Pro Hack

I love Opera..Its fast , its efficient, and web experts will agree with me that its the fastest browser to surf the internet.  Screw Internet explorer, i hate that , safari is too buggy and Firefox , though is good, but has its fair share of memory leaks problems which tend to increase with each new version. Yep..I tried Firefox 4, but as it turns out, it was too heavy for my taste and a lot of installed extensions were not supported, period. The response time increased as I opened a lot of tabs in it and hence, I finally decided to turn on to Opera 11.

I installed it in a jiffy and there we go. Smoother browsing experience and increased productivity :D but then I opened task manager and checked out the memory usage.

Image Name     User Name          CPU        Memory Usage

opera.exe      Administrator       10        430,024 K

Et tu Opera ?

damn..

but fear not..I manage to keep it in limits. Opera is a memory hog but turns out the memory problems are caused due to “Automatic RAM cache” management of Opera. So, here is how you can make opera consume less memory.

• Open Opera
• Press Alt + P
• Go to History and choose memory cache 4 MB and Disk size to anything. Check on “Empty on Exit” and press OK.

• Once done, type

opera:config

in url bar and press enter.

• After that scroll down to user preferences and expand it.
• Find “Automatic RAM Cache” and disable it.

• Once done, restart Opera.

Enjoy, Your opera will take much less RAM :)

cheers.

Yep..I do get angry. More angry than anything often now and then.

5 rules I abide -

• I don't respect anyone at all who cant code and say they are hackers. They taint the word.

• I respect anyone who has the guts to confess he is a skid but is willing to learn and code and contribute to the scene. Everybody was a skid once.

• I am against anything related to defacements and exploitation if done using stolen/borrowed/any one else's code/shell/exploit/kernel patch. If its not your own, the defacement proves you are a skid and impotent.

• Complimenting the 3rd point, if you don't know what an exploit does at core/you cant read its code and cant comprehend it to the lowest level, and you are still using it to your whims and fancy, again, you disgust me.

• I hate anyone who ceases to pass any knowledge, the fool tries to hide his knowledge cuz he is afraid that it will create competition, the honest will reflect it to the fullest as he knows, the more he knows, the more he spreads, the greater the opportunities to create more creative code and thinking process.

Consider it my anger that NO knowledge sharing is done in any of the prominent Indian hacking forums out there, be it andhrahackers , indishell, hackers5, or anywhere. Same old stuff…leached from every possible where… The rest are not willing to share what they know due to their egos the size of Texas. At best you can go to garage4hackers , security xploded and can get your daily fix, or log into efnet/freenode and bitchx your daily fix of code and security.

When guys like (content suppressed) can start their own community and start commercializing the security scene for their own fucking profits, you know its time to back out. The real community n|u (null) stands out and is the only place where you can interact with some true hacker souls

The rest are fakes and I am glad I am not in touch with them. the real scene and some really good guys died 3 years ago.

A week before I bought HTC wildfire which is an entry level android smartphone. It sports quite a punch when compared to its competition and has a lot of features to keep you busy. I am doing an honest review so that you can make a choice when it comes to the end.

HTC wildfire is dubbed as the love child of Nexus one and HTC desire or Mini Desire. In some terms, it seems to be true. Its the successor to HTC tattoo and its a worthy one. The finishing is impeccable and much more professional so is the design as compared to tattoo. The phone is sturdily build however the screen is smudge prone. The phone has ARM6 528 Mhz processor on board with 384 MB ram. Its good for light weight gaming but is unable to render 3d games and play high def videos. The phone lags in its default HTC sense UI hence you are recommended to use some professional UI launchers like Go Launcher EX, Launcherpro and ADW. Bet the lag is attributed to CPU. Make sure your applications are compatible to them as my HTC music player crashed a lot more when I installed Launcher pro. Wildfire shines in the connectivity department.

Everything is tightly integrated with social networking in mind. You can add contact, link it to facebook profile, email, twitter..and the best thing it supports real time status updates when someone calls you. Nice touch. Internet is smooth, however, again, the default browser is slow as compared to Opera Mini and skyfire browsers. The touch is nice, when compared to Samsung offerings and LG optimus one, the touch is much better and much responsive. The Wifi-GPS-Bluetooth bundle is good and I tested Google latitude over it which gave me quite accurate results. I do have problems with keypad, but then, i installed swype and the problem was gone. Camera is a 5 MP with flash and can take good-outdoor-bad-indoor pics, there is no protective cover but over all the flash and smile detection makes the day. The accelerometer is a bit slow when it comes to rotation but again, i will attribute it to the slow cpu. Overall, its a nice phone for an android starter and offers the best bang for your buck.

The phone has Froyo 2.2.1 and is unable to be rooted at the moment. Hence I am unable to provide you how it can be optimized when rooted and how it performs as a rooted toy. I am waiting for the next Unevoked/superoneclickroot update so that i can finally squeeze the juice out of my phone.

I do tested some penetration testing applications on it and you can read my post regarding them here.

Pros

• Better touch
• 384 MB ram
• 5 MP camera with flash
• Excellent connectivity,A must have for social-networking enthusiastic
• Overall a Good bundle

Cons

• Pricier as compared to the competition
• low res screen
• Could have had a much better cpu

An average android phone is incomplete without applications, I recommend these apps as a must have -

• Launcher Pro – If you want to make your UI super smooth, this is the way to go.
• GO SMS – the best sms application, even better than chomp sms.
• SWYPE – tired of cramped keypad ? Try swype and all your worries will be gone.
• Opera Mini – the best cellphone bnrowser out there, if you want flash support, you can go with Dolphin and Skyfire though.
• Bar Code scanner – A must have for every android phone. Get anyone from android app market.

My recco – buy it if you are tight on budget, its better than its counterparts if you are not into gaming and watching videos on your cellphones.

Hi friends.. I recently bought HTC wildfire and have been experimenting with it to the fullest. Its based on Android 2.2.1  Froyo and is unrootable till date using Unevoked, superoneclick root and z4root rooting applications, hence i am bit limited by the default manufacturer only functions. I nearly bricked my phone but it sprang back to life after some trys. On the topic though. I was actually quite interested in testing the wardriving capabilities of the device and hence on scrolling through the app market, I found some useful applications which I thought must share you with. Wardriving for me is a two step process -

• scanning networks and analyzing them
• breaking them if vulnerable. (WEP using generic packet capture, WPA using rainbow)

G-mon

G-mon is a powerful WarDriving scanner and GSM / UMTS Netmonitor and drive test tool. It scans for all WiFi networks in range & saves the data with GPS coordinates into a file on your sd card. You can create a kml file for Google Earth. It shows you the encryption, channel an signal strength. It shows all APs in range in a live map. I used it to collect lots of wifi data which I will be publishing soon.

Install it from here

Wardrive

another fantastic wardriving app which stores scans in sqlite db on the sdcard and displays found networks around in the map.It Requires Google MAPS installed.

Install it from here

Wifi Analyzer

This app literally turns your android phone into a Wi-Fi analyzer!! It helps you to find a less crowded channel for your wireless router and allows to audit networks.

Install it from here

Once you get networks, you can then break them into it using Aircrack and backtrack.  Its easy and worth its salt :) . Here is a slice of my wardriving logs while i was in DTC bus :D

BSSID;LAT;LON;SSID;Crypt;Beacon Interval;Connection Mode;Channel;RXL;Date;Time
00:08:5C:EF:08:F0;28.56602;77.22951;Adiva;WpaPsk;-93;Infra;11;-92;2011/03/17;18:52:01
00:08:9F:81:8F:C4;28.56944;77.20531;Car0baR;WPA2;-96;Infra;6;-95;2011/03/17;18:58:30
00:0F:A3:6A:88:B8;28.56804;77.22473;sbi;Wep;-93;Infra;6;-91;2011/03/17;18:53:02
00:17:9A:09:D1:79;28.56813;77.22440;WebunivM;Wep;-93;Infra;6;-91;2011/03/17;18:53:05
00:18:02:87:02:8F;28.56845;77.22306;RT2561_6;Wep;-94;Infra;6;-93;2011/03/17;18:53:18
00:18:02:8E:32:5A;28.56885;77.21437;SrDDGA;WpaPsk;-91;Infra;6;-90;2011/03/17;18:55:31
00:18:02:92:A2:73;28.56955;77.20365;mtnlbb;Wep;-90;Infra;6;-89;2011/03/17;19:00:21
00:18:39:AA:5E:B8;28.56845;77.22306;Neeta;Wep;-89;Infra;11;-88;2011/03/17;18:53:18

at the end of the day, the moment that put a smile on my face was when i saw this as a network name near Delhi Cantt -

“You cant hack this Wifi dear neighbor”

It was a wpa2/psk secured network with static ip and mac filtering and the guy knew what he was doing :) Watching secured networks always makes my day.

Hi folks..this time I will be exploring the Unified Threat Management systems and comparing multiple UTM products in  the same. I would recommend you to read my previous posts on Unified threat Management systems to understand it fully -

• Unified Threat Management Systems Explained
• Unified Threat Management Systems - Single User vs Multi User

for your convenience, I have created a pdf and have uploaded it to scribd and slideshare. You can read my full report below..

Stay gold..

Rishabh Dangwal

In my last post, i blogged about UTM’s which got a fairly positive response over mail :) . UTMs can be simply expressed as Next generation Firewalls, have evolved specifically from conventional firewalls. The first firewalls were software firewalls which were itself evolved from software routers.

Later on as technology evolved, and hardware routers came into scene, hardware firewalls arrived which were nothing more than routers with packet filtering capabilities. Furthermore, the technology matured from basic packet filtering to a more complex control technology which included stateful packet inspection and finally to full application layer inspection devices (IEEE, 1997). Around the year 2000, VPN’s appeared and gained acceptance as the mainstream technology to connect networks securely, remotely. Firewalls followed closely by integrating VPN’s with Firewall which was the natural choice as enterprise solutions required both firewalls and VPNS.

As the prices for bandwidth fell along with the cost of cryptographic hardware needed to encode and decode the traffic, the need for specialized hardware rose which may be used to accelerate the performance.

Unified Threat Management

In mid 2004, International Data Corporation (IDC) defined UTM platforms as to minimally include firewall, VPN, intrusion prevention and antivirus features. Touted as “Next Generation Firewalls”, we have two approaches to design the UTM’s since their inception.

• Licensing and Integrating Approach (Multi vendor UTM)
• In-house Development Approach (Single vendor UTM)

The above figure illustrates the core architecture and development approach of developing UTMs

Licensing and Integrating Approach (Multi vendor UTM)

The first design approach tried to get the best of worlds by integrating specialized technologies from different security vendors. For e.g.:

Cyberoam UTM licenses Antivirus from Kaspersky, AntiSpam by Commtouch , both who specialize in Antivirus and AntiSpam technologies.

These UTM’s provided an integrated interface to manage all the integrated technologies in the easiest possible manner, while some others require specific management interfaces.

In-house Development Approach (Single vendor UTM)

In my next article I will be discussing more about UTMs. Please add your points so I can make it better.

Stay tuned.

Hi friends, I am free this weekend :) & i believe most of you will be too. So, why dont you catch up with me at Maipu Convergence India 2011 ?  I have been invited at Maipu Convergence India 2011 this weekend at Delhi, Pragati Maidan on Saturday 25 Feb 2011. If you want to join me, just drop an email at admin@theprohack.com / comment on this post, I will forward the invite to you so you don't have any problems there. I will be accompanied by fellow blogger & senior Amarjit Singh & we can have a look at new Maipu’s offerings & have a chitchat on security.

About Maipu

Maipu is the China’s best network solution providers & have been serving the international market for last 18 years. At Convergence 2011, Maipu will be showcasing the “New World, New Choice” for the business.

See you there :)

While I was messing with Routers & virtualisation products, I came across FREESCO which is an open alternative to  routing products offered by Cisco, 3-Com, Accend, Nortel etc. While all of these companies offer products that are well made, the overhead and overall costs can be expensive.FREESCO is open source, stable, inexpensive, easy to use, extremely versatile and flexible ... and best of all, its is FREE.

FREESCO is based on the Linux operating system. And incorporates many of the features of other Linux distributions into software that fits onto a single 1.44 meg floppy diskette. It is also possible to run it entirely from RAM, in which case no disk activity occurs after startup. FREESCO works on any IBM compatible PC (i386 compatible spec or higher) and can be optionally installed to a hard disk. In practice this means Intel 80486SX or better, with 12 MByte. Preferably more than 16 MByte to enable servers.With FREESCO, you can configure:

• a simple bridge with up to 10 Ethernet segments
• a router with up to 10 Ethernet segments
• a dialup line router
• a leased line router
• an Ethernet router
• a dial-in server with up to 10 modems (with multiport modems).
• a time server
• a dhcp server
• a http server
• a ftp server
• a dns server
• a ssh server
• a print server (requires TCP/IP printing client software)

FREESCO also incorporates firewalling and NAT, which are resident within the Linux kernel, to help protect you and your network. All of these features can be used in conjunction with each other or individually.

Limitations

More recent versions of Linux software (e.g. Apache 2) are often not available for FREESCO because they are not compatible with FREESCO's kernel. Also, newer hardware (such as Gigabit Ethernet cards) may not be usable under FREESCO due to an absence of their drivers for the 2.0.x Linux kernel. FREESCO does not at present support load-balancing.Also, FREESCO does not support USB.

Hi folks..I have started my first steps into Cisco, & would be sharing my small experiments in it. Actually , this time I am  covering the basics using GNS3 which is a powerful open source network simulator to simulate a simple topology of 2 routers with their basic configuration & commands. I assume you have worked with GNS3 or atleast know how to load IOS & make a simple topology..

So, firstly download GNS3 & install it. Get IOS images from and load them (if you are really not sure of this step, mail me, I will expand the basics more)

The topology I created is this -

2 routers connected via gigabit . What we will be doing is -

1. Set router password.
2. Set telnet password
3. Set Console Password
4. Encrypt All passwords.
5. Set Ip Address of routers.

Anyways, I start by right clicking on R2 router.

Connected to Dynamips VM "R2" (ID 7, type c7200) - Console port

To get into privilege mode, type this command.

R2>en

To configure router, type this command ..

R2#conf t
Enter configuration commands, one per line.  End with CNTL/Z.

To set router password & encrypt all passwords type these commands

R2(config)#enable secret router2
R2(config)#service pass
R2(config)#service password-encryption

Now to set console & its password type these commands

R2(config)#line console 0
R2(config-line)#password console
R2(config-line)#login
R2(config-line)#exit

Now to set telnet (vty/virtual terminal) & its password type these commands

R2(config)#line vty 0 4
R2(config-line)#password telnet
R2(config-line)#login
R2(config-line)#exit

Once done, you can now configure the interface by typing these commands

R2(config)#int g1/0
R2(config-if)#desc ROUTER LAN 2 GIGABIT INTERFACE
R2(config-if)#ip address 192.168.1.20 255.255.255.0
R2(config-if)#no shut
R2(config-if)#
*Feb 19 19:56:42.035: %LINK-3-UPDOWN: Interface GigabitEthernet1/0, changed state to up
R2(config-if)#
*Feb 19 19:56:42.035: %ENTITY_ALARM-6-INFO: CLEAR INFO Gi1/0 Physical Port Administrative State Down
*Feb 19 19:56:43.035: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0, changed state to up
R2(config-if)#end
*Feb 19 19:56:47.723: %SYS-5-CONFIG_I: Configured from console by console
R2#

Once done, you can see the configuration by typing -

R2#show running-config
Building configuration...

Current configuration : 932 bytes
!
upgrade fpd auto
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$trNZ$uNTgBIA1QG43/4YEB29lf/
!
no aaa new-model
ip cef
!
!
!
!
no ip domain lookup
!
multilink bundle-name authenticated
!
!
!
archive
log config
  hidekeys
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface GigabitEthernet1/0
description ROUTER LAN 2 GIGABIT INTERFACE
ip address 192.168.1.20 255.255.255.0
negotiation auto
!
no ip http server
no ip http secure-server
!
!
!
logging alarm informational
!
!
control-plane
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
password 7 070C2E425D061500
logging synchronous
login
stopbits 1
line aux 0
stopbits 1
line vty 0 4
password 7 06120A2D424B1D
login
!

!
webvpn cef
!
end

R2#

If done properly, it will look like more or less the same I have pasted above. Also, as you can see, all the passwords are encrypted. In the similar way you can configure Router 1. Make a note os passwords, I have kept quite simple passwords just to demonstrate the configuration. Please keep secure passwords , read my article on how to create secure passwords.

I hope you enjoyed this simple guide, till next time.

Hi folks..
I am in a fix nowadays, I m inside a secure network which is protected by squid on port 8080 & blocks all the generic ports by default like ftp one. Since I have created a program which uses ftp (a covert program actually) it wont work on the scenario when you are behind an Intranet protected by squid nat-ted by routers (Maipu/cisco plus I am dead sure the firewall is a stateful one) .
Any ideas ? Also, I cant use a static IP program / VPN tunnels as they wont work. Cant launch a mass scale cdp based attack on the network as its an official one. Any ideas on fooling squid ?

Comments are welcome, details will be provided on program & network on request

Plus, don't expect me to reverse engineer the source code & create a custom exploit, don't have much time, don't have that patience. I might do as well, only if I am convinced that there is no other way. In the mean time, I am here for your valuable suggestions & ideas.

Paypal dropped bomb on the Indian online entrepreneurs who use their servies for online transactions. A run through  Paypal's official announcement sates that starting this march 1st, you will not be able to receive payments that exceed $500 per transaction. Also, you won’t be able to keep any money in your PayPal account,all the money shall be transferred to your Indian bank account within 7 days.Rubbing salt to the injury, the final blow comes as you will not be able to purchase goods using your Paypal account. You can read the official story here

If you want to transfer money, then you need to transfer your money from your credit card to the paypal account. Guess they have gone nuts as pissing of a whole subcontinent of customers is not a very good idea. I already packed my stuff to move on to Alertpay, its convenient & it gives me money too :) You too can earn money using it. 

Sign up by clicking the button below..

Earn money with AlertPay

Why Alertpay ?

• Its convenient than Paypal.
• If you have a Paypal account already (like me), nothing is lost in getting an Alertpay one :)
• I cant trust Paypal anymore.. neither you should.
• More flexible..

A gentle advice :  Move on to Alertpay before Paypal backstabs you.. click here to join Alertpay..

Like this post ? "Join AlertPay"