SlideShare une entreprise Scribd logo

Hack the book Mini

Khairi Aiman
Khairi Aiman

This is the first Mini Hack The Book Released in Power Point Format.

Technologie
1  sur  12
Télécharger pour lire hors ligne
Hery Intelligent Technology IT Solution Center Network Security Penetrating Testing IT Community Malaysia (ITCom) http://www.itcom.activeboard.com/
DEFINITION In the computer security context, a hacker is someone who seeks and exploits weaknesses in a computer system or computer network. Hackers may be motivated by a multitude of reasons, such as profit, protest, or challenge. – Wikipedia. In other words, hacker is someone that able to make a hole at a security wall. The hole is any vulnerable of a host/server/computer. From the hole, hacker could inject a script to exploit the victim.
OBJECTIVES The main objectives of this slide is not going to tell you the very basic of hacking. In this slide I am not talking abut, What is Black Hat, White Hat, Blue Hat, Grey Hat or white hack of any hat of hacker. This is because, for me, if you know perfectly about the “hat”, you are still not a hacker. In a simple word, to be a hacker, you need knowledge about what script do, how the exploit work, why must use the payloads, what is the best OS to hack and the next hack of hack. Actually, this book is not show you “How to be a hacker”, because this slide I made it is not for the “Very Stupid Newbies” and also not for the “The Best Fuc*king Shit Master of Hacker”. The aim reader of this slides is for the intermediate, newbies, researcher, network security,, computer company, network developer, and more. This is because, this slides will touch a bit about basic hacking to support definition of hack, this slide will discuss about ideas of hacking and bit about social engineering.
TOOL’S LIST When the process of hacking take place, then the thing that very important is OS. What is OS? OS is Operating System. Example of OS is Windows XP, Vista, 7. Windows is provided by Microsoft. There is another OS that provided by different company such as Linux. In Linux, there is OS Ubuntu, Red Hat, Opera and more. In this case of hacking, we will differentiate Apple OS. Because Apple OS we will go thru accurately for the next slides. (Also for Android OS/Phone OS). The most popular OS in hacking world is Backtrack from Linux and Windows XP from Microsoft. Backtrack OS, there is many version. There is Backtrack 2,3,4,5. The latest is Backtrack 5 R3. But, nowadays, Backtrack is new OS of hacking in Linux, because the newest is Kali Linux 1.0.6 like that. The Kali Linux (KL) or Backtrack (BT) is different with the Windows XP. Windows XP is not built-to-hack like BT and KL. Hence, the KL and BT is a free OS that everyone can download from their website, but Windows XP is not a free OS. Windows XP is built-to-use. It is mean, or the Documentation work, graphic or anything else. It is very flexible to use compare to BT and KL is not to flexible.
TOOL’S LIST But, these two OS, there is the most very important thing that they are the same, it is these two OS is VULNERABLE. In other words, it could be hacked. That’s why these two OS can be use to hack. The tools most popular to use is on the list: Tools Uses OS Metasploit / armitage (Graphical) General Hacking Tools BT/Win Havij / SQLMap Website Hacking BT/Win Aircrack Wifi Hacking BT/Win Cisco Firewall Firewall PenTest BT Ettercap / Wireshark / Cain&Abel Sniffing BT/Win
TOOL’S LIST The list is not complete. But that is the most best tools. Besides that, to support that tools, there is some tools are need to let the tools above running well. The tools are: Tools Uses OS Zenmap / Netcat Scanner BT/Win MD5 HASH Decrypter BT/Win/Webs These tools are free tools and can get from the any hacker’s website.
TOOL’S LIST This is the flow how’s the tools work up: Aircrack The Aircrack will crack Wifi, then Zenmap scan IP, use firewall shutter to penetrate firewall, Metasploit try to penetrate, send exploit to collect data and crash system, use ettercap to collect cookies password. Web Browser Success Hacked! Metasploit Firewall (Cannot Defeated) Exploit & Payload Firewall Down Ettercap Hack Data Receive Password Receive Zenmap Remote Control Havij/ SQLMap Uploading Shell Finding URL, test vulnerability, vulnerable detected, decrypt hash, login to webs, upload a shell and access the data. Vulnerable Decrypt Hash Logged In Password Found
WHY SHOULD…? We must know about the terminology. It is because, when we know the actual definition of the term in hacking, then we can adapt something to be something uses. The example I will count it after this. The word that are important to know is ”Exploit”. Exploit is a “specialized” small programs that could that advantages and deliver a payload, which will grant attacker the control. Metasploit is a great tool that has a vast number of exploits. Payload is delivered by exploit and is used to control the remote system. Think of it this way. “Exploit is like terrorist that is carrying a bomb in his backpack. He enters the system and leaves his backpack there. Most popular and widely known payload is “meterpreter”, that has a lot of features. With it you can browse remote files, download them, upload your own, capture keystrokes and more. Through meterpreter, you can pivot and attack machines in networks that are not your own”
SOMETHING TO BE SOMETHING I will give you two options. If you are a newbie, maybe you feel like you want to try. If you are a intermediate hacker, you will see how we can adapt the Thins to be Something more good. #First: Hacking ATM Bank. When you are understand the flow above, then you will how is this work. “At the evening, you and your friends do to McDonald to buy something to eat. Then you bring your laptop. Behind the McD, there is a Bank. When you turn on your laptop, the Bank’s Wifi signal is detected. Then you crack the wifi, try to penetrate the firewall the you re being a remote control of the computer. Then you are using Zenmap to find the IP of the ATM machines, you found it, then you crack the Firewall and you re successfully. Upload the payload and exploit. Now, you are controlling the ATM Machines” – Actually, ATM machine are using Windows 2000 and oldest. This is mean, the OS of the ATM machine is easy to hack.
SOMETHING TO BE SOMETHING #Second: Hacking as a work. If you re noticed, when you re running BT, the sniffer is not work to the external network. The sniffer just work on your internal network. Social-Engineering-Toolkit (SET) also the same. Do you ever think that XAMPP and WAMP server is not work for external network but just work for internal network? So, how to make XAMPP and WAMP server work for external network (Globally)? The answer is registered your computer as a domain. Then people can connect to you. This is the same way: “You register your network as a Linux domain server, then running BT or KL. Then, your sniffer will work people globally. Then, promote your self to social network as a hired hacker. If someone need to hack, they must pay you. When they paying you, then you have to sniff the victim, get their password and sell it to “Needers”. The same thing for using Msf and SET.
SOMETHING TO BE SOMETHING The conclusion for this section is, you must be creative. You have to think what you need to do. What you need something to do the do. If you keep trying and trying and trying, you can make the hack with your own way. The computer is following you command, we made it, it is mean we can crack it! This note is note for bad purpose, even it is, but I just make it for researcher network security.
LAST WORDS These note are very important. I made these slide with to many words because I want to let all people know, to be a hacker is not only asking people with the stupid question ; “How to hack facebook?” , “please tell me how to hack”. This stupid question will not help you. You must READ, LEARN, TEST, BE BRAVE, then you will have it. These note have been created by the Moderator Of Network in IT Community Malaysia. – Http://www.itcom.activeboard.com/ . This website forum is vulnerable, but, please do not hack it. Because there is nothing important to hack. If you need something, just need to register and ask as many question you want. Lastly, I’ve made mistakes. I am a normal human, human will make mistakes. So, if you feel I am wrong, then just ask me, I will change it and discuss about it. I also beg apologize for my bad English Spelling, Grammar, Grandpa, Grander and so what the Hack Grand so on. Thank you, Call Me If You In Trouble, I am Sharper. Hery Intelligent Technology IT Solution Center Network Security Penetrating Testing IT Community Malaysia (ITCom) http://www.itcom.activeboard.com/

Recommandé

Password hacking
Password hackingPassword hacking
Password hackingAbhay pal
 
[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy steps[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy stepsLee Toulouse
 
Hacker halted2
Hacker halted2Hacker halted2
Hacker halted2samsniderheld
 
Ultimate Guide to Setup DarkComet with NoIP
Ultimate Guide to Setup DarkComet with NoIPUltimate Guide to Setup DarkComet with NoIP
Ultimate Guide to Setup DarkComet with NoIPPich Pra Tna
 
Learn awesome hacking tricks
Learn awesome hacking tricksLearn awesome hacking tricks
Learn awesome hacking tricksSudhanshu Mishra
 
Thou shalt not
Thou shalt notThou shalt not
Thou shalt nottaftosterone
 
Blind date with ur girlfriend
Blind date with ur girlfriendBlind date with ur girlfriend
Blind date with ur girlfriendGajendra Saini
 
Practical exploitation and social engineering
Practical exploitation and social engineeringPractical exploitation and social engineering
Practical exploitation and social engineeringTiago Henriques
 

Recommandé

Password hacking
Password hackingPassword hacking
Password hackingAbhay pal
 
[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy steps[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy stepsLee Toulouse
 
Hacker halted2
Hacker halted2Hacker halted2
Hacker halted2samsniderheld
 
Ultimate Guide to Setup DarkComet with NoIP
Ultimate Guide to Setup DarkComet with NoIPUltimate Guide to Setup DarkComet with NoIP
Ultimate Guide to Setup DarkComet with NoIPPich Pra Tna
 
Learn awesome hacking tricks
Learn awesome hacking tricksLearn awesome hacking tricks
Learn awesome hacking tricksSudhanshu Mishra
 
Thou shalt not
Thou shalt notThou shalt not
Thou shalt nottaftosterone
 
Blind date with ur girlfriend
Blind date with ur girlfriendBlind date with ur girlfriend
Blind date with ur girlfriendGajendra Saini
 
Practical exploitation and social engineering
Practical exploitation and social engineeringPractical exploitation and social engineering
Practical exploitation and social engineeringTiago Henriques
 
Password Stealing & Enhancing User Authentication Using Opass Protocol
Password Stealing & Enhancing User Authentication Using Opass ProtocolPassword Stealing & Enhancing User Authentication Using Opass Protocol
Password Stealing & Enhancing User Authentication Using Opass ProtocolPrasad Pawar
 
Overview of information security
Overview of information securityOverview of information security
Overview of information securityAskao Ahmed Saad
 
ETHICAL HACKING
ETHICAL HACKINGETHICAL HACKING
ETHICAL HACKINGNAWAZ KHAN
 
Who's that knocking on my firewall door?
Who's that knocking on my firewall door?Who's that knocking on my firewall door?
Who's that knocking on my firewall door?Bruce Wolfe
 
amrapali builders@@hacking ciphers.pdf
amrapali builders@@hacking ciphers.pdfamrapali builders@@hacking ciphers.pdf
amrapali builders@@hacking ciphers.pdfamrapalibuildersreviews
 
Welcome to the world of hacking
Welcome to the world of hackingWelcome to the world of hacking
Welcome to the world of hackingTjylen Veselyj
 
Practical Cyber Attacking Tutorial
Practical Cyber Attacking TutorialPractical Cyber Attacking Tutorial
Practical Cyber Attacking TutorialYam Peleg
 
Hushcon 2016 Keynote: Test for Echo
Hushcon 2016 Keynote: Test for EchoHushcon 2016 Keynote: Test for Echo
Hushcon 2016 Keynote: Test for EchoDeja vu Security
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hackingManish Mudhliyar
 
B-sides Las Vegas - social network security
B-sides Las Vegas - social network securityB-sides Las Vegas - social network security
B-sides Las Vegas - social network securityDamon Cortesi
 
Hackers The Anarchists Of Our Time
Hackers The Anarchists Of Our TimeHackers The Anarchists Of Our Time
Hackers The Anarchists Of Our TimeUtkarsh Sengar
 
How to bypass email gateways using common payloads... Bsides Manchester 2017
How to bypass email gateways using common payloads... Bsides Manchester 2017How to bypass email gateways using common payloads... Bsides Manchester 2017
How to bypass email gateways using common payloads... Bsides Manchester 2017Neil Lines
 
Thane Barnier MACE 2016 presentation
Thane Barnier MACE 2016 presentationThane Barnier MACE 2016 presentation
Thane Barnier MACE 2016 presentationJeff Zahn
 
Staying Safe on the Computer and Online
Staying Safe on the Computer and OnlineStaying Safe on the Computer and Online
Staying Safe on the Computer and Onlinecat509
 
Enemies of the west
Enemies of the westEnemies of the west
Enemies of the westNeil Lines
 
Bug Bounty - Play For Money
Bug Bounty - Play For MoneyBug Bounty - Play For Money
Bug Bounty - Play For MoneyShubham Gupta
 
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin AhmedBackup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin AhmedMazin Ahmed
 
Cyber security
Cyber securityCyber security
Cyber securityShikhil Sharma
 
Pentesting with Metasploit
Pentesting with MetasploitPentesting with Metasploit
Pentesting with MetasploitPrakashchand Suthar
 
The most dangerous places on the web
The most dangerous places on the webThe most dangerous places on the web
The most dangerous places on the webJoel May
 
Basic hacking tutorial i
Basic hacking tutorial iBasic hacking tutorial i
Basic hacking tutorial iGeraldine Indira Jayo Escalante
 
Hackers secrets
Hackers secretsHackers secrets
Hackers secretsFelipe Prado
 

Contenu connexe

Tendances

Password Stealing & Enhancing User Authentication Using Opass Protocol
Password Stealing & Enhancing User Authentication Using Opass ProtocolPassword Stealing & Enhancing User Authentication Using Opass Protocol
Password Stealing & Enhancing User Authentication Using Opass ProtocolPrasad Pawar
 
Overview of information security
Overview of information securityOverview of information security
Overview of information securityAskao Ahmed Saad
 
ETHICAL HACKING
ETHICAL HACKINGETHICAL HACKING
ETHICAL HACKINGNAWAZ KHAN
 
Who's that knocking on my firewall door?
Who's that knocking on my firewall door?Who's that knocking on my firewall door?
Who's that knocking on my firewall door?Bruce Wolfe
 
Welcome to the world of hacking
Welcome to the world of hackingWelcome to the world of hacking
Welcome to the world of hackingTjylen Veselyj
 
Practical Cyber Attacking Tutorial
Practical Cyber Attacking TutorialPractical Cyber Attacking Tutorial
Practical Cyber Attacking TutorialYam Peleg
 
Hushcon 2016 Keynote: Test for Echo
Hushcon 2016 Keynote: Test for EchoHushcon 2016 Keynote: Test for Echo
Hushcon 2016 Keynote: Test for EchoDeja vu Security
 
B-sides Las Vegas - social network security
B-sides Las Vegas - social network securityB-sides Las Vegas - social network security
B-sides Las Vegas - social network securityDamon Cortesi
 
Hackers The Anarchists Of Our Time
Hackers The Anarchists Of Our TimeHackers The Anarchists Of Our Time
Hackers The Anarchists Of Our TimeUtkarsh Sengar
 
How to bypass email gateways using common payloads... Bsides Manchester 2017
How to bypass email gateways using common payloads... Bsides Manchester 2017How to bypass email gateways using common payloads... Bsides Manchester 2017
How to bypass email gateways using common payloads... Bsides Manchester 2017Neil Lines
 
Thane Barnier MACE 2016 presentation
Thane Barnier MACE 2016 presentationThane Barnier MACE 2016 presentation
Thane Barnier MACE 2016 presentationJeff Zahn
 
Staying Safe on the Computer and Online
Staying Safe on the Computer and OnlineStaying Safe on the Computer and Online
Staying Safe on the Computer and Onlinecat509
 
Enemies of the west
Enemies of the westEnemies of the west
Enemies of the westNeil Lines
 
Bug Bounty - Play For Money
Bug Bounty - Play For MoneyBug Bounty - Play For Money
Bug Bounty - Play For MoneyShubham Gupta
 
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin AhmedBackup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin AhmedMazin Ahmed
 
The most dangerous places on the web
The most dangerous places on the webThe most dangerous places on the web
The most dangerous places on the webJoel May
 

Tendances (20)

Password Stealing & Enhancing User Authentication Using Opass Protocol
Password Stealing & Enhancing User Authentication Using Opass ProtocolPassword Stealing & Enhancing User Authentication Using Opass Protocol
Password Stealing & Enhancing User Authentication Using Opass Protocol
 
Overview of information security
Overview of information securityOverview of information security
Overview of information security
 
ETHICAL HACKING
ETHICAL HACKINGETHICAL HACKING
ETHICAL HACKING
 
Who's that knocking on my firewall door?
Who's that knocking on my firewall door?Who's that knocking on my firewall door?
Who's that knocking on my firewall door?
 
amrapali builders@@hacking ciphers.pdf
amrapali builders@@hacking ciphers.pdfamrapali builders@@hacking ciphers.pdf
amrapali builders@@hacking ciphers.pdf
 
Welcome to the world of hacking
Welcome to the world of hackingWelcome to the world of hacking
Welcome to the world of hacking
 
Practical Cyber Attacking Tutorial
Practical Cyber Attacking TutorialPractical Cyber Attacking Tutorial
Practical Cyber Attacking Tutorial
 
Hushcon 2016 Keynote: Test for Echo
Hushcon 2016 Keynote: Test for EchoHushcon 2016 Keynote: Test for Echo
Hushcon 2016 Keynote: Test for Echo
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hacking
 
B-sides Las Vegas - social network security
B-sides Las Vegas - social network securityB-sides Las Vegas - social network security
B-sides Las Vegas - social network security
 
Hackers The Anarchists Of Our Time
Hackers The Anarchists Of Our TimeHackers The Anarchists Of Our Time
Hackers The Anarchists Of Our Time
 
How to bypass email gateways using common payloads... Bsides Manchester 2017
How to bypass email gateways using common payloads... Bsides Manchester 2017How to bypass email gateways using common payloads... Bsides Manchester 2017
How to bypass email gateways using common payloads... Bsides Manchester 2017
 
Thane Barnier MACE 2016 presentation
Thane Barnier MACE 2016 presentationThane Barnier MACE 2016 presentation
Thane Barnier MACE 2016 presentation
 
Staying Safe on the Computer and Online
Staying Safe on the Computer and OnlineStaying Safe on the Computer and Online
Staying Safe on the Computer and Online
 
Enemies of the west
Enemies of the westEnemies of the west
Enemies of the west
 
Bug Bounty - Play For Money
Bug Bounty - Play For MoneyBug Bounty - Play For Money
Bug Bounty - Play For Money
 
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin AhmedBackup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
Backup-File Artifacts - OWASP Khartoum InfoSec Sessions 2016 - Mazin Ahmed
 
Cyber security
Cyber securityCyber security
Cyber security
 
Pentesting with Metasploit
Pentesting with MetasploitPentesting with Metasploit
Pentesting with Metasploit
 
The most dangerous places on the web
The most dangerous places on the webThe most dangerous places on the web
The most dangerous places on the web
 

Similaire à Hack the book Mini

Beginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdfBeginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdfIndianArmy38
 
Beginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdfBeginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdfIndianArmy38
 
Linux_Basics_for_Hackers_OccupyTheWeb_Complex.pdf
Linux_Basics_for_Hackers_OccupyTheWeb_Complex.pdfLinux_Basics_for_Hackers_OccupyTheWeb_Complex.pdf
Linux_Basics_for_Hackers_OccupyTheWeb_Complex.pdfxererenhosdominaram
 
Computer_Hacking_for_Beginners_Kevin_James_complex.pdf
Computer_Hacking_for_Beginners_Kevin_James_complex.pdfComputer_Hacking_for_Beginners_Kevin_James_complex.pdf
Computer_Hacking_for_Beginners_Kevin_James_complex.pdfxererenhosdominaram
 
Ulfah
UlfahUlfah
Ulfahulfah
 
How to be come a hacker slide for 2600 laos
How to be come a hacker slide for 2600 laosHow to be come a hacker slide for 2600 laos
How to be come a hacker slide for 2600 laosOuthai SAIOUDOM
 
Step by Step on How to Setup DarkComet
Step by Step on How to Setup DarkCometStep by Step on How to Setup DarkComet
Step by Step on How to Setup DarkCometPich Pra Tna
 
Flips Sides of Technology
Flips Sides of TechnologyFlips Sides of Technology
Flips Sides of TechnologyAkash Mittal
 
Seminar Report on Honeypot
Seminar Report on HoneypotSeminar Report on Honeypot
Seminar Report on HoneypotAmit Poonia
 
[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy steps[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy stepsfaouzib
 
Move Fast and Fix Things
Move Fast and Fix ThingsMove Fast and Fix Things
Move Fast and Fix ThingsDan Kaminsky
 
Hacking with experts (by anurag dwivedi)
Hacking with experts (by anurag dwivedi)Hacking with experts (by anurag dwivedi)
Hacking with experts (by anurag dwivedi)Esteban Bedoya
 
Ethical Hacking, Its relevance and Its Prospects
Ethical Hacking, Its relevance and Its ProspectsEthical Hacking, Its relevance and Its Prospects
Ethical Hacking, Its relevance and Its ProspectsRwik Kumar Dutta
 
The Media Access Control Address
The Media Access Control AddressThe Media Access Control Address
The Media Access Control AddressAngie Lee
 

Similaire à Hack the book Mini (20)

Basic hacking tutorial i
Basic hacking tutorial iBasic hacking tutorial i
Basic hacking tutorial i
 
Hackers secrets
Hackers secretsHackers secrets
Hackers secrets
 
Beginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdfBeginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdf
 
Beginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdfBeginning Ethical Hacking with Python.pdf
Beginning Ethical Hacking with Python.pdf
 
Honeypots
HoneypotsHoneypots
Honeypots
 
Get started with hacking
Get started with hackingGet started with hacking
Get started with hacking
 
Linux_Basics_for_Hackers_OccupyTheWeb_Complex.pdf
Linux_Basics_for_Hackers_OccupyTheWeb_Complex.pdfLinux_Basics_for_Hackers_OccupyTheWeb_Complex.pdf
Linux_Basics_for_Hackers_OccupyTheWeb_Complex.pdf
 
Computer_Hacking_for_Beginners_Kevin_James_complex.pdf
Computer_Hacking_for_Beginners_Kevin_James_complex.pdfComputer_Hacking_for_Beginners_Kevin_James_complex.pdf
Computer_Hacking_for_Beginners_Kevin_James_complex.pdf
 
Ulfah
UlfahUlfah
Ulfah
 
How to be come a hacker slide for 2600 laos
How to be come a hacker slide for 2600 laosHow to be come a hacker slide for 2600 laos
How to be come a hacker slide for 2600 laos
 
Broken by design (Danny Fullerton)
Broken by design (Danny Fullerton)Broken by design (Danny Fullerton)
Broken by design (Danny Fullerton)
 
Hacking
HackingHacking
Hacking
 
Step by Step on How to Setup DarkComet
Step by Step on How to Setup DarkCometStep by Step on How to Setup DarkComet
Step by Step on How to Setup DarkComet
 
Flips Sides of Technology
Flips Sides of TechnologyFlips Sides of Technology
Flips Sides of Technology
 
Seminar Report on Honeypot
Seminar Report on HoneypotSeminar Report on Honeypot
Seminar Report on Honeypot
 
[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy steps[Computer] hacking for dummies how to learn to hack in easy steps
[Computer] hacking for dummies how to learn to hack in easy steps
 
Move Fast and Fix Things
Move Fast and Fix ThingsMove Fast and Fix Things
Move Fast and Fix Things
 
Hacking with experts (by anurag dwivedi)
Hacking with experts (by anurag dwivedi)Hacking with experts (by anurag dwivedi)
Hacking with experts (by anurag dwivedi)
 
Ethical Hacking, Its relevance and Its Prospects
Ethical Hacking, Its relevance and Its ProspectsEthical Hacking, Its relevance and Its Prospects
Ethical Hacking, Its relevance and Its Prospects
 
The Media Access Control Address
The Media Access Control AddressThe Media Access Control Address
The Media Access Control Address
 

Plus de Khairi Aiman

Sistem HITeCOB - Suruhanjaya Bangunan COB
Sistem HITeCOB - Suruhanjaya Bangunan COBSistem HITeCOB - Suruhanjaya Bangunan COB
Sistem HITeCOB - Suruhanjaya Bangunan COBKhairi Aiman
 
Overview to Data Transaction Management
Overview to Data Transaction ManagementOverview to Data Transaction Management
Overview to Data Transaction ManagementKhairi Aiman
 
Xamarin.Form : Basic to Mobile Development
Xamarin.Form : Basic to Mobile DevelopmentXamarin.Form : Basic to Mobile Development
Xamarin.Form : Basic to Mobile DevelopmentKhairi Aiman
 
Overview to Xamarin : Understanding Xamarin Architecture
Overview to Xamarin : Understanding Xamarin ArchitectureOverview to Xamarin : Understanding Xamarin Architecture
Overview to Xamarin : Understanding Xamarin ArchitectureKhairi Aiman
 
Xamarin.Forms Application UI XAML Definition
Xamarin.Forms Application UI XAML DefinitionXamarin.Forms Application UI XAML Definition
Xamarin.Forms Application UI XAML DefinitionKhairi Aiman
 
C# programming : Chapter One
C# programming : Chapter OneC# programming : Chapter One
C# programming : Chapter OneKhairi Aiman
 
Catalouge 2016 Hery Intelligent Technology
Catalouge 2016 Hery Intelligent TechnologyCatalouge 2016 Hery Intelligent Technology
Catalouge 2016 Hery Intelligent TechnologyKhairi Aiman
 
HIT Catalogue 2016
HIT Catalogue 2016HIT Catalogue 2016
HIT Catalogue 2016Khairi Aiman
 
Prinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & Mukadimah
Prinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & MukadimahPrinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & Mukadimah
Prinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & MukadimahKhairi Aiman
 
Meterpreter in Metasploit User Guide
Meterpreter in Metasploit User GuideMeterpreter in Metasploit User Guide
Meterpreter in Metasploit User GuideKhairi Aiman
 
Hacking SSL When Using RC4
Hacking SSL When Using RC4Hacking SSL When Using RC4
Hacking SSL When Using RC4Khairi Aiman
 
Hery Intelligent Technology - Corporate Profile 2015
Hery Intelligent Technology - Corporate Profile 2015Hery Intelligent Technology - Corporate Profile 2015
Hery Intelligent Technology - Corporate Profile 2015Khairi Aiman
 
CIA Stratergic Communication - September 2004
CIA Stratergic Communication - September 2004CIA Stratergic Communication - September 2004
CIA Stratergic Communication - September 2004Khairi Aiman
 
Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)
Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)
Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)Khairi Aiman
 
Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)
Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)
Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)Khairi Aiman
 
(SOCIAL ENGINEERING - MY) - Psiko rakan kerja
(SOCIAL ENGINEERING - MY) - Psiko rakan kerja(SOCIAL ENGINEERING - MY) - Psiko rakan kerja
(SOCIAL ENGINEERING - MY) - Psiko rakan kerjaKhairi Aiman
 
Burger doll order form
Burger doll order formBurger doll order form
Burger doll order formKhairi Aiman
 
Kiosk teknologi masa kini - Kajian Soalan
Kiosk teknologi masa kini - Kajian SoalanKiosk teknologi masa kini - Kajian Soalan
Kiosk teknologi masa kini - Kajian SoalanKhairi Aiman
 

Plus de Khairi Aiman (20)

Sistem HITeCOB - Suruhanjaya Bangunan COB
Sistem HITeCOB - Suruhanjaya Bangunan COBSistem HITeCOB - Suruhanjaya Bangunan COB
Sistem HITeCOB - Suruhanjaya Bangunan COB
 
Overview to Data Transaction Management
Overview to Data Transaction ManagementOverview to Data Transaction Management
Overview to Data Transaction Management
 
Xamarin.Form : Basic to Mobile Development
Xamarin.Form : Basic to Mobile DevelopmentXamarin.Form : Basic to Mobile Development
Xamarin.Form : Basic to Mobile Development
 
Overview to Xamarin : Understanding Xamarin Architecture
Overview to Xamarin : Understanding Xamarin ArchitectureOverview to Xamarin : Understanding Xamarin Architecture
Overview to Xamarin : Understanding Xamarin Architecture
 
Xamarin.Forms Application UI XAML Definition
Xamarin.Forms Application UI XAML DefinitionXamarin.Forms Application UI XAML Definition
Xamarin.Forms Application UI XAML Definition
 
C# programming : Chapter One
C# programming : Chapter OneC# programming : Chapter One
C# programming : Chapter One
 
Catalouge 2016 Hery Intelligent Technology
Catalouge 2016 Hery Intelligent TechnologyCatalouge 2016 Hery Intelligent Technology
Catalouge 2016 Hery Intelligent Technology
 
HIT Catalogue 2016
HIT Catalogue 2016HIT Catalogue 2016
HIT Catalogue 2016
 
Prinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & Mukadimah
Prinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & MukadimahPrinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & Mukadimah
Prinsip perakaunan tinkatan 4 bab 7 Part 1 - Pelarasan & Mukadimah
 
Meterpreter in Metasploit User Guide
Meterpreter in Metasploit User GuideMeterpreter in Metasploit User Guide
Meterpreter in Metasploit User Guide
 
Hacking SSL When Using RC4
Hacking SSL When Using RC4Hacking SSL When Using RC4
Hacking SSL When Using RC4
 
Hery Intelligent Technology - Corporate Profile 2015
Hery Intelligent Technology - Corporate Profile 2015Hery Intelligent Technology - Corporate Profile 2015
Hery Intelligent Technology - Corporate Profile 2015
 
CIA Stratergic Communication - September 2004
CIA Stratergic Communication - September 2004CIA Stratergic Communication - September 2004
CIA Stratergic Communication - September 2004
 
Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)
Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)
Pengaturcaraan C++ - Permarkahan (C++ Programming - Scores)
 
Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)
Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)
Pengaturcaraan C++ - Kalukulator Bulatan (C++ Programming - Circle Calculator)
 
13 May 1969
13 May 196913 May 1969
13 May 1969
 
Bahasa kebangsaan
Bahasa kebangsaanBahasa kebangsaan
Bahasa kebangsaan
 
(SOCIAL ENGINEERING - MY) - Psiko rakan kerja
(SOCIAL ENGINEERING - MY) - Psiko rakan kerja(SOCIAL ENGINEERING - MY) - Psiko rakan kerja
(SOCIAL ENGINEERING - MY) - Psiko rakan kerja
 
Burger doll order form
Burger doll order formBurger doll order form
Burger doll order form
 
Kiosk teknologi masa kini - Kajian Soalan
Kiosk teknologi masa kini - Kajian SoalanKiosk teknologi masa kini - Kajian Soalan
Kiosk teknologi masa kini - Kajian Soalan
 

Dernier

Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessPixlogix Infotech
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CVKhem
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 

Dernier (20)

Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 

Hack the book Mini

  • 1. Hery Intelligent Technology IT Solution Center Network Security Penetrating Testing IT Community Malaysia (ITCom) http://www.itcom.activeboard.com/
  • 2. DEFINITION In the computer security context, a hacker is someone who seeks and exploits weaknesses in a computer system or computer network. Hackers may be motivated by a multitude of reasons, such as profit, protest, or challenge. – Wikipedia. In other words, hacker is someone that able to make a hole at a security wall. The hole is any vulnerable of a host/server/computer. From the hole, hacker could inject a script to exploit the victim.
  • 3. OBJECTIVES The main objectives of this slide is not going to tell you the very basic of hacking. In this slide I am not talking abut, What is Black Hat, White Hat, Blue Hat, Grey Hat or white hack of any hat of hacker. This is because, for me, if you know perfectly about the “hat”, you are still not a hacker. In a simple word, to be a hacker, you need knowledge about what script do, how the exploit work, why must use the payloads, what is the best OS to hack and the next hack of hack. Actually, this book is not show you “How to be a hacker”, because this slide I made it is not for the “Very Stupid Newbies” and also not for the “The Best Fuc*king Shit Master of Hacker”. The aim reader of this slides is for the intermediate, newbies, researcher, network security,, computer company, network developer, and more. This is because, this slides will touch a bit about basic hacking to support definition of hack, this slide will discuss about ideas of hacking and bit about social engineering.
  • 4. TOOL’S LIST When the process of hacking take place, then the thing that very important is OS. What is OS? OS is Operating System. Example of OS is Windows XP, Vista, 7. Windows is provided by Microsoft. There is another OS that provided by different company such as Linux. In Linux, there is OS Ubuntu, Red Hat, Opera and more. In this case of hacking, we will differentiate Apple OS. Because Apple OS we will go thru accurately for the next slides. (Also for Android OS/Phone OS). The most popular OS in hacking world is Backtrack from Linux and Windows XP from Microsoft. Backtrack OS, there is many version. There is Backtrack 2,3,4,5. The latest is Backtrack 5 R3. But, nowadays, Backtrack is new OS of hacking in Linux, because the newest is Kali Linux 1.0.6 like that. The Kali Linux (KL) or Backtrack (BT) is different with the Windows XP. Windows XP is not built-to-hack like BT and KL. Hence, the KL and BT is a free OS that everyone can download from their website, but Windows XP is not a free OS. Windows XP is built-to-use. It is mean, or the Documentation work, graphic or anything else. It is very flexible to use compare to BT and KL is not to flexible.
  • 5. TOOL’S LIST But, these two OS, there is the most very important thing that they are the same, it is these two OS is VULNERABLE. In other words, it could be hacked. That’s why these two OS can be use to hack. The tools most popular to use is on the list: Tools Uses OS Metasploit / armitage (Graphical) General Hacking Tools BT/Win Havij / SQLMap Website Hacking BT/Win Aircrack Wifi Hacking BT/Win Cisco Firewall Firewall PenTest BT Ettercap / Wireshark / Cain&Abel Sniffing BT/Win
  • 6. TOOL’S LIST The list is not complete. But that is the most best tools. Besides that, to support that tools, there is some tools are need to let the tools above running well. The tools are: Tools Uses OS Zenmap / Netcat Scanner BT/Win MD5 HASH Decrypter BT/Win/Webs These tools are free tools and can get from the any hacker’s website.
  • 7. TOOL’S LIST This is the flow how’s the tools work up: Aircrack The Aircrack will crack Wifi, then Zenmap scan IP, use firewall shutter to penetrate firewall, Metasploit try to penetrate, send exploit to collect data and crash system, use ettercap to collect cookies password. Web Browser Success Hacked! Metasploit Firewall (Cannot Defeated) Exploit & Payload Firewall Down Ettercap Hack Data Receive Password Receive Zenmap Remote Control Havij/ SQLMap Uploading Shell Finding URL, test vulnerability, vulnerable detected, decrypt hash, login to webs, upload a shell and access the data. Vulnerable Decrypt Hash Logged In Password Found
  • 8. WHY SHOULD…? We must know about the terminology. It is because, when we know the actual definition of the term in hacking, then we can adapt something to be something uses. The example I will count it after this. The word that are important to know is ”Exploit”. Exploit is a “specialized” small programs that could that advantages and deliver a payload, which will grant attacker the control. Metasploit is a great tool that has a vast number of exploits. Payload is delivered by exploit and is used to control the remote system. Think of it this way. “Exploit is like terrorist that is carrying a bomb in his backpack. He enters the system and leaves his backpack there. Most popular and widely known payload is “meterpreter”, that has a lot of features. With it you can browse remote files, download them, upload your own, capture keystrokes and more. Through meterpreter, you can pivot and attack machines in networks that are not your own”
  • 9. SOMETHING TO BE SOMETHING I will give you two options. If you are a newbie, maybe you feel like you want to try. If you are a intermediate hacker, you will see how we can adapt the Thins to be Something more good. #First: Hacking ATM Bank. When you are understand the flow above, then you will how is this work. “At the evening, you and your friends do to McDonald to buy something to eat. Then you bring your laptop. Behind the McD, there is a Bank. When you turn on your laptop, the Bank’s Wifi signal is detected. Then you crack the wifi, try to penetrate the firewall the you re being a remote control of the computer. Then you are using Zenmap to find the IP of the ATM machines, you found it, then you crack the Firewall and you re successfully. Upload the payload and exploit. Now, you are controlling the ATM Machines” – Actually, ATM machine are using Windows 2000 and oldest. This is mean, the OS of the ATM machine is easy to hack.
  • 10. SOMETHING TO BE SOMETHING #Second: Hacking as a work. If you re noticed, when you re running BT, the sniffer is not work to the external network. The sniffer just work on your internal network. Social-Engineering-Toolkit (SET) also the same. Do you ever think that XAMPP and WAMP server is not work for external network but just work for internal network? So, how to make XAMPP and WAMP server work for external network (Globally)? The answer is registered your computer as a domain. Then people can connect to you. This is the same way: “You register your network as a Linux domain server, then running BT or KL. Then, your sniffer will work people globally. Then, promote your self to social network as a hired hacker. If someone need to hack, they must pay you. When they paying you, then you have to sniff the victim, get their password and sell it to “Needers”. The same thing for using Msf and SET.
  • 11. SOMETHING TO BE SOMETHING The conclusion for this section is, you must be creative. You have to think what you need to do. What you need something to do the do. If you keep trying and trying and trying, you can make the hack with your own way. The computer is following you command, we made it, it is mean we can crack it! This note is note for bad purpose, even it is, but I just make it for researcher network security.
  • 12. LAST WORDS These note are very important. I made these slide with to many words because I want to let all people know, to be a hacker is not only asking people with the stupid question ; “How to hack facebook?” , “please tell me how to hack”. This stupid question will not help you. You must READ, LEARN, TEST, BE BRAVE, then you will have it. These note have been created by the Moderator Of Network in IT Community Malaysia. – Http://www.itcom.activeboard.com/ . This website forum is vulnerable, but, please do not hack it. Because there is nothing important to hack. If you need something, just need to register and ask as many question you want. Lastly, I’ve made mistakes. I am a normal human, human will make mistakes. So, if you feel I am wrong, then just ask me, I will change it and discuss about it. I also beg apologize for my bad English Spelling, Grammar, Grandpa, Grander and so what the Hack Grand so on. Thank you, Call Me If You In Trouble, I am Sharper. Hery Intelligent Technology IT Solution Center Network Security Penetrating Testing IT Community Malaysia (ITCom) http://www.itcom.activeboard.com/