Alright, so me and a friend decided to challenge ourselves to see who could hack into the other's computer faster. Whoever manages to (remotely) create a text document in the desktop wins. What I didn't forsee is that he would be using a dynamic dns service (possibly no-ip). I can't think of any way to find out his url or private IP, and couldn't really find any answers by searching the internet. Furthermore, social engineering is unlikely to work, since we both know that we are trying to get into each others's PC and will be cautious. So my question is, how can you conduct reconnaissance on a pc not on your same network, who is using a ddns service, without even knowing the IP or url, if doing that is even possible? (Sorry for any grammar mistakes, English isn't my first language :) )
Forum Thread: Where to Start?
- Hot
- Active
-
Forum Thread:
Crack Password Using AI with PassHemorrhage
0
Replies
6 hrs ago -
Forum Thread:
Can I modify the content in /wp-content/uploads/ just by browsing it?
0
Replies
21 hrs ago -
Forum Thread:
How Do I Switch a Netcat Shell to a Metasploit Meterpreter?
1
Replies
1 day ago -
Forum Thread:
I Wan't to Learn Pentesting, and Planning to Learn Both C++ and Python. But I'm Not Sure About What I Should Start With?
0
Replies
1 day ago -
Forum Thread:
How to Encrypt Python Exploit So It Can Be FUD Again? [DOC EXPLOIT]
23
Replies
2 days ago -
Forum Thread:
The Only Authentic Way to Hack Instagram!
44
Replies
2 days ago -
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
3
Replies
4 days ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
26
Replies
4 days ago -
Forum Thread:
Help Needed Please!
7
Replies
4 days ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
36
Replies
5 days ago -
Forum Thread:
How to Get Social Media Accounts and Real Name from the Footprints Left Behind by a Phone Number
4
Replies
5 days ago -
Forum Thread:
How to Bind Original Apk into a Payload with Msfvenom
2
Replies
1 wk ago -
Forum Thread:
Suggest Me Some Good Easy to Understand Python Course?
1
Replies
1 wk ago -
Forum Thread:
This Profile Makes Instagram Crush on Android and Doesnt Shows Up on IOS. How?
0
Replies
1 wk ago -
How to:
Crack Instagram Passwords Using Instainsane
25
Replies
1 wk ago -
Forum Thread:
Rescue-ssh.target Is a Disabled or a Static Unit
19
Replies
1 wk ago -
Forum Thread:
Kali Linux Wifi Problem
2
Replies
1 wk ago -
Forum Thread:
Change Username on Kali?
6
Replies
1 wk ago -
Forum Thread:
Empire Tab Not Working
0
Replies
1 wk ago -
How to:
Decode Hancitor C2 Traffic Streams and Extract URL IOCs with Python
0
Replies
2 wks ago
-
How To:
Conduct a Pentest Like a Pro in 6 Phases
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
The Null Byte Guide to 3D Printing for Hackers
-
How To:
Learn Java, C#, Python, Redux & More with This $40 Bundle
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Protect Up to 10 Devices with This All-in-One VPN
-
How To:
Safeguard Your Data & Privacy with This Speedy VPN
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Get Excel-Savvy with This 6-Course Bundle
-
How To:
Harness the Power of Big Data with This 10-Course Bundle
-
Hack Like a Pro:
How to Crack Passwords, Part 4 (Creating a Custom Wordlist with Crunch)
-
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
4 Responses
First, this is probably going to be hard. Even of you know his IP address, Hacking into a computer with just an IP address is difficult. He would need to be running a service though a port on the router AND that service must have a vulnerability with an exploit available. That's pretty rare. If it were simpler most computers would be hacked as random IP addresses are tested constantly for exploits.
So, next would be social engineering. This is where you have to get creative. As you said, it's going to be hard because you both know about each other.
I have an idea of how to trick him, but don't really want to tell you exactly how. You should figure it out yourself. I'll tell you it involves shortcutting a malicious file hidden in a directory with other files. Zipping the directory and sending him it. If it doesn't work, continue to think.
Good luck.
Thanks for the reply, will look into your suggestion ;)
If I was in this situation I would've installed a backdoor BEFORE accepting the challenge. There is only one choice left RUBBER DUCKY!!
C'mon, there's almost no way you can do that... real life scenarios are very different from testing skiddie tutorials on a Vm. He know that you're trying to fuck his pc and unless your friend is a true idiot you can't do anything. New OS are patched for know exploit and i'm pretty sure he didn't have any door forwarded on his router or exploitable services on his machine.
You could try with emails but i doubt he will click on links, ignoring allert messages etc. You could try with some Mitm attack like Evil Twin etc but in 2017 also my grandmother know that shit and modern browser block and allert for all.
I doubt he'll let you enter his room so also rubber duck is useless.
You could hack his phone with a persistant backdoor and add a txt to his Google Drive or Dropbox app... if those services are synced on his pc well, you'll have your file on his pc... not a true hack but hey, the file will be there.
Anyway i think it's easier for you to force his door when he's out, power on his pc and leave that txt :D
Share Your Thoughts