Denial of Service (DoS) and distributed Denial of Service (DDoS) attacks involve an attempt to make a computer resource unavailable to its intended users. This may simply be for malicious purposes as is often the case when big commercial or famous web sites undergo a DDoS attack. However, it is also possible to exploit the system’s response to such an attack to break system firewalls, access virtual private networks, and to access other private resources. A DoS attack can also be used to affect a complete network or even a whole section of the Internet.
Read more…
Categories: Database Security, Network Security, Server Security, Tips, Tutorials, Website Security, Wireless Security Tags: Attack Software, Authentication Servers, Computer Engineers, David Irwin, Ddos Attack, Ddos Attacks, Denial Of Service, Denial Of Service Dos, Internet Requests, John Wu, Legitimate Traffic, Legitimate Users, Malicious Purposes, Network Denial, Private Resources, Service Denial, Target Machine, Tong Liu, Valid Passwords, Virtual Private Networks
Cross Site Scripting (XSS) is a code injection vulnerability found in web applications and is generally used by malicious hackers to hijack a legitimate user’s session with the website. XSS vulnerabilities are caused because of improper validation of user input by the Server and then sending this invalidated input back to the user in some exploitable form. A great resource to track the latest XSS vulnerable software, websites and latest research is XSSed.com
Read more…
Categories: Network Security, Network Tools, Tips, Tutorials Tags: Arne, Input Output, Latest Software, Legitimate User, Malicious Hackers, Output Tags, Pointer, Scripts, Software Websites, Validation, Video Series, vulnerabilities, Vulnerability, Web Applications, xss
Below is most common used wireless routers admin password list, and at the bottom i have a link to a huge db of passwords for wireless routers.
Read more…
Categories: Network Security, Network Tools, Wireless Security Tags: Admin Password, hacking, Huge List, network, Password List, passwords, Passwords List, wireless, Wireless Routers
Hackers lie. Skillful hackers lie well. And well-rounded hackers can lie both to people and to machines.
Read more…
Categories: Linux / Unix, Network Security, Network Tools, Tips, Tutorials Tags: Address Resolution Protocol, Arp Cache, Arp Poisoning, Arp Request, Arp Requests, Arp Table, Company Contact, Contact List, Hp Laserjet Printer, Ip Addresses, Local Network, Mac Address, Mac Addresses, Mayhem, Message Types, Receptionist, Reverse Arp, Roll Call, Short Term Memory, Social Engineering
Introduction
Imagine a world without tracert/traceroute. You would be sending your precious packets out into the big wide world with no idea where they go and what they might meet when they are out there. When you set up routers with complex route statements you wouldn’t really know if everything you want is travelling the path you intend it to. When that pesky machine across the internet is "hammering" away at your mail server and you’d really like to know where it is you would be "blind". Enter traceroute, the network administrator’s personal "tracker".
Traceroute was originally conceived as a hack by Van Jacobson in about 1988. He needed to find a way to delineate the path his packets were taking through a routed network to troubleshoot some problems. There were no tools available to do this and there was no clear and easy answer. With knowledge of how the network works Van created traceroute. The solution is elegant in it’s pure simplicity. It’s all in the TTL…..
NOTE: My definition of a "hack" has always been that it is the use of the knowledge regarding how a system works to obtain results that the system was not intended to provide. As such I have always been extremely impressed by the pure simplicity of traceroute as a perfect example of a true "hack" of a system. It’s a little thing of beauty.
Read more…
Categories: Linux / Unix, Network Security, Network Tools, Tips, Tutorials Tags: Act, Bandwidth, Control Message, Good Reason, hack, Imagine, Internet Control Message Protocol, Internet Protocol Ip, ip address, Mail Server, Network Administrator, Router, Simplicity, Thing Of Beauty, traceroute, Ttl, Van Jacobson
poof (To Fool)
A Spoofing attack basically means pretending to be someone you are not. There are a wide range of different spoofing attacks however we are only interested in a very simple form (HTTP Spoofing). For a detailed definition of spoofing see http://www.absoluteastronomy.com/topics/Spoofing_attack
Read more…
John the Ripper is a decrypting program for passwords. Although it has many
functions we will be looking at using it as a decryper for password files
you possess.
Read more…
Categories: Network Security, Network Tools, Password Recovery, Server Security, Tips, Tutorials Tags: decryper, hack, hacked, hacking, jhon, JTR, linux, linux recover password, lost password, network, networking, passwd, Password Recovery, permission, ping, ripper, sniffer, tutorial, windows, WORDFILE
