Posts tagged Hacker
Newbie Guide To Basic Web Applications Hacking
0
In this simple article, we will discuss the vulnerabilities, and what goes wrong with the developers, and some ways to exploit and how to maintain it. :D
Things you should know before :
Vulnerability : a security hole, can be exploited to change the way the webapp / software works / functions.
CMS : Content Management System. Such as forums uses DataBases to store the info like users, posts, threads, messages and so on, its usually / mostly a MySQL server.
RFI [ Remote File Inclusion ] : a malicious user can include a ‘bad’ code to be executed on the vulnerable site.
LFI [ Local File Inclusion ] : a malicious user can open any file on the server.
SQL Injection : Injecting a MySQL query to bypass or get more info from a Database.
XSS [ Cross Site Scripting ] : if it was a permanent vulnerability, where the users input is saved, the user can log cookies, IP, and much more…
Exploit : a script made to maliciously use a vulnerability. (more…)
Spam Email Attack Containing Malware That Pretends To Be Facebook Support
4
When I open my email in junk folder, I found an email with subject “Facebook Support. Your account is blocked. ID961″ from”Facebook Support” which includes a file named “Facebook_document_Nr0591.zip” attached which carries a Trojan horse.
And the contents of the email are as follows: (more…)
Scanning Your Friends Machine For MS08-067 Vulnerability, Conficker, regsvc DoS, and SMBv2 DoS With Nmap
3
As a computer users, especially system administrator, performing these kinds of checks is crucial, because a lot more damage can be done by a worm or a hacker using this vulnerability than by a scanner. Penetration testers, on the other hand, might not want to use this script — crashing services is not generally a good way of sneaking through a network.
requirements for this tutorial:
[*] Nmap with smb-check-vulns
[*] Your friend IP address
First, if you don’t have smb-check-vulns on your nmap, open the console and type
svn co --username guest --password "" svn://svn.insecure.org/nmap-exp/ron cd ron/nmap-smb ./configure make sudo make installThat’s a command line to download nmap, and rebuild nmap with a new branch including smb-check-vulns ( and many other useful scripts for pentest =) )
So, now we can run a scan. (more…)
The Meaning of Being a Hacker
1
/*This article adapted from “BEING A HACKER, on the meaning of being a hacker” by Valerio a.k.a Elf Q
Thanks Valerio for this wonderful article*/
“BEING A HACKER, on the meaning of being a hacker”
by Valerio “Elf Qrin” Capello (http://www.ElfQrin.com)
Copyright (C) 1999 Valerio Capello
First written: 23JAN2000
v1.1eng 26MAR2000
This is a translation from the original Italian version v1.5 r23JAN2000 (first written: 31AUG1999-09SEP1999)
Supervisor for the English language: SirD.
Latest version available from: http://www.ElfQrin.com/docs/BeingHacker.html
Other language versions: Italian
“But did you ever take a look behind the eyes of the hacker?
Did you ever wonder what made him tick, what forces shaped him, what may have molded him? I am a hacker, enter my world…”
(“The Conscience of a Hacker”, The Mentor)
To study a system, to discover weaknesses, the peculiarities and hidden features of it, and then (more…)
Christian Ditaputratama
First, you need to chmod +x ./install.sh so it can be executable. Then you need to be "root" to install them.
Eg : sudo ./install.sh
:D
2 months ago
sutoro
help me ....
intall show
bash: ./install.sh: Permission denied
2 months ago
Richard
Awesome! Well done dude.
3 months ago
Torby
i did open the mail but did not download the attachment & deleted the mail
will i get infected?????
3 months ago
Ramonita
Advantageously, the write-up is in reality the freshest topic on this associated problem. I fit in together with your conclusions and will […]
3 months ago
