Author Archives: Amol Wagh

How To Hack Closed PC On Cyber Cafe

Posted on by
9

Hey all geeks,

Sorry for being away for almost a month, but guess what , got many new tricks & hacks with me for  all of you.

So here is a quick new hack on how to intrude in the PC which is shut downed at Cyber cafe. (Don’t Forget to read our disclaimer at the bottom of the post.)

1. As you all must have know these days all Cyber cafe owners have a program for administration to control all PC’s in local area network. So all files can be inter transmitted.

2. First of all press Ctrl+Alt+Del the task manager or any controlling application, will open. Then from APPLICATIONS select the program that is controlling all PC’s  & terminate it, This is for security reason. Now log of PC, & you ll get user names of the PC.

3. But some times, cyber cafes have security clients installed that have restricted access to Task Manager, restart the computer & press F8 continuously before windows boots.

The Menu will open, select Safe Mode from it. And now you can copy files from networked PC’s without any  security layer.

Next step is where you’ll need to crack the hashes.  SO go to your home PC , Download & install Saminside cracking tool. And from some another Cyber cafe try to crack the hashes of that PC. By same log off method explained below.

This where you actually perform hacking. Have a gret time & tell us weather it worked for you.

Meanwhile if you can get IP address,  of the PC you wish to hack try to get it from ip-explorer.com, but this is not the part of this hack its sort of next step of hacking from outside the network.

Disclaimer : The trick here explained it for educational purpose only & not to  perform illegal or criminal activities. Don’t forget hacking into some one’s privacy is considered as crime. SO do it on your home network that you own or something.  We are not responsible for anything you do & consequences of it by using our articles.

Hacking With Nmap – The Network Mapping Tool

Posted on by
5

Nmap is most widely used port scanning & network mapping tool used widely by network administrators & security administrators to scan their ports for potential vulnerabilities. If you are not aware of Nmap & you don’t have it then you can download it here for both Linux & Windows.

Nmap Hacking Theory

Following are the states that ports are available in

1. Open                                 Closed

2. Filtered                           Unfiltered

3 .Open / filtered           Closed/unfiltered

Scanning through Nmap gives you list of ports that are opened or filtered. Most of closed ports are not disclosed as there are almost 65000 ports in a computer for communication.

(Filtered packet : It means the data packets that are sent or received are filtered by firewall to secure it.)

Ok, So ready to hack with Nmap,

There are three types of basic scans you can perform on ports which is as follows :

SYN Scan : It is the most simple & common scan that is used to scan for ports. The scan results are very faster compared to other types , but it gives generalized results.

FIN Scan : FIN scan can detect if any kind of filtered packets or weak firewalls, and warns attacker to create stealth for attacking the victim network.

ACK Scan : Filtered and unfiltered ports can be scanned with this type of port scan. It is the most advanced scanning done with nmap.

Hacking With Nmap

So let us start with commands of Nmap operation in Linux:

SYN scan :

For scanning www.sampledomain.com

Type in your terminal of linux:

#nmap -sS -T4 www.sampledomain.com         (replace domain or IP you wish to scan at sampledomain.com)

Result will be having three tables :

Port                           State                                 Service

This will give you port number its state open?filtered like that & services will give you what is service running on that ports.

FIN Scan :

#nmap -sF -T4 www.sampledomain.com         (replace domain or IP you wish to scan at sampledomain.com)

Live host & filtered ports are found out with this method

ACK Scan :

#nmap -sA -T4 www.sampledomain.com         (replace domain or IP you wish to scan at sampledomain.com)

All closed ports are eliminated with this ACK scan. And you’ll only see ports that are up for attack.

So this was a basic Nmap hacking or port scanning tutorial. You can also find OS running, web server & mail server scanning & this data can be used as Passive attack gathering stage which we have discussed in pre attack stages.

We will discuss web server hacking in upcoming posts. Please post your queries regarding nmap by commenting here. So that we can help you the most.

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.

Mapping The Network Of A Victim Organization

Posted on by
Reply

First of all I would like to wish Happy Birthday to Hacking Truths which is celebrating its second successful year on web, & you can win great prizes check out our special contest details here.

So lets get back on the hacking thing, as we discussed about how you can get information about your victim with the help of Passive Attack Gathering. Now what you have to do with this information ? The next step is known as Network Mapping.

While performing White Box, The ethical hackers know about how network is managed, how it is organized all the little details are also known to ethical hacker, who is performing the penetration testing on the victim network.

But, Case is reverse in Black Box Testing, Ethical hacker is kept a way outside the organization & he could not even gett that details directly. So what he do is first perform passive attack gathering & collect some information, then he arranges all the information in particular order so as to predict the hierarchy of the network.

He collects more & more information about the network as follows:

The operating systems installed on network & server

More information on network administrator & security persons

Vulnerable software installed on network

Firewalls , how they are used & how many ?

Topology of the network.

Security architecture of network.

You may ask that if organizations are paying highly to ethical hacker, why they don’t directly provide information ? But actually, when any criminal try to penetrate the network, he do not know anything about them. So, results of Black box are more satisfactory to find out all the vulnerabilities.

Now after arranging all the things in sequence, ethical hacker tries to break in network & find security holes, if he fails in first attempt, he changes his network map. & if he succeeds he proceeds to next hole. So by this way with trial & error he keeps entering the networks or changing his network map till he succeeds.

Mapping of Network need very much information in penetration, it is not the game for newbie, nut still you have to start somewhere, & starting with your own small network is not a bad idea, isn’t it ?

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.

Gathering Information About Your Victim In Penetration Testing

Posted on by
3

The very first stage of hacking is PAG i.e Passive Attack Gathering.  In plain English we collect all the information about our victim network or a system for planning the attack. Remember following things are explained for a penetration testing scenario & not for hacking actual hacking.  So don’t misuse this information, team of hacking truths will not be responsible for anything you do with it.

So what type of information we need in Pre attack stage  ?

If you are planning to intruding in some network, you’ll need following information.

What is the primary domain name of that organization who’s network you are testing. This is basically needed in performing a black box & not a white box. Any ethical hacker is hired to test network’s vulnerabilities from outside & he have no idea of the subjected network.

We need these things before attack:

Primary Domain names , their IP addresses

There Name servers (e.g ns1.victim.com, ns2.victim.com & so on..)

Owner of domain names, their addresses & phone numbers.

Then we need to know the basic mail server details (we need to trace route fro that)

Operating systems & arrangement

Basic information about firewalls.

So, we perform some queries from global database of domain names like ‘who is query’ to accomplish our information gathering attack. It is called as passive as we do not directly intrude inside the network & still can access all these data by indirect attacks. So this step is called as passive attack gathering.

Tools to be used for Passive Attack Gathering:

Nslookup : for details of Ip’s & mail servers

Who.is : It is a website gives you all data about domain owner.

Visual lookout: Connection details are shown up

Traceroute: Shows you a results of rout trace query

Neo Trace or Visualtrace: Shows you graphical interface of route tracing

Email Tracker Pro: Its a website you can try for gaining IP addresses from emails.

So this is how information is gathered by passive attack. If you have any questions, please let us know by commenting here.

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.

Vulnerabilities That Could Not Be Shielded

Posted on by
6

Vulnerabilities are the drawbacks in the application, network or whole system which allows external attacks to penetrate any network, This is sort of basic definition, any security guy could tell this.

My aim is to divert your focus from applications to physical vulnerability.  The most vulnerable element of any system is its user. Its simple to break any one’s confidence by using his emotions.

Let me explain you with example: Some X person was very rich, confident successful & blah , blah, blah .. One day his child was kidnapped by some criminals & so as to threaten him. He asked police help, takes best in the business to let her child out of those creepy guys.

But why? Because he was scared , that something could happen to his child. His emotions are most vulnerable & that lets his success, confidence & money (we can call it as his shields) broke into pieces.

I am not asking you to kidnap someone, No way. Just telling you which is the vulnerabilities which cant be shielded. Even my emotions are also vulnerable.

Remember, machines can not be threatened, programs could not be vulnerable as  its user is.

Human reacts to things very rapidly if he thinks he is loosing his important thing. He quits thinking & searches for the quickest path to get out & You know what , all you wannabe hackers you have to place your exploit right between that path. He wish to go out, you have to think before he thinks about it. Plan, make a map & and plant.

Are you getting me ? or I am going too fast, Just remember – You have catch the things this fast to be a great intruder, or what you call it as a HACKER.

To guard against such vulnerabilities all the employees who are working on the network, are suppose to be trained with this thing, that you don’t have to react quickly.

You the network security administrator should train them for such attacks, show them how to get out of such situation of attacks. give them demonstration, tell them how to react with specific errors, how to react for system crash, tell them how to report a problem, give them a sort of First Aid Kit which can be easily understood & used by all vulnerable human beings in your organization. This is the only way to shield this vulnerability of emotions.

Otherwise this human being have this Emotional vulnerability which is far far beyond the scope of stealth, shield or security. . .

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.

Setting Up A Hackers Workstation

Posted on by
26

Hi guys, Hope you have gone through the previous article and you’re now ready to take on the hacking stuff.  At very beginning you have to make your workstation ready, so that things will be available to you at one click.

You have to collect some of the tools, Operating System & documentation on your PC with a very clear format.

Operating System:

Which OS to use, choice is all yours. Windows in all cases is not so ‘made for hacking’ according to me. Whatever XP,Vista or windows 7. They are all just OS which are made for novice public which can learn computers.

If you are a regular Linux user, Then shift to Backtrack Linux. It is Linux made for hacker geeks & completely embedded with all penetration testing tools in it. You can Download Backtrack here. But if you have never used Linux & wish to learn then you can use basic Linux distributions like Ubuntu. But remember that you or not supposed to learn Linux desktop environment like windows, you have to learn its shell or terminal. (command prompt of Linux)

As I said Choice is all yours you can go with Windows also. Its all on you.  (Suggestion: If you can’t make it habit to learn new things, you can never be a HACKER)

Hackers Toolkit:

In your root directory or C:/ in windows make a folder named Tools. So that you can access all tools from command prompt easily E.g.  c:/tools/example

Go surf for these tools enlisted.

What are these tools ? Why are they used for ? How to use it ? are some of the questions that are striking your head.  Chill all dudes & babes, I am here to help you with each of the tools listed above.  All you have to do is first download them all & place in your root directory.

When ever you are reading things you must have all these tools, So I am giving you the list. And yes, Don’t forget to Subscribe to Hacking Truths, because you can’t miss such valuable updates. And yes, don’t worry about such big list, you won’t need to use all at a time, they are have wide uses in different fields like – Cracking, Wireless Networks hacking, Password Hacking, Encryption, Sniffing, Scanning & Enumeration, SQL injection & Web Hacking etc.

So have the tools, and go through their home pages & read as more as you can. For any sort of problems you have, I am just a comment away from you.

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.


Your First Step Towards Hacking

Posted on by
25

Hello Folks,

With my very first post, I am trying to divert you from tutorials. I am assuming you surf daily, download too much stuff, find cracks & serials & hacking tutorials.  This group is called as anarchists. This is the very beginning step of hacking. But many people stay in the same zone & never get promoted to the real penetration. The one I would like to share that you need to read a lot (very much than you can think), otherwise you can loose the thing.

Basic principle behind hacking is learn how the things are constructed, You can easily find the way to destruct it. There are some general mistakes in making things, you can know it only when you try to make it too.

When you make mistake while creating something, if someone try to take over that mistake & use it as a security hole to intrude in your system is called as hacker. So you need to learn the construction. The construction of following things:

Networks :

1. How Network is Created

2. How Firewalls are placed

3. Topology of The Network

4. Encryption

Web/Internet:

1. How a website is created, how they run (For that have some website, learn some potential problems in making a website, if you don’t have budget, then search for free hosts & domains )

2. How a blog is created & managed

Applets/ Applications:

1. Learn How the application are develop (Try to develop something, just for practice)

2. Learn specially apps of Browsers, WordPress, Twitter, Soft wares.

Platforms:

1. You must have command over Linux & Windows.

2. If you have Mac, that will be great, but it is not in essential list.

Gadgets:

Keep track of all the gadgets like – cellphones, their operating systems, net books, PSP, gaming consoles, google android, mobile windows, their apps everything.

Coding :
If you can not code then you can not create. So You have to have hand on Java, C and any of Web programming language but prefer PHP & HTML

This is too big list . . huh?

This is shortest ever list I have ever seen to be very loyal to you. Really, You don’t have to do thins in one day or something. You get all books for beginners like, networks for dummies, Java black book.

You have to read constantly. I am trying to collect here some of the best things which you can use it as your notes for hacking stuff. So be updated with it. But at least know the networks & Linux, so You can learn faster. Other things are your homework, you have read on net, try to create & all this stuff, you need to do it on your own. I am all here to he lo you in it. Any type of problem you have,We are here to help. You can mail us, comment here or by any means I will try to make things better for you.

Just keep the patience &  confidence. This is your first step to hacking – all you’re doing it for your curiosity. And curiosity is not a crime .  .  .

If you are good at all the things listed above I would like to Recommend some books:

1. Network Security: Private Communication in Public World (PHI Publication) – Its about Cryptography/ Encryption

2. Thinking Beyond Firewalls

3. Linux Security Cookbook

(Don’t read any book like : hacking gmail, how to  hack, hacking secrets … blah, blah , blah- They are not for hackers)

This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.