▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Use and unneeded database services and features unused #vulnerabilities :

　> An external attacker will look for weak database passwords, see its potential Is the victim running the listener function on their Oracle database? The listener can search out the network connection to the Oracle database, and can forward the connection, so that the link between the user and the database will be exposed.

> 　　With just a few Google hacking attacks, an attacker can search and find the listeners exposed on the database service. Markovich said, "Many customers do not set a password on the listener, so hackers can search for the string and find the listener active on the Web. I just searched and found that there are some things that can attract people’s attention, such as Government sites. This is indeed a big problem."

>　Other features, such as the hook between the operating system and the database, can expose the database to attackers. This hook can become a communication link to the database.

-When you link the library and write the program... that will become the interface with the database," you are exposing the database and may allow hackers to enter inside without authentication and authorization.

> Usually, the database administrator does not shut down unnecessary services. Julian said, "They just leave it alone. This design is outdated and management can't keep up. This is the easiest way to make it work. Unwanted services exist in the infrastructure, which will make your Vulnerabilities are exposed."The

> key is to keep the database features streamlined and install only what you have to use. Don't need anything else. Markovich said, "Any feature can be used to deal with you, so only install what you need. If you have not deployed a feature, you do not need to patch it later."

written @UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑#HackersToday

> Ordinary hackers can complete a data attack in less than 10 seconds from entry to exit. This time is almost insufficient for database administrators even if they notice an intruder. Therefore, many database attacks were not noticed by the organization until the data was damaged for a long time.

> Strangely, according to the introduction of many experts, as the base of the "crown" of the enterprise, the database has not been properly secured in many enterprises. Malicious hackers are using very simple attack methods to enter the database, such as the use of weak passwords and imprecise configuration, and the use of unpatched known vulnerabilities.

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

#Misc IMSI/Cellular Tools

https://github.com/Evrytania/LTE-Cell-Scanner

https://harrisonsand.com/imsi-catcher/

https://github.com/Oros42/IMSI-catcher

https://github.com/CellularPrivacy/Android-IMSI-Catcher-Detector



▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑## SS7/Telecom Specific

- D1T2 - Bypassing GSMA Recommendations on SS7 Networks - Kirill Puzankov

- http://www.hackitoergosum.org/2010/HES2010-planglois-Attacking-SS7.pdf

- Getting in the SS7 kingdom: hard technology and disturbingly easy hacks= to get entry points in the walled garden

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

Edu mails list 2 ✅

abreuj@student.mville.edu:september16
@UndercodeTesting " Line 82125: bkosu01@jaguar.tamu.edu:Winston115!
@UndercodeTesting " Line 82189: natalie.strechina@baruchmail.cuny.edu:151005Ns
@UndercodeTesting " Line 82269: 201210801@alu.comillas.edu:comillas8
@UndercodeTesting " Line 82393: kseitz22206@my.monroeccc.edu:0149786
@UndercodeTesting " Line 82395: imperial.185130@caloocan.sti.edu.ph:Imperial20020126!1
@UndercodeTesting " Line 82418: ashley.jackson1@my.chamberlain.edu:Ilovelife13
@UndercodeTesting " Line 82633: bennison@go.byuh.edu:family89
@UndercodeTesting " Line 82648: ayersme19@mail.vmi.edu:Armystrong3
@UndercodeTesting " Line 82689: dailey52@mctc.edu:49pinedr
@UndercodeTesting " Line 82724: clopez0229114@my.provocollege.edu:Cin003
@UndercodeTesting " Line 82738: shefticd@alumni.sacredheart.edu:Soccer11
@UndercodeTesting " Line 82767: kassidyg@go.byuh.edu:WeberGirl10
@UndercodeTesting " Line 82781: valdircs@fei.edu.br:Vall1212
@UndercodeTesting " Line 82905: mr94308@ravens.racc.edu:Rommeltipper98
@UndercodeTesting " Line 82919: ming06@go.byuh.edu:urumanuka06
@UndercodeTesting " Line 83044: cmerritt11361@my.monroeccc.edu:dogcat
@UndercodeTesting " Line 83469: bduran@student.yosemite.edu:Bd1006212!
@UndercodeTesting " Line 83490: chumo.j@mvsu.edu:joycejjc3

(Not cracked by undercode only verified)

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Interesting hacking #SIM Specific Attacks :

- Rooting SIM-cards

- The Most Expensive Lesson Of My Life: Details of SIM port hack

- Baseband Attacks: Remote Exploitation of Memory Corruptions in Cellular Protocol Stack (https://www.usenix.org/system/files/conference/woot12/woot12-final24.pdf)

- Hiding in Plain Signal:Physical Signal Overshadowing Attack on LTE

- LTE Security Disabled—Misconfiguration in Commercial Network

- Shupeng-All-The-4G-Modules-Could-Be-Hacked

✅2020 git sources
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
🦑Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner:

🦑Features

1) Works with Windows, Linux and OS X

2)Automatic Configuration

3) Automatic Update

4) Provides 8 different Local File Inclusion attack modalities:

/proc/self/environ
php://filter
php://input
/proc/self/fd
access log
phpinfo
data://
expect://

5) Provides a ninth modality, called Auto-Hack, which scans and exploits the target automatically by trying all the attacks one after the other without you having to do anything (except for providing, at the beginning, a list of paths to scan, which if you don't have you can find in this project directory in two versions, small and huge).

6) Tor proxy support

7) Reverse Shell for Windows, Linux and OS X

🦑REQUIRE :

>Python 2.7.x

>Python extra modules: termcolor, requests

>socks.py

🄸🄽🅂🅃🄰🄻🄻🄸🅂🄰🅃🄸🄾🄽 & 🅁🅄🄽 :

CLONE https://github.com/D35m0nd142/LFISuite & GO DIR THEN
1️⃣Usage is extremely simple and LFI Suite has an easy-to-use user interface; just run it and let it lead you.

2️⃣Reverse Shell

> When you got a LFI shell by using one of the available attacks, you can easily obtain a reverse shell by entering the command "reverseshell" (obviously you must put your system listening for the reverse connection, for instance using "nc -lvp port")

( any doubt check this vid https://www.youtube.com/watch?v=6sY1Skx8MBc )

@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 discovering and attacking IoT devices based on web attacks by Undercode :

1️⃣The attack methods used are:

　1-　Deceive the victim and induce them to visit the website controlled by the attacker.

　2-　Discover IoT devices on the victim's local network.

　3-　Control devices through web-based attacks.

2️⃣Attack duration

1- Technically, this is not a new attack vector. The research report cited previous research and found that it takes an average of one minute for an attacker to use these attack vectors to obtain results. Strangely, the results of a famous study

2-　　(What You Think You Know About the Web is Wrong) shows that 55% of users spend less than 15 seconds on the site. It seems that most users will not be affected by the IoT vulnerability.

　3-　But in studies conducted at Princeton University and the University of California, Berkeley, the researchers significantly shortened the duration of the attack. Researchers say that using the methods they discovered, they can discover and access devices on the local network faster than previous research. Except Chrome, because it caches DNS requests, if the TTL is below a certain threshold, the TTL is ignored. It should be noted that devices in the demilitarized zone (DMZ, internal network inside the firewall) are generally considered to be safe, because users assume that these devices cannot be accessed from outside. However, through the attack described here, the attacker can access the browser in the victim's internal network.

3️⃣Discover HTTP endpoints :

1-　The researchers analyzed these devices by connecting them to the wireless access point of the Raspberry Pi. Observe and analyze the data packets sent and received from the device, and the data packets sent and received by the mobile application bound to each device. Through analysis, 35 GET request endpoints and 8 POST request endpoints were found. These endpoints are used to identify the IP address in the discovery phase.

　2- Research phase

　　Researchers conduct research through two different stages, the discovery stage and the access stage:

3-　　The goal of the discovery phase is to find Internet of Things devices containing HTML5 elements on the browser on the local network.

4-　　The goal of the access phase is to use DNS rebinding and discovered IP addresses to access HTTP endpoints.

4️⃣ Discovery stage: Identify IoT devices

　1-Use WebRTC to obtain the local IP address.

2-Send requests to all IP addresses in the IP range through port 81. Since port 81 is usually not occupied, the active device will immediately respond to a TCP RST packet. For inactive devices within the IP range, the request packet will time out.

3-Each active IP address receives requests for 35 GET endpoints collected using HTML5 at the initial stage. Based on the error message returned, the attack script will identify whether the IP address matches any of the seven devices.

4-The study plans to use three different operating systems (Windows 10,

MacOS, and Ubuntu) and four different browsers (Chrome, Firefox, Safari, MicrosoftEdge). However, only Chrome and Firefox are suitable for this research. Therefore, Safari and Edge browsers are not used, because according to (Web-based attack on the discovery and control of local IoT devices):

> On Safari, all FETCH requests timed out, causing the attack script to identify all IP addresses as inactive. On the Edge browser, the script can use the FETCH request to correctly identify the active IP address, but Edge does not disclose a detailed HTML5 error message, so the attack script cannot identify any device on the Edge.

5️⃣Access stage: control of IoT devices

1-The victim accesses the domain name (domain.tld) ​​​​​​controlled by the attacker, and the browser executes the malicious JavaScript code found on the attacker's site. The domain name is still resolved to the attacker's server IP.

2-The malicious script requests another resource on domain.tld, which only exists on the attacker's server.

3-If the victim's local DNS cache is still resolved to the attacker's remote IP, the request for /hello.php will return the string "hello" and repeat step

4-But if the domain.tld in the victim's cache expires, a new DNS query will be sent to the attacker.

5-Finally, the local IP obtained from the discovery phase will be returned instead of the attacker's remote IP. /hello.php will not respond with the string "hello", but will use different content, such as a 404 error, which tells the malicious script The DNS rebinding attack has been successful.

6-Through this attack, the malicious script bypassed the browser's Same-Origin Policy and gained access to Web applications running on the device. Attackers can now perform restarts or start video/audio files on Google Chromecast, Google Home, smart TVs, and smart switch devices.

6️⃣How to prevent DNS rebinding attacks against IoT devices


1-Users can disable WebRTC on the browser and prevent the disclosure of private IP. The attacker will be able to discover the user's private IP by sending a request to all *.1 addresses (router addresses) within the private IP range.

2-The attacker assumes that all IP devices have the same IP range as the victim's PC. Users can assign IP addresses on another subnet (such as /16) by configuring the router's DHCP server.

3-Users can install dnsmasq to prevent DNS rebinding attacks by removing RFC 1918 addresses from DNS responses. Users can also use dnsmasq's OpenWRT router.

4-IoT vendors can control the Host header in requests sent to the Web interface. If there is no private IP that complies with RFC 1918, you can block access.

5-DNS providers can use mechanisms like dnswall to filter private IPs from DNS responses.

6-Browser vendors can develop extensions that restrict public network access to private IP ranges.

WRITTEN BY UNDERCODE
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 discovering and attacking IoT devices based on web attacks full guide by Undercode-Testing

BY UNDERCODE 4 K hd- java Objects & Classes

https://www.youtube.com/watch?v=84hGoR9HjAY

For more youtube.com/Undercode

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑WARNING #HackersToday
> Hackers use graphical verification to flicker real people download malicious files and evade automated detection

1) The Microsoft security intelligence team recently exposed the new trend of the hacker organization CHIMBORAZO.

2) As the behind-the-scenes hands of Dudear and GraceWire, the information theft Trojan, it once again looked at the CAPTCHA graphic verification code used by major websites for real-person detection .

3) Compared with fuzzy, distorted numbers or letters, the graphic verification codes that have been online for more than ten years can block many people with ulterior

4) The Microsoft Security Intelligence team pointed out that their tracking analysis from January this year found that the organization has distributed malicious Excel documents on sites that require users to complete CAPTCHA verification.

@UndercodeNews
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑MAKE YOUR SITE APPEARS ON GOOGLE #REQUESTED :
- Simple random DNS, HTTP/S internet traffic noise generator

1️⃣git clone https://github.com/1tayH/noisy.git

2️⃣cd noisy

3️⃣pip install requests

4️⃣python noisy.py --config config.json

5️⃣$ python noisy.py --help
usage: noisy.py [-h] [--log -l] --config -c [--timeout -t]

🦑optional arguments:
-h, --help show this help message and exit
--log -l logging level
--config -c config file
--timeout -t for how long the crawler should be running, in seconds

🦑Build Using Docker
Build the image

1️⃣docker build -t noisy .

Or if you'd like to build it for a Raspberry Pi (running Raspbian stretch):

2️⃣docker build -f Dockerfile.pi -t noisy .

Create the container and run:

3️⃣docker run -it noisy --config config.json


✅topic 2020 git
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

✅Bin For PlayStore
BIN : 515462003565xxxx
IP : USA
Date: GNR
Cvv: Gnr
ZIP : 10080 - 10010

Again whatsapp face new issue online-offline & status starting in india and now all contries : error not determined till now

🦑 As Russians Say: Why whatsapp have issue now :


1) New feature, users will be able to choose the date of sending or receiving a message by clicking on the calendar icon in search mode. According to WABetaInfo, now the innovation is at the alpha testing stage.

2) At the end of April, WhatsApp doubled the number of people who can simultaneously participate in audio and video calls. Thus, the number of possible participants in group calls increased from four to eight
.....