HOW TO VIEW HIDDEN DIRECTORIES IN A WEBSITE USING ROBOT.TXT

HOW TO VIEW HIDDEN DIRECTORIES IN A WEBSITE USING ROBOT.TXT

Welcome to "EXTRATORRENTERs - An approach to introduce people with the truth of HACKING".  Web site owners use the /robots.txt file to give instructions about their site to web robots; this is called The Robots Exclusion Protocol. Many a times in hacking you need to know the web directories. But its hard to find it out as a server might contain uncountable no. of Directories in it. But a major hole in this security is the Robots.tx.

What is Robots.txt

Robot.txt is the file in the [ wwwroot ]of a server to define the Bots the Functionality on the website.

There are many Bots on the internet like the most famous are Google Search Engine BOT aka Google Spider , Yahoo Search Engine Bot and many others.
What robots.txt do is that it gives orders to the Bot on how to spider on the website….

Now you may ask what’s the use of Robots.txt file.
Well it is used by webmasters to add functionality to the upcoming bots on there website and also to hide the directories in the website and where the Bot should not go and spider.

Analyzing Robots.txt For Hacking Stuff

Well its really simple, the first question you would ask is Where is robots.txt Located ?
The answer is its in the [ WWWROOT ]. Don't Understand till yet , its in the main Directory.
Lets take the example of  HACKING begins)

http://www.hackingbegins.com/robots.txt

Go Ahead and type it in the Address bar of your Browser then what do you see,

Do you see that , this is the Robots.txt for the Hacker the dude website Now lets first Analyze this Robots.txt

First Line :-

User-agent: Mediapartners-Google

This means that the above statements are given for the Google Search Engine Bot i.e. Google Spider.

Second Line :-

Disallow:

 This mean that nothing is disallowed to the Google Bot, Remember these Orders are given to the Google bot only not other bots.

Third Line :-

User-agent: *

This means that now all the bots coming to the blog will follow these rules.note that previous rules were for only Google Bot.

Fourth Line :-

Disallow: /search

This means that all the bots will not spider the files under the directory /search in the following Blog.

Fifth Line :-

Sitemap: http://hackingbegins.com/feeds/posts/default?orderby=updated

This is basically my blogs sitemap. Not very important.

For more info :: Robot.txt

WATCH LIVE TV ON YOUR 2G PHONE

WATCH LIVE TV ON YOUR 2G PHONE

Welcome again to "extra-torrenterz - An approach to introduce people with the truth of HACKING".  Today I'll tell you how can you stream live tv on your 2G mobile phone. 

Well you can also try with 3G or Wi fi.  Some time due to media player stream protocol is not user so may be many of you face this problem. 

Link : http://m.zengatv.com

Hope you like the tutorial ...

hack facebook and gmail with backtrack 5

HOW TO HACK GMAIL AND FACEBOOK WITH BACKTRACK 5

welcome again to "extratorrenterz - An approach to introduce people with the truth of HACKING".  This article is only for educational purpose don't misuse this information. 

Requirement 

Attracker :: Backtrack 5

Open Backtrack
Type ifconfig to check IP

Now Again Open Your Backtrack terminal and Type cd  /pentest/exploits/set

Now Open Social Engineering Toolkit (SET) ./set

Choose option 2, “Website Attack Vectors”

Choose option 4, “Tabnabbing Attack Method”.

Choose option 2, "Site Cloner"

Enter the URL of the site you want to clone. In this case http://www.gmail.com and hit enter.

Now send your IP to victim and when victim open IP is browser a fake Gmail page start working and when user input Username and Password in fake page. The Username and Password displayed on SET.

Hope you like the tutorial ... 

get picture codes for facebook chatbox

HOW TO POST PICTURE IN FACEBOOK CHATBOX:

 Good Morning Friends, Welcome back to extratorrenterz . Today i am going to show you how can you send any picture or image in your Facebook friend chat box .

Just Follow Simple Steps :

1.) Open this Website Click Here

2.) Click the “Choose File” Button and choose an image from your compute.

3.) Click the “Browse” button.

4.) After Few Seconds you will get picture code, When You will click on Show Codes .Then just copy it Paste the code to Facebook Chat

Let's Enjoy This Cool Trick Of Facebook  

javascript new hacks

JAVASCRIPT HACK TRICKS

Welcome to (HACKING begins - "An approach to introduce people with the truth of HACKING"), Hello friends today in my article I'll tell you how can you hack with your browser with just simple JAVA SCRIPTS.These are just simple scripts that works on any of browser and you can also play these scripts on
your friends.

• Javascript Hack 1 : Edit Any Webpage

javascript:document.body.contentEditable='true';document.designMode='on';void 0

Copy & Paste the code in browser.

• Javascript Hack 2 : Reveal Passwords Under Asterisks

javascript: alert(document.getElementById('Passwd').value);

Copy & Paste the code in browser.

• Javascript Hack 3 : Shake the Browser

javascript:function Shw(n) {if (self.moveBy) {for (i = 35; i > 0; i--) {for (j = n; j > 0; j--) {self.moveBy(1,i) ;self.moveBy(i,0);self.moveBy(0,-i);self.moveBy(-i,0); } } }} Shw(6)
Copy & Paste the code in browser.

• Javascript Hack 4 : Cool message trick Just type your message

javascript: contentBodyEditable="true".DesginMode="Message"
Copy & Paste the code in browser.

• Javascript Hack 5 : This is for Orkut Hack

javascript:function reverse() { var inp = " ! dekcah si tnuocca tukrO ruoY "; var outp="";for (i = 0; i <= inp.length; i++) { outp =inp.charAt (i) + outp;}alert(outp) ;}; reverse();

Copy & Paste the code in browser.

• Javascript Hack 6 : Rotates images from your web page in a circle

javascript:R=0; x1=.1; y1=.05; x2=.25; y2=.24; x3=1.6; y3=.24; x4=300; y4=200; x5=300; y5=200; DI=document.getElementsByTagName("img"); DIL=DI.length; function A(){for(i=0; i-DIL; i++){DIS=DI[ i ].style; DIS.position='absolute'; DIS.left=(Math.sin(R*x1+i*x2+x3)*x4+x5)+"px"; DIS.top=(Math.cos(R*y1+i*y2+y3)*y4+y5)+"px"}R++}setInterval('A()',5); void(0);

Copy & Paste the code in browser.

• Javascript Hack 7 : Shake the Browser

javascript:function Shw(n) {if (self.moveBy) {for (i = 35; i > 0; i--) {for (j = n; j > 0; j--) {self.moveBy(1,i) ;self.moveBy(i,0);self.moveBy(0,-i);self.moveBy(-i,0); } } }} Shw(6)
Copy & Paste the code in browser.

Hope this is informative and if u have any question, query or any suggestion kindly post us. 

WEBSITE HACKING USING FCKeditor VULNERABILITY

WEBSITE HACKING USING FCKeditor VULNERABILITY

Welcome again to "torrenterz  - An approach to introduce people with the truth of HACKING".

Today i teach you how to hack a website with FCKeditor Vulnerability. 

Lets Hack

Open Google

Search for DORK

Type: "inurl:/HTMLEditor/editor/filemanager/connectors/" without quotes

You see a webpage like that

 Ok now just replace things after “connectors/to “uploadtest.html”

Example :: http://www.victim.com/HTMLEditor/editor/filemanager/connectors/uploadtest.html 

Now select the file u want to upload

Browse the file and send it to server

You will get a POPUP to successfully file uploaded.

Viewing The File:

Just go to 

“http://www.website.com/Uploaded File URL:”

  

If u get errors likes

Uploder Disabled & Content Forbidden

Try Another Website

HOW TO HACK FACEBOOK, TWITTER WITH ANDROID APP DROIDSHEEP

HOW TO HACK FACEBOOK, TWITTER WITH ANDROID APP DROIDSHEEP

Welcome again to "HACKING begins - An approach to introduce people with the truth of HACKING". 

DriodSheep is awesome Session Hijacking Android app that can be use to hijack Wifi Sessions. Currently It support Open and WEP Encrypted networks that includes WPA and WPA2 networks (PSK)

 DroidSheep enables Android-based man in the middle attacks against a wide range of Web sites, including Facebook.com, Flickr.com, Twitter.com, Linkedin.com, and non-encrypted services like “maps” on Google. There are many users that do not known that air is the transmission medium when using WiFi. Therefore information is not only transferred to its receiver but also to any other party in the network within the range of the radio waves. 

Usually nothing special happens because the WiFi users discard packets that are not destined to themselves. DroidSheep does not do this. It reads all the packets looking at their contents.

Is a website sending a clear recognition feature within a message’s content, which can identify a user (“SessionID”), then DroidSheep is able to read it although it is not intended to external users. Moreover DroidSheep can use this token to use it as its own. The server can’t decide whether the authorized user or DroidSheep has sent the request.

How can I protect myself?

The only satisfying answer is: SSL respectively HTTPS.

Many providers already offer HTTPS, even facebook, however it must often be enabled in the settings first.

When using HTTPS the data are still sent to alle participants in the WiFi-network, too, but because the data has been encrypted it is impossible for DroidSheep to decrypt the contect of a message - remaining only a complete mess of letters, with which an attacker can’t do anything.