ДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДД
PC Pursuit Thief Version 1.0
By Brew Associates
An Official Phortune 500 Product
ДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДДД
INTRODUCTION
Greetings, яagain. As with any new program or software package it
is always a pain to have to go through and read the documentation, яand
this will be no exception (that was a joke). Anyway, these docs should
be яa little more detailed in nature due to the fact that I am яwriting
this яup on processor #1 яon the TMCS network and have PC Pursuit Thief
running яon processor #2. яFinally, яtrue яdistributed яmulti-tasking!
Enough of that.
PC яPursuit яThief яushers яin яa яnew яera яof яhacking яutility.
Currently яwe have Code Thief, яFuckin' яHacker and others for extender
hacking, яand before PC Pursuit Thief we only had a program called Phry
Code Pro written by the Exciter. яWell, яbeing that competition proves
advantageous яto яthe яcommunity (of course the Code Thief vs. яFuckin'
Hacker "feature wars" can attest to that), PC Pursuit Thief was born to
break somewhat of a monopoly. яAnd besides, яPhry Code Pro plans on an
extender hacker in future versions, яaccording to the documentation for
version 4.0, so to each his own.
STARTING PC PURSUIT THIEF
There яare two ways of starting PC Pursuit Thief from яDOS. яяThe
first is by just typing PCPTHIEF<return>. If you see it in yourself to
type "PCPTHIEF<return>" яinstead of typing "PCPTHIEF" яand then hitting
the яreturn key, яyou have my permission to put your head through яyour
monitor.
The яsecond яmethod is by adding some command line яparamaters яto
tell PC Pursuit Thief to start hacking in automatic mode at a яspecific
time, and then to stop at a specific time, or after a certain number of
valid PC Pursuit ID's and passwords are found:
C>PCPTHIEF 1:00 2:00
The above command entered at the command line will have PC Pursuit
Thief wait until 1:00 яam to hack (all times are in 24 hour format) and
then hack until 2:00 яam, or until 1 valid code is found. яWhat? яYou
don't want to stop after 1 valid code, яbut think you can snag 2 before
2:00? Well, enter this at the command line:
C>PCPTHIEF 1:00 2:00 2
The я2 above is an optional paramater that tells PC Pursuit яThief
to quit after 2 valid codes (or before 2:00 яam, of course) - яwhatever
comes first. If you want to strictly quit at 2:00 no matter how many
codes are found, enter something like:
C>PCPTHIEF 1:00 2:00 9999
Of course you're not going to get 9999 codes in 1 hour, and that's
the яpoint. яяRemember яthat this number MUST be an integer, яяso яthe
highest it can go is 32767, яso "PCPTHIEF 1:00 2:00 я32767" яwould have
the яsame effect as "PCPTHIEF 1:00 я2:00 я9999" яbecause if you're яnot
going яto get 9999 яcodes in an hour you certainty aren't going to яget
32767.
By the way, яeverything in automatic mode is for FLAGGED templates
only. яяIf there are no flagged templates, яthen once it starts up яat
1:00 it will drop right back to the operating system after it tells you
that there are none flagged (if you are there of course). яYou get the
DOS яprompt after PC Pursuit Thief quits, яor if you started PC Pursuit
Thief from a batch file, then the batch file resumes processing.
IF PC PURSUIT THIEF IS RUN IN NORMAL MODE
Ok, яяhere's the title screen (yes, яI'm looking at it now on яthe
other monitor). яI added a little disclaimer, яbeing that this utility
has the sole function of going after one company only (GTE). яAgain, I
stress that the use or misuse of this program is totally up to you. If
you get caught, яthat's your responsibility, etc, etc. When I wrote it,
I myself didn't break any laws, but then again is there a legal theaory
for "kenetic energy", or... forget it.
Hit any key to get rid of the title/disclaimer screen. Now you'll
see яmy own little "added touch" яto the title as the window bounces in
and яout/rotates (depending on how you view it) яand puts яthe яprogram
title in it.
THE MENU
Here яwe go. яKind of looks like Code Thief, яdoesn't it? яWell,
although яit only took me three days (with sleep deprevation) яto write
PC яPursuit Thief, яno code from Code Thief was used. яI яstarted from
scratch яon everything. яOh, яand we're in Turbo Pascal 5.0 яnow, яяso
things are going to be a little bit faster (I especially like what they
did to the screen display speed).
We'll яgo яover all of the things off the main menu one by яone...
as a matter of fact, яit would be best if this documentation is printed
out FIRST, яthen you follow the following sections along as the program
executes.
>modem/city configuration
Select яthis. яяJust use the up and down arrow keys to яmove яthe
highlight яbar яand space or return to choose the option of яD) яяModem
Configuration. You could also hit "D" яthen return or space as a quick
way of getting the highlight bar there.
Ok, яяhere яwe have all of the neat things that PC яPursuit яThief
needs яto яknow яabout talking to the outside world, яяand яTelenet яin
particular. яяIn яthis яsection the up and down arrow яkeys яmove яthe
highlight, яяand return or space chooses the option. яThe letters я"A"
through я"J" яwill take you right to an option with the highlight яbar,
but яnote that it still takes the pressing of return or space to select
it.
First яthing we want to do is tell PC Pursuit Thief яwhat яComPort
our modem is connected to at. яWell, яif you have just a COM1: яяmodem
then яleave яit яalone, яbecause as you can see the яdefault яis яCOM1:
(ComPort 1). яIf your modem is on COM2: яor COM3: яor COM4: яthen яhit
space яor яreturn when Communications Port is highlighted and then яuse
the left and right arrow keys to select your ComPort. яHit return when
you have the correct one showing on your screen.
Now we need the enter the baud rate. Note that the baud rate will
be яthe яbaud rate of the Telenet Number that we will enter яin яoption
"E", яяso keep this in mind and don't screw it up. яIf your baud яrate
doesn't match the baud rate of the modem that answers when you dial the
number as choosen in option "E", then you screwed up. The baud rate is
choosen яjust яlike яComPort. яHit space or return when Baud яRate яis
highlighted, яяthen use the left and right arrow keys to cycle яthrough
the available baud rates. яUse return when your selection is what яyou
want (and don't screw up, by the way).
The яmodem яsetup string is used for just that -- яto set яup яthe
modem. яяThis яentry in your configuration has two special яcharacters
that have special meanings and are interpreted by PC Pursuit Thief яand
not яsent яas яentered to the modem. яThey are the "|" яяand яthe я"~"
characters. яThe "|" signifies ascii character 13 (return) and the "~"
signifies яa 1/4 яsecond pause. яNote that in the default a яV1 яяcode
(verbose яon) яяis specified. яMake sure that your modem is always яin
VERBOSE яmode and to keep this V1 яhere to make sure it is яinitialized
into verbose mode.
Dial command is the command we will use to dial the modem. яяWhen
PC яPursuit яThief needs to dial Telenet it will send the following яto
the яmodem: я<dialcommand><telenet_number><RETURN>.
Connect Response is what the modem sends to signal that we are now
connected яto яa яremote computer (Telenet). яяThis яall яdefaults яto
"CONNECT" яяwith verbose response codes, яas defaulted to in яC) яяDial
Command. You shouldn't need to change any of this, яit works fine (for
me) as is.
We already went over what Telenet Number is, яso just enter it яin
and hit return when you're done.
Terminal type. яJust leave this at the default of "D1". яThis is
what to respond to Telenet with when it prompts for "TERMINAL=". яяYou
shouldn't need to change this, яI added this because something inspired
me.
Telenet яCity. яPC Pursuit Thief checks the validity of яpassword
and яuser id guesses by trying to use them to log into a city. яяEnter
here яthe default city to try to log into. яThis should be one with яa
lot of outdial modems available, or is the least congested.
City Baud Rate. яThis option is here because there may be more of
some groups of modems (by baud rate) яin the city you specified. яThis
value is changed between 300 Baud, 1200 Baud, and 2400 Baud by pressing
return яor space when I is highlighted and then choosing with the яleft
and яright яarrow keys, яthen pressing return to яmake яyour яselection
permanent.
Highlight J) Quit This Section and hit space or return to exit the
modem яConfiguration and save your newly entered values (if you changed
anything... well, яyou should have changed at least the Telenet number,
I яdoubt you'll find Telenet at 000-0000 я(the default value) яin яyour
exchange. яяNote яthat яthe яESCape яkey яalso яquits яthe яModem/City
configuration section when the highlight is being displayed.
>id/password template definition
This is option B) яoff the main menu, яso highlight it and яchoose
it. яHere is where you can change ID and Password templates я(remember
CODE яTEMPLATES?). яFor our purposes the SAMPLE RECORD is ok now я(and
we'll hack on it in a minute) but just a word on what all those strange
looking Template characters mean:
0 - The number 0
! - All numbers from 0 to 1
@ - All numbers from 0 to 2
# - All numbers from 0 to 3
$ - All numbers from 0 to 4
% - All numbers from 0 to 5
^ - All numbers from 0 to 6
& - All numbers from 0 to 7
* - All numbers from 0 to 8
( - All numbers from 0 to 9
) - All letters from A to Z
- - All letters from A to Z and all numbers from 0 to 9
The яreason яfor these strange template characters is яbecause яit
coresponds to the number that is below the character (unshifted) on the
keyboard. For instance, % is all numbers 0 to 5. And the key is:
+---+
| % | <- You get this when you press SHIFT.
| 5 |
+---+
It яshould be this way on your keyboard as well (it is for all яof
mine).
Short яnote is just something to identify the template with. яяIf
you яchoose the C) яFlag/Unflag IDs By Short Note option off яthe яmain
menu you will flag/unflag by looking only at the short notes.
(a)dd - hit "A" to append to the template collection and add your own
(e)dit я- hit "E" яto edit the current template. яJust use the up яand
down яarrow яkeys to move and hit return or space to edit яwhat яyou're
currently pointing to. яFor the Flagged option, to change it you point
to яit яand then hit space or return, яthen you use the left and яright
arrow яkeys яto яchange яit. яThen you hit return яagain яto яget яthe
highlight яback. яяWhen the highlight is displayed you яcan яhit яyour
ESCape key to exit editing mode.
(d)elete я- яhit я"D" яto delete the current template. яяYou яwill яbe
prompted яas to weather you are sure or not. яIf you choose "Y", яthen
the current template is deleted and the template file is "fixed up" яto
reflect яthe яchanges. яNote that if there is only one record яin яthe
template file that "D" will have no effect.
(f)lag - hit "F" to toggle the flag on the template you are now looking
at. яяThis is just a quick way to flag templates when looking яat яthe
entire яtemplate. яяTo flag templates by short note choose яoption яC)
Flag/Unflag ID's By Short Note off the main menu.
When you're at the "Number or Cmd ->" яprompt you can also use the
left яand right arrow keys to page through the template file. яIf яyou
press the right arrow key at the end of the file you will be brought to
the beginning, яand if you press the left arrow key at the beginning of
the яfile яyou яwill be brought to the end. яTo jump to яan яimmediate
record яnumber, яяjust enter that record number at the prompt яand яhit
return. If that record exists you will jump to it.
The ESCape key gets you out of the ID/Password Template Definition
section.
>flag/unflag ids by short note
This section is pretty self-explanatory. You highlight entries on
the яcurrent яpage and hit return or space to toggle the flag on яthem.
Each яpage holds 10 яrecords from the template file and you can use the
Jump яTo Next Page or Jump To Previous Page to get around in the яfile.
If яyou choose Jump To Next Page or Jump To Previous Page and there яis
no next or previous page then nothing will happen. You can choose Quit
Flagging mode to get out of this and get rid of the window, or just hit
ESCape at any time.
>view valid password file
All яяvalid яяpasswords яthat яPC яPursuit яThief яfinds яяgo яяto
PCPVALID.LST. яThis is how you can display the file without exiting PC
Pursuit Thief. яIf the file is not found, then it will tell you. яYou
can яpress "D" яto delete the file and quit viewing at any time. яяUse
ESCape to quit viewing the file without deleting it, яand the яSPACEbar
to continue viewing the file at pauses.
>package credits
This яpops up a window that explains about PC Pursuit Thief, яяand
other neat stuff. яHit ESCape to get rid of it, яor hit "B" яto see яa
list яof some good boards to call. яIf you are a sysop and яwant яyour
board on this list for any future releases, яthen drop me a line. яThe
ESCape key gets rid of the list of boards, then hit ESCape again to get
back to the main screen of PC Pursuit Thief.
>commence hacking procedure
Finally, яthis is it... яwhere we actually do the actual яhacking,
actually. яChoose it and we'll hack the SAMPLE RECORD (make sure яit's
flagged first... яchoose C) Flag/Unflag IDs By Short Note and make sure
it's flagged - if not, flag it).
Two яscreens яpop яup in front of you. яThe upper screen яis яthe
"Information яWindow" яя- яinformation about what PC Pursuit яThief яis
doing, яetc. The lower screen is the "Communications Window"... яinput
and output to and from the modem.
The яfirst яthing яthat яwill happen is it will ask яyou яfor яthe
starting time to begin hacking at (you will be shown the current system
time for reference). Enter any times in 24 hour format. For instance,
23:00 яяis 11pm. яIf you want to start hacking immediately, яthen яhit
return, thus entering nothing.
Next яit will ask you for the time to stop the hacking. яThis яis
also in 24 яhour format, of course. яIf you want to keep hacking until
the яESCape яkey is pressed then just hit return here, яяthus яentering
nothing. яяIf you choose a quit time then you are given the option яof
dropping яto яthe яoperating яsystem (DOS) яafter this яtime яhas яbeen
reached. яяяIf яyou яare яhacking яfrom яthe яcommand яline яthen яyou
automatically are dropped to DOS after this time.
Next яit яwill want to know how many valids to quit яafter. яяThe
default is one. яThis is because all you may ever want or need is just
one valid PC Pursuit code. Hit return if you agree with 1.
Now hacking begins. яIf you told PC Pursuit Thief to wait until a
certain яtime then the program will pause and wait for that time. яYou
will be shown the current time and the time it is waiting for. To quit
all-together яyou can hit the ESCape key at any time here and this will
take you back to the main program menu.
Now яit яwill яscan for flagged entries and tell you how яmany яit
found. яяIf there are no entries flagged then it will tell you, яяthen
abort яback to the menu screen. яThe initialization of the modem яwith
your modem setup string яcomes next. яяAfter that it will dial Telenet
and wait for the string яyou specified for PC Pursuit Thief to wait for
(usually "CONNECT") that signals that PC Pursuit Thief is now connected
to яTelenet. яIf PC Pursuit Thief gets NO CARRIER (because all Telenet
hunt group modem numbers were busy, яpossibly -- яor some other reason)
then it will re-dial automatically.
After яa couple of seconds PC Pursuit thief will send <CR><CR> яif
you're on at 300 яor 1200 baud or @<CR> яif you are on at 2400 яbaud to
Telenet. яяThen Telenet will "wake up" яand log you in and prompt яfor
"TERMINAL=" яяwhich яwill cause PC Pursuit Thief to яrespond яwith яthe
Terminal Type you entered in the modem configuration (usually "D1" яfor
dumb яterminal... яthis is fastest because I think the other term types
actually have nulls in them on Telenet).
Hacking яbegins at the "@" яprompt, яof course. яPC Pursuit Thief
will яguess a ID and Password based on the current template and try яto
log into the city you selected in яthe modem/city configuration section
with яthe baud rate have choosen. яNote that Telenet doesn't echo яthe
password part, яso PC Pursuit Thief does this for you -- so you can see
what the guess is. Now here's how PC Pursuit Thief works. яIf it gets
a яCONNECT яto яthe яcity, яthen it will log the яID яand яpassword яto
PCPVALID.LST and hang up on Telenet. The screen values will be updated
in the Information Window to reflect the found ID and password that was
valid яin the count. яIf it gets INVALID from Telenet then the ID яand
Password pair was invalid -- яand PC Pursuit Thief moves on to яanother
guess. яяIf the @ prompt comes back after PC Pursuit Thief яtells яyou
that something was in the improper format, яthen PC Pursuit Thief makes
another attempt.
If яthe ID and Password pair was valid and you have яjust яreached
the maximum number of valids that you want, яthen PC Pursuit Thief will
quit яhacking (and quit to DOS if you started hacking from the яcommand
line). яяPC Pursuit Thief will also quit hacking if you entered a stop
time яand яit яis яnow яpast that time. яIf you яchoose яQuit яTo яDOS
(automatically яchoosen яif яhacking from the command яline) яяthen яPC
Pursuit яThief will now quit to the operating system and throw you яthe
DOS prompt or resume batch file processing (this could be a timed event
from your bulletin board system, for example).
Remember, яяwhile яhacking яis яhappening яyou яcan яlook яat яthe
"Information яWindow" яяto see what the current template яis я(it яwill
choose a template randomly out of the templates that are flagged). яIf
Telenet яever hangs up on PC Pursuit Thief, яthen PC Pursuit Thief will
call яback, яlog back in again, яand resume hacking. яNothing could be
easier.
CONCLUSION
That's about it. яEverything else is now up to you, as to how you
configure яyour яtemplates, яetc. яLike all Thief utilities яI яdidn't
include information on the service (PC Pursuit) for a reason... яif you
don't яknow what it is or how to use it then you have no reason to hack
on it. яIf you do know what it is, яyou can find the information on it
quickly and easily enough.
Hacking яPC Pursuit, яas I have heard, яis a lot harder than яjust
extender hacking. яBut it is safer. яPC Pursuit Thief might take яall
night to find a code... then again, no other program could do better or
worse. яяYou яtake яall responsibility for your use яand/or яabuse яof
Telenet. яяPC яPursuit яThief was tested on the author's яend яwith яa
"Telenet яSimulator" яяrunning on another processor, яas well яas яwith
extensive outside party beta testing. The author does not use or abuse
the Telenet packet switching data network.
Enjoy, and if you know where to reach me, well, яyou know where to
reach me . . .
FILES FOUND IN PCPTHF10.ZIP ZIPFILE
PCPTHIEF.EXE - Executable Binary Code Of PC Pursuit Thief Version 1.0
PCPTHIEF.DOC - This Documentation To PC Pursuit Thief Version 1.0
README.NOW - Quick Introduction By Brew Associates
please, when uploading this package include all of the files
as specified in the list above
=======================================================================
(r) Released 1989 === PC Pursuit Thief == Official Phortune 500 Product
=======================================================================