Collection of SQL injection tool - website hacking
Friday, September 30, 2011
0
comments
Absinthe - SQL injection tool
Wednesday, September 28, 2011
0
comments
Absinthe - SQL injection tool
Absinthe is a gui-based tool that automates the process of downloading the schema & contents of a database that is vulnerable to Blind SQL Injection.
Absinthe does not aid in the discovery of SQL Injection holes. This tool will only speed up the process of data recovery.
Features:
- Automated SQL Injection
- Supports MS SQL Server, MSDE, Oracle, Postgres
- Cookies / Additional HTTP Headers
- Query Termination
- Additional text appended to queries
- Supports Use of Proxies / Proxy Rotation
- Multiple filters for page profiling
- Custom Delimiters
Download Here:
Absinthe
download iScanner - opensource webpage scanner
0
comments
iScanner is a free open source tool lets you detect and remove malicious codes and web page malwares from your website easily and automatically. iScanner will not only show you the infected files in your server but it's also able to clean these files by removing the malware code ONLY from the infected files.
Current Features:
- Ability to scan one file, directory or remote web page / website.
- Detect and remove website malwares and malicious code in web pages. This include hidden iframe tags, javascript, vbscript, activex objects, suspicious PHP codes and some known malwares.
- Extensive log shows the infected files and the malicious code.
- Support for sending email reports.
- Ability to clean the infected web pages automatically.
- Easy backup and restore system for the infected files.
- Simple and editable signature based database.
- You can easily send malicious file to iScanner developers for analyzes.
- Ability to update the database and the program easily from iScanner's server.
- Very flexible options and easy to use.
- Fast scanner with great performance.
- Yes, it's FREE!!
Download Here:
http://iscanner.isecur1ty.org/download.html
Pangolin - SQL Injection Test Tool
Sunday, September 25, 2011
0
comments
Pangolin - SQL Injection Test Tool
Pangolin is a nice SQL injectiong testing tool. It has the ability to show all SQL injection vulnerabilities that may exploit by hackers.
It Support Most Types of Database such as Access, DB2, Informix, MySQL, Oracle, Microsoft SQL Server, DB2, Sybase, etc.
Features
- Here is parts of features:
- HTTPS support
- Pre-Login
- Proxy
- Specify any HTTP headers(User-agent, Cookie, Referer and so on)
- Bypass firewall setting
- Auto-analyzing keyword
- Detailed check options
- Injection-points management
- Injection Digger
- Data dumper
Download Here:
http://www.nosec-inc.com/en/help/2011/0423/56.html
internet speed online - check your internet speed
Saturday, September 24, 2011
2
comments
internet speed online - check your internet speed
If you are facing problem with your internet or want to confirm the internet speed of your new connection. Then this cool online tool can help you.
Speed Test- This is the best speed test website which i use. It looks good, fast check on upload and download speed and lets you save your speed test. By using Speedtest.net, you can consistently verify if your Internet service provider is delivering the connection speed they promised.
Download Havij 1.1.5
Thursday, September 22, 2011
2
comments
Download Havij 1.1.5
Havij is the one of the best tool for SQL injections which is used by most of the persons to hack website databse. This is a nice automated tool which takes tha URL and give you complete database of the website
The power of Havij that makes it different from similar tools is its injection methods. The success rate is more than 95% at injectiong vulnerable targets using Havij.
The user friendly GUI (Graphical User Interface) of Havij and automated settings and detections makes it easy to use for everyone even amateur users.
What's in this
- Webknight WAF bypass added.
- Bypassing mod_security made better
- Unicode support added
- A new method for tables/columns extraction in mssql
- Continuing previous tables/columns extraction made available
- Custom replacement added to the settings
- Default injection value added to the settings (when using %Inject_Here%)
- Table and column prefix added for blind injections
- Custom table and column list added.
- Custom time out added.
- A new md5 cracker site added
- bugfix: a bug releating to SELECT command
- bugfix: finding string column
- bugfix: getting multi column data in mssql
- bugfix: finding mysql column count
- bugfix: wrong syntax in injection string type in MsAccess
- bugfix: false positive results was removed
- bugfix: data extraction in url-encoded pages
- bugfix: loading saved projects
- bugfix: some errors in data extraction in mssql fixed.
- bugfix: a bug in MsAccess when guessing tables and columns
- bugfix: a bug when using proxy
- bugfix: enabling remote desktop bug in windows server 2008 (thanks to pegasus315)
- bugfix: false positive in finding columns count
- bugfix: when mssql error based method failed
- bugfix: a bug in saving data
- bugfix: Oracle and PostgreSQL detection
Download Here:
Havij
Download Visual DuxDebugger Debugger | Disassembler for Windows 64-bit
0
comments
Download Visual DuxDebugger Debugger | Disassembler for Windows 64-bit
Main features
- Fully support 64-bit native processes
- Fully support 64-bit .NET processes
- Full code analysis
- Full memory analysis
- Code edition
- Memory edition
- Module export formats (EXE/DLL/CSV)
- Debug multiple processes
- Debug multiple child processes
Minimum Requirements
O.S: Windows 7 64-bit / Windows Server 2008 R2
Processor: Pentium 4 3.0 GHz
Recommended Requirements
O.S: Windows 7 64-bit / Windows Server 2008 R2
Processor: Dual Core 2.5 GHz
Display: 1920 x 1080
Download Here:
http://www.duxcore.com/fs_files/VisualDuxDbgSetup.zip
How to bypass Internet Explorer's XSS filter
0
comments
How to bypass Internet Explorer's XSS filter
Last night i was going through some security papers, then i have found a nice reaserch paper on bypassing Internet Explorer's XSS filter.
By default Internet Explorer 9 has a security system to help prevent Reflective XSS attacks. There are well known shortfalls of this system, most notably that it does not attempt to address DOM based XSS or Stored XSS. This security system is built on an arbitrary philosophy which only accounts for the most straight forward of reflective XSS attacks[1]. This paper is covering three attack patterns that undermine Internet Explorer's ability to prevent Reflective XSS. These are general attack patterns that are independent of Web Application platform.
Read here
https://sitewat.ch/files/Bypassing%20Internet%20Explorer%27s%20XSS%20Filter.pdf
How to get older facebook news feed style
Wednesday, September 21, 2011
1
comments
Facebook has rolled out new layout and feeds.But this style is confusing for those who are facebook addict and takes time to adjust with new look. Most of the users do not want to get this new change and want to be back on older style. They can follow these simple steps
Follow these simple steps
Follow these simple steps
- click on down arrow just right to the home button
- Go to the account settings
- Click on Edit just after the language option.
- Now set English (UK)
- see the older feed style and layout on facebook
Reason: All the new updates are only works on English (US). If you change to language to any other, you will be back on older style.
NetworkMiner v.1.1 Released | Network Forensic Analysis Tool
Tuesday, September 20, 2011
0
comments
NetworkMiner v.1.1 Released
NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files.
The new version supports features such as:
- Extraction of Google Analytics data
- Better parsing of SMB data
- Support for PPP frames
- Even more stable than the 1.0 release
Download Here:
Download IDM 6.07 Build 11 | Internet Download Manager Full Patch
Sunday, September 18, 2011
9
comments
Download IDM 6.07 Build 11 Internet Download Manager Full Patch
Internet download Manager (IDM) is the best download manager and have a lot of features. For those who wants to updated IDM (Internet download manager) with full patch, now you can build it into the current version of IDM 6.07 Build 11.
Download Here:
http://mirror2.internetdownloadmanager.com/idman607.exe
Download Patch here:
http://www.ziddu.com/download/16434845/PatchIDM6.xx.rar.html
Password : hackingtricks.in
How to download books from Google books
1
comments
How to download books from Google books
If you ever tried to download a book from Google book but failed, i have a trick for you. Now you can download book from the book easily. Search and download. Its too simple now.
For using this, you need to download Greasmonkey add on first.
How to use:
Install Firefox, Greasemonkey and [ Userscript ] Google Book Downloader
View a book. Ex : http://books.google.com/books?id=Tmy8LAaVka8C&printsec=frontcover
In the left panel, click Download this book
How to save book
Install FlashGot add-on for Firefox and FlashGet
Select all pages, right-click, choose FlashGot Selection
Press OK to start downloading. Note : Download only one page at a time, or your IP will be banned
After the downloading is finished, in FlashGet, left panel, choose Downloaded folder.
Select all pages of the book, right-click, choose Rename -> Comment As Filename
Read book
download Droidsheep | Android Application for one click Session Hijacking
Saturday, September 17, 2011
1
comments
download Droidsheep | Android Application for one click Session Hijacking
Droidsheep is free alternate of faceniff which is available on download droidsheep website for free. Its one click hijacking tool which supports
Amazon.de
facebook.com
flickr.com
twitter.com
linkdein.com
yahoo.com
live.com
google.de (only the non-encrypted services like "maps")
DroidSheep now supports nearly all Websites using Cookies!
With Version 5, DroidSheep got the new “generic”-Mode! Simply enable it, and DroidSheep will capture all Accounts in the network!!
Successfully tested with ALL already supported Accounts and a lot of other ones (even all WordPress and Joomla-Pages should work!!)
Limitations
DroidSheep now supports OPEN, WEP, WPA and WPA2 secured networks.
For WPA/WPA2 it uses an DNS-Spoofing attack.
DNS-Spoofing, means it makes all devices within the network think, the DroisSheep-device is the router and sending their data to the device. This might have an impact to the network and cause connection problems or bandwith-limitations – and it can be spotted. DroidSheeps attack can not, as it only reads the packets sent over the WiFi, but instead of dismissing them, it uses the data
Read More
Download Here:
http://adf.ly/6JuPu
How to send self-destructing messages
1
comments
How to send self-destructing messages
Many times there is the need of sending a written data to a person but you do not want him/her to keep that data for further reading or as a record. Today i am going to tell you how can you send the self-destructing messages. After reading the message, it will not be availabe again for reading.
Follow these steps for sending self-destructing messages.
- Go to the Link
- Write the message you want to send.
- If you want to get the notification when the note was read, you can mark and enter your email id for notification.
- Then click on Create not.
- Now it will give you a link. Send this link to the person by email.
- The note will self-destruct after being read
THC-HYDRA v7.0 new version released
Thursday, September 15, 2011
0
comments
THC-HYDRA v7.0 new version released
THC-HYDRA is a very fast network logon cracker which support many different services. This tool is a proof of concept code, to give researchers and security consultants the possibility to show how easy it would be to gain unauthorized access from remote to a system. It was tested to compile cleanly on Linux, Windows/Cygwin, Solaris, FreeBSD and OSX.
Official change log:
- New main engine for hydra: better performance, flexibility and stability
- New option -u – loop around users, not passwords
- Option -e now also works with -x and -C
- Added RDP module, domain can be passed as argument
- Added other_domain option to smb module to test trusted domains
- Small enhancement for http and http-proxy module for standard ignoring servers
- Lots of bugfixes, especially with many tasks, multiple targets and restore file
- Fixes for a few http-form issues
- Fix smb module NTLM hash use
- Fixed Firebird module deprecated API call
- Fixed for dpl4hydra to work on old sed implementations (OS/X …)
- Fixed makefile to install dpl4hydra (thx @sitecrea)
- Fixed local buffer overflow in debug output function (required -d to be used)
- Fixed xhydra running warnings and correct quit action event
Download Here:
http://freeworld.thc.org/releases/hydra-7.0-src.tar.gz
DarkComet-RAT v4.0 fix 1 released
Wednesday, September 14, 2011
0
comments
DarkComet-RAT v4.0 fix 1 released
DarkComet-RAT (Remote Administration Tool) is software design to control in the best condition and confort possible any kind of Microsoft Windows machine since Windows 2000.This software allow you to make hundreds of functions stealthly and remotely without any kind of autorisation in the remote process.This software is a long time project , started the August 2008 , DarkComet-RAT is now one of the best and one of the most stable RAT ever made and totally free.
One of the most usefull thing in this version is the local database, keylogger logs, users, groups etc are now fully synchronized with the local db using sqlite (very fast and stable).Keylogger is now more efficient, logs are sorted by days and don’t worry if the remote user delete the logs, you still can watch them (a little database icon apear that means their are synchronized with the database).Take a look at the Change log for all improvements!
Download here:
http://www.darkcomet-rat.com/process_download.php?id=5
How to Hide Text File behind Image | Steganography Tool
Monday, September 12, 2011
0
comments
How to Hide Text File Behind Image | Steganography Tool
Steganography is an art of sending secret hidden messages. In this, criminal hide information in other information. For example, text in side an image file.
In this post, I am adding a nice Steganography tool that can be used to hide information behind images. This tool comes with nice GUI and easy to use.
First of all Download S-Tool
http://www.spychecker.com/program/stools.html
Open the tool.
Now drag and drop the image to this tool.
Now, Drag and drop the Secret file over the image, and give the password
After selecting the password, this tool will generate a duplicate image file containing secret text behind image. Save that image.
How to Un-Hide Text.
Drag and drop the newly generated image file containing text.
enter the same Password which earlier has been selected during the hidden image.
DEFT Linux | Computer Forensic live system
0
comments
DEFT Linux | Computer Forensic live system
DEFT Linux v5 is based on the new Kernel 2.6.31 (Linux side) and the DEFT Extra 2.0 (Computer Forensic GUI) with the best freeware Windows Computer Forensic tools. DEFT it’s a new concept of Computer Forensic live system that use LXDE as desktop environment and thunar file manager and mount manager as tool for device management.
It is a very easy to use system that includes an excellent hardware detection and the best free and open source applications dedicated to incident response and computer forensics.
Download Here:
http://www.deftlinux.net/download/
Download Rootkit Hunter | Rootkit scanning tool
Saturday, September 10, 2011
0
comments
Download Rootkit Hunter | Rootkit scanning tool
Rootkit scanner is scanning tool to ensure you for about 99.9%* you're clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like:
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
Download Here:
http://sourceforge.net/projects/rkhunter/
How to hack with Trojan | Prorat tutorial
5
comments
How to hack with Trojan | Prorat tutorial
Prorat a famous trojan for hacking system, facebook, gmail, yahoo, twitter and other accounts. Today i wil show you step by step guide to hack with Prorat.
First of download Prorat from the given link
ProRat
Then disable your antivirus. It is necessary other wise your downloaded trojan will be detected and deleted. Don't worry, it will not harm your system at this stage.
Now run Prorat.exe
You will see the prorat window. There are so many options but you have to create a server first.
So click on create server.
There will be 3 options
- Create Prorat server
- Create Downloader Server
- Create Cgi Victim List & usage
now click on create prorat server
A new window will popup. which will have a lots of options in side bar.
- Notifications
- General settings
- Bind with Files
- Server extnsions
- Server Icons
You have to use all options one by one to create a server.
Now in Notofication. Mark on Use Mail Notification and enter your email id. there will be a default id. Erase it and enter your. Then Test. It will send a testing mail to your email. Check your spam too.
Then Go to general settings and select all the options which you want to have in your trojan.
Then go to Bind with file and select file to bind your trojan with.
At last select your server extension and icon. Then click on Create server.
Now you have created a server.
Send this server file to the victim you want to hack, but before sending this file to victim make it FUD (Fully UnDetectable) with FUD cryptors. Search for this website for FUD articles.
after creating server FUD, it is ready to send to the victim.
Send this file to the victim. If the victim will run the server in the system, Trojan server will send you the notification email with the IP address of the victim. Use this ip and run your prorat.
At the top there is an option for IP and port. Enter thr IP and port and click on connect.
wait to connect.
After getting connected to the victim's system.. you can use any of the options available on the prorat to hack the user's system
Categories:
facebook hacking,
Gmail hacking,
Hacking computer,
Hacking tutorials,
network hacking,
trojan
MessenPass v1.42 - Recover Instant Messenger Passwords
1
comments
MessenPass v1.42 - Recover Instant Messenger Passwords
MessenPass is a password recovery tool that reveals the passwords of the following instant messenger applications:
- MSN Messenger
- Windows Messenger (In Windows XP)
- Windows Live Messenger (In Windows XP/Vista/7)
- Yahoo Messenger (Versions 5.x and 6.x)
- Google Talk
- ICQ Lite 4.x/5.x/2003
- AOL Instant Messenger v4.6 or below, AIM 6.x, and AIM Pro.
- Trillian
- Trillian Astra
- Miranda
- GAIM/Pidgin
- MySpace IM
- PaltalkScene
- Digsby
MessenPass can only be used to recover the passwords for the current logged-on user on your local computer, and it only works if you chose the remember your password in one of the above programs. You cannot use this utility for grabbing the passwords of other users.
Download Here:
http://www.nirsoft.net/utils/mspass.html
password craking Tool: Brutus
Friday, September 9, 2011
0
comments
Hacking Tool: Brutus
Brutus is an online or remote password cracker. More specifically it is a remote interactive authentication agent. Brutus is used to recover valid access tokens (usually a username and password) for a given target system. Examples of a supported target system might be an FTP server, a password protected web page, a router console a POP3 server etc. It is used primarily in two ways:
- To obtain the valid access tokens for a particular user on a particular target.
- To obtain any valid access tokens on a particular target where only target penetration is required.
Brutus does very weak target verification before starting; in fact all it does is connect to the target on the specified port. In the context of Brutus, the target usually provides a service that allows a remote client to authenticate against the target using client supplied credentials. The user can define the form structure to Brutus of any given HTML form. This will include the various form fields, any cookies to be submitted in requests, the HTTP referrer field to send (if any) and of course the authentication response strings that Brutus uses to determine the outcome of an authentication attempt.
If Brutus can successfully read forms of the fetched HTML page then each form will be interpreted and the relevant fields for each form will be displayed. Any cookies received during the request will also be logged here. Brutus handles each authentication attempt as a series of stages, as each stage is completed the authentication attempt is progressed until either a positive or negative authentication result is returned at which point Brutus can either disconnect and retry or loop back to some stage within the authentication sequence.
- Brutus is a generic password guessing tool that cracks various authentication.
- Brutus can perform both dictionary attacks and brute-force attacks where passwords are randomly generated from a given character.
- Brutus can crack the following authentication types:
- HTTP (Basic authentication, HTML Form/CGI); POP3; FTP; SMB; Telnet
Download Here:
http://www.hoobie.net/brutus/
URGE : Twitter Hijack Tool by Anonymous
0
comments
URGE : Twitter Hijack Tool by Anonymous
Anonymous group has launched a new hacking tool which is known as URGE. U.R.G.E. Universal Rapid Gamma Emitter (twitter edition)” which hijacks trending topics of our choice and and lets us tweet messages within them.
They have wrote on website,"We recently have become tired of seeing trending topics on twitter that were redundant and “pop culture” like. We have also grown tired of Twitter not trending hash tags that actually serve a cause and mean something to free thinkers of the world. We have taken note of why Twitter would not do so, they only trend topics which would “appeal” to people and can get people to tweet more. This was pathetic in our eyes, and we could not stand by and take it anymore."
They clearly mention that this tool is not for hacking twitter account. This tool is only to tweet fast.
"This is not a hacking tool nor is it an exploit tool, it was created to make it easier for us to tweet faster without copying and pasting constantly," they added.
Download Here:
http://www.mediafire.com/?tou6qmz7eqbagm1
User manual:
http://pastebin.com/DGsgHFLQ
winAUTOPWN v2.7 – Windows Autohacking Tool
0
comments
winAUTOPWN v2.7 – Windows Autohacking Tool
This version covers almost all remote exploits up-till mid-July 2011 and a few older ones as well. This version incorporates a few new commandline parameters: -perlrevshURL (for a PERL Reverse Shell URL), – mailFROM (smtpsender) and -mailTO (smtpreceiver). These are the commandline arguments required for a few exploits which require remote connect-back using a perl shell and email server exploits requiring authentication respectively. This version also tackles various internal bugs and fixes them.
A complete list of all Exploits in winAUTOPWN is available in CHANGELOG.TXT
A complete list of User Interface changes is available in UI_CHANGES.txt
Also, in this version :
BSDAUTOPWN has been upgraded to version 1.5.
In this release you will also find pre-compiled binaries for :
FreeBSD x86
FreeBSD x64
DragonFly BSD x86
Download winAUTOPWN v2.7
http://27.106.39.229/w/Downloads.html
phishing with fake offers - report by symantec
Tuesday, September 6, 2011
2
comments
phishing with fake offers - report by symantec
Symantec has reported a new type of phishing attack. In this attack the phishing website shows itself as a well known software company and offers a big discoint upto 80% on their purchase. If user want to purchase the software, website asks for all the details from the user including credit card details. If any users had fallen victim to the phishing site, the phishers would have successfully stolen their confidential information for financial gain.
These websites also use the fake trust seals of some big websites. These links also force users to trust on the website.
This website is also hosted on a newly registered domain but having good ranking on searchr results. They are using some Black hat SEO to get better rank. It was indexed in several popular search engines and had a very high page ranking.
Internet users are advised to follow best practices to avoid phishing attacks:
• Do not click on suspicious links in email messages.
• Avoid providing any personal information when answering an email.
• Never enter personal information in a pop-up page or screen.
• When entering personal or financial information, ensure the website is encrypted with an SSL certificate by looking for the padlock, ‘https’, or the green address bar.
• Frequently update your security software, such as Norton Internet Security 2011, which protects you from online phishing.
XPath injection tutorial
Sunday, September 4, 2011
0
comments
XPath injection tutorial
X-path injection is a type of web attack which target a website that create XPath queries from user-supplied data. Querying XML is done with XPath, a type of simple descriptive statement that allows the XML query to locate a piece of information. By sending intentionally malformed information into the web site, an attacker can find out how the XML data is structured, or access data that he may not normally have access to.
XPath Injections might be even more dangerous than SQL Injections since XPath lacks access control and allows querying of the complete database (XML document), whereas many SQL databases have meta tables that cannot be accessed by regular queries.
Now i am going to give a demo of this.. It is similar to SQL Injection attack
See this user.xml file
<?xml version="1.0" encoding="UTF-8"?>
<users>
<user>
<firstname>Ben</firstname>
<lastname>Elmore</lastname>
<loginID>abc</loginID>
<password>test123</password>
</user>
<user>
<firstname>Shlomy</firstname>
<lastname>Gantz</lastname>
<loginID>xyz</loginID>
<password>123test</password>
</user>
<user>
<firstname>Jeghis</firstname>
<lastname>Katz</lastname>
<loginID>mrj</loginID>
<password>jk2468</password>
</user>
<user>
<firstname>Darien</firstname>
<lastname>Heap</lastname>
<loginID>drano</loginID>
<password>2mne8s</password>
</user>
</users>
Xpath query
//users/user[loginID/text()='abc' and password/text()='test123']
Now bypassing authentication in the query
//users/user[LoginID/text()='' or 1=1 and password/text()='' or 1=1]
See the link for detail demonstration.
link
Prevention
XPATH Injection can be prevented in the same way as SQL injection. Some of the
- Input Validation
- Parametrized Queries
Man In the Middle (MITM) attack
Saturday, September 3, 2011
0
comments
Man In the Middle (MITM) attack
Man in the middle attack is a type of attack in which the attacker intercept into the existing connection and breaks it in two different connections, one between the client and the attacker and the other between the attacker and the server. Now all the data would go through the attacker and he would be able to read, modify and insert data in the communication. Man in the middle attacks are sometimes known as fire brigade attacks.
This attack is very effective on http protocol because data is seny on plain text form. It is possible to capture session cookies by header and also possible to change.
There are several tools to perform a MITM attack.
- PacketCreator
- Ettercap
- Dsniff
- AirJack
- Cain e Abel
get ready for GIAC Certified Penetration Tester with G-pen PrepKit
0
comments
G-pen (GIAC Certified Penetration Tester) PrepKit
The GIAC’s GPEN Certified Penetration Tester certification, authenticates your skills in penetration-testing methodologies and system security. The certification not only helps you to enter into the security and penetration testing industry but also helps individuals to determine a prospective employee’s knowledge and skill level in the penetration testing.
If you are looking for preparation for the certification GIAC Certified Penetration Tester, i have a nice suggestion for you. I came accross a tutorial kit which is really nice and covers all the tutorials and give you demo tests. You can take demo test and track your progress.
I am talking about uCertify G-pen PrepKit. It has many sections which includes Practice test, study helper, Enhance your understandings and track your progress. First of all i want to discuss the features of this kit
Top features of this Prepkits
1. Simple, intuitive, user-friendly interface
2. One click dashboard makes it easy to find what you need
3. Guided learning steps you through the process of learning and test preparation, including crucial information about the exam format and test preparation tips
4. Reference Notes and Study Guides organized according to the actual test objectives
5. Numerous study aids, including study notes, flash cards, pop quizzes and more
6. Useful Technical Articles section contains information written by industry experts and How To’s that help for easy look up to specific questions
7. Collaboration
8. Exhaustive practice questions and tests, starting with Diagnostic tests to determine your initial level
9. Learning and test modes
10. Customize your tests – decide how many questions, combine one or more topics of your choice, quiz yourself on a study note, increase the level of difficulty based on your performance at any point in time, even create a test based on the amount of time you have to take a test!
11. Feedback and assessment when you need it, including Gap Analysis that clearly indicate your areas of strength and weakness
12. Full length Final Practice test that closely simulates those on the certification exam to gauge your preparation level for the actual exam
Practice test: Its practice test includes some test which give you feel like the original test. You have to complete test in given amount of time. You can have test in either test mode or in learn mode. Test mode review answers at the end of test and learn mode provides you feedback with each question. So you can learn with test too.
It also has the option for bookmark for later. After end of the test it gives the complete detail of test and your progress. It also suggest the topics on which you should work hard.
You can also practice on specific topic by selecting custom tests.
This is the best part of the kit. I will suggest this test for better practice in exam.
Study Helper: This part of kit is for help in your study which includes 6 important topics to covered for this certification. This part will give a short description of all the topics. This part of the kit is not too useful because tutorials are in short. You have to take some other sources for detail study. But this short tutorials are better for revision purpose
Track your progress: This part allows you to check your progress and to know about your preparation. You can find you weakness and try to work hard on that before actual exam.
Overall rating of this prepkit is 8/10 in my opinion. You can get it from the website of uCertify links are given below.
uCertify India: http://www.ucertify.in/
Download PrepKits: http://www.ucertify.com/download/
PrepEngine Features: http://www.prepengine.com/
tutorial on Session hijacking attack
Thursday, September 1, 2011
0
comments
Session hijacking attack
When a user log in to the acccount, it starts a session with that account and this session ends up with logout. In a running session, user is given a session id which is unique identifier of the user for that session and is only valid for that session. Session hijacking is the type of attack in which hacker gain access to the session id to gain unauthorized access to information or services.
Session hijacking can be done at 2 levels:
- Network level (TCP and UDP session hijacking)
- Application level (HTTP session hijacking)
TCP session hijacking
TCP session hijacking is when a hacker takes over a TCP session between two machines. Since most authentication only occurs at the start of a TCP session, this allows the hacker to gain access to a machine. It can be done by following ways.
- IP Spoofing: Assuming the identity
- Man in the Middle attack using Packet Sniffers
- Blind attacks which involves bruteforcing of session id.
UDP session hijacking
It is similar to TCP session hijacking but easier than that because UDP does not use packet sequencing and synchronizing.
Hijacking Application Levels
In HTTP session hijacking hacker tries to get access to the session ID used in the session to identify the user. HTTP is state less so it need session ID with each request. If hacker get the session id, he can hijack the victim's session.
- XSS
- Man in the middle attack
- Bruteforcing session id
- Man in the browser attack
Session hijacking is widely used for hacking into website accounts. In websites, session id is stored in the form of cookies in the client browser. If you want to hijack some one's session, you have to steal the session informations of that user.
Session hijacking has been an ongoing problem for web browser developers and security experts for at least 5 years.
Prevention:
- Use of ArpON which is used to prevent Man In The Middle Attack through ARP Spoofing.
- Use of HTTPS protocol for secure sessions. It uses an encrypted sessions.
- Set the expiry time of cookies as less as possible.
Featured FREE Resource: 
