Surf The Cyber

A Muslim Cyber Team attack USA websites and started there opUSA recently more over 50+ webs hacked by Anon Ghost,
The website which was recently hacked by AnonGhost Contains

http://www.dawsonmoving.com.au
http://www.hack-db.com/407902.html

http://www,daycareshare.com.au
http://www.hack-db.com/407935.html

http://www.addisfilmfestival.org/
http://www.hack-db.com/407947.html

http://www.vietwebhostings.com/
http://www.hack-db.com/407968.html

MESSAGE :

The message given by the attacker in the deface page are as follow :

"It's time for you to wake up America. You have been sleeping for far too long.You feel it prickling under your skin, you sense it deep in your gut.Change is coming, whether you like it or not. So, either you stand up to the corruption that is your government, or you continue to live as hollow robotic shells, doing the same things day in and day out,expecting different results;While your rights are endlessly stripped away and a dictatorship and militarypolice state rises....what will you do?This defines insanity, does it not?Your silence is not saving anyone, you government has failed you.The only system you have ever known is crumbling and they are desperately trying every crooked avenue to control their messes and to control you MORE, at any cost.Deep down you know these things. You see things things.Will you remain silent? While the world is dying at the hands of the corrupt?Do the atrocities need to be in your own backyards before you act and use your voices?Will you wait until the very last minute before you step outside of your comfort zone and actually do something about it? What are you willing to risk? What lengths are youwilling to go to for TRUE freedom from a parasitical government?Do not wait until the last moments, regretting what you didn't do when it really mattered.The time is now. Wake Up. The way things are going, doom is inevitable.If you want something different, then do something different.AnonGhost is going to be an alarm clock to the United States Government. Please, citizens of the United States of America, do not push snooze anymore.It's time to wake up....wake up....wake up."

Joomscan is a joomla web vulnerability scanner written in perl langauge for penetrate or finding vulnerability known already in a particular targets,Joomla is the most widely used CMS present now because of its flexibility and plugins which makes easier for webmasters to manage there websites in a friendly use interface
well joomscan comes built in Backtrack 5 just open terminal and type
root@bt~$ cd pentest/web/joomscan

or if you are on windows just installed perl in your windows and open it with perl console :D its easy nahh!!

DOWNLOAD :

                                                                       JoomScan

INTERFACE :

USAGE :

WPScan is a WordPress vulnerability scanner which has different flavours of exploiting wordpress based websites it is programmed in RUBY language,it can attack a wordpress website in variety of ways
like you can use non-intrusive scan you can also bruteforce the admin passwords with it if you have a good password list but don't worry there is a built it pass list in backtrack ;)
The best part of the wpscan is that you can enumerate or try to find exploit of plugins installed in it thats the best part of wpscan because exploiting wordpress directly is "hell of a job" thats why the better option is to use plugins enumeration.

INTERFACE :

DOWNLOAD :

WPSCAN USAGE :

Nikto is an open source web or server vulnerability scanners widely used in pentesting or by hacker's it is also used by webmaster's to penetrate and find the vulnerabilities in there server which can be exploit with manually or by software's,Nikto scans 6500 potentially dangerous files/CGIs,and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.

Nikto is written by Chris Sullo and David Lodge.

INTERFACE :

so download it to your distro and open it through the terminal

Download anyone from them Nikto2.tar.bz2 or Nikto2.tar.gz.

Now lets come to the main part of the post which is how to use Nikto?
well Nikto can be used is different ways so lets discuss about there usage.

1) The basic use means if you want to scan a ip or a particular target (website)

root@bt:~$ ./nikto.pl -h [target or web url] or perl nikto.pl -h [target or web url]

2) For help if you want to see its more function

root@bt~$ ./nikto.pl -H or perl nikto.pl -H

3) For checking updates just use

root@bt~$ ./nikto.pl -update or perl nikto.pl -update

4) For scanning your target using proxy use command mentioned below

root@bt~$ ./nikto.pl -h [target or web url] -useproxy http://localhost:8080/

./exit

Hopes u like it don't forget to comment ;) if you are facing any prob just drop a comment below :D

Havij is an automated sql injector tools which was made my itsec team it is mostly used automated injector in windows operating system.
Havij has a very friendly interface any one can addict to it but it is a bit slow if your target has some goods waf ( web appliction firewall ) so the chances are 40% by havij that you can inject it with havij,
But in the beginning stage I prefer you to use havij if you are not familiar with manual sql injection.

INTERFACE :