Dunch Noe on Backdoor

Simple backdoor for people who are having difficulties bypassing security settings.

1. Mail filters that perform attachment stripping even for password protected zip files with executable files.

Ans: There are two ways to bypass this. Rename the extension or remove the extension of the file you are placing in the password protected zip file. Alternatively, encrypt the zip file again into a new zip file.

2. Password Policy - Password History

Ans: Most password history maintains 3 to 5 generations of passwords. Thus, you are unable to re-use the password. A simple way to bypass is to change the password for six times before changing back to your favorite password. Change it to Pas$0001, Pas$0002, Pas$0003, Pas$0004, Pas$0005 and back to your old password. You can re-use your password again now.

3. Proxy Bypass

Ans: Having your favorite game site blocked by the proxy in your school? Try using web proxy bypass in free website like toolforschool.com. Most proxies are rather outdated and easily bypassed. You might even be able to go to sites like www.playboy.com or www.penthouse.com. However, if you are having some serious problem with bypassing proxy due to effective proxy maintenance by the proxy vendor such as bluecoat engine, you may try to configure a proxy bypass script at your home pc to act as a redirect. Best of all, configure your home PC to have a switchable proxy bypass script i.e. You only switch it on when you need it. No administrator is good enough to handle a proxy bypass that is offline without proper admin password. Bye Bye, bluecoat.

Of course, if you have any other suggestions to bypass weak programming designs, do share with me.