CISSP Fix

It takes lots of patience and strength to use this swiss army knife. I have to test everything, put everything on acid test. Then I thought why others suffer the same. This post will help people who want to see the true picture of netcat.

Netcat is a computer networking service for reading from and writing network connections using TCP or UDP. Netcat is designed to be a dependable “back-end” device that can be used candidly or easily driven by other programs and scripts. At the same time, it is a feature-rich network debugging and investigation tool since it can produce almost any kind of correlation one would need and has a number of built-in capabilities.

Hackers did it again. After jail breaking now they are running Android from Google on Apple’s iPhone.

To add to the iDroid experience, the developers have also brought in the menu tab, meaning you can drag it across the screen to access the iPhone menu.

And to take things even further, the dial pad has been re-jigged to use the Hero’s larger buttons, so fat-fingered iPhone users can now rejoice.

Admittedly you have to have a jailbroken iPhone to use it, but for everyone secretly wishing their Apple device has the superior functionality of the Android interface, this theme could be the one for you.”

These days I am experimenting a lot and I am enjoying a lot with the new path of evolution. For the starter I tried Movie review and it is going fine, as more movie reviews are in pipeline.

I wanted to open a secret with my readers (or I say my Friends), so as to start new initiative in this blogging field. I am currently working on a Study Guide based on Hacking tools and Penetration testing. I thought i can help everyone out there with the knowledge and resources I have.

Metasploit Framework is a tool for developing and executing exploit code against a remote target machine. Metasploit can be used to test the vulnerability of computer systems in order to protect them, and it can be used to break into remote systems. Like many information security tools, Metasploit can be used for both legitimate and unauthorized activities. The basic steps for exploiting a system using the Framework include -

1. Choosing and configuring an exploit (code that enters a target system by taking advantage of one of its bugs; about 300 different exploits for Windows, Unix/Linux and Mac OS X systems are included).

Snort is an open source network intrusion prevention and detection system that operates as a network sniffer. It logs activities of the network that is matched with the predefined signatures. Signatures can be designed for a wide range of traffic, including Internet Protocol (IP), Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Internet Control Message Protocol (ICMP).

The three main modes in which Snort can be configured are as follows:

• Sniffer mode: It reads the packets of the network and displays them in a continuous stream on the console.
• Packet logger mode: It logs the packets to the disk.
• Network intrusion detection mode: It is the most complex and configurable configuration, allowing Snort to analyze network traffic for matches against a user-defined rule set.

I find netcat the best tool for banner grabbing. If you have messed around with method than you must be aware that you can read and write data across a network very easily and you can also connect to servers with a normal tcp stream and send strings for your own needs. we’re interested in knowing what’s running behind port 80 and 21.

We can use Netcat to grab port banners in the following way:

So we know it’s probably a Windows 2000 machine as it’s running IIS 5.0 and Microsoft FTP Service.

Hackers usually use social engineering to gain most of their knowledge. Social Engineering is the act of getting someone to tell you about sensitive information through trust. This unadulterated trust becomes a weakness for most companies.

Brute Force, Exploit and dictionary attacks are usually started through the use of software on the hacker’s computer. To avoid detection, the hacker’s may use proxies or zombie machines so that their location cannot be determined. This is just a small list of the different attacks hackers can use.

Wireshark is an open source protocol analyzer that can capture traffic in real time. Wireshark is a free packet sniffer computer application. It is used for network troubleshooting, analysis, software and communications protocol development, and education. Wireshark is very similar to tcpdump, but it has a graphical front-end, and many more information sorting and filtering options. It allows the user to see all traffic being passed over the network (usually an Ethernet network but support is being added for others) by putting the network interface into promiscuous mode.

Footprinting in computer is actually the process of collecting data with regard to a specific network environment, usually for the purpose of finding ways to intrude into the environment. Footprinting can reveal system vulnerabilities and improve the ease with which they can be exploited. Footprinting begins by determining the location and objective of an intrusion. Once this is known, specific information about the organization is gathered using non-intrusive methods. For example, the organization’s own Web page may provide a personnel directory or employee bios, which may prove useful if the hacker needs to use social engineering to reach the objective. Conducting a whois query on the Web provides the domain names and associated networks related to a specific organization. Other information obtained may include learning the Internet technologies being used; the operating system and hardware being used; IP addresses; e-mail addresses and phone numbers; and policies and procedures.

E-mail spam new name of irritation and congestion in IT centaury. It is also known as junk e-mail, which kind of spam that includes nearly identical messages commercial in nature and is sent to various recipients by e-mail. Spam is commonly as unsolicited bulk e-mail (UBE). Description of spam usually includes the aspects that email is unsolicited and sent in bulk “UCE” refers specifically to unsolicited commercial e-mail. E-mail spam has exponential growth in last two decades to several billion messages a day. Spam has frustrated, confused, and annoyed e-mail users. The total quantity of spam has leveled off slightly in recent years, and is no longer growing exponentially. Receiving spam is a common complaint of many Internet users. In fact, spam email has become a troublesome problem as individuals spreading spam email find easier ways to invade users’ email accounts, leading to the necessity of such tools as spam filters and spam blocker features. Spam is a term that refers to the unsolicited e-mails sent to a large number of e-mail users. The number of such e-mails is increasing day by day, as most companies now prefer to use e-mails for promoting their products. Because of these unsolicited e-mails, legitimate e-mails take a much longer time to deliver to their destination. The attachments sent through spam may also contain viruses. However, spam can be stopped by implementing spam filters on servers and e-mail clients.