Ok so at school they use this stupid filter/blocker w/e u want to call it named DansGuardian, i searched it on the web its supposed to be pretty decent and actually "unhackable" which we all know everything is hackable to thats bullshit...but, its installed somewhere on the school server or something like that, not individually on ever computer i just wanted a little advice and help on how in the FUCK to bypass this damn thing? its annoying, im tired of using slow proxy servers, it banning websites randomly because of one damn word that shows up! so if anyone can help at all, id greatly appreciate it!

Now, thats question numero uno! i have DOS!

There is this dick head of a counselor here at my school, not only a dick but a pervert, anyways, i want to get the pass he uses to log into the internet from school (everyone has one just the teachers passes have faculty bypass rights, meaning, they can go everywhere unrestricted, plus i do credit recovery, his pass is the master i could use it to change a couple of grades) that and i want to fuck with him cause the perv always stares at my G/F
Now from what ive gathered on where to hack into is seems to me it logs onto a remote server that is somewhere in our school, (shows ip at top of login box) now if i could just hack that ip and get whatever i wanted that would be nice. The login box says connect to 172.16.50.4 (which i know for a fact is a ip in our school) then under that is says squid proxy-caching web server then under that its got spaces for username and password then enter cancel ect.. now i tried using Cain (yeah i know its noobish) to poison the network, for some reason, it wont pick anything up, if im doing something wrong here id like to know, now, i humbly bow before you all as a noob, yeah, IM A FUCKING NOOB! there i said it first, so please, any thing u can add to help me out, point me in the right direction would be greatly appreciated, oh yeah, MASSIGYMAN, Kicks ass !!!

lol i didnt think it would get u to help me more i just wanted to throw it out there so yeah...but i have one more question is there anyway to just totally get around the login? or just to find this assholes username and pass? i know im a noob and there are lots of other threads, but alot of them dont help my particular problem so...sorry to post another one up here but, id really appreciate learning how to do what i want to do...just a little point would be nice, and secure tunnel from home, i guess i can look into that...

Here's my opinion on this, your school is using a filtering system through the domain, so yes if you are logged into the computer from your account you will be blocked.....however, if you can reset the local ***** pwd on the computer your using and login to that account, the filter will most likely be bypassed. There are a ton of boot cd's out there that can do this, google it. When you access the internet does the webpage redirect you to a login page where you would enter your student credentials, cause if this is the case they are possibly using specialized hardware (NAC, cisco clean access for example) along with a filtering application that incorporates an ACL (access control list) depending on your login. Alot of schools have this installed for wireless access.

And one more thing, if you do manage to get onto the local ***** account, and the filter is still blocking sites, install TOR, and firefox (with TOR plugin), and that should bypass their filter. Try not to make it too obvious you've installed all that though, use a custom "hidden" installation directory, don't add any shortcuts, remove it from the installed applications list, and disable any automatic startup entries/services, this way you can still use it without drawing any attention.

He wouldn't be logging into the domain mass, thats the whole point, he would be logging in as the local ***** and the domain polocies(If not set otherwise) shouldn't block his access. I understand when you say the wireless would be on the hardline but it definitely check's with with an ACL before it lets you have access,(If it's using a NAC) It's installed at my college, and yes it is on a separate subnet from the physical lan. On a Catalyst 2600 you can set each port to whatever subnet you want if you wanted to do so, to keep 2 networks seperate. Most expensive hardware has this ability, but I've only experienced a brief use of Cisco's hardware, and it's definitely the way to go for security.

If he doesn't have this in place then none of this even matters to him, but I just want to make sure I am explaining myself clear. I put together a little topology pic so you can understand visually.

And one other thing, I know this method works, I've personally done this several times!

I will have to verify the correct layout, but I am 95% sure that's the correct layout. From the Domain Controller, the connection goes to the router/firewall which has the uplink from the wan, as well as the v-wan.

But I DO know for a fact that I can still access the internet without logging into the domain, but when you open up the web browser, it prompts you for credentials, thats the NAC. Is that what your referring to when you said you needed to be logged on the domain, or are you saying that you never had access at all, cause I have seen it block all access before, but that's not the way it's set up at my college.

UTFSE. Personally I liked PhonePrake's rip from totse.com

http://www.anarchistcookbook.com/vbu...*****+password

alright the way this works here is i double click IE or Firefox and it opens with a login box, its different for both but does the same damn thing...logs me on obviously, so, what i need to know is
A: How to bypass this annoying little box!
or
B: Find a way to get dickheads pass!
Any info u need me to provide i would be glad to oblige, except my SSN ;-) anyways, if i answered your question incorrectly wi fibre elaborate on how you would like it answered.

YES IT OPENS A LOGIN BOX TO ENTER MY USERNAME AND PASS

Thanks guys, you've been some help already, i will try the firefox plugin and see what i get!

ok. I've got one word for you.
Freegate.
Awesome little program. Bypasses any web restrictions. Put it on a flash drive, run it from there, pretty much untracable. You have to log in to the internet first. Then you can run it, and if you're running ie, go wild. The only way it is detectable is if the admins have filters up on the routers and are manually going through the lists looking for infractions and, frankly, admins have much better things to do. If you're using firefox, its slightly more complicated. Freegate tells you though how to do it. If you can't figure it out, google is always your friend.

Freegate doesn't work at my school, the coimputer sees it and logs out immediately.

You can remotely access your computer at home by using Logmein.com, and other various sites.


As for getting the password,
Cain and Abel,
ARP poisoning. =]