1. A good site I found was
http://www.puremango.co.uk (very poorly designed tho :-/ but some pretty good hacking and cracking info there.
2. (a) Loop has basically said all that needs to be said. Other than that i can list a few things to add on: IP sniffers, Packet sniffers,Port Scanners, Trojans, and my favourite Virus/Trojan program that is really interesting, SubSeven. I have played around with it before and its quite a fun little program... just NEVER run it on your own system... especially if you intend it for nasty purposes.
(b) By looking for vulnerabilities in the security, looking for ways to get in.
(c) I have to disagree with you there Loop. Having the information readily available to the public is the best, Admins are constantly looking for information to increase the websites security and the best way to do it is instead of not only looking through the
whole website for vulnerabilities. They would just need to check hacker sites for any found vulnerabilities they could counter.
Completed Successfully with no problems what so ever!