Daftar Blog Saya

Rabu, 13 Januari 2016

Duplicate website with wget in Kali Linux

During the "Reconnaissance" phase we might need to frequently access the targeted website and this can trigger some alarms. I used to rely on Httrack – or WebHttrack – for making one-on-one offline copies for a given web-page, but for some odd reasons it doesn't work on my current Kali installation. For those who want to give WEBHTTRACK a chance, one thing you need to remember: it's not included by default in Kali. In order to install webhttrack type the following:

apt-get update
apt-get install webhttrack
to get the full GUI version, or
apt-get update
apt-get install httrack
to get the command-line version only.

Searching for alternative easy ways to do it, I've found this tutorial from kossboss – all the credit goes there.
Open a terminal and type mkdir /mywebsitecopy/ and then
cd / mywebsitecopy – you can name the folder in any way you wish.
Now (copy and paste):
wget --limit-rate=200k --no-clobber --convert-links --random-wait -r -p -E -e robots=off -U mozilla http://www.siteyouwanttocopy.com
Replace the www.siteyouwanttocopy.com with the actual name of your targeted web-page. Below is the explanation of each command:

--limit-rate=200k: Limit the download to 200 Kb/sec – higher download rates might seem suspicious.
--no-clobber: don't overwrite any existing files (used in case the download is interrupted and
resumed).
--convert-links: convert links so that they work locally, off-line, instead of pointing to a website online.
--random-wait: Random waits between download – same reason as for the limit-rate.
-r: Recursive - downloads full website
-p: downloads everything, including pictures.
-E: gets the right extension of the file.
-e robots=off: prevent the website from considering your session as a robot/crawler.
-U mozilla: pretends to be just like a web-browser.

Once the download is completed you can find the offline copy in /nameofthefolder you used for saving your downloaded page – look for the home/index.html page.

Senin, 31 Agustus 2015

Cracking Password MD5 Using Kali Linux

MD5 (Message-Digest algortihm 5) is cryptographic hash function to wide according to hash value 128-bit. The internet standart (RFC 1321), MD5 use do all sorts of things in secure applications, and MD5 use also to exam integrity a bundle.
okeyy...let's go to practices :
1.  open terminal
2.  type in terminal 'findmyhash MD5 -h  teks_md5' > enter'

Happy Hacking

Selasa, 11 Agustus 2015

Cracking Password Winrar

 We frequently use zipped files due to its small size and strong encryption algorithm. These zipped files comes with a facility of password protection which maintains the security of the files.
But sometimes this security feature turns into a drawback if we somehow forget the password. In that case the password cracker play their role. You can also use them if you downloaded a zipped file with password protection on it.
In my last article, if you followed then we learned to make a bootable USB of backtrack. So here I'm gonna introduce a tool which is present in Backtrack and if you have no past experience with Linux then no issues you can start from here. The open source tool we are gonna use is called fcrackzip.
fcrackzip is a fast password cracker partly written in assembler. It is able to crack password protected zip files with brute force or dictionary based attacks, optionally testing with unzip its results.

Rabu, 29 Juli 2015

SQL injection

SQL Injection merupakan cara hack website yang paling banyak digunakan oleh para hacker. Kenapa? Karena dengan melakukan SQL injection, kita dapat langsung mengetahui username dan password dari website yang akan kita bajak. Kok bisa gitu? Kasih tau gak yah? hehe, ya udah siapin kopi dulu sana terus lanjut bacanya karena untuk melakukan teknik ini dibutuhkan kesabaran ekstra,hehe..

Rabu, 04 Februari 2015

I Delete a Blog on Blogger





 Today many blogs that allow users neglected blog. Various preoccupations of bloggers so just let his blog. Of course this is very detrimental to the new blog users because the number of blog address they like no / reduced.
Here's how to remove an abandoned blog
Good luck ....



1. Sign in go to the dashboard blog.

 









2. The dashboard and then point to the drop-down menu select Setelan.











3.  Then on the left sidebar, click on Lainnya











4. Then click on the Blog Tools and klik on Hapus Blog










note :  Before deleting blog, you can download your blog for another time then the exported by clicking the Unduh Blog. To immediately remove the blog, press Hapus Blog Ini..

The view that has been deleted













Jumat, 08 Juni 2012

Upload Vulnerability

Upload is process of transmitting a file from a computer system to other computer systems. Attacker to upload files to insert in accordance with the desired command so that it can remotely victim. This attack is passive as it waits for the victim to take action on a file that is uploaded.





XSS


XSS is a hacking technique that uses a script-injection method with a certain gap in a web page. The gap can sometimes be through the input form, or by modifying the URL parameter. The script that is injected, there are several kinds, can HTML tags, JavaScript, PHP, ASP (as web server), etc.
There are two methods used in using the XSS :