Hi guys, long time no see…I’ve been busy to making a simple IDS (Intrusion Detection System) for now on. But, it still in progress. Although I’ve try very hard, it seems very difficult for me. Maybe next time i’ll post it here. Now, stop the crap, and lets go to the topic. Did you know, in the widespread use of websites, there was so many sites doesn’t protect their databse securely. In this post, I want to discuss about injecting with “outfile” command. This vulnerability could happend because the administrator doesn’t protect the database. He/They, maybe using the default setting of the SQL. So, to preventing this damage, let’s try how the attacker penetrating the target. (more…)
SQLi, Injecting With Outfile Command
How To Use FIMAP
FIMAP is a simple and amazing tool that used to penetration testing. This tool has made by Iman Karim, this is just one of his project at google-code. He made this tool using python, so it’s very easy to using it for scanning any bug or vulnerability in a site. So, for more guide, let’s begin the show…
1. Download the FIMAP
You can download this tool here or here. (more…)
Bypassing Mikrotik Access Point Login
Hi there,
I want to start with a simple question here…’How secure was your Hotspot Area?‘..In some case, there’s a bored thing when we got an access point with a login form. Why we should fill this form if we could passing away??And the second question is ‘How to bypass this mikrotik security?‘
So, let’s begin : (more…)
How To Use Schemafuzz (SQL injection)
Hi all, in this post,as my another post that telling about a web security, I think I have to post this to you. Because if you do not patch your web security, your web will easily cracked by someone. Maybe your web will be defaced, or your database will being stolen. And you what happen then…your web will lost any google adsense or everythin you got from SEO. I’m sure you don’t want this happen.
I’m try to reveal my experiment using schemafuzz. I never try SQL injection with this tool before. I just found it at http://whitesecure.com. So, in this experiment, I think this is a cool stuff from darkc0de that you should try. All we need for use this tool is, a python compiler. For Linux user, python is a default programming language so we don’t have to installing it. But, for Win***s user, please download it here.
NETCUT, the Nasty Activity on Your LAN Connection
Hei all,
I’ll bet you already heard about this tool before. This is a quiet simple and outrageous tool, it’s called NETCUT. For a newbie hacker, this tool is used for disconnecting a target in a LAN connection. But, unfortunately this tool only works in Win***s. This application just like a trojan that exploiting your system. So, as you know, this attack might be very danger. We can call it a software that might broke the computer system
So, lets discuss about this tool.
1. Download the NETCUT here
Securing Your LAN Connection 2 (Wireless Mode)
I had posted an article that describe how our account can be sniffed by someone. By sniffing method, any of our private information could be gathered. So, I think, it’s very important to make sure there is no one has sniffed you.
In one network group, all our packets sent to every computer that live in that domain. And, for now…there is so many tools some can use to sniff and gathering that packets. And then the packets translated to any readable information. For sending and gathering the packets, it’s need an ARP protocol.
How To Not Being a Victim
Hi there, it’s an another post that might not so important to you. But, I think it’s very important to revealed. I’m not writing this because I’m an expert. I wrote this because I do care about our security problem. In the internet world, maybe we not meet a known people. Many of our friend in the internet is someone that we doesn’t know who the really person behind that nick. So, here I try to disscuss some trick to securing your account or network, or maybe your web.
So, lets try this option :
Freezing FACEBOOK Account
Did you ever heard about this before? If not, let me explain this to you. I’m just heard about this last day. Then I find the “freezing tools“, and try it. So, for the experiment, i need to make another Facebook account (I don’t want to crack my own account, he..he..). So, what happen? My another account is froozen, it’s look like I’ve typed a wrong password…
How it’s work and how to use this tool ? Here you are :
1. Download the tool here
2. Extract and run it (doesn’t need to be installed)
DEFACED !!!
It’s a horrible…!! Really..!!
For a web designer, a blogger or any body who own any sites. Being defaced is a very hurt. I can’t to imagine how the site owner felt when his hard-work so easily cracked by some unresponsible person. Maybe, if this happend to me, I’ll angry…very angry.
My friend told me about a site that being hacked yesterday. A magician site. I don’t know how or why…But, what i think is, it’s really harsh. Maybe you can look at this site. What do you think?
So, what I want to say is, becarefull my friend. Nothing is secured. Everything need to be updated…
Maybe, if you need a guide to securing your sites, contact an expert here!
Sniffing Using Cain & Abel
You must be already heard about this tool. This is a wonderfull windows hacking tools. With this tool, you can analyze and audit your network security. So, in my lab, I did a little experiment. Maybe for an expert, it has been knowin g this many times ago. But, i’m just refreshing our memory about how to get your neightbor password. And I think you should know , that this tool not only work for sniffing packet in your subnet. But, it work to cracking password with any algorythm, tracing data, get in to remote computer, any other things too.
Translator
Any Question? PM me :
Blogroll
Anda pengunjung ke
