wifite – Automated Wireless (wifi) Attack Auditor

Hacking Wifi

Wifite v2 is now available Get the latest version on Github What’s new in this version: support for cracking WPS-encrypted networks (via reaver) 2 new WEP attacks more accurate WPA handshake capture various bug fixes Version 2 does not include … Continue reading

How to Clone Any Website Using HTTrack (Hacking Tutorial)

Computer Hacker Fake Website

I have talked in past posts about how a person might redirect traffic intended for a real website, such as a facebook or maybe a bank site, to your fake website. Of course, to really make this work, you would … Continue reading

Find Openings in Firewalls with Firewalk in Linux/UNIX

firewall

Access control lists represent an important first line of defense on most networks, since they are commonly used on routers to limit the protocols allowed to pass to host systems behind the router. Firewalk is an open source tool that … Continue reading

John the Ripper Basics Tutorial

john-1

I wrote this tutorial as best I could to try to explain to the newbie how to operate JTR. Remember, this is a newbie tutorial, so I won’t go into detail with all of the features. JTR is a program … Continue reading

15 Hacking Tools to Start Your Journey

largest-buyer-tools-hacking.si_-618x347

1. Nmap I think everyone has heard of this one, recently evolved into the 4.x series. Nmap (“Network Mapper”) is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although … Continue reading

Crack Wifi Encryption with Kali Linux – Fern Wifi Cracker for WEP Hacking

wifi_hack

Today we will cover cracking WEP Wifi Network Encryption with Fern Wifi Cracker. This Hacking tool comes prepacked in Kali Linux. This is a relatively simple process anyone can do with the proper equipment and following this tutorial. First you … Continue reading

How to Pivot from Victim System to Owning the Network with Metasploit

cyber-attack

To own a network and retrieve the key data, we only need to find ONE weak link in the network. It makes little sense to beat our heads against heavily fortified systems like the file and database server when we … Continue reading

Kali Linux: Goohost.sh extracts Hosts, IPs, or Email from Google

ski-mask-hacker-2

Goohost is a simple shell script written by Watakushi that extracts hosts/subdomains, ip or emails for a specific domain with Google search. Installation First create a directory for the installation $ mkdir -p /pentest/enumeration/google/goohost/ Then download the tool and make … Continue reading

Wordlists for Password Cracking and Other Brute Force Resources

Biggest password cracking wordlist

Brute Forcing and Dictionary Attacks are two methods of getting the same result, a password. Dictionary Cracking can mostly rely on the quality of your word list. Quite often, I have people ask me where they can get wordlists. It … Continue reading

Tutorial: MDK3 – Network Traffic Disruption

2008-11-06-wifi

Today, we are going to go over some options with the tool MDK3, however it has to be said that the use of these options can wreak havoc on wireless networks and should be used with caution ! And of … Continue reading

Historical Hacking Philes: Improving the Security of Your Site by Breaking Into it (1993)

again_china_implicated_espionage

Dan Farmer Wietse Venema Sun Microsystems Eindhoven University of Technology 2550 garcia ave MS PAL1-407 P.O. Box 513, 5600 MB Mountain View CA 94043 Eindhoven, NL zen@sun.com wietse@wzv.win.tue.nl Introduction ———— Every day, all over the world, computer networks and hosts … Continue reading

Mimikatz: Windows Powershell Script for Dumping Local and Domain Passwords

powershell_2

clymb3r recently posted a script called “Invoke-Mimikatz.ps1” basically what this does is reflectively injects mimikatz into memory, calls for all the logonPasswords and exits. It even checks the targets architecture (x86/x64) first and injects the correct DLL. This is really … Continue reading

How To Hack: Exploit SNMP for Reconnaissance

Hugh-Jackman-Swordfish

The more we know about a system or network, the better our chances of owning it and not leaving a trace for investigators to follow. One of the often overlooked sources for information is the Simple Network Management Protocol (SNMP). … Continue reading

Kali Linux on Android Using Linux Deploy

kali-android-deploy

Kali Linux on any Android Phone or Tablet Getting Kali Linux to run on ARM hardware has been a major goal since day one. So far, there have been native images built for the Samsung Chromebook, Odroid U2, Raspberry Pi, … Continue reading

How To Hack: Change the Signature of Payloads to Evade Antivirus

crypting

I’ve written several listener guides on creating a malicious PDF or malicious Word document that would carry in it a payload with the Meterpreter, or reverse shell enabling you to own the system. One of the hurdles to using these … Continue reading

Hacking Wifi: Cracking WEP with Kali Linux

wifi-hacking

Today, we commonly find wireless networks around us. Most wireless networks are encrypted using WEP or WPA encryption methods. I was recently looking around my site and realized that I had not ever posted a how-to on easily cracking WEP. … Continue reading

How To Hack: Execute BAT File in the Background Invisibly

Batch coading

What happens when you double-click on a BAT file? Or, you run the BAT file from your commandeered cmd prompt? It pops up and runs! Now, we can’t be having the user see this, can we? A hacker also sometimes … Continue reading

How To Hack: Wafw00f Tutorial – Web Application Firewall Detection Tool

waf-logo

Introduction This is a Web Application Firewall Detection Tool. The tool was written by – Sandro Gauci And G. Henrique. It will help you detect the WAF ( Web Application Firewall )  behind the any domain. Wiffit (Wafw00f ) can … Continue reading

How to Hack: Bypassing Antivirus using Veil on Kali Linux

images

Veil is an awesome tool developed by Chris Truncer @ChrisTruncer, Mike Wright @TheMightyShiv and The Grayhound @the_grayhound specifically designed for Kali Linux with the goal of: Bypass common AV solutions used. Get the payloads from Metasploit framework, and get the … Continue reading

How To Hack: LazyKali Hacking Script for Updated Kali and Easy Hacks

Kali-Splash

LazyKali is an awesome script written in bash shell. It can automate the whole update and install new tools in your hack repository. As the name suggests, you can get all the updates on Kali Linux and your repositories in … Continue reading