Showing posts with label backtrack. Show all posts
Showing posts with label backtrack. Show all posts

BackTrack applications for data collection TheHarvester

TheHarvester is atool to collect e-mail accounts, names user and host names or subdomains from different public sources such as search engines and servers PGP key.

This tool is intended to help penetration testers in the early stages of the project, is a very simple, but very effective.

Sources support are:

  • Google - emails, subdomains or hostnames
  • Google Profiles - the names of the employees
  • Bing - emails, subdomains or hostnames, virtual servers
  • Pgp servers, emails, subdomains or hostnames
  • Linkedin - The names of the employees
  • Exalead - emails, hostnames or subdomain


New features:

  • The delays between requests
  • Results XML and HTML export
  • Search a domain in all sources
  • Checker virtual host
  • Shodan computer database integration
  • Enumeration of active (DNS enumeration, reverse DNS lookups, DNS TLD expansion)
  • Chart statistics




cd /pentest/ Enumeration / theharvester
/ Pentest / enumeration / theharvester #. / TheHarvester.py
/ Pentest / enumeration / theharvester #. / Nasa.gov theHarvester.py-d-l 500-b google


Downloads
The latest version can always be found in the reservoirsiteGoogle code: https://code.google.com/p/theharvester
6 comments
Labels: , , , , ,

Ubuntu tutorial for beginners: How to install .deb and tar file

First think is that it's not much difficult to use ubuntu. Every operating system constitutes of process management, memory management and file management. You no need to understand process and memory management, let ubuntu to do this for you.

File system in ubuntu is pretty simple to understand. Like windows has its C: drive as its main drive on which windows is installed ubuntu has its root as its main directory which is denoted by "/" , and all other folders are inside its root directory. But unlike windows can have different drive to work with ubuntu has only its root directory as whole space available to ubuntu inside which user is allowed to use only home folder to save files or to create files or folders.

So path for home folder will be
 /home 
where "/" denotes root and home tells name of folder.

Inside home folder it contains many other folder including user folder named after user name, this user folder consists of pictures, photos, downloads, movie, desktop etc.

So to work on desktop your path should be
/home/username/desktop

Ubuntu have terminal same as command prompt in windows, terminal has desktop as its default working directory. You should be familiar with terminal to use ubuntu effortlessly. Although ubuntu have software centre or wine installed on it to get software automatically by some clicks but you should know how to install software in ubuntu manually so that anything that is not available on wine can be installed. Every linux based system have different package support such as deb, rpm, tar etc , ubuntu supports .deb and tarball(.tar) extension files.

How to install deb files
Installing .deb files are very easy but you should have gdebi installed on your system. To install gdebi open your terminal and type

sudo apt-get install gdebi 

Now to install any .deb extension file open terminal and change its directory to path where your .deb file is stored. For suppose file is in download folder than use below steps

cd '/home/username/downloads' 

than after changing working directory to install file use command

sudo dpkg -i file_name.deb 

(remember during installation if there is an error related to packages that are not installed use sudo apt-get -f install to install them)

How to install tarball files
Installing tarball (.tgz or .tat.gz) is little complex to understand. The first thing to do with every tarball file is to extract it, do this by right clicking on it and select extract or use below command

tar xfvz file_name 

after this continue with the installation manual that can be found in the extracted files.

Some useful link for ubuntu beginners
Install a single package file
Compling things on ubuntu
2 comments
Labels:

Windows password cracking with Backtrack

Before beginning you should know what is hash and how and where the passwords are stored as hash in windows.
For cracking windows password using Backtrack you should have a Backtrack cd. Insert cd boot to cd. Now Backtrack have many offline password cracking tools pre-installed, we will use one of them.
From tool we have to create a directory to which we have to mount the SAM file that is in system32/config.

Continue using following steps:

step 1 open applications>Bactrack>Privilege Escalation>Password Hacks>Offline Attacks>chntpw



step 2 type fdisk -l

step 3 type mkdir /mnt/apple

step 4 type mount -t ntfs-3g /dev/sda1 /mnt/apple

step 5 type ./chntpw -l /mnt/apple/WINDOWS/system32/config/SAM

step 6 type ./chntpw /mnt/apple/WINDOWS/system32/config/SAM


step 7 after you have the user edit menu select the appropriate step, here we have to clear password so type 1 and press enter

step 8 now it will ask for writing hive files so type y and press enter

    Now your windows password has been cleared. When the next time you will login it will not ask for password.

    Video Tutorial


    50 comments
    Labels: , ,
    Subscribe to: Posts (Atom)