanted to do a tutorial about DoS attacks, but then we've found this CERT paper, so we've decided that instead we should rather put it up in here and do some updates to it later on (mostly information about new attacks and making things easier to understand for newbies). Anyway we recommend reading the TCP/IP tutorial first (it's the next one on the list).

*
TCP/IP for Newbies (version 1.1) - an excellent beginner's guide on the basics of TCP/IP and a bit more. Great for every newbie, but also good for more advanced people, to check and clarify some things, see if you missed anything etc'.

*
Hacking MailMachine.cgi (version 1.0) - learn how to exploit some severe holes in Mike's mailmachine.cgi script. A great way to get the feeling of finding holes within programs by experimenting and exploring.

*
HTTP-Based Authentication (version 1.0) - learn what HTTP-based authentication is all about, what kind of encryption is used in it's password files and how to break it.

*
Exploiting Cisco Systems (version 1.0) - mess with those nifty routers, and learn a few lessons about the Internet itself. Worth reading even if you're not interested in routers (although breaking into one could be VEEERY interesting). Everything that this guide explains can be done even from Windows.

*
Kerberos Torn Apart (version 1.0) - just what the name says! A newbie-friendly guide about this excellent way to improve network security.

*
Input Validation Attacks (version 1.0) - learn what the name means, how such attacks work, how they can be carried out and exploited and how to prevent such attacks.

*
Mail Bombing and List Linking (version 1.0) - in contradiction with other "tutorials" about this subject that you might have seen around, this one is a professional article, and it also lists a few countermeasures against such attacks.

*
Gathering Info on a Host: The Essential Ingredient for getting root / admin (version 1.0) - Covers the first step in a successful attack: gathering information about your target. "Know Your Enemy".

*
Buffer Overflows for Newbies (version 1.0) - explains what a buffer overflow is to the average newbie.

*
Default Passwords (version 1.0) - a short tutorial and a very long list of default passwords. Make sure you're not using any of those!

*
Using Netstat to Get IPs (version 1.0) - a guide dedicated to all those people who have been asking how to get someone's IP over ICQ without the cracks (programs such as isoaq).

*
Closing open holes (version 1.0) - tutorial about netstat, how to detect and defend from attacks - firewalls...

*
Getting geographical Information using an IP Address (version 1.0) - no need for explanation

*
Securing IGS Cisco Routers (version 1.01) - How to obtain local and remote information about an IGS Cisco Router.

*
The OSI Model (version 1.02) Indepth analysis of the Open System Interconnection (OSI) model. Everything you need to know about the OSI Model is found in this tutorial.

*
Altering ARP Tables (Version 1.0) This paper is dedicated to ARP tables and how to alter them remotely. The paper also describes a couple of implemantations of ARP poisoning in a bridge based segment and a couple of ways to protect yourself.

Unix / Linux

Windows (95, 98, 2,000 and NT 4.0 and 5.0)

Local Security

Using Tools

Cracking

Phreaking

Encryption

Hardware

Novell

History

Humor

Translated Tutorials

Misc


*
Beginners Guide to Linux + Easy Installation Guide (version 1.1) - a tutorial dedicated to all these people who want to install a relatively simple Linux distribution easily and painlessly.

*
Basic Local/Remote Unix Security (version 1.2) - change default configurations, basic packet filtering, how to secure your system's networking services (or completely remove them or some of them, in case you don't need them, in order to increate your computer's security), how to use, how to avoid trojans, what are sniffers, how to maintain local security between different users in your system (if you're not the only one using this system, whether it's locally or remotely), some stuff about SSH, how to protect yourself against computer viruses under the Unix system, what are security scanners and how to use them, why you should encrypt your important data and how etc'. The ultimate tutorial for a Unix newbie or semi-newbie who is interested in computer security and/or networking.

*
The Shell Accounts Tutorial (version 1.0) - teaches a newbie everything he needs to know about getting a shell account and it's limitations.

*
The Definitive Guide for Linux Gamers (version 1.0) - this guide will teach all those Linux users that simply feel bored while on Linux due to the lack of games where to go and what to do to get all of their favorite games running on Linux.

*
Tweaking Your Hard Drive (version 1.0) - this will make your hard drive go A LOT faster!

* LAG (Linux Administrators Guide) - just what the name says. Excellent for Linux newbies who are concerned about security. Episode one is
here, and here is a log from an IRC lecture that was held on the same topic by Kript0n, who also happens to be the writer of the LAG series. Here is a version of the same paper by Elad, which has changed a few things to make it Unix-compatible (it's not just a Linux guide anymore). Episode two will be released shortly, and Here is episode two. LAG's homepage - void.box.sk.

*
Winmodems (version 1.0) - what are Winmodems, and why do they suck so much? And also, how do I get online with a Winmodem from Linux/Unix?

*
Linux networking Tutorial - This is a follow up of the great Linux networking Lecture that took place at our irc channel. It covers in detail setting up a linux network at home. Its also covers many aspects of linux networking and lan's, this tutorial is a must read!

*
The /etc/ guide - This tutorial is written to aid newbies learn more about files in their /etc/ directory. It explains what each file in the /etc/ dir does.

*
Tcp Wrappers Disclosed - So you want to harden your linux security? Have you realized ipchains is not enough, then read how to implement stronger security with tcpwrappers. * Windows Registry Tutorial (version 1.0) - learn more about the Windows registry. How does it work, what does it do and what happened to the old .ini files?

*
Yet Another Windows Registry Tutorial (version 1.1) - this one contains some information that was not included in the previous one. We really like writing those Windows registry tutorials, do we? :-)

*
Cracking File and Print Sharing (version 1.3) - learn about this method to crack into Windows box that has file and print sharing on (even if the shares are password-protected), how to protect yourself against it, and how to secure your shares (if you have any).

*
Cryptic Windows Errors Explained (version 1.0) - just what the name says.

*
Windows 95/98 Local Hacking - teaches you all you ever wanted to know about getting to the registry, command prompt, display settings, control panel etc' etc' in a restricted Windows 95/98 environment.

*
Untold Windows Secrets (version 1.0) - some cool things you can do with Windows.

*
Exploiting The IPC Share (version 1.0) - a continuation to the file and print sharing tutorial. Fun!!

*
Is Foolproof Really Foolproof? (version 1.0) - how foolproof is the local security program 'Foolproof'? Find out here.

*
More Ways to Defeat Foolproof (version 1.0) - just what the name says.

*
Installing Windows 2,000 (version 1.0) - just what the name says!

*
Getting More Control Over The Win9x / DOS 7.x Startup (version 1.0) - comes with samples. Harmless fun, and it makes your winbox start up faster too!

*
Fun With Debug (version 1.0) - learn more about debug, a very useful DOS program.* Standalone Security (this tutorials wasn't written by a BSRF member. Read about what exactly happened here).

*
How To Recover Deleted Files (version 1.0) - a spontaneous IRC lecture that I held. It explains how to recover files that were deleted by reading raw data from your hard drive, and of course, explains how to overcome this and completely wipe out a file.
*
Using John the Ripper to Crack Unix Passwords (version 1.1) - an easy guide to using John the Ripper to crack Unix password files. It also explains how password files work, and what are shadowed password files.

*
Using FZC to Crack Password-Protected Zip Files (version 1.0) - an easy guide to using FZC to crack those annoying password-protected zip files. * Cracking, Part I (version 1.0) - learn how to crack programs by yourself, and what the hell cracking means anyway.

*
Cracking, Part II (version 1.0) - make your first steps in cracking, while cracking an example program!

*
Cracking Opera 3.61 (version 1.0) - learn more about cracking through the process of cracking the Opera browser (version 3.61).

*
Hex Editing Explorer.exe (version 1.0) - mess around with Windows' Interface program!

*
Different Numbers Systems (version 2.0) - octal? Binary? Hex? And how to convert between them.

*
Register Modfying (version 1.0) - a must read for every cracking newbie.

*
Cracking 3D Mark 99 Max (version 1.0) - another cracking-by-example tutorial.

*
Cracking Hex Workshop 2.54 (version 1.0) - another cracking-by-example, only this time it also teaches you how to create patches!* Phreaking Tutorial (version 3.2) - this should get all those newbie phreakers out there started. An excellent tutorial by Squiler.

*
Advanced Phreaking Tutorial (version 1.1) - already finished Squiler's phreaking tutorial? Want more? Then this one is for you! More phreaking information and techniques, with some more advanced stuff than the previous one.

*
The Ultimate Phreaking Tutorial II (version 1.0) - liked Squiler's first phreaking tutorial? Want more? Then read this one!

*
The Definitive Guide to Phreaking, the first revelation - yup, more phreaking!

*
The Cellular Phones tutorial (version 1.0) - learn some cool tricks you can play with cellphones.

*
Pay-Phones- Do you want to be a Phreak? Well this is the tutorial you must read. Learn everything about boxing and tones, in this tutorial.
*
The Basics of Cryptography (version 1.0) - a short, easy and simple primer to encryption. Different types of encryption, breaking it etc'.

*
PGP Encryption for Beginners (version 1.1) - learn how PGP works, what is it good for, why would you want to use it, how to use it and why it can be so hard to break (and what the hell is PGP, what it stands for etc').

*
Quantum Encryption (version 1.0) - learn just how quantum encryption works.

*
DESbreak (version 1.0) - a sample program written in Perl (yes, we know the drawbacks... read the attached text file) that is meant to show people how bruteforce password-cracking works behind the scenes, and how to make your own bruteforcer. It can also be used to break passwords often found in wwwboard password files and other scripts.

*
Password Cracking Decrypted (version 2.0) - lots of encryptions explained here, such as the Windows login passwords, screen saver passwords, Dial-Up passwords, HTTP-based authentication, BIOS passwords and many more. Some source code included.

*
Password Cracking Decrypted, The Sequel (version 1.0) - more of the above tutorial! Includes information about cracking NetZero and more!

*
Encryption and Programming (version 1.0) - how to program efficient, structured encryption programs.

*
SSL 3.0 (version 1.0) - learn everything about the encryption that so many shopping websites use.

*
Algorithms Explained (Version 1.0)

*
Base64 (version 1.0) - a tutorial about the default encoding standard being used for encoding files to be sent as attachments by Multipurpose Internet Mail Extensions or MIME.

*
RSA: Attacking the Cryptosystem (version 1.0) - a continuous series about the vulnerabilities of this cryptosystem.
*
Overclocking Tutorial (version 1.6) - tired of your old CPU? Your outdated 3D accelerator? Your X-type hardware? Then do some overclocking! Get more speed from your hardware for free! This tutorial covers overclocking plus lots of explanations about various pieces of hardware like the CMOS chip, the Cache chip, your RAM, BUS connections etc'.

*
Interesting Things You Didn't Know About Your Computer's Hardware (version 1.0) - read Njan's amazing tutorial about all those things you always wanted to know about PC hardware but never had the guts to ask.

*
How to Build Your Own Computer (version 1.0) - save endless amounts of money and gain endless amounts of fun by buying parts and building your own computer by yourself.

*
Memory Upgrading Guide (version 1.0) - just what the name says!

*
Hard Drive Installation Guide (version 1.0) - learn how to install new hard drives by yourself and save costs!

*
CD-Rom Installation Guide (version 1.0) - learn how to install CD-Roms by yourself and save costs!

*
PC Hardware - just what the name says! All the Hardware information you ever wanted to learn about is here! * Novell Security for Complete Newbies (version 1.0) - just what the name says!

*
Netware Security Paper v 1.04 this edition covers more techniques of cracking netware! * History of Dos (version 1.0) - this tutorial would teach you all about how Microsoft started up and a little about DOS, the OS that once almost completely ruled the home and office PC OS market.

*
History of Computer Languages - Part of a Series, this tutorial goes indepth into the history of computer languages.

*
History of Computer Languages part 2 - The second out of a series. This tutorial goes indepth into the history of computer languages. * How to Ask Questions Without Getting Flamed (version 1.0) - a lot of people I know need to read this guide. Not only that it will help you get flamed much less often, but it will also help you figure your way out of flame wars and clear up your name after you get flamed.

*
The Rap Hack Attack - A must read for people interested in rap, funny as hell and you know bsrf is down in the rap business.
We bear no responbisility for any mistakes and/or alterations made during the translation of any of the following tutorials. Translated tutorials can be found
here. * Search Engines Ripped Apart (version 1.0) - don't you hate it when you can't find that piece of information you were looking for on the net? In that case read this tutorial and learn how searchengines work and how to get full advantage of them.

*
Being a Hacker - more about the media's perception of hackers, and what it's really like to be a real one.

*
Hacking Dictionary - A newbie hacking dictionary written to help newbies gain some insight into hacking terms, jargon and all that good stuff!!

*
Stopping the kiddies- Learn how those darn kiddies still manage to penetrate your systems. Learn how to secure your system so they won't bother you anymore, a must read for system administrators and home users.!!

Programming

Viruses

Lectures


*
C++ Tutorial By Clayman (version 1.0) - excellent tutorial for newbies.

*
HTML (version 1.0) - learn how to build your own HTML pages. Fonts, colors, links, pictures, backgrounds, frames, image maps and what not. Note: http://www.htmlgoodies.com/ has lots of HTML and Javascript tutorials, and it's a good overall source for web designers.

* The PERL (Practical Extraction and Report Language) (not-so-weekly journal)
-
Volume I
-
Volume II
-
Volume III
-
Volume IV.
More volumes will be coming soon (hopefully in a week, as the name says). Unix/Linux users should already have a Perl interpreter installed (if not, head to
perl.org), and as for Windows users, Volume I explains how to get an interpreter for your OS.

* Another PERL (Practical Extraction and Report Language) Series!
-
Introduction to perl
This series IMHO is very friendly and gives u the chance to learn a powerful language in a simplified manner.

*
DOS Batch File Programming (version 1.0) - yes, I know it's probably the lamest scripting language ever, but it does have some uses, especially for DOS/Windows users.
* JavaScript (coming soon).

*
Encryption and Programming - how to program efficient, structured encryption programs.

*
C for complete beginners (version 1.0) - build your first C program with this simple guide!

*
Assembly for complete beginners (version 1.0) - guides you through the basics of assembly and things you'll need to know as an assembly newbie, and takes you through the process of building your first assembly program!

*
The Bootsector (version 1.0) - before reading this tutorial, be sure to have some ASM knowlegde! Learn about the bootsector and how to create one.

*
Self Modifying Code (version 1.0) - this guide is mainly intended for virii-writers and people who want to protect their software against crackers. Assembly knowledge is desirable before reading this guide.

*
Basics of an MPU (version 1.0) - in this article a fairly lowlevel approach is taken to explain you the basics of general MPU's

*
C Socket Programming For Complete Newbies (version 1.0) - just what the name says! Comes with sample code and everything that is necessary to make it newbie-friendly.

*
Buffer Overflows for Newbies (version 1.0) - explains what a buffer overflow is to the average newbie.

*
Linux Assembler - A tutorial on Assembler in Linux

* The Hypertext Preprocessor (PHP) tutorials
-
Creating a simple hit counter in PHP
-
Using Databases in PHP
-
Creating a Search Engine in PHP
The titles explain the content, all these tutorials are a must read so indulge your appetite in PHP!

*
Python for Newbies - A python tutorial that is a must read for people who want to start coding in python.

*
Pascal Coding for Newbies - A pascal tutorial that will help you start in the world of programming!!!

*
Windows Internet Programming- A hot tutorial for all you guys trying to learn how to code Internet proggies. This tutorial features piece by piece instructions of source code to aid in the coding process, which is a vital in learning.

*
Windows Internet Programming {Part 2}- The second edition of the hot Windows Internet Programming tutorial. The second part features more source code to play with.
*
The Happy 99 Virus (version 1.0) - learn all about this Internet worm (how it works, how to remove it etc'). Note: this tutorial comes in a zip file, together with the virus (no, you won't get infected unless you run it! What kind of a question is that?), and some anti viruses will warn you that you are downloading a virus. If you can't turn your antivirus software off, you can still view the tutorial itself here.

*
The Melissa Virus (version 1.0) - the virus that once drove the world crazy, explained and analyzed (virus source code included).

*
Explorer.zip (version 1.0) - learn all about the explorer.zip virus, which has got a lot of people extremely annoyed and it's time.

*
The Bubble Boy Virus (version 1.0) - the name says it all. :-)

*
Pretty Park Worm - The virus with somee very clever features.

*
VBS/Freelink (version 1.0) - learn all about this virus.

*
I Love You (version 1.0) - *smooch*, *smooch*. The virus that took the world apart, wrecking havoc among thousands of e-businesses and networks and causing enormous damage worth tens of billions of dollars.

*
Outsmarting McAfee Virus Scanner (version 1.0) - exploiting McAfee's exclusion option.
*
How servers are cracked (version 1.0) - teaches you how most server cracks occur. You need to read either the FTP security tutorial or the Sendmail security tutorial first, though.

*
Why Are There Such a Few Viruses and Remote Administration Trojans for Unix/Linux? (version 1.0) - learn exactly why, and how you can defend yourself against the few ones that exist without the need for any anti-virus software, nor without having to avoid running untrusted software.

*
How Does Traceroute Works (version 1.0) - explains how the traceroute utility works, and a few of it's uses.

*
Cablemodem Hacking - Here is the log of the Cablemodem hacking lecture that took place in our irc channel. It deals with the securities and insecurities of cablemodems, a must read.

*
PHP Programming lecture - A php lecture held in our irc channel, which outlines the php language, a must read for php newbies and php fanatics.

*
Sql Database mini lecture - This lecture held at our irc channel covers the history of sql databases, php with sql and cracking sql, a must read.

*
IRC Services + Hiding/Faking Your IP in IRC (version 1.0) - an excellent IRC lecture that starts with the standard IRC services (chanserv, nickserv, memoserv...) and then goes into describing an unstandard service called botserv and all sorts of really cool settings and combinations that a lot of people don't know about, and later explains how to hide or fake your IP in IRC in many different ways. There's also a cool bonus at the end. ;-)

*
The Mirc Scripting lecture - This lecture held at our irc channel covers the basics and some intermediate aspects for scripting your Mirc client.

*
Linux networking Lecture - This is a log of a lecture that took place at our irc channel. It covers setting up a linux network at home. Its also covers many aspects of linux networking and lan's, a must read!

*
NT Security (version 1.0) - the logs from a non-BSRF IRC lecture held in our IRC channel.

*
How I hacked my local library (version 1.0) - no, I'm not talking about gaining access to control panel and the registry. I'm talking about gaining access into a nation-wide library database from home, plus using some kewl tricks in the process.

*
Aqua and Beige Boxing (version 1.0) - a non-BSRF (not held by a BSRF member) that took place in our IRC channel. Please note that during the lecture, the aqua box was mistakenly called a black box.

*
PBX Phreaking Lecture - a BSRF phreaking lecture that took place in our IRC channel. This lecture is meant to be a beginner lecture, and an introduction into pbx phreaking.

*
Importance of a Local CO Lecture - a BSRF phreaking lecture that took place in our IRC channel. This lecture is meant to give a phreaker the foundations of phreaking.

*
True Meaning of the word 'Hacker' - a log from BSRF's IRC channel, from a discussion that we held about the true and original meaning of the word 'Hacker'.

*
Perl - Web Automation lecture - A perl lecture that covers many topics of perl programming, lecture includes source code and other information regarding perl.

*
Loadable Kernel Modules [LKM] Lecture - This lecture touches on the topic on LKM programming and goes into the topic of LKM hacking. Many subtopics are also covered a must read for newbies and leet.

*
C++ Multimedia Lecture- So you want to code multimedia applications in C++ this lecture walks you through the process, a must read for the people in the C++ field.


2001 Blacksun Research Facility. All rights reserved.