Extreme Hacking Blog | Cyber Suraksha Abhiyan|sadik.shaikh@extremehacking.org

Papers

/Papers

Dynamic Malware Analysis Tools

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

In this tutorial we will be covering Dynamic Malware Analysis Tools which are used to analyse activity after the execution of malware in virtual machines. We will be looking at tools like Procmon, Process Explorer, Regshot, ApateDNS, Netcat, Wireshark and INetSim to analyse the malware. Dynamic Malware Analysis is typically performed after static malware […]

By |November 29th, 2015|Papers|
Read More

Basic Malware Analysis Tools

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

In the upcoming posts we will be talking about basic malware analysis and we will start with discussing the many different Basic Malware Analysis Tools which are available. A Malware Analyst is someone highly skilled in reverse engineering malware to get a deep understanding about what a certain piece of malware does and […]

By |November 29th, 2015|Papers|
Read More

Hacker Claims He helped FBI Track Down ISIS Hacker (Who was killed in Drone-Strike)

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

Remember Junaid Hussain?

Junaid Hussain – a hacker turned ISIS cyber mastermind who was killed in a US drone strike in August this year.

But something has emerged what we don’t know about the death of Hussain.

The infamous hacker who in the past hacked the Anonymous pseudo-official Twitter […]

By |November 24th, 2015|Papers|
Read More

Dell’s Laptops are Infected with ‘Superfish-Like’ pre-installed Malware

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

Similar to the Superfish malware that surrounded Lenovo laptops in February, another big computer manufacturer Dell spotted selling PCs and laptops pre-installed with a rogue SSL certificate that could allow attackers:

To impersonate as any HTTPS-protected website and spy on when banking or shopping online.

The rogue certificate, […]

By |November 24th, 2015|Papers|
Read More

steganography: How To Hide File’s behind a Image.

hello guys today I will show u how to hide file in jpg !

so lets start with the setup :

A) Set up:

1. Must have a .zip or .rar compressor.
2. Willingness to learn.

B) And now follow steps :

Steps:
1. Save the picture of choice to your desktop.
2. Make a new .rar or .zip folder on your desktop.
3. […]

By |November 23rd, 2015|Papers|
Read More

Pentesting a web application..

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

A little cheatsheet to help with manually reviewing web applications.

Command Execution:

PHP Code:

exec           – Returns last line of commands output
passthru       – Passes commands output directly to the browser
system         – Passes commands output directly to the browser and returns last line
shell_exec     – Returns commands output
“ (backticks) – Same as shell_exec()
popen          – Opens read or write pipe to process of a command
proc_open      – Similar to popen() but greater degree of control
pcntl_exec     – Executes a program

Apart from eval there are other ways to execute PHP code: include/require can be used for remote code execution in the form of Local File Include and Remote File Include vulnerabilities.

PHP Code Execution:

PHP Code:

eval()
assert()  – identical to eval()
preg_replace(‘/.*/e’,…) – /e does an eval() on the match
create_function()
include()
include_once()
require()
require_once()
$_GET($_GET);
$func = new ReflectionFunction($_GET); $func->invoke(); or $func->invokeArgs(array());

List of […]

By |November 23rd, 2015|Papers|
Read More

SPOOFING YOUR MAC ADDRESS

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

MAC (Media Access Control) is a number that identifies your network adapter or adapters for connecting to the internet. To remain highly anonymous you should first of all change your mac address. Although it may not be the most important thing to do but surely it […]

By |November 22nd, 2015|Papers|
Read More

WhatsApp Spy: Know when someone goes to sleep or wakeup

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

Today I’ll be teaching you a new hack you could do using the ultimate WhatsApp Spying Website: http://whatcha.xyz/

WhatCha is an online service, that tracks anyone’s number on WhatsApp and give you a detailed log on when your victim goes online or offline.

And since almost everyone you […]

By |November 21st, 2015|Papers|
Read More

Ms Office Exploit : Hack using Ms Office Extreme Hacking Style

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

Step 1:
Download and install MetaSploit.

Step 2:
Open metasploit Console from start menu.

step 3:
Open a system console within metasploit console.

step 4:
place your infected exe in c:\metasploit\apps\pro\msf3\tools

step 5:
Go to c:\metasploit\apps\pro\msf3\tools within system console, which you opened in step 3.
and write this command.
exe2vba.rb infected.exe evil.vba

*change infected.exe’s name to your exe […]

By |November 21st, 2015|Papers|
Read More

Port Forwarding using Torrents – Extreme Hacking Style (-_-)

Extreme Hacking | Sadik Shaikh
Ethical Hacking Institute Course in Pune-India

Hey guys I decided to make a real fast and simple tut on how to port forward without even going to your router settings, I have used this method a couple of times, I actually use this method a lot when I am not able to […]

By |November 14th, 2015|Papers|
Read More

Our Belief…

"One machine can do the work of fifty ordinary men. No machine can do the work of one extraordinary man."
Copyright 2015 Extreme Hacking | All Rights Reserved | Cyber Suraksha Abhiyan | Site Protected by Sadik Shaikh |