As mentioned above, the Hacktool:Win32/Keygen tool allows users to "crack" (illegally register) various software. It simply forges activation keys/license files to trick programs into believing that they are activated. This tool itself is not harmful (other than it diminishes the revenue of software developers), but is often distributed together with viruses.
Note that the Hacktool:Win32/Keygen tool appearance can differ. There are a number of different "cracks" that use Hacktool:Win32/Keygen source code. Therefore, if you have recently used any tools to illegally activate software, you should scan the system with a reputable anti-virus/anti-spyware suite and eliminate all threats.
Crack RemoteExec 5 02
IMPORTANT NOTE! Using "keygens", "cracks", or other third party tools to bypass software activation is illegal and should not be considered. Software piracy is a serious crime and can lead to prosecution.
In most cases, software "cracks" can be downloaded from dubious sources, such as free file hosting websites, freeware download websites, and peer-to-peer (P2P) networks. In some cases, these tools are proliferated together with chosen software installation setups.
If you have low-privileged access to a MSSQL database and no links are present, you could potentially force NTLM authentication by using the xp_dirtree stored procedure to access this share. If this is successful, the NetNTLM for the SQL service account can be collected and potentially cracked or relayed to compromise machines as that service account.
CVE-2012-3137: The authentication protocol in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote attackers to obtain the session key and salt for arbitrary users, which leaks information about the cryptographic hash and makes it easier to conduct brute force password guessing attacks, aka stealth password cracking vulnerability.
2ff7e9595c
Comments