niktrix.blogspot.com
NiK TriX: DNN (DotNetNuke) Hacking
http://niktrix.blogspot.com/2011/11/dnn-dotnetnuke-hacking.html
Latest Computing Tips and Trix. Thursday, November 3, 2011. Today I will explain a new hacking technique known as DNN (DotNetNuke). I will show you how to hack a DNN website. Is it easy? Yes It is easy compared to other hacking attacks such as SQL-Injection and Cross Site Scripting. I will teach you how to find your target and how to enter into the target website and upload your files. Below are the easy steps to implement the attack:. First use a google dork to find the appropriate target. It is really ...
niktrix.blogspot.com
NiK TriX: July 2011
http://niktrix.blogspot.com/2011_07_01_archive.html
Latest Computing Tips and Trix. Thursday, July 7, 2011. How to steal Facebook Authentication cookies. How to hack a facebook account – or, basically how to hijack php sessions. Yes – this is old news – yes its a common vulnerability – but you get a better idea for what it is and how it works when things are explained in detail (with screenshots! Before we begin, however, I want to re-emphasize that it is VERY EASY. In the URL at the very least, if not using a VPN solution. You can see the ‘lxe̵...
niktrix.blogspot.com
NiK TriX: Hack a Website Using Remote File Inclusion
http://niktrix.blogspot.com/2011/11/hack-website-using-remote-file.html
Latest Computing Tips and Trix. Thursday, November 3, 2011. Hack a Website Using Remote File Inclusion. Remote file inclusion is basically a one of the most common vulnerability found in web application. This type of vulnerability allows the Hacker or attacker to add a remote file on the web server. If the attacker gets successful in performing the attack he/she will gain access to the web server and hence can execute any command on it. This will show all the pages which has “. Now the hacker would uploa...
niktrix.blogspot.com
NiK TriX: How I’d Hack Your Weak Passwords
http://niktrix.blogspot.com/2011/11/how-id-hack-your-weak-passwords.html
Latest Computing Tips and Trix. Thursday, November 3, 2011. How I’d Hack Your Weak Passwords. If you invited me to try and crack your password. You know the one that you use over and over for like every web page you visit, how many guesses would it take before I got it? Let’s see… here is my top 10 list. I can obtain most of this information much easier than you think. The last 4 digits of your social security number. 123 or 1234 or 123456. Your city, or college, football team name. This is accomplished ...
niktrix.blogspot.com
NiK TriX: XSS Cross Site Scripting Attack
http://niktrix.blogspot.com/2011/11/xss-cross-site-scripting-attack.html
Latest Computing Tips and Trix. Thursday, November 3, 2011. XSS Cross Site Scripting Attack. Previously I wrote about Remote File Inclusion vulnerability. Xss Cross Site Scripting may be classified in two types:. In order to demonstrate a XSS attack I will take an example of a website:. Http:/ www.redwrappings.co.in. The simplest way to check the vulnerability is to enter the following code in the any web form present on the website. Where http:/ site.com/yourDefaceIMAGE.png. Is the defacement image.
niktrix.blogspot.com
NiK TriX: PayPal Phishing Scam Spotted In The Wild | Learn How To Hack
http://niktrix.blogspot.com/2011/11/paypal-phishing-scam-spotted-in-wild.html
Latest Computing Tips and Trix. Monday, November 14, 2011. PayPal Phishing Scam Spotted In The Wild Learn How To Hack. A new Phishing attack has bombed email addresses of many PayPal. The email begins with a sense of urgency that compels the user to check and check again whether the email sent is actually a scam or not according to the naked security. It asks the user to follow the instructions exactly as written. Sincerely, PayPal Account Review Team". 2 It isn't really not from PayPal. 3 The culprit us...
niktrix.blogspot.com
NiK TriX: THC SSL DDOS Leaves SSL Sites Vulnerable
http://niktrix.blogspot.com/2011/11/thc-ssl-ddos-leaves-ssl-sites.html
Latest Computing Tips and Trix. Wednesday, November 16, 2011. THC SSL DDOS Leaves SSL Sites Vulnerable. When a SSL connection is established the server requires 15 times more power than the client, As a result of which sites with SSL can be knocked off easily due to the flaw in the protocol itself. German hacker's group THC has recently released a tool named SSL-DDOS which can be used to compromise the availbity of websites using secure connections. Thc-ssl-dos-1.4.tar.gz. Or any other SSL enabled port.
niktrix.blogspot.com
NiK TriX: October 2011
http://niktrix.blogspot.com/2011_10_01_archive.html
Latest Computing Tips and Trix. Sunday, October 23, 2011. Hacking Facebook Accounts Through Facebook Applications [Report]. Facebook is one of the most popular social networking. As a result of which it is the number 1 target of hackers, Facebook has implemented lots of security on the server side as a reason of which hackers. Clients instead of attacking the server, In simpler words, hackers don't attack Facebook itself but instead attack Facebook users, this is where attacks such as phishing, keylogging.
niktrix.blogspot.com
NiK TriX: SQL Injection Using Havij
http://niktrix.blogspot.com/2011/11/sql-injection-using-havij.html
Latest Computing Tips and Trix. Thursday, November 3, 2011. SQL Injection Using Havij. SQL injection is an attack in which malicious code is inserted into strings that are later passed to an instance of SQL Server for parsing and execution. Any procedure that constructs SQL statements should be reviewed for injection vulnerabilities because SQL Server will execute all syntactically valid queries that it receives. Even parameterized data can be manipulated by a skilled and determined attacker. After this ...
SOCIAL ENGAGEMENT