Wednesday, March 20, 2013

Firesheep - A Firefox extension that demonstrates HTTP session hijacking attacks.

Firesheep, a Firefox extension designed to demonstrate just how serious this problem is.

After installing the extension you'll see a new sidebar. Connect to any busy open wifi network and click the big "Start Capturing" button. Then wait.

System Requirements

  • Mac OS X: 10.5 or newer on an Intel processor.
  • Windows: XP or newer. Install Winpcap first!
  • Linux: Not currently supported.
  • Firefox: 3.6.12 or newer. 32-bit only. Firefox 4.x beta not supported.


Getting Help

More Information

Wireless Network Hacking | Download Wi-fEye

Wi-fEye is designed to help with network penetration testing, Wi-fEye will allow you to perform a number of powerful attacks Automatically, all you have to do is to lunch Wi-fEye, choose which attack to perform, select your target and let Wi-fEye do the magic !!.

Wi-fEye is divided to four main menus:

Cracking menu: This menu will allow you to:
Enable monitor mode
View avalale Wireless Networks
Launch Airodump-ng on a specific AP
WEP cracking: this will allow you to perform the following attacks automatically:

- Interactive packet replay.
- Fake Authentication Attack.
- Korek Chopchop Attack.
- Fragmentation Attack.
- Hirte Attack (cfrag attack).
- Wesside-ng.

WPA Cracking: This contains the following attacks:

- Wordlist Attack
- Rouge AP Attack.

2. Mapping: this menu will allow you to do the following:
Scan the network and view the connected hosts.
Use Nmap Automatically.

3. MITM: this menu will allow you to do the following Automatically:
Enable IP forwarding.
ARP Spoof.
Launch ettercap (Text mode).
Sniff SSL/HTTPS traffic.
Sniff URLs and send them to browser.
Sniff messengers from instant messengers.
Sniff images.
DNS Spoof.
HTTP Session Hijacking (using Hamster).

4. Others: this menu will allow you to o the following automatically:
Change MAC Address.
Hijack software updates (using Evilgrade).

Click to Download

Get Someone's IP Through AIM/MSN/Chat

Found a great website that logs IPs and gives you the lat/long./isp.

1)Create Account

2)Get one of the links and tell someone on AIM or whatever to click it, choose any of the images and tell them you painted it or some stupid shit like that.

3)When they look at the image, it logs their IP.

4)Bonus points:

-Tell them its animated and 20 seconds in it will change, this allows the website to have time to ensure all their info is retrieved.

Friday, March 15, 2013

Advanced GOOGLE Search Techniques

Advanced GOOGLE Search Techniques

Google, undoubtedly is the most popular search engine. May be you are using google for a long time, but do you know the advanced searching techniques to get the best results out of google?

It's never too late. A few search techniques you must know, are below. For ease of understanding, each technique is explained with an example.....

1>Type in Google :- nokia phone 
Result :- the words "nokia" and "phone"
2>Type in Google :- sailing OR boating 
Result :- either the word sailing or the word boating
3>Type in Google :- "love me tender" 
Result :- the exact phrase love me tender
4>Type in Google :- printer -cartridge 
Result :- the word printer but NOT the word cartridge
5>Type in Google :- Toy Story +2 
Result :- movie title including the number 2
6>Type in Google :- ~auto 
Result :- looks up the word auto and synonyms

7>Type in Google :- define:serendipity 
Result :- definitions of the word serendipity
8>Type in Google :- how now * cow 
Result :- the words how now cow separated by one or more words
Type in Google :- 978+456
Type in Google :- 978-456
Type in Google :- 978*456
Type in Google :- 978/456
12>% of 
Type in Google :- 50% of 100

raise to a power; 
Type in Google :- 4^8
14>old in new (conversion) 
Type in Google :- 45 celsius in Fahrenheit
15>site:(search only one website) 
Type in Google :- "invisible web"
16>link:(find linked pages) 
Type in Google :- link:
17>#...#(search within a number range) 
Type in Google :- nokia phone $200...$300
18>daterange:(search within specific date range) 
Type in Google :- bosnia daterange:200508-200510
19>safesearch: (exclude adult content) 
Type in Google :- safesearch:breast cancer
20>info: (find info about a page)
Type in Google :-

21>related: (related pages)
Type in Google :-
22>cache: (view cached page) 
Type in Google :-
23>filetype:(restrict search to specific filetype) 
Type in Google :- zoology filetype:ppt
24>allintitle: (search for keywords in page title) 
Type in Google :- allintitle:"nike" running
25>inurl:(restrict search to page URLs) 
Type in Google :- inurl:chewbacca
26> (specific domain search) 
Type in Google :-,,, etc.
27>site:country code (restrict search to country) 
Type in Google :- "rio de Janeiro"
28>intext:(search for keyword in body text) 
Type in Google :- intext:parlor

29>allintext: (return pages with all words specified in body text)
Type in Google :- allintext:north pole
30>book(search book text) 
Type in Google :- book The Lord of the Rings
31>phonebook:(find a phone number) 
Type in Google :- phonebook:Google CA
32>bphonebook: (find business phone numbers) 
Type in Google :- bphonebook:Intel OR
33>rphonebook:(find residential phone numbers) 
Type in Google :- rphonebook:Joe Smith Seattle WA
34>movie:(search for showtimes) 
Type in Google :- movie:wallace and gromit 97110
35>stocks:(get a stock quote) 
Type in Google :- stocks:ncesa
36> weather:(get local weather) 

Type in Google :- weather:97132

Tuesday, March 5, 2013

How to run android applications on computer

Its very simple to run the android applications on computer . 

Follow these steps

Step 1:
  1. Download BlueStacks on your Computer from this link
  2. After Download BlueStacks, Run Setup file and Install BlueStacks on your Computer.
  3. Restart computer after installation. Now BlueStacks is Installed on Your Computer.
Step 2: 
  1. Download any Android App on your PC.
  2. Browse the Folder where the app is downloaded
  3. Right Click on App (with .apk extenstion)
  4. Select "Open With"
  5. Click on "Browse"
  6. Browse to C:\ProgramFiles\BlueStacks-Android Apk Handler Application Program
  7. Click "OK"
  8. Double Click on the App that you want to Install
  9. Installation will start 
  10. Confirmation message will display in pop-up
  11. Run BlueStacks Program from Desktop
  12. You can see your installed app in BlueStacks 

Monday, March 4, 2013

How to turn the pc on in 10 seconds

Click on the start button then press R it will take you to Run,
Well go to run and type Regedit then press enter.
This will open Registery Editor
now look for the key
HKEY_LOACAL_MEC HINE\SYSTEM\CurrentControlSet\ Control\ContentIndexnow 
Here find the Key Called "Startup Delay" 
Double Click on it
Now where its BaseClick DecimalNow its Default Value Is 4800000 (75300:hexadecimal) 
Change The Value To 40000
Then close the Registery Editor and Restart Your Computer

What is OAuth (Open Authorization) and why it is essential?

Basic idea behind it

OAuth basically is a token-based authentication method without revealing the user password.

Why we need it

We visit lot of websites daily. Some of them ask us to register on that website to get more information. And normally the user does not register and left the site, because it is boring for the user to fill up registration forms etc.

On the other side by perspective of company it is very important to keep the customer’s details. If you don't have customer details then how you can tell them about your products.

Think you are an end user and you visit a website. You like there some products say laptops etc. And then you want to do some more research about that product. Here you left the website. And the website does not have any way to communicate with you as you are not registered with website

How it works

Here OAuth comes as life saver; It allows an end user to share his/her information by using by third-party services, such as Facebook, Twitter, LinkedIn etc.
OAuth acts as an intercessor on behalf of the end user, it provides the access to the account information with an access token. User can revoke the access anytime to stop to share the information to that website.