skip to main |
skip to sidebar
Hack into security cam the easy way ;)
Hey guys here a brief tutorial on how to get into security camera site whatever ;D
Firstly we need to go to Google
Then we need to enter one of the following lines
- inurl:”CgiStart?page=”
- inurl:/view.shtml
- intitle:”Live View / – AXIS
- inurl:view/view.shtml
- inurl:ViewerFrame?Mode=
- inurl:ViewerFrame?Mode=Refresh
- inurl:axis-cgi/jpg
- inurl:axis-cgi/mjpg (motion-JPEG) (disconnected)
- inurl:view/indexFrame.shtml
- inurl:view/index.shtml
- inurl:view/view.shtml
How to find Someone's Ip Through Chat
1. www.chatrack.frihost.net
2.Then Make An Account On this Site(it totally free)
3.Then They Will give You A link,The Link Will Be used To Find The IP Of Any Person
4.Then While Chatting You Can Give The Link To Any Person,And Say ThAt Its A site Cotaining
Funny jokes or Your Own Made Animation..when That Person Will Click On The Link His IP Will
recorded on your ChatRack Account
5.In Order To See The IP Of That Person You Can Simply Login To Your ChatRack Account...
Make Your FacebOOk account and Page Secure.
I am writing this articles for those who are not familiar with Phising Attack(fake page) & Social Engeneering Attack which can 100% hack your accounts.
Many Fans of my facebook page came with the same question that our facebook page is hacked please bring it back ......
So their Answer is Soory... Because when a page is hacked It cant be back. There are no facebook policies to return your page.
The only ways to get it back1) You can get it back only if the hackers returns it himself to you..
2) Or Hack him by his method and get back Your page.
HOW YOUR PAGE HACKED????There is one ways to hack your Page.
1) One any Only way to hack a page is through Your facebook account.
YOUR ACCOUNT WILL HACKED BY THREE WAYS BUT THEY ARE POSSIBLE ONLY DUE TO YOUR CARELESSNESS AND FAULTNESS.
PHISHING ATTACK:Many people are sick of wanting hundred's of fans for thier page.
On promoting page he use the following words:
1) do n get
2) S4s?
3) Shared now do mine
Or whatever You use.
NOW,
If some one said you to do n get, s4s or
OPEN THAT PAGE AND LOGIN YOU WILL GET 2000+ fans or what ever amount of fans.(Most commonly used)
When You open his given link for promoting.
and then if u will get facebook login page then donot login in that page, am saying again donont login that facebook page. If you login that page you will 100% hacked.
Your facebook e-mail id and passwords will sent through that login page to the hacker if u logged in.
These pages are same to same as facebook login page.
Example:1) www.ahmedijaz.phpnet.us
2) http://myfacebookcam.tk/ (Free domain of above one)
ETC. . . .
<<<<<<DONOT LOGIN THAT PAGE>>>>
If u are hacked then you can get back your account by forgotting password option.
Then gives You email account . Facebook will send a email to ur account.
One More Precaution is donont make a same password on differnet sites like yahoo, facebook, gmail, hotmail etc. Beacause if ur facebook will hack and you have same pasword of login emaillike yahoo, gmail etc. then your email account will also be hacked.
NOW IF UR ACCOUNT HACKED THE HACKER JUST CHANGE THE ADMIN OF YOUR PAGE , REMOVE YOU AND ADD HIMSELF.... AND THAT'S WHY YOUR PAGE HACKED.......
Last thing dont make many admins of your page.
Other ways to hack your account is Social Engeneering and Key Loggers.
I have posted thier tutorials.
SQL website Hack Fully Explained
I want to show you just one way that hackers can get in to your website and mess it up, using a technique called SQL Injection. And then I'll show you how to fix it. This article touches on some technical topics, but I'll try to keep things as simple as possible. There are a few very short code examples written in PHP and SQL. These are for the techies, but you don't have to fully understand the examples to be able to follow what is going on. Please also note that the examples used are extremely simple, and Real Hackers™ will use many variations on the examples listed.
If your website doesn't use a database, you can relax a bit; this article doesn't apply to your site — although you might find it interesting anyway. If your site does use a database, and has an administrator login who has rights to update the site, or indeed any forms which can be used to submit content to the site — even a comment form — read on.
Warning
This article will show you how you can hack in to vulnerable websites, and to check your own website for one specific vulnerability. It's OK to play around with this on your own site (but be careful!) but do not be tempted to try it out on a site you do not own. If the site is properly managed, an attempt to log in using this or similar methods will be detected and you might find yourself facing charges under the Computer Misuse Act. Penalties under this act are severe, including heavy fines or even imprisonment.
What is SQL Injection?
SQL stands for Structured Query Language, and it is the language used by most website databases. SQL Injection is a technique used by hackers to add their own SQL to your site's SQL to gain access to confidential information or to change or delete the data that keeps your website running. I'm going to talk about just one form of SQL Injection attack that allows a hacker to log in as an administrator - even if he doesn't know the password.
Is your site vulnerable?
If your website has a login form for an administrator to log in, go to your site now, in the username field type the administrator user name.
In the password field, type or paste this:
x' or 'a' = 'a
If the website didn't let you log in using this string you can relax a bit; this article probably doesn't apply to you. However you might like to try this alternative:
x' or 1=1--
Or you could try pasting either or both of the above strings into both the login and password field. Or if you are familiar with SQL you could try a few other variations. A hacker who really wants to get access to your site will try many variations before he gives up.
If you were able to log in using any of these methods then get your web tech to read this article, and to read up all the other methods of SQL Injection. The hackers and "skript kiddies" know all this stuff; your web techs need to know it too.
The technical stuff
If you were able to log in, then the code which generates the SQL for the login looks something like this:
$sql =
"SELECT * FROM users
"WHERE username = '" . $username .
"' AND password = '" . $password . "'";
When you log in normally, let's say using userid admin and password secret, what happens is the admin is put in place of
$username and secret is put in place of
$password. The SQL that is generated then looks like this:
SELECT * FROM users WHERE username = 'admin' and PASSWORD = 'secret'
But when you enter
x' or 'a' = 'a as the password, the SQL which is generated looks like this:
SELECT * FROM users WHERE username = 'admin' and PASSWORD = 'x' or 'a' = 'a'
Notice that the string:
x' or 'a' = 'a has injected an extra phrase into the WHERE clause:
or 'a' = 'a' . This means that the WHERE is always true, and so this query will return a row contain the user's details.
If there is only a single user defined in the database, then that user's details will always be returned and the system will allow you to log in. If you have multiple users, then one of those users will be returned at random. If you are lucky, it will be a user without administration rights (although it might be a user who has paid to access the site). Do you feel lucky?
How to defend against this type of attack
Fixing this security hole isn't difficult. There are several ways to do it. If you are using MySQL, for example, the simplest method is to escape the username and password, using the mysql_escape_string() or mysql_real_escape_string() functions, e.g.:
$userid = mysql_real_escape_string($userid);
$password = mysql_real_escape_string($password);
$sql =
"SELECT * FROM users
"WHERE username = '" . $username .
"' AND password = '" . $password . "'";
Now when the SQL is built, it will come out as:
SELECT * FROM users WHERE username = 'admin' and PASSWORD = 'x\' or \'a\' = \'a'
Those backslashes ( \ ) make the database treat the quote as a normal character rather than as a delimiter, so the database no longer interprets the SQL as having an OR in the WHERE clause.
This is just a simplistic example. In practice you will do a bit more than this as there are many variations on this attack. For example, you might structure the SQL differently, fetch the user using the user name only and then check manually that the password matches or make sure you always use bind variables (the best defence against SQL injection and strongly recommended!). And you should always escape all incoming data using the appropriate functions from whatever language your website is written in - not just data that is being used for login.
How to Send Anonymous Emails
1. Goto X10 Hosting X10 Hosting and register a new account.
2. Download From heremy Anonymous Email Sender Script (sendmail.rar) .
3. Login to your FreeWebHostingArea Account and click on File Manager.
4. Upload the sendmail.php, pngimg.php and bg1.PNG files to the server.
5. Set permissions for sendmail.php, pngimg.php and bg1.PNG to 777.
6. Now type the following URL
http://yoursite.x10hosting.com/sendmail.php
NOTE: yoursite must be substituted by the name of the subdomain that you have chosen during the registration process.
7. Use the script to send Anonymous Emails. Enjoy!!!
Tell me whether it worked or not. Please pass your comments…
fb.com/maher.bro302
