Site to Site VPN in Router over Internet Configuration

Site to Site VPN in Router over Internet Paper

Paper by Karan Puri.

Donload Link :- http://www.mediafire.com/?pbwj4qkjkryd9jj



Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

Computer Korner Application blocker

Description:-   It will Block Any Application from running and take care of it as long as u want.

How to use:-  

• Run cmd with admin privilages.
• Go where the app is downloaded
• And type : ckab.exe -a <process name>.exe

Download Link: Click here

Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

Tirumala Android Application

Application Title : Tirumala
Software Used : Eclipse and SDK manager
Description: This is an offline Application that can be used as a guide for Tirumala which consists of details like Sevas, Hospitality, Map, Bus stations, Different places in Tirumala 
Link : Tirumala Android Application
Developer :  Tapan Krishna Kumar (TTS)
Snapshots : 

Read More

How to use computer's internet on Android | Android Reverse Tethering

How to use computer internet on Android

Yes this is possible, all you need is Android Reverse Tethering software and a Usb Tunnel application for your android phone. But your mobile must be rooted.

Requirements:-

• Android Reverse Tethering software and a Usb Tunnel application, click here to download.
• Phone Must be Rooted.

Procedure

• Download the Android Reverse Tethering software and a Usb Tunnel application, and extract it.
• Transfer the Mobile_component.apk application to your phone and install it.
• Then goto, Settings >> Application >> Development >> tap on Android Debugging.

• Open the Usb Tunnel application, which you have installed on the above step.
• Connect your phone to computer via usb.
• Open AndroidTool.exe in from the above download files.
• Then click on Refresh devices and then Check DNS.
• Click on Connect. 
• Done.

Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

How to use Joomscan | Backtrack 5 R3

How to use Joomscan | Backtrack 5 R3

Introduction

Joomscan is a Joomla vulnerability scanner. It detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla web site.

In this tutorial I'll show you the usage and how to find vulnerabilities by joomscan. 

Procedure

How to open it:-

• Goto Backtrack >> Vulnerability Assessment >> Web Application Assessment >> CMS Vulnerability Identification >> joomscan, or you can open it through terminal also cd /pentest/web/joomscan.

How to use it:-

• To scan a targeted web site, use this command perl ./joomscan.pl -u <url> 

• To scan a targeted web site using proxy, use this command perl ./joomscan.pl -u <url> -x ip:port

Thats it. There are few more options available for this tool. Just use this command to see all available options perl ./joomscan.pl .


This is only for educational purpose, we are not responsible for any illegal work done by you.

Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

How to root LG Optimus Me P350 | Android Hacking

How to root LG Optimus Me P350

Introduction

So you would be thinking what is rooting ?

  Rooting is a process of gaining admin privilege which usually android users (guest user) doesn't have by default. 

"Rooting" word came from Linux or any other UNIX like OS.

For more info click here.

Note

I'm not responsible for any harm done on your phone. Rooting will void your phone warranty. Do at your own risk.

Procedure

• First download this application [click here]. And Transfer it to your phone.
• Then open your file manger application and search that app. and install it.
• Launch that application.
• Tap “Root device” under “Options”.
• If rooting succeed, your phone will be rebooted. ( Note: It will take some time. )
• After Reboot, check in main menu that Super User application is installed or not. If yes, your phone is rooted successfully.

Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

REMOTE CODE & COMMAND EXECUTION

Research Paper On REMOTE CODE & COMMAND EXECUTION

Team : i-HOS
Author : Rohit Roy

Download Link : Click Here

Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

BlindElephant - Web Application and Plugins Identification Tool | CMS Information Gathering | Backtrack 5 R3

BlindElephant - Web Application and Plugins Identification Tool | CMS Information Gathering

Introduction

According to their website, the BlindElephant Web Application Fingerprinter attempts to discover the version of a (known) web application by comparing static files at known locations against precomputed hashes for versions of those files in all all available releases. The technique is fast, low-bandwidth, non-invasive, generic, and highly automatable.

This tool is coded in python.

These are the  limited numbers of plugins applications, which can be identify by BlindElephant

confluence with 0 plugins
drupal with 16 plugins
 - admin_menu
 - cck
 - date
 - filefield
 - google_analytics
 - imageapi
 - imagecache
 - imagefield
 - imce
 - imce_swfupload
 - pathauto
 - print
 - spamicide
 - tagadelic
 - token
 - views
joomla with 0 plugins
liferay with 0 plugins
mediawiki with 0 plugins
moodle with 0 plugins
movabletype with 0 plugins
oscommerce with 0 plugins
phpbb with 0 plugins
phpmyadmin with 0 plugins
phpnuke with 0 plugins
spip with 0 plugins
tikiwiki with 0 plugins
twiki with 0 plugins
wordpress with 26 plugins
 - add-to-any
 - advertising-manager
 - akismet
 - all-in-one-seo-pack
 - buddypress
 - contact-form-7
 - gd-star-rating
 - google-analyticator
 - google-sitemap-generator
 - newsletter
 - nextgen-gallery
 - polldaddy
 - simple-tags
 - smart-youtube
 - sociable
 - stats
 - subscribe2
 - tinymce-advanced
 - twitter-tools
 - wp-e-commerce
 - wp-pagenavi
 - wp-spamfree
 - wp-super-cache
 - wp-useronline
 - wptouch
 - yet-another-related-posts-plugin

Procedure

How to open it :-

• Goto Backtrack >> Information Gathering >> Web Application Analysis >> CMS Identification >> blindelephant or you can also open it through Terminal by goin through this directory cd /pentest/web/blindelephant/src/blindelephant 

How to use it ? :-

• The very basic usage of this tool is, python BlindElephant.py -p guess xyz.com guess, this command will start guessing the web application and plugins.

• Guessing Plugins names of a particular Web App:- To do this you must have to know the web app name or if you don't know, you can use this command to find the web app name:  python BlindElephant.py xyz.com guess. Now use this command to guess installed plugins on a target website: python BlindElephant.py xyz.com <web application name>

Thats all, i hope this article have helped you. And run this command for more options python BlindElephant.py -h

Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

PLAY WITH SERVER WITHOUT ROOTING | Part 2

PLAY WITH SERVER WITHOUT ROOTING | Part 2

In his previous newbie’s friendly tutorial e-book on SHELL UPLOADNIG GUIDE, he have mentioned all possible methods to upload a shell on a site. After uploading a shell we will try to deface all sites under that server by ROOTING THE SERVER. But when we can’t root a server due to proper exploit selection or the lack of availability, then what should we do? We can do several things. But rooting is always better as we can deface all sites together.
Here he will try to explain all possible ways for newbie’s to hack all sites on that server without rooting.

Download :- Click Here



Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

How to configure switchport security

We know that we use switch for most of our LAN architecture. Here I will show some security measures that can be taken to configure switch.

Step 1:
 1. Move under the switchport interface where we want to set security
  CKSWCH1(config)#interface fastEthernet 0/1
  CKSWCH1(config-if)#
 2. Next, we turn on the port security for the port which would be connected to the PC on the LAN
  CKSWCH1(config-if)#switchport mode access
  CKSWCH1(config-if)#switchport port-security

Note: switchport mode access means we are letting the Switch know that this port will be used to connect to PC on the LAN, and "switchport port-security" by typing this command we have enabled the security options for the port, to which we will configure further

 3. Next, suppose we want that only one PC should be able to connect through that port, so that if anyone connects another switch or hub to that port the other devices should not work.
  CKSWCH1(config-if)#switchport port-security maximum 1

Note: maximum 1 means only one device can access the switchport

 4. Next, what should be done if anyone violates point number 3, there are 3 options
  CKSWCH1(config-if)#switchport port-security violation ?
    protect   Security violation protect mode
    restrict  Security violation restrict mode
    shutdown  Security violation shutdown mode

protect - will just ignore other devices connected to the port and connectivity will be allowed to the only device that is hard coded for, which we would see momentarily
restrict - this is same as protect, but this will keep a log
shutdown - this will simply shutdown the port

I like the shutdown option, so will use the shutdown option here

  CKSWCH1(config-if)#switchport port-security violation shutdown

 5. Next, we would like to set the device which should be able to connect to that port, there are two ways, either by hardcoding the mac-address of the device or by dynamically let the switch know.

  CKSWCH1(config-if)#switchport port-security mac-address ?
   H.H.H   48 bit mac address
   sticky  Configure dynamic secure addresses as sticky

Here we can hardcode the mac-address or make it sticky, sticky means whatever device will be connected first, switch will take that device and from then, only that device can access the port, sticky is a good option when we have a lot of PC's in the LAN
  CKSWCH1(config-if)#switchport port-security mac-address sticky

All right, we are all set with the security of the switch-port, and we can save it by "copy running-config startup-config"
and we can check the fa0/1 configuration from the running-config
interface FastEthernet0/1
 switchport mode access
 switchport port-security
 switchport port-security mac-address sticky

Now with all the above configurations, if i plug in a PC to the switch port and see the running-config with "show running-config" and look at the fastEthernet fa0/1 port:

interface FastEthernet0/1
 switchport mode access
 switchport port-security
 switchport port-security mac-address sticky
 switchport port-security mac-address sticky 000A.416C.7489

We see that it learnt the MAC Address, lets also see the CAM table

CKSWCH1#show mac-address-table
          Mac Address Table
-------------------------------------------

Vlan    Mac Address       Type        Ports
----    -----------       --------    -----

   1    000a.416c.7489    STATIC      Fa0/1
CKSWCH1#

Also lets see the port security status

CKSWCH1#show port-security interface fa0/1
Port Security              : Enabled
Port Status                : Secure-up
Violation Mode             : Shutdown
Aging Time                 : 0 mins
Aging Type                 : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses      : 1
Total MAC Addresses        : 1
Configured MAC Addresses   : 0
Sticky MAC Addresses       : 1
Last Source Address:Vlan   : 00D0.97DE.964A:1
Security Violation Count   : 0

CKSWCH1#

Port Status is secure-up, violation mode is shutdown.

Now lets try connecting a hub to the port, and connect another PC and see what happens.

After connecting HUB and a second PC

CKSWCH1#show port-security interface fastEthernet 0/1
Port Security              : Enabled
Port Status                : Secure-shutdown
Violation Mode             : Shutdown
Aging Time                 : 0 mins
Aging Type                 : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses      : 1
Total MAC Addresses        : 1
Configured MAC Addresses   : 0
Sticky MAC Addresses       : 1
Last Source Address:Vlan   : 00D0.97DE.964A:1
Security Violation Count   : 1

CKSWCH1#

And we see the Violation Count went up to 1, and the status is in shutdown, means at this stage the switch has disabled the port and no device connected to that port can communicate via the port.

To enable the port, we need to go to the interface and turn on the port

CKSWCH1(config-if)#shut

%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to administratively down
CKSWCH1(config-if)#no shut

%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up

CKSWCH1(config-if)#

Now the port is enabled, but still only one PC can communicate via the port, remember the port security is turned on. if the other device is not removed the port would lock itself up again.

Thus we see that configuring these security measures can be of great help to the network admins.

Hope this was helpful, for any doubts or confusion, feel free to comment it out.




Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

Steps to create an SSH in A Switch/Router

Steps to create an SSH in A Switch/Router

Steps to create an SSH in A Switch/Router

Many a times we need to telnet/ssh into a router to perform some administrative tasks. SSH is preferred more than Telnet because, communicating via SSH, data gets encrypted, while in a telnet communication, data are not encrypted and if the data packets are sniffed with sniffing softwares like wireshark, the person who sniffed can know everything about the data communication.

Here i will show how to configure "telnet" and also "ssh" on a Cisco Router. Things are same for switches

So first of all we need to power on the Router

We assume that we have a hyper terminal session with the Router from where we will configure the Router so that we can have a telnet/ssh session

Steps For Setting Telnet :
 1. From global config mode (Optional)
Router(config)#hostname CKRTR1
 2. Assign an interface of the RTR with an IP Address from interface configuration mode:
CKRTR1(config)#interface fastEthernet 0/1
CKRTR1(config-if)#ip address 192.168.10.1 255.255.255.0
CKRTR1(config-if)#no shut
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
CKRTR1(config-if)#exit
3.  Next, we need to go to line vty configuration mode:
CKRTR1(config)#line vty 0 15
CKRTR1(config-line)#passw
CKRTR1(config-line)#password admin123
CKRTR1(config-line)#login
CKRTR1(config-line)#^Z
CKRTR1#copy run start

Note: For telnet we have to set a password, without the password its a security risk and by default it wont let to login. We can change this default behaviour if at all we do not want to keep a password for the vty lines understanding the risk. we can go under vty lines, and then negate the password command if set by "no password" and most importantly "no login". When "no login" is set, telnet sessions will start without any kind of authorisation.

And We are done configuring the Router. We can test it by trying to opening a telnet session, from a PC on the LAN segment.
PC>telnet 192.168.10.1
Trying 192.168.10.1 ...Open

User Access Verification

Password: admin123
CKRTR1>


Now that we know how to configure a router for telnet sessions, we will not see how to configure the Router for SSH session ( because we know that SSH is more secure than telnet )

Steps to configure SSH
 1. We need to set a domain-name regardless of whether we use the domain, this is used to create SSL certificate and is mandate to define a domain name.
CKRTR1(config)#ip domain-name computerkorner.org
CKRTR1(config)#
 2. Next we need to create a user account on the router:
CKRTR1(config)#username gray
CKRTR1(config)#
 3. Next we need to generate the RSA keys that will be required when SSH connections are done for authentiation and data encryption.
CKRTR1(config)#crypto key generate rsa
The name for the keys will be: CKRTR1.computerkorner.org
Choose the size of the key modulus in the range of 360 to 2048 for your
 General Purpose Keys. Choosing a key modulus greater than 512 may take
 a few minutes.

How many bits in the modulus [512]: 1024
% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]

CKRTR1(config)#  

Note: I have given 1024 bits encryption, default for this router is 512, this is just to make the keys with defined number BITS.

 4. Define the SSH version, the standard is 2
CKRTR1(config)#ip ssh version 2
CKRTR1(config)#

 5. Next we need to configure the VTY line to accept only SSH connections.
CKRTR1(config)#line vty 0 15
CKRTR1(config-line)#transport input ssh 
CKRTR1(config-line)#password sshadmin
CKRTR1(config-line)#login

And we are done with minimum requirements to open up SSH connection from remote hosts. I assume that one of the Router Interface has been assigned an IP Address which has been shown on the telnet configuration part, from the LAN segment we will first try to open telnet and then SSH

PC>telnet 192.168.10.1
Trying 192.168.10.1 ...Open

[Connection to 192.168.10.1 closed by foreign host]
PC>

Telnet will not work because we have configured the VTY lines to accept only SSH connections.

PC>ssh -l gray 192.168.10.1
Open
Password: sshadmin

CKRTR1>
CKRTR1>

So, now we see that the Router accepts only SSH connection and telnet connections are refused.

Hope this was helpful, for any Questions, feel free to comment it out.


Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More

Proxy IT | Working Proxy Checker

Proxy IT | Working Proxy Checker

Tool : ProxIT
Coded By: Subir Sutradhar
Scripting Language : Python Compatibility : Windows / linux
Description: To check if certain proxies are dead or working. And also helpful for money making bots.

Download Link: Click here


Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

Read More