Alright, so me and a friend decided to challenge ourselves to see who could hack into the other's computer faster. Whoever manages to (remotely) create a text document in the desktop wins. What I didn't forsee is that he would be using a dynamic dns service (possibly no-ip). I can't think of any way to find out his url or private IP, and couldn't really find any answers by searching the internet. Furthermore, social engineering is unlikely to work, since we both know that we are trying to get into each others's PC and will be cautious. So my question is, how can you conduct reconnaissance on a pc not on your same network, who is using a ddns service, without even knowing the IP or url, if doing that is even possible? (Sorry for any grammar mistakes, English isn't my first language :) )
Forum Thread: Where to Start?
- Hot
- Active
-
Forum Thread:
Metasploit Reverse TCP Listener for Public IP Address
3
Replies
1 day ago -
Forum Thread:
Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce
164
Replies
6 days ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
12
Replies
1 wk ago -
Forum Thread:
Hack Instagram Account Using BruteForce
195
Replies
1 wk ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
48
Replies
1 wk ago -
Forum Thread:
While msfconsole i'm getting this.
5
Replies
1 wk ago -
Forum Thread:
How to Pastebin Accounts
8
Replies
1 wk ago -
Forum Thread:
Eml to PST Conversion
5
Replies
1 wk ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
10
Replies
1 wk ago -
Forum Thread:
Changing IP Address
10
Replies
2 wks ago -
Forum Thread:
HACKING GMAIL
1
Replies
2 wks ago -
Forum Thread:
Phish with HiddenEye - A tool with Advanced Feature
2
Replies
2 wks ago -
Forum Thread:
How to Hack School Website
7
Replies
2 wks ago -
Forum Thread:
Android/Metasploit - Keep a session alive
2
Replies
3 wks ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
44
Replies
3 wks ago -
How to:
HACK Android Device with TermuX on Android | Part #2 - Over WLAN Hotspot [Ultimate Guide]
25
Replies
1 mo ago -
Forum Thread:
Msfconsole Error After Msfupdate
7
Replies
1 mo ago -
Forum Thread:
How to Track Who Is Sms Bombing Me .
2
Replies
1 mo ago -
Forum Thread:
How to Hack CCTV Private Cameras
66
Replies
1 mo ago -
Forum Thread:
How to Get Router PIN?
11
Replies
1 mo ago
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Brute-Force FTP Credentials & Get Server Access
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Enable Monitor Mode & Packet Injection on the Raspberry Pi
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Hack WPA & WPA2 Wi-Fi Passwords with a Pixie-Dust Attack Using Airgeddon
-
How To:
Scan, Fake & Attack Wi-Fi Networks with the ESP8266-Based WiFi Deauther
-
How To:
Find Passwords in Exposed Log Files with Google Dorks
-
How To:
Scrape Target Email Addresses with TheHarvester
-
How To:
The Essential Skills to Becoming a Master Hacker
-
How To:
Find OSINT Data on License Plate Numbers with Skiptracer
-
How to Use PowerShell Empire:
Getting Started with Post-Exploitation of Windows Hosts
-
How To:
Hack Coin-Operated Laudromat Machines for Free Wash & Dry Cycles
4 Responses
First, this is probably going to be hard. Even of you know his IP address, Hacking into a computer with just an IP address is difficult. He would need to be running a service though a port on the router AND that service must have a vulnerability with an exploit available. That's pretty rare. If it were simpler most computers would be hacked as random IP addresses are tested constantly for exploits.
So, next would be social engineering. This is where you have to get creative. As you said, it's going to be hard because you both know about each other.
I have an idea of how to trick him, but don't really want to tell you exactly how. You should figure it out yourself. I'll tell you it involves shortcutting a malicious file hidden in a directory with other files. Zipping the directory and sending him it. If it doesn't work, continue to think.
Good luck.
Thanks for the reply, will look into your suggestion ;)
If I was in this situation I would've installed a backdoor BEFORE accepting the challenge. There is only one choice left RUBBER DUCKY!!
C'mon, there's almost no way you can do that... real life scenarios are very different from testing skiddie tutorials on a Vm. He know that you're trying to fuck his pc and unless your friend is a true idiot you can't do anything. New OS are patched for know exploit and i'm pretty sure he didn't have any door forwarded on his router or exploitable services on his machine.
You could try with emails but i doubt he will click on links, ignoring allert messages etc. You could try with some Mitm attack like Evil Twin etc but in 2017 also my grandmother know that shit and modern browser block and allert for all.
I doubt he'll let you enter his room so also rubber duck is useless.
You could hack his phone with a persistant backdoor and add a txt to his Google Drive or Dropbox app... if those services are synced on his pc well, you'll have your file on his pc... not a true hack but hey, the file will be there.
Anyway i think it's easier for you to force his door when he's out, power on his pc and leave that txt :D
Share Your Thoughts