Windows User Account Hacking

Windows user Account can be Hacked by using Command Prompt.This type of Hacking is done  in order to gain  illegal access to the user account and steal the data in the system.

Note:This type of Hacking can be done only on User Accounts which have Administrative rights.

Commands Used For User Account Hacking

1.To See all the account present on the Computer.

Net user

2.To change the password of a User account without knowing the old password.

Net user administrator *

3.To make a new user account.

Net user hacker /add  

4.To Delete the existing user account.

Net user hacker /delete

5.To make a hidden account in the computer.{Works only with Windows XP}

Net User hacker /add

Net localgroups users hacker /delete

Note:-

         To login to this hidden account press

Ctrl+Alt+Delete+Delete 

         And give the hidden user name in the user name field and password in password field respectively. 

     

        The term hacker refers the user name or name of the account.

Counter Measures of Windows User Account Attack

1.Change the Boot sequence in the BIOS setup.Keep Hard Disk as 1st boot drive, then CD\DVD drive as 2nd boot device and Removable port as 3rd boot device.

2.Put the BIOS password.

3.Put the physical lock behind the cabinet of PC. (Put Lock).

 

Read more »

EMAIL HACKING

Email hacking  is illegal access to an email account or email correspondence.Email on the internet is now commonly sent by the Simple Mail Transfer Protocol (SMTP). This does not encrypt the text of emails and so intercepted mail can be read easily unless the user adds their own encryption. The identity of the sender or addressee of an email is not authenticated and this provides opportunities for abuse such as spoofing.

Email Spoofing

Email spoofing is a technique used by hackers to fraudulently send email messages in which the sender address and other parts of the email header are altered to appear as though the email originated from a source other than its actual source. Hackers use this method to disguise the actual email address from which phishing and spam messages are sent and often use email spoofing in conjunction with Web page spoofing to trick users into providing personal and confidential information.

Software is usually used to collect or generate the email addresses that are spoofed. Hackers may create a virus that examines the contact information on an infected computer. That information is collected and sent to the hacker who then uses another piece of software  a mass email program to send out bogus emails using the addresses collected.

Alternatively, hackers may use software that generates random email addresses to use to disguise the actual origin of the message being sent.

Types of email hacking

1.Phishing

2.RATS(remote administration tools)

3.Key logging

4.Social Engineering(technique used by attacker by answering security question)

5.Side jacking(Session Hijacking)

6.From the mail server

1.Phishing

 

Phishing is an e-mail fraud method in which the Hacker sends out legitimate-looking email in an attempt to gather personal and financial information from recipients. Typically, the messages appear to come from well known and trustworthy Web sites. Web sites that are frequently spoofed by phishers include PayPal, eBay, MSN, Yahoo, Best Buy, and America Online. A phishing expedition, like the fishing expedition it's named for, is a speculative venture: the phisher puts the lure hoping to fool at least a few of the prey that encounter the bait.

Techniques used within Phishing emails

1.Official looking and sounding emails

2.Copies of legitimate corporate emails with minor URL changes

3.HTML based email used to confuse target URL information

4.Standard virus/worm attachments to emails

5.A excess of anti spam-detection inclusions

6.Crafting of “personalized” or unique email messages

7.Fake postings to popular message boards and mailing lists

8.Use of fake “Mail From:” addresses and open mail relays for disguising the source of the email

An Example of a Fake Gmail Home Page  

 Things to keep in mind to avoid Phising attacks

1 Most fake communications convey a sense of urgency by threatening discontinued  service

2.Many fraudulent emails contain misspellings, incorrect grammar, and poor punctuation.

3 Links within the fake email may appear valid but deliver you to a fradulent site.

4.Phishing emails often use generic salutations like "Dear Customer," or "Dear account holder," instead of your nameThe address from which the email was sent is often not one from the company it claims to be.

An Example Of a Fake Email  

2.RATS(remote administration tools)

A RAT is also a shortcut called Remote Administrator Tool. It is mostly used for malicious

purposes, such as controlling PC’s, stealing victims data, deleting or editing some files. You 

can only infect someone by sending him file called Server and they need to click it.

3.Key logging

Keystroke logging (more often called keylogging or "keyloggers") is the action of tracking (or logging) the keys struck on a keyboard, typically in a secret manner so that the person using the keyboard is unaware that their actions are being monitored. There are numerous key logging methods, ranging from hardware and software-based approaches to electromagnetic and acoustic analysis.

Types Of Keyloggers
 1.Software-based Keyloggers

 2.Hardware-based Keyloggers

 

 

1.Software-based Keyloggers

Software based Keyloggers record each and every keystroke typed with the help of a Software.These keystrokes are stored in a log file.

 

An example of Keystroke log file  

2.Hardware-based Keyloggers

Hardware  based keyloggers record each and every keystroke typed with the help of a

Hardware device.

An Example of a typical Hardware Keylogger

 

An Example of how Hardware Keyloggers are connected to the system.

 

Countermeasures

Use  of Virtual keyboard or On-Screen Keyborad can be an effective method to avoid 

keyloggers.But,it will not work under certain circumstances.

 

4.Social Engineering(technique used by attacker by 

 

answering security question)

 

 

Social engineering is the human side of breaking into a corporate network. Companies like ours with authentication processes, firewalls, VPNs and network monitoring software are still wide open to an attack if an employee unwittingly gives away key information in an email, by answering questions over the phone with someone they don’t know or failing to ask the right questions.

Forms of Social Engineering

Social engineering is not limited to phone calls; many organizations have reported cases involving visitors impersonating a telephone repair technician requesting access to a wiring closet or a new member of the IT department needing help accessing a file.

People, for the most part, look at social engineering as an attack on their intelligence and no one wants to be considered “ignorant” enough to have been a victim. It’s important to remember that no matter who you are, you are susceptible to a social engineering attack.

If you suspect social engineering – don’t be afraid to ask questions and/or notify your IT department. If a caller requests information that is technical in nature, please refer them to your IT department.

How to prevent social Engineering

Never give out

1.usernames; Administrators should know it or can find out themselves

2.passwords; Administrators can ask your to enter it into the computer, but don't tell anyone

3.ID numbers

4.PIN numbers

5.server names

6.system information

5.Side jacking(Session Hijacking)

Session Hijacking is an attack by which a hacker exploits a valid computer session and gains access to a client’s session identifier. Since HTTP is a stateless protocol, when a user logs into a website, a session is created on that Web Server for that user, this session contains all this user's information being used by the server so the username and password is not needed at every page request. The server uses a unique identifier(Session Identifier) to authenticate this user to this session, this session identifier is passed between the web server and the user's computer at every request. Session Hijacking is an attack by which the hacker steals this user's session identifier and then sends this session identifier as their own to the server and tricks the server into thinking they are that user. 

After gaining access to a client’s session identifier for a website, the hacker then injects the client’s session identifier into his/her browser. From then on, when that attacker connects to that website, since his session identifier is the same as the authentic user, he will be logged in as that userand will have access to all of that user’s information and privileges on that website. Note - attackers cannot get a user’s password using session hijacking.

  

1. Use Secure Connections (Achieved through Secure Socket Layer(SSL) as much as possible, since SSL creates an encrypted connection between the client and server, any data the attacker steals during this transfer would be useless to them. However, SSL does not fully secure against this attack, and hackers can still use session hijacking even over HTTPS

2. Regenerate user's session identifier often, therefore, even though the attacker may manage to steal a user's session identifier, when it is regenerated, the Session Identifier he stole would be useless.

3.  You can implement an IP Address Check to match a user's Session Identifier to his/her IP Address. However this may have its limitations.

6.From the mail server

Databases have been the heart of a commercial website. An attack on the database servers can cause a great monetary loss for the company. Database servers are usually hacked to get the credit card information. And just one hack on a commercial site will bring down its reputation and also the customers as they also want their credit card info secured.

Read more »

Working of an ethical hacker

Obeying the Ethical Hacking Commandments

Every Ethical Hacker must follow few basic principles. If he do not follow, bad things can happen. Most of the time these principles get ignored or forgotten when planning or executing ethical hacking tests. The results are even very dangerous. 

Working ethically

The word ethical can be defined as working with high professional morals and principles. Whether you’re
performing ethical hacking tests against your own systems or for someone who has hired you, everything you do as an ethical Hacker must be approved and must support the company’s goals. No hidden agendas are allowed!Trustworthiness is the ultimate objective. The misuse of information is absolutely not allowed. That’s what the bad guys do.

Respecting privacy: 

Treat the information you gather with complete respect. All information you obtain during your testing — from Web application log files to clear-text passwords — must be kept private.

Not crashing your systems

One of the biggest mistakes is when people try to hack their own systems; they come up with crashing their
systems. The main reason for this is poor planning. These testers have not read the documentation or
misunderstand the usage and power of the security tools and techniques.

You can easily create miserable conditions on your systems when testing. Running too many tests too quickly on a system causes many system lockups. Many security assessment tools can control how many tests are performed on a system at the same time. These tools are especially handy if you need to run the tests on production systems during regular business hours.

Executing the plan:

In Ethical hacking, Time and patience are important. Be careful when you’re performing your ethical hacking tests.A Hacker in your network or an employee looking over your shoulder may watch what’s going on. This person could use this information against you. It’s not practical to make sure that no Hackers are on your systems before you start. Just make sure you keep everything as quiet and private as possible.

This is especially critical when transmitting and storing your test results. You’re now on a reconnaissance mission. Find as much information as possible about your organization and systems, which is what malicious Hackers do.Start with a broad view of mind and narrow your focus. Search the Internet for your organization’s name, your computer and network system names, and your IP addresses. Google is a great place to start for this.

Don’t take ethical hacking too far, though. It makes little sense to harden your systems from unlikely attacks. For instance, if you don’t have a internal Web server running, you may not have to worry too much about. However,don’t forget about insider threats from malicious employees or your friends or colleagues!

Read more »

Prevention from Hackers

What can be done to prevent Hackers from finding new holes in software and exploiting them? Information security research teams exist to try to find these holes and notify vendors before they are exploited. There is a beneficial competition occurring between the Hackers securing systems and the Hackers breaking into those systems. This competition provides us with better and stronger security, as well as more complex and sophisticated attack techniques.Defending Hackers create Detection Systems to track attacking Hackers, while the attacking Hackers develop bypassing techniques, which are eventually resulted in bigger and better detecting and tracking systems. The net result of this interaction is positive, as it produces smarter people, improved security, more stable software,inventive problem-solving techniques, and even a new economy.Now when you need protection from Hackers, whom you want to call, “The Ethical Hackers”. An Ethical Hacker possesses the skills, mindset, and tools of a Hacker but is also trustworthy. Ethical Hackers perform the hacks as security tests computer systems.

Ethical Hacking

Also known as Penetration Testing or White-Hat Hacking  involves the same Tools, Tricks and
Techniques that Hackers use, but with one major difference 'Ethical hacking is Legal '.Ethical hacking is performed with the target’s permission. The intent of Ethical Hacking is to discover
vulnerabilities from a Hacker’s viewpoint so systems can be better secured. Ethical Hacking is part of an overall information Risk Management program that allows for ongoing security improvements. Ethical hacking can also ensure that vendors’ claims about the security of their products are legitimate.As Hackers expand their knowledge, so should you. You must think like them to protect your systems from them.You, as the ethical Hacker, must know activities Hackers carry out and how to stop their efforts. You should know what to look for and how to use that information to thwart Hackers’ efforts.You don’t have to protect your systems from everything. You can’t.

The only protection against everything is to unplug your computer systems and lock them away so no one can touch them—not even you.
That’s not the best approach to information security. What’s important is to protect your systems from known Vulnerabilities and common Hacker attacks.It’s impossible to overcome all possible vulnerabilities of your systems. You can’t plan for all possible attacks especially the ones that are currently unknown which are called Zero Day Exploits. These are the attacks which are not known to the world. However in Ethical Hacking, the more combinations you try — the more you test whole systems instead of individual units — the better your chances of discovering vulnerabilities.

Read more »

Ethical Hacking

Ethical Hacking is testing the resources for a good cause and for the betterment of technology. Technically Ethical Hacking means penetration testing which is focused on Securing and Protecting IT Systems.

Ethical Hacker

The term 'Ethical Hacker' refers to Security Professionals who apply their hacking skills for Defensive purposes.

Read more »

Types of Hackers

Coders

The Real Hackers are the Coders, the ones who revise the methods and create tools that are available in the market. Coders can find security holes and weaknesses in software to create their own exploits. These Hackers can use those exploits to develop fully patched and secure systems.Coders are the programmers who have the ability to find the unique vulnerability in existing software and to create working exploit codes. These are the individuals with a deep understanding of the OSI Layer Model and  TCP/IP Stacks.

Admins

Admins are the computer guys who use the tools and exploits prepared by the coders. They do not develop their own techniques, however they uses the tricks which are already prepared by the coders. They are generally System Administration, or Computer Network Controller. Most of the Hackers and security person in this digital world come under this category.Admins have experience with several operating systems, and know how to exploit several existing vulnerabilities.A majority of Security Consultants fall in this group and work as a part of Security Team.

White Hat Hacker

A White Hat Hacker is computer guy who perform Ethical Hacking. These are usually security professionals with knowledge of hacking and the Hacker toolset and who use this knowledge to locate security weaknesses and implement counter measures in the resources.They are also known as an Ethical Hacker or a Penetration Tester. They focus on Securing and Protecting IT

Systems.

Black Hat Hacker

A Black Hat Hacker is computer guy who performs Unethical Hacking. These are the Criminal Hackers or Crackers who use their skills and knowledge for illegal or malicious purposes. They break into or otherwise violate the system integrity of remote machines, with malicious intent. These are also known as an Unethical Hacker or a Security Cracker. They focus on Security Cracking and Data stealing.

Grey Hat Hacker

A Grey Hat Hacker is a Computer guy who sometimes acts legally, sometimes in good will, and sometimes not.They usually do not hack for personal gain or have malicious intentions, but may or may not occasionally commit crimes during the course of their technological exploits.They are hybrid between White Hat and Black Hat Hackers.

Read more »

Hacker vs. Cracker

What Is the Difference Between a Hacker and a Cracker?

Many articles have been written about the difference between Hackers and crackers, which attempt to correct public misconceptions about hacking. For many years, media has applied the word Hacker when it really means Cracker. So the public now believe that a Hacker is someone who breaks into computer systems and steal confidential data. This is very untrue and is an insult to some of our most talented Hackers.

There are various points to determine the difference between Hackers and crackers

Hacker

Definition - A Hacker is a person who is interested in the working of any computer Operating system. Most often,Hackers are programmers. Hackers obtain advanced knowledge of operating systems and programming languages. They may know various security holes within systems and the reasons for such holes. Hackers constantly seek further knowledge, share what they have discovered, and they never have intentions about damaging or stealing data.

Cracker

Definition - A Cracker is a person who breaks into other people systems, with malicious intentions. Crackers gain unauthorized access, destroy important data, stop services provided by the server, or basically cause problems for their targets. Crackers can easily be identified because their actions are malicious.

Whatever the case, most people give Hacker a negative outline. Many malicious Hackers are electronic thieves.Just like anyone can become a thief, or a robber, anyone can become a Hacker, regardless of age, gender, or religion. Technical skills of Hackers vary from one to another. Some Hackers barely know how to surf the Internet,whereas others write software that other Hackers depend upon.

Read more »

Hacker

Hacker is a word that has two meanings:Traditionally, a Hacker is someone who likes to play with Software or Electronic Systems. Hackers enjoy Exploring and Learning how Computer systems operate. They love discovering new ways to work electronically.Recently, Hacker has taken on a new meaning — someone who maliciously breaks into systems for personal gain.Technically, these criminals are Crackers as Criminal Hackers. Crackers break into systems with malicious intentions.They do it for Personal gain, Fame, Profit and even Revenge. They Modify, Delete and Steal critical information,often making other people's life miserable.Hacking has a lot of meanings depending upon the person’s knowledge and his work intentions. Hacking is an Art as well as a Skill. Hacking is the knowledge by which one gets to achieve his Goals, anyhow, using his Skills and Power.Most people associate Hacking with breaking law, therefore calling all those guys who engage in hacking activities to be criminals. We agree that there are people out there who use hacking techniques to break the law, but hacking is not really about that. In fact, hacking is more about following the law and performing the steps within the limits.

Read more »

What Is Hacking

The Art of exploring various security breaches is termed as Hacking.Computer Hackers have been around for so many years. Since the Internet became widely used in the World, We have started to hear more and more about hacking. Only a few Hackers, such as Kevin Mitnick, are well known.In a world of Black and White, it’s easy to describe the typical Hacker. A general outline of a typical Hacker is an Antisocial, Pimple-faced Teenage boy. But the Digital world has many types of Hackers.Hackers are human like the rest of us and are, therefore, unique individuals, so an exact profile is hard to outline. The best broad description of Hackers is that all Hackers aren’t equal. Each Hacker has Motives, Methods and Skills. But some general characteristics can help you understand them. Not all Hackers are Antisocial, Pimplefaced Teenagers. Regardless, Hackers are curious about Knowing new things, Brave to take steps and they are often very Sharp Minded.

Read more »