Facebook Hacking | Hacking Tools | Facebook Hacking Tool | Twitter Hacking | Crash Website | Hack Gmail Account
Home / Archives for March 2012

Tutorial on DNS Cache Poisoning

Posted by Deepanker Verma Saturday, March 31, 2012 0 comments
DNS Cache poisoning is one of the most used security compromise used by hackers to redirect innocent users to the malicious websites. Most of the biggest phishing scam use this attack to server phishing page.


DNS are used to map domain name to the IP address of the websites. It also stores most recent mappings to the cache for the specific period of time. When the request for the same domain comes again, it serves from the cache. 

 In this attack, attacker adds some false IP for a domain in the cache. After this, all the requests for that domain will be sent to the false IP. Thus users will see some other website on the correct domain

 DNS Cache: DNS is used to map domain name to its corresponding IP address. At the server end this translation takes less than a second. But it can take time because of high number of requests. To make this much faster, DNS server has cache which stores recent DNS queries. When a request comes, it first check in the cache. If the request found in the cache, it will serve from the cache other wise the request will be served from the server.
SImilar to this, our system also has a local DNS cache which stores the recently DNS queries. 

 So the over all process works in the this way. When we request for a website, first the request is checked in the local DNS. It it is not found in the local DNS, request has been sent to the DNS server. In the DNS server, it first check from the cache and then from the server if not found in the DNS server cache. 


 DNS cache Poisoning: In DNS cache poisoing attack a attacker try to poison the DNS cache. Attacker adds a false data in the cache of either DNS server or local cache. Once the false record has been added, cache return false IP of a domain. Thus the victim has been sent to some fake website. This fake website can be a phishing website.

 Read Full document here
Categories: ,

Kelihos Botnet is alive and spreading through Facebook worm

Posted by Deepanker Verma Friday, March 30, 2012 0 comments

Kelihos Botnet is still alive. It means Kaspersky experts' claim was wrong. Is it? 
On March 28, 2012, Kaspersky experts announced that with the help of CrowdStrike Intelligence Team, Dell SecureWorks, Honeynet Project, they had managed to disable a large part of Kelihos botnet. 
Security researchers from Seculert claimed that the Kelihos botnet is still alive and spreading through a facebook worm. Currently the worm is targetting the computers from US and Poland. Researchers claimed that they have identified more than 70,000 facebook users who are affected by this worm.
"Seculert can still see that Kelihos is being spread using the Facebook worm. Also, there is still communication activity of this malware with the Command-and-Control servers through other members of the botnet," Seculert representatives wrote. 
"This means that the Kelihos.B botnet is still up and running. It is continuously expanding with new infected machines, and actively sending spam."


This faceook worm posts a photo album on the infected users' facebook wall. Researchers also told that 54% of victims are from Poland and 30% from the United States, the rest being spread out in countries such as Pakistan, Hungary, Denmark, UK, Italy, India and the Czech Republic.
Experts also described that this is not the new variant of the botnet. This is the same as the previous.
"Some might call this 'a new variant', or Kelihos.C. However, as the new infected machines are operated by the same group of criminals, which can also regain access to the sinkholed bots through the Facebook worm malware, we believe that it is better to still refer this botnet as Kelihos.B."

Categories: ,

Bluejacking - harmless prank

Posted by Deepanker Verma Sunday, March 25, 2012 1 comments

Bluejacking is a type of prank played with Bluetooth devices which takes advantage of a loophole in bluetooth technology to send unsolicited messages to other nearby Bluetooth devices whose bluetooth is on. Bluejacking term did not come from Bluetooth and hijacking. In this trick, bluejacker is not hijacking anything.Bluejacking was first done by Malaysian IT consultant.He dericed Bluejacking from Bluetooth and ajack. Ajack was his username on Esato, a Sony Ericsson fan online forum. 
Bluetooth is a wireless transmission technology which has slow data transfer speed and has limited ranges. It reaches around 10 metres or 32.8 ft on mobile phones, PDAs, and 100 metres (328 ft) in laptops.
In Bluejacking, a bluetooth enabled device sends a vCard to another bluetooth enabled device via the OBEX protocol. Here vCard typically contains a message in the name field (i.e. for bluedating or bluechat). vCard is a special file format standard for electronic business cards.
Usually a bluejacker can only send a text message with this flaw. But modern phone allows users to send images or sounds as well. 
There are many tools developed for Blujacking. Most of the tools were developed by  individual developers with specific functions.


NOTE: Bluejacking is harmless and mainly used for advertising on other devices. But people who do not know about this think that their phone is infected or malfunction. Blujacker can only send a message or sound and image in modern phones. Bluejacker will not be able to take over your phone or steal your personal information. 


Bluejacking tools:


http://www.bluejackq.com/freejack.jar
Categories: ,

Best Spyware and Adware remover Tool

Posted by Deepanker Verma Saturday, March 24, 2012 0 comments
As the use of internet is expanding in our daily life, use of spyware and adware is also increasing. Many internet companies use these to track the browsing activities and promote some ads on the users browser. This is really harmful as this can expose our private data


What is Spyware and Adware


Spyware and adware are software programs that are used to snoop on user's browsing activity, invade privacy, and flood with those horrible popups. Most of the internet users are affected with these harmful sofware programs.


What these can do:
  • It can intercept all the information you enter on your browser.
  • Unauthorized sites can add themselves to your desktop, in your favorits links, in bookmarks or as a home page.
  • Unwanted toolbars and searchbars can attach themselves to your browser without your knowledge or approval.
  • Your browsing activity can be tracked and monitored.
  • Your default homepage and settings can be hijacked so you can't 
  • change them 
  • It slow down internet browsing and speed of the system as well.



If you are one of those internet users who are infected with adware and spywares, you need to worry about this. To remove adware and apyware some tools are available on the internet. But those are not up to the level. I found a premium tool which is really effective and the database of the tool is upto date. So it can detect and remove all kind of spyware and adware.


This popular and number 1 spyware and adware romval tool is Noadware.net - Spyware/adware Remover


The software will scan your PC for different Spyware, Adware, Dialers, and Web Bug traces. These items not only create nuisances in the form of popups, system slowdowns and crashes, but many items actually record personal information about you, such as credit cards, social security numbers, or other sensitive information.


Get it From Here
Click Here!
Categories: , ,

backfuzz – Multi-Protocol Fuzzing Toolkit

Posted by Deepanker Verma Sunday, March 18, 2012 0 comments
backfuzz is a popular fuzzing tool. This fuzzing tool offers for different protocols (FTP, HTTP, IMAP, etc) but also has no-protocol plug-ins (Example: File Fuzzer). 
This script is well coded and easy to extend. If you want to extend the tool with your own plugins, you need to read “functions.py” once. In that file, several functions already predefined. So whoever wants to write their own plugin’s (for another protocol), He can do so in a few lines and add it to the script.


That’s the main power of it, it’s extensible. You can follow the format of existing plugins – for example the HTTP fuzzing plugin.


The code is still in BETA and requires a lot of work to get better, so any questions / suggestions / criticism / comment are welcomed by the author.


Download and Read More
Categories: , ,

Introduction to Content Filtering Proxy Server

Posted by Deepanker Verma Thursday, March 15, 2012 0 comments

Content Filtering Proxy Server: Content Filtering Proxy Servers are generally used with the Web Proxy servers and give more control over the data which going out and coming in on a network.The main purpose of these servers is to setup a filter on the data. It is generally used in corporate world and universities to filter certain type of content flowing out of the network.
Content Filter Proxy servers also support User authentication to control web access. To filter the content, it uses URL or DNS blacklists, URL regex filtering, MIME filtering, or content keyword filtering. 


How it filters the content:When a user request for a URL to access, the request is first pass to proxy server filter. In the filter, the URL is matched with the database of URL patterns. If the URL is matched a banned URL, the request is rejected. If the URL is unmatched then the webpage is fetched by the proxy but each page of the webpage is checked and matched with the blocked pattern. For example: some images or language filer on the page. If the content is rejected then an HTTP fetch error is returned and nothing is cached.


This proxy also stores log files which stores the history of web access by every users. These are also used to monitor the internet usage.

Categories: ,

Anonymous-OS 0.1 launched but it is fake

Posted by Deepanker Verma 0 comments

2 days back i heard a news that Anomymous has launched a new operating system which aims to provide a better environment to hack website. This Anonymous-OS is also registered as an opensource project on Sourceforge. This is an ubuntu-based distribution and created under Ubuntu 11.10 and uses Mate desktop. You can create the LiveUSB with Unetbootin.


This operating system claims to have These tools

  • ParolaPass Password Generator
  • Find Host IP
  • Anonymous HOIC
  • Ddosim
  • Pyloris
  • Slowloris
  • TorsHammer
  • Sqlmap
  • Havij
  • Sql Poison
  • Admin Finder
  • John the Ripper
  • Hash Identifier
  • Tor
  • XChat IRC
  • Pidgin
  • Vidalia
  • Polipo
  • JonDo
  • i2p
  • Wireshark
  • Zenmap
  • …and more



Official website of the operating system is also nice. But there is a doubt. Is there any official announcment fromt the Anonymous Group. The answer is "NO".
Even there was a tweet from the group saying, "The Anon OS is fake it is wrapped in Trojans."


So it is my request to all hacker not to download this operating system. If you really want a real hcking environment, nothing is better than Backtrak. Download the latest version of Backtrack and install on your system. It has all the lastet hacking and penetration testing tools. 
Categories: ,

How to access any deleted and unavailable photo on facebook

Posted by Deepanker Verma Wednesday, March 14, 2012 0 comments

Facebook is the largest social network with more than 800 millions users. Users always want to see the pics of other persons and search for the scripts which could allow them to see the unavailable pic of other users. Sometimes we miss some pics which are now deleted by the users. But Facebook photos can be seen even after the deletion. And you can see the private pics of other users.


How to see deleted pics on Facebook
Like other big websites, Facebook also uses CDN service to distribute static content on various servers. This makes website fast. This CDN is the way by which we can access those pics on facebook which were deleted by the users month ago. If you want to know how to hack facebook account read my older post.


Follow these steps:
First of all select a photo to start your experiment.
Now right click on the photo and click on "copy image URL". Paste this address on notepad and save.
Now delete the photo. After the deletion, try to access the photo. You will see something link this.


Now copy the link address from the notepad which we have saved and then open the link in browser. You will see the photo which you have deleted few moments back and was unavalable to see.


How it works?? This is possible because facebook use CDN. When we delete a photo from the facebook, it is deleted by the facebook database and server. But various copies of the photo are distributed on the CDN servers which are still there. As facebook uses a long tome caching so these photos are available on those servers for months.


How to see unauthorized pic: One day one of my friend paste a link of a photo which was available to him but not to me. I want to see that photo but has no way. Here was my solution to see the that photo. I asked him to "copy image URL" and paste on the chat. By this URL i was able to see the photo on my browser while i was not authorize to see the photo.


How it works?? When we open a photo on facebook, its URL looks like this:
https://www.facebook.com/photo.php?fbid=somenumber&set=o. somenumber &type=1&ref=nf


Here facebook restricts us by the the fbid. Facebook checks whether we are authorize to see the photo or not. When we see the photo by image URL, it looks something like this.
https://fbcdn-sphotos-a.akamaihd.net/hphotos-ak-ash4/s320x320/431527_316797435048428_100001545211364_864180_547497944_n.jpg
With this link, we see the photo direct from the server with its original location. So there is no restriction on the photo now.
Categories: ,

Introduction to Web Proxy servers

Posted by Deepanker Verma 0 comments

This is the second type of proxy servers. 


Web Proxy Servers: Web Proxy Servers are those Proxy servers which only serves the HTTP traffic. These are mostly used in Schools, organizations and corporate world to block websites on the base of URLs. All the proxy websites which we used to access some other websites in order to hide out IP address are called web proxy servers.
But Web Proxies are some thing wider than we think. It can be the combination of some other type of proxy servers. A web proxy can also do the job of a cache proxy server to cache the recently requested pages to serve those pages next time from the cache.


Types of Web Proxy:


Transparent Proxy: These are the simpler type of proxy servers which keeps every thing transparent identifies itself as a proxy server . It reveals the IP address of the Proxy server and the IP address of the client who is using the proxy. These proxies are used to get around the simple IP ban but it do not provide the anonymity.


Anonymous Proxy: These type of Proxy servers identifies itself as a proxy server and reveals the ip only of the the server. This hides the IP of the client who is using the server. This type of proxy server is detectable, but provides reasonable anonymity for most users.


Elite Proxy: These are the most advanced proxy servers which do not identifies iself as a proxy server. So it is hard to detece whether the request is coming from the proxy server of coming from the original users. It provides an advance level of anonymity. These servers are usually paid and available only after paying. Hackers used this type of proxy servers for high profile hacking. These are also called High Anonymity Proxy servers
Categories: ,

Introduction to Caching Proxy Servers

Posted by Deepanker Verma Tuesday, March 13, 2012 0 comments

I have already discussed about proxy servers and its advantages. In this post i will explain about Caching Proxy servers

Caching Proxy servers: These are the proxy servers which keeps a copy of the previously accessed pages, images and other type of media in the server cache for some period of time. If the same user or any other user requset for the same file, the file is served from the cache of the server. After the cache time period expired, the file is removed from the cache. Most ISPs and large businesses have a caching proxy. Caching proxies were the first kind of proxy server.

Advantages of the Cache Proxy servers: As we can see that the web page, images and other media accessed by a user is stored in the cache. Next time these previously accessed pages are served directly from the cache not from the original server. So it reduces bandwidth consumption and faster access. The time of response is faster now. This is really good when you want to access some blogs which you have accessed before. Proxy server will serve the page from the serve cache even if the website is currently offline.

Disadvantages of Cache Proxy servers: Although Cache Proxy servers provide faster access to some frequent resources. But it has a big advantage. It is not good for those website which changes the content and media frequently.
Some poorly configured proxy servers also have some big advantages which creates problem in logging into a website. So use this proxy server with a good server administrator only.

This post is published on hackingtricks.in and may be reproduced on some content theft websites which copy my posts daily. Try to avoid those websites

But this advantage is not big now as most of th web masters are also optimize their website for caching and use some server side caching mechanisms by using CDNs. CDN cache static data of the website for the long period of time on the distributed servers.
Categories: , ,

HOIC - Another DDOS Tool by Anonymous

Posted by Deepanker Verma 0 comments
A new DDOS tool is release by Anonymous called high-orbit ion canon or HOIC. This release is only for windows and has a nice GUI. If the attackers. see the home screen of the software. 


There are two round buttons under the target label. Click on the+ sign to add a website to attack and - sign button is used to remove a website. Set the number of threads and increase it to increase the strength of the attack. 


When you click on the+ button, a new window will open where you can specify following things
  • URL - is the target website to attack
  • Power -> sets the request velocity.  
  • Booster - are config scripts that define the dynamic request attributes
HOIC includes a new feature called 'boosters' which are files you download or add to an attack machine which enables the attacker to manipulate headers such as language, referrer, host, etc.

To launch the attack click on "FIRE TEH LAZER!" button.


HOIC uses some randomization techniques to evade the detection.But there are some requests which can be used to detect. This tool is strictly an HTTP DOS attacking tool while LOIC has TCP, UDP and HTTP attack options.


As compared to LOIC, this tool seems to be more complicated. New Boosters script makes it harder to use. Becauase downloading and then configuring Boosters is not so easy. This new tool only focuses on HTTP attack.

 DOWNLOAD HOIC HERE


Categories: , ,

Proxy servers- Advantages and its types

Posted by Deepanker Verma 0 comments

I have already wrote a post almost a year back about Proxy servers. I am again writing about it but this time in detail. It will be a chain of articles in which i describe proxy servers and all the types of proxy servers.

In general, people think that proxy servers are those which are used to hide our IP adress in order to be anonymous on the internet. But anonimity is only a use of proxy servers. Read the full post to know what actaully the Proxy Server is?

Proxy server: Proxy server is the server system which acts as the intermediate between client and server systems. When a client want to connect to a server using proxy, client's system first connect to the proxy server, and proxy then connent client's request with the server system. In this way, client have an indirect connection with the target server system. But proxy do not have only the work of connecting client and server. It provide various service at the network level to improve the connectivity and and performance. It is mainly used for performance improvements and packat filtering

Every proxy server have some set of rules and the requests of the clients are evaluates based on those set of rules. If your college has blocked the facebook, twitter, youtube and some other websites, it means the proxy server of your college do not have some set of rules which block the requests to these websites. So it filters all the packets which request for the connection with these websites.

Proxy server also perform caching service so it can also serve some request without contacting with the original server. Thus it can improve the performance.

How it Provide anonymity:  As i have described above that Proxy server connects your system to the server indirectly. So the server knows only about the proxy not about you because you have no direct connection. Thus you are anonymous.

Advantages of Proxy servers: These are some advantages of the Proxy servers on the network.
  • ·         Proxy servers provide anonymity on the internet due to indirect connection between users and servers.
  • ·         It is used to scan the packets going outside and inside the networks. So it can used to determine the data leakage and data theft.
  • ·         Proxy servers can also be used to block some websites on the network.
  • ·         It can provide some features of Intrusion Detection system and Firewall
  • ·         Firewall can also logs data usage of each user on the internet.

Types of Proxy servers:
  • ·         Caching Proxy Server
  • ·         Web Proxy Server
  • ·         Content Filtering Proxy Server
  • ·         Anonymizing Proxy Server
  • ·         Hostile Proxy Server
  • ·         Transparent Proxy Server
  • ·         Reverse Proxy Server

I will write about these type of proxy servers in detail incoming artiles. Stay tuned and subscribe for lates updates.
Categories: , ,

Do you really know Phishing?

Posted by Deepanker Verma Monday, March 12, 2012 2 comments

When i started this security blog more than 20 months ago, i was good in hacking stuffs and used to play with some common hacking methods. At that time i really enjoy phishing and trojans. Binding torjans with FUD cryptors and then playing with friend's computers was really a nice prank for me.
Now the time is changed a lot. I saw many school students claiming to be hacker (but I don't think i am) and posting some bad comments on my older phishing posts. According to these new hackers, Phishing is the old way and people are not going to give your password in the fake login pages. This force me to think whether they really know the significance of the word "hacker".


If you see the latest cyber crime report, then you will see that Phishing is the main attack on all these cyber crimes. Most of the DNS poisioning attack leads to phishing pages. Brazilian bank account hacking is the most recent example. That was also a fake login page of the bank on the other domain. But it leads to the hacking of thousands of bank account. Do you still think the phishing is dead?


Few days back, Norton published a report about a fake software vendor website selling some popular softwares for a huge amount of discount. This fake website have all the things which can prove it as a trusted vendor. But the payment of the website is suspicious. When a user wanted to buy a software for this huge discount, he was redirected to the payment gatway asking for credit cards info. But the gatway was not the official and trusted. Website was storing all the secure credit card data which it later used for malicious purpose.The website was a phishig website which was giving this kind of software offers to get users credi card data. This was the high level of phishing without any kind of fake login page. DO you still think you know the phshing well.


For those blah blah blah hackers who are easy to find on facebook, phishing is just creating fake login page and is dead. But for hackers, phishing something which is most dangerous.


NOTE:
This is my personal advice not to pay on any website until you find a known secure payment gateway. Always verify the payment gateway before paying. If you are not sure about the payment gateway, see the URL on the address bar of the page which is asking for your credit card info. Search about the this domain in the Google and see the results whether it is a payment gateway of a phishing scam.


Report any this kind of suspicious website to Symantec
Categories: , ,

what is Ethical hacking and penetration testing

Posted by Deepanker Verma Friday, March 9, 2012 0 comments

Cyber world, the virtual world on the internet is now a part of our daily life. Every person, who use internet either by computer or by any other gadgets, is a part of the cyber world. But Cyber world is also full of thieves as real world. So security is must. If you do proper security for all your physical things in real world, you must be aware of the security of the things you have in cyber world. If you think, you are not a computer person and why should you need to know about cyber crimes and its protections, and then just think about your bank account which you use and your credit cards and your online purchase. All these things are the main target of hacker which you use daily in your life.

Cyber crimes
All the organizations and companies have a network of systems for storing and accessing their private information which are confidential. These data is the top secret part of the company. But hackers always try to break the security of these systems to get that secret information of the company. According to the latest cyber crime report by Symantec, cyber crime costs more that $114 billion annually. This is a huge loss by cyber crimes.  The report also says that 14 adults become the victim of cyber crimes in a minute. You can imagine the dangers.  Most of the hackers work individual and hack only for their profit. But there are many companies who hire hackers to know the hidden secrets of the competitors company. So the world is full of hackers and threats. Do you know how to be safe and what to do in this bad cyber world.
Hackers or cyber criminals are the persons who use their computer knowledge for accessing or stealing without authorization. Now most of the security organizations have proposed to declare cyber criminal as terrorists. Hacking is the biggest problem now a day.  We can see the past 6 months. Some hacker groups have costs a lot to Sony and some other organizations. They had also accessed and published secret data of some security organizations. They had also hacked some networks and website. Lulzsec and Anonymous are the main 2 hackers groups and cyber police of many countries are in search of the members of these groups. Hackers use all the latest bugs and vulnerabilities to hack and the most dangerous thing is that they know how to hide their real identity in the cyber world.  If you look at the recent high profile cyber crime cases, you will see that the hackers have cost a lot to the most reputed companies by stealing their network data and secret information. But they are still unknown. No one knows who are they? where they live?, how they do?
Sometimes I think they are most advanced than the security experts working on those companies but they do not have that much educational qualification. They are talented but use their knowledge in bad works.
Working process of hackers is similar. The complete hacking can be defined as a set of steps performed by hackers.  These are Information gathering, scanning, gaining access, maintaining access and clearing tracks. Information gathering and scanning involves getting knowledge about the target system or victim whom they want to hack. After having enough knowledge about the target system, hackers try to exploit vulnerabilities of the target and gain access to unauthorized data. Then they maintain access to get some secret data of the company and steal important information. Finally they clear all the tracks so that no one will able to find them. This is what they are invisible on the internet.

Figure1: Steps performed by hacker
Catching a hacker is not so easy. But securing your network is much easy and recommended.
Need of Ethical hackers
So most of the organization now hire hackers who try to secure the company system security by finding vulnerabilities and security holes. These hackers are called Ethical hackers. An Ethical Hacker will follow the same Techniques and Methodologies as a Malicious Hacker, however, in the end, The found vulnerabilities of Security Flaws are either Reported (Responsible Disclosure/Open Disclosure) or Fixed. This is also called Penetration Testing which is also called as pentest in short.  Working of ethical hackers can also be shown as a graphical image which is given below.


Figure2: Steps performed by Ethical hacker
If you take a look on the steps performed by hackers and ethical hackers, you will see that the starting 3 steps are similar in both hackers. But the last steps are different. Ethical hacker reports the vulnerabilities to the organization while hackers maintain the access to access secret data of the company and then clear all the tracks. Reporting vulnerability is the main work of Ethical hacker. Now company will have to work on patching those found vulnerabilities. This is what we called best step of protection against hackers.
One of the first examples of ethical hackers at work was in the 1970s, when the United States government used groups of experts called red teams to hack its own computer systems.”
Skills Required Becoming an Ethical Hacker
Ethical hackers are those persons who stay 1 step ahead from the malicious hackers so they must be computer system experts having knowledge about computer programming, networking, operating systems, web programming and various security aspects. Ethical hackers do not need to have strong command of the countermeasure that can prevent attacks. Their work is only to report the vulnerability to the organization’s security team.
Ethical hacking has following steps:
1. Talk to the client, and discuss the needs to be addressed during the testing of system, network or application.
2. Prepare and sign nondisclosure agreement (NDA) documents with the client.
3. Organize an ethical hacking team, and prepare a schedule for testing.
4. Conduct the test.
5. Analyze the results of the testing, and prepare a report.
6. Present the report to the client about the vulnerabilities.
But the most important things which an Ethical hacker should know that No ethical hacking activities or testing associated with a network security test or system security audit should be start until a signed legal document has been given to ethical hacker express the permission to perform the hacking and testing activities on network or system is received from the target organization. This type of legal document is necessary because it can cause a trouble to the ethical hacker if he does not have proof to show that he has been allowed from the company.
The other important thing which he should know is that the details of the ethical hacking report must be kept confidential, because they highlight the organization’s security risks and vulnerabilities. If this document falls into the wrong hands, the results can be harmful for the organization.
In security field one more term is used vulnerability assessment which is simply identifies and reports noted vulnerabilities. But it is not the same thing as Penetration testing. Penetration testing tries to exploit those vulnerabilities for unauthorized access. It’s not a onetime action. It should be done regularly.
Penetration testing
Penetration testing is very important for anyone who stores important and sensitive information in systems. The only way anyone can be sure there are no security risks are if they have had their entire security system assessed and then made adjustments as necessary. This can only be done by penetration testing.  You can see the steps in process of penetration testing in the figure below.

Figure 3: steps in penetration testing
You can see that the last step is re test. Now you can understand why I wrote that penetration testing should be done regularly.
With the advancement in technology, hackers try to create new type of attacks, so all the older countermeasures will not work against these attacks. This is the reason why ethical hackers need to update their information on these types of new attacks so that they can create a good protection against these attacks. They should learn how these attacks are performed and then try to attack it on the network or systems, to check if systems are really secure. If not, then they try to secure systems and networks to prevent these attacks. So the new attacks are the reason why penetration testing is a regular process.
“The Information Assurance Certification Review Board (IACRB) manages a penetration testing certification known as the Certified Penetration Tester (CPT). The CPT requires that the exam candidate pass a traditional multiple choice exams, as well as pass a practical exam that requires the candidate to perform a penetration test against live servers.”
Penetration testing can be carried out by several ways but in general we define as following 2 types
Black box penetration testing: In this type of penetration testing tester have no prior knowledge of the infrastructure to be tested. He should get all the information about the infrastructure of the network by some testing, guessing and skills. This testing is like the real attack on the system or network by the hackers. Because tester also has no given information about the infrastructure. Many companies use this type of penetration testing because this is the real time testing which feels like real hackers are doing on the network. But it slows down the system and network performance during testing time because there are so many testing tools used by the testers which use bandwidth and resources.
White box penetration testing: In white box penetration testing tester has complete knowledge of the infrastructure to be tested such as network diagram, source code of application, server settings. This information helps tester in his work. But this type of testing is not so effective.
Gray box penetration testing: This is the combination of black box and white box testing. In this some information are given to the tester not all. This type of testing is used in most of the organizations. It takes less time with more vulnerability exposure. It is easy to work for testers in this type of testing.
Risks involved in penetration testing
But penetration testing must be done carefully. It also has some risk. In white box testing, tester has access to the code and during testing it can harm the code by mistakes. And in black box testing tester use so many tools to scan and attack on the network or systems which slow down the system performance of the network or system. The possibility exists that systems may be damaged in the course of penetration testing. Every attack has some negative impact on the network and the system and it may cause some times loss to the company. But it can be minimized by hiring experienced professionals and monitoring all the steps. Backup of all the things is also necessary. But the most dangerous risk is information leakage of the company. The person hired for the penetration testing of the company should work under proper guidance of the company. As part of company’s penetration testing team, he will be able to know all the hidden secrets of the company. The hidden infrastructures and network loop holes. If he is not monitored properly, he can misuse those information are leak the information to other companies which are your competitors in the market
Conclusion
So we can say that ethical hacking and penetration testing are related to each other. Penetration testing is done with Ethical hacking with protection against attacks.  In general the testers in the process of penetration testing are Ethical hackers. They can be the part of the company or some individual persons hired by the company for the network and system testing. Most of the company hire some certified ethical hackers to be a part of the company’s security team but most of the famous ethical hackers work on hourly basis and do not want to join any company. So companies hire them for their work. But company should track all the work done by Hired Ethical hacker because he is not the company person but he will have all the secret details such as security infrastructure of the company. He may leak the company secret information to other company. So it’s really important to take care while hiring any Ethical hacker for the company.
Cyber crimes are increasing day by day so need of ethical hackers and penetration testers are also increasing. Having a permanent Ethical hacker is secure than hiring some out members. SO many companies are now hiring permanent Ethical hackers for the company.  This can be a better career option for a person having interest in computers and network security. There are many reputed organizations which conduct exams and running courses for penetration testing and ethical hacking. One can join those institutes for being a certified ethical hacker and penetration tester.


Categories: ,

Security researcher earns $60,000 by hacking Google Chrome

Posted by Deepanker Verma 0 comments

A Russian Security researcher, Sergey Glazunov has been awarded $60,000 by submitting a security hole in the Google Chrome browser. He demonstrate how he could run unauthorised code on fully-patched Windows 7 computers.
He uncovered a remote code execution vulnerability in Chrome, that could be used by malicious hackers and cybercriminals to install and run code on innocent users' computers, just by them visiting a website.
“Congrats to long-time Chromium contributor Sergey Glazunov who just submitted our first Pwnium entry. Looks like it qualifies as a “Full Chrome” exploit, qualifying for a $60k reward,” Sundar Pichai, senior vice-president at Google, posted on Google+.
“We’re working fast on a fix that we’ll push via auto-update. This is exciting; we launched Pwnium this year to encourage the security community to submit exploits for us to help make the web safer. We look forward to any additional submissions to make Chrome even stronger for our users.”

Categories: ,

The Mole v0.3 Released - SQL Injection tool

Posted by Deepanker Verma Wednesday, March 7, 2012 0 comments



Nasel has released the new version of its Automatic SQL injection tool, The Mole. This tool only take the vulnerable URL with a valid string and do the exploitation work.
This release has introduced new features compared with the previous one, among these you can find that The Mole is now able to exploit injections thourgh cookie parameters. A new promising feature is that now you can exploit injections that return binary data, to achieve this the mole uses uses HEAD requests and analyzes the headers received (the size of the binary to download usually differs when the query was successful or not) and does not need to download the full binary data.


In this release there has been a major change in the The Mole's architecture, and now allows to easily insert filters in order to bypass IPS/IDS rules or modify the query on runtime. You can see a tutorial on how to write these filters in the tutorial section of the tool's site.


Feature:

  1. Support for injections using Mysql, SQL Server, Postgres and Oracle databases.
  2. Command line interface. Different commands trigger different actions.
  3. Auto-completion for commands, command arguments and database, table and columns names.
  4. Support for filters, in order to bypass certain IPS/IDS rules using generic filters, and the possibility of creating new ones easily.
  5. Exploits SQL Injections through GET/POST/Cookie parameters.
  6. Developed in python 3.
  7. Exploits SQL Injections that return binary data.
  8. Powerful command interpreter to simplify its usage.

Categories: , , ,

DarkComet RAT Remover Released

Posted by Deepanker Verma 0 comments

The developers of DarkComet RAT has released a new tool which can be used to detect and remove their own DarkComet RAT. This tool can detect any kind of instance of DarkComet running in the system even if an hacker try to obfuscate the loader to be undetected by common Antivirus software, also it detects registry threats and keyloggers logs.
The developer of Darkcomet also posted the excuse saying, "i would like to say publicly that i’m very sorry about this i never thought and i never knew that they use my free software (proper word would be hijacked) for doing this."
"I feel really bad right now, thinking about to stop all the work in this project closing all downloads like it happened for Bifrost (in the past for similar reasons – hijacking software), even if it won’t change anything as the damage is already done," he added.
This release is the result of civil war in syria where DarkComet is used as a war weapon.


Features: These are the main features in this anti DarkComet Tool

  • Detect DarkComet Even if crypted.
  • Detect DarkComet Even if visualized.
  • Detect DarkComet Even if injected in a remote process.
  • Detect DarkComet Even if Protected / Packed.
  • Detect Registry Changes by DarkComet.
  • Detect Keylogger logs.



Download
Categories: , ,

5 things a Beginner Hacker Should Know

Posted by Deepanker Verma Monday, March 5, 2012 4 comments

Daily, I get many emails from the school students who want to be a hacker and search hacking related stuffs on internet. At this beginning they need a proper guide but most of them only have Google as a teacher. But there are some common mistake which most of these new hackers do. 


Here are few points for beginners which they should know.



  1. At this stage, most of the students search for hacking tools and software. But Here i want to make this clear that no tool and software exists which can hack Gmail, Facebook, Yahoo, twitter or any aother website or email account in just few clicks. These types of posts on internet are just for attracting visits and spread spams. Most of this type of hacking tools are binded with trojans which leads your system at risk. The recent example it Anonymous LOIC tool which is used to hack members to use their system in criminal activities.
  2. Never use any premium keylogger which is available free on filehosting websites. Hackers always host this type of tool with Trojans. After installing this type of keyloggers you will be hacked. 
  3. Never pay for hacking on the websites which are asking money in return of hacking. If you want to pay for any hacking book, tool or other kit, pay only on the trusted websites. 
  4. Join any good hacking forum and learn new things from the experts. Never follow a person just for his claims. Always follow a person who has real knowledge. Adding hacker word is not going to make anyone hacker. There are many Javascript pranks and online websites are available which are used to create fake screenshot and defacing pages. These are used by many noobs to create some fake hacking screenshot to share on Facebook. And beginners follow them thinking as a hacker.
  5. Learn Programming languages and networking. These are must to be a hacker. Most of the hacking attacks such as SQL injection, PHP injection, XSS, Phising and many other needs the knowledge of programming.

Hacker is not the person who use keyloggers for hacking email ids and deface low secure innocent websites. Hacker is the person with indepth knowledge of computer who can create his own exploits to hack in the secure systems and servers. hacker is the person who is ready to take challenges. You may heard the name of many hacking groups who deface innocent websites just for fame. I think they are nothing just a noob. Hacking a school website or a shop website is not going to make you a hacker. 

Categories: ,

How to hack Twitter password with Remote Keylogger

Posted by Deepanker Verma 0 comments
Twitter is the popular microblogging website. Many people want o hack some other person's twitter account password. I have already written many ways to hack password by many different ways. Some ways are simple but tricky and some are complicated. In this post, i will show you the way with the use of a remote keylogger. This remote keylogger will send you the password on your email id.


Follow these steps to setup remote keylogger which will send password to you in email.


1. First of all get your copy of Winspy keylogger. Use the link geven below.
DOWNLOAD WINSPY
2. After downloading your copy, run the keylogger and create the user id and pasword. Remember this password. This password will be required each time you start Winspy and even while uninstalling.
3. Then a new dialog box will open to show you the hotkey (Ctrl + Shift + F12 ) to start keylogger.
4. Now press the hot key written in last step to go to the login form and enter login details to login.
5. Now you are on main screen of the software. Click on remote at top and then remote install.
user – type in the victim’s name
file name – Name the file to be sent. Use the name such that victim will love to accept it.
file icon – keep it the same
picture – select the picture you want to apply to the keylogger.





In the textfield of “Email keylog to” , enter your email address.
6. click on “Create Remote file”.


Now send this file to the person whose twitter password you want to hack. After the person runs this on his system, you will get keylogs in your email. Search for Twitter.com domain and then data he entered in the login window. Here you will get his password. You will also get the facebook and gmail password with this method.
Categories: , ,

HOW TO RUN PYTHON PROGRAMS IN VISUAL STUDIO 2010

Posted by Deepanker Verma Sunday, March 4, 2012 0 comments

There are so many IDEs available online to run python programmes but if you guys are using Visual Studio then you don't have to use any specific IDE to run python programmes.There are some enhancement tools provided by Microsoft to run different languages on the same platform.After all there are more than 40 languages available to run on Visual Studio, so just avail this facility..

Let's get started..

First of all you should have some setups-

1. Visual Studio 2010 ( I have ultimate edition)

Because we are going to run python programmes so we need a compiler for it.IronPyhton console provides the environment to run python programmes.IronPython is a combination of  python and .net.If you guys want to know more about IronPython.See this post- IronPython Intro

2. IronPython Console -download from here

Finally we need python tools to include python in other languages section inside Visual Studio.

3. Python Tools -download from here

 So, after installing all these things, your visual studio will look something different.

As you can see here, the extensibility Visual Studio provides.You are not bounded to write just python applications.You can write IronPython applications also.And if you guys aware of the basics of WPF and silvelight then you can also work on it .

Simple demo-

(Hit F5 to see the output in console)





For More Python tutorials visit TricksFind

About the Author: This guest post is written by Praveen Kumar Singh who is a computer Geek and a part time blogger. He writes on Python and Ubuntu on his blog tricksfind.in

Categories: ,

Join Innobuzz Ethical Hacking course (CISE) to get better career in security

Posted by Deepanker Verma 0 comments

If you are reading on this website, it means you are interested in hacking or security. But learning everything from scratch is not as easy as it looks. All beginners need a good guidance to learn in proper way. Daily i get many emails in which students ask for the best institute to learn Ethical hacking to make a better career in security industry.



Few days back i got chance to know more about an institute which is known to be the one of the best in India in Ethical hacking courses. One of my friend wanted to join the institute and he want me to go there to take the demo free class to know better about the teachers and institute. After the 1 hour demo class I was really impressed with the teacher who is very clear on the topics he was teaching.

The Ethical hacking course of Innobuzz is known as CISE (Certified Information Security Expert). CISE certification is one of the most recognized International certification in Information Security and Ethical Hacking. So for all those who want to make a better career in security, this international certification can help better. Along with the class room programs, they also provide distance learning course.

Some Points which makes the Innobuzz course different:
  • Teachers in class room program are best in industry with good teaching experience.
  • Course module is updated with latest security trends.
  • They focus on practical things. Teaching is done with demo and practical.
  • They provide a better training in some affordable price.

All those who cannot join the classroom program, they can enjoy the Innobuzz distance learning course which also best in India.


See the course module here: http://www.innobuzz.in/ethicalhacking.html
Innobuzz was also awarded for its quality on 19th April 2011 when Innobuzz won Newsmakers Achievers’ 2011 Award for “Best Ethical Hacking Training”.


Categories: ,

BackTrack 5 R2 released with new Kernel, added new tools

Posted by Deepanker Verma Saturday, March 3, 2012 0 comments

BackTrack 5 R2 has been released. BackTrack is a popular operating system which is used by hackers and security reseachers. This operating system comes with all the penetration testing and hacking tools so it gives an advantage to security researcher.
This new updated version added a new kernel with many bug fixes. It also comes with 42 new tools which is a good news for security researchers. his release have included Metasploit 4.2.0 Community Edition, version 3.0 of the Social Engineer Toolkit, BeEF 0.4.3.2, and many other tool upgrades.
Backtrack also following new tools to R2:
  • arduino
  • bluelog
  • bt-audit
  • dirb
  • dnschef
  • dpscan
  • easy-creds
  • extundelete
  • findmyhash
  • golismero
  • goofile
  • hashcat-gui
  • hash-identifier
  • hexorbase
  • horst
  • hotpatch
  • joomscan
  • killerbee
  • libhijack
  • magictree
  • nipper-ng
  • patator
  • pipal
  • pyrit
  • reaver
  • rebind
  • rec-studio
  • redfang
  • se-toolkit
  • sqlsus
  • sslyze
  • sucrack
  • thc-ssl-dos
  • tlssled
  • uniscan
  • vega
  • watobo
  • wcex
  • wol-e
  • xspy

Categories: ,
Featured FREE Resource:
X




Security Tools

Loading...
Share
Get This

About Me

My Photo
Deepanker Verma
I am Deepanker Verma. A computer geek, Security researcher blogger and software developer. I have deep interest and Information security and web development and try to learn new things. you will see my blogs on hackingtricks, TechlomediaWebtips and Usethistip.

I was also honoured by Apple, Ebay, Symantec, PandaSecurity and various other computer software giants for my security work for their company. I also contribute on some opensource projects regularly.

I also own a web app called NoteDIP that allows users to send self-destructive messages with password protection.

You can add me to circles to get my daily tips :)

View my complete profile

Partners

Blog Archive

Copyright © Hacking Tricks. All rights reserved. Blogger template designed by BLog Bamz