SQL INJECTION ATTACKS

What is SQL Injection?

SQL injection is a technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed. Web pages which accepts parameters from user, and make SQL query to the database, are targeted. For Example, A web page with username and password, fires SQL query on the database to check whether a user has entered valid name and/or password or not. With SQL Injection, it is possible for us to send crafted user name and/or password field that will change the SQL query and thus grant us something else.

What is Required?
1) Any Web Browser
2) Some Basic SQL (Structured Query Language) Queries such as 'SELECT', 'INSERT', 'UPDATE', 'DELETE', etc. along with their attributes (i.e Syntax).

What you should look for?
Try to look for pages that allow you to submit data, i.e: login page, search page, feedback, etc. Sometimes, HTML pages use POST command to send parameters to another ASP/ASPX page. Therefore, you may not see the parameters in the URL. However, you can check the source code of the HTML, and look for "FORM" tag in the HTML code. You may find something like this in some HTML codes:

Everything between the

and

tags have potential parameters that might be useful.

OR

You should look for pages like ASP, ASPX, JSP, CGI, or PHP.
Try to look especially for URL that takes parameters, like:
http://example.com/login.asp?id=10


Is it Vulnerable?
Start with a single quote trick. Input something like:
hi' or 1=1--
Into login, or password, or even in the URL. Example:
Login: hi' or 1=1--
Pass: hi' or 1=1--
http://example.com/login.asp?id=hi' or 1=1--

You can do this with a hidden field, just view the source HTML from the site, save it in your hard disk, modify the URL and hidden field accordingly.
Example:

If luck is on your side, you will get login without any login name or password.


But why ' or 1=1-- ?
Take an asp page that will link you to another page with the following URL:
http://example.com/search.asp?category=sports
In this URL 'category' is the variable name and 'sports' is it's value.
Here this request fires following query on the database in background.
SELECT * FROM search WHERE category='sports'
Where 'search' is the name of table which is already present in some database.
So, this query returns all the possible entries from table 'search' which comes under the category 'sports'.

Now, assume that we change the URL into something like this:
http://example.com/search.asp?category=sports' or 1=1--
Now, our variable 'category' equals to "sports' or 1=1-- ", which fires SQL query on database something like:
SELECT * FROM search WHERE category='sports' or 1=1--'
The query should now select everything from the 'search' table regardless if category is equal to 'sports' or not.
A double dash "--" tell MS SQL server to ignore the rest of the query, which will get rid of the last hanging single quote (').
Sometimes, it may be possible to replace double dash with single hash "#".

However, if it is not an SQL server, or you simply cannot ignore the rest of the query, you also may try
' or 'a'='a
It should return the same result.
Depending on the actual SQL query, you may have to try some of these possibilities:

' or 1=1--
" or 1=1--
or 1=1--
' or 'a'='a
" or "a"="a
') or ('a'='a
'or''='

Countermeasures ?
Filter out character like ' " - / \ ; NULL, etc. in all strings from:
* Input from users
* Parameters from URL
* Values from cookie

Read More

HACKING SYSTEMS(ADMIN ACCOUNT HACKING)

Hi friends,I am Back With another awesome Hacking Class...
Today We will Start Learning How To Hack The Systems Practically....So Read On...

TOPICS TO BE COVERED IN HACKING SYSTEMS CLASSES: 
Hey Its a Brief Look That How We Will Proceed For hacking Systems!

~ Password cracking
~ Password attacks
~ Identifying various password cracking tools
~ Formulating countermeasures for password cracking
~ Getting privileges
~ Executing applications
~ Keyloggers and Spywares
~ Spywares and keyloggers countermeasures
~ Hiding files
~ Understanding rootkits
~ The use of Steganography
~ Covering tracks

SO GUYS AS THE PATTERN SAYS TODAY WE WILL DISCUSS: CRACKING PASSWORD

CRACKING PASSWORDS
Hey Friends As we all Know Cracking Passwords is not an easy task.. Also the Chances of getting Exact Passwords are 40 out of 100....But I think this Tutorial will really Help you...

FIRST OF ALL LET'S DISCUSS DIFFERENT PASSWORD TYPES: 

~ Passwords that contain only letters 
Ex: HIJKLMNO 
~ Passwords that contain only numbers 
Ex: 758904 
~ Passwords that contain only special characters 
Ex: $@$!() 
~ Passwords that contain letters and numbers 
Ex: ax1500g 
~ Passwords that contain only letters and special characters 
Ex: m@roon$ 
~ Passwords that contain only special characters and numbers 
Ex: @$47$ 
~ Passwords that contain letters, special characters, and numbers 
Ex: E1n@8$ 

Why We Discussed This is Pity Simple .. Its the Order of Difficulty for Cracking Passwords.. 

DIFFERENT WAYS OF CRACKING THE PASSWORDS:
1. Using Keyloggers 
2. Social Engineering i.e Guessing
3. OFFLINE attacks like Brute Force, Dictionary attack,Hybrid Attack
4. Phising

Now Thats All Are Further Things First of All People i.e must know what is admin password of the computer.

SO Today We will Focus on Different Ways Of Hacking Admin Password of any system:

HACKING ADMIN PASSWORDS 

Here we will discuss 3 methods to Hack the Password of Admin:
1. Simply accessing Unprotected Administrator Account.
2. Hacking Through Net User Command.
3. Hacking Using the ERD(Emergency Rescue Disk)  Commander.

Now The MeThod 1:

Accessing Unprotected Administrator Account

Steps Involved:
Step1: Start the Computer i.e Turn on the Computer.
Step2: Now wait till the username window appears as shown below...

Step 3: As This Window Appears Press Ctrl+Alt +Delete (2 times).. Now the Windows like shown below appears..

 Step4: Now as shown above Enter the Administrator on the Username box and press enter... Now you will be login in the admin account can easily rest the password...
For Resetting password you can follow two Procedures..
Procedure 1: Goto Start-->Control Panel-->User Accounts.. Now select the account whose password u want to reset.
Procedure 2 : Follow the Next method i.e hacking password through Net User Command.

Note: Hack 1 will only work if Administrator(default) is unsecured i.e User as some other username like above shown figure...

METHOD 2:

HACKING ADMIN ACCOUNT USING NET USER COMMAND
Note: This will work only when user has access of user account or some how he has been allowed  or working in admin account.

Steps Involved:
Step1: Goto the Start and click on Run and Type cmd in it... 


Step 2: Now type "net user" in the command prompt to obtain the All accounts on that computer.. as shown in figure..

Step 3: Now Select the account Which u want to Reset the Password...
Suppose that we want to Reset the Password  of Administrator... Now Type "net user Administrator *  " Without quotes... and press Enter. As shown in the Below Figure..

Step 4: Now after that press Enter Twice to rest the password. Now Next time u open that Account .. It will not require any Password..

METHOD 3: (100% working Method on Any System)

Hacking Admin Account Using ERD Commander

First of all Download the ERD commander... Extract the Files and Make a CD...
DOWNLOAD

1. Insert the ERD Commander Boot CD into the drive and restart the system

2. Boot the computer using ERD Commander Boot CD. You may have to set the boot order in the BIOS first.

3. Select your Windows XP installation from the list

4. From the ERD Commander menu (Start menu), click System Tools and click Locksmith

 

5. Click Next

6. Select the administrator account from the list for which you want to reset the password.

7. Type the new password in both the boxes, click Next and click Finish

8 . Restart The System and take the CD out of the Drive..And Enjoy Admin account..

Read More

HACK OR CHANGE XP START BUTTON NAME

Resource HackerTM is a freeware utility to view, modify, rename, add, delete and extract resources in 32bit Windows executables and resource files (*.res). It incorporates an internal resource script compiler and decompiler and works on Win95, Win98, WinME, WinNT, Win2000 and WinXP operating systems.

ll its just 541Kb in the size..

CLICK HERE TO DOWNLOAD 

First Step:- The first step is to make a backup copy of the file explorer.exe located at C:\Windows\explorer. Place it in a folder somewhere on your hard drive where it will be safe. Start Resource Hacker and open explorer.exe located at C:\Windows\explorer.exe
The category we are going to be using is String Table In Resource Hacker. Expand it by clicking the plus sign then navigate down to and expand string 37 followed by highlighting 1033. If you are using the Classic Layout rather than the XP Layout, use number 38. The right hand pane will display the stringtable as shown in Fig. 02. We’re going to modify item 578, currently showing the word “start” just as it displays on the current Start button.

There is no magic here. Just double click on the word “start” so that it’s highlighted, making sure the quotation marks are not part of the highlight. They need to remain in place, surrounding the new text that you’ll type. Go ahead and type your new entry

Second Step:- Modify the Registry Now that the modified explorer.exe has been created it’s necessary to modify the registry so the file will be recognized when the user logs on to the system. If you don’t know how to access the registry I’m not sure this article is for you, but just in case it’s a temporary memory lapse, go to Start (soon to be something else) Run and type regedit in the Open: field. Navigate to:
HKEY_LOCAL_MACHINE\ SOFTWARE\ Microsoft\ Windows NT\ CurrentVersion\ Winlogon

the Right pane (Fig. 05), double click the Shell entry to open the Edit String dialog box as shown in Fig. 06. In Value data: line, enter the name that was used to save the modified explorer.exe file. Click OK.

Close Registry Editor and either log off the system and log back in, or reboot the entire system if that’s your preference. If all went as planned you should see your new Start button with the revised text.

Read More

HACK ALL WINDOWS ADMINISTRATOR PASSWORD

This hack will show you how to reset Windows administrator password (for Win 2000, XP, Vista and Win 7) at times when you forget it or when you want to gain access to a computer for which you do not know the password.

Most of us have experienced a situation where in we need to gain access to a computer which is password protected or at times we may forget the administrator password without which it becomes impossible to login to the computer. So here is an excellent hack using which you can reset the password or make the password empty (remove the password) so that you can gain administrator access to the computer. You can do this with a small tool called  Offline NT Password & Registry Editor. This utility works offline, that means you need to shut down your computer and boot off your using a floppy disk, CD or USB device (such as pen drive). The tool has the following features.

• You do not need to know the old password to set a new one
• Will detect and offer to unlock locked or disabled out user accounts!
• There is also a registry editor and other registry utilities that works under linux/unix, and can be used for other things than password editing.

 

How it works?

 

Most Windows operating systems stores the login passwords and other encrypted passwords in a file called sam (Security Accounts Manager). This file can be usually found in \windows\system32\config. This file is a part of Windows registry and remains inaccessible as long as the OS is active. Hence it is necessary that you need to boot off your computer and access this sam file via boot. This tool intelligently gains access to this file and will reset/remove the password associated with administrator or any other account.

The download link for both CD and floppy drives along with the complete instructions is given below

Offline NT Password & Reg Editor Download

It is recommended that you download the CD version of the tool since floppy drive is outdated and doesn’t exist in today’s computer. Once you download you’ll get a bootable image which you need to burn it onto your CD. Now boot your computer from this CD and follow the screen instructions to reset the password.

 

Another simple way to reset non-administrator account passwords

 

Here is another simple way through which you can reset the password of any non-administrator accounts. The only requirement for this is that you need to have administrator privileges. Here is a step-by-step instruction to accomplish this task.

1. Open the command prompt (Start->Run->type cmd->Enter)
2. Now type net user and hit Enter
3. Now the system will show you a list of user accounts on the computer. Say for example you need to reset the password of the account by name John, then do as follows
4. Type net user John * and hit Enter. Now the system will ask you to enter the new password for the account. That’s it. Now you’ve successfully reset the password for John without knowing his old password.
So in this way you can reset the password of any Windows account at times when you forget it so that you need not re-install your OS for any reason. I hope this helps.

Read More

FREE ANYTIME UPGRADE FOR WINDOWS 7

Today we will tell about new trick to upgrading your genuine windows 7  any version to Home Premium or Professional or the most favourite Ultimate Version. The things you have to need is

•A genuine Windows 7 Any version (May be you buy or it comes Preinstalled )

•The magical key provided my me                                                                                                                                                                        

Method :

1.First Connect Your PC to Internet.

2.Then go to your control panel  and click on Windows Anytime Upgrade

3.Here you will get a window asking your anytime upgrade keys

4.Just copy paste this keys according to your version and click next 

5.Then it will verify saying its ok , click on next button

6.A new window will open saying it may take few minute

7.After few minute it will say your keys not working or something

.Just close the windows and restart your PC and see the magic.

 

 

Widnows 7 Home Premium:1>6RBBT-F8VPQ-QCVPQ-KHRB8-RMV82

Windows 7 Professional: 1>VTDC3-WM7HP-XMPMX-K4YQ2-WYGJ8         

                                              2> 6RQ9V-6GCG4-8WV2H-966GF-DQ4DW         

                                               3>32KD2-K9CTF-M3DJT-4J3WC-733WD

Windows 7 Ultimate:    1>FJGCP-4DFJD-GJY49-VJBQ7-HYRR2

                                           2>342DG-6YJR8-X92GV-V7DCV-P4K27

Read More

WINDOWS LOADER:- ACTIVATE WINDOW 7

Windows Loader is an application used to bypass WAT (Windows Activation Technologies). The application itself injects a SLIC (System Licensed Internal Code) into your system before Windows boots , because of which your windows behaves as a genuine copy.

Supported operating systems :

• Windows 7 Ultimate
• Windows 7 Ultimate E
• Windows 7 Professional
• Windows 7 Professional E
• Windows 7 Home Premium
• Windows 7 Home Premium E
• Windows 7 Home Basic
• Windows 7 Starter
• Windows 7 Starter E
• Windows Vista Ultimate
• Windows Vista Business
• Windows Vista Business N
• Windows Vista Home Premium
• Windows Vista Home Basic
• Windows Vista Home Basic N
• Windows Vista Starter
• Windows Server 2008 Enterprise
• Windows Server 2008 Enterprise (Hyper-V)
• Windows Server 2008 Foundation
• Windows Server 2008 Standard
• Windows Small Business Server 2008
• Windows Storage Server 2008 Standard
• Windows Server 2008 R2 Enterprise
• Windows Server 2008 R2 Foundation
• Windows Server 2008 R2 Standard
• Windows Small Business Server 2011 Standard

Note : Turn Off your antivirus before downloading and turn it on after installing the loader. 
Compatible with both 32 and 64 bit systems.

Download Windows Loader(Activator) 

Read More

DOWNLOAD WINDOWS 8 RELEASE PREVIEW

Download Windows 8 Release Preview In ISO Format, First Devoloper Preview then Consumer Preview  now Microsoft Launched their Release Preview of Windows 8.Windows 8 Release Preview is Prerelease version of Windows 8 before coming in market.

System Requirements for Windows 8 Release Preview

• Processor: 1 gigahertz (GHz) or faster
• RAM: 1 gigabyte (GB) (32-bit) or 2 GB (64-bit)
• Hard disk space: 16 GB (32-bit) or 20 GB (64-bit)
• Graphics card: Microsoft DirectX 9 graphics device with WDDM driver

Additional requirements to use certain features:

• To use touch, you need a tablet or a monitor that supports multitouch.
• To access the Windows Store and to download and run apps, you need an active Internet connection and a screen resolution of at least 1024 x 768.
• To snap apps, you need a screen resolution of at least 1366 x 768.
• Internet access (ISP fees might apply)
   
  
  Download Windows 8 Release Previews In ISO or Disk Image Format

  
  

  64-bit (x64)     

  Sha 1 hash — 0xD76AD96773615E8C504F63564AF749469CFCCD57

  Download (3.3 GB)  

  
  

  
  

  32-bit (x86)    

  Sha 1 hash — 0x8BED436F0959E7120A44BF7C29FF0AA962BDEFC9

  Download (2.5 GB)

  
  

  Product Key:   TK8TP-9JN6P-7X7WW-RFFTV-B7QPF 

  
  

  Hope you will enjoy this Windows 8 Release Preview 
  
  

Read More