SQLMap, Automated injection tool

Hi, this is me, sorry for being absence for a couple of month due to campus assignment and etc :D.

Well, this time i'd like to share to you about one of my favorite tools on Backtrack. have you ever heard about sql injection?. I believe almost of us familiar with that kind of attack. Let me give you little explanation.

Sql injection is a method which used to penetrate the database on the web server. This attack also known as "cheapest" way to hack. Why?, because all you need is a web browser. Cool nah?. Yep, just a web browser and combine with your knowledge about sql command and you could own a website.

SQL injection also give you a chance to dump whole database on the web server. Next question is, HOW CAN I DO THAT?

Okay, here is the way. In Backtrack sqlmap is installed as a default tools. Open your terminal or browse it on the main menu.

 

After that, you can find the sqlmap ( highlighted with green color ). Type this syntax

./sqlmap -u <your target url> --dbs --table --threads < number of threads you want to use> --level < number of intense level>

If you sure your target is using MySQL as database back end, then change --dbs to --dbms=MySQL

And here is the dork i used to find a target, search in google and type allinurl:page.php?id=

then put your target url in sqlmap :)

Regards, 

Ozy

Guake, awesome terminal panel

Hi Linux user :D it's me again.

This time i'd like to share about Guake, terminal panel for Gnome.Guake is small size so you can download it from your terminal by using apt-get or apt-fast.



Here is the screenshot about installation.

Hey Ozy, how can i get that awesome terminal panel? I am using KDE, not GNOME :(


Calm down buddy, The "G" in Guake is stand for Gnome. And if you are using KDE , just install yakuake.


When the installation finished, you can start Guake by clicking in on Application--> Accessories--> Guake Terminal and little pop up will appear at right corner bellow of your desktop.

Wanna get some reviews? Leave a comment at request page.

Regards,

Ozy

Apt-fast , fasten your download speed

Hello Linux user, have you ever heard about apt-fast?. If you never hear about that, then you are lucky!. Yeah lucky, because this time i want to share to you about apt-fast.

Basically, apt-fast is the same with apt-get. Which is used for run a task for update and also upgrade in Linux. Within the same rules and syntax, that will be useful and also helpful for those who common with apt-get.

This is  my terminal when i am using

apt-get upgrade

Take a look at this apt-fast upgrade

Can you see the difference? By using apt-fast is making your download faster, and the command prompt is as easy as using apt-get command.


NOTE: You may install axel first before getting apt-fast works.
 

Hacking wifi with WPA2 Protection + vIDEO

This time i'd like to share about my experience in hacking wifi. I have a wifi in my home with WPA2 encryption. Because it was the first time i use Backtrack Linux, and i also learn about how can wifi being cracked.

So i booted up my laptop and logged in my backtrack. Before we start hacking there are some tips for you

• Try to change your mac address ( This is not Apple's Mac or Machintos). Mac address is your device serial number and it's unique. Changing mac address will increasing your safety while doing hacking. You can use macchanger to do it. I'll post about that later.
• Make sure you have enough signal with your target's beacon. Higher your signal level = faster you get WPA handshake.
• Make fake wireless device using airmon-ng. If you confused, i'll also make a tutorial about it.

After all requirements above set, let's the hack begin :D

Use airodump-ng for dumping the packet data traffic, then use aireplay-ng for sending fake request within your target.

If you need a video, i have made it for you :)


Here the video
Enjoy !!


Regards,
Ozy

Windows VS Linux

Are you use Windows as operating system? Or using Linux machine instead of Windows?. Well it's all depend on you.

The first time i operating computer, i use Windows. It was when i'm 8 years old, and only use Microsoft Word for writing a story or just playing around with Ms.Paint. At that time still Windows XP.

I didn't touch Windows again until junior high school to senior high school. But all changes when my friend introducing Linux (Ubuntu to me). At first i look at that OS, it seems glossy and clear looks. Not like my XP.

And then i asked about what makes you choose Linux?. Then he said, " i love freedom ". I still confused. Next he said, " Linux is free. Free download as legal, free from Virus and malware, free third party software, biggest OS community and you can run Windows program inside it".

I LOLed for a while, then he asked me to try. Ok i'll try. Finished installing, i started to explore the navigation and built in software, and it was cool :D

No need to pay for update and upgrade, no need antivirus, free to ask in a hundreds forum and other community.

So, what you are waiting for? Use Linux!.

Some people don't want use linux for reason, they can't play games on Linux. Are you sure?
Let me introduce you about WINE and PlayOnLinux. WINE is acronym of Wine Is Not Emulator. Recursive? yes it is. And PlayOnLinux can make you playing high spec of game, such as Diablo, Need For Speed, Call of Duty, and many more.

Here is the video about how is Linux built.

Regards,
Ozy

Brand new Blog!

OK, so here we are at my first personal blog instead of my previous blog which contains hacking stuff etc.

What will be posted here? I don't know. Maybe i will posting about hacking again, but i'll prefer this blog to be my personal.

Personal, i mean showing up what i do really like, what is going on and just check it out :)

Regrads,

Ozy Alloisius