HackIt! Suite v.2.0.0 Documentation =============================================================================== Table of Contents I. Introduction II. Setup & Installation III. Running HackIt! IV. Modules Included in 2.0.0 A. Level1 i. Scanit B. Level2 i. PhfIt! ii. PhpIt! iii. NfsIt! iv. HsIt! C. Level3 i. CrackIt! V. Todo & Closing =============================================================================== I. Introduction --------------- Allright. Here's a brief overview of HackIt!, what it does, and how to develop for it. Mainly all the development information is actually in the hackit.cf file that you should find in the HackIt! directory after un-taring and un-gzipping the package. So look there or email druid@caughq.org for development information. Allright, so what is it and how does it work? It's real simple. HackIt! is simply a program that runs other programs based on the hackit.cf file. The beauty of this is that it makes the HackIt! Suite completely modular and very easy to develop modules for. HackIt! simply parses through the hackit.cf file and runs (in order) all the programs that it finds there. Thus the first level modules are run first (as they are listed first), then second level modules, and so on. The actual work is done by included modules rather than HackIt! itself. Allright, onward to how to install HackIt! II. Setup & Installation ------------------------ First of all, copy the .tar.gz file into the directory that you want to install in. Un-tar and un-gzip the file, and it will create a directory called 'hackit' in that directory and put all of its stuff in the hackit directory. Next cd into the new 'hackit' directory and then into the 'src' directory. Once in there, edit and modify the Makefile (I do not know how to write a correct Makefile, but the one included gets the job done) and then do a 'make'. This will compile and copy all binaries needed to the 'hackit' directory. Next, you need to cd back to the 'hackit' directory and read the 'hackit.cf' file and make sure you understand it. Now you are ready to run HackIt! III. Running HackIt! -------------------- HackIt! can be run in one of two ways. You can either run hackit on a single ip or hostname: ./hackit -s or on a list of hostname's or ip's: ./hackit -l If you run HackIt! on a listfile, the file must be a list of ip's or hostnames, one per line, as hackit assumes that the ONLY thing on each line is a valid target. One easy way of creating a listfile is to use the included 'hostlistit' script (found in the 'scripts' directory) on a target host: ./hostlistit > targets.hl This simple bash script just does a hostlist on a hostname and cut's it down to a hackit useable listfile. So running hackit is quite easy, just open up a terminal, run hackit in one of the two ways shown above, and go about your business. Come back and check on it every 15 minutes or so, or if you have a really large list of targets, every 2 hours or so. NOTE: All of my modules (modules by I)ruid) work in the 'hackit/.tmp/' directory, and HackIt! cleans this directory out every time it is run, so if you plan on saving *.passwd and *.cracked files, move them before executing hackit again. 'hackit/.tmp/' is the OFFICIAL HackIt! Suite working directory. IV. Modules Included in 2.0.0 ----------------------------- A. Level 1 Modules ------------------ i. ScanIt! ---------- B. Level 2 Modules ------------------ i. PhfIt! --------- PhfIt is a module that by opening a socket to port 80 of the target, attempts to exploit an old cgi-bin called 'phf' to grab a passwd file, which it then leaves for Second level module CrackIt! ii. PhpIt! ---------- PhpIt is a module that by opening a socket to port 80 of the target, attempts to exploit a cgi-bin called 'php' to grab a passwd file, which it then leaves for Second level module CrackIt! iii. NfsIt! ----------- NfsIt is a module that attempts to use mount to 'mount -t nfs' the target and simply copy the system's passwd file (you'd be surprised how often this works) and leaves the passwd file for Second level module CrackIt! iv. HsIt! ----------- HsIt is a module that by opening a socket to port 80 of the target, attempts to exploit a cgi-bin called 'htmlscript' to grab a passwd file, which it then leaves for Second level module CrackIt! C. Level 3 Modules ------------------ i. CrackIt! ----------- CrackIt is the Second level module designed to run Crack on all .passwd files found in the working directory ('hackit/.tmp/') and leave .cracked files containing logins and passwd's for the target system. NOTE: Crack must be located in 'hackit/Crack/' and must be called 'Crack' to work. You may re-install Crack to your specifications as long as it is in that location, or CrackIt! will break. Maybe in next release i'll mod up CrackIt! to be modifyable (or you /could/ play with the code, but if you do, please do not redistribute). I have included a version of Crack that I have set up to run the first two dictionary rules and the gecos rules on the passwd files. This generally speeds things up quite a lot and still cracks most of the passwd's that a full crack would crack. V. Todo & Closing ---------------------- To find out what I have to do, check the TODO file. And in closing, I would like to say that the HackIt! Suite is released under the GNU Public Liscence. You can find a copy of this Liscense on the HackIt! development site (www.caughq.org/cgi-bin/CAU/hackit). I will only support HackIt! installations and bug reports from the ORIGINAL release (found on either www.caughq.org or ftp.caughq.org). Also, I wouldn't suggest using any scripts or admin tools I write without at least learning a little bit about what and how it's doing what it's doing. And if your going to use the fruits of my labor to simply break into as many systems as possible, at least learn how to do it manually first... there's nothing i hate more than an ignorant script kiddie. To submit bug reports or design ideas, or even complete HackIt! modules that you have developed, send it all to druid@caughq.org and if you actually send me source code for the module, it may very well get included in the next official release of the HackIt Suite, and you will get full credit for it. Also, if you have problems installing it, contact me via email or on EFnet #817, #CAU, or #C and ask me about it. I have only installed the HackIt! Suite on Slakware Linux, and have not tested this on any other OS. Finally, Happy Hacking, and a painful-butt-buddying jail experience to the skript kiddies that simply like to break into systems rather than LEARN something. I)ruid