Appin Information Security & Ethical Hacking Blog

Hi Guys…

Today in this short tutorial i m gonna tell you a way, a java script using which you can know password behind asterisks/ stars on web pages.

javascript:(function(){var s,F,j,f,i; s = “”; F = document.forms; for(j=0; j<F.length; ++j) { f = F[j]; for (i=0; i<f.length; ++i) { if (f[i].type.toLowerCase() == “password”) s += f[i].value + “\n”; } } if (s) alert(“Passwords in forms on this page:\n\n” + s); else alert(“There are no passwords in forms on this page.”);})();

How to use this Code:
1. Just open any web browser, and open any website for which username and passwords are stored already on the computer you are using.
lets say www.gmail.com

2. Now if any username and password are stored on ur system for gmail, then it will be visible in login area, as username and ***** stars in place of password.

3. Now if you want to see the hidden password behind these stars, then just copy the given javacode above and replace it with url of gmail in addressbar of ur browser. and press enter.

4. As you follow the 3rd step, the passwords will show you in a alert box

please comment…….

Remote file inclusion is basically a one of the most common vulnerability found in web application. This type of vulnerability allows the Hacker or attacker to add a remote file on the web server. If the attacker gets successful in performing the attack he/she will gain access to the web server and hence can execute any command on it.

Searching the Vulnerability

Remote File inclusion vulnerability is usually occurred in those sites which have a navigation similar to the below one

www.Targetsite.com/index.php?page=Anything

To find the vulnerability the hacker will most commonly  use the following Google Dork

“inurl:index.php?page=”

This will show all the pages which has “index.php?page=” in their URL, Now to test whether the website is vulnerable to Remote file Inclusion or not the hacker use the following command

www.Victimsite.com/index.php?page=www.google.com

Lets say that the target website is http://www.cbspk.com

So the hacker url will become

http://www.cbspk.com/v2/index.php?page=http://www.google.com

If after executing the command the homepage of the google shows up then then the website is vulnerable to this attack if it does not come up then you should look for a new target. In my case after executing the above command in the address bar Google homepage shows up indicating that the website is vulnerable to this attack.

Friends, If your Friend remain invible from you…. and say that they dont come online……
Then they have to fear now coz there is a way by which u can find that they are online or not……. Now no need to ask from your friend that they came online or not…….

There r many sites which proclaims that they can track invisible user on yahoo…… But according to my personal experiance, they give wrong result many times…..

try thes web site

http://www.imvisible.info/

http://www.viprasys.org/scan/

http://www.yahoo-status.com/

http://www.ydetector.com/

Many times this problem comes on many systems, that when the user prompt to open Task manager or Registry then it says”Task manager/ Regedit is Disabled by Your Administrator”….. Even when they login from the Administrator Account…
Here is the solution for that:

1. Go to Start> Run and write ‘GPEDIT.MSC’ and Press Enter

2. To Access Registry Edit Again:
Go to User Configuration > Administrative Templates > System
Then In the right pane, find “Prevent Access to Registry Editing Tools” and double-click on it to change. and then Select Disabled or Not Configured and Press OK.

3. To Access Task Manager:

Go to User Configuration > Administrative Templates > System > Ctrl+Alt+Del Options> Remove Task Manager
Then In the right pane, find “Remove Task Manager Option” and double-click on it to change. and then Select Disabled or Not Configured and Press OK.

4. Now close Group Policy and restart your computer. Now you can access both registry edit and Task Manager on your system.

You can hack a certain site using C99.php shell by uploading it to web server. Unfortunately I cannot post the source code of c99 shell here but I will provide tips on how to find c99 shell script. The c99.php is detected as harmful to your pc scanned by various anti-virus but basically it doesn’t harm your pc anyway, it’s just a hack script which is applicable only to web server running Php under Linux platform or maybe on Windows server (haven’t tried yet) but 99% works on Linux servers.

You can find c99 shell using Google by using a ‘Google Dork’, just type [allinurl: c99.php"] without the brackets Google will provide your results which links to c99.php shell. I advise that you copy the c99.php code and save it as “c99.php” and upload it to web host. To be able to use the c99 shell script just access it via URL (i.e. www.somesite.com/c99.php) or similar to this and voila! You can retrieve/modify password, upload file, modify, etc..

But before you access the file make sure you have your proxy setup to avoid getting caught. It is unwise to access directly the exploit without protecting yourself first!

APPLY SOON!!JOB POSTING DATE: 22.12.10    JOB TITLE: Software DeveloperREQUIREMENT: The candidate should have completed the Application Programming long term (6 months) course from Appin with a no due payment.STATUS: Full timeSALARY INFORMATION:  80,000 – 1,25,000(Package is not a bar for capable candidates)LOCATION: Tirunelveli, TuticorinKEY SKILLS REQUIRED: Strong programming in .Net / Java / PHPEDUCATION: UG – B.Sc – Computers, B.Tech/B.E. – Computers, Electronics/Telecommunication PG – M.Sc – Computers, MCA – ComputersCOMPANY NAME: Mani India technologies (P) ltdWEBSITE: http://maniindiatech.com/EXECUTIVE NAME: Mr. VijayADDRESS: Mani India technologies (P) ltd6/1209 B, Mani Towers, 3rd St, 4th CrIndra NagarKovilpattiTUTICORIN, Tamilnadu, India 628503  EMAIL ADDRESS: jobs@maniindiatech.comTELEPHONE: 04632-224733Kindly send your updated resume only to the email id mentioned aboveor directly walk-in.

1.LAUNCH INTERNET EXPLORER

2.CLICK ON VIEW AND THEN INTERNET OPTIONS.

3.CLICK ON ADVANCED TAB.

4.SCROLL DOWN TO THE SECURITY SECTION.YOU CAN ENABLE AND DISABLE BY CLICKING ON THE APPROPRIATE RADIO BUTTONS.