Thursday, March 26, 2009

Local Dns Posioning Trick (Very Easy)

The last posts on dns poisoning required a little bit of brain and quite a lot effort.
Here is a very easy but limited trick which can be used to trick ur friends and u can play naughty with them.

First of all go through my previous post.

Now we will make slight change , using this we will actually do for example replace ip of www.google.com with ip of www.yahoomail.com and keep domain name of www.google.com.
now when u will open www.google.com in ur browser actually www.yahoomail.com will open.So u can play trick on ur freinds computer.

Use any site which u like for ur trick and i m sure ur freind will get annoyed.

to know ip of any site just go in command prompt type tracert www.site.com press enter and u will get ip of that site...

So enjoy And do reply to motivate me.............

Posted by nikychetan at 12:41 PM 1 comments  

Labels: , ,

DNS Spoofing with Ettercap

Watch video by going to given link below

http://www.irongeek.com/i.php?page=videos/dns-spoofing-with-ettercap-pharming

Posted by nikychetan at 12:40 PM 0 comments  

Labels: , ,

DNS Spoofing techniques


- Overview : What is DNS Spoofing ?

DNS Spoofing is the art of making a DNS entry to point to an another IP than it would
be supposed to point to. To understand better, let's see an example.
You're on your web browser and wish to see the news on www.cnn.com, without to think of
it, you just enter this URL in your address bar and press enter.

Now, what's happening behind the scenes ? Well... basically, your browser is going to
send a request to a DNS Server to get the matching IP address for www.cnn.com, then
the DNS server tells your browser the IP address of CNN, so your browser to connect
to CNN's IP address and display the content of the main page.

Hold on a minute... You get a message saying that CNN's web site has closed because
they don't have anymore money to pay for their web site. You're so amazed, you call
and tell that to your best friend on the phone, of course he's laughing at you, but
to be sure, he goes to CNN web site to check by himself.

You are surprised when he tells you he can see the news of the day as usual and you
start to wonder what's going on. Are you sure you are talking to the good IP address ?
Let's check. You ask your friend to fire up his favorite DNS resolving tool (or
simply ping) and to give you the IP address he's getting for www.cnn.com.
Once you got it, you put it in your browser URL bar : http://212.153.32.65
You feel ridiculous and frustrated when you see CNN's web page with its daily news.


Well you've just been the witness of a DNS hijacking scenario. You're wondering what
happened, did the DNS Server told you the wrong IP address ? Maybe... At least this
is the most obvious answer coming to our mind.

In fact there are two techniques for accomplishing this DNS hijacking. Let's see the
first one, the "DNS ID Spoofing" technique.

- A) DNS Cache Poisoning

As you can imagine, a DNS server can't store information about all existing names/IP on
the net in its own memory space.
That's why DNS server have a cache, it enables them to keep a DNS record for a while.

In fact, A DNS Server has the records only for the machines of the domain it has the
authority, if it needs to know about machines out of his domain, it has to send a request
to the DNS Server which handles these machines and since it doesn't want to ask all the
time about records, it can store in its cache the replies returned by other DNS servers.

Now let's see how someone could poison the cache of our DNS Server.

An attacker his running is own domain (attacker.net) with his own hacked DNS Server
(ns.attacker.net)
Note that I said hacked DNS Server because the attacker customized the records in
his own DNS server, for instance one record could be www.cnn.com=81.81.81.81


1) The attacker sends a request to your DNS Server asking it to resolve www.attacker.net

2) Your DNS Server is not aware of this machine IP address, it doesn't belongs to his
domain, so it needs to asks to the responsible name server.

3) The hacked DNS Server is replying to your DNS server, and at the same time, giving
all his records (including his record concerning www.cnn.com)
Note : this process is called a zone transfer.

4) The DNS server is not "poisoned".
The attacker got his IP, but who cares, his goal was not to get the IP address of his
web server but to force a zone transfer and make your DNS server poisoned as long as
the cache will not be cleared or updated.

5) Now if you ask your DNS server, about www.cnn.com IP address it will give you
172.50.50.50, where the attacker run his own web server. Or even simple, the attacker
could just run a bouncer forwarding all packets to the real web site and vice versa,
so you would see the real web site, but all your traffic would be passing through the
attacker's web site.

- B) DNS ID Spoofing

We saw that when a machine X wants to communicate with a machine Y, the former always
needs the latter IP address. However in most of cases, X only has the name of Y, in
that case, the DNS protocol is used to resolve the name of Y into its IP address.

Therefore, a DNS request is sent to a DNS Server declared at X, asking for the IP
address of the machine Y. Meanwhile, the machine X assigned a pseudo random
identification number to its request which should be present in the answer from the
DNS server.
Then when the answer from the DNS server will be received by X, it will just have
to compare both numbers if they're the same, in this case, the answer is taken as valid,
otherwise it will be simply ignored by X.

Does this concept is safe ? Not completely. Anyone could lead an attack getting this
ID number. If you're for example on LAN, someone who runs a sniffer could intercept
DNS requests on the fly, see the request ID number and send you a fake reply with the
correct ID number... but with the IP address of his choice.
Then, without to realize it, the machine X will be talking to the IP of attacker's
choice thinking it's Y.

By the way, the DNS protocol relies on UDP for requests (TCP is used only for zone
transferts), which means that it is easy to send a packet coming from a fake IP since
there are no SYN/ACK numbers (Unlike TCP, UDP doesn't provide a minimum of protection
against IP spoofing).


Nevertheless, there are some limitations to accomplish this attack.

In my example above, the attacker runs a sniffer, intercept the ID number and replies
to his victim with the same ID number and with a reply of his choice.

In the other hand, even if the attacker intercepted your request, it will be
transmitted to the DNS Server anyway which will also reply to the request
(unless the attacker is blocking the request at the gateway or carry out
ARP cache poisoning which would make the attack possible on a switched
network by the way).

That means that the attacker has to reply BEFORE the real DNS server, which means
that to succeed this attack, the attacker MUST be on the same LAN so to have a very
quick ping to your machine, and also to be able to capture your packets.


Practical example (to be done a network for testing purposes ONLY)

To see yourself how to hijack a connection from a machine on your local area network,
we can do the followings :

First step : Poison the ARP cache of the victim's machine (tools and explanations
for realizing this task can be found at http://www.arp-sk.org)

Second step : Now, outgoing packets of the target will be redirected to your host,
but you have to forward the traffic to the real gateway, this can be achieved with
a tool like Winroute Pro.

Third step : We then use WinDNSSpoof, developed by valgasu (www.securiteinfo.org) which is
a tool that greatly help to carry out DNS ID Spoofing. (Before to use this tool be sure you
have the Winpcap library installed on your machine, see http://winpcap.polito.it).
We run it in the cmd like :

wds -n www.cnn.com -i 123.123.123.123 -g 00-C0-26-DD-59-CF -v

This will make www.cnn.com to point to 123.123.123.123 on the victim's machine.
00-C0-26-DD-59-C being the MAC Address of the gateway or DNS server.

WARNING : Please keep in mind that the use of these tools on a network without explicit
authorization of the administrator is strictly forbidden.

NOTE:The above Article is a result of cumulative research by me through various sources on net , the article is not created by me i have only put in a logical sequence for better understanding.

Posted by nikychetan at 12:16 PM 0 comments  

Labels: , ,

Wednesday, March 25, 2009

Multiple Logins of Gmail and Orkut through firefox

u all might have faced problems specially with google accounts that if u have a different gmail and orkut account then u cannot login both at same time in a same browser without logging out other account. Also u and ur freind cannot access their orkut at same time in same browser.

To overcome this problem try this trick

Follow the following steps and you will be able to login in gmail and orkut with multiple accounts. Through this you will be able to make profiles in your firefox.
Step 1:Open system properties(by right clicking my computer), choose tab advanced, click to environment variables button. in system variables section, click new. type this information to each textbox.

Step 2:variable name: moz_no_remote (should be all small letter).variable value: 1

Step 3:open firefox icon's properties(from desktop and quick launch). add extension -p to command line(like "c:\program files\mozilla firefox\firefox.exe" -p). press ok.

When you will open firefox it will prompt for profile selection create a profile,open firefox login to orkut open once more use another profile login.

Posted by nikychetan at 11:39 AM 0 comments  

Labels:

How To Block Websites Without Using Any Software

Guys sometimes we want to restrict access to some particular website from our PC but we dont know how to do it without using some software for it.
Here i m sharing with you a method to do it without using any software...

1]Browse C:\WINDOWS\system32\drivers\etc
2] Find the file named "HOSTS"
3] Open it in notepad
4] Under "127.0.0.1 localhost" Add 127.0.0.2 www.sitenameyouwantblocked.com , and that site will no longer be accessable.
5] Done!

Posted by nikychetan at 11:26 AM 0 comments  

Labels:

Zoom The Image inside a Website

This a cool Mouse Trick TRy it.............

f you have a mouse with a scroll wheel on it, you can do some cool tricks.......

1.Shift & Spin

Ever wonder what happens when you hold down the Shift key on a web page and spin the wheel on your wheel mouse? Explorer goes either back or forward, depending on which direction you spin.

Give it a try. Open up Internet Explorer(or any other browser) and follow a few links. Then, hold down your SHIFT key and spin that wheel.

2.CTRL & Spin

If you are in a web browser (Explorer or Netscape or Firefox) , hold down your Ctrl key and spin the wheel. It makes the text larger or smaller depending on which way you spin. For Opera users, it magnifies both the images and the text.

Posted by nikychetan at 11:15 AM 0 comments  

Labels: ,

Tuesday, March 24, 2009

How to Enable Right Click on Sites that Disable it!!!

There are lots of web sites that have disabled the right click function
of the mouse button... which it's really, really annoying!!

This is done so that you don't steal (via right-click->save picture) their photos
or images or any other goodies.

But It's easy to change, assuming your using IE 6 or higher:

  1. Click "Tools"->"Internet Options"
  2. Click the "Security" tab
  3. Click "Custom Level"
  4. Scroll down to the "Scripting" section
  5. Set "Active Scripting" to "disable"
  6. Click "Ok" a couple of times.

You'll probably want to turn this back to "enable" when your done,
'cause generally the java script enhances a website.

ALTERNATIVELY:

Before you change settings try holding down the Ctrl key and right clicking.
This also works in a lot of cases..

or in firefox..
tools->options->content..
turn off java and javascript, then reload the site..

Posted by nikychetan at 11:41 AM 0 comments  

Labels: ,

Wednesday, March 4, 2009

Turn Your College Computer Lab into Super Download Station......

Friends downloading movies , games etc has always been a cumbersome , frustrating and difficult job . Even if u have a free internet connection such as lan in hostel u don't want to keep ur comp or laps to be on for whole night. Instead i have a better trick for u people . U must have observed that ur college labs contains many comps which r slow and boring .... but that doesnt mean that internet connection in labs is also slow as comps infact it is opposite . Thus we have large no of slow comps with unutilized hi power internet connection . Now with this trick u can make these comps into powererfull download stations which use unutilized bandwith to download movies and other things.

Now for any easy and sucessfull large download u shouldh have have a download manager but u couldn't install one in ur comp lab as u dont admin rights plus u have also chance of being caught as lab admin will come to know about installed sw if ur able to install one .... The solution of above problem is to use a portable download manager which doesn't require intallation and also remains hidden while downloading so that u dont get caught and also u can go away freely after starting download and come in evening or tommorow to get the downloaded movies in pendrive...

To get such download manager (clickhere)

either exract in pendrive in ur home computer and then place in lab comp OR directly download in lab comp and then extarct in anywhere in lab computer.

note put the extracted folder somewhere in c drive in inside system32 folder ony any other folder so that no body could easily see it and c: drive ought have a lot of free space in lab comps..

now u need download links for movies and other things for this use search engine http://gappon.com/ here u can get rapidshare , mediafire any many other links...

I suggest u for mediafire as u can download unlimited , without wating any seconds , resume facility is there ,and no wating after one part download ..... it is the best free service available.

to hide wacket download manager go to file- prefrences-display and uncheck "show in system tray" only check " show in taskbar " hide all other things also. Also go to file- prefrences-integeration and check only "use hot key" option .

now ur ready

put the download links in browser and press enter u even get a option to download file just right click and copy the link location and put them in wackget download manger after u have put all the parts of movie etc then just press "windows" button and "w" button as they r hot keys the download manger will get hidden AND now ur job is done go away and back after few hours or when u have u get all the files downloade for u without even anybody knowing about it......

NOTE- Donot integrate the download manager with iexp otherwise after u r gone anybody else's download will also be automatically get downloaded with ur download manager so u could get caught......

U have ur movie just put all the parts in pendrive use winrar u extact them and join to form a full mmivie etc and just enjoy..............

Do reply commenting how did u like the post.......

Posted by nikychetan at 12:14 PM 0 comments  

Labels:

Thursday, February 19, 2009

How to use a pendrive to unblock all sites in ur computer lab without any installation in just few seconds and carry your personal browser with u....

Hello freinds .......
Since i was in ipec also now i m at amity the major problem faced by students was the blocked orkut and other sites though the people in hostel use yourfreedom to surf anonmyously but what to do when u have to unblock the sites in a computer in college lab ...... U can't install your freedom there because usually u don't have administrative privileges on the lab computer and even if u have rights , there are greater chance of being caught or installation simply takes much more time........ & Also u use the iexp browser of lab computer so u can leave history of surfing which can be also caught.....
There is a very simple and much easier smart hack to tackle above problems...
do these things....
1) Download portable tor from here ( click here)
2) Extract and place portable tor in your pendrive.
3)Download portable firefox from here (click here)
4)Extract and place portable firefox in your pendrive.
5)now run portable firefox from your pendrive.
6)Put this url in the portable firefox and press enter.
https://addons.mozilla.org/en-US/firefox/addon/2275
this will install tor addon in your firefox...
7) now ur pendrive is ready to hack any system and surf anonmously.
8)Just put this pendrive in the system in which u want to surf net..and do following step by step,...
a) First run portable tor.....
b) then run portable firefox......
c) in firefox on bottom right corner side u will see written in red "Tor Disabled" just click once on it and it will be enabled now showing"Tor Enabled".
9) YUUP dudes u can now surf anysite which has been blocked previously and also on your personall firefox browser which you can carry with ur self thus no history is left on hacked computer.........
10) To stop surfing just close down firefox and tor and just take out pendrive and go away......nobody will ever come to know what u have done becuse u haven't installed anything nor u have left any history plus using firefox is more enjoyable then slow iexp in our comp labs.......

so freinds try this trick as this is 100% working and very easy and please also leave some some comments how do you liked it........

Posted by nikychetan at 1:44 AM 1 comments  

Labels:

Friday, February 13, 2009

Multiple logins in yahoo

1) Go to Start
2) Navigate to HKEY_CURRENT_USER-->Software-->Yahoo-->Pager-->Test
3)ON the Right side if the page , Right click and choose new Dword Value.
4) Rename it as " Plural ".
5)Double click and assign a decimal value of 1.
6) Now close registry and restar yahoo messenger and try Multiple Login

Posted by ABHINAV SHARMA at 12:32 AM 0 comments  

Labels:

Tuesday, February 10, 2009

Increase Your BandWidth by 20%.....

Windows uses 20% of your bandwidth! Get it back

A nice little tweak for XP. M*crosoft reserve 20% of your available bandwidth for their own purposes (suspect for updates and interrogating your machine etc..)

Here's how to get it back:

Click Start-->Run-->type "gpedit.msc" without the "

This opens the group policy editor. Then go to:

Local Computer Policy-->Computer Configuration-->Administrative Templates-->Network-->QOS Packet Scheduler-->Limit Reservable Bandwidth

Double click on Limit Reservable bandwidth. It will say it is not configured, but the truth is under the 'Explain' tab :

"By default, the Packet Scheduler limits the system to 20 percent of the bandwidth of a connection, but you can use this setting to override the default."

So the trick is to ENABLE reservable bandwidth, then set it to ZERO. This will allow the system to reserve nothing, rather than the default 20%.
works on XP Pro, and 2000
other OS not tested.

Posted by hacker at 11:12 AM 0 comments  

Labels:

Subscribe to: Posts (Atom)
 

blogger templates 3 columns | Make Money Online