TOP WEBSITES TO LEARN HOW TO HACK PROFESSIONALLY

Hacking is definitely not as easy as shown in various movies, still there are thousands of newbies who wants to learn hacking for one or another reason but don’t know where to start from. So, below is a list of some website to start your journey.

list of various Ethical hacking Sites
Backtrack: Rating (5/5)

No need to introduce this software. If you have a little bit of experience in hacking then you must have heard about Backtrack. This website provide many hacking tutorials using Backtrack. Have there own Training programs, blog and large community. Backtrack is highly popular among Security Professional and many top certifications like CEH use backtrack for teaching penetration testing.

 If you are a Backtrack beginner then you must bookmark this website.

Hell bound hackers: Rating (4.5/5)

Hellbound Hackers is a security training website which covers large number of security topics like programming, Encryption, Cracking etc. HellBound is one of largest hacking teaching sites out there. No matter, beginner or expert HellBound hackers is a great learning ground for everyone.


The HITB Network: Rating (4/5)

HITB Network provide you latest security news and happenings from the hacker underground.They have dedicated forums which are really helpful for asking security questions and discussions.

Hack This Site: Rating (3/5)

Hack This SIte is one of the best to learn ethical hacking. Hack This Site offers you various challenges to test and sharpen your skills. They have a vast selection Of ethical hacking articles,list of various useful tools and one of the best forums for your any hacking related query.


Hackaday: Rating (3/5)
Hackaday provides you vast numer of tutorials to learn like android hacks, cellphone hacks etc and also serves you hacking related news. A really good website to learn ethical hacking.


EvilZone: Rating (3/5)

Evilzone is another great forum, where you can learn everything related to hacking. You can find many hacking experts in this forum. EvilZone is one of the biggest security related forum, having 6898 Members and 21538 Posts in 3197 Topics.


Go4expert: Rating (3/5)

Go4expert is a programming and seo Forum and as the name suggest it covers many tutorials based on programming and web development tips. Go4excepert is best for newbies who is looking for great way to start learning ethical hacking.


Ethical Hacking Network: Rating (3/5)
In this website you can find articles and interviews of various cyber security gurus. Giveaway, Books related to hacking, Information about surveys, Certification and much more.

How to Hack a Website in Four Easy Steps

Every wondered how Anonymous and other hacktivists manage to steal the data or crash the servers of websites belonging to some of the world biggest organisations? Thanks to freely available online tools, hacking is no long the preserve of geeks, so we've decided to show you how easy it is to do, in just four easy steps.

Step 1: Identify your target

While Anonymous and other online hacktivists may choose their targets in order to protest against perceived wrong-doing, for a beginner wanting to get the taste of success with their first hack, the best thing to do is to identify a any website which has a vulnerability.

Recently a hacker posted a list of 5,000 websites online which were vulnerable to attack. How did he/she identify these websites? Well, the key to creating a list of websites which are likely to be more open to attack, is to carry out a search for what is called a Google Dork.

Google Dorking, also known as Google Hacking, enables you find sensitive data or evidence of vulnerabilities by querying a search engine like Google or Bing. It basically allows you to enter a search term into Google and find websites which may have these vulnerabilities somewhere on the site.

Don't worry about needing technical expertise to know what to look for. Kind-hearted hackers have produced lists of these Google Dorks, neatly categorised into the type of vulnerability you are looking for. Looking for files containing passwords? There's got a Dork for that. Login credentials? There's a Dork for that.

For example, if you are looking for files stored on websites containing passwords, then a sample search query we found openly listed on one indexing site was: intitle:"Index of" master.passwd. This returns the results shown in the screengrab above.

So now you have a list of potential victims. Next you need to narrow this down even further.

Step 2: Check for vulnerabilities

Having a huge number of sites which may or may not be vulnerable is not much use unless you can pinpoint one which is actually open to attack. This is when a programme called a vulnerability scanner comes into its own and the most popular is called Acunetix.

Acunetix, developed by a UK-based company, was designed, and is still used, as a tool for web developers to test sites they are building. However the hacking community has commandeered the tool and uses it to identify existing vulnerable sites.

You can download a trial version of the software for free from the official Acunetix website or if you venture into the murky depths of a hacker forum and search for Acunetix, you can find cracked versions of the full application freely available.

Acunetix, as you can see from the screen shots above, is a simple, straight-forward Windows application and all you need to do is enter the URL of the site you want to target, and press Process. Acunetix will scan the entire website, including all pages associated with it, and return a list of vulnerabilities it finds. If you find the type you are looking for, you will need to move onto Step 3, as Acunetix does not perform any website penetration.

Step 3: Attack the website

Attacking a website is done by two main methods. The first is by carrying out a Distributed Denial of Service (DDoS) attack which overwhelms a website's servers and forces it to shut down. We will deal with this type of attack later, but first we will look at how you can hack into an account and steal some information contained within databases on the site.

This type of attack is known as a SQL (pronounced sequel) Injection. A SQL Injection attack aims to capture information stored in a database on the particular website by introducing some SQL code. SQL is a programming language designed for managing data in a database.

But fear not, you won't need to understand a single line of SQL to carry out this attack. Thankfully another freely-available and easy-to-use application, originally developed in Iran, can be downloaded from the web saving you the trouble of dealing with any complex code.

The program is called Havij, the Farsi word for carrot, which is also a slang word for penis and so, unsurprisingly, this is the piece of software required to penetrate a website.

Again there are free and paid-for versions of Havij available with the paid-for version having more powerful capabilities. Again the world of hacker forums is your friend here and cracked versions of the full Havij application are available if you look for them.

The Havij interface is once again like any other Windows program and all a virgin hacker needs to do is simply copy-and-paste the address of their target website and press a button.

Havij allows you to perform a number of different types of operation including one called a Get, which unsurprisingly gets all the information stored on databases on that particular site which can be usernames, passwords, addresses, email addresses, phone numbers and bank details.

And that's it, within minutes you can search for, download and use a couple of automated tools which will allow you to access websites which are vulnerable to this type of attack. While most high profile companies' websites will be protected from this type of attack, the fact that Sony's website and the personal information of its customers was stolen in a manner similar to this, shows just how vulnerable the web is.

Step 4: If all else fails, DDoS

Hacktivist collective Anonymous changed their tactics in the last 12 months moving away from DDoS as their primary tool for attacking websites, preferring if possible to use SQL Injection instead. However, when this is not possible, they will revert to DDoS attacks, and you can to, with the help of another freely available tool.

And it turns out that DDoSing a website is no more difficult than carrying out a SQL Injection. The programme used is called Low-Orbit Ion Canon (LOIC) which was developed for web designers to stress test websites, but has been high-jacked by hackers in order to attack websites.

Available as a free download from Source Forge, LOIC employs a very user-friendly interface and all potential hackers need to is type in the URL of the site they want to crash and LOIC will do the rest. What the application will do is send up to 200 requests per second to the site in question.

While most bigger sites might be able to deal with this request without crashing, most websites out there will not, especially if you get together with some other hacking virgins and combine your efforts.

So easy is it to use this technology that you can even control it from your BlackBerry, meaning you can be enjoying a pint in the pub with your friends while carrying out a DDoS attack on a website of your choice.

If our tutorial has not provided you with enough information, there are dozens of other tutorials on various hacker forums around the web and even video tutorials on YouTube which you can watch.

How to Hack Facebook account............

First we will talk about requirement.

The one and only requirement is a site. You must create a site to host(upload) the phishing files. You may create a FREE Site here: http://www.5gbfree.com/. Its free and easy. We found this site after searching a lot on internet.

Download Phishing Files: Click Here

Instructions:

• Download phishing files
• Extract it using winrar.
• You will find four files and one folder under that rar file.
• Upload all files and folder to your created site[For example, if you site is www.example.com, then create a folder with name "Facebook", then upload your files in "Facebook" folder].
• Prepare phishing URL[Making phishing url, if you have uploaded all files to "facebook" folder, then your URL should look like this, www.example.com/facebook/index.htm].
• Dont rename any file!
• Everything is ready now.
• Send a mail to victim(person that you want to hack) with phishing URL. Write any message you want, like click here to see your gift, etc.
• Its recommended to hyperlink a text with that link, like write "Click here" and then hyperlink it to phishing URL. There are option of hyperlink in every mailing client/site. You may also short the URL using http://www.goo. to make it more perfect. Send Mail!

Now, you have to wait for some time. When the victim will enter his/her ID and Password, it will get recorded in a text file that you have uploaded named "passes.txt". Check this file at regular interval and if you find password, then the account is HACKED.

**********************************************************************************************************************

In phishing, there is a 50-50 chance. If the victim know about phishing, he/she will not enter his/her password and phishing attack will fail. So, there is no guarantee. Do it on your own risk.

Video on how it works:

Posted by SOMNATH BAKSI

SCARE YOUR FRIENDS WITH FAKE FACEBOOK HACKING

Have you ever thought of making your friends afraid on Facebook, Making
them look like they are being hacked? Today, I will show you some little
pranks to play with your friends on Facebook and make them look like they
are really being hacked.

Firstly, Copy the below codes into notepad

dim strDot
strDot="."
set ws = CreateObject("wscript.shell")
wscript.sleep 5000
for i = 1 to 100
ws.sendkeys "Initializing : &H246" & 700 + i & "{ENTER}"
wscript.sleep 100
next
wscript.sleep 1500
ws.sendkeys "_Profile ID Found...._{ENTER}"
wscript.sleep 1500
ws.sendkeys "_Targeting Profile..._{ENTER}"
wscript.sleep 1800
ws.sendkeys "_Exploiting Profile_{ENTER}"
wscript.sleep 800
for i = 1 to 20
ws.sendkeys "*Sending Exploits...* : " & i & "{ENTER}"
wscript.sleep 800
next
wscript.sleep 1500
ws.sendkeys "*_Starting Password Attack_*{ENTER}"
wscript.sleep 800
ws.sendkeys "_Attack Type : Brute Force_{ENTER}"
wscript.sleep 1500
for i = 1 to 30
ws.sendkeys "Hacking account Now" & strDot & "{ENTER}"
strDot = strDot & "."
wscript.sleep 800
next
wscript.sleep 1500
ws.sendkeys "*Attack Completed...!*{ENTER}"

Now save it as any name but with .vbs extension. E.g:- kenalsoft.vbs . and save to desktop.
Now to the main trick, Open your facebook account and select the person you want to play pranks with from
chat,
MAKE SURE THE PERSON IS ONLINE.
And the last part now, 

• Please becareful in this part.

== >> Double click on the vbs script ypu crated previously and immediately move your cursor on the
facebook chat box of the person and see what happens.
DOWNLOAD HERE ALSO   Facebook Scare
                                                                                                             Posted By Somnath Baksi

Delete any Facebook profile

Actually this is not a hacking tutorial. Its only a trick by which you can delete the

facebook profile of anyone.

This is my creation about the facebook security, so how it works what we need

and how to do this ? Let me explain you in detail. If you want any help or

suggestion then you can submit it in comments thanks for reading this tutorial

of SOMNATH creations Read more interesting post about Facebook here.

So, lets do it in some steps.

 Step 1 :

               https://www.facebook.com/help/contact.php?show_form=memorialize_special_requests

Click Here first

This is the Url we will use to Report our slave. This Form allows you to report a

deceased person (someone who is dead).

 Step 2 :

Complete the Fields:

Explain: Full Name: Your Victims Full name(Name last name)

Date of birth: Go at his profile and click at Info tab and get his date of birth.

Account Email Addresses: Do the same thing, go to his profile and click on info tab and get his email addresses.Networks: Again,go to his profile and click on Info tab and get his networks,

copy them and paste in the form. Web address of profile you would like to report: Just go to his profile and copy the link in the address bar. Relationship to this person: To make more believable select Immediate Family. Requested Action: Remove Profile Proof Of Death: This is the hardest part of

this form. Now to make a proof of a death just Google in your language a "Death

Certificate" or "Certificate of a Death". It doesn't matters from what country you are, Download any death certificate and edit it with the help of photoshop. Save your image to desktop and upload it in one of the Image Free Hosting like: http://imageshack.us

And it's done.

Yeah that is only the trick and that is only the creation. Think Think! Wink Wink

;) ;)

Now,

Additional Information: Write what you want, just write that you are in his/her

family and you would like to close his/her Facebook account because you won't

like that when he is dead, his Facebook is opened.

Attachment includes the note and its objects.

Finally Submit and wait for 24 hours. Please don't misuse my creation. Its only

a service of facebook.

Thanks for a visitor of my creations.

Facebook ID finder eaisly

http://www.facebook.com/

Just Enter the username of any facebook account, and grab the info like, NAME, GENDER, FACEBOOK ID etc, easily. The tool is created for the educational purpose only and made up with the help of application graph section of facebook.

Created By Somnath baksi

How to view saved password in google chrome ?

POSTED BY SOMNATH BAKSI

Previously i had showed you how to view password behind asterisk. In this post i will show you a simple but very powerfull trick  to view or hack saved password in google chrome. It does not  matter for which website the password is saved it will work on all of them. It will work on Facebook, Gmail, Yahoo, twitter and many more. If you get your hands on your friend computer  you can hack their password with this simple little trick. It does not require any software or addons to be installed on your computer. Lets get started.

How to do that ?

1. Open any website where password is saved by user. Here i will demonstrate with facebook but it will work on any website.

2. Right click on password(Dots or asterisks) as shown in below image.

3.Then click on Inspect element.

4.Then change Password to text as shown in below picture.

•                                   Before changing it will look like below:

•  After changing it will look like below:

5. Done now asterisk or dots will changed to text. Still confused or did not got any steps then watch video below but make sure to watch it in high defination. If you like it then like the video.

Still confused watch the video below

Do you Like this story..?
Kindly Bookmark and Share it: