Subscribe to Hacking Truths. Now, 14031 members!      RSS Feed Be Our Fan on Facebook Twitter SMS Alerts

Home » Hardcore Hacking

Vulnerabilities That Could Not Be Shielded

8 August 2009 6 Comments Posted By Amol Wagh
StumbleUpon.com
Share

Vulnerabilities are the drawbacks in the application, network or whole system which allows external attacks to penetrate any network, This is sort of basic definition, any security guy could tell this.

My aim is to divert your focus from applications to physical vulnerability.  The most vulnerable element of any system is its user. Its simple to break any one’s confidence by using his emotions.

Let me explain you with example: Some X person was very rich, confident successful & blah , blah, blah .. One day his child was kidnapped by some criminals & so as to threaten him. He asked police help, takes best in the business to let her child out of those creepy guys.

But why? Because he was scared , that something could happen to his child. His emotions are most vulnerable & that lets his success, confidence & money (we can call it as his shields) broke into pieces.

I am not asking you to kidnap someone, No way. Just telling you which is the vulnerabilities which cant be shielded. Even my emotions are also vulnerable.

Remember, machines can not be threatened, programs could not be vulnerable as  its user is.

Human reacts to things very rapidly if he thinks he is loosing his important thing. He quits thinking & searches for the quickest path to get out & You know what , all you wannabe hackers you have to place your exploit right between that path. He wish to go out, you have to think before he thinks about it. Plan, make a map & and plant.

Are you getting me ? or I am going too fast, Just remember – You have catch the things this fast to be a great intruder, or what you call it as a HACKER.

To guard against such vulnerabilities all the employees who are working on the network, are suppose to be trained with this thing, that you don’t have to react quickly.

You the network security administrator should train them for such attacks, show them how to get out of such situation of attacks. give them demonstration, tell them how to react with specific errors, how to react for system crash, tell them how to report a problem, give them a sort of First Aid Kit which can be easily understood & used by all vulnerable human beings in your organization. This is the only way to shield this vulnerability of emotions.

Otherwise this human being have this Emotional vulnerability which is far far beyond the scope of stealth, shield or security. . .

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.

Popularity: 1% [?]


Enjoyed this article? Subscribe to Hacking Truths and get daily updates about new cool websites and programs in your email for free.


6 Comments »

  • Zell Faze said:

    A good hacker will understand the system he is trying to break.

    Sometimes that system is a mind. Often times security on the computer is much too advanced for you to get through, but often the weakest link in the chain is a person.

    Social Engineering is your friend, Psychology is your friend. If you learn how the mind works, you have an easy place to attack in almost every system.

    I once heard a story about a man who pulled off an amazing feat of hacking without ever using a computer. A man rather than hacking into the server, just tricked his way into the server closet by making everyone believe he was maintanence (took several weeks) then he just walked off with the server.

    # 10 August 2009 at 1:53 am
  • Amol Wagh said:

    Thanks Zell,

    Many of such attacks which are generally known as human phishing or man to man phishing happend back in 2005 to 2008. Then after a bit of awareness they reduced in numbers.

    So more you know about humans & how they think chances are more that you can hack a machine or also you can stop hackers.

    # 10 August 2009 at 7:18 am
  • Virendra said:

    Hi do you have an article on how to hack a mobile by using Grps? Or how to crack a trail sowtware.

    # 11 August 2009 at 1:06 pm
  • Kumar said:

    you can use RunAsDate ..a software that can run program even after their trial.

    # 11 August 2009 at 4:10 pm
  • Ajit said:

    Hi myself Ajit

    Do u know how to remove rights of windows vista……
    and plz tell me d free msg centre no for airtel…….

    # 11 August 2009 at 5:14 pm
  • AJAY said:

    plz my airtel gprs free

    # 20 September 2009 at 4:27 pm

Note : If you have any Query related to the above Article please Post it to the Support Forum.

Leave your response!

Add your comment below, or trackback from your own site. You can also subscribe to these comments via RSS.

Be nice. Keep it clean. Stay on topic. No spam.

You can use these tags:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

This is a Gravatar-enabled weblog. To get your own globally-recognized-avatar, please register at Gravatar.