Jump to content
YOUR-AD-HERE
HOSTING
TOOLS
SERVICE

Search the Community

Showing results for tags 'identify'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Staff Control
    • Staff Announcements
  • General doubts | News
    • General doubts
    • News
  • Hacking | Remote Administration | Bugs & Exploits
    • Hacking
    • Remote Administration
    • Bugs & Exploits
  • Programming | Web | SEO | Prefabricated applications
    • General Programming
    • Web Programming
    • Prefabricated Applications
    • SEO
  • Pentesting Zone
    • Pentesting Accounts
    • Reverse Engineering
  • Security & Anonymity
    • Security
    • Wireless Security
    • Web Security
    • Anonymity
  • Operating Systems | Hardware | Programs
    • Operating systems
    • Hardware
    • PC programs
    • iOS
    • Android
  • Graphic Design
    • Graphic Design
  • vBCms Comments
  • live stream tv
    • live stream tv
  • Marketplace
    • Sell
    • Services
    • Request
  • Pentesting Premium
    • Pentesting Accounts
  • Modders Section
    • Source Codes
    • Manuals | Videos
    • Tools
    • Others
  • PRIV8-Section
    • Exploits
    • Accounts|Dumps
    • Crypter|Binder|Bots
    • Tutorials|Videos
    • Cracked Tools
    • Make Money
    • More Tools
    • Databeses
    • Ebooks
  • Pentesting Zone PRIV8
    • Pentesting Accounts
    • Reverse Engineering
    • Cracker Preview Area
  • Carding Zone PRIV8
    • Carding
    • Phishing
    • Defacing
    • Doxing
    • Special User Premium Preview Area
  • Recycle Bin
    • Recycle
  • Null3D's Nulled Group

Product Groups

  • PRIV8
  • Advertising
  • Access Basic
  • Seller
  • Services

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


About Me

Found 9 results

  1. So let's say a computer is brought in and has a virus or whatever. And a person wants to find out what downloaded link or how the computer was attacked. Is it possible to find out, or even gain access to the computer in the first place? Would you be able to identify phishing attacks also? from where and what took your information?
  2. How to Identify Malicious Links On Internet With the growing age of the internet where anything can be taught and learnt online, the number of people involved in cyber-crimes and online frauds have also increased significantly. Such an attempt is spreading malicious links over the internet. Its important to know about these type of malicious links to protect yourself from cyber fraud. In this Cyber Security article you will get information about Various types of malicious links you may find on internet, and how to protect yourself from them. Phishing links Phishing is the most common example of such an attacks. Despite various cyber-awareness campaigns and programs, every year people fall victim to online phishing scams due to their negligence towards cyber-security. Thus it is necessary to be aware of phishing attacks and to learn how to identify them. What Is Phishing Phishing is a cyber-fraud in which an attacker creates malicious links and send such links to various people to get their credentials like usernames or passwords. The fundamental work behind every phishing attack is to forge phishing links. These links look normal to people who are not concerned with technology and cyber-security but are links to malicious web pages and websites hosted by the attacker. How does phishing work? The simple scenario behind phishing attacks is - • The attacker creates a webpage looking almost genuine to the users. • The attacker then send links to such web pages to different people who might end up getting tricked. • The attacker then steals the credentials of those users. Phishing Methods Attackers have developed several new ways for spreading phishing links over the internet. Attackers spread these phishing links through various methods like: • Text messages • Fraud E-mails • Through Social Media Platforms like Facebook, Instagram etc. • Via Instant messaging apps like WhatsApp and Telegram. • Online forums and discussion websites. How Identify Phishing Links Identifying a phishing link is not too hard. A phishing link can be easily identified by looking at the URL in the address bar of the web browser. Assume you are visiting the Facebook website. Now, look at the address bar whether the URL is facebook.com or not. Similarly, if you are visiting any website always check the address to ensure the authenticity of the website you are visiting. How to protect yourself from phishing? People always get hacked due to their carelessness, thus you must take all possible steps to minimize or even eliminate the possibilities of falling for phishing attacks. Always follow these steps: Use browser extensions which may automatically identify phishing website. Always check the address bar of the website you are visiting. Always verify whether the website is authentic or not by its working and behaviour. Try to not open every link people send you online. Do not believe in fake text alerts or spam emails. Location Tracking Links Clicking on random links on the internet can also reveal your real-time location to attackers. People try several ways to track the location of people for unethical purposes. One such method is sending malicious links to track location. How does Location Tracking work? It is not hard to track location through link sharing. There are dozens of websites on the internet that allows people to track location through these methods. The scenario behind location tracking is the concept of IP Address. Every system connected to the internet has a unique identity of its own – Its IP Address. When someone opens location tracking links their IP Address is revealed to the website they are visiting. This IP address may contain some vital information including the location of the visitor. How to be safe from getting tracked? To protect yourself from being tracked never open links random people send you on social media platforms and online groups. Along with this simple step, you can also follow the steps mentioned to minimize the risk: • Do not allow unnecessary permissions asked by websites. • Use anti location tracing browser extensions • Use VPN for downloading files from the internet. • Avoid opening random links on the internet. Links That Can Install Viruses & Malware on Your System Attackers try different methods to spread viruses and malware over the internet. They upload malicious programs on the internet and send their links to people who might download them. Once downloaded and installed, these viruses run in the background without the users ever noticing and the users lose their confidential data and information. How malware spread through links? Attackers try to click-bait users by creating highly interactive web-pages, which fascinates the users and they end up downloading those malicious viruses. How to protect yourself from such viruses? These steps can be taken into consideration for protection against such malicious viruses. • Do not download software and applications from unknown sources. • Do not open pop up advertisements. • Disable pop-ups through your browser settings • Always have antivirus software installed on your system.
  3. DDWPasteRecon Pastesites are websites that allow users to share plain text through public posts called “pastes.” Once attackers compromise the external perimeter and gain access to the internal resources they release the part of data on the “paste” sites like pastebin or hastebin. As these hackers or malicious groups publish dumps on such sites other users can see sensitive information through paste sites. With various malicious groups now using these services as communication channels, temporary storage or sharing, and various other sources being used to trade POC code, I thought it would be a good idea to have an easy tool to help organisations Blue and Red Teams to have visibility into these sites via Google dorks. DDWPasteRecon tool will help you identify code leak, sensitive files, plaintext passwords, and password hashes. It also allows members of SOC & Blue Team to gain situational awareness of the organisation’s web exposure on the pastesites. It Utilises Google’s indexing of pastesites to gain targeted intelligence of the organisation. Blue & SOC teams can collect and analyse data from these indexed pastesites to better protect against unknown threats. [hide][Hidden Content]]
  4. Juumla is a python tool developed to identify the current Joomla version and scan for readable Joomla config files. Features Fast scan Low RAM and CPU usage Identify Joomla version Config files detection Open-Source [hide][Hidden Content]]
  5. How To Identify Insecure, Untrusted Websites There are about 1.7 billion websites are in the internet. All sites are different, some are blogs, some are tool websites, media websites, business, and so on... But unsafe, dangerous, spam websites are also there. Now how you can check that which website is safe to visit ? Today in this article you will learn about some signs of spam, unsafe, & untrusted websites & how to protect yourself from these sites. Its an easy task to detect or identify spammy, unsafe website, you just need to focus on some points and then you can differentiate that which site is safe for work. Why Its Important to detect untrusted /insecure sites Websites that are primarily made for illegal work such as hacking visitor devices, obtaining sensitive information about visitors, forcing users to install malware, automatically installing malware and selling your information, selling your identity and your information, are clearly insecure. No one wants to visit sites that harms you. So may be now you understood that why its important. Don't worry After reading this article you will learn that how you can protect yourself from these spam websites while browsing internet. 5 signs of an Insecure website How To Identify Insecure, Untrusted Websites? Here I will told you about 4 signs of an extremely untrusted, insecure website. Learn them carefully and be safe. No SSL Certificate? SSL stand for Socket secure layer, SSL certificate are very important sign of an secure site. But a insecure site will have no SSL certificate. A secure website URL will begin with "https:" if its http: then you are in insecure site. A Secure website URL will look like this - [Hidden Content] If you cant see https and nor http than look for next sign Is There any Lock Icon ? When you browse a site you may notice a small lock icon on the left side of address bar in your browser. This small Lock icon identify that websites SSL certificate is valid and website is safe for use. You will see a warning icon on unsafe sites ⚠️ on any website which has no SSL certificate, wrong SSL certificate, expired SSl certificate, you will see a warning icon on address bar in your browser by clicking on that icon you can see details about it. https Is Not Enough Https (SSL) is basic way to identify secure and insecure sites. But its not enough sites with https / ssl certificate can also be dangerous for you, some sites contains phishing pages or forms, malware scripts, unsafe javascripts, and malvertisment. for Identify these type of sites you should see some signs. Forcing to do a activity Is website is forcing you to fill a spam, or suspicious form? than the site may be forcing you to give your personal information like credit card details, social account passwords, your special identity info. You should not fill these details if you have some doubts in your mind related to that site. Is website Looks Too Good to be True? Some scam sites offers you products in an unbelievable price ex - iphone at 20$ etc. Then you should not give your personal details there. Website is Redirecting you to other insecure sites? Some websites redirect visitor to malware sites they force users to download malware applications, viruses and illegal things. Stay Away From these sites Find Some Important Pages on every Site If you are going to enter any sensitive info like your credit card or financial info, identity info, or something else, you should check some pages in that site, before doing any action on the site. Here are some pages you should check on every site you visit Privacy Policy Privacy Policy Page Describe how the site handle users data & what data they collect. Where they share users data and many more important info. SO you should must check this page on every site. Terms & Condition Terms & Condition Page describes that what terms and conditions are you accepting by using the site. So this is a must page to check Contact Us A contact us page contains contact details, by using these contact details you can contact the owner or moderators of websites. If its not exists then its too risky to enter any sensitive info on that site. About A "About" page describe about website and its owner. You Should Must Check the about Page On Any Site. If Privacy Policy, Contact Us and Terms & Conditions Pages are not there than the site is 100% spam or fraud Security: Easy Steps To Protect Smartphone Form Being Hacked Conclusion These are some basic signs of a spam, insecure, untrusted, websites We will add more signs in future in it. Keep in mind the above things and you will stay away from all these sites. Remember your security in your hand.
  6. SUDO_KILLER is a tool that can be used for privilege escalation on the Linux environment by abusing SUDO in several ways. The tool helps to identify misconfiguration within sudo rules, vulnerability within the version of sudo being used (CVEs and vulns), and the use of dangerous binary, all of these could be abused to elevate privilege to ROOT. SUDO_KILLER will then provide a list of commands or local exploits which could be exploited to elevate privilege. It is worth noting that the tool does not perform any exploitation on your behalf, the exploitation will need to be performed manually and this is intended. Features Some of the checks/functionalities that are performed by the tool. Misconfigurations Dangerous Binaries Vulnerable versions of sudo – CVEs Dangerous Environment Variables Credential Harvesting Writable directories where scripts reside Binaries that might be replaced Identify missing scripts What version 2 of SK includes: New checks and/or scenarios CVE-2019-14287 – runas No CVE yet – sudoedit – absolute path CVE-2019-18634 – pwfeedback User Impersonation list of users in sudo group Performance improved Bugs corrected (checks, export, report,…) Continous improvement of the way output presented New videos will be added soon Annonying password input several time removed New functionality: offline mode – ability to extract the required info from audited system and run SK on host. Testing environment : A docker to play with the tool and different scenarios, you can also train on PE. [hide][Hidden Content]]
  7. capa detects capabilities in executable files. You run it against a PE file or shellcode and it tells you what it thinks the program can do. For example, it might suggest that the file is a backdoor, is capable of installing services, or relies on HTTP to communicate. Changelog v1.1 RC1 draft release to test and verify automated builds. [hide][Hidden Content]]
  8. Google Helps Police Identify Devices Close to Crime Scenes Using Location Data April 15, 2019Swati Khandelwal It's no secret that Google tracks you everywhere, even when you keep Google's Location History feature disabled. As revealed by an Associated Press investigation in 2018, other Google apps like Maps or daily weather update service on Android allows the tech giant to continuously collect your precise latitude and longitude. According to Google, the company uses this location-tracking features with an intent to improve its users' experience, like "personalized maps, recommendations based on places you've visited, help finding your phone, real-time traffic updates about your commute, and more useful ads." Moreover, it's also known that Google could share your location data with federal authorities in criminal investigations when asked with a warrant. Google 'SensorVault' Database Help Police Solve Crimes But what many people weren't aware of is that Google also helps federal authorities identify suspects of crimes by sharing location history of all devices that passed through crime scenes over a certain time period. It should be noted Google doesn't share personal information of all nearby users; instead, it asks the police to first analyze location history of all users and narrows down results to only a few selected users to receive their names, email addresses, and other personal data from Google. A new in-depth report from The New York Times revealed that Google maintains a database, known internally as Sensorvault, over nearly the past decade, containing detailed location records from hundreds of millions of phones around the world, and shares with authorities nationwide with warrants to mine it to help in criminal cases. According to several unnamed Google employees cited in the report, such requests to dive into Google's Sensorvault database have spiked in the last six months, with the company receiving as many as 180 requests in just one week. How Does Law Enforcement Use Google SensorVault Database? To seek location data, law enforcement needs to get a so-called "geofence" warrant. Here below I have tried to step-by-step illustrate how Google shares location data when "legally" required: The authorities reached out to Google with a geofence warrant looking for smartphones Google had recorded around the crime scene. After receiving the warrant, Google gathers location information from its Sensorvault database and sends it to investigators, with each device identified by an anonymous ID code and not the actual identity of the devices. Investigators then review the data, look for patterns of the devices near the crime scene, and request further location data on devices from Google that appear relevant to see the particular device movement beyond the original area defined in the warrant. When investigators narrow results to a few devices, which they think may belong to suspects or witnesses, Google reveals the real name, email address and other data associated with the devices. The NYT report explained the entire process when federal agents requested the location data to investigate a string of bombings around Austin, Texas. Federal agents first used this technique of catching criminals in 2016, which has since been spread to local departments across the country, including in California, Florida, Minnesota, and Washington. While the technique has been proven to work, it's not a foolproof way to catch criminals. Some cases highlighted by the NYT report showed how police used this data to accuse innocents, with one man jailed for a week last year in a murder investigation after being recorded near the killing location and then released after investigators pinpointed and arrested another suspect. It's no surprise that law enforcement seeks help from tech companies during criminal investigations, but the use of location history databases like Sensorvault has raised concerns... concerns about the privacy of users... concerns about data collection... concerns about innocent being accused and implicated.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.