-= SCAVENGER-DIALER V0.60 =- ACCESS ALL AREAS INVITATION release written by Scavenger DISCLAIMER: ----------- Use this program at your own risk. The author is NOT responsible for any crime commited by using this program. Introduction After the time when the GERMAN TELEKOM installed some nice devices I wrote a loader that allowed TLO to play 5 frequencies but that wasn't a good solution. TLO doesn't support any decent frequency scanner and has no volume scanner.So I decided to start to write my own dialer in December 94. This program is the best dialer on PC you can get. It supports 5 frequency trunks, an advanced frequency/volume scanner, a routing scanner, scripts & much more. It is written in Borland Pascal and Assembler. Usage Main Screen: ------------ Enter or A-Z Dial number CTRL-E, CTRL-Enter, ALT A-Z Edit number DEL Delete entry INS Insert entry CTRL DEL Delete entry & copy entry into clipboard CTRL INS Insert entry from clipboard HOME Move to begin END Move to end GRAY 0-9 Dial digits manually GRAY x//- Dial KP1, KP2, ST manually CTRL GRAY x/ Dial C11, C12 manually 1-7 Dial DTMF numbers ALT 1-7 Edit DTMF numbers CTRL-C CCITT #4 configuration (see notes) CTRL-D, 0 Toggle C5/DTMF/R2F/R2B/C4 CTRL-B Bosskey, press again to continue SPACE, + Play trunk CTRL-T, BACKSPACE Edit trunk F1-F12 Select trunk 1-12 CTRL F1-F12 Select trunk 13-24 ALT F1-F12 Select trunk 25-36 SHIFT F1-F12 Select trunk 37-48 CTRL-Q Decrease delay offset (-99%..0..+99%) CTRL-A Increase delay offset (-99%..0..+99%) CTRL-W Decrease volume offset (-63..0..+63) CTRL-S Increase volume offset (-63..0..+63) SCROLL LOCK Toggle Breakfirst on/off CTRL-F, TAB Frequency/Volume scanner CTRL-TAB Run script use also SCAVENGE.EXE /S script.scr CTRL-R Routing scanner CTRL-Z Word time PAGE-UP/DOWN Change dial volume CTRL PAGE-UP/DOWN Change dial speed Edit trunk: ----------- Enter Edit trunk name F1-F12 Select trunk 1-12 CTRL F1-F12 Select trunk 13-24 ALT F1-F12 Select trunk 25-36 SHIFT F1-F12 Select trunk 37-48 PAGE-UP/DOWN Change trunk DEL Delete current trunk INS Insert trunk HOME Move to begin END Move to end SPACE, + Play trunk TAB Frequency/Volume scanner Frequency/Volume scanner: ------------------------- PAGE-UP/DOWN Change value Enter Start frequency scanning + Start volume scanning S Save values to current trunk R Reset scanner = From freq=to freq SPACE Toggle frequency play F1-F12 Select trunk 1-12 CTRL F1-F12 Select trunk 13-24 ALT F1-F12 Select trunk 25-36 SHIFT F1-F12 Select trunk 37-48 The following shows an example how the volume scanner works: frequency/volume scannerĿ F1 V1 F2 V2 F3 V3 F4 V4 F5 V5 from freq : 100 40 200 401100 01200 01300 45 to freq : 100 50 200 401100 501200 01300 63 add value : 1 1 1 0 1 99 222 99 0 1 len/pause : 200 20 scannerfreq: 100 40 200 401100 451200 451300 45 This example scan the volumes of the frequencies 100, 200, 1100, 1200, 1300 Hz. The frequencies 1100, 1200 & 1300 Hz will be scanned from a volume of 45 to a volume of 63. So it begins with: 100 40 200 40 1100 45 1200 45 1300 45 100 40 200 40 1100 46 1200 46 1300 46 100 40 200 40 1100 47 1200 47 1300 47 . . . . . . . . . . 100 40 200 40 1100 63 1200 63 1300 63 Then it goes on to 200 Hz. The volume of 200 Hz is constant from 40 to 40 so the volume of 100 Hz is scanned. 100 41 200 40 1100 45 1200 45 1300 45 100 41 200 40 1100 46 1200 46 1300 46 100 41 200 40 1100 47 1200 47 1300 47 . . . . . 100 41 200 40 1100 63 1200 63 1300 63 100 42 200 40 1100 45 1200 45 1300 45 100 42 200 40 1100 46 1200 46 1300 46 100 42 200 40 1100 47 1200 47 1300 47 . . . . . 100 42 200 40 1100 63 1200 63 1300 63 . . . . . . . . . 100 50 200 40 1100 63 1200 63 1300 63 Got it! The volume is very important since the presents of some nice devices. Scripts: -------- Avaible script commands: DIAL x Dial number x PLAYTRUNK x Play trunk number x WAIT x Wait x ms (0..60000) SET_DTMF Set DTMF dialset SET_C4 Set CCITT #4 dialset SET_C5 Set CCITT #5 dialset SET_R2F Set R2 forward dialset SET_R2O Set R2 backward dialset LPTON Set all LPT port bits LPTOFF Clear all LPT port bits SENDPORT x y Send value y (0..255) to port x (0..255) WRANDOM x y Wait time x seconds and y random seconds PAUSE Pause, wait for any key RUNAGAIN x Run script again in x ms or press ESC Routing scanner: ---------------- Enter Dial number F1-F12 Select trunk 1-12 CTRL F1-F12 Select trunk 13-24 ALT F1-F12 Select trunk 25-36 SHIFT F1-F12 Select trunk 37-48 SPACE Play trunk CTRL-E, CTRL-Enter Edit prefix, suffix, scan CURSOR-LEFT,- Decrease scan CURSOR-RIGHT,+ Increase scan 0 Toggle zero including on/off (toggle off if you dont know how many digits the routing has) CTRL-S Toggle Script after on/off (useful when scanning automaticly and you just listen to it) TAB Start automatic scanning Create a script file called 'ROUTSCAN.SCR' with the things you need to scan (PLAYTRUNK, WAIT, SENDLPT/LPTON/LPTOFF & stuff) example ROUTSCAN.SCR: WRANDOM 5 0 waits 5 seconds PLAYTRUNK 4 play trunk #4 WAIT 400 wait 400 ms PLAYTRUNK 3 play trunk #3 Options: -------- Run SCAVENGE.EXE with options /? to get help /A to use more compatible sound routines (use when you have problem... when emulating Adlib or soundcard is not 100% compatible) /C to use Win/OS2 compatible timing routines /D filename user defined data-file(default SCAVENGE.DAT) /G to use GUS instead of Adlib/Soundblaster /N to use DOS timer routines (used as default) /S filename to start a script CCITT #4 Some notes to standard CCITT #4 -------------------------------- If you don't know what to do with C4 - don't use it (huh). If you know where you can use it be happy & enjoy it! Freq A 2040 Hz for 35 ms Freq B 2400 Hz for 35 ms Freq P Freq A & Freq B together for 150 ms Freq X Freq A for 100 ms Freq Y Freq B for 100 ms Ŀ Encoded Digit Info ij BBBA 1 1 BBAB 2 2 BBAA 3 3 BABB 4 4 BABA 5 5 BAAB 6 6 BAAA 7 7 ABBB 8 8 ABBA 9 9 ABAB 0 0 PX A KP1 PY B KP2 AAAA C ST ABAA F C11 AABB G C12 AABA H C13 AAAB I C14 BBBB J C15 ACCESS ALL AREAS There is a h/p conference this summer in London. You can meet me there. ACCESS ALL AREAS Computer Security & Hacking Conference 1st - 2nd July, 1995 (Saturday & Sunday) King's College, London, UK --------------------------------WHAT-IT-IS--------------------------------- The first UK Computer Security and Hacking Conference, Access All Areas, is to be held in London later this year. It is aimed at hackers, phone phreaks, computer security professionals, cyberpunks, law enforcement officials, net surfers, programmers, and the computer underground. This will be a Conference for people that are interested in various aspects of computer culture. Respected industry professionals, legal experts and computer hackers will be presenting talks about such subjects as illegitimate computer access, telephone fraud, legal aspects and much, much more. It will be a chance for all sides of the computer world to get together, discuss major issues, learn new tricks, educate others and meet 'The Enemy'. --------------------------------WHERE-IT-IS-------------------------------- Access All Areas is to be held during the first weekend of July, 1995 at King's College, London. King's College is located in central London on The Strand. ------------------------------WHAT-WILL-HAPPEN----------------------------- There will be a large lecture theatre that will be used for talks by computer security professionals, legal experts and hackers alike. The topics under discussion will include hacking, phreaking, computer fraud, telephone fraud, encryption technology, big brother and the secret services, biometrics, cellular telephones, pagers, magstrips, smart card technology, UNIX security risks, legal aspects and much, much more. Technical workshops on several of the topics listed above, will also be running throughout the Conference. An Internet link, being provided for the duration of the Conference, will be connected to a local area network allowing World Wide Web access, Internet Relay Chat sessions, and Cu-See-Me video conferences to take place. A video room, equipped with multiple large screen televisions, will be showing various films, documentaries and other unique hacker related footage. ---------------------------------SPEAKERS---------------------------------- This is the initial list of speakers for Access All Areas. Additional guests will be announced as they are confirmed. [...] o Chris Goggans is the Editor of Phrack Magazine, the premiere online hacking magazine. He was also one of the original founders of the US hacking group 'The Legion of Doom!'. Goggans is also a consultant to government and industry in countries around the world regarding matters of information security. o Emmanuel Goldstein is the editor of 2600 - The Hacker Quarterly, a US hacking publication. o John McCormac is a smart-card technology expert and author of several books covering encryption techniques. o Rop Gonggrijp, Hack-Tic Technologies, The Netherlands. ------------------------------SPECIAL-EVENTS------------------------------- A number of special events are planned for the duration of the Conference. o HACK THE BORDERWARE FIREWALL SERVER COMPETITION [...] -----------------------------------COST------------------------------------ The price of admission will be 25.00 cash only per person at the door and will include a door pass and conference programme. -------------------------------REGISTRATION-------------------------------- Registration will take place at the door on the morning of Saturday 1st July from 10:00am. The Conference will commence at 12:00 noon. Lectures and workshops will run until late Saturday night and will continue on Sunday 2nd July from 9:00am until 6:00pm. -----------------------------PRE-REGISTRATION------------------------------ Due to popular demand pre-registration is now available. If you wish to pre-register send a non-refundable deposit of 5.00, cash, cheque or postal order, made payable to 'ACCESS ALL AREAS', together with your name (or alias) and a password that can be verified upon your arrival. To gain admission your name (or alias) will be checked and your password voice verified. Once your pre-registration has been confirmed you will be required to pay the remainder of the admission fee (20.00 cash). All pre-registrations should be sent to the following address and must arrive no later than Monday 26th June, 1995... ACCESS ALL AREAS PO BOX 55 LIPHOOK HAMPSHIRE GU30 7YF ENGLAND ------------------------------ACCOMMODATION-------------------------------- Accommodation in University Halls of Residence is available for the duration of the Conference. All prices quoted are per person, per night and include a full English breakfast. SINGLE TWIN WELLINGTON HALL 22.00 16.75 Special prices for British and Overseas University students, holding current student identification, are also available - please call King's Campus Vacation Bureau for details. All bookings must be made directly with the University. They accept payment by cash, cheque and credit card. To make a booking call the following numbers... KING'S CAMPUS VACATION BUREAU Telephone : +44 (0)171 351 6011 Fax : +44 (0)171 352 7376 -----------------------------MORE-INFORMATION------------------------------ If you would like more information about Access All Areas, please contact one of the following... Telephone : +44 (0)973 500 202 Fax : +44 (0)181 224 0547 Email : info@phate.demon.co.uk Well, hopefully I will see many of you guys there and hopefully NOT! so much lemmings as at Chaos Congress. Scavenger-Dialer history V0.01 XX.12.94 First steps... . . Trunks, C5 dialing, DTMF dialing, phonebook etc. . V0.22 26.02.95 First useful version Added frequency scanner V0.30 03.03.95 Added volume scanner Removed some bugs in scanner DTMF numbers now on INS,DEL,POS1,END,,x,- Volume with PAGE-UP/DOWN Dialspeed with Alt PAGE-UP/DOWN V0.31 04.03.95 Added bios-crc checking Removed an bug in volume scanner use Return for frequency scanning or + for volume scanning in scanner mode V0.32 08.03.95 Added noise scanning routines (not ready yet!) V0.33 09.03.95 Optimized sound routines Added R2-support V0.34 15.03.95 Yellow noise scanner is ready now V0.35 17.03.05 Added script support usage: 'SCAVENGE.EXE /S script.scr' V0.36 18.03.95 Removed bugs in yellow noise scanner V0.37 22.03.95 Removed bug in playtrunk routine V0.38 23.03.95 Added WRANDOM function to script language usage: WRANDOM {time} {timetoaddrandomly} example WRANDOM 600 360 will wait 600 seconds + max. 300 seconds V0.40 26.03.95 Added cursor functions in phonebook Ganja Man: ist das jetzt ok?!! -> some guys like it to move around the cursor and play a bit until they dial the #, i like the one-keys more but hell both will do the job fine hopefully nobody wants any mouse support..arghh Easier key handling for the toll free numbers use 1-7 on normal keyboard to dial, Alt to edit Easier key handling for manual C5/ R2 dialing use 0-9 on keypad and /x/- for KP1/KP2/ST on keypad.Really handy for manual routing scanning Ins, Del in phonebook.. guess what they will do Added the TLO %Txx% dialing macro for trunks in the dialstring Added scroll lock to toggle Breakfirst on/off it will first play the current trunk b4 dialing Automatic detects data files of older dialer versions and converts it Added quick trunk volume offset changing useful when you change your dialing equipment or just for testing use: ', .' to -/+ value V0.41 31.03.95 Added SHIFT F1-F12 to select trunks 37-48 Documentation added .. see SCAVENGE.DOC - timings doesn't work well under windoof 386 mode use WIN /S or SCAVENGE.EXE /WIN V0.42 04.04.95 First *PUBLIC* version R2 backward added use: 8/9/0 to select C5/R2F/R2B V0.43 08.04.95 Bug in documentation fixed (CTRL-PAGE/DOWN to change dialspeed) Windows/OS2 combatible now! Added quick delay offset changing in % use: CTRL-Q/CTRL-A to -/+ value V0.44 10.04.95 Added CCITT #4 support Added some script functions Dialer is now in 28 line mode Change dial settings now on normal '0'/ CTRL D (C5/DTMF/R2FO/R2BA/C4) V0.45 13.04.95 Documentation into the program included Added sound card detection Sound routines speeded up -> clear sound under Win/OS2 now V0.46 14.04.95 Trunk managment updated (Ins,Del,Home,End) Some bugs removed Bugfixed TLO2SCA.EXE Automatic Windows/OS2 detection Added CCITT #4 configuration use: CTRL-C Destiny Stone ][ is now support site call +61-92SCANIT V0.50 17.04.95 *PUBLIC* version Quick trunk volume offset changing now on CTRL-W/CTRL-S to -/+ value Improved user interface (see doc) V0.51 03.05.95 *PUBLIC* version Some problems with sound/timer routines fixed Added last action timer (suggestion of Urs) will work in DOS mode only Added CTRL GRAY /x for C11/C12.. I forgot that (thanks to Omega!) Internet support site: ftp.fc.net /pub/defcon/SCAVENGER/scav-xxx.zip Saveing play status of freq/vol scanner Added user defined data-file option usage: 'SCAVENGE.EXE /D data.dat' You can use ALT/CTRL/SHIFT F1-F12 from edit trunk mode or frequency scanner now too to select the trunks Removed EDIT TRUNK bug: lenght/pause were only allowed from 0..4000 ms now 0..9999 ms Double frequencies in EDIT TRUNK mode are not allowed because it is senseless WRANDOM script function bug fixed Added RUNAGAIN script function V0.52 19.05.95 Removed SENDLPT script (use SENDPORT instead) Added SENDPORT x y (sends byte y to port x) Added kewl routing scanner - CTRL-R to start it I didn't found any useful routing scanner on PC so enjoy this one! Added switch to make sound routines more compatible with adlib emulators usage: 'SCAVENGE.EXE /A' Advanced RUNAGAIN script function usage: RUNAGAIN x to automatic continue in x ms New support site: Secret Tectonics/Internet V0.60 11.06.95 *PUBLIC* version GUS support added (I don`t have a GUS so report me any trouble or bugs) Added more toll free number on 8,9 Data file: SCAVENEW.DAT New support sites: Restricted Access/Scream BBS/ Big Mathata's/Tropical BBS/Eternal Darkness Removed powerful Yellow noise scanner sorry - it is for private use only Added help to the dialogs Improved freq/vol scanner: supporting volume scanning with 2 frequencies at same volume Last action timer also works under Windows now Added handy 1850 Hz on ',' and 2100 Hz on '.' Added CTRL DEL & CTRL INS to Delete/insert number using clipboard Added world time zones on CTRL-Z The next versions may include some nice functions: Phonebook encryption with DES.. let the feds get crazy? - Or not? When you get busted they will force you to give them the password or you have to spend some months somewhere else. The best way to protect your numbers is to zip the stuff on a floppy disk and unzip it into a RAMDISK when needed.. got it?! floppy disks are easy to handle.. C5/R2/C4/DTMF tones recognizing.. If someone has experience with tone recognozing please mail me at sca@unlmted.pc.my) I started with the FFT stuff, but it seems to be very complex when the tone recognizing is ready the automatic routing scanner will totally rock.. you will simply start it and go away.. let it scan for some hours.. Where can I get the latest version of this dialer Name Location Number/Directory FTP.FC.NET Inet/FTP /pub/defcon/SCAVENGER/ SECRET TECTONICS: Inet/TELNET login: bbs TELNET TO SEC.DE (avaible 24h weekends 4pm-9am CET on Mo-Fr) ETERNAL DARKNESS Canada +1-5197415725 THE ATMOSPHERE USA +1-2142262521 TROPICAL BBS Mozambique +258-1425745 BIG MATHATA'S BOARD Botswana +267-373461 (a country (THE ONLY BBS THERE) with 6 digit #'s huh) VIRUS POLYTECHNIC South Africa +27-119535414 ARRESTED DEVELOPMENT Netherlands +31-77547477 RESTRICTED ACCESS Denmark +45-36703060 LORE BBS Germany +49-69823282 SECRET TECTONICS Germany +49-8954290553 SCREAM BBS Argentina +54-18326305 TEMPLE OF LIGHT Uruguay +598-2774191 NUP: DEATHROW +598-2773714 UIS Malaysia +60-35210772 DESTINY STONE ][ Australia +61-92463491 +61-92462553 If you are a sysop and want to become a SCAVENGER-DIALER support site write me an email. If you think one of this boards is not good enough and your board is 1000x better let me know it too. Please don't write me if you run a warez bbs except you live in a country that has only a few boards like in Uruguay. I want a support site in Russia, but the problem is that the number would be +7-095... so 095 is the area code and not 95. But if you dial KP2-70095....ST it don't work because of the second zero! Maybe there is any special operator but C11/C12 also don't works. If you have any suggestions write me an email. greetings Thanks to: Ganja Man - For being a good friend and h/p dude Klaus - For your excellent ideas, and long discussions Udo,Jolly - greets Fisch - 10 beers for you in London? Vertrgt er das denn? Marc Diamond - I lost the contact to you.. leave me a voicemail! Vaxxer - For being root on xxx.xxx.xxx.xxx Tank04 - Thanks for the tip on Windows/OS2 compatible timing routine Sid - Stop posting crap for the fidonet lemmings Updike - How is Czech Republic? Hopefully the tips I gave you worked BaDS - Thanks for the GUS stuff Chmawd,Sl0ppy - greets Zorphix - To call via 5 countries rocks! Aphex Twin - Still dj-ing?! What about London in summer? Pop - Call his h/p board at +60-35210772 Zerial - netsplit sucks - nicksplit rocks! hehe Omega - Let's meet in London at first July weekend! El Griton - For being the sysop of Scream BBS in Argentina Grudge - I will add the Dial-Exlation soon Ripmax - For being the sysop of Australians finest h/p board: DS ][ Sevenup - SecTec is back again! House & Acid musicians - How boring would it be without some kewl House music?! and... Beatmaster_V (NOT!) - You sucks and you know why!..releasing trash and asking stupid questions on party lines (translated into English): Sca: Why did you release a text file with bb frequencies & routings? B: blub.. pff..I don't know.. <..> Sca: What do you use with R2? B: R2 what is that? <..> Sca: Ok.. hmmm.. so you use C5? B: C5 ????? blub.. argh.. hmm... pfff.. I just use the normal one Sca: C5 - CCITT #5? B: I don't know (because he doesn't know anything) He wrote a text file about blue boxing from germany with a lot freqs (huh..2400Hz=HANGUP 2600Hz=SEIZE) - but as you see he doesn't know what C5 is! some crap of him: 'Es klappt net immer beim ersten Mal. Es ist noch kein Phreaker vom Himmel gefallen ;)' - wirklich? 'Ehm jo. Falls Ihr irgendwo in ein Board kommt wo ich bin, schreibt dem Sysop ne Mail das ich bald wieder komme und sagt ihm schne Grsse. hehe...' - hmm hab ich gleich gemacht auf einem von 2 Boards, die ich in Deutschland calle - der LORE-BBS.. da wurde er jetzt gekickt! You are right.. Beatmaster V of DIESEL rulez! h0h0 I hope you will have phun with this dialer. -Scavenger 1995