mind backtrack box center

this one will tell you the basic of iptables. in a local area network or even your computer,we must prevent a sneaker get your private data, so to keep them out.there are many ways to do that but this is the very simple one, i don’t mean we act paranoid but this day to attack a local area netwok or a computer is very easy. so many tools to break in but of course many tools to keep to prevent it too.like i said before this one is the very simple one. playing with iptables is not complicated is just playing with data package. and of course you can use iptables for preventing hacking perpose  and the you can use it for opposite perpose. yes, you can use it to manage your hacked box. sound good ,isn’t it?

i wont tell you the mean of iptables you can read here, what i will tell you is iptables command that commonly use to fowarding , droping, and jumping package. example like this one :

iptables -A INPUT -s [some IP] -j DROP

(more…)

this is actually not a hacking technique.this is a very common technique to bypass log in in linux but not all people know about this, i get this when my friends tell me about pair key and demonstrated it to me. but i think this one is very cool.with this technique we can log in to other computer without log in process anymore.

it will use a pair key.pair key is generated key from ssh that contain public key and private key.this two key act like a key and the padlock. this two key is unique. so one public key can only unlock one padlock that matching with him. you cannot make a crack to it. for more information you can read here

and how can we make it as a backdoor? and how to generated a pair key? this is the step.

(more…)

this one will tell you how to sniffing a local area network,we will catch all package that flow at that network.sound Frightening huh…but it very easy..first i’d like to explain the networks run. this is one simpel example how it works.in Local Area Network when your computer ping a other computer like “ping [IP target]” it will send it to all the computer in one subnet with it. and ask if there are the IP he asked. and when he get the replay so it will report to you like “64 byte from bla..bla..” that confirm if the IP you ask is ON or not. so what is sniffing is we catch every package at the networks.and put in our computer and we can get it. you can get FTP,HTTP etc. packages and now how we do that.? we will do it like my way. what i always use is ARPspoofing and Dsniff.

ARPspoff is a tools to tell lie at networks that we is the IP that he looking for.and what we have to act like is the gateway. we must tell all the computer at the subnet if you are the gate way so all packages in that subnet comes to your computer and Dsniff is used for catch all package and make it readable by human. you can use other tools like Ettercap,Driftnet, filesnarf,Mailsnarf etc. it depending at what do you what to get. ok this is the step.

1.Set your box to forward package,of course we not drop the package at your computer , we just make it flow to your’s so we can read it.!

(more…)

aswering my friend ask at my last post about how to using c99 shell and r57 shell. he asked if there are other script to rooting server. so i look up about it . so i found something good! another shell script for bypass linux server.made by erne,super moderator at underg0und.net that he wrote some bypass script for rooting linux.i don’t know a lot for hacking website but i’ve try to use this script[i try it locally]. for how to use it . it work like c99 and r57 shell. you must find a hole for RFI exploit at a website. you can get it at security-related forum or site like milw0rm.

(more…)

since i still playing with my new Operating System,Ubuntu Protech-one so can’t post you a the articles version. this is the video tutorial how to installing backtrack live CD to your Hardisk. but as we know backtrack 3 beta has a one click install option menu to installing the live CD to your Hardisk but it not tested yet so based on that i’d like to share how to installing it. and it a vidoe tutorial so you can watch it carefully.

but before that i’ll report my progress on my new OS. one tips from me for configurate and adding menu option on fluxbox. here it is :

(more…)

i’m sorry maybe for a while i won’t write an articles but i will still post. i still working with configuring my new OS, ubuntu Potech-one .

Protech is a specially designed Linux distribution for security technicians and programmers, although it can be used normally as your default desktop system.

just want to sharing,this distro is very cools if you don’t know. Protech is a light and complete live security distribution based on Ubuntu Linux. it working like backtrack. i don’t know the big different but what i know that ubuntu protech better on vision than backtrack 3. (i’ve use backtrack 3 beta) and maybe next time i will post how to hack using protech ubuntu. and now i will post what i get from a forum. this is how to hack mobile device via bluetooth. the original writer is Gibon,this is the step :

Download The program: here

(more…)

on this one i will review the basic usage of Nmap.Nmap is very common tools used by hacker to scan a single victim box or more. there are variative way to scan the victim box but this tools is the most well known one. it has several version like Nmapfe or Zenmap.like the Nmapfe, Zenmap is the GUI Based Network Scanner.Nmap Platform supports include Linux, Microsoft Windows,FreeBSD,OpenBSD,Solaris,IRIX,Mac OS X ,HP-UX,NetBSD,SUN OS and Amiga.

to understand the result of from the Nmap Scan. you need to know all port and the service it work with. i’ll give you some of port list and the service it works with. it only the most common scanned.all the port is works like the masage box for the service.

- 20 FTP data - 80 HTTP
- 21 FTP - 110 POP3
- 22 SSH - 137 NetBios-ns
- 23 Telnet - 138 NetBios-dmg
- 25 SMTP - 139 Netbios

(more…)

i watch a video hacking presented by TEAM NAS. this is a hacking technique with brute force penetration type. they attack the telnet service by trying to get the user password using Telnet_crack.pl, Telnet_crack.pl is a phyton code to get password by brute forcing the telnet servis. and it will need words_polish. this is the password dictionary. it is a bunchs combination words that will use for get the real password by bruce force process. and of course it will take a moment(even some times get very long time) to get it. moreover the username that we tergeted use very strong password. may be like 20 combination character and number even a spesial character. so my conclusion. if you not patient person.search a target that you now if he has a simple password.

ok let start this one :

1. first you can download Telnet_crack.pl here and words_polish here

2.find your victim and ensure that he use a telnet servis , you can you nmap and put the command like this

(more…)

you know there is one thing that make me happy having a website,that i can share to another even it very simple and tiny tutorial.i will wrote everything i know and i learn on this site,and i hope every one can use it and get a benefit by reading mine.today i’d like to give my hacking tutorial using metasploit. in this tutorial only i will show you how to use metasploit.this is very simple one. i’ll just use one exploit and get in to the victim box.

ok let start it. i put into step so you can understand well :

(more…)

Great news for linux users , kde.org has announce that the new version of KDE. KDE 4.0.1 has released ,this is the lastest version of KDE and it fix all problem for the version before. kde.org said that KDE 4.0.1 is more compatible and stable to use.and of course this one more powerfull.

it been released at February 5, 2008, this is the bugfix and maintenance release for the latest generation.KDE 4.0.1 ships with a basic desktop and many other packages like administration, network, education, utilities, multimedia, games, artwork, web development.

(more…)