How to Use Exploits

I will quickly tell you how to use exploits here. This information is based
for Windows users [arent i nice..], but the principal is generally the same
for everyone.
___

The following assumes that you have shell-access on your target, and the use
of the editor "vi"

1. get you exploit from any good exploit site... [ i use www.rootshell.com-
or, if you are on bugtraq then there ya go.. ]

2. find the desired exploit and COPY. [ CTRL+C ]

3. telnet to you shell account

4. log in, once you get the prompt, type:   vi funfile.c [ The name doesnt
matter, as long as it ends in .c ]

5. once vi is up, type the letter a -then go to your pulldown menus on your
telnet program and go to Edit---->Paste [ if you move the mouse around, then
the text shows up earlier]

6. once you are done, press ESC, then type :w [ this saves the file]

7. you have saved, now you quit. press ESC, then :q to quit

NOTE: there are 2 modes in vi. one is command mode, the other is edit mode.
pressing ESC switches between these 2 modes. when you want to save or exit
:w, :q ] you must hit the escape key to go to command mode. Anytihng you
type in command mode appears at the bottom, below the ~ ~ ~ [tildes]. You'll
get used to it... [ its really not that hard]

8. alright. you have your file. if you want to, type ls at the prompt - you
should see "funfile.c" in the list

9. NEXT STEP. compile your file. Type this: cc -o funfile funfile.c

NOTE: some systems use the GNU c compiler, [ or gcc ], some dont have a
compiler at all [ at least that normal users can use, so...yeah]

10. This will create a program called "funfile". It is a file that you can
run. To run it type: funfile

NOTE: Sometimes you cant run it like this. You might need the full path of
the program to run it. To find the path, type "pwd". you will get something
like /usr/home/chuck/. To run your program just take the path and add the
program name on the end. i.e. type "/usr/home/chuck/funfile" to run the file
we were playing with before.

-DA