Ethical Hacking Tutorials | Learn How to Hack | Hacking Tricks | Penetration Testing Lab |

How to recover deleted photos from your digital camera with DeleteFIX?

noreply@blogger.com (Sabari Selvan) — Fri, 29 Mar 2013 22:25:24 PDT

If you have accidentally deleted photos in your Digital camera , no need to worry, here is the way to recover you photos. DeleteFIX Photo is the only program designed specifically for digital photo recovery, it will recover photos deleted from your digital camera. It is the only photo recovery Software in the market that recovers every photo format from every digital camera. Each camera

SQL Injection Tutorial: All common SQL injection problems and Solutions

noreply@blogger.com (Sabari Selvan) — Sun, 24 Feb 2013 08:11:06 PST

Hello readers of BTS, Today I'll write an tutorial for you what covers most problems while doing SQL injection and solutions to them. Probably every person who has looked at tutorials to hack a website have noticed that there are too much SQL tutorials. Almost every forum has 10 tutorials and blogs 5 tutorials about SQL injection, but actually those tutorials are stolen from somewhere

Disclosing Vulnerabilities: The BUG Bounty Way

noreply@blogger.com (BreakTheSec) — Sun, 03 Feb 2013 08:09:02 PST

After presenting this topic at NULL Bangalore Jan Meet, I got loads of appreciation from various people , and one such appreciation I got was from my friend Sabari Selvan. And that’s why I decided to write an article about the presentation I gave. This article gives you an insight with hunting bugs, and hopefully it becomes a kick-starter guide for the beginners who want to start off with

Facebook Password Trick: Three passwords to Access your Facebook account

noreply@blogger.com (BreakTheSec) — Sun, 03 Feb 2013 07:31:42 PST

Yes, You can access your Facebook account with 3 different passwords . I was surporised when i read this message posted by one of my friend in Facebook. So , immediately, i tested whether it is true one or not. Yes, it is working. Facebook allows the following variation of your passwords: 1. Your Original Password: Let us assume that you are using "breakTheSecurity" as password. Yeah, you

10 System Admin Tools to Help You Secure Your Network

noreply@blogger.com (Sabari Selvan) — Wed, 23 Jan 2013 08:38:51 PST

System admins are frequently bombarded with security concerns, requests, alerts, news items, “did you see this?!” emails, and more. Keeping up with all the aspects of network security can seem like an overwhelming task, but in this post we’re going to look at ten tools a system admin can use to help secure their network. Some you may be familiar with, like network security software, while

Hack Your Broadband

noreply@blogger.com (Aarshit Mittal) — Sun, 06 Jan 2013 09:00:48 PST

Hack Your Broadband Step 1: Download any port Scanner (i preffer Super Scan or IPscanner) Step 2: First Get your ip from CODE www.whatismyip.com Asume your IP to be 59.x.x.17 Step 3: copy your ip in IPscanner Software and scan for alive IPs in the below range start:59.x.x.1 to End:59.x.x.255 Step 4: Then check in your scanner which alive IPs has the port 80 open Step 5: Enter

4 Films That Make Hacking Cooler Than it Actually Is

noreply@blogger.com (Sabari Selvan) — Wed, 19 Dec 2012 08:08:57 PST

Being a computer hacker might seem like a really cool thing. For a start, you know your way around a keyboard like Mozart on a piano. The world is your own personal playground. No information is closed off to you. The possibilities are endless. At least, that’s what Hollywood seems to think. The reality is much less interesting. And of course, much more illegal. Examples can be found here

jSQL Injection - Java based automated SQL injection tool

noreply@blogger.com (BreakTheSec) — Tue, 27 Nov 2012 09:35:51 PST

jSQLi is java based free SQL Injection Tool. It is very easy for user to retrieve database information from a vulnerable web server. SQL Injection features: GET, POST, header, cookie methods normal, error based, blind, time based algorithms automatic best algorithms detection data retrieving progression proxy setting evasion for now supports MySQL Download it from here: http://

Demo: How to upload your PHP shell through Tamper Data an Firefox Add-on?

noreply@blogger.com (BreakTheSec) — Fri, 02 Nov 2012 09:29:30 PDT

This is a guest post by s3v3n from Code104 Many times you get login of a website, but you are unable to upload your PHP shell ! Today i'll show you how to upload your PHP shell through Tamper Data an Firefox Add-on Install Tamper Data firefox add-on: Download Tamper Data here Now Install it and Restart Firefox Rename shell: Note: You have to rename you .php shell to .jpg to bypass the

Firefox 16 vulnerability allows spammers to steal Facebook access tokens

noreply@blogger.com (Sabari Selvan) — Sat, 13 Oct 2012 19:59:13 PDT

Recently a researcher discovered a vulnerability in the latest version of Firefox ,v16.0, that allows attacker to gather detailed information about user browser history. Previous versions and later version are not affected. Although it was initially believed that the vulnerability allow access to browser history, Mozilla representatives told Ars Technica that "the flaw allowed access to the

Reflected XSS Vulnerability in Crunchbase

noreply@blogger.com (BreakTheSec) — Tue, 09 Oct 2012 09:31:53 PDT

Indian Security Researcher, Nikhil Kulkarni, has discovered Reflected Cross site scripting vulnerability in the official website of CrunchBase, a free wiki-style directory of people, technology companies, and investors. The real name field in the User page found to be vulnerable to XSS attack. Nikhil immediately report about the vulnerability to TechCrunch and was told not to disclose this

Security News - Twitter's t.co mistakenly shut down by Melbourne IT

noreply@blogger.com (BreakTheSec) — Tue, 09 Oct 2012 09:02:04 PDT

Twitters users were unable to access links in tweets on sunday as the Twitter's url shortening service t.co mistakenly shut down by Melbourne IT. According to reports, the outage caused by simple human error at a Melbourne, Australia-based hosting firm. following a phishing complaint. “Yesterday in the process of actioning a phishing complaint, our policy team inadvertently placed the t.co

Hacking News - Another Twitter Spam "Filming a new film ,starring Katt Williams"

noreply@blogger.com (BreakTheSec) — Tue, 09 Oct 2012 08:25:37 PDT

Recently, I report in E Hacking News that the spammers are mentioning your name in the Tweets and asking for the suggestion. Today, One of our Twitter friend, @backtracesec , give a hint to hunt another Twitter spamming group. In this campaign , the cyber criminals claimed that they are going to film a new movie starring Katt williams. Katt Williams, an American comedian, rapper and

Hacking S3crets - Best Ethical hacking Book for beginners

noreply@blogger.com (BreakTheSec) — Sun, 07 Oct 2012 06:58:39 PDT

Lot of users are keep asking which is best book for learning Ethical Hacking. So i have planned to suggest a best book for you. One of my friend , Sai Satish ,founder of AndhraHackes forum, has released a Book called "Hacking s3crets" . It is one of best Ethical hacking book. The Book covers almost all interesting topics : email Hacking Mobile Hacking Website Hacking(Top 10 of OWASP)

Blackhat SEO poisoning attacks

noreply@blogger.com (BreakTheSec) — Sun, 07 Oct 2012 06:05:53 PDT

Recently , i have reported that Google Image search and Bing Image search leads to malware sites especially a blackhole exploit kit page. The reason behind this attack is SEO Poisoning. What is SEO? Search engine optimization (SEO) is a collection of techniques to improve the visibility of a website in a search engine's search results. Some of the techniques used by webmasters in What is

Miley cyrus sex Tape is real or fake? a Facebook Scam

noreply@blogger.com (BreakTheSec) — Sun, 07 Oct 2012 06:12:09 PDT

If you are searching "Miley cyrus sex tape is real or fake", I gave the answer for the question in the title itself. Yes, it is an old Facebook scam. Recently, I've post a news report about this scam in E Hacking News. I'm just going to give more details about that scam in this post. The scam starts with a facebook post titled "[hxxp://bit.**/RoqXJM] omg i lost all respect for her now". It

6 Web Security Risks of Not Monitoring Internet Activity

noreply@blogger.com (Sabari Selvan) — Wed, 26 Sep 2012 09:56:15 PDT

Internet access is one of the most important things you can provide to your users. It’s a morale booster, it helps them do their job (for some it is even a vital component of their job,) it enables them to find solutions to problems, research the competition, find new customers, and more. But Internet access comes with a host of threats and if you are not on top of your web security game,

Cracking Cpanels

noreply@blogger.com (Sabari Selvan) — Sat, 15 Sep 2012 01:37:36 PDT

The video created by Anon N3p . Download Script : 1. http://www.filefactory.com/file/230ksoz0ddjj/n/Scripts_To_Crack_Cpanel_rar If You Can't download the script then please email me at : r00t[at]team-nep.org

How to create Phishing site without Webhost using Data URI?

noreply@blogger.com (BreakTheSec) — Sat, 13 Apr 2013 07:02:15 PDT

Hello, BTS readers, it has been long time since i posted article in this blog. Today i come across interesting news update which shares new technique used in the Phishing attack. Phishing is one of the popular social engineering attack used by Cybercriminals. In this method, hackers host a fake webpage which looks similar to the original page of the website. Then, hackers lure users to visit

[Security Tips] How to Secure iOS Devices ?

noreply@blogger.com (BreakTheSec) — Tue, 14 Aug 2012 21:00:14 PDT

Kaspersky’s ThreatPost has released an interesting video that’s meant to educate the owners of iOS devices on how to properly secure them. "Considering the rapid proliferation of smartpones and tablets and the vast wealth of personal and financial data many of us store on them, it is increasingly important that we find ways of securing our mobile devices. With that in mind, we decided there

How To Install And Use Websploit Framework in Backtrack ?

noreply@blogger.com (BreakTheSec) — Tue, 07 Aug 2012 18:18:29 PDT

This video will demonstrate how to Install websploit on backtrack 5 R2 and working with websploit framework. Download the WebSploit Framework

chapcrack: A tool for cracking MS-CHAPv2 network handshakes

noreply@blogger.com (BreakTheSec) — Tue, 07 Aug 2012 10:20:54 PDT

Chapcrack is a tool for parsing and decrypting MS-CHAPv2 network handshakes. In order to use it, a packet with an MS-CHAPv2 network handshake must be obtained. The tool is used to parse relevant credentials from the handshake. In other words, Chapcrack parses the credential information out of MS-CHAPv2 handshakes, sends to Cloudcracker which in turn will return a packet that can be decrypted by

AntiDef : Anti defacement command line tool

noreply@blogger.com (BreakTheSec) — Tue, 07 Aug 2012 09:54:49 PDT

Defacement Protector v1.0 : AntiDef is developed by Nir Valtman, in order to handle with defacement attacks. This tool written in Java in a fast-and-dirty manner; However is works. How AntiDef works? AntiDef compares two directory paths - the web application and its backup foder. Then, it performs hash (MD5 - we need performance) on each file in the folders and a final hash on all hashed

[Web Vulnerability]cross site scripting part 1

noreply@blogger.com (BreakTheSec) — Wed, 01 Aug 2012 10:10:11 PDT

Javascript static analysis with IronWASP-Lavakumar, nullcon Goa 2012

noreply@blogger.com (BreakTheSec) — Sun, 29 Jul 2012 02:58:36 PDT

Description: From its humble beginnings many years ago, JavaScript has been steadily evolving and has now become a powerful and popular language, especially with HTML5. It is not uncommon to see Web Applications that contain more lines of JavaScript code in them than the number of lines of server-side code. In the HTML5 and mash-up world there are a lot of critical features being implemented