Write at HWS !!!

Guest Posting

How secure is your Computer ?

Check out your computer safety here . A lot of tools , tricks and hacks related to computer .

Blogger Tips and Tricks

A Lot of tips ,tricks and hacks related to blogger . Seo tricks to get maximum targetted traffic to your blog.

Easy ways to Earn Online

Online earning is not so difficult but it needs a lot of patience and hardwork. Here are some techniques to earn money through internet.

Facebook Tricks

A lot of facebook tips , tricks and hacks.It requires a lot of time but reading is must.

Pro Hacking

If you have knowledge about basic techniques then try this,but be careful as it is highly toxic.

Tuesday, November 17, 2009

Common methods to hack a website

Gone are the days when website hacking was a sophisticated art. Today any body can access through the Internet and start hacking your website. All that is needed is doing a search on google with keywords like “how to hack website”, “hack into a website”, “Hacking a website” etc. The following article is not an effort to teach you website hacking, but it has more to do with raising awareness on some common website hacking methods.



SQL Injection involves entering SQL code into web forms, eg. login fields, or into the browser address field, to access and manipulate the database behind the site, system or application.
When you enter text in the Username and Password fields of a login screen, the data you input is typically inserted into an SQL command. This command checks the data you've entered against the relevant table in the database. If your input matches table/row data, you're granted access (in the case of a login screen). If not, you're knocked back out.


In its simplest form, this is how the SQL Injection works. It's impossible to explain this without reverting to code for just a moment. Don't worry, it will all be over soon.
Suppose we enter the following string in a User name field:

' OR 1=1 double-dash-txt.png
The authorization SQL query that is run by the server, the command which must be satisfied to allow access, will be something along the lines of:
SELECT * FROM users WHERE username = ‘USRTEXT '
AND password = ‘PASSTEXT
…where USRTEXT and PASSTEXT are what the user enters in the login fields of the web form.
So entering `OR 1=1 — as your username, could result in the following actually being run:
SELECT * FROM users WHERE username = ‘' OR 1=1 — 'AND password = '’
Two things you need to know about this:
['] closes the [user-name] text field.
'double-dash-txt.png' is the SQL convention for Commenting code, and everything after Comment is ignored. So the actual routine now becomes:
SELECT * FROM users WHERE user name = '' OR 1=1
1 is always equal to 1, last time I checked. So the authorization routine is now validated, and we are ushered in the front door to wreck havoc.
Let's hope you got the gist of that, and move briskly on.
Brilliant! I'm gonna go hack me a Bank!
Slow down, cowboy. This half-cooked method won't beat the systems they have in place up at Citibank,
evidently


But the process does serve to illustrate just what SQL Injection is all about — injecting code to manipulate a routine via a form, or indeed via the URL. In terms of login bypass via Injection, the hoary old ' OR 1=1 is just one option. If a hacker thinks a site is vulnerable, there are cheat-sheets all over the web for login strings which can gain access to weak systems. Here are a couple more common strings which are used to dupe SQL validation routines:
username field examples:
  • admin'—
  • ') or ('a'='a
  • ”) or (“a”=”a
  • hi” or “a”=”a
… and so on.

Cross site scripting ( XSS ):

Cross-site scripting or XSS is a threat to a website's security. It is the most common and popular hacking a websiteto gain access information from a user on a website. There are hackers with malicious objectives that utilize this to attack certain websites on the Internet. But mostly good hackers do this to find security holes for websites and help them find solutions. Cross-site scripting is a security loophole on a website that is hard to detect and stop, making the site vulnerable to attacks from malicious hackers. This security threat leaves the site and its users open to identity theft, financial theft and data theft. It would be advantageous for website owners to understand how cross-site scripting works and how it can affect them and their users so they could place the necessary security systems to block cross-site scripting on their website.

Denial of service ( Ddos attack ):

A denial of service attack (DOS) is an attack through which a person can render a system unusable or significantly slow down the system for legitimate users by overloading the resources, so that no one can access it.this is not actually hacking a webite but it is used to take down a website.
If an attacker is unable to gain access to a machine, the attacker most probably will just crash the machine to accomplish a denial of service attack,this one of the most used method for website hacking

I recently wrote an article on Hack a website using denial of service

Cookie Poisoning:


Well, for a starters i can begin with saying that Cookie Poisoning is alot like SQL Injection

Both have 'OR'1'='1 or maybe '1'='1'

But in cookie poisoning you begin with alerting your cookies

Javascript:alert(document.cookie)

Then you will perharps see "username=JohnDoe" and "password=iloveJaneDoe"

in this case the cookie poisoning could be:

Javascript:void(document.cookie="username='OR'1'='1"); void(document.cookie="password='OR'1'='1");

It is also many versions of this kind... like for example

'

'1'='1'

'OR'1'='1

'OR'1'='1'OR'

and so on...

You may have to try 13 things before you get it completely right...


Password Cracking
Hashed strings can often be deciphered through 'brute forcing'. Bad news, eh? Yes, and particularly if your encrypted passwords/usernames are floating around in an unprotected file somewhere, and some Google hacker comes across it.
You might think that just because your password now looks something like XWE42GH64223JHTF6533H in one of those files, it means that it can't be cracked? Wrong. Tools are freely available which will decipher a certain proportion of hashed and similarly encoded passwords.

Know more about Brute force attack

A Few Defensive Measures

* If you utilize a web content management system, subscribe to the development blog. Update to new versions soon as possible.
* Update all 3rd party modules as a matter of course — any modules incorporating web forms or enabling member file uploads are a potential threat. Module vulnerabilities can offer access to your full database.
* Harden your Web CMS or publishing platform. For example, if you use WordPress, use this guide as a reference.
* If you have an admin login page for your custom built CMS, why not call it 'Flowers.php' or something, instead of “AdminLogin.php” etc.?
* Enter some confusing data into your login fields like the sample Injection strings shown above, and any else which you think might confuse the server. If you get an unusual error message disclosing server-generated code then this may betray vulnerability.
* Do a few Google hacks on your name and your website. Just in case…
* When in doubt, pull the yellow cable out! It won't do you any good, but hey, it rhymes.






Friday, November 13, 2009

List of best mafia war cheats and tricks

Now a days Mafia war is the second popular game on facebook after Facebook Farmvile,In my previous article wrote about Facebook farmvile cheats,so today i thought to give you list of best mafia war cheats and tricks.

List of best Mafia war cheats:

Use Mafia wars Auto player Did you hard about Mafia wars auto player Scripts.. Before you try that i have to warn you about Zynga terms and conditions.. You might get banned for using any script..  Anyway i posted an picture of this mafia wars auto player Tool. This tool can auto play you mafia wars game according to you saved settings.. To install this tool you need to use Mozilla Firefox. Follow this steps to to install this tool for Mafia wars..
1. Download and install Mozilla Firefox Browser.. If you are using Firefox then go to second step.
2. Now install Greasemonkey Add-on for Firefox. Here the link for Greasemonkey:https://addons.mozilla.org/en-US/firefox/addon/748Go to this link and click on Add to Firefox and install the add-on and restart Firefox. 3. Now go to http://userscripts.org/scripts/show/43573 and click on Green Install button now it will a window will appear.. click on install button from the window. 4. Now go to Facebook and log in to your account. Now go to mafia wars you will see some new link named Auto Play Settings, Instructions for this Mafia wars auto player (cheating tool) can be found at the following link..
Get lots of mafia war friend request - cheat
If you need mafia wars members quickly.. use this link : http://mafia.monkeytooth.net this will help you get more members. to avoid spam add a second email address to your account then submit that email. I got around 1500 members in a week.
Mafiawars LOOPHOLE TO EASY-ADD FRIENDS
Yes, this is real and NO other Mafia Adding technique out there can touch this! There is a new Mafia Wars loophole that allows ANYONE to click on a link and Easy Add people to their mafia WITHOUT being friends first. This is really unbelievable, we should take advantage of this before Zynga fixes it! It is really easy. Follow these directions: The links should be in the format of something below: http://apps.facebook.com/inthemafia/remote/html_server.php?xw_controller=war&xw;_action=add&xw;_city=1&friend;_id=xxxxxxxxxx 1 Copy the link above and replace my ID (100000186883227) with yours. 2 Paste the link in the discussion board, or in the wall below I will be uploding more mafia war cheats and tricks so i suggest you to bookmark this page






Monday, November 9, 2009

Hack hotmail password using a keylogger

In my last article Keylogger to hack passwords i mentioned about aradamax keylogger and its features,today i found another keylogger to hack hotmail passwords.This free keylogger software, too, is currently FUD(Fully undetectble) and used to hack any hotmail password. I will demonstrate how this free keylogger can hack a hotmail password,This keylogger can also be used to hack gmail passowrds,but in this article i will tell you to hack a hotmail password with this keylogger


Hack hotmail password using a keylogger - Method


1.First of all Download free keylogger


2.Now extract all contents in to a folder


3.Run easylogger.exe file and you will see this:


hack hotmail


4..Now, fill in your Gmail username and password in respective fields. Enter the email address where you wanna receive windows live passwords. You can set timer as you wish. This timer controls the time interval between two logs emails. Now, hit on "Build" and you will get server keylogger file named "Your logger.exe" created in current directory.


5.Now to hack a hotmail password you need to make victim install this file 
on his/her computer,you can also bind it with a mp3 file with a binder,to fool your victim.


Note: Use Binder software which is itself a FUD. If you use non-FUD Binder software, then keylogger will get detected as virus after binding. Be careful while choosing Binder


6. When server keylogger file is installed on victim computer, this keylogger will start recording the typed keystrokes on victim computer. These keystrokes will contain windows live password which we wanna hack. Keylogger will then send these recorded keystroke logs to your email address which you have entered in Step 4. 7. Thus, you will receive emails like this:




8. What is unique in this keylogger is that this keylogger
also sends you computer name and IP addressof victim alongwith typed keystrokes. Many times, IP address is required for hacking remote computers. In such cases, Easy keylogger is very useful.


Thus, you can hack a hotmail password using this free keylogger. I have personally tested this free keylogger and found it working 100%


For information on more methods to hack hotmail password,see my article 6 ways on How to hack hotmail account password






Saturday, November 7, 2009

4 Ways on How to Hack myspace account passwords

MySpace is one of the most widely used Social Networking website by many teenagers and adults across the globe. I have seen many cheaters create secret Myspace accounts in order to exchange messages with another person and have secret relationships. So, it’s no wonder why many people want to hack Myspace account. In this I have decided to uncover the real and working ways to hack MySpace account password

The article below explains the most popular ways used to hack myspace account passwords.Recently one of my readers asked my the method tell all the methods which the hackers used to gain access to myspace account.




Common ways to Hack myspace passwords:
Myspace Phishing:

Phishing is the most commonly used method to hack MySpace. The most widely used technique in phishing is the use of Fake Login Pages, also known as spoofed pages. These fake login pages resemble the original login pages of sites like Yahoo, Gmail, MySpace etc. The victim is fooled to believe the fake Myspace page to be the real one and enter his/her password. But once the user attempts to login through these pages, his/her Myspace login details are stolen away.I have also posted an article about myspace phishing

Keylogging:

The easiest way to hack Myspace is by using a keylogger. A keylogger is a small program that monitors each and every keystroke that a user types on a specific computer’s keyboard. To use a keylogger you doesn’t need to have any special knowledge. Anyone with a basic knowledge of computers can use keyloggers. With my experience I recommend the following keylogger as the best to hack Myspace

1.Winspy keylogger
2.Sniperspy

3. Social engineering:
This sounds to be pretty not working at beginning. Even i was neglecting this way. But, once, i thought of using it against my friend on orkut and i got his gmail password very easily by this method. I think many of you might be knowing how what this social engg is. For newbies, social engg is method of retrieving password or answer of security question simply by quering with the victim. You have to be very careful while using this as victim must not be aware of your intention. Just ask him cautiously using your logic.

4. Myspace bugs
Hackers usually try to find bugs and exploits in  myspace and when they find it they do serious damage to
myspace,One day my friend told that he had found a bug in myspace,and when i tried it ,hurrah it worked until myspace came to know about it and it was fixed.I have also posted an article Hack myspace accounts which explains the bug

This article is for educational purposes only.I just want to make you cognizant about myspace dangers online.






Hack Facebook, hotmail and yahoo account

I get numerous email from readers asking me to tell them the easiest way to hack Facebook,hotmail and yahoo account,Many of these people claim that they have lost their passwords because they have been hacked and now need to get their password back.so today i have decided to compose a post explaining the ways to hack yahoo,aol and hotmail account

Phishing:
This is one of the most popular way to hack Facebook,hotmail and yahoo account,In this method the hacker creates a fake page which exactly resembles to the original page,when the victim enters his email address or password it is saved in a txt file.
I have also posted a way to Create a fake login page for any site,just check it out


Keylogging:
A keylogger, sometimes called a keystroke logger, keylogger, or system monitor, is a hardware device or small program that monitors each keystroke a user types on a specific computer’s keyboard. Keylogger is the easiest way to hack a Facebook,hotmail and yahoo account if you have physical access to victim’s computer. 


Post related to keylogging:
1.
Keyloger to hack passwords
2.
Hack an account using keylogger
3.
Hack gmail account using keylogger
4.
How to install a keylogger remotely
5.
How to bypass keylogger antivirus detection





IMPERSONATION

It is possible to impersonate a program on a computer by launching windows that look like something else. For instance, let's say you login to the MSN® service and visit a website (in this case a hostile website.) It would be possible for this website to pop-up some windows that look like something else. They could look almost identical to windows that an inexperienced user might expect from his local computer. The user could be fooled into submitting information to the hostile website. For instance, consider the effect of seeing the following window:



SNIFFING:

If two people do not share the same computer, but do share the same network, it may be possible for one to sniff the others' packets as they sign-on. The traffic between your computer and the internet site you are accessing may be able to be recorded and decrypted or "played-back." This is not a simple attack to execute, but is possible if two people are close to one another and share a hub. Again, this is likely to be illegal and we do not condone this activity.

BRUTE-FORCE ATTACK:

Many people want to find software to perform a brute-force attack. This is really impractical. It would take hundreds of thousands of years to attempt any kind of reasonable brute-force attack on Facebook,hotmail and yahoo accounts and this would expand exponentially if the password is longer than the minimum length. Using multiple computers or multiple sessions could reduce this to merely thousands of years. This is highly illegal since these services own the servers on which an account is hosted. Even if you are hacking your own account, you don't own the servers and the service is going to monitor and log this activity. It is extremely unlikely that you could recover a password in this way, but it is extremely likely that you'd be arrested and prosecuted for doing this.
Know more about Brute force attack

SOCIAL ENGINEERING:
Social engineering is the name given to the art of attacking the person, rather than the computer or system. The basic principle is that many people can be talked into giving someone else their id and password if they think it is someone that they can trust. For instance, I might call someone and say I was from AOL and that I was finally getting around to responding to their technical support question. I would then ask you to describe the problem that you are having and tell you that we have a solution. However, I just need to verify the account. Can you give me the username and password again? A surprising number of people would fall for this obvious scam. There is no limit as to how elaborate this can be. The more information that is given by the caller, the more realistic or believable the call is. Again, never give your password to anyone. No legitimate customer service representative will ask for this information.

These are the basic methods that we are aware of for hacking any Facebook,hotmail and yahoo account or any other dial-up or on-line password






Friday, November 6, 2009

Hack msn and recover forgotten msn and hotmail password

In my previous post How to hack msn account password i told you to hack msn password using password recovery programs,in this tutorial i will explain you to recover forgotten msn passwords with password recovery programs,
MSN Hacker is MSN software used to recover forgotten MSN passwords. This MSN Hacker is “Password Recovery for MSN”. So guys, if you have forgotten MSN or windows live password, don’t worry. Just use this MSN Hacker software to recover forgotten MSN or windows live passwords.





How msn hacker works?
What MSN Hacker - Password Recovery for MSN does is scan computer for locally stored MSN, windows live passwords. MSN passwords are locally stored if “Remember Me” is checked.





Functionality of MSN Hacker :

* MSN password decrypter (decrypts MSN Messenger password)
* MSN passwords decoder (decodes MSN password)
* MSN password finder (finds MSN Messenger passwords)
* Recover MSN Messenger password (MSN passwords recovery)
* MSN Messenger password ripper (rips MSN passwords)
* Multiple profiles (MSN ID’s) are supported.

How to use MSN Hacker ?

1. Download MSN Hacker software.
2. Install it on computer and run the MSN Hacker software.
3. You will get as :
Recover MSN windows live hotmail account passwords
4. Click on “Recover Password” and MSN Hacker will start searching for locally stored msn passwords. On obtaining such MSN, Windows live or Hotmail password, it will return the MSN password and email as shown.
So guys, if you have lost or forgotten MSN, Windows live or Hotmail account password, just use this MSN Hacker software to recover lost forgotten MSN password. Just run this MSN Hacker and on clicking Recover password, msn hacker will give you forgotten MSN password. If you have any problem in using this MSN Hacker software to recover forgotten  MSN, windows live or Hotmail password, mention in comments.






Speed Up BSNL Dataone Broadband Connection

In this article I will discuss 3 important tips to significantly speed up your internet access through BSNL Dataone broadband connection.
Many BSNL Broadband and BSNL Dataone users  are frustated by BSNL DNS servers. These BSNL DNS are very unresponsive. The look up takes a long duration and many times just time out. I was much frustated by BSNL. But, since this is most cost-effective, i decided to tell you some tricks to speed up BSNL Dataone Broadband connection




Speed up BSNL Dataone Broadband connection speed - Tricks


Trick 1:
1. Open Control Panel -> Networking and Sharing Center -> Manage Network Connection.

2. Now a window showing all networks will be opened. Select BSNL Connection -> Right click -> Properties.
3. Now, double click on Internet Protocol Version(TCP/IPv4) and in newly opened window at bottom, select “Use the following DNS Server address” .
4. And fill these 2 DNS Addresses in two fields:
208.67.222.222
208.67.220.220
and hit OK. Thats it. Your BSNL Internet Broadband DNS Servers changed.
Trick 2:
Firefox users can use FlashBlock extension to prevent downloading of Flash content by default, thereby significantly speeding up browsing experience. You can click on the placeholder icon to display the original Flash content any time. This is more of a passive tip in that reduces data usage to improve your overall experience.

Trick 3:

You can try to increase your broadband bandwidth tweaking the TCP/IP parameters. The process is simplified by using TCPOptimizer, a free tool. It helped me, your mileage may vary.

Now, your BSNL internet broadband speed will be increased. Thus, you can now enjoy high speed BSNL Internet broadband. I hope you’ll like this BSNL Internet speed increasing hack/trick. If you have any problem or other high speed BSNL DNS Servers






Thursday, November 5, 2009

Lucky winners of zonealaram security pack contest announced

Hi friends today i decided to announce the contest to win a free zonealaram security set worth 60$,Thanks alot guys for your support and participation.






Lucky winners:


1.Princydudeafnan@hotmail.com (Rapidshare account)
2.mnm_mnm_beauty@hotmail.com(Avira premium free version)
3.cool_vicky@hotmail.com(Rapidshare account)
4.umairhaider20@hotmail.com(Zonealaram security pack)
5.magic_nabeel@hotmail.com(Kaspersky 2009 activation key)


If you're one of them, hearty congratulations to you. If you're not one of them, don't worry, there are many more  contests to come... surely you'll be the one next time









Monday, November 2, 2009

Hack facebook account - Facebook freezer

Today i thought to tell you a method to hack a facebook account,This is not actually hacking facebook account but preventing the victim to login into his facebook account.


Principle behind working:
 Facebook has security feature in which after 25 or so logins the account is temporarily disabled,to enable
the account the account owner must reset his/her account
Thus, even when victim tries to login his Facebook account using correct password, he is not able to login to his Facebook account, thus you can hack Facebook account thanks to Facebook Freezer. This Facebook Freezer works cool on windows xp and windows vista (even supports earlier version of windows).



Hack Facebook account - Facebook freezer




1.Download Facebook freezer to hack facebook account.
 
2.Now extract the files into a folder
 
3. Now, run FacebookFreezer.exe file to get this:


Hack Facebook account by Facebook Freezer


4. Simply enter email id of victim whose you wanna hack Facebook account using Facebook freezer and hit "Freeze".


5. That's it. You will now be able to hack Facebook account using this Facebook freezer. This freezing will continue until you hit "Stop Freezing".
This will not hack facebook account for you but it will prevent the victim to login into hisher account,I have also made a post on How to hack facebook password it will show you real ways to hack facebook.








Twitter Delicious Facebook Digg Stumbleupon Favorites More

 

Recent Posts

Join Me On Facebook

200+ Followers

Followers


meet women in Ukraine contatore visite website counter

Recent Comments

Follow Me On Twitter

1112+ Followers