Wednesday, June 29, 2011

hey guyzzz previously we disscussed about phishing  , well i was surfing the net i foud a very awesome google trick which can be used to hack emails accounts in just few minutes. the trick is basically based on the dump databases of various websites .
so these dump databases contains the emails and passwords of the users in the form of md5 hash.




                     
you  just have to follow these simple steps and u wil hack many random accounts :


this method is called as hash cracking technique.


1. goto google


2. now these are the dorks through which we will found the emails and hashes.
Google Dorks
Code:
ext:sql intext:@hotmail.com intext:e10adc3949ba59abbe56e057f20f883e
Code:
ext:sql intext:"INSERT INTO" intext:@hotmail.com intext:password
Code:
ext:sql intext:@hotmail.com intext:password



3. now take any one of the dork and paste it on the google and press search.[see the screen shot below go to any link and now press ctrl+f to search the keywords like [@gmail.com,@hotmail.com,@yahoo.com]
u will get a list of emails and ther respective md5. 




4. now goto any online md5 decrypter like this  h4ckforu & paste the hash into it nd see below if it got decrypted and copy the password .

note:  as these files r dumped because emails r outdated soo u may not get the working emails because 60% of emails are deleted or there pasword may be  change so try and try many emails until u get a perfect login .


5. so through this u can hack dozens of emails at once if u get a recently dumped database i will suggest you to add some more keywords in the dork like [2011 hashes.2010 emails.....so u may get a recent hash]
hope u like this trick
thanxx for reading and pls comment :)

Monday, June 27, 2011

ADMAYA: an alternative for adsense..!!

Admaya is adsense alternative with high payout and good quality of ads


# Admaya is an online indian pay per click ad network.
# Publicise your ads to a large community using Admaya advertiser account.
# Advertise using text and banner ads targeted to niche audience with full control on click rates and budget.
# Presenting a cost effective advertising system wherein you need to pay only for legitimate clicks on your ads.


                                              

Advertisers Publishers
==============

* Find out how you can reach your target audience using Admaya advertiser account.
* PPC Text/Banner Ads served on our network sites and partner websites.
* Keyword Targeting for your PPC advertisements to reach specific audience.
* Optimal keyword click bids suggested by system for better serving of your ads.
* Our powerful and cost effective advertising system allows you to advertise to a geographically targeted large community and gain potential visitors to your site.
* Advanced fraud detection technology ensures that you pay only for valid clicks.
* Advertise at 0.025$ per click.


* Learn how to boost your income from your web pages using Admaya publisher account.
* Show text/banner ads which are most relevant to your site content.
* Earn revenue from the clicks you receive on our ads displayed in your pages.
* Filter out advertisements of your competitors from your ad display units.
* You can show ads in your content pages as well as search engines. You can use our ad display units along with other ad programs.
* Publishers earn 75% to 80% of the total click value. Highest in the industry.

                                     >>>  ADMAYA 

Sunday, June 26, 2011

hey guyzz today i m giving a simple tutorial on Dot net nuke(DNN) website hacking.as we know DNN websites r having a huge vulnerability of file uploading on the root server so we can easily upload shell and deface the website.




Step 1 : goto google

Step 2:Now enter this dork (this is Dork to find DNN Vulnerable  sites)

   inurl:/Fck/fcklinkgallery.aspx
     
or
     inurl:"/portals/0"

or 

inurl:tabid/176/Default.aspx

these r dorks to find the Portal Vulnerable sites.
Step 3:
now you will get a huge list of DNN websites but the main part it to get a vulnerable website which can be defaced because now very less websites r lest vulnerable othewise this vulnerability issue have been fixed ny dot net nuke.
Step 4:
For example i have got a website .


Step 5: Now Paste after the site url
  this
/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx
Now Site is this : 








so it will look like this (screenshot above)
Note:  if it will show you like this (see screenshot below) its mean site could not be hacked  find another site
 

Now Click on File ( A File On Your Site )
Step 8:Now replace the URL in the address bar with this java Script


javascript:__doPostBack('ctlURL$cmdUpload','')
Step 9:You will Find the Upload Option to upload files on website. Step 10:
Select Root of the website.
Step 11:
Upload your shell  
download from here
After uploading  shell.asp;.jpg
go for your shell  www.yoursite.com/portals/0/yourshellname.asp;.jpg
so you after uploading shell and shell is front of you look like this (screenshot below)









Click on <Dir>...  again and again till you will see admin area



now it will show u admin area where u can upload ur pages to main root directory ie c:/ 
now to replace the original index.html to put ur deface  page, u have to copy the code of deface page nd paste by editing index.html [this will be done in Admin dir]




NOW lets move to the most tricky part of the tutorial, and u can say it is the most intresting part because it is very very difficault to find the website which can allow to upload our shell so , lets do somthing intresting . we can upload images easily on website now follow this simple steps to change the original images of website to our image....;-)..:DD




Step 1:

www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx

You will see the portal where it will ask you to upload. Select the third option File ( A File On Your Site)
now select a foder which is containg the image which is on the the front page of 
website. let me take this website for an example:
 



Step 2:


now i found the front image of the website in this portal:


first u save the image with the same name nd format
 
now edit the image as u want it to be shown.

now upload this image to the portal in which it is stored
for ex i have :




step 3:

After selecting the third option, replace the URL bar with below script

javascript:__doPostBack('ctlURL$cmdUpload','')


now u will finde the option to upload

upload ur image nd now goto the main page of the website.

mine is 

lolzzz..... security breacheddd....hahaha.

this trick will work in many sites soo njoyy hacking websitess

thnxx for  reading this tutorial made by Devendra
caution:
1. only for educational purpose .

2. use proxy,vpn. ..in short hide ur ip. :)


Friday, June 24, 2011

hey guyzz good news !!! havij 1.15 launched!!!
Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By using this software user can perform back-end database fingerprint, retrieve DBMS users and  password hashes, dump tables and columns, fetching data from the database, running SQL  statements and even accessing the underlying file system and executing commands on the operating system.










The New features of Havij 1.15 :-

Webknight WAF bypass added.
Bypassing mod_security made better
Unicode support added
A new method for tables/columns extraction in mssql
Continuing previous tables/columns extraction made available
Custom replacement added to the settings
Default injection value added to the settings (when using %Inject_Here%)
Table and column prefix added for blind injections
Custom table and column list added.
Custom time out added.
A new md5 cracker site added
Bugfix: a bug releating to SELECT command
Bugfix: finding string column
Bugfix: getting multi column data in mssql
Bugfix: finding mysql column count
Bugfix: wrong syntax in injection string type in MsAccess
Bugfix: false positive results was removed
Bugfix: data extraction in url-encoded pages
Bugfix: loading saved projects
Bugfix: some errors in data extraction in mssql fixed.
Bugfix: a bug in MsAccess when guessing tables and columns
Bugfix: a bug when using proxy
Bugfix: enabling remote desktop bug in windows server 2008 (thanks to pegasus315)
Bugfix: false positive in finding columns count
Bugfix: when mssql error based method failed
Bugfix: a bug in saving data
Bugfix: Oracle and PostgreSQL detection

To Download Havij 1.15 Click 
HERE

Thursday, June 16, 2011


Hey guyzzz today i m gonna show you how to combine any two files with help of command prompt ,as evry body uses binder to bind files but u dont require any external software as u can do it urself. 
with this trick u can hide ur important archieves nd texts under an image file ,





now lets move on to tha main part, follow these simple steps:


1. open any drive for ex: i take c drive nd create a new folder rename it, i take my folder as devendra.


2.Now take any two files which u want to combine i have taken a jpg image nd a rar archieve.
                        


3.now open command prompt[goto run>type: cmd  (press enter)]  type the following command in cmd prompt


                   cd c:\folder name   [press enter]
for ex:          cd c:\devendra  
 now u will see like this  C:\devendra>  type dir [see the screenshots]
                              




4. now u r in the directory of folder ,so type following command:


copy  /B attitude.jpg + hack.rar  new.jpg   {in thi command u can change the folder name according to urs new.jpg is our combined file u can lso change new.jpg to any name.jpg}
                                       




5. now u r done see in the folder a new.jpg file 




6. now open it with ur image viewer as u can see in the screen shot given below;


                               
7.now open the same image with winrar u can see the screen shot below.









so ,with this tricks u can hide ur php shells,servers,..etc into an image file without any software njoy the trick uif u got any prob then do comment,,:D..!!!
                  

fAgain, "Since it is coded by SOME ONE ELSE, BUT i guarantee you that it IS 100% clean because i know that it IS."
Feel free to download  it and yes, if you like it, please leave comments! :D
I M SHARING THIS HACK TO U AS I HAVE GOT MANY REQUEST FOR KASPERSKY CRACKS&KEYGEN SO I SEARCHED THIS TRICK.
It was tested on Kaspersky Internet Security 2011 v11.01.400 (a.b.c) and v11.0.2.556 (b.c.d) on 32-bit and 64-bit windows (XP/Vista/7)
COMPLETE PROTECTION
Kaspersky Internet Security 2011 has everything that you need to stay safe and secure while you�re surfing the web. It provides constant protection for you and your family � whether you work, bank, shop or play online. With Kaspersky Internet Security 2011 you are always in a Green Zone, the safest place to be on the Internet.

Provides complete protection:
Kaspersky Internet Security 2011 will detect and neutralize even the most recently developed malware. It provides everything that you and your family need to stay safe online in one easy-to-use application. 

Cutting-edge technologies:

Kaspersky Lab has merged the very latest proactive, behavioral and in-the-cloud technologies with tried and trusted detection methods to provide your system with robust protection against any type of known or unknown malware. 

Communicate in safety:
Whether you like to email, or communicate with your friends and family using Instant Messaging,Kaspersky Internet Security 2011 will monitor the incoming and outgoing traffic to ensure you stay safe. Smart anti-spam and anti-banner protection means that you won�t be troubled by unwanted advertizing either. 

Roll back changes:
The advanced technologies inside Kaspersky Internet Security 2011 mean that every system event is recorded and analyzed to see if it appears harmful, allowing the user to roll back any suspect actions. 

Digital identity protection:
You wouldn�t give the keys to your house to a complete stranger, so why hand them the keys to your digital identity? With features like smart anti-phishing protection, a Virtual Keyboard and automatic antimalware updates direct from the Kaspersky Lab servers, you won�t have to! There�s also a built-in vulnerability scanner to identify and close those loopholes that you may not even have been aware existed, making your system one of the safest around. 



                                          DOWNLOAD TRIAL KIS2011 VERSION
jUST FOLLOW THESE SIMPLE INSTRUCTIONS:-



1.   Download Kaspersky 2011 Trial Reset software.





                    

2.   Now, disable �Self-Defense� feature of your Kaspersky. For this, double click on Kaspersky icon in task bar. Now, select �Settings� to get a new dialog box. Select �Advanced Settings� from the tabs as highlighted in the image.

Click on Self Defense and uncheck �Enable Self-Defense� to disable the Self Defense feature.
3.   Run the downloaded software on your computer.


4.   Now, hit on �Reset Kaspersky�. The hack tool will reset Kaspersky Internet Security 2011 for you and now you can again enjoy KIS 2011 for 30 days. On running Kaspersky Internet Security 2011, it will again create a new trial registration key for your computer and you can use Kaspersky Internet Security 2011 for 30 more days.
What after next 30 days??? Use this Kaspersky 2011 trial resetter tool again. Cheers!!!

Note: - This Kaspersky 2011 Trial resetter software might be detected by your antivirus. Don�t worry, it is a false positive and the software is safe to run.

I hope the Kaspersky 2011 Trial resetter software will help you to reset Kaspersky Internet Security trial period. I read a lot of great reviews about this software and hence sharing it with you. If you have any problem in using the Kaspersky 2011 Trial reset software to reset Kaspersky Internet Security trial period, please mention it in comments.

                                   DOWNLOAD TOOL HERE      
Avg internet security is one of the best antivirus software in the worls ,no dount on that. so today i m giving u a trivck to get its free 3 month liscence.




The key features of AVG Internet Security 2011: -

 Provides additional layers of security, keeping the private information safe at all times.
 Block spammers and scammers.
 Marks all unwanted emails as spam, protecting from online scams and keeping inbox clutter free.
 Real-time protection when surfing, shopping, banking and social networking.
 Stay safe on social networks with AVG Social Networking Protection.
 Surf and search with confidence.
 Download and share files without risk of infection. Also protected whn exchange files through online chat.
 Automatically checks links exchanged on Facebook and my space real time so that you and your friends stay safe.
 Support and assistance.
 Scan smarter and faster.
 AVGs core layers of protection make sure you cant receive or unintentionally spread even the toughest threats.


Now here is the way to get ur AVG serial:



NOTE: - Although the promo is in Polish language but don�t worry because the serial number from the Zima promo can be used in AVGinternet security 2011 English version (I�ve tested the serial number).

1.   This AVH promo is winter promo by Zima. To get the license open this promo page: http://www.avg.pl/ZimaZAVG

2.   Fill out the form on the promo page. You just fill the field marked with blue, other field is optional. Enter �Zima z AVG� in Has?o z czasopisma field.               








3.   Submit the form. you�ll receive email confirmation for the subscription.

4.   A few minutes after clicked the confirmation link you�ll receiveAVG 2011 license number and download link for AVG internet security 2011 but the software in the email is Polish version. To download the English version open here: AVG 2011 offline installer

5.   Use the serial number to activate the AVG IS 2011 software.

NOTE: this is not a permanent offer so hurry up nd grab ur keys as soon as possible . no guarntee if 2morrow the website get gets vanished :D:D:D..!!!