MALWARE & DRIVES MALWARE GUIDES BY UNDERCODE

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁


🦑HACK WIFI VIA LINUX GOOD 2020 SCRIPT :

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :


1️⃣sudo apt-get update && apt-get install git

2️⃣sudo git clone https://github.com/ankit0183/Wifi-Hacking

3️⃣cd Wifi-Hacking/

4️⃣sudo python3 Wifi-Hacking.py

🦑FEATURES :

1)Start monitor mode

2)Stop monitor mode

3)Scan Networks

4)Getting Handshake

5)Create wordlist

6)Install Wireless tools

7)WPS Networks attacks

8)Scan for WPS Networks

9)Crack Handshake with rockyou.txt

10)Crack Handshake with wordlist

11)Crack Handshake without wordlist

✅git sources 2020
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 GUYS JOIN OUR FACEBOOK GROUPS :

- fb.com/groups/UndercodeTesting (private- no adds )

- fb.com/groups/UndercodeCommunity ( ADDS ALLOWED- YOUTUBE- GOOD LINK- - SELLING NOT ALLOWED E N J O Y )

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑How to get NordVPN for free- from NORDVPN.COM OFFICIAL
There are two ways to access some form of NordVPN for free or at a too-good-to-be-true discount, and both are a bad deal:

1️⃣#NordVPN crack
If you’re here, chances are you’ve been looking for a NordVPN crack. Well, before you go ahead and download it, check out what our security analysts found inside some of these “cracked” copies of NordVPN:

1) Root access viruses/malware: Reputable websites don’t host stolen, cracked copies of NordVPN or other software if they can help it. Instead, you’ll be downloading a file from some anonymous mirror or server, or from a link someone gave you on a forum. This is the perfect way to deliver a virus.
Once you’re downloading a file from random online sources, there’s very little that’ll help you (click here to learn about different hacking methods). Even antivirus software can’t identify 100% of viruses (especially if the hacker wrote their own unique virus). If antiviruses recognize the threat, you may be reassured by the file hoster: “It’s just a false positive because of how the crack works, don’t worry, it’s not a virus.” Sure. You know what they say – there’s a sucker born every minute! Malware can be very damaging to your system – click here to find out about the different types.

2) Adware: If you’re lucky, you’ll download some adware instead of a virus. Instead of stealing your identity, they’ll simply fill your computer with ads. Some adware injects ads into your browser and every site you visit, while other adware programs can inject ads into your entire device. Imagine getting annoying pop-ups on your desktop! These types of programs also usually slow down your computer.

3) Random software: This find was actually a puzzling one for our security analysts. They found some cracked NordVPN downloads that sent them clean versions of other programs when they were downloaded. One NordVPN crack download actually sent them Adobe Flash Player

2️⃣Stolen NordVPN accounts for sale

That’s what you’re buying – but what’s the problem?

1) You don’t know how long the account will work. You aren’t forming a new subscription, you’re simply intruding upon someone else’s already-active subscription. If you paid the hacker for a 3-year subscription and find that there are only 2 years and 3 months left, tough luck – the hacker already has your money. Go ahead and ask for a refund. We’ll wait.

2) You can lose the account at any time. When you pay for the account, all you get are its current username and password. Most vendors will warn you that you shouldn’t change these. That’s because if you do, you’ll also make it impossible for the actual owner to connect. They will then be able to restore access to their account by contacting customer support, changing their password and rendering your purchase useless. You are completely at their mercy. The account is yours to use only as long as the real owner doesn’t change the password.

3) You won’t be able to use as many devices on it. Each NordVPN account supports up to six devices, but things can get crowded when there’s more than one user on an account.

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑HACK GMAIL/INSTAGRAM BRUTEFORCE
> PHISHING ALSO IN ONE TOOL :

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

1️⃣git clone https://github.com/xHak9x/Hak9Tools.git

2️⃣cd Hak9Tools

3️⃣chmod +x hak9tools.sh

4️⃣./hak9tools.sh

5️⃣CHOOSE OPTIONS VIA NUMBERS EASY AND SIMPLE

🦑SUPPORT :

Kali Linux
Cyborg
Parrot
BackTrack
Backbox

✅Git POPULAR sources
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑from few days Multi-stage APT attack uses C2 function to reduce Cobalt Strike
#UndercodeNews

1️⃣Multi-stage APT attack uses C2 function to reduce Cobalt Strike

2️⃣On June 10, we found a malicious Word document disguised as a resume, which used template injection to delete a Net Loader. This is a part of what we think is an APT attack. In the final stage, the threat actor uses Cobalt Strike's C2 feature to download the final payload and perform C2 communication.

3️⃣The attack was particularly smart because of its evasion skills. As we observe, there is an intentional delay in executing the payload from the malicious Word macro. In addition, by hiding the shell code in a harmless JavaScript and loading it without touching the disk, APT can further prevent security detection.

@UndercodeNews
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑#Cloud Security 2020 Topic Resources :

* [Cloud Security Resources from AWS](https://aws.amazon.com/security/security-resources)

* [Penetration Testing in Microsoft Azure](https://docs.microsoft.com/en-us/azure/security/azure-security-pen-testing)

* [Penetration Testing in AWS](https://aws.amazon.com/security/penetration-testing)

* [Penetration Testing in Google Cloud Platform](https://cloud.google.com/security/overview)

* [Google Cloud Security Center](https://cloud.google.com/security)

@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑General trend to share file permission management software, company internal file sharing, enterprise shared file solution

>Background of enterprise shared file management

At present, there are usually the following measures for setting access rights for shared files and managing access to shared files in enterprise LANs:

1️⃣File access permission control based on the local account of the Windows server operating system. The specific implementation method is: set a shared file on a Windows server operating system, the file system type is ntfs, and then configure the corresponding access rights of the local account to the shared file. When other computers on the LAN access the shared file, you need to enter the server local account to log in first Access, and then control their access to shared files.

2️⃣ File access permission control based on Windows domain users. Set the shared file on a server, the file system type is ntfs, and then set the corresponding permissions of the domain account to access different shared files through the domain controller. When the user accesses the shared file, enter the domain account to log in, and then control their access to the shared file .

3️⃣By adding a file sharing proxy server between the user computer and the file sharing server, the user computer connects to the file sharing proxy server, the file sharing proxy server connects to the file sharing server, and the file sharing proxy server implements the user computer to file Access control of files in the shared server.

Although through the above methods, you can control the access permissions of Windows server shared files. However, with the increasing number of important confidential documents and key data of enterprises, higher requirements are put on the protection of server file data. The original technical methods have been unable to meet the protection of enterprises to protect these important files and key data, especially when these files are accessed by LAN users in the form of shared files, how to protect the security of these file data has become an important aspect of enterprise network management.

Written by Undercode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑TOPIC 2020 Free admin dashboard template based on Bootstrap 4

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

1️⃣ DOWNLOAD : https://github.com/ColorlibHQ/AdminLTE/releases

2️⃣Command Line

> Via NPM

npm install admin-lte@^3.0 --save

> Via Yarn
yarn add admin-lte@^3.0

> Via Composer
composer require "almasaeed2010/adminlte=~3.0"

> Via Git
git clone https://github.com/ColorlibHQ/AdminLTE.gitAdminLTE can be installed using multiple methods. Pick your favorite method from the list below. Please be sure to check the dependencies section before continuing.

@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑7 NETWORK SECURITY TIPS BY UNDERCODE
#Secure before hacked !


1. The log file inside the operating system is an important clue to detect whether there is a network intrusion. Of course, this assumes that your logfile is not damaged by the intruder. If you have a server connected directly to the Internet with a dedicated line, this means your IP The address is permanently fixed. You will find that many people make telnet/ftp login attempts to your system, try to run #more /var/log/secure | grep refused to check.

2. Limit the number of programs with the SUID permission flag. Programs with the permission flag run as root, which is a potential security hole. Of course, some programs must have the flag, like the passwd program.

3. BIOS security. Set the BIOS password and modify the boot sequence to prevent the system from booting from the floppy disk.

4. User password. User passwords are a basic starting point for Linux security. The user passwords used by many people are simple'passwords, which is equivalent to opening the door to intruders, although theoretically there are no user passwords that cannot be confirmed, as long as there are enough Time and resources are available. A good user password is a string of characters that only he can easily remember and understand, and never write it anywhere.

5. /etc/exports file. If you use the NFS network file system service, then make sure that your /etc/exports has the most restrictive access permission settings, which means do not use any wildcards, do not allow root write permissions, and mount into a read-only file system. Edit the file /etc/exports and add: for example:
　　/dir/to/export host1.mydomain.com(ro,root_squash)
　　/dir/to/export host2.mydomain.com(ro,root_squash)
　　/dir/to/export is the directory you want to output, host.mydomain.com Is the machine name for logging into this directory, ro means mount as a read-only system, and root_squash prohibits root from writing to this directory.
　　In order for the above changes to take effect, run /usr/sbin/exportfs -a

6. Make sure that the owner of /etc/inetd.conf is root and the file permissions are set to 600.
[root@deep]# chmod 600 /etc/inetd.conf
ENSURE that the owner is root.
[root@deep]# stat /etc/inetd.conf
File: "/etc/inetd.conf"
Size: 2869 Filetype: Regular File
Mode: (0600/-rw-------) Uid: (0/ root) Gid: (0/ root)
Device: 8,6 Inode: 18219 Links: 1
Access: Wed Sep 22 16:24: 16 1999(00000.00:10:44)
Modify: Mon Sep 20 10:22:44 1999(00002.06:12:16)
Change:Mon Sep 20 10:22:44 1999(00002.06:12:16)
Edit /etc/inetd.conf to prohibit the following services:
ftp, telnet, shell, login, exec, talk, ntalk, imap, pop-2, pop -3, finger, auth, etc. unless you really want to use it. Especially prohibit those r commands. If you use ssh/scp, then you can also disable telnet/ftp.
For the changes to take effect, run #killall -HUP inetd You can also run #chattr +i /etc/inetd.conf to make the file unchangeable. Only root can unlock it, use the command #chattr -i /etc/inetd.conf

7. TCP_WRAPPERS
By default, Redhat Linux allows all requests. Using TCP_WRAPPERS to enhance the security of your site is a handy effort. You can put
"ALL: ALL” to /etc/hosts.deny to prohibit all requests, and then put those explicitly allowed requests to /etc/hosts.allow, such as:
sshd: 192.168.1.10/255.255.255.0 gate.openarch.com
to the IP address 192.168.1.10 and the host name gate.openarch.com allow connection via ssh. After the configuration is complete, use tcpdchk to check
[root@deep]# tcpdchk
tcpchk is a TCP_Wrapper configuration check tool that checks your tcp wrapper configuration and reports any potential/existing problems found.

written by Undercode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑2020 TOPIC get Facebook data, and some Facebook bots, and extra tools found on Facebook Toolkit ++.

🦑FEATURES :

Get Access Token ✅ get access token your facebook account
Account Information ✅ view your account information
Dump ID ✅ retrieve all your friend's ID data
Dump Email ✅ retrieve all your friend's Email data
Dump Name ✅ retrieve all your friend's Name data
Dump Birthday ✅ retrieve all your friend's Birthday data
Dump Gender ✅ retrieve all your friend's Gender data
Dump Location ✅ retrieve all your friend's Location data
Dump URL Profile ✅ retrieve all your friend's url profile data
Dump Mobile Number ✅ retrieve all your friend's mobile number data
Dump Religion ✅ retrieve all your friend's religion data
Dump Username ✅ retrieve all your friend's username data
Dump Bio ✅ retrieve all your friend's bio data
Dump About ✅ retrieve all your friend's about data
Filter Yahoo Mail ✅ separate all Yahoo e-mails [yahoo.com]
Yahoo Mail Validation ✅ validate all Yahoo e-mails
Clean Result ✅ clean the result folder
Delete ALL Post ✅ clean all your posts
Unfriend ALL ✅ clean all your friends
Confirmation ALL ✅ confirm all friend requests
Confirmation ALL [Male] ✅ confirm all friend requests based on male sex
Confirmation ALL [Female] ✅ onfirm all friend requests based on female sex
View Data ✅ see your friends data based on your username or ID
Dump ID Member Group ✅ retrieve all ID member on group database
Dump Username Profile Member Group ✅ retrieve all username member on group database
Dump URL Profile Member Group ✅ retrieve all url profile member on group database
Brute Force ID ✅ brute force your friends by ID
Brute Force ID Member Group ✅ brute force Member Group by ID

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

TERMUX -LINUX

1️⃣pkg install php

2️⃣pkg install curl

3️⃣pkg update

4️⃣git clone https://github.com/warifp/FacebookToolkit

5️⃣Enough to execute the command :

php run.php
Cek list menu tools, use the command :

php run.php -m
Cek author, use the command :

php run.php -a
Cek version, use the command :

php run.php -v
Cek update, use the command :

php run.php -u
and help, use the command :

php run.php -h

✅Git 2020 sources
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑FASTEST WAY TRACKING IP ADRESS FOR NOOBS :
-Termux Linux new release :

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

apt update

apt install git -y

git clone https://github.com/rajkumardusad/IP-Tracer.git

cd IP-Tracer

chmod +x install

sh install or ./install

How to use IP-Tracer
trace -m to track your own ip address.

trace -t target-ip to track other's ip address for example ip-tracer -t 127.0.0.1

trace for more information.

OR

ip-tracer -m to track your own ip address.

ip-tracer -t target-ip to track other's ip address for example ip-tracer -t 127.0.0.1

✅git 2020 sources
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑NETFLIX CHECKER ON GITHUB

https://github.com/AbdeslemSmahi/NetflixChecker

🦑Features:

Python 3.x
Simple readable code
Mass Accounts checker
Combolist support
HTTP Proxy Support

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑WIFI IN USA & UK NOW :

> In some countries it is not allowed to use the frequencies of some Wi-Fi channels (for example, in the USA you cannot use channels 12, 13 and 14).

> Most countries have a Wi-Fi signal limit of 20.0 dBm. But there are countries in which there is a limit of 30.0 dBm. You can take advantage of this loophole (to make a Wi-Fi card think that it is in a country where 30.0 dBm is allowed) and raise its power (TX Power) to a value of 30.0 dBm.

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑BEST WIFI ADPATER FOR KALI 2020

> 5 GHz band support
Two band, including those with 5 GHz support, are, for example, cards:

1-Alfa AWUS051NH
http://rover.ebay.com/rover/1/711-53200-19255-0/1?icep_ff3=9&pub=5575132165&toolid=10001&campid=5337870315&customid=&icep_uq=Alfa+AWUS051NH&icep_sellerId=&icep_ex_kw=&icep_sortBy=12&icep_catId=&icep_minPrice=&icep_maxPrice=&ipn=psmain&icep_vectorid=229466&kwid=902099&mtid=824&kw=lg

2-Alfa AWUS052NH
http://rover.ebay.com/rover/1/711-53200-19255-0/1?icep_ff3=9&pub=5575132165&toolid=10001&campid=5337870315&customid=&icep_uq=Alfa+AWUS052NH&icep_sellerId=&icep_ex_kw=&icep_sortBy=12&icep_catId=&icep_minPrice=&icep_maxPrice=&ipn=psmain&icep_vectorid=229466&kwid=902099&mtid=824&kw=lg

🦑Intel's latest Wi-Fi adapters built into laptops

> They show 5 GHz APs and are capable of intercepting data.

However, when testing the ability to inject, different users receive different data. For some users, everything works, for some at 5 GHz it can only inject on channels 36 to 48. On others (52 to 116), where there is radar detection, there are some problems with the injection of deauthentication packets. In some, the injections do not work on all channels. I belong to the latter - my injection test failed on all tried and tested channels. It is possible that such a spread is associated with a bug in aireplay-ng , the author of the program on the forum confirmed its presence, at the moment the
error has not been fixed.

@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑BASIC WIFI HACKING BY UNDERCODE

BSSID is the MAC address of the wireless card. Example MAC address: 50: 46: 5D: 6E: 8C: 20. They are described in more detail in the note “ How to find out the MAC address and How to find out the manufacturer by MAC address ”.

Handshake (also hendsheyk , handshake ) - data exchanged between the station and the access point at the time of the creation of Wi-Fi connection. This data contains information that allows you to select a password from a Wi-Fi network.

Brute-force (also full search ) is a method of attacking a password, which consists in enumerating all possible password options. It requires a lot of time and computing resources.

Dictionary search ( dictionary attack ) is a method of attacking a password, which consists in enumerating frequently occurring password options. It has a good ratio of resources spent to the results obtained.

Wi-Fi password brute force is a password guessing method that involves connecting to an Access Point with various password candidates. Practically not applicable due to the extremely low speed of search.

Offline Wi-Fi password guessing is a password guessing method that involves grabbing a Handshake and picking up a password that matches that handshake. This selection does not require connection to an Access Point and is performed many orders of magnitude faster than online search. It can also be performed on the computing power of video cards, which increases the speed of search by several orders of magnitude.

WPA and WPA2 - technology for secure access to Wi-Fi, has replaced the outdated technology of WEP.

A wireless Wi-Fi card (or a wireless Wi-Fi adapter ) is any network card that can connect to a Wi-Fi network. On laptops and phones, they are built into the case; on desktop computers, they usually represent an external device that connects via USB.

Monitor mode ( Monitor-Mode ) - the property of some wireless cards receive data packets, which are designed not only for them but also for other wireless devices.

Network interface - the name, symbol in Linux for network cards / adapters.

A Wi-Fi network channel is a conventional digital designation of the frequency at which the Access Point is currently operating.

@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑#Wi-Fi Hacking Software list 4
This list Special for Kali Users


1️⃣airodump-ng is a tool for capturing wireless packets. Very often used to capture four-stage handshakes, which are later used to crack a Wi-Fi network password. It can capture any frames of wireless networks for further analysis.
https://kali.tools/?p=411

2️⃣airodump-ng is a tool for capturing wireless packets. Very often used to capture four-stage handshakes, which are later used to crack a Wi-Fi network password. It can capture any frames of wireless networks for further analysis.
https://kali.tools/?p=411

3️⃣boopsniff - a program from the BoopSuite package to show access points in the range of accessibility and capture handshakes.
https://kali.tools/?p=3409

4️⃣WPA2-HalfHandshake-Crack is a working concept to demonstrate the possibility of hacking a WPA2 network by grabbing a handshake from a user trying to connect to a fake AP. Those. grabs a half handshake.
https://kali.tools/?p=2794

5️⃣Reaver is designed to select the WPS (Wifi Protected Setup) pin by brute force. Reaver was created for a reliable and practical attack on WPS; it was tested on a large number of access points with different WPS implementations. On average, Reaver reveals the WPA / WPA2 password in plain text to the target access point (AP) for 4-10 hours, depending on the AP. In practice, he usually needs half this time to guess the WPS pin and guess the password.
https://kali.tools/?p=355

6️⃣Pixiewps is a tool written in C that is used to offline brute force the WPS pin by exploiting the low or nonexistent entropy of some access points (pixie dust attack).
> https://kali.tools/?p=351

🦑Those some from kali wifi hacking tools - Kali is a good hacking os

but don't even mind the Undercode Linux Os that we use their include more than those tools and more automation for wifi hacking ...

@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁