How much is IPC digital currency now
Publish: 2021-04-10 14:18:53
1. Daily share short-term currency strategy, how to invest * digital currency with high return, less than a year and a half from the countdown to bitcoin halving, the last wave of 10 ~ 100 times
2. If you buy it ring this period of time, maybe I can tell you, because I just bought an IPC 120g from Hong Kong last week, and the Hong Kong merchandise is generally 1900 Hong Kong dollars (Fengze, Broadway, Hong Kong Apple stores are all at this price!), My machine was bought in 1850, in a private shop in Mong Kok... Can be trusted, global warranty 1 year, invoice! If you are near Hong Kong, you may as well buy it in Hong Kong! And the mainland seems to be 2198! 2198-1850 = 348, and the exchange rate is not included! Don't believe the online shop! The picture is true, but the goods are not guaranteed! Especially Taobao shop, which is cheaper than the market price of four or five hundred goods!! Please pay attention! But you can rest assured when you buy in excellence. I remember that you can get a 20% discount when you buy in excellence!! Hope you get a good iPod!! Send more than 2 websites to you, it's very good http://tieba..com/f?kz=540522207 http://tieba..com/f?kz=540934842
3. I'll introce you something that can be cashed 100%
4. About 2000 yuan
5.
The boss of IPC is Datuk Stephen liao...
6. Now Taobao Mall full set of less than 2000 can be done (160g) this proct is still very good, lyrics can not be directly synchronized to classic, but you can use a software to directly add lyrics text to MP3 file, classic can read out. As for synchronization, you can choose the synchronization mode. Each time you synchronize a part of the songs or manually synchronize them, but exporting is more troublesome and difficult to achieve.
7. Ipc-a-610g has been released in both Chinese and English
I just bought one on Taobao a few days ago.
I just bought one on Taobao a few days ago.
8. IPC (inter process communication)
IPC (the number of instructions executed by CPU in each clock cycle)
IPC represents the design architecture of a processor. Once the processor is designed, the IPC value will not change. Here, the IPC value plays a decisive role, and the frequency no longer seems to be above everything
it's actually frequency and IPC that really affect CPU performance. The accurate judgment standard of CPU performance should be: CPU performance = IPC (the number of instructions executed by CPU in each clock cycle) × Frequency (MHz clock speed), this formula was first proposed by Intel and widely accepted by the instry
if we compare Intel's 800 MHz Itanium processor (Intel's most advanced Series CPU) for enterprise servers with the 1800 MHz Pentium 4 processor for desktop computers, we will find that the 800 MHz Itanium processor is even more powerful in performance than the 1800 MHz Pentium 4 processor
IPC process communication
IPC (Internet process connection) is sharing & quot; Named pipe & quot; It is an open named pipeline for interprocess communication. By providing a trusted user name and password, the two parties can establish a secure channel and exchange encrypted data through this channel, so as to access the remote computer. IPC is a new function of NT / 2000. It has a feature that only one connection can be established between two IPS at the same time. NT / 2000 not only provides IPC function, but also turns on the default share when installing the system for the first time, that is, all logical shares (C, D, e...) and system directory WinNT or windows (admin) share. All of these, Microsoft's original intention is to facilitate the management of administrators, but intentionally or unintentionally, leading to the rection of system security
at ordinary times, we can always hear people saying that IPC is a vulnerability. In fact, IPC is not a real vulnerability. I think the reason why some people say this is that they must refer to the "back door" installed by Microsoft itself: null session
IPC (instrial personal computer IPC) is a kind of reinforced enhanced personal computer, which can be used as an instrial controller to run reliably in instrial environment. As early as the early 1980s, American ad company launched mac-150 instrial computer similar to IPC, and then American IBM company officially launched IBM 7532 instrial personal computer. Due to its reliable performance, rich software and low price, IPC has been widely used in instrial computer. At present, IPC has been widely used in communication, instrial control site, road and Bridge toll, medical treatment, environmental protection and all aspects of people's life< The technical features of IPC are as follows:
1
2. Adopt bus structure and molar design technology. The CPU and each function mole all use the plug-in plate structure, and has the pressure bar soft locking, which improves the anti shock and anti vibration ability
3. The cabinet is equipped with double fans, positive pressure convection ventilation, and st filter net to prevent st
4. It is equipped with highly reliable instrial power supply and over-voltage and over-current protection
5. The power supply and keyboard are equipped with electronic lock switch, which can prevent illegal on / off and illegal keyboard input
6. It has self diagnosis function
7. I / O templates can be selected as needed
8. It is equipped with a "watchdog" timer, which can reset automatically without human intervention in case of failure
9. It has good openness and compatibility, absorbs all the functions of PC, and can directly run various application software of PC
10. Configurable real-time operating system for multi task scheling and running
11. Passive motherboard (backplane) can be used to facilitate system upgrade< Main structure of IPC:
1. All steel case
the all steel case of IPC is designed according to the standard, anti shock, anti vibration, anti electromagnetic interference, and can be installed with PC bus compatible passive base plate
2. Passive backplane
the slots of passive backplane are composed of multiple slots of ISA and PCI bus. The number and location of ISA or PCI slots can be selected according to the needs. The board is a four layer structure, and the middle two layers are the layer and the power layer respectively. This structure can rece the mutual interference of logic signals on the board and rece the power impedance. The bottom board can be inserted with various boards, including CPU card, display card, control card, I / O card, etc
3. Instrial power supply
is at switching power supply, with an average time between failures of 250000 hours
4. CPU card
there are many kinds of IPC CPU cards, which can be divided into long card and half long card according to the size, and can be divided into 386, 486, 586, PII and PIII motherboards according to the processor. Users can choose them according to their own needs. Its main features are: working temperature 0-600c; Equipped with "watchdog" timer; Low power consumption, up to 5V / 2.5A< Other accessories:
other accessories of IPC are basically compatible with PC, mainly including CPU, memory, graphics card, hard disk, floppy drive, keyboard, mouse, optical drive, display, etc<
IPC network intrusion
in order to help you learn IPC better, I have sorted out and improved the concept of IPC, some common commands, the reasons for some problems in IPC, etc. most of the information comes from the Internet. Because I don't know the name of the author, I can't mark the content. Please forgive me< The concept of IPC is sharing; Named pipe & quot; It is an open named pipeline for interprocess communication. By providing a trusted user name and password, the two parties can establish a secure channel and exchange encrypted data through this channel, so as to access the remote computer. In fact, it can be regarded as a more practical service provided by Microsoft. It plays an important role in resource sharing, but it is usually used less, and most of it is used by hackers to attack, so it is often said to be a vulnerability. In fact, it is not a real loophole. It refers to the "back door" installed by Microsoft itself: null session
the concept of empty session
an empty session is a session established with the server without trust. For an empty session, the SID of the token provided by LSA (SID of the empty session) is s-1-5-7, and the user name is anonymous logo. The access token contains the following disguised groups: everyone and network< Second, the process of IPC establishment
1) the session requester (client) sends a packet to the session receiver (server) to request the establishment of a secure tunnel
2) the server generates a random 64 bit (implementation challenge) and sends it back to the client
3) the client obtains the 64 bits generated by the server, scrambles it with the password of the account that is trying to establish the session, and returns the result to the server (realizing the response)
4) after receiving the response, the server sends it to the local security authentication (LSA), which verifies the response by using the correct password of the user to confirm the identity of the requester. If the requester's account is the local account of the server, verify the local occurrence; If the requested account is a domain account, the response is sent to the domain controller for verification. When the response to the challenge is verified to be correct, an access token is generated and sent to the customer. The client uses this access token to connect to the resource on the server until the proposed session is terminated< Third, IPC connection conditions are related to the operating system (NT / 2000 / XP can establish IPC $connection, 98 / me cannot establish IPC $connection)
★ the target host must enable IPC $sharing
★ the local host must start the lanmanworkstation service (the function is to provide network links and communication)< The target host must start the lanmanserver service (IPC $depends on this service, which provides RPC support, file, print and named pipe sharing)
★ the target host must start Netlogon, which supports the pass through account login identity of the computer on the network< The target host should start NBT (open port 139)
★ firewall configuration of the target host (if ports 139 and 445 are shielded, the connection will also fail)< The user name or password is wrong< If the user name and password do not contain spaces, the double quotation marks on both sides can be omitted. If the password is empty, enter two quotation marks directly& quot;
★ after the connection is established, the target host restarts, and the IPC $connection will be automatically disconnected< 4. Connection error number analysis
error number 5: access is denied and permissions are insufficient
error number 51: unable to find the network path (network problem)
error number 53: network path not found (IP address error; The target host is not powered on; The target host lanmanserver service is not started; The target host firewall sets the filter port
error No. 67: the network name cannot be found (the lanmanworkstation service in the local host is not started or the target host has deleted IPC $)
error No. 1219: the provided credentials conflict with the existing set of credentials (an IPC $has been established, which can be deleted and reconnected)
error number 1326: wrong user name or password
error 1792: trying to log in, the network login service is not started (the Netlogon service in the target host is not started)
error number 2242: the user's password has expired
5. Common password
} to establish an empty connection: net use & # 92&# 92; IP\ ipc$ "& quot; / user:"& quot;
★ establish non empty connection: net use & # 92&# 92; IP\ ipc$ " password" / user:" username"
★ view the shared resources of the remote host (but no default share) net view & # 92&# 92; IP
} view the shared resources of the local host (you can see the local default share) net share
} get the user name list of the remote host nbtstat - a IP
} get the user list of the local host net user
} view the current time of the remote host net time & # 92&# 92; IP
} displays the current service of the local host net start
} starts / closes the local service net start service name / y net stop service name / y
} maps the remote share: net use Z: &# 92&# 92; IP\ Sihochina this command maps the shared resource named sihochina to Z disk
} delete the shared mapping net use Z: / del / y delete the mapped Z disk net use * / del / y delete all
} files to the remote host; Path & # 92; * exe \&# 92; IP\ Shared directory name, such as sihochina.exe & # 92&# 92; IP\ C sihochina.exe in the current directory to the other party's C disk
} remote add scheled task at & 92&# 92; IP time program name, such as: at & # 92&# 92; 192.168.0.1 11:00 sihochina.exe 11:00 running sihochina.exe on the host 192.168.0.1
the method used in this paper is mainly tested in the environment of Vista Ultimate SP2 and XP SP2, other systems have not been tested, but I believe they are similar, and the problems should be the same, I will list all the problems in my experiments of the two systems for your reference< br />
IPC (the number of instructions executed by CPU in each clock cycle)
IPC represents the design architecture of a processor. Once the processor is designed, the IPC value will not change. Here, the IPC value plays a decisive role, and the frequency no longer seems to be above everything
it's actually frequency and IPC that really affect CPU performance. The accurate judgment standard of CPU performance should be: CPU performance = IPC (the number of instructions executed by CPU in each clock cycle) × Frequency (MHz clock speed), this formula was first proposed by Intel and widely accepted by the instry
if we compare Intel's 800 MHz Itanium processor (Intel's most advanced Series CPU) for enterprise servers with the 1800 MHz Pentium 4 processor for desktop computers, we will find that the 800 MHz Itanium processor is even more powerful in performance than the 1800 MHz Pentium 4 processor
IPC process communication
IPC (Internet process connection) is sharing & quot; Named pipe & quot; It is an open named pipeline for interprocess communication. By providing a trusted user name and password, the two parties can establish a secure channel and exchange encrypted data through this channel, so as to access the remote computer. IPC is a new function of NT / 2000. It has a feature that only one connection can be established between two IPS at the same time. NT / 2000 not only provides IPC function, but also turns on the default share when installing the system for the first time, that is, all logical shares (C, D, e...) and system directory WinNT or windows (admin) share. All of these, Microsoft's original intention is to facilitate the management of administrators, but intentionally or unintentionally, leading to the rection of system security
at ordinary times, we can always hear people saying that IPC is a vulnerability. In fact, IPC is not a real vulnerability. I think the reason why some people say this is that they must refer to the "back door" installed by Microsoft itself: null session
IPC (instrial personal computer IPC) is a kind of reinforced enhanced personal computer, which can be used as an instrial controller to run reliably in instrial environment. As early as the early 1980s, American ad company launched mac-150 instrial computer similar to IPC, and then American IBM company officially launched IBM 7532 instrial personal computer. Due to its reliable performance, rich software and low price, IPC has been widely used in instrial computer. At present, IPC has been widely used in communication, instrial control site, road and Bridge toll, medical treatment, environmental protection and all aspects of people's life< The technical features of IPC are as follows:
1
2. Adopt bus structure and molar design technology. The CPU and each function mole all use the plug-in plate structure, and has the pressure bar soft locking, which improves the anti shock and anti vibration ability
3. The cabinet is equipped with double fans, positive pressure convection ventilation, and st filter net to prevent st
4. It is equipped with highly reliable instrial power supply and over-voltage and over-current protection
5. The power supply and keyboard are equipped with electronic lock switch, which can prevent illegal on / off and illegal keyboard input
6. It has self diagnosis function
7. I / O templates can be selected as needed
8. It is equipped with a "watchdog" timer, which can reset automatically without human intervention in case of failure
9. It has good openness and compatibility, absorbs all the functions of PC, and can directly run various application software of PC
10. Configurable real-time operating system for multi task scheling and running
11. Passive motherboard (backplane) can be used to facilitate system upgrade< Main structure of IPC:
1. All steel case
the all steel case of IPC is designed according to the standard, anti shock, anti vibration, anti electromagnetic interference, and can be installed with PC bus compatible passive base plate
2. Passive backplane
the slots of passive backplane are composed of multiple slots of ISA and PCI bus. The number and location of ISA or PCI slots can be selected according to the needs. The board is a four layer structure, and the middle two layers are the layer and the power layer respectively. This structure can rece the mutual interference of logic signals on the board and rece the power impedance. The bottom board can be inserted with various boards, including CPU card, display card, control card, I / O card, etc
3. Instrial power supply
is at switching power supply, with an average time between failures of 250000 hours
4. CPU card
there are many kinds of IPC CPU cards, which can be divided into long card and half long card according to the size, and can be divided into 386, 486, 586, PII and PIII motherboards according to the processor. Users can choose them according to their own needs. Its main features are: working temperature 0-600c; Equipped with "watchdog" timer; Low power consumption, up to 5V / 2.5A< Other accessories:
other accessories of IPC are basically compatible with PC, mainly including CPU, memory, graphics card, hard disk, floppy drive, keyboard, mouse, optical drive, display, etc<
IPC network intrusion
in order to help you learn IPC better, I have sorted out and improved the concept of IPC, some common commands, the reasons for some problems in IPC, etc. most of the information comes from the Internet. Because I don't know the name of the author, I can't mark the content. Please forgive me< The concept of IPC is sharing; Named pipe & quot; It is an open named pipeline for interprocess communication. By providing a trusted user name and password, the two parties can establish a secure channel and exchange encrypted data through this channel, so as to access the remote computer. In fact, it can be regarded as a more practical service provided by Microsoft. It plays an important role in resource sharing, but it is usually used less, and most of it is used by hackers to attack, so it is often said to be a vulnerability. In fact, it is not a real loophole. It refers to the "back door" installed by Microsoft itself: null session
the concept of empty session
an empty session is a session established with the server without trust. For an empty session, the SID of the token provided by LSA (SID of the empty session) is s-1-5-7, and the user name is anonymous logo. The access token contains the following disguised groups: everyone and network< Second, the process of IPC establishment
1) the session requester (client) sends a packet to the session receiver (server) to request the establishment of a secure tunnel
2) the server generates a random 64 bit (implementation challenge) and sends it back to the client
3) the client obtains the 64 bits generated by the server, scrambles it with the password of the account that is trying to establish the session, and returns the result to the server (realizing the response)
4) after receiving the response, the server sends it to the local security authentication (LSA), which verifies the response by using the correct password of the user to confirm the identity of the requester. If the requester's account is the local account of the server, verify the local occurrence; If the requested account is a domain account, the response is sent to the domain controller for verification. When the response to the challenge is verified to be correct, an access token is generated and sent to the customer. The client uses this access token to connect to the resource on the server until the proposed session is terminated< Third, IPC connection conditions are related to the operating system (NT / 2000 / XP can establish IPC $connection, 98 / me cannot establish IPC $connection)
★ the target host must enable IPC $sharing
★ the local host must start the lanmanworkstation service (the function is to provide network links and communication)< The target host must start the lanmanserver service (IPC $depends on this service, which provides RPC support, file, print and named pipe sharing)
★ the target host must start Netlogon, which supports the pass through account login identity of the computer on the network< The target host should start NBT (open port 139)
★ firewall configuration of the target host (if ports 139 and 445 are shielded, the connection will also fail)< The user name or password is wrong< If the user name and password do not contain spaces, the double quotation marks on both sides can be omitted. If the password is empty, enter two quotation marks directly& quot;
★ after the connection is established, the target host restarts, and the IPC $connection will be automatically disconnected< 4. Connection error number analysis
error number 5: access is denied and permissions are insufficient
error number 51: unable to find the network path (network problem)
error number 53: network path not found (IP address error; The target host is not powered on; The target host lanmanserver service is not started; The target host firewall sets the filter port
error No. 67: the network name cannot be found (the lanmanworkstation service in the local host is not started or the target host has deleted IPC $)
error No. 1219: the provided credentials conflict with the existing set of credentials (an IPC $has been established, which can be deleted and reconnected)
error number 1326: wrong user name or password
error 1792: trying to log in, the network login service is not started (the Netlogon service in the target host is not started)
error number 2242: the user's password has expired
5. Common password
} to establish an empty connection: net use & # 92&# 92; IP\ ipc$ "& quot; / user:"& quot;
★ establish non empty connection: net use & # 92&# 92; IP\ ipc$ " password" / user:" username"
★ view the shared resources of the remote host (but no default share) net view & # 92&# 92; IP
} view the shared resources of the local host (you can see the local default share) net share
} get the user name list of the remote host nbtstat - a IP
} get the user list of the local host net user
} view the current time of the remote host net time & # 92&# 92; IP
} displays the current service of the local host net start
} starts / closes the local service net start service name / y net stop service name / y
} maps the remote share: net use Z: &# 92&# 92; IP\ Sihochina this command maps the shared resource named sihochina to Z disk
} delete the shared mapping net use Z: / del / y delete the mapped Z disk net use * / del / y delete all
} files to the remote host; Path & # 92; * exe \&# 92; IP\ Shared directory name, such as sihochina.exe & # 92&# 92; IP\ C sihochina.exe in the current directory to the other party's C disk
} remote add scheled task at & 92&# 92; IP time program name, such as: at & # 92&# 92; 192.168.0.1 11:00 sihochina.exe 11:00 running sihochina.exe on the host 192.168.0.1
the method used in this paper is mainly tested in the environment of Vista Ultimate SP2 and XP SP2, other systems have not been tested, but I believe they are similar, and the problems should be the same, I will list all the problems in my experiments of the two systems for your reference< br />
9. Second, what is IPC $
IPC $(Internet process connection) is sharing; Named pipe & quot; It is an open named pipeline for interprocess communication. It can be used to remotely manage computers and view shared resources of computers by verifying user name and password to obtain corresponding permissions
with IPC $, the linker can even establish an empty connection with the target host without user name and password (of course, the other machine must have IPC $sharing, otherwise you can't connect), and with this empty connection, the linker can also get the user list on the target host (but the administrator in charge will prohibit exporting the user list)
we always talk about IPC $vulnerability IPC $vulnerability. In fact, IPC $is not a real vulnerability. It is a remote network login function for the convenience of remote management of administrators, and it also opens the default share, that is, all logical disks (C $, D $, e $...) and system directory WinNT or windows (admin $)
all of these, the original intention is to facilitate the management of administrators, but a good original intention does not necessarily have a good effect, some people with ulterior motives (what is the intention? I also don't know that (a pronoun) will use IPC $to access shared resources, export user list, and use some dictionary tools for password detection, hoping to obtain higher permissions, so as to achieve the purpose of hiding.
puzzle solving:
1) IPC connection is a unique remote network login function in Windows NT and above systems, which is equivalent to telnet in UNIX, Because IPC $function needs many DLL functions in Windows NT, it can't run in Windows 9. X
that is to say, only NT / 2000 / XP can establish IPC $connection, 98 / me can't establish IPC $connection (but some friends say that an empty connection can be established under 98, I don't know whether it's true or false, but now it's 2003, so I suggest 98 comrades change the system, 98 is not happy)
2) even an empty connection can't be established successfully, if the other party turns off IPC $sharing, You still can't establish a connection
3) it doesn't mean that you can view the user list of the other party after establishing an IPC $connection, because the administrator can prohibit exporting the user list
3. The role of establishing an IPC $connection in hack attack
as mentioned above, even if you establish an empty connection, You can also get a lot of information (and this information is often essential in the intrusion), access part of the sharing, if you can log in as a user with certain permissions, then you will get the corresponding permissions, obviously, if you log in as an administrator, hey, I don't have to say more, what u want, u can do
(basically, it can be summarized as acquiring target information, managing target processes and services, uploading Trojans and running them. If it's 2000 server, you can also consider opening terminal services to facilitate control? That's great!)
but don't be happy too soon, because the administrator's password is not so easy to get. Although there will be some silly administrators who use empty password or retarded password, it is a small number after all, and it is no longer better than before. With the improvement of people's security awareness, managers are becoming more and more careful, It will be more and more difficult to get the administrator password: (
therefore, in the future, you are most likely to connect with very little or no permission. You will slowly find that IPC $connection is not omnipotent, even when the host does not turn on IPC $sharing, you can't connect at all.
so I think that you should not regard IPC $intrusion as the ultimate weapon, and don't think it invincible, It's like passing a ball before shooting on the football field. It rarely has a fatal effect, but it's indispensable. I think that's the significance of IPC $connection in hack intrusion.
four IPC $and empty connection, 139445 port, default sharing relationship
the relationship between the above four may be a puzzle for rookies, but most articles do not give a special explanation, In fact, I don't understand it very thoroughly. It's all summed up in the communication with you. (a BBS with a good discussion atmosphere can be said to be a rookie's paradise)
1) IPC $and empty connection:
IPC $connection without user name and password is empty connection. Once you log in as a user or administrator (i.e. IPC $connection with specific user name and password), IPC $is empty connection, Naturally, it can't be called empty connection.
many people may want to ask, since you can connect empty, then I will connect empty in the future. Why do I have to spend a lot of effort to scan weak passwords? Ha ha, the reason mentioned above is that when you log in as an empty connection, you don't have any permissions (it's depressing), but when you log in as a user or administrator, You will have the corresponding permissions (who doesn't want to have permissions, so you'd better scan honestly and don't be lazy).
2) IPC $and 139445 port:
IPC $can realize remote login and access to the default share; The opening of port 139 indicates the application of NetBIOS protocol. We can access the shared file / printer through port 139445 (WIN2000). Therefore, generally speaking, IPC $connection needs port 139 or 445 to support.
3) IPC $and default share
the default share is opened by default to facilitate remote management of administrators (you can turn it off of course), That is, all the logical disks (C $, D $, e $...) and the system directory WinNT or windows (admin $), we can access these default shares through IPC $connection (provided that the other party does not turn off these default shares)
five reasons for IPC $connection failure
the following five reasons are common:
1) your system is not nt or above operating system
2) the other party does not open IPC $default sharing
3) the other party does not open port 139 or 445 (confused by the firewall)
4) your command input is wrong (such as the lack of space, etc.)
5) the user name or password is wrong (empty connection of course does not matter)
in addition, you can analyze the reasons according to the error number returned:
error number 5, Access denied: it is very likely that the user you are using is not an administrator's permission. First, upgrade the permission
error number 51, windows cannot find the network path: there is a problem with the network
error number 53, network path not found: IP address error; The target is not turned on; The target lanmanserver service is not started; The target is firewall (Port filtering)
error number 67, network name not found: your lanmanworkstation service is not started; Target deleted IPC $
error No. 1219, the provided credentials conflict with the existing set of credentials: you have established an IPC $with the other party, please delete and connect again
error number 1326, unknown user name or wrong password: the reason is obvious
error number 1792, trying to login, but the network login service is not started: the target Netlogon service is not started This will happen when connecting to domain control)
the error number is 2242, and the password of this user has expired: the target has an account policy, and it is mandatory to change the password regularly< In addition to the above reasons, there are also some other uncertain factors. I can't give a detailed and definite explanation here, so I'll rely on your own experience and experiment.
6. How to open the target IPC $(this paragraph is quoted from related articles)
first of all, you need to get a shell that doesn't depend on IPC $, such as SQL's CMD extension, Telnet Trojan horse, of course, this shell must have the permission of admin, and then you can use the shell to execute the command net share IPC $to open the target IPC $. It can be seen from the above that there are still many conditions for IPC $to be used. Please make sure that all related services are running. If you don't start it (I don't know how to do it, please see the usage of net command), or if it doesn't work (for example, if you have a firewall, you can't kill it), it is recommended to give up<
7 how to prevent IPC $intrusion
1 prohibit empty connections from enumerating (this operation does not prevent the establishment of empty connections, quoted from dissecting empty sessions under WIN2000).
first, run regedit and find the following composition [HKEY]_ LOCAL_ MACHINE\ SYSTEM\ CurrentControlSet\ Control\ LSA] change the key value of RestrictAnonymous = DWORD to: 00000001 (if it is set to 2, some problems will occur, For example, some win services have problems, etc.)
2 disable default sharing
1) view local shared resources
Run - CMD - enter net share
2) delete sharing (one at a time)
net share IPC $/ delete
net share admin $/ delete
net share C $/ delete
net share d $/ delete (if e, F, ... can continue to delete)
3) stop the server service
net stop server / Y (the server service will restart after restart)
4) modify the registry
Run - regedit
server version: find the following key [HKEY]_ LOCAL_ MACHINE\ SYSTEM\ CurrentControlSet\ Services\ LanmanServer\ Parameters] change the key value of autoshareserver (DWORD) to: 00000000
Pro version: find the following primary key [HKEY]_ LOCAL_ MACHINE\ SYSTEM\ CurrentControlSet\ Services\ LanmanServer\ Parameters] change the key value of autosharewks (DWORD) to: 00000000
if the primary key mentioned above does not exist, create a new key (right-click - New - double byte value) and then change the key value<
3 permanently turn off IPC $and default shared dependent services: lanmanserver is server service
control panel - Administrative Tools - Services - find server service (right click) - properties - General - Startup type - disabled
4 install firewall (select relevant settings), or port filter (filter out 139445, etc.), or set complex password with a new version of optimization master
5, Prevent the use of IPC $exhaustive password
(this tutorial is updated from time to time. For the latest version, please visit the official website: caicainiao community http://ccbirds.yeah.net
eight related commands
1) establish empty connection:
net use & # 92&# 92; IP\ ipc$ "& quot; / user:"& quot; ( It must be noted that this line of command contains three spaces)
2) to establish a non empty connection:
net use & # 92&# 92; IP\ ipc$ " User name & quot/ user:" Password & quot There are also three spaces)
3) mapping default share:
net use Z: &# 92&# 92; IP\ c$ " Password & quot/ user:" User name & quot You can map the other party's C disk to its own Z disk, and so on)
If IPC $has been established with the target, you can directly access it with the IP + drive letter + $and the specific command net use Z: &# 92&# 92; IP\ C $
4) delete an IPC $connection&# 92; IP\ IPC $/ del
5) delete the shared map
net use C: / del delete the mapped C disk, and so on
net use * / del delete all disks. You will be prompted to press y to confirm
nine classic intrusion mode
this intrusion mode is too classic, most of the IPC tutorials have been introced, and I will take it to reference, thank the original author here I don't know who it is)
1& gt; net use \&# 92; 127.0.0.1\ IPC$ "& quot; / user:" admintitrators"
this is the user name scanned by streamer, which is administrators, and the password is & quot; Empty & quot; IP address of (empty password? If you are planning to attack, you can use this command to establish a connection with 127.0.0.1, because the password is & quot; Empty & quot;, So the second
IPC $(Internet process connection) is sharing; Named pipe & quot; It is an open named pipeline for interprocess communication. It can be used to remotely manage computers and view shared resources of computers by verifying user name and password to obtain corresponding permissions
with IPC $, the linker can even establish an empty connection with the target host without user name and password (of course, the other machine must have IPC $sharing, otherwise you can't connect), and with this empty connection, the linker can also get the user list on the target host (but the administrator in charge will prohibit exporting the user list)
we always talk about IPC $vulnerability IPC $vulnerability. In fact, IPC $is not a real vulnerability. It is a remote network login function for the convenience of remote management of administrators, and it also opens the default share, that is, all logical disks (C $, D $, e $...) and system directory WinNT or windows (admin $)
all of these, the original intention is to facilitate the management of administrators, but a good original intention does not necessarily have a good effect, some people with ulterior motives (what is the intention? I also don't know that (a pronoun) will use IPC $to access shared resources, export user list, and use some dictionary tools for password detection, hoping to obtain higher permissions, so as to achieve the purpose of hiding.
puzzle solving:
1) IPC connection is a unique remote network login function in Windows NT and above systems, which is equivalent to telnet in UNIX, Because IPC $function needs many DLL functions in Windows NT, it can't run in Windows 9. X
that is to say, only NT / 2000 / XP can establish IPC $connection, 98 / me can't establish IPC $connection (but some friends say that an empty connection can be established under 98, I don't know whether it's true or false, but now it's 2003, so I suggest 98 comrades change the system, 98 is not happy)
2) even an empty connection can't be established successfully, if the other party turns off IPC $sharing, You still can't establish a connection
3) it doesn't mean that you can view the user list of the other party after establishing an IPC $connection, because the administrator can prohibit exporting the user list
3. The role of establishing an IPC $connection in hack attack
as mentioned above, even if you establish an empty connection, You can also get a lot of information (and this information is often essential in the intrusion), access part of the sharing, if you can log in as a user with certain permissions, then you will get the corresponding permissions, obviously, if you log in as an administrator, hey, I don't have to say more, what u want, u can do
(basically, it can be summarized as acquiring target information, managing target processes and services, uploading Trojans and running them. If it's 2000 server, you can also consider opening terminal services to facilitate control? That's great!)
but don't be happy too soon, because the administrator's password is not so easy to get. Although there will be some silly administrators who use empty password or retarded password, it is a small number after all, and it is no longer better than before. With the improvement of people's security awareness, managers are becoming more and more careful, It will be more and more difficult to get the administrator password: (
therefore, in the future, you are most likely to connect with very little or no permission. You will slowly find that IPC $connection is not omnipotent, even when the host does not turn on IPC $sharing, you can't connect at all.
so I think that you should not regard IPC $intrusion as the ultimate weapon, and don't think it invincible, It's like passing a ball before shooting on the football field. It rarely has a fatal effect, but it's indispensable. I think that's the significance of IPC $connection in hack intrusion.
four IPC $and empty connection, 139445 port, default sharing relationship
the relationship between the above four may be a puzzle for rookies, but most articles do not give a special explanation, In fact, I don't understand it very thoroughly. It's all summed up in the communication with you. (a BBS with a good discussion atmosphere can be said to be a rookie's paradise)
1) IPC $and empty connection:
IPC $connection without user name and password is empty connection. Once you log in as a user or administrator (i.e. IPC $connection with specific user name and password), IPC $is empty connection, Naturally, it can't be called empty connection.
many people may want to ask, since you can connect empty, then I will connect empty in the future. Why do I have to spend a lot of effort to scan weak passwords? Ha ha, the reason mentioned above is that when you log in as an empty connection, you don't have any permissions (it's depressing), but when you log in as a user or administrator, You will have the corresponding permissions (who doesn't want to have permissions, so you'd better scan honestly and don't be lazy).
2) IPC $and 139445 port:
IPC $can realize remote login and access to the default share; The opening of port 139 indicates the application of NetBIOS protocol. We can access the shared file / printer through port 139445 (WIN2000). Therefore, generally speaking, IPC $connection needs port 139 or 445 to support.
3) IPC $and default share
the default share is opened by default to facilitate remote management of administrators (you can turn it off of course), That is, all the logical disks (C $, D $, e $...) and the system directory WinNT or windows (admin $), we can access these default shares through IPC $connection (provided that the other party does not turn off these default shares)
five reasons for IPC $connection failure
the following five reasons are common:
1) your system is not nt or above operating system
2) the other party does not open IPC $default sharing
3) the other party does not open port 139 or 445 (confused by the firewall)
4) your command input is wrong (such as the lack of space, etc.)
5) the user name or password is wrong (empty connection of course does not matter)
in addition, you can analyze the reasons according to the error number returned:
error number 5, Access denied: it is very likely that the user you are using is not an administrator's permission. First, upgrade the permission
error number 51, windows cannot find the network path: there is a problem with the network
error number 53, network path not found: IP address error; The target is not turned on; The target lanmanserver service is not started; The target is firewall (Port filtering)
error number 67, network name not found: your lanmanworkstation service is not started; Target deleted IPC $
error No. 1219, the provided credentials conflict with the existing set of credentials: you have established an IPC $with the other party, please delete and connect again
error number 1326, unknown user name or wrong password: the reason is obvious
error number 1792, trying to login, but the network login service is not started: the target Netlogon service is not started This will happen when connecting to domain control)
the error number is 2242, and the password of this user has expired: the target has an account policy, and it is mandatory to change the password regularly< In addition to the above reasons, there are also some other uncertain factors. I can't give a detailed and definite explanation here, so I'll rely on your own experience and experiment.
6. How to open the target IPC $(this paragraph is quoted from related articles)
first of all, you need to get a shell that doesn't depend on IPC $, such as SQL's CMD extension, Telnet Trojan horse, of course, this shell must have the permission of admin, and then you can use the shell to execute the command net share IPC $to open the target IPC $. It can be seen from the above that there are still many conditions for IPC $to be used. Please make sure that all related services are running. If you don't start it (I don't know how to do it, please see the usage of net command), or if it doesn't work (for example, if you have a firewall, you can't kill it), it is recommended to give up<
7 how to prevent IPC $intrusion
1 prohibit empty connections from enumerating (this operation does not prevent the establishment of empty connections, quoted from dissecting empty sessions under WIN2000).
first, run regedit and find the following composition [HKEY]_ LOCAL_ MACHINE\ SYSTEM\ CurrentControlSet\ Control\ LSA] change the key value of RestrictAnonymous = DWORD to: 00000001 (if it is set to 2, some problems will occur, For example, some win services have problems, etc.)
2 disable default sharing
1) view local shared resources
Run - CMD - enter net share
2) delete sharing (one at a time)
net share IPC $/ delete
net share admin $/ delete
net share C $/ delete
net share d $/ delete (if e, F, ... can continue to delete)
3) stop the server service
net stop server / Y (the server service will restart after restart)
4) modify the registry
Run - regedit
server version: find the following key [HKEY]_ LOCAL_ MACHINE\ SYSTEM\ CurrentControlSet\ Services\ LanmanServer\ Parameters] change the key value of autoshareserver (DWORD) to: 00000000
Pro version: find the following primary key [HKEY]_ LOCAL_ MACHINE\ SYSTEM\ CurrentControlSet\ Services\ LanmanServer\ Parameters] change the key value of autosharewks (DWORD) to: 00000000
if the primary key mentioned above does not exist, create a new key (right-click - New - double byte value) and then change the key value<
3 permanently turn off IPC $and default shared dependent services: lanmanserver is server service
control panel - Administrative Tools - Services - find server service (right click) - properties - General - Startup type - disabled
4 install firewall (select relevant settings), or port filter (filter out 139445, etc.), or set complex password with a new version of optimization master
5, Prevent the use of IPC $exhaustive password
(this tutorial is updated from time to time. For the latest version, please visit the official website: caicainiao community http://ccbirds.yeah.net
eight related commands
1) establish empty connection:
net use & # 92&# 92; IP\ ipc$ "& quot; / user:"& quot; ( It must be noted that this line of command contains three spaces)
2) to establish a non empty connection:
net use & # 92&# 92; IP\ ipc$ " User name & quot/ user:" Password & quot There are also three spaces)
3) mapping default share:
net use Z: &# 92&# 92; IP\ c$ " Password & quot/ user:" User name & quot You can map the other party's C disk to its own Z disk, and so on)
If IPC $has been established with the target, you can directly access it with the IP + drive letter + $and the specific command net use Z: &# 92&# 92; IP\ C $
4) delete an IPC $connection&# 92; IP\ IPC $/ del
5) delete the shared map
net use C: / del delete the mapped C disk, and so on
net use * / del delete all disks. You will be prompted to press y to confirm
nine classic intrusion mode
this intrusion mode is too classic, most of the IPC tutorials have been introced, and I will take it to reference, thank the original author here I don't know who it is)
1& gt; net use \&# 92; 127.0.0.1\ IPC$ "& quot; / user:" admintitrators"
this is the user name scanned by streamer, which is administrators, and the password is & quot; Empty & quot; IP address of (empty password? If you are planning to attack, you can use this command to establish a connection with 127.0.0.1, because the password is & quot; Empty & quot;, So the second
10. Nowadays, IPC has many AI functions,
face recognition, human shape detection, expression recognition, face attribute recognition and license plate recognition are more common,
face recognition is the most widely used, and expression and face attribute are newly introced,
these are all realized by artificial intelligence algorithm,
license plate recognition has been realized for a long time as face recognition.
these two kinds of applications are the most common and mature.
face recognition, human shape detection, expression recognition, face attribute recognition and license plate recognition are more common,
face recognition is the most widely used, and expression and face attribute are newly introced,
these are all realized by artificial intelligence algorithm,
license plate recognition has been realized for a long time as face recognition.
these two kinds of applications are the most common and mature.
Hot content