Know how to hack in easy way

Web hosting

Thursday 17 April 2014

On 14:29 by chandan in    No comments

How to hack - Website with Google Dork

How TO Hack Any Website with Google Dork

This hack is done by an exploit called PHPmyadmin Exploit.


Introducing the Dork: allinurl:index.php?db=information_schema

Using this dork you can bypass username and password and can also edit schema of that website.
You can see whole database or edit or delete it without knowing admin panel username and password.

Tutorial




Search on google: allinurl:index.php?db=information_schema

After that you will get many results. you can choose any one.
and click on the link.


Bingo!!!!!


Now you have the whole database of the website. Now you can do whatever you want. You can see the admin username by just finding users table in the database. you can see and update , delete the record in the database. for that you need some knowledge of databse or phpmyadmin.

what you can do Now?

  • you can see all username and password of users using this hack .
  • you can edit database of that website using this hack.
  • you can delete the tables and data using this hack.
  • you can also compromise the server using this hack.

On 13:46 by chandan in    No comments

The Heartbleed Bug

Heartbleed is vulnearbility in the very popular Openssl cryptographic software.
This vulnerability allows the attacker to steal the users's information. SSL/TSL provides the communication security and privacy over the internet applications such as, web , email, and VPN,
Heartbleed allows everyone to read memory of the system protected by the vulnerable version of OpenSSL.
This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.


Am I affected by the bug?


You are likely to be affected either directly or indirectly. OpenSSL is the most popular open source cryptographic library and TLS (transport layer security) implementation used to encrypt traffic on the Internet. Your popular social site, your company's site, commerce site, hobby site, site you install software from or even sites run by your government might be using vulnerable OpenSSL. Many of online services use TLS to both to identify themselves to you and to protect your privacy and transactions. You might have networked appliances with logins secured by this buggy implementation of the TLS. Furthermore you might have client side software on your computer that could expose the data from your computer if you connect to compromised services.


How to Find Out if Heartbleed Affects You


There are a few free resources available to help you with this:
McAfee Heartbleed checker
fillipo heartbleed checker
lastpass heartbleed checker


Change your password


If you are using your old password till now for different websites like email, Instant messanger, Admin panel,etc
Then its time to change your password.

More on Heartbleed


Official website