Posted by Avik Sarkar
On 1/08/2012 05:40:00 pm
We all are very familiar with Distributed Denial Of Service (DDoS) attack where a massive number of computers are used (and often hijacked) in order to barrage a website with requests & huge traffic load and effectively shut it down or send it offline. What you may not know is that there are denial of service (DoS) methods that don't need to be so distributed. So says security researcher Sergey Shekyan, who has developed a proof of concept that is a "Slow HTTP DoS." The "slow" method essentially makes an HTTP request to a server but does so in a way that can cause the server to hang. This method means that thousands of PCs may not be needed in order to execute a DoS attack. Sheykan describes it with our favorite kind of analogy, the kind involving burgers:-
"Imagine a line at a fast food restaurant that serves two types of burgers, and a customer at the cashier is stuck for a while deciding what he wants to order, making the rest of the line anxious, slowing down the business. Now imagine a line at the same restaurant, but with a sign saying "think ahead of your order," which is supposed to speed things up. But now the customer orders hundreds of burgers, pays, and the line is stuck again, because he can take only 5 burgers at time to his car, making signs ineffective"
The bad news, Sheykan says, is that the default configurations for popular webserver software like Apache, nginx, IIS 6 & 7, and lighttpd are all vulnerable. However, there are steps that server administrators can take to minimize exposure and it's just a proof of concept right now, not an in-the-wild attack.
To Know in details click Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 8/23/2011 11:18:00 pm
SQL-i Vulnerability found by w3bd3f4c3r & n3ll4!h4ck3r (T34mT!g3R) on the official website of Kathmandu Metropolitan City (Govt. Of Nepal). The hackers also hacked the DB and sensitive credentials like server information and admin credentials and so on.
Vulnerable Website:-
Vulnerable Link:-
http://www.kathmandu.gov.np/index.php?cid=153&pr_id=183
Server Details:-
Host IP: 205.234.235.248
Web Server: Apache
Powered-by: PHP/5.2.13
Keyword Found: 07:07:18
Injection type is Integer
Keyword corrected: 07:07:26
DB Server: MySQL
Admin Details:-
username : admin
password : 00186efe593f6a75fe43a2a9187a2fcf
email : info@kathmandu.gov.np
phone no.: +977984111111
To See The Hacked Database Click Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 7/13/2011 09:06:00 pm
Official website of Indian cyber Force (indiancyberforce.in) Hacked By Shadow008. He also Exposed the DB, which is available for download.
Hacked Sites:-
Mirror Link:-
&
More Details:-
Method :- KhantastiC meth0d
Team Members:- KhantastiC haXor - InnOcent Hacker - ReXor HaXor -
LOV3 tO : All Muslims and Pakistanis -Dr.tr0Jan -SqL_MaSt3r - Dr.Viru$ - PretoriaN - ErmaL - bh - Shad0w008 -Killermind - Mkhan - Jerry - Rafay - IPv6 Aka Faruk - SyedZada-- PakCyberArmy (Shak) nd all Paki L33tS
################################################## ###########################################
server IP : 64.37.52.2
Host Name : aspire.nsjet.com
Uname -a : Linux aspire.nsjet.com 2.6.18-238.12.1.el5.centos.plus #1 SMP Wed Jun 1 11:12:25 EDT 2011 x86_64 x86_64 x86_64 GNU/Linux
Server : Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.5
safe_mode: OFF
id : uid=1237(mfriendz) gid=1237(mfriendz) groups=1237(mfriendz)
MySQL DETAILS :-
$config['MasterServer']['username'] = 'mfriendz_Forum';
$config['MasterServer']['password'] = 'ICF@ForumPass';
$config['Database']['dbname'] = 'mfriendz_ICFforum';
http://indiancyberforce.in/admincp
USer : ICFAdminUser
pass : **********
Email admin@indiancyberforce.in
Database Link : http://www.mediafire.com/?b5spav2xca9ghqi
Archive Password:- pakistan
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 5/02/2011 12:07:00 am
The samhain open source host-based intrusion detection system (HIDS) provides file integritychecking and logfile monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.
It has been designed to monitor multiple hosts with potentially different operating systems, providing centralized logging and maintenance, although it can also be used as standalone application on a single host.
Difference between the previous version and the new one:-
- Some bugs have been fixed that under certain circumstances would cause samhain to hang or crash when reloading the configuration file.
- A compile error in the samhain_hide.ko kernel module has been fixed. However, it has been found that this module will not work anymore with recent kernels because of protection measures introduced in newer kernel.
- A contributed patch for samhainadmin.pl has been included (allows to specify the location of the secret keyring).
- The (l)stat timeout has been increased to fix spurious timeouts under heavy load.
- The Apache logfile parser has been enhanced to allow the insertion of arbitrary regexes into the format definition.
- New options PortcheckMinPort, PortcheckMaxPort allow to define the port range for the openports check (requested feature).
Download SAMHAIN v2.8.4 (samhain-current.tar.gz) here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 12/17/2011 11:59:00 pm
Tor 0.2.3.9-alpha introduces initial IPv6 support for bridges, adds a "DisableNetwork" security feature that bundles can use to avoid touching the network until bridges are configured, moves forward on the pluggable transport design, fixes a flaw in the hidden service design that unnecessarily prevented clients with wrong clocks from reaching hidden services, and fixes a wide variety of other issues.
Features:-
- Clients can now connect to private bridges over IPv6. Bridges still need at least one IPv4 address in order to connect to other relays. Note that we don't yet handle the case where the user has two bridge lines for the same bridge (one IPv4, one IPv6). Implements parts of proposal 186.
- New "DisableNetwork" config option to prevent Tor from launching any connections or accepting any connections except on a control port.
- Bundles and controllers can set this option before letting Tor talk to the rest of the network, for example to prevent any connections to a non-bridge address. Packages like Orbot can also use this option to instruct Tor to save power when the network is off.
- Clients and bridges can now be configured to use a separate "transport" proxy. This approach makes the censorship arms race easier by allowing bridges to use protocol obfuscation plugins. It implements the "managed proxy" part of proposal 180 (ticket 3472).
- When using OpenSSL 1.0.0 or later, use OpenSSL's counter mode implementation. It makes AES_CTR about 7% faster than our old one (which was about 10% faster than the one OpenSSL used to provide). Resolves ticket 4526.
- Add a "tor2web mode" for clients that want to connect to hidden services non-anonymously (and possibly more quickly). As a safety measure to try to keep users from turning this on without knowing what they are doing, tor2web mode must be explicitly enabled at compile time, and a copy of Tor compiled to run in tor2web mode cannot be used as a normal Tor client. Implements feature 2553.
- Add experimental support for running on Windows with IOCP and no kernel-space socket buffers. This feature is controlled by a new "UserspaceIOCPBuffers" config option (off by default), which has no effect unless Tor has been built with support for bufferevents, is running on Windows, and has enabled IOCP. This may, in the long run, help solve or mitigate bug 98.
- Use a more secure consensus parameter voting algorithm. Now at least three directory authorities or a majority of them must vote on a given parameter before it will be included in the consensus. Implements proposal 178.
Major Bugfixes:-
- Hidden services now ignore the timestamps on INTRODUCE2 cells.
- They used to check that the timestamp was within 30 minutes of their system clock, so they could cap the size of their replay-detection cache, but that approach unnecessarily refused service to clients with wrong clocks. Bugfix on 0.2.1.6-alpha, when the v3 intro-point protocol (the first one which sent a timestamp field in the INTRODUCE2 cell) was introduced; fixes bug 3460.
- Only use the EVP interface when AES acceleration is enabled, to avoid a 5-7% performance regression. Resolves issue 4525; bugfix on 0.2.3.8-alpha.
Privacy/Anonymity Features (bridge detection):-
- Make bridge SSL certificates a bit more stealthy by using random serial numbers, in the same fashion as OpenSSL when generating self-signed certificates. Implements ticket 4584.
- Introduce a new config option "DynamicDHGroups", enabled by default, which provides each bridge with a unique prime DH modulus to be used during SSL handshakes. This option attempts to help against censors who might use the Apache DH modulus as a static identifier for bridges. Addresses ticket 4548.
To Download Tor 0.2.3.9-alpha Click Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 4/30/2011 03:09:00 am
Inside JOB director Chalrels Ferguson to Helm film about Wiki Leaks founder Julian Assanger for HBO. His financial crisis documentary Inside Job took home the Academy Award for Best Documentary earlier this year, but now director Charles Ferguson is moving into the realm of fact-based drama for HBO. Deadline reports he will be at the helm of a new film about WikiLeaks founder and headline grabber Julian Assange. HBO is working with BBC on the project which will use Raffi Khatchadourian’s New Yorker article, No Secrets: Julian Assange’s Mission for Total Transparency, as the source material. The article itself follows Assange and WikiLeaks operatives as they embark on their mission to leak a 38-minute classified video taken inside the cockpit of a U.S. Army Apache Helicopter. With as much attention as Assange has gotten in the news recently, the film should certainly be of interest to viewers. Can I suggest Neil Patrick Harris to play Assange?
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 8/22/2011 05:17:00 pm
National Telecommunication Authority of Nepal hacked by w3bdf4c3r & n3ll4!h4ck3r. According to the hacker there was SQL-i vulnerability on their site, using that they hacked the entire Database exposed including admin details
Website:-
Vulnerable Link:-
www.nta.gov.np/en/aboutus/index.php?id=7
Exposed DB & Admin Credentials:-
##############ADMIN DETAILS#####################
USERNAME : Administrator
PASSWORD : cWccBbcbcLPCAYtMBA+c9jz6Q/Gvgn5FEPWxuwewFwY
##############SERVER DETAILS####################
web server operating system: Linux Debian or Ubuntu 6.0 (unstable sid or testing squeeze)
web application technology: Apache 2.2.16
back-end DBMS: MySQL 5.0
available databases [2]:
[*] dbase_nta
[*] information_schema
#########DATABASE NAMES############
Database: dbase_nta
[29 tables]
+----------------------+
| ajaxim_chats |
| ajaxim_users |
| poll_answers |
| poll_options |
| poll_questions |
| tblaboutus |
| tbladmin |
| tblarticles |
| tblemailtemplate |
| tblemployee |
| tblflashnews |
| tblgroup |
| tblindustry |
| tbllicenselist |
| tbllink |
| tbllinktype |
| tblmenu |
| tblmisreport |
| tblnewsnevents |
| tblperformanceform |
| tblperformancereport |
| tblpublicnotice |
| tblsettings |
| tblsitecontent |
| tblsitedefinition |
| tblsubscriber |
| tblsuccessstory |
| tbltestimonials |
| tblwhatsnew |
+----------------------+
Database: dbase_nta
Table: tbladmin
[8 columns]
+--------------------+-------------+
| Column | Type |
+--------------------+-------------+
| account_created_on | datetime |
| admin_id | int(11) |
| fullname | varchar(90) |
| last_logged_on | datetime |
| logged_times | int(11) |
| password | varchar(90) |
| user_type | int(11) |
| username | varchar(90) |
+--------------------+-------------+
Database: dbase_nta
Table: tbladmin
[7 entries]
+---------------+
| username |
+---------------+
| Administrator |
| newadmin |
| License |
| skhatiwada |
| employee |
| shiva |
| hiranya |
+---------------+
Database: dbase_nta
Table: tbladmin
[7 entries]
+-----------------------------------------------------+
| password |
+-----------------------------------------------------+
| cWccBbcbcLPCAYtMBA+c9jz6Q/Gvgn5FEPWxuwewFwY= |
| kDe+yWtg8ig1c7u/xUFGUNW346lxji9dULxj0zEgDpo= |
| dbeHX/VJnZX/k1WWX1/PgNtQ9J3vOAH4wRbOknMZpmM= |
| Cgvlz3lhqdQjnJme8mPyPbIz4aAcNrbcBrbG+qng10I= |
| ktvKe8xBnYQSdYdCXXqsUe1NPdyxubXuDiZqZhOc8U8= |
| b12d9c7d622fbf7c4d1ed40a3b13ada1ab342c5a (newworld) |
| tR2rHWvfuW1jUXZmetwRs+ggUx4D5ROXqBwOqG87Mos= |
+-----------------------------------------------------+
Database: dbase_nta
Table: tbladmin
[7 entries]
+-------------------+
| fullname |
+-------------------+
| Udaya Raj Regmi |
| new admin |
| License Section |
| Sunil Khatiwada |
| employee |
| shiva ram |
| HIiranya Bastkoti |
+-------------------+
Database: dbase_nta
Table: ajaxim_users
[7 columns]
+-----------+---------------------+
| Column | Type |
+-----------+---------------------+
| buddylist | text |
| email | text |
| id | bigint(20) unsigned |
| is_online | int(11) |
| last_ping | text |
| password | text |
| username | text |
+-----------+---------------------+
Database: dbase_nta
Table: ajaxim_users
[3 entries]
+-------------+
| username |
+-------------+
| sumanshakya |
| testuser |
| admin |
+-------------+
Database: dbase_nta
Table: ajaxim_users
[3 entries]
+-----------------------+
| email |
+-----------------------+
| nqholder@hotmail.com |
| test@test.com |
| nqholdesr@hotmail.com |
+-----------------------+
Database: dbase_nta
Table: ajaxim_users
[3 entries]
+-------------------------------------------+
| password |
+-------------------------------------------+
| 0e02d54612f4e7e959aea25c5a43a2ea |
| 098f6bcd4621d373cade4e832627b4f6 (test) |
| 21218cca77804d2ba1922c33e0151105 (888888) |
+-------------------------------------------+
Database: dbase_nta
Table: tblemployee
[9 columns]
+----------------+---------------+
| Column | Type |
+----------------+---------------+
| department | tinytext |
| dt_appointment | date |
| email | varchar(200) |
| emp_id | int(11) |
| fullname | varchar(300) |
| grp_id | int(11) |
| isenable | enum('Y','N') |
| post | text |
| qualification | text |
+----------------+---------------+
Database: dbase_nta
Table: tblemployee
[5 entries]
+------------------+
| fullname |
+------------------+
| Shakya
Suman |
| ss |
| Suman Shakya |
| Sam Shrestha |
| Suresh Shrestha |
+------------------+
Database: dbase_nta
Table: tblemployee
[5 entries]
+-------------------------+
| email |
+-------------------------+
| nqholder@hotmail.com |
| suman.nta.com.np |
| nqholder@hotmail.com |
| sam@nta.com.np |
| sureshthedude@gmail.com |
+-------------------------+
For More Info Click
Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 3/31/2013 03:20:00 pm
Jadavpur University Official Website is Vulnerable to Sql Injection
An
ethical hacker from
India named
Chirag Singh have figured out serious
loopholes in the official website of
Jadavpur University -one of the most renowned and prestigious university of India. Chirag find blind
Sql injection vulnerability which can be exploited by malicious purpose in order to harm the website and gain access. From the vulnerability report submitted by the hacker, it has been found that the web-server of Jadavpur University is using
Red Hat Enterprise Linux 5 (Tikanga) where the web application technologies are Apache 2.2.3 and PHP 5.1.6; along with the back-end database is
PostgreSQL. The hackers also managed to dump
11 database with more than
215 tables as shown in the picture below
This issue has already been reported to the concern person and the webmaster of Jadavpur University, and due to security and privacy we are not exposing and mention the vulnerable link and dumped database.
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 5/06/2011 01:05:00 am
Online commerce service provider, CCAvenue, has denied that its portal has been hacked.
Vishwas Patel, CEO, CCAvenue told NDTVGadgets, "I confirm that the image posted by a hacker is a spoofed, self-created one and not that of our database and it has been created just to create panic and defame our company. We are in the process of filing a criminal complaint against the unknown hacker for the slander and malicious campaign run against our company."
Earlier today, we reported that a hacker claimed to have broken into CCAvenue by exploiting "SQL injection vulnerability". The hacker, identifying himself as d3hydr8, submitted what he called a full disclosure of his attack on HackerRegiment.com. The "report" included what the hacker said were all the admin usernames and passwords of the CCAvenue portal.
In what was his first reaction on this, Vishwas Patel said, "First and most [we] would like to say that this a slanderous campaign that is targeting CCAvenue. Based on our initial investigations by our security officials, we confirm that no hack has happened of our servers at 1515 hours on 04th May 2011 by the following person, as claimed in his article. We also confirm that that the screenshot is not of our live database as the Apache version on live server is 2.2.17 (Updated more than 5 months ago) and not 2.2.14 (as claimed by the hacker). We also confirm that all the passwords of our merchants and all login credentials in our live database are encrypted and stored in our database and not in text format as claimed by the hacker."
He also assured that, "We don't store credit card details or Netbanking account details on our servers."
HackerRegiment has published the details submitted by the hacker but has maintained discretion by blurring the "passwords". The information published includes a list of databases, some information on tables within the databases, and screenshots of the administrator usernames and passwords.
HackerRegiment.com also claims to have reported the issue to CERT (Computer Emergency Response Team) India to help CCAvenue take corrective action before any information is released through any other media.
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 4/29/2011 02:56:00 am
John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes
New Features of JtR version 1.7.7:
- Added Intel AVX and AMD XOP instruction sets support for bitslice DES (with C compiler intrinsics). New make targets: linux-x86-64-avx, linux-x86-64-xop, linux-x86-avx, and linux-x86-xop (these require recent versions of GCC and GNU binutils).
- A “dummy” “format” is now supported (plaintext passwords encoded in hexadecimal and prefixed with “$dummy$”) – for faster testing and tuning of custom wordlists, rule sets, .chr files, and external modes on already known or artificial passwords, as well as for testing of future and modified versions of John itself.
- Apache “$apr1$” MD5-based password hashes are now supported along with the FreeBSD-style MD5-based crypt(3) hashes that were supported previously. Hashes of both of these types may be loaded for cracking simultaneously.
- The “–salts” option threshold is now applied before removal of previously cracked hashes for consistent behavior with interrupted and continued sessions. (Suggested by magnum.)
The “Idle = Y” setting (which is the default) is now ignored for OpenMP-enabled hash types when the actual number of threads is greater than 1. (Unfortunately, it did not work right at least with GNU libgomp on Linux.)
- When a cracking session terminates or is interrupted, John will now warn the user if the cracked passwords printed to the terminal while cracking are potentially incomplete. It will advise the user to use the “–show” option to see the complete set of cracked passwords with proper post-processing.
- When loading hashes specified on a line on their own (feature introduced in 1.7.6), the loader will now ignore leading and trailing whitespace.
- Unless a hash type is forced from the command line, the loader will now print warnings about additional hash types seen in the input files (beyond the hash type autodetected initially).
- For use primarily by the jumbo patch (and later by future enhancements to the official versions as well), the loader now includes logic to warn the user of ambiguous hash encodings (e.g. LM vs. NTLM vs. raw-MD5, all of which may be represented as 32 hexadecimal characters) and of excessive partial hash collisions, which it works around (these are typically caused by an incomplete implementation of a new hash type).
- The “unique” and “unshadow” programs have been made significantly faster.
- “DateTime”, “Repeats”, “Subsets”, “AtLeast1-Simple”, “AtLeast1-Generic”, and “Policy” external mode samples have been added to the default john.conf.
- The self-tests have been enhanced to detect more kinds of program bugs.
- A few minor bug fixes and enhancements were made.
This version has been sponsered by Rapid7.
Download John the Ripper v1.7.7 (john-1.7.7-jumbo-1.tar.gz/john-1.7.7-jumbo-1.tar.bz2) here.
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 9/01/2011 04:01:00 pm
The official Website of Ministry Of Home Affairs Of Bangladesh is Vulnerable to SQL-i said Team T!g3R. w3bd3f4c3r, n3ll@!s@mur4!, r00t, burn3r 3 members of (Team T!g3R) hacked into the DB of that site and exposed DB info including DB name, tables, online user details, admin credentials
Server Info:-
Target : http://www.mha.gov.bd/index5.php?category=105
Host IP : 202.79.16.14
Web Server: Apache/2.2.3 (CentOS)
Powered-by: PHP/5.1.6
DB Server : MySQL >=5
Resp. Time(avg):7161 ms
Current User: mha@localhost
Sql Version: 5.0.77
Current DB : mha
System User: mha@localhost
Host Name : webstar
Installation dir:/usr/
DB User : 'mha'@'localhost'
Admin Details:-
USERNAME : behari
PASSWORD : bbn19741
For More Information and see the hacked DB Click
Here
Here are some screen shots Submitted By the Hacker:-
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 5/22/2012 10:34:00 pm
Nmap 6 Released With Full IPv6 Support, Better Web Scanning & 289 New Scripts
Earlier we have discussed several times about
Nmap. Now the Nmap Project is pleased to announce the immediate, free availability of the Nmap Security Scanner
version 6.00. According to the project release - this product of almost three years of work, 3,924 code commits, and more than a dozen point releases since the big
Nmap 5 release in July 2009. Nmap 6 includes a more powerful Nmap Scripting Engine, 289 new scripts, better web scanning, full IPv6 support, the Nping packet prober, faster scans, and much more.
Top 6 improvements in Nmap 6:-
- 1. NSE Enhanced
- The Nmap Scripting Engine (NSE) has exploded in popularity and capabilities. This modular system allows users to automate a wide variety of networking tasks, from querying network applications for configuration information to vulnerability detection and advanced host discovery. The script count has grown from 59 in Nmap 5 to 348 in Nmap 6, and all of them are documented and categorized in our NSE Documentation Portal. The underlying NSE infrastructure has improved dramatically as well.
- 2. Better Web Scanning
- As the Internet has grown more web-centric, Nmap has developed web scanning capabilities to keep pace. When Nmap was first released in 1997, most of the network services offered by a server listened on individual TCP or UDP ports and could be found with a simple port scan. Now, applications are just as commonly accessed via URL path instead, all sharing a web server listening on a single port. Nmap now includes many techniques for enumerating those applications, as well as performing a wide variety of other HTTP tasks, from web site spidering to brute force authentication cracking. Technologies such as SSL encryption, HTTP pipelining, and caching mechanisms are well supported.
- 3. Full IPv6 Support
- Given the exhaustion of available IPv4 addresses, the Internet community is trying to move to IPv6. Nmap has been a leader in the transition, offering basic IPv6 support since 2002. But basic support isn't enough, so we spent many months ensuring that Nmap version 6 contains full support for IP version 6. And we released it just in time for the World IPv6 Launch. We've created a new IPv6 OS detection system, advanced host discovery, raw-packet IPv6 port scanning, and many NSE scripts for IPv6-related protocols. It's easy to use too—just specify the -6 argument along with IPv6 target IP addresses or DNS records. In addition, all of our web sites are now accessible via IPv6. For example, Nmap.org can be found at 2600:3c01::f03c:91ff:fe96:967c.
- 4. New Nping Tool
- The newest member of the Nmap suite of networking and security tools is Nping, an open source tool for network packet generation, response analysis and response time measurement. Nping can generate network packets for a wide range of protocols, allowing full control over protocol headers. While Nping can be used as a simple ping utility to detect active hosts, it can also be used as a raw packet generator for network stack stress testing, ARP poisoning, Denial of Service attacks, route tracing, etc. Nping's novel echo mode lets users see how packets change in transit between the source and destination hosts. That's a great way to understand firewall rules, detect packet corruption, and more.
- 5. Better Zenmap GUI & results viewer
- While Nmap started out as a command-line tool and many (possibly most) users still use it that way, we've also developed an enhanced GUI and results viewer named Zenmap. One addition since Nmap 5 is a “filter hosts” feature which allows you to see only the hosts which match your criteria (e.g. Linux boxes, hosts running Apache, etc.) We've also localized the GUI to support five languages besides English. A new script selection interface helps you find and execute Nmap NSE scripts. It even tells you what arguments each script supports.
- 6. Faster scans
- In Nmap's 15-year history, performance has always been a top priority. Whether scanning one target or a million, users want scans to run as fast as possible without sacrificing accuracy. Since Nmap 5 we've rewritten the traceroute system for higher performance and increased the allowed parallelism of the Nmap Scripting Engine and version detection subsystems. We also performed an intense memory audit which reduced peak consumption during our benchmark scan by 90%. We made many improvements to Zenmap data structures and algorithms as well so that it can now handle large enterprise scans with ease.
For detailed information click here. And to download
Nmap 6 for Windows, Linux and many UNIX platforms (Solaris, Free/Net/OpenBSD, etc.) included Zenmap, the GUI frontend Click
Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 9/04/2011 05:57:00 pm
The official website of Stanford University's Nanoelectronics Group is Vulnerable to SQL-i and its DB Hacked By An0nym0us sn3Ak3r. The hacker exposed many information like Db name, Tables, Column, user credentials, admin details and so on.
Vulnerable Site:- http://nano.stanford.edu/
Host IP: 171.67.216.22
Web Server: Apache
DB Server: MySQL
Column Count is 10
String Column is 2
User Credentials:-
User Name=superadmin
Password=93a76158cafcd6bd9227607a5f5bd8eaf36ac7d8
User Name=addcontent
Password=fd9b61ca989759ecb0cd0ae5298e2c61f8e0add7
User Name=hspwong
Password=4ba878ab4d1d19d3
User Name=mrlinPassword=f87f8271afa4e5c2380822d33d37f132c4c6675b
To See The hacked DB Click
Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 1/20/2012 09:13:00 pm
Developers of OpenSSL has released their new version 1.0.0g and 0.9.8t of OpenSSL to address a denial of service issue introduced by one of the six fixes included in the version they released earlier this month. The problem was created by the fix for a critical vulnerability in the CBC ("Cipher block chaining") encryption mode which enabled plaintext recovery of OpenSSL's implementation of DTLS (Datagram TLS). Accordingly, the
advisory notes that the DoS flaw only affects users using DTLS applications that use OpenSSL 1.0.0f and 0.9.8s. The developers credit Antonio Martin of Cisco Systems for discovering the bug and preparing the fix for it.
The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. The project is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and develop the OpenSSL toolkit and its related documentation.
OpenSSL is based on the excellent SSLeay library developed by Eric A. Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an Apache-style licence, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions.
To Download The Source Code Click Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 5/09/2013 04:30:00 pm
Debian Linux 7.0 Code Named 'Wheezy' Released & Added Multiarch Support, Several Specific Tools
Once it was
one of the most popular Linux distribution which have drawn the maximum
attention, yes you are right I am talking about none other than Debian Linux. Now
a days the craze of this flavor has became little fade but as
the foundation for other, more popular Linux distributions, such as Mint, Ubuntu and few Pen
Testing Distro, still the value of Debian exist. So
the up-gradation and new release of this Linux flavor is
still very much important. And today I will talk about the new release
of Debian Linux
version 7.0 code named 'Wheezy'. After many months of constant development, the developers at Debian
project proudly announced the
general availability of the next version of this major Linux which is
Debian 7.0 aka 'Wheezy'. According to the release note - This new version of Debian includes various interesting
features such as multiarch
support, several specific
tools to deploy private clouds, an improved installer, and a complete set of multimedia
codecs and front-ends which remove the need for third-party repositories. Multiarch support,
one of the main release goals for Wheezy
, will allow Debian users to install packages from multiple
architectures on the same machine. This
means that you can now, for the first time, install both 32- and 64-bit
software on the same machine and
have all the relevant dependencies correctly resolved, automatically. The installation process has been greatly improved: Debian
can now be installed using software speech, above all by visually impaired
people who do not use a Braille device. Thanks to the combined efforts of a
huge number of translators, the installation system is available in 73 languages, and
more than a dozen of them are available for speech synthesis too. In addition, for the first time, Debian supports installation and booting
using UEFI for new 64-bit PCs (amd64), although there is no support for Secure Boot yet.
This Release Includes Numerous Updated Software Packages, Such as:-
- Apache 2.2.22
- Asterisk 1.8.13.1
- GIMP 2.8.2
- An updated version of the GNOME desktop environment 3.4
- GNU Compiler Collection 4.7.2
- Icedove 10 (an unbranded version of Mozilla Thunderbird)
- Iceweasel 10 (an unbranded version of Mozilla Firefox)
- KDE Plasma Workspaces and KDE Applications 4.8.4
- kFreeBSD kernel 8.3 and 9.0
- LibreOffice 3.5.4
- Linux 3.2
- MySQL 5.5.30
- Nagios 3.4.1
- OpenJDK 6b27 and 7u3
- Perl 5.14.2
- PHP 5.4.4
- PostgreSQL 9.1
- Python 2.7.3 and 3.2.3
- Samba 3.6.6
- Tomcat 6.0.35 and 7.0.28
- Xen Hypervisor 4.1.4
- The Xfce 4.8 desktop environment
- X.Org 7.7
Along with these more than other 36,000 ready-to-use software packages, built from nearly 17,500 source packages also included in Debian Linux 7.0. So after reading all those cool features, what you are waiting for lets download the installation image via bittorrent (the recommended method), jigdo, or HTTP.
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 10/17/2011 02:36:00 pm
Department of Homeland Security (DSH) released a new bulletin A-0011-NCCIC -120020110914 (U//FOUO) saying that Anonymous and Associated hackers groups are developing and deploying new cyber attack tools. The bulletin contains brif of Anon, Their attacks on the Internet, cyber attack tools, exploits (LOIC, #RefRef, Apache Killer, URGE, Anonware) and so on.
For More information and to download the bulletin Click
Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
Posted by Avik Sarkar
On 9/10/2011 12:35:00 am
The official website of Office of President (Nepal Govt.) is vulnerable to SQL-i, their entire database has been hacked by w3bd3f4c3r, n3ll@!s4mur@!, !nd!@nRuBuk, 5!l3nt k!ll3r, r00t, burn3r (Team T!g3R). The hacker group exposed sensitive credentials like admin details, server info, db user name & password, Tables nad lots more.
Host IP: 202.166.216.235
Web Server: Apache/2.2.11 (Unix) DAV/2 mod_ssl/2.2.11 OpenSSL/0.9.8k PHP/5.2.9 mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.10.0
Powered-by: PHP/5.2.9
DB Server: MySQL >=5
Current DB: dbpresident
Current User: root@localhost
Sql Version: 5.1.33
Current DB: dbpresident
System User: root@localhost
Host Name: eroc.presidentofnepal.gov.np
Installation dir: /opt/lampp/
Db User & Pass: root:*4CA67FA19DAB93064ACF48DD5B62C638C79E9424:localhost
Db User & Pass: root:*4CA67FA19DAB93064ACF48DD5B62C638C79E9424:linux
Db User & Pass: ::localhost
Db User & Pass: ::linux
Db User & Pass: pma::localhost
Admin Details:-
admin_id=1
user_name=admin
pass_word=deb4ad7b764f33a331a8b722323ad257
user_level=1
Here are some Screen shots Submitted by The Hacker To prove the Data Breach:-
For more info and to see the hacked DB click
Here
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-
