Myspace Private Picture Hack

Can't view private pictures on someone's profile? Here is a trick to show off that private pics they hide on their profile on Myspace. I do not recommend using any software/program this time but a simple url trick would do.

To be able to view private pics on Myspace profile just copy this URL below:

http://lads.myspace.com/slides/photoslider.swf?u=

so just put your private person or anybody's myspace id after the = and you can see all their photos

For example: http://lads.myspace.com/slides/photoslider.swf?u=29736584

have fun :)

Hacking Joomla Sites

Personally I like Joomla! based sites because it is easy to manage and sort things out even doing the SEO just like on wordpress blogging and even creating your own site design. But these days more and more Joomla! sites are getting hacked by anonymous hackers on the web globally. Reasons are easily be pointed out to unaware webmasters/owners of the site the installation of extensions or shall we say add-ons to Joomla resulting in a more vulnerable of getting exploited, massive damage and defacement to their site including loss of prospects, personal information, and on financial aspect.

How these events had happened? When the site owners pointed fingers to their hosts blaming for unsecured web server, failed security, failure monitoring and so forth. But they don't know that by adding some extensions without checking first if the extension that they are using have a bugs or vulnerable to exploitation then it would be a major reason that their site is prone to hacking. For my personal experience I manage to obtain admin password hashes of several Joomla based sites in a minutes of exploiting using Google as search engine. Using MD5 hash cracker the encrypted MD5 passwords are converted into readable ascii letters. Fortunately a lot of web based MD5 cracker is available on the net making the cracking process speed up.

It is really a big issue for security aspect on your site if you are not aware of these kind of vulnerables and bugs of those extensions that you applied on your Joomla site. It is best advised to manage and update the extensions used (if update of such extension is available) then you should update it to address the known security issues to your site to avoid getting hacked.

Windows XP Cracking Passwords the Easy Way!

Well, many of us trying to crack/decode a password on Windows XP System had a hard time or shall we say most of the time we end up failure specially if we are cracking more than seven (7) characters long passwords. Some people uses cracking programs whether brute forcing, dictionary based cracking and so on. Face the fact that seven or more characters long passwords are harder to decode, possibly you can crack it for a few or more days by brute forcing.

Now we can easily crack long passwords for an instance in my personal experience I will introduce to you using the 0phCrack and the infamous "Rainbow table" algorithm. Surprisingly the seven character long or more passwords are cracked in a few seconds! Yes it's true, But bear in mind that I have my Rainbow table as big as 669 MB which it can be loaded by 0phcrack and cracks passwords in a few seconds (5 user accounts on my system with 12 characters long passwords!).

Maybe you'll think that this is just another work-today-die-tomorrow cracking tricks but to let you know that this process cracks MD5 hashes. LM and NT passwords are easily cracked by this method specially on Windows XP system. I will not discuss further as to where you can find 0phcrack and rainbow tables that I used (669MB file size) but believe me it helps me a lot, making the process done quickly as I never expected before. You can find those tools and references on many sites for free. But if you really want to know where the hell I get those tool and the rainbow table then you are free to send me pm or post your comments here.

Using this method of cracking Windows Xp password there is no need for you to reset loss password, saves your day ahead without getting caught for resetting the administrator password on windows xp. Just make sure you have the privilege to install the mentioned program/tools so that your cracking will be successful.

So start cracking now!

How to use Airodump (from WEP cracking tutorial)

Airodump usage: airodump [interface] [output file prefix] [channel no.] [IVs flag]

1. The [channel no.] can be set to a single channel (1 thru 14) or set to 0 to hop between all channels
2. The [IVs flag] can be set to 1 to only save the captured IVs

e.g. airodump eth1 testfile1 6 produced the in progress capture below:


Basics to be aware of from the above screen capture are:

- BSSID = MAC address of the access point (but not always!)

- Beacons = Number of captured beacon packets (of no use!)

- # Data = Number of IVs captured so far (this is the all important figure!)

- MB = Data Rate '48' mixed mode in the above example. A '.' appears after the figures if the Data Rate is dedicated e.g. '48.'

- WEP = Network is configured as WEP

- Number of IVs required to break WEP depends on the WEP key length
* Approximately 300.000 IVs for 40-bit WEP (AKA 64-bit WEP)
* Approximately 1.000.000 IVs for 104-bit WEP (AKA 128-bit WEP)


Examples:

airodump wlan0 capture1 10 (Interface=wlan0, filename=capture1, channel=10)

airodump eth1 testfile 6 1 (Interface=eth1, filename=testfile, channel=6, only captured IVs saved)

airodump ath0 alpha 0 (Interface=ath0, filename=alpha, channel hopping mode)




Output Files:


An airodump capture with produce the following output files .txt, .cap and .gps

The .txt file contains:

* BSSID and MAC addresses

* Time/Date info

* Channel Info

* Data rate

* Encryption method

* No. of beacons captured

* No. of IVs captured

* LAN IP

* ESSID


The .cap file contains the packet capture from your session. This is the file that is input into aircrack for WEP cracking.

The .gps file contains GPS related info if you have a GPS device enabled


Troubleshooting:

Be aware of the modes of your card and target network (802.11b or 802.11g). I have observed Airodump capture only around 2,000 IVs an hour (on a busy network) when the card is an 802.11b card and the network is working in 802.11g mode. Be sure your card and the target network are using the same mode.

On a saturated 802.11b network we captured around 23,000 IVs a minute.

On a saturated 802.11g network we captured around 140,000 IVs a minute.


Source:http://wirelessdefence.org/Contents/Aircrack_airodump.htm

Wep Cracking - The Fbi Way

WEP cracking usually takes hours. Lots of hours, depending on the amount of traffic on the access point. A few months ago, two FBI agents demonstrated how they were able to crack a WEP enabled access point within a couple of minutes. 3 minutes to be exact. This is unbelievable when compared to, say 3 days of work. Here is how they did it, and how you can do it. You may need to know your way with each and every of these tools to get this done. You can ask Google for that. Anyway, if you are familiar with them, just do as follows :

1. Run Kismet to find your target network. Get the SSID and the channel.
2. Run Airodump and start capturing data.
3. With Aireplay, start replaying a packet on the target network. (You can find a ‘good packet’ by looking at the BSSID MAC on Kismet and comparing it to the captured packet’s BSSID MAC).
4. Watch as Airodump goes crazy with new IVs. Thanks to Aireplay.
5. Stop Airodump when you have about 1,000 IVs.
6. Run Aircrack on the captured file.
7. You should see the WEP key infront of you now.

The software runs on Linux, they are all available on the Knoppix Linux Live CD. And finally, I think you should always use a combination of 2 or more security features. As for what you need, get Aircrack (Includes Airodump, Aireplay, Aircrack and optional Airdecap for decrypting WEP/WPA capture files) and get Kismet.

Update: Kismet for Windows (Kiswin32) is available now.

Download this tools:

Kismet:Win32 version
http://www.kismetwireless.net/code/setup_kismet_2007-10-R1.exe

Aircrack:
http://download.aircrack-ng.org/aircrack-ng-0.9.3-win.zip

Source:h++p://masc2279.no-ip.org/gadgets-toys/internet/wep-cracking-the-fbi-way/

[Trick]Easy Way to Locking and Hiding Hard Drives!

Here I' m going to tell you about manually locking/hiding your hard drive tricks without using any software! Just follow this steps:

1. Open Registry (go to run command, type "regedit" and press enter)

2. then go to this key

HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\Explorer

3. Now click right button and create DWORD Value (blue color)

4. Rename it as "NoViewOnDrive" (for locking drive) or Rename it as "NoDrives" (for Hiding drive)

5. Double click it and put some numbers to lock your desired Drive and click ok.

Here is Drive No.
A: 1
C: 4
D: 8
E: 16
F: 32
G: 64
H: 128

finally restart or log-off the computer to take effect.

Keep in mind that "0" is Default Value or Disable or remove this setting.

Note:At your own risk! If you fucked up your registry settings then try "System Restore" or have your backups before you edit your registry.

Tips & Tricks: Multi-login Yahoo! Messenger

In this tutorial you can use ym in a multiple account. Basically you can't use Yahoo! Messenger with multiple login account for an instances. This trick requires registry editing.

This will be very easy to understand as we go on with the tutorial, just simple steps required:

1. Go to START->RUN-> Type ‘regedit’ and press ENTER.

2. Then navigate to ‘HKEY_CURRENT_USER\Software\Yahoo\Pager\Test’

3. Now in the right pane right click New->DOWRD Value. Name it as ‘Plural’

4. Now Double click the the Plural DWORD you created & set the value to 1

5. Reboot may or may not require, you can test it by opening another Yahoo Messenger program :)

Enjoy!