Selasa, 11 Desember 2012
Minggu, 25 November 2012
Sabtu, 24 November 2012
Jumat, 23 November 2012
Kamis, 22 November 2012
Jumat, 05 Oktober 2012
Kamis, 04 Oktober 2012
Selasa, 02 Oktober 2012
Senin, 01 Oktober 2012
Sabtu, 29 September 2012
Video Berbagai Cara Deface Website Video Berbagai Cara Deface Website
Sharing video berbagai cara deface website, deface website dengan remote file inclusion (RFI), deface web dengan local file inclusion (LFI), deface website dengan cara html injection, deface website dengan cara SQL Injection, cara deface dengan tamper data, dll. Langsung saja berikut video-video penting yang diperoleh dari youtube yang bisa anda tonton dan pelajari:
DEFACE WEBSITE DENGAN RFI (REMOTE FILE INCLUSION)
RFI (Remote File Inclusion) adalah sebuah lubang dimana site mengizinkan attacker meng-include-kan file dari luar server. RFI merupakan sarana yang paling asik dalam melakukan hacking, banyak website yang memiliki kelemahan ini, sehingga bisa di akses dari server lain. Dibawah ada beberapa video yang menuntun bagaimana cara deface dengan RFI.
DEFACE WEBSITE DENGAN LFI (LOCAL FILE INCLUSION)
LFI (Local File Inclusion) adalah sebuah lubang pada site di mana attacker bisa mengakses semua file di dalam server dengan hanya melalui URL. Di bawah ini terdapat beberapa video mengenai bagaimana cara deface dan exploitasi dengan menggunakan informasi yang didapatkan dari kelamahan LFI ini.
DEFACE WEBSITE DENGAN HTML INJECTION
Html Injection adalah Injeksi kode HTML ke web server. Kode HTML yg Di injeksikan tadi akan ditanggapi oleh web server dan merubahnya kedalam bentuk tampilan visual, hal ini tidak beda jauh dengan anda menggunakan XSS ( Cross Site Scripting ). Dibawah ada beberapa video deface dengan menggunakan HTML injection di berbagai website.
DEFACE WEBSITE DENGAN SQL INJECTION
SQL Injection adalah sebuah teknik yang menyalahgunakan sebuah celah keamanan yang terjadi dalam lapisan basis data sebuah aplikasi. Celah ini terjadi ketika masukan pengguna tidak disaring secara benar dari karakter-karakter pelolos bentukan string yang diimbuhkan dalam pernyataan SQL atau masukan pengguna tidak bertipe kuat dan karenanya dijalankan tidak sesuai harapan. Ini sebenarnya adalah sebuah contoh dari sebuah kategori celah keamanan yang lebih umum yang dapat terjadi setiap kali sebuah bahasa pemrograman atau skrip diimbuhkan di dalam bahasa yang lain.
DEFACE SELURUH WEBSITE DENGAN TAMPER DATA
Tamper Data adalah salah satu add-ons pada Mozilla yang berguna dalam web-hacking. Tools ini telah disediakan secara default pada Back|Track 4. Cara kerja Tamper Data adalah dengan memanipulasi sistem pengiriman data pada web (method POST). Method POST ini adalah sebuah fungsi Javascript yang aktif ketika kita meng-klik tombol submit atau sejenisnya. Pada saat tombol tersebut di klik maka sistem akan mengirimkan sebuah value/nilai yang akan menentukan hasil dari klik yang kita lakukan. Method POST ini terkadang menjadi salah satu kelemah sebuah sistem website, karena kita bisa mengubah data yang akan dikirim. Tamper Data memungkinkan kita mengubah value/nilai dari method POST tersebut.
DEFACE SELURUH WEBSITE DENGAN MASS DEFACING
Mass Deface adalah deface website secara massal, artinya setelah anda melakukan exploitasi di 1 website target, maka anda akan melanjutkan ke server hostingnya, sehingga tidak 1 domain saja yang terdeface, melainkan anda bisa menemukan banyak domain disana, mass defacing ini adalah bertujuan agar semua domain tersebut bisa dideface.
NOTE:
Jika ingin mengetahui cara download video di atas dari youtube agar bisa di simpan di PC / Laptop, langsung saja ke link berikut: http://www.binushacker.net/download-youtube-internet-download-manager.html
SQLI Hunter: SQL Injection Hunter SQLI Hunter: SQL Injection Hunter
“SQLI Hunter” SQL Injection Hunter 1.0 dari namanya sudah jelas bahwa aplikasi ini berfungsi untuk mencari website yang rentan terhadap serangan SQL Injection. Dilengkapi 4493 Dorks, dan dalam sekali scan mendapatkan 96 hasil. Dilengkapi juga Pencari Login Page Admin.
DOWNLOAD DISINI (INSTALL VERSION – Butuh .NET Framework 3.5)
atau
DOWNLOAD DISINI (PORTABLE VERSION)
Kumpulan URL Link Situs Keamanan Website Kumpulan URL Link Situs Keamanan Website
Hello Binushacker,
Sharing mengenai kumpulan link url situs keamanan, link url situs keamanan internet, link url situs keamanan teknologi informaso, link url keamanan elektronik, link url situs keamanan website, link keamanan jaringan, link ebook keamanan internet, url keamanan komputer, link url situs keamanan laptop, link url situs keamanan handphone, computer security, situs security, security jaringan, security alarm system, cctv security system, remove security tool, security task manager, microsoft security,security essential, security website, social security website, website’s security certificate, security web, site security, html security, dll. Semoga bermanfaat
CONTENTS
- Security Guides/Handbooks/Tutorials | - Firewalls |
- General Security Tips and Advice | - Wireless Security |
- Best Security Software | - Website/Application Security |
- Identity Theft/Fraud | - Network Security |
- Anti-phishing | - Data Backup |
- Anti-spam | - Publications |
- Malicious Software Information | - Miscellaneous |
- Latest Security News | - Friends of Select Real Security |
- Social Networking Security | - Revision History |
- Password Security |
Security Guides/Handbooks/Tutorials
Malicious Software Prevention:
- Gizmo’s Guide to Securing Your PC by Gizmo Richards
- How to Stay Safe While Online
- How-to Security Booklet by Security In a Box
- Malware Prevention – Preventing Re-infection by Russ Stamm
- How Malware Spreads – How Did I Get Infected by Russ Stamm
- Hardening Windows Security
- How (and why) to secure your Windows PC
- Malware Incident Prevention and Handling [PDF]
- CKnow Computer Virus Tutorial
- Securing Windows XP by Eric Vaughan and Allen Weil
- Securing Your Home Computer
- Protect Your Computer by Oregon State University
- The 20 Minute Guide to PC Security
- Computer Virus Primer for Network Administrators by Bernie Klinder
- Keeping Your Kids Internet Safe and Smart [PDF]
- Browser Security Handbook by Michal Zalewski
- IT Security Cookbook by Sean Boran
- Cyber-Safety for Everyone: from Kids to Elders by M. E. Kabay [PDF]
- Keep Yourself and Your Stuff Safe Online by Linda McCarthy
- How to Secure Windows and Your Privacy by Howard Fosdick [PDF]
- Silver Surfers’ Online Safety Guide [PDF]
- HackerProof: Your Guide To PC Security by Matt Smith
- Microsoft Security Update Guide
- Best Practices for Keeping Your Home Network Secure by NSA [PDF]
- Security Concepts: an online book about computer, hardware, and cryptographic security.
- The Rough Guide to Online Safety by GetSafeOnline.org
- Computer and Data Security Guide for Windows
Malicious Software Removal:
- Malware Removal Guide for Windows
- How to Clean An Infected Computer
- How to clean up your site from a malware infection
General Security Tips and Advice
- Cyber Security Tips: tips and advice on common security issues for non-technical computer users.
- Security Awareness Tip of The Day: has a huge collection of simple and useful tips and provides a new tip every day.
- Home Computer Security Checklist: a list of computer security tips with comprehensive details about each tip.
- Security 101: a large collection of tips, how-to’s and other advice on computer and network security.
- CyberCoyote: has excellent information and advice that covers a variety of security topics.
- The Top Ten Most Dangerous Things You Can Do Online
- Stopping Malware on its Tracks: lists ways you can prevent and detect infections (by Lenny Zeltser).
- Securing Microsoft Windows by David A. Wheeler
- How to Stay Secure Online by Adam Dachis
- How to protect yourself from malware
- 32 Ways to Secure Your Digital Life
- Safe Internet Surfing by Robert P. Lipschutz and John Clyman
- Malware Prevention and Avoidance
- 9 Easy Ways To Never Get A Virus by James Bruce
- Ten Immutable Laws Of Security: Microsoft’s ten facts of life regarding computer security.
- 6 Rules of Thumb to Help Protect Your Information and Privacy Online by Tracy Hulver
- Protecting a Laptop from Simple and Sophisticated Attacks by Mike Cardwell
Best Security Software
- Best Free Security Software for Windows: tells you the latest and best free security software that you could be using.
- Best Antivirus Comparison: compare antivirus reviews and ratings.
Identity Theft/Fraud
- About Identity Theft – Deter. Detect. Defend
- Identity Theft: What to Do if It Happens to You: provides instructions how to reclaim your financial health and who to contact for more help.
- Identity Theft FAQ: answers to frequently asked questions about identity theft.
- Reducing the Risk of Fraud: lists steps you can take to reduce your risk of fraud.
- Limiting Identity Theft Damage
- Identity Theft Prevention Handbook by Todd M Feinman
- Email and web scams: How to help protect yourself: learn how to avoid online scams that may come your way.
- How To Prevent Identity Theft – 11 Easy Ways
- 9 Ways to Prevent Identity Theft From Your Online Activities
- Preventing and Responding to Identity Theft
- 25 Ways to Avoid Auction Fraud From a Seller’s Perspective
- How to Protect Yourself from Online Fraud and Identity Theft by Alan Henry
Anti Phishing
- PhishTank: submit, verify, track, and share phishing data.
- Google Safe Browsing: report phishing pages.
- How to Avoid Phishing Scams: lists helpful advice you can use to avoid becoming a victim of phishing scams.
- The Phishing Guide: covers the technologies and security flaws Phishers exploit to conduct their attacks, and provides detailed advice on what organizations can do to prevent future attacks (by Gunter Ollmann).
- How to recognize phishing e-mails or links
Anti Spam
- How to reduce the quantity of spam
- How to Avoid Getting Spammed
- How to Report Spam
- Twitter Account Validator: quickly check if a twitter username is a spammer or a bot.
- Free Anti-Spam Tools and Services
- Email Harvesting Techniques FAQ: lists and describes the many ways spammers get email addresses.
Malicious Software Information
- The Evolution of Malicious Agents by Lenny Zeltser
- Strategies of Computer Worms: describes the nature and evolution of the computer worm (by Peter Szor).
- Most Damaging Malware: provides an overview of the most damaging types of malware (by Mary Landesman).
- Rootkit Analysis: What is a Rootkit by Matthew Vea
- A quick and dirty guide to malware: a three-part series covering viruses, trojans, and worms.
- Malware Characteristics
- How to Identify Malware Behavior by Mark Morgan
- The Truth about Trojan Horses on the Internet by Sarah Gordon and David M. Chess
- Inside the Business of Malware (Infographic): shows the way that attackers compromise their victims’ computers, sell malware and then launder the proceeds.
- Malware Infection Vectors: Past, Present, and Future by Paul Schmehl
- Who creates malware and why?
Latest Security News
Social Networking Security
- Staying Safe on Social Network Sites
- How to protect your Facebook account from hackers, spammers and clowns
- 6 Tips for Safer Facebooking
- How to Tweet Safely: A Quick Guide to Twitter Security
- 11 Security Tips for Online Social Networking by Lenny Zeltser
- How to Avoid Malware on Facebook and Twitter by Sarah Perez
- The 8 Most Important Ways to Protect Your Identity and Privacy on Facebook
- A Guide to Facebook Security by Facebook
Password Security
- Password Strength Checker: online tool that tests the strength of your passwords as you type them.
- How I’d Hack Your Weak Passwords: John Pozadzides provides an excellent read about password security.
- A Guide To Better Password Practices by Sarah Granger
- Creating Secure Passwords: tips for creating strong passwords you can remember (by Tony Bradley).
- Passwords: Make them Effective
- The Usability of Passwords: an excellent article on “how to make usable and secure passwords” (by Thomas Baekdal).
Secure Web Browsing
- Best Free Browser Protection Utility
- Securing Your Web Browser: provides instructions on how to configure your web browser for safer internet surfing.
- URLVoid: quickly check if a website is safe to browse.
- vURL Online: quickly and safely analyze malicious or suspected websites.
Firewalls
- Firewalls by Tony Northrup: covers the design, deployment, and use of both network and host-based firewalls.
- How to Select a Network Firewall by Brian Monkman
- Interhack’s Internet Firewall FAQ: answers to frequently asked questions about Internet firewalls.
- Firewall FAQ by Microsoft
Email Security
- Mail Security – Keep Your Inbox Safe: comprehensive tutorial with tips and tricks for email security.
- The 25 Most Common Mistakes in Email Security
- Best Free Email Client
- Five Free Temporary Email Services To Avoid Spam
Wireless Security (Wi-Fi)
- How to Secure Your Wireless Network by Becky Waring
- 10 Tips for Wireless Home Network Security
- Keep Your Windows Computer Secure on Public Wireless Hotspots
- 8 tips for working securely from wireless hot spots
- 5 ways to protect your Wi-Fi network from hackers by Phil Hornshaw
- How to Lock Down Your Wireless Network by Alex Wawro
Website and Application Security
- SQL Injection Attack and Defense by Sagar Joshi
- SQL Injection Attacks and Some Tips on How to Prevent Them by Colin Mackay
- How to prevent your site from getting hacked / How to repair a damaged site by Steven Whitney.
- Web Application Penetration Testing: information for penetration testers.
- 10 Ways To Beef Up Your Website’s Security
- Basic Website Security Checklist by Chad Perrin
- Common Security Mistakes in Web Applications by Philip Tellis
- Unmask Parasites: free online tool that scans your website for malware.
- CWE/SANS Top 25 Most Dangerous Software Errors: a list of the most widespread and critical programming errors.
- WordPress Security 101: Securing Your Site by Willie Jackson
- Securing Your WordPress Website by Daniel Pataki
- SQL Injection Prevention Cheat Sheet
Network Security
- Introduction to Network Security by Matt Curtin
- Home Network Security: an overview of the security risks and countermeasures associated with Internet connectivity.
- Top 125 Network Security Tools: listing of the top 125 network security tools.
- Network Security in the Age of *Any* Computing by Mike Rothman
Data Backup
- How to back up files and recover data
- Best Free Backup Program
- Best Free Online Backup Sites
- The Backup and Restore Guide by Tina Sieber
- How To Backup Operating Systems: a step-by-step guide for backing up and restoring the operating system installed on your PC.
Security Publications
- SANS Information Security Reading Room: has over 1,900 original computer security white papers in 77 different categories.
- Network Security Library: site with hundreds of network security related articles, books, FAQs, and white papers.
- Security Papers and Articles: vulnerability analysis papers, tutorials and articles from the Exploit Database.
- The Infosec Writers Text Library
- White Papers and Articles – Trend Micro
- Honeynet Project – Know Your Enemy Papers
- Information Security Research Library: white papers, case studies and product information on the latest security solutions and technologies.
- Technical Info – Gunter Ollmann: has some excellent white papers and articles on various security topics.
- PacketSource: directory of information security articles, white papers, and documents.
- US-CERT – Security Publications
- RootSecure – PDF Documents: notable papers and articles from the past few years on security and other related topics.
- Symantec Security Response: offers white papers on a range of issues relating to Internet security.
- Entrust White Papers on Internet Security and Encryption
- SecDocs: provides papers, slides, and videos on IT security and hacking.
- ICSA Labs White Papers
- ESET White Papers
- Infosec White Papers
Miscellaneous
- Modern Computer Attack and Defense Techniques by Lenny Zeltser
- Web Security: Are You Part Of The Problem? by Christian Heilmann
- Security Risks of Near Field Communication: looks at the risks associated with NFC and tells you how to avoid them.
- Firewall Guide: information and reviews on security, personal firewall software and hardware, and more.
- Firewall.com: a directory of security resources.
- Complete Computer Security Information – David Woodsmall: a multitude of links to articles and websites about protecting your computer and data (frequently updated).
- GCK’s Information Security URLs: provides links to security related sites.
- IT Security Overview and Web Resources
- The Six Dumbest Ideas in Computer Security: a very interesting read (by Marcus J. Ranum).
- Plug and Prey: Malicious USB Devices: an overview of malicious USB devices (by Adrian Crenshaw).
- How To Completely and Securely Erase Your Hard Drive
- SANS Intrusion Detection FAQ
- Antiviral Software Evaluation FAQ: how to review, evaluate, and decide which antivirus packages to buy (by Robert Slade).
- The WWW Security FAQ by Lincoln D. Stein & John N. Stewart
Friends of Select
- Bill Mullins Weblog
- Protect your Profile and Internet Status: a blog that shows you simple ways to protect your online and offline identity.
- Bookmarks4Techs: features over 500 links to useful tech sites (frequently updated).
- What’s On My PC: a blog about computers, software, gadgets, and information technology.
- Experts Galaxy: all about computer and digital security.
- Security [CENTRAL] Forum
- Raj Chandel’s Blog
source
Trik Mudah Deface Website Sekolah sch.id Trik Mudah Deface Website Sekolah sch.id
oke kali ini gue akan berbagi trik cupu lagi nih ! sangat cupu pokoknya ! wkkakw buat yang udah Master Dewa dsb dilarang keras membaca artikel ini !! karena akan membuat anda mati kebosanan ! :D wkakkwka
trik ini membahas tentang cara deface web sekolah sch.id, udah padan pinter deface kan ? ya uda monggo langsung aja kita praktekan sama sama :D
pertama siapin dulu perlatanya !! file .txt dari notepad (isinya terserah anda mau nama pacar nenek ibuk kaka terserah) nama gue juga boleh ! hahaha
udah buat file kan ? yauda monggo lanjutt !
buka google dulu ! terus masukin Dork (kata kunci) nih gue udah ada Dork tinggal pilih aja :
inurl:/html/siswa.php?setelah ngetik Dork tersebut kan ada banyak web sekolah tuh ? kita tinggal pilih aja wkkakka nih gue ada Live Target :http://sman1kotabaru.sch.id/
inurl:/html/alumni.php?
inurl:/html/guru.php?
lalu siapin Exploit dulu , tenang aja gue udah punya exploitnya nih :
Exploit: /editor/filemanager/connectors/test.html
langsung saja di hajar ! masukin exploit tadi ke url web sch.id
nah, udah muncul kan yang mau di pepes !
pada kolom Connector *ASP ubah menjadi *PHP terus kolom Resource Type ubah jadi *FILE
lalu klik Browse (cari file .txt yang kamu buat tadi) > Upload
setelah berhasil di upload , Lo bka aja hasilnya
http://sitetarget.sch.id/userfiles/namafileLo.txt
atau => http://sitetarget.sch.id/userfiles/file/namafileLo.txt
mudah kan Bro ? nih hasil deface web sch.id punya gue ::
http://sman1kotabaru.sch.id/userfiles/file/djancukxx.txt
wkakka udah bisa pepes kan ? ini masi upload file, kalo ente udah jago bisa rubah indexnya :D
demikian sedikit trik cupu dari saya, kalo ada kekurangan ya Gue minta maap :) gue bukan hacker ato defacer gue cuma penulis sukarela (tak dibayar)
oke sekian terima kasih, komen aja kalo belom jelas ! :D
Langganan:
Postingan (Atom)