Hacking my school -- RM tutor 3

Well its almost impossible to do anything with rm3, it seems like theyv blocked all .BAT and .exe files. Their that tight that they have printer credits, once they have ran out you have to buy more! lol.

So far i have found loads of things that are to do with RM, iv evan found the program you run to remote control everones pc. only problem is that "Accses Denied!" as usual… anyway i came to the best of the best to find out anyways of hacking my school.

i was also wondering weather or not i could edit some of the notepad files since theres tons of them for each rm file.

Reason: my IT technicion thinks hes great and his system is impossible to hack and all that, he knows i try to find new things every lesson and he rearly cares apart from the odd "you cant do it! get on with your work now with a smile on his face"

anyway, id be greatful if you could give me any ideas. if you want to know what it says i could probably take in my flash card and copy all the notepad files or something.

Plase help :D

can you run *.cmd files :P?

hmmm never tried, il try 2morrow, any moer suggestions?

Can you edit a shortcut to point to cmd.exe and run that, then taskkill the programs that are blocking you? I don't have expirience with rm3, so it might not work, but it works on the NetWare stuff at my school.

haha, now heres a hack my school thread that might actually help, i think were still ruinning RM2, so hopefully theres some exploits to be found…

tancurrom wrote: haha, now heres a hack my school thread that might actually help, i think were still ruinning RM2, so hopefully theres some exploits to be found…

yer if you want to find the RM files iv found go on printers and faxes, ctrl + e and then click advanced. click show hidden and all that business… leave it blank and search and u get almost all files lol and if you search RM then you get a load aswell! giv it a try

well, what do you mean by going on printers and fax? as in the menu that come up if you want to print something

lol! Im glad theres someone else with this system on their schools!

It's RM Community Connect 3, and with RM Tutor installed aswell, im just as fucked as you are :angry:

.reg .bat .exe .cmd .js .vbs and many, many more are blocked. Teachers accounts dont have admin rights, just access to cmd (with net commands blocked) and im not sure about taskill, because i tried it once, but before I could do anything interesting boom i have no control over my PC, and RM Tutpr 3's remote control options help whatever teacher/technician to close all my windows. Luckily I wasn't caught because it was a teachers account that I had guessed the password too (not even a proper teachers account, some sort of guest teacher account i found trying to look for unpassword protected accounts, using Microsoft Outlook to looik in the address book for all the accounts)

One really cool thing you should try is a bug in Windows Media Player. Go into options, and I think its the option to find files or something, but a window comes up with your documents and everything, but the ability to go up and find the servers root, which had all the programs on them… unfortunaly I had no rights, so deleting, replaceing, or putting anything into the folders wasnt possible, but I could copy some programs files.

That and the Printers and Faxes search thing are the only things I've managed to do :| Shortcuts to somethings like telnet work, but I dunno what I can do with them, if anything (cmd is blocked by administrator :xx:)

Anyway, add me on msn (absorb@sitegadgets.net) if your school has RM :happy: It'll be interesting to talk

[edit] lol, stupid of me to forget while I was writing this, but a couple days ago I got the program files for RM Tutor 3 and sent them to ROB52 so he could put it on his laptop!!! He installed it today, and he's gonna bring in his laptop tomorrow to show me XD Anyway, I'm hopin we can get something done… if we manage anything ill post back

well why don't you guys try the classic safe mode start up, make an admin account, and do what you need to do?

Safe mode doesnt work :vamp: It starts to load everything and freezes

tancurrom wrote: well, what do you mean by going on printers and fax? as in the menu that come up if you want to print something

start -> printers and faxs -> ctrl + e -> search what you want…

absorb il add u in a min and we can talk :) im glad i share this problem with other people :) lol im gettin fustrated on my own :S

I think i might be able to get it!!!

Prometheum wrote: Can you edit a shortcut to point to cmd.exe and run that, then taskkill the programs that are blocking you? I don't have expirience with rm3, so it might not work, but it works on the NetWare stuff at my school.

not sure weather what you said was getting at what im abuot to say but it sort of worked!…

i went into my documents and made a shortcut… typed in cmd

it came up.. and i got onto it!!! but it says.. "The administrator has banned this press any key to continue" and it just turns it off.

so i went into properties and went on shortcut –> advanced –> use with different credentials –> then i could use it with my user or it listed the admins that could enter a password and get in.

i tried various passwords to try like admin and things but in the end i thuoght id come back here and tell you :)

in the end i couldent get into the cmd but its a step forward? post some suggestions please?

Well, not really.

Thats one of the first things I tried, and the same thing happend. If you could get/guess an admins password, then there wouldn't be much point in making the shortcut to CMD when it's available on the admins account

Besides, what happens if a teacher goes on RM Tutor while your in CMD? I'm sure that you'd get in BIG trouble for having the admins pass alone. Also, in the admins account, task manager would be enabled, which is alot less suspicious than the big black CMD window (RM Tutor shows thumbnails when looking at a whole class, so CMD stands out, but if you're on tak manager, it doesnt look as bad.

Anyway, ROB52's laptop is a bit fucked right now (he was soldering the power cable on today in the technology rooms :P) but if we manage to do anything with it I'll post back ^^

AbSoRb wrote: Anyway, ROB52's laptop is a bit fucked right now (he was soldering the power cable on today in the technology rooms :P) but if we manage to do anything with it I'll post back ^^

good good, i copyd some files on to my m8s memory stick so i sould have that soon aswell :)

Well do what I do… take computing A-Level.

Teachers get bored of using Virtual PC to use VB.6 IDE and end up giving you admin accounts.

"If you want to hack… go ahead, just don't expect to come back to school once you've been caught".

Although I could. It's not worth it.

Hacking the school is no longer easy/punishment-less. It's up there with the "You need guts" to hack.

Although … you can still make scrap files on RM's. (Check my article).

I made one that changed permissions on files and got full access to the entire network.

-The_Flash- wrote: Well do what I do… take computing A-Level.

Teachers get bored of using Virtual PC to use VB.6 IDE and end up giving you admin accounts.

"If you want to hack… go ahead, just don't expect to come back to school once you've been caught".

Although I could. It's not worth it.

Hacking the school is no longer easy/punishment-less. It's up there with the "You need guts" to hack.

Although … you can still make scrap files on RM's. (Check my article).

I made one that changed permissions on files and got full access to the entire network.

hmmm, but if i do get caught il say i was trying to help the admin keep security up by checking their security for FREE. and i was abuot to report to them when they bust in on me lol….

anyways have you got the URL of that by any chance?

It's in my profile

I dont think the Scrap file worked when I tried it, but It was a while back…

Also, if your filter is RM SaftyNet Universal, then its vunerable to XSS :happy: You cant really do much, exept maybe scare your teachers :P You can use external .js and .css files in it to either mess up the display or add things to the pages… but only on your side (google XSS and javascript injection)

Heres a couple of things i did when i was bored:

Snow flakes Our school had snowflakes flowing down on the hompage, so i used their script, but edited it so that there were 2000 snow flakes :D

Ugly Dog I'd been practising my css a couple days ago, so i tried this out earlier this afternoon :ninja:

I just use fat-pie.com because it's blocked, so it takes you to the filter page… try it out! If you have the time, you could even put a username and login field in there that directs to your own stuff, and tell people it's a way to get past filters (if your lucky a teacher might try it to see if it works :evil: )

AbSoRb wrote: I dont think the Scrap file worked when I tried it, but It was a while back…

Also, if your filter is RM SaftyNet Universal, then its vunerable to XSS :happy: You cant really do much, exept maybe scare your teachers :P You can use external .js and .css files in it to either mess up the display or add things to the pages… but only on your side (google XSS and javascript injection)

Heres a couple of things i did when i was bored:

Snow flakes Our school had snowflakes flowing down on the hompage, so i used their script, but edited it so that there were 2000 snow flakes :D

Ugly Dog I'd been practising my css a couple days ago, so i tried this out earlier this afternoon :ninja:

I just use fat-pie.com because it's blocked, so it takes you to the filter page… try it out! If you have the time, you could even put a username and login field in there that directs to your own stuff, and tell people it's a way to get past filters (if your lucky a teacher might try it to see if it works :evil: )

Nice find dude.

I'll try it tomorow ;)

try using this as the js, should work nicely [or i can mod it with your name or something if you want

http://tancurrom.homelinux.org/owned.js