🦑ITIL® Foundation - Core Concepts


https://mega.nz/folder/T1VSBITR#6BMjYMIeAFV0AXRyvxsr-Q

1. Course Overview
https://mega.nz/folder/j4ViEYCQ#CmDPzIBDn3aFhHPdC4gDBg

2. Introduction to ITIL®
https://mega.nz/folder/GwVQTaaL#tipJKOvt4LIJ5mc7RioC6g

3. Service Management General Concepts - The Backbone of the Framework
https://mega.nz/folder/XkEQiCCI#5qvJK2J8XULePjhKaOPZDw

4. Roles - Who Does What and Why
https://mega.nz/folder/nxdQiSrA#cfHw-OdwBUcgwg04Gb3fXQ

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Termux/beginers Accessing and managing files in termux

1) To manage and access files in termux then you must type below command

> termux-setup-storage

2) To access a directory cd command is used

> The termux default directory is located at /data/data/com.termux/

3) You can access it anytime by typing cd $home


4) ls Command is used to see the list of sub directories

5) To access your internal sdcard you have to type cd /sdcard && ls

6) To Access your External Sdcard the same command is used cd /sdcard0/ && ls

7) To Remove/delete an empty Directory or a file, use this command: rm -rf filename

8) Where filename belongs to the name of the file or directory
Similarly, you can use rm -r filename

9) To Make a Directory mkdir Command is used
Eg: mkdir Hello

10) Where Hello Belongs to a Directory Name

11) For Copying files from one directory to another, cp Command is used
eg: cp /path/file /path

12) Similarly for moving files mv Command is used
Termux also Supports zipping and Unzipping of Zip files
For that zip , unzip Commands are used

13) Let's talk about Networking
ifconfig Command is used to get all the information regarding your Network IP Address

14) To check a particular website is accessible or not in your ISP then you can check that through termux by typing

ping website
Eg: ping google.com

15) The Interesting thing is you can access the internet through termux, directly in the command line

Firstly you have to install the w3m package by typing

pkg install w3m

16) After that type below command to access any website

w3m website
eg: w3m google.com
Lynx is similar to w3m

17) To install lynx, type pkg install lynx
After that type lynx google.com

18) Now In this Section i will teach you How To Install Useful Packages/Hacking Tools On your Android mobile

@UndercodeTesting
termux wiki xd
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

fresh premium proxies list :

https://pastebin.com/7BKb2pvB

More than 100,000 BEC attacks on 6,600 organizations :

How to avoid such attacks
Barracuda's researchers analyzed the attacks of 6,600 organizations and found that in many cases, cybercriminals used the same email address to attack different organizations. The number of organizations attacked by each malicious account ranges from one to 256. The number of email attacks sent by a malicious account ranges from 1 to more than 600 emails, with an average of only 19.

In fact, setting up email services such as Gmail for free can allow anyone to create a malicious account with potential BEC attacks. In order to protect themselves from this threat, organizations need to defend themselves, such as investing more in email security and using artificial intelligence to identify abnormal senders and requests.

However, no security software can be 100% effective, especially if the sender seems to be using a perfectly legitimate email.
#news'
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

Fuzzing VulnServer with Peach
#full with pictures

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑TOPIC TERMUX-LINUX
2020 NEW UPDATE FOR WEBHACKING -

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

1) sudo git clone https://github.com/Manisso/fsociety.git

2) cd fsociety

3) sudo ./install.sh

4)Simply CHOOSE OPTIONS VIA NUMBERS

E N J O Y ❤️👍🏻
U S E F O R L E A R N
@UndercodeTesting
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

24/24 posts enjoy & share us ❤️👍🏻

T.me/UndercodeSecurity

🦑new full course ITIL® Foundation - Lifecycle Phases and Processes :

https://mega.nz/folder/ThsxBCxa#mg_HOTV5QJ4rtZMru-YbtQ

1. Course Overview
https://mega.nz/folder/ztlxRKaB#KaDBOja5BC_GdwFIaKursA

2. Service Strategy Introduction - It's All About Adding Value
https://mega.nz/folder/Ow9VnKKa#Wy7lCfiX2Whk5ggX2BQ2MQ

3. Service Strategy Processes - Portfolio, Finances, and Relationships
https://mega.nz/folder/Xht3QK6b#y-GSUq48B7KB_x9F0cnvMQ

4. Service Design Introduction - The Blueprinting Phase
https://mega.nz/folder/bwsjwYyA#TqsUx_ad8h6Cc1eq38sK2Q

5. Service Design Processes - Setting the Stage for Successful Delivery
https://mega.nz/folder/Cs9FVYwJ#rSmzmOB9L_Dz6KuZzXhQcA

6. Service Transition Intro - Adding, Changing, and Retiring Services
https://mega.nz/folder/DpkxXSwA#PqurjjPbuOP9UUCLY0p3gA

7. Service Transition Processes - Approve, Manage, Deploy, and Document Change
https://mega.nz/folder/uk9VDSrB#z2MektK59qkuJCcic-O1Vg

8. Service Operation Introduction - Running and Supporting Live Services
https://mega.nz/folder/vl9zgSqQ#TuuV6Icxx3zjcKdk5JlJqw

9. Service Operation Processes - Where Services Are Visible to Customers
https://mega.nz/folder/u5sz3aCY#E58VmhXftC70Q4yZxVT07Q

10. Service Operation Functions - Units of Organization to Accomplish Work
https://mega.nz/folder/vg8lCALT#XkkbM8bQfKhE7DCyZqRaOA

11. Continual Service Improvement – Introduction - Getting Better All the Time
https://mega.nz/folder/qstjQQzK#s1FxSjQ3uvJXH4XkFKsIiA

12. Continual Service Improvement Process - The Seven-step Process
https://mega.nz/folder/v9sTSQRB#vBEjZOVf9-Zdn0Q12iTGrA

13. Preparing for the ITIL® Foundation Exam
https://mega.nz/folder/Ll1R1aoS#ltqbVrhvhgzCKUKc_KUePQ

🦑NEW NORDVPN ACCOUNTS :

james1983thompson@hotmail.com:Arsenal01 | Expiration = 2022-09-15 11:10:41
Jamesd10886@hotmail.com:Jimjam99 | Expiration = 2021-12-04 04:48:57
jamesfreis314@gmail.com:1snickers2 | Expiration = 2022-03-21 22:41:19
jamesgtweston@gmail.com:muppet1995 | Expiration = 2020-09-20 14:12:52
jameswshane@gmail.com:sancho55 | Expiration = 2022-08-29 14:12:48
janetthornhill@aol.com:Somerset1 | Expiration = 2020-08-19 17:56:55
japurcell@aol.com:Rnixon12 | Expiration = 2022-01-17 01:39:03
jaredkahl22@gmail.com:Kahl4ever | Expiration = 2022-04-25 03:04:17
jasonaust02@gmail.com:Ja062895 | Expiration = 2020-08-09 23:17:05
jasonmpeters@live.com:Crfhonda08 | Expiration = 2020-10-14 00:00:00
jasonstevenson1984@gmail.com:Wesley8372 | Expiration = 2020-09-23 21:20:04
jasperkibzey@gmail.com:trueblue24 | Expiration = 2022-10-08 20:35:16
jasrasmussen@gmail.com:Joshua88 | Expiration = 2022-05-02 18:28:08
jaycobtharp@gmail.com:4Jaycob4 | Expiration = 2021-07-15 16:41:31
jayhill_jeromehill@yahoo.com:dragonballz | Expiration = 2020-11-20 01:53:06
jessonmoen@gmail.com:Surfer22 | Expiration = 2021-04-15 19:23:39
jessshankland@googlemail.com:jess3107 | Expiration = 2020-08-03 11:46:05
jessyc09@yahoo.com:ladybug05 | Expiration = 2022-03-09 23:31:28
jessylivingstone@rogers.com:bazooka123 | Expiration = 2020-12-03 07:47:03
jesusjrsanchez17@gmail.com:pandaskill4fun | Expiration = 2023-03-04 09:20:16
jf3333@yahoo.com:6382joel | Expiration = 2020-10-01 14:12:54
jim1.west@comcast.net:Nathan2@ | Expiration = 2021-11-23 22:40:42
jimandamita@mac.com:daswamy1 | Expiration = 2025-01-31 17:43:50
jimenez.michael@live.com:Suckit02!x | Expiration = 2021-11-23 01:10:14
jjfiore@aol.com:Alana124 | Expiration = 2021-01-05 02:28:56
jjsrabbit@yahoo.com:redsox0987 | Expiration = 2020-08-08 02:47:24
jkuipers2017@fau.edu:Boodlebag311 | Expiration = 2020-08-22 22:35:09
jlaicans@yahoo.com:ytellu911 | Expiration = 2020-08-21 16:26:59
jlouns@hotmail.com:Culloden1746 | Expiration = 2022-09-26 03:34:20
jm-perez@att.net:Zerg1122 | Expiration = 2022-08-18 22:34:22
jmc66@mac.com:Scotland66! | Expiration = 2022-04-04 19:19:21
jmdesena@att.net:Duke1225! | Expiration = 2020-09-22 17:14:13
Jmrosiek@yahoo.com:Jasonr99 | Expiration = 2022-06-27 10:35:14
jmthorp87@gmail.com:asdf1234 | Expiration = 2021-07-06 02:07:46
joan.adorno@gmail.com:jam27653 | Expiration = 2020-11-30 13:36:48
joanna.chapman@live.com:remuda12 | Expiration = 2020-09-04 07:09:57
joepipitone@yahoo.com:brewchb6 | Expiration = 2021-08-13 04:57:41
joey-king@online.de:Undertaker100 | Expiration = 2021-12-27 17:42:56
johan@simplyvisual.se:bibber07 | Expiration = 2020-12-15 13:56:00
john.aretakis1@gmail.com:Ollie3127 | Expiration = 2020-10-07 04:21:53
johnjacksnap@yahoo.com:wolfhead819 | Expiration = 2020-08-27 07:29:03
johnnypanik@gmail.com:pudding1 | Expiration = 2020-12-19 11:23:22
johnnyshakes@hotmail.com:starstar | Expiration = 2021-06-26 19:17:30
johnstjmj@gmail.com:natalie05 | Expiration = 2020-12-06 21:40:31
jolo1990@wsu.edu:UtahJazz!1 | Expiration = 2021-08-08 04:43:17
jon@tidys.com:Nojt1nka | Expiration = 2023-01-17 14:45:16
jona.glatz@gmail.com:j141099g | Expiration = 2020-08-19 20:05:08
jonathan@topnoc.co.uk:Sniper007 | Expiration = 2021-01-24 07:56:04
jonathan_sheves@asl.org:JuanMata10 | Expiration = 2020-09-06 00:00:00

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁



🦑NETWORK HACKING MATERIAL 2020 :

http://www.milescan.com ParosPro

https://www.qualys.com/enterprises/qualysguard/web-application-scanning/ Qualys Web Application Scanning

http://www.beyondtrust.com/Products/RetinaNetworkSecurityScanner/ Retina

https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework

https://github.com/future-architect/vuls Vulnerability scanner for Linux, agentless, written in golang.

https://github.com/rastating/wordpress-exploit-framework A Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.

http://www.xss-payloads.com/ XSS Payloads to leverage XSS vulnerabilities, build custom payloads, practice penetration testing skills.

https://github.com/joaomatosf/jexboss JBoss (and others Java Deserialization Vulnerabilities) verify and EXploitation Tool

https://github.com/commixproject/commix Automated All-in-One OS command injection and exploitation tool

https://github.com/pathetiq/BurpSmartBuster A Burp Suite content discovery plugin that add the smart into the Buster!

https://github.com/GoSecure/csp-auditor Burp and ZAP plugin to analyze CSP headers

https://github.com/ffleming/timing_attack Perform timing attacks against web applications

https://github.com/lalithr95/fuzzapi Fuzzapi is a tool used for REST API pentesting

https://github.com/owtf/owtf Offensive Web Testing Framework (OWTF)

https://github.com/nccgroup/wssip Application for capturing, modifying and sending custom WebSocket data from client to server and vice versa.

https://github.com/tijme/angularjs-csti-scanner Automated client-side template injection (sandbox escape/bypass) detection for AngularJS (ACSTIS).

https://reshift.softwaresecured.com A source code analysis tool for detecting and managing Java security vulnerabilities.

https://encoding.tools Web app for transforming binary data and
strings, including hashes and various encodings. GPLv3 offline version available.

https://gchq.github.io/CyberChef/ A "Cyber Swiss Army Knife" for carrying out various encodings and transformations of binary data and strings.

E N J O Y ❤️👍🏻
U S E F O R L E A R N
@UndercodeTesting
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑ITIL 2020 Foundations:

https://mega.nz/folder/b0sDGaQZ#Qw_fS9T4weKFDsoiB-pnIA

1. Introduction to ITIL®
https://mega.nz/folder/m4sHECwI#OTUpsEVxQRm26TOR8KUPiQ

2. Service Management General Concepts - Part I
https://mega.nz/folder/r881AKyT#PuRNhkdWK0ZmSkpk-T-t8A

3. Service Management General Concepts - Part II
https://mega.nz/folder/P48RVKoa#FT6fEHRND6rD8CwEI43a4w

4. The Service Lifecycle
https://mega.nz/folder/6glzTA6T#if4QgYsnILX20WGcq7AxPg

5. Service Strategy
https://mega.nz/folder/f1tBhKIS#_ug-lbevWc2pLjJugnYEjQ

6. Service Design - Part I
https://mega.nz/folder/rhtFGCRT#9MPiR2niJRPPnTZaupSGSQ

7. Service Design - Part II
https://mega.nz/folder/zptnTS7J#qNL4gd_v_ctDstGK0s_hnQ

8. Service Design - Part III
https://mega.nz/folder/H9tliaBA#btsRePJZvAA7qEOjN-2fhA

9. Service Transition - Part I
https://mega.nz/folder/v58TTAga#vEYsgZ_RCL6TFboPYHRxSA

10. Service Transition - Part II
https://mega.nz/folder/TwlXGAqK#Z8BK2YtmwmzQ2voQci7Iwg

11. Service Operation - Part I
https://mega.nz/folder/C803QIDL#KXL7KomCMexyeCPU78lV4A

12. Service Operation - Part II
https://mega.nz/folder/Hk8lkI4a#n-AIVa_PyiCx1BL5w01xXg

13. Continual Service Improvement
https://mega.nz/folder/iw1HlCqJ#3C1L7rJ5vh8AV6RjjBlpUA

14. Preparing for Your ITIL® Foundations Certification
https://mega.nz/folder/r0kxlSjC#9SE2tRNiMtLOfWvSLHqm3g

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑How to set unlimited users and file descriptions on Linux server:
If you get “too many files open limit” error on Linux server because there is a limit on opening files in Linux according to user session.

1) We need to add a line to /etc/sysctl.conf and run sysctl -p:

fs.file-max = 80000


2) We can check the default limits using the following command:

cat / proc / sys / fs / file-max


3) file-max is the maximum file descriptor. This is a kernel setting applied at the system level.

4) Similarly, you can check the default values ​​for the root user.

ulimit -a


5) We can also set hard and soft limits by editing this vim file /etc/security/limits.conf

* hard nofile 600000
* soft nofile 600000


6) Set hard and soft limits for Linux user

linux hard nofile 600000
linux soft nofile 600000


7) Then run sysctl -p to make the changes.

We can also set the process limit for the root user to unlimited with ulimit -u unlimited and store these lines in /root/.bashrc forever.

We can also check how many files are currently open using lsof | wc -l

8) Check how many file descriptions are currently in use: more / proc / sys / fs / file-nr

9) Check the limit on the currently open file descriptor using the following commands.

more / proc / sys / fs / file-max
sysctl -a | grep fs.file-max

10) After making the changes, you need to log out and log back in. There are many options available and you can check them out on the official RedHat page.

E N J O Y ❤️👍🏻
@UndercodeTesting
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑The NetWalker ransomware group has made 25 million USD since March 2020 :
#news

> Security company McAfee said today that operators of NetWalker ransomware are believed to have earned more than $25 million in ransom payments since March this year. Although there are no accurate and up-to-date statistics, the $25 million figure put NetWalker at the top of the most successful ransomware gangs currently known. Other known names include Ryuk, Dharma, and REvil (Sodinokibi).


> McAfee recently released a comprehensive report on NetWalker's operations, which can track payments made by victims to the Bitcoin address of the ransomware group. However, security experts believe that because their views are incomplete, the gang may gain more benefits from their illegal actions.

#News
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑HomeHackingUltimate Guide To : Ethical Hacking With Termux
Lazymux contains Several Hacking Tools of Kali Linux at One Place so now its easy to Install Lazymux In Termux

Lazymux Contains the Following Hacking Tools

01 Sudo 11 SQLMap
02 NMap 12 Black Hydra
03 Hydra 13 Fl00d & Fl00d2
04 FB Brute Force 14 Infoga
05 Webdav 15 LANs.py
06 RED HAWK 16 Pagodo
07 Brutal 17 FBUP
08 Metasploit 18 KnockMail
09 1337Hash 19 Ufonet
10 IPLoc 20 Commix

21 D-Tect 31 ReconDog
22 A-Rat 32 Meisha
23 Torshammer 33 Kali NetHunter
24 Slowloris 34 Ngrok
25 DSSS 35 Weeman
26 SQLiv 36 Cupp
27 Wifite 37 Hash-Buster
28 Wifite 2 38 Routersploit
29 MSFPC 39 Ubuntu
30 Kwetza 40 Fedora

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

Then Type this Command

1) apt Update && apt upgrade

Now We have to Install git by typing this command

pkg install git

2) Then Now We need Python2 environment in Termux so type the command pkg install python to install python

3) Now almost done type below command to install Lazymux on Termux

git clone https://github.com/Gameye98/Lazymux

4) After Cloning successful

> cd Lazymux && ls

5) Now you have to type below command for menu of Lazymux Hacking Tools

> python lazymux.py

6) Now select your Desired Tool To Install and us

E N J O Y ❤️👍🏻
U S E F O R L E A R N
@UndercodeTesting
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

Unauthenticated Stored XSS to RCE
#full with pictures

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Why don't hackers attack online lending platforms?
#FastTips

1) The risk of attack outweighs the benefit
For example, I might get 200,000 yuan from this online lending platform, but according to the "Internet Security Law" I have to go in and squat for 5 or 6 years. It is not guilty to go in for a small profit. And you may not know how powerful our cyber police are. Let’s just say: my country’s current cyber security risk handling system is very complete, and it can "look for you along the network cable." The Internet is not a place outside the law! ! !

2) Not bad money
Powerful hackers (technologists) have long since become the executives of listed technology companies (such as Ali, Tencent, Baidu, 360, etc.).

Moreover, the online loan platform is also undergoing risk testing before being launched. Behind a complete product is a very large and detailed risk control system. If the technology is not enough, it is definitely not black. To put it simply: Technologists can't keep up with this little money and are too lazy to attack, and rookie skills can't keep up with the attack.

3) Attacks are always there.
Yes, of course there are people who have the technology but some are not afraid of death and lack of money. So they will take risks to attack online loan platforms, payment platforms, etc. But there are also white hats (specially against hackers) who work for the company to defend and trace the source & counter-attack. The war between hackers and white hats on the Internet has been in fierce confrontation. For example, the app suddenly fails to open, your computer has a blue screen inadvertently, your computer is poisoned, and so on. Network offense and defense is like a war without gunpowder, which takes place 24 hours a day.

4) There are online lending platforms that have been hacked, but ordinary people will never know
According to my industry experience, there are indeed platforms that have been hacked, trousers removed, black pages posted, data tampered and so on. Most of them were done by foreign APT organizations, and many of them were "instructed"


@UndercodeTesting
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Bruteforce admin login for website topic git :

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

1) pip2 install selenium

2) pip2 install requests

3) git clone https://github.com/MetaChar/Hatch

4) python2 main.py

5)COMMANDS :

-h, --help show this help message and exit
-u USERNAME, --username=USERNAME Choose the username
--usernamesel=USERNAMESEL Choose the username selector
--passsel=PASSSEL Choose the password selector
--loginsel=LOGINSEL Choose the login button selector
--passlist=PASSLIST Enter the password list directory
--website=WEBSITE choose a website
dont worry if you load up the tool without any args youll go to the default wizard! Also i removed the apt xvfb and pip2 pyvirtualdisplay

E N J O Y ❤️👍🏻
U S E F O R L E A R N
@UndercodeTesting
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁