Momo Challenge New Suicidal Game

Momo Challenge New Suicidal Game  

Momo challenge and Blue whale game are the suicidal games trending on whatsApp. Pakistan has put a ban on these two online games due to their disturbing content. Parents have also been waned about these new sick WhatsApp 'Suicide' games. These online games target young vulnerable teens.

The blue whale challenge instructs participants to complete 50 tasks over a period of fifty days, the administrator sets one task per day. (Task 50! Congratulations Whale! it's your last day in this world go jump from terrace, post a pic and tell your friends.)

These daily task lead them to the last task which is to commit suicide. Momo is the social media account having a creepy, scary face picture that give challenges to participants.

if some one refuses to follow the orders, these games threaten them these dangerous games have already claimed many lives all over the world. Federal IT Minister DR.Khalid Maqbool placed a ban on these suicidal games.

The developing, sharing and using such Software will be considered a crime under the cyber crime ACT. Parents should be extra vigilant of their children smartphone activities.

If anyone got that Momo challenges contact at your near Police Station or Cyber Crime Cell.

Read More

Google releases iPhone Hacking tool for Security Researchers

Google releases iPhone Hacking tool for Security Researchers

Ian Beer, a well-known name among iOS bug bounty hunters who works for Google Project Zero, released a proof-of-concept tool on Monday that allows security researchers and other developers to hack into iOS 11.1.2, a recent version of Apple’s operating system. This could open up the possibility of jailbreak for devices such as iPhones and iPads running iOS 11.1.2.

For those unaware, Google’s Project Zero identifies bugs and exploits in all kinds of software of various companies to make them safer.

According to Beer, the tool released takes advantage of an exploit called “tfp0”. Beer says the tool was tested on iPhone 6s, iPhone 7 and iPod touch 6G. However, he believes that with some tweaks, the tool should work on all devices.

“tfp0 should work for all devices, the PoC local kernel debugger only for those I have to test on (iPhone 7, 6s and iPod Touch 6G) but adding more support should be easy,” Beer wrote .

The Google researcher last week teased this release in a tweet that asked the iOS 11 kernel security researchers to keep a research-only device on iOS 11.1.2 or below raising sparks of a fresh exploit of the OS.

“If you’re interested in bootstrapping iOS 11 kernel security research keep a research-only device on iOS 11.1.2 or below. Part I (tfp0) release soon,” Beer said at the time.

Speaking to Motherboard, Google told that Beer’s goal is to allow other security researchers to explore and test iOS security layers without the need to develop and find their own exploits. In other words, Google gave other researchers a head start to carry out their own research.

According to Google, their ultimate goal is to help security researchers search and find other potential vulnerabilities and hopefully report them to Apple so that they get fixed and the operating system is made safer.

“While it might seem surprising that Google would release a tool to hack a device from a competitor, it actually makes a lot of sense. The iPhone is one of the hardest consumer devices to hack, and researchers who can do that and are able to find bugs in it rarely report the bugs or publish the tools they use because they are so valuable”, said Motherboard.

However, the disclosure opens up the possibility for the jailbreaking community to bootstrap an iPhone jailbreak until Apple issues a fix.

Read More

Google Hacking

Google Queries for Locating Various Web Servers

“Apache/1.3.28 Server at” intitle:index.of

Apache 1.3.2

“Apache/2.0 Server at” intitle:index.of

Apache 2.0

“Apache/* Server at” intitle:index.of

any version of Apache

“Microsoft-IIS/4.0 Server at” intitle:index.of

Microsoft Internet Information Services 4.0

“Microsoft-IIS/5.0 Server at” intitle:index.ofMicrosoft Internet Information Services 5.0

“Microsoft-IIS/6.0 Server at” intitle:index.of

Microsoft Internet Information Services 6.0

“Microsoft-IIS/* Server at” intitle:index.of

any version of Microsoft Internet Information Services

“Oracle HTTP Server/* Server at” intitle:index.of

any version of Oracle HTTP Server

“IBM _ HTTP _ Server/* * Server at” intitle:index.of

any version of IBM HTTP Server

“Netscape/* Server at” intitle:index.of

any version of Netscape Server

“Red Hat Secure/*” intitle:index.of

any version of the Red Hat Secure server

“HP Apache-based Web Server/*” intitle:index.of

any version of the HP server

Queries for discovering standard post-installation

intitle:”Test Page for Apache Installation” “You are free”

Apache 1.2.6

intitle:”Test Page for Apache Installation” “It worked!” “this Web site!”

Apache 1.3.0 – 1.3.9

intitle:”Test Page for Apache Installation” “Seeing this instead”

Apache 1.3.11 – 1.3.33, 2.0

intitle:”Test Page for the SSL/TLS-aware Apache Installation” “Hey, it worked!”

Apache SSL/TLS

intitle:”Test Page for the Apache Web Server on Red Hat Linux”

Apache on Red Hat

intitle:”Test Page for the Apache Http Server on Fedora Core”

Apache on Fedora

intitle:”Welcome to Your New Home Page!”

Debian Apache on Debian

intitle:”Welcome to IIS 4.0!”

IIS 4.0

intitle:”Welcome to Windows 2000 Internet Services”

IIS 5.0

intitle:”Welcome to Windows XP Server Internet Services”

IIS 6.0

Querying for application-generated system reports

“Generated by phpSystem”

Operating system type and version, hardware configuration, logged users, open connections, free memory and disk space, mount points

“This summary was generated by wwwstat”

web server statistics, system file structure

“These statistics were produced by getstats”

web server statistics, system file structure

“This report was generated by WebLog”

web server statistics, system file structure

intext:”Tobias Oetiker” “traffic analysis”

systemperformance statistics as MRTG charts, network configuration

intitle:”Apache::Status” (inurl:server-status | inurl:status.html | inurl:apache.html)

server version, operating system type, child process list, current connections

intitle:”ASP Stats Generator *.*” “ASP Stats Generator” “2003-2004 weppos”

web server activity, lots of visitor information

intitle:”Multimon UPS status page”

UPS device performance statistics

intitle:”statistics of” “advanced web statistics”

web server statistics, visitor information

intitle:”System Statistics” +”System and Network Information Center”

System performance statistics as MRTG charts, hardware configuration, running services

intitle:”Usage Statistics for” “Generated by Webalizer”

web server statistics, visitor information, system file structure

intitle:”Web Server Statistics for ****”

web server statistics, visitor information

nurl:”/axs/ax-admin.pl” -script

web server statistics, visitor information

inurl:”/cricket/grapher.cgi”

MRTG charts of network interface performance

inurl:server-info “Apache Server Information”

web server version and configuration, operating system type, system file structure

“Output produced by SysWatch *”

operating system type and version, logged users, free memory and disk space, mount points, running processes, system logs.

Dorks for Finding Admin Page

admin1.php

admin1.html

admin2.php

admin2.html

yonetim.php

yonetim.html

yonetici.php

yonetici.html

admin/account.php

admin/account.html

admin/index.php

admin/index.html

admin/login.php

admin/login.html

admin/home.php

admin/controlpanel.html

admin/controlpanel.php

admin.php

admin.html

admin/cp.php

admin/cp.html

cp.php

cp.html

administrator/

administrator/index.html

administrator/index.php

administrator/login.html

administrator/login.php

administrator/account.html

administrator/account.php

administrator.php

administrator.html

login.html

modelsearch/login.php

moderator.php

moderator.html

moderator/login.php

moderator/login.html

moderator/admin.php

moderator/admin.html

account.php

account.html

controlpanel/

controlpanel.php

controlpanel.html

admincontrol.php

admincontrol.html

adminpanel.php

adminpanel.html

admin1.asp

admin2.asp

yonetim.asp

yonetici.asp

admin/account.asp

admin/index.asp

admin/login.asp

admin/home.asp

admin/controlpanel.asp

admin.asp

admin/cp.asp

cp.asp

administrator/index.asp

administrator/login.asp

administrator/account.asp

administrator.asp

login.asp

modelsearch/login.asp

moderator.asp

moderator/login.asp

moderator/admin.asp

account.asp

controlpanel.asp

admincontrol.asp

adminpanel.asp

fileadmin/

fileadmin.php

fileadmin.asp

fileadmin.html

administration/

administration.php

administration.html

sysadmin.php

sysadmin.html

phpmyadmin/

myadmin/

sysadmin.asp

sysadmin/

ur-admin.asp

ur-admin.php

ur-admin.html

ur-admin/

Server.php

Server.html

Server.asp

Server/

wp-admin/

administr8.php

administr8.html

administr8/

administr8.asp

webadmin/

webadmin.php

webadmin.asp

webadmin.html

administratie/

admins/

admins.php

admins.asp

admins.html

administrivia/

Database_Administration/

WebAdmin/

useradmin/

sysadmins/

admin1/

system-administration/

administrators/

pgadmin/

directadmin/

staradmin/

ServerAdministrator/

SysAdmin/

administer/

LiveUser_Admin/

sys-admin/

typo3/

panel/

cpanel/

cPanel/

cpanel_file/

platz_login/

rcLogin/

blogindex/

formslogin/

autologin/

support_login/

meta_login/

manuallogin/

simpleLogin/

loginflat/

utility_login/

showlogin/

memlogin/

members/

login-redirect/

sub-login/

wp-login/

login1/

dir-login/

login_db/

xlogin/

smblogin/

customer_login/

UserLogin/

login-us/

acct_login/

admin_area/

bigadmin/

project-admins/

phppgadmin/

pureadmin/

sql-admin/

openvpnadmin/

wizmysqladmin/

vadmind/

ezsqliteadmin/

hpwebjetadmin/

newsadmin/

adminpro/

Lotus_Domino_Admin/

bbadmin/

vmailadmin/

ccp14admin/

irc-macadmin/

banneradmin/

sshadmin/

phpldapadmin/

macadmin/

administratoraccounts/

admin4_account/

admin4_colon/

radmind-1/

Super-Admin/

AdminTools/

cmsadmin/

phpSQLiteAdmin/

server_admin_small/

database_administration/

system_administration/

Update Important Dorks

Dork: “inurl:dettaglio.php?id=”

Exploit :

www.victim.com/sito/dettaglio.php?id=[SQL]

Example :

http://www.cicloposse.com/dettaglio.php?id=61′

Dork: inurl:prodotto.php?id)

Exploit:

www.victim.com/prodotto.php?id=[SQL]

Example:

http://www.poderimorini.com/en/prodotto.php?id=14′

Sql Injection Dorks

allinurl: \”index php go buy\”

allinurl: \”index.php?go=sell\”

allinurl: \”index php go linkdir\”

allinurl: \”index.php?go=resource_center\”

allinurl: \”resource_center.html\”

allinurl: \”index.php?go=properties\”

allinurl: \”index.php?go=register\”

Error Message Queries

“A syntax error has occurred”filetype:ihtml

Informix database errors, potentially containing function names, filenames, file structure information, pieces of SQL code and passwords

“Access denied for user” “Using password”

authorization errors, potentially containing user names, function names, file structure information and pieces of SQL code

The script whose uid is ” “is not allowed to access”

access-related PHP errors, potentially containing filenames, function names and file structure information

“ORA-00921: unexpected end of SQL command”

Oracle database errors, potentially containing filenames, function names and file structure information

“error found handling the request” cocoon filetype:xml

Cocoon errors, potentially containing Cocoon version information, filenames, function names and file structure information

“Invision Power Board Database Error”

Invision Power Board bulletin board errors, potentially containing function names, filenames, file structure information and piece of SQL code

“Warning: mysql _ query()” “invalid query”

MySQL database errors, potentially containing user names, function names, filenames and file structure information

“Error Message : Error loading required libraries.”

CGI script errors, potentially containing information about operating system and program versions, user names, filenames and file structure information

“#mysql dump” filetype:sql

MySQL database errors, potentially containing information about database structure and contents

Dork for locating passwords

http://*:*@www” site

passwords for site, stored as the string “http://username:password@www…”

filetype:bak inurl:”htaccess|passwd|shadow|ht users”

file backups, potentially containing user names and passwords

filetype:mdb inurl:”account|users|admin|admin istrators|passwd|password”

mdb files, potentially containing password information

intitle:”Index of” pwd.db

pwd.db files, potentially containing user names and encrypted passwords

inurl:admin inurl:backup intitle:index.of

directories whose names contain the words admin and backup

“Index of/” “Parent Directory” “WS _ FTP.ini”

filetype:ini WS _ FTP PWD

WS_FTP configuration files, potentially containing FTP server access passwords

ext:pwd inurl:(service|authors|administrators |users) “# -FrontPage-”

files containing Microsoft FrontPage passwords

filetype:sql (“passwd values ****” | “password values ****” | “pass values ****” )

files containing SQL code and passwords inserted into a database

intitle:index.of trillian.ini

configuration files for the Trillian IM

eggdrop filetype:user

user configuration files for the Eggdrop ircbot

filetype:conf slapd.conf

configuration files for OpenLDAP

inurl:”wvdial.conf” intext:”password”

configuration files for WV Dial

ext:ini eudora.ini

configuration files for the Eudora mail client

filetype:mdb inurl:users.mdb

Microsoft Access files, potentially containing user account information

Searching for personal data and confidential documents

filetype:xls inurl:”email.xls”

email.xls files, potentially containing contact information

“phone * * *” “address *” “e-mail” intitle: “curriculum vitae”

CVs

“not for distribution”

confidential documents containing the confidential clause

buddylist.blt

AIM contacts list

intitle:index.of mystuff.xml

Trillian IM contacts list

filetype:ctt “msn”

MSN contacts list

filetype:QDF

QDF database files for the Quicken financial application

intitle:index.of finances.xls

finances.xls files, potentially containing information on bank accounts, financial summaries and credit card numbers

intitle:”Index Of” -inurl:maillog maillog size

maillog files, potentially containing e-mail

Network Vulnerability Assessment Report”

“Host Vulnerability Summary Report”

filetype:pdf “Assessment Report”

“This file was generated by Nessus”

reports for network security scans, penetration tests etc

Dork for locating network devices

“Copyright (c) Tektronix, Inc.” “printer status”

PhaserLink printers

inurl:”printer/main.html” intext:”settings”

Brother HL printers

intitle:”Dell Laser Printer” ews

Dell printers with EWS technology

intext:centreware inurl:status

Xerox Phaser 4500/6250/8200/8400 printers

inurl:hp/device/this.LCDispatcher

HP printers

intitle:liveapplet inurl:LvAppl

Canon Webview webcams

intitle:”EvoCam” inurl:”webcam.html”

Evocam webcams

inurl:”ViewerFrame?Mode=”

Panasonic Network Camera webcams

(intext:”MOBOTIX M1? | intext:”MOBOTIX M10?) intext:”Open Menu” Shift-Reload

Mobotix webcams

inurl:indexFrame.shtml Axis

Axis webcams

intitle:”my webcamXP server!” inurl:”:8080?

webcams accessible via WebcamXP Server

allintitle:Brains, Corp.

camera webcams accessible via mmEye

intitle:”active webcam page”.

Read More

Airgeddon – A Swiss Army WiFi Hacking Tool

Airgeddon – A Swiss Army WiFi Hacking Tool

Today Virus Community have been looking at Airgeddon, on initial inspection it seems to be a multi purpose all-in-one Swiss army knife tool for hacking WiFi, the tool is pretty extensive, with over 11 thousand lines of bash goodness. This tool is free to download from GitHub and supports multiple Linux based platforms.

So what does it do?

The tool supports multiple methodologies for hacking WiFi, some of which include:

• WEP All-in-One attack (combining different techniques: Chop-Chop, Caffe Latte, ARP Replay, Hirte, Fragmentation, Fake association, etc.)
• Evil Twin attacks (Rogue AP) with Hostapd + DHCP + DoS + Ettercap + Sslstrip and also BEEF support
• Multiple WPS cracking modes – Pixie Dust, Bully and Reaver
• Offline password decryption for WPA/WPA2/WPA3 captured handshakes (dictionary, bruteforce and rule based) based on aircrack, crunch and hashcat tools.

Other features?

Cool!, any Other notable features include:

• upport for 5GHZ and 2.4GHZ bands
• Assisted Handshake file capturing
• Drag and drop files on console window for entering file paths
• Controlled Exit. Cleaning tasks and temp files. Restoring iptables after an attack that require changes on them. Option to keep monitor mode if desired on exit.

Platforms can it run on?

The tool is compatible on any Linux distribution that has the necessary tools installed needed to run. ideally Kali would be the best candidate for running it out of the box, but it can be run on Arch if you enjoy a challenge, the script will check for any tool dependencies it is missing when first run.

s you might expect with any bash script related tool, it offers intuitive menus and options that could allow even the most harebrained skid a way to easily perform a wide range of Wifi attacks.

Source code?

Source code link attach here you can also download from my private server.

Download from GitHub server

Download from my Private server

Read More

WhatsApp Flaw Could Allow 'Potential Attackers' to Spy On Encrypted Group Chats

WhatsApp Flaw Could Allow 'Potential Attackers' to Spy On Encrypted Group Chats

A more dramatic revelation of 2018—an outsider can secretly eavesdrop on your private end-to-end encrypted group chats on WhatsApp and Signal messaging apps.

Considering protection against three types of attackers—malicious user, network attacker, and malicious server—an end-to-end encryption protocol plays a vital role in securing instant messaging services.

The primary purpose of having end-to-end encryption is to stop trusting the intermediate servers in such a way that no one, not even the company or the server that transmits the data, can decrypt your messages or abuse its centralized position to manipulate the service.

In order words—assuming the worst-case scenario—a corrupt company employee should not be able to eavesdrop on the end-to-end encrypted communication by any mean.

However, so far even the popular end-to-end encrypted messaging services, like WhatsApp, Threema and Signal, have not entirely achieved zero-knowledge system.

Researchers from Ruhr-Universität Bochum (RUB) in Germany found that anyone who controls WhatsApp/Signal servers can covertly add new members to any private group, allowing them to spy on group conversations, even without the permission of the administrator.

As described by the researchers, in the pairwise communication (when only two users communicate with each other) server plays a limited role, but in case of multi-user chats (group chat where encrypted messages are broadcasted to many users), the role of servers increases to manage the entire process.

That's where the issue resides, i.e. trusting the company's servers to manage group members (who eventually have full access to the group conversation) and their actions.

As explained in the newly published RUB paper, titled "More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema," since both Signal and WhatsApp fail to properly authenticate that who is adding a new member to the group, it is possible for an unauthorized person—not a group administrator or even a member of the group—to add someone to the group chat.

What's more? If you are wondering that adding a new member to the group will show a visual notification to other members, it is not the case.

According to the researchers, a compromised admin or rogue employee with access to the server could manipulate (or block) the group management messages that are supposed to alert group members of a new member.

"The described weaknesses enable attacker A, who controls the WhatsApp server or can break the transport layer security, to take full control over a group. Entering the group, however, leaves traces since this operation is listed in the graphical user interface. The WhatsApp server can therefore use the fact that it can stealthily reorder and drop messages in the group," the paper reads. 

"Thereby it can cache sent messages to the group, read their content first and decide in which order they are delivered to the members. Additionally, the WhatsApp server can forward these messages to the members individually such that a subtly chosen combination of messages can help it to cover the traces."

WhatsApp has acknowledged the issue, but argued that if any new member is added to a group, let's say by anyone, other group members will get notified for sure.

"We've looked at this issue carefully. Existing members are notified when new people are added to a WhatsApp group. We built WhatsApp so group messages cannot be sent to a hidden user," a WhatsApp spokesperson told Wired. 

"The privacy and security of our users is incredibly important to WhatsApp. It's why we collect very little information and all messages sent on WhatsApp are end-to-end encrypted."

But if you are not part of a group with very selected members, I'm sure many of you would relatively ignore such notifications easily.
Researchers also advised companies to fix the issue just by adding an authentication mechanism to make sure that the "signed" group management messages come from the group administrator only.
However, this attack is not easy (exception—services under legal pressure) to execute, so users should not be worried about it.

Read More

WPA3 The New Wi-Fi Security Protocol To Be Launched In 2018

WPA3 The New Wi-Fi Security Protocol To Be Launched In 2018

Remember the Krack Wi-Fi vulnerability from October last year that has put all internet users to a dismay? Well, the good news is that it’s very possible we won’t have to go through that risky situation again.

Just a few days ago, during the annual CES event (one of the biggest technology and innovation shows), the Wi-Fi Alliance has announced the launch of a new wireless security protocol—Wi-Fi Protected Access WPA3 this year.

WPA3 will replace the current WPA2—the security protocol that all Wi-Fi networks have been using for over 15 years.

Why is WPA2 considered vulnerable?

The main insecurity issue of WPA2 is given by the “unencrypted” open Wi-Fi networks that makes it incredibly easy for anyone who uses the same network to access other devices.

Secondly, one of the WPA2 protocols is that the same password is used by clients and business owners when joining a Wi-Fi network (for instance the clients of a coffee shop and the owner of the coffee shop).

Due to these vulnerabilities, hackers can intercept Wi-Fi traffic and steal online data quite effortlessly.

In what way is WPA3 going to be safer?

• Improved user privacy

WPA3 will increase users’ privacy when they connect to open Wi-Fi networks (such as those in cafes, restaurants, etc.) by introducing individualized data encryption.

• Higher security standard

The future Wi-Fi security protocol will introduce a 192-bit security suite for increased protection; the 192-bitis a security requirement used by governments and big industrial organization.

• Protection on IoT devices

Wi-Fi Alliance, which is composed of 15 major tech companies (including Apple, Cisco, Dell, Intel, Microsoft, Qualcomm and more) stated that WPA3 will also offer smoother security for IoT devices.

• New handshake protocol

WPA3 standard will use a new handshake protocol, which will be far less vulnerable to dictionary attacks (the method hackers use of exhausting all possible password possibilities).

Transition from WPA2 to WPA3 could take a while

WPA3 won’t come into force until in a few months. Meanwhile, Wi-Fi Alliance said it will continue to optimize WPA2 since it was the target of severe attacks.

Regardless of WPA2 or WPA3, you should always secure your Wi-Fi network with the help of a VPN, simply to supplement the protection of your data.

Read More