Home » Advance Hacking
5 most useful command of Backtrack

I'm trying to write 5 most useful things you should know in Backtrack Linux. Please check it below. 


1. About user name and password Backtrack use root for the username and toor for the password. You should provide it at the first time login in your first time installation. 


2. startx command. Don't shocked if you see the black screen with command only when you use backtrack. Backtrack designed to use command line, but if you want to enable the window, you can type startx command after you log in. 


3. Metasploit Framework The most famous tools in Backtrack is Metasploit framework, this tools is used for penetration testing into vulnerable system. You can go to metasploit framework by typing /pentest/exploits/framework3/msfconsole, and there's also /pentest/exploits/framework2/msfconsole. 

Read more »
Under: ,
Hack Facebook/Twitter Or Any Email Account With Session Hijacking


When logging into a website you usually start by submitting your username and password. The server then checks to see if an account matching this information exists and if so, replies back to you with a "cookie" which is used by your browser for all subsequent requests.


It's extremely common for websites to protect your password by encrypting the initial login, but surprisingly uncommon for websites to encrypt everything else. This leaves the cookie (and the user) vulnerable. HTTP session hijacking (sometimes called "sidejacking") is when an attacker gets a hold of a user's cookie, allowing them to do anything the user can do on a particular website. On an open wireless network, cookies are basically shouted through the air, making these attacks extremely easy.
This is a widely known problem that has been talked about to death, yet very popular websites continue to fail at protecting their users. The only effective fix for this problem is full end-to-end encryption, known on the web as HTTPS or SSL. Facebook is constantly rolling out new "privacy" features in an endless attempt to quell the screams of unhappy users, but what's the point when someone can just take over an account entirely? Twitter forced all third party developers to use OAuth then immediately released (and promoted) a new version of their insecure website. When it comes to user privacy, SSL is the elephant in the room.
Firesheep, a Firefox extension designed to demonstrate just how serious this problem is.
After installing the extension you'll see a new sidebar. Connect to any busy open wifi network and click the big "Start Capturing" button. Then wait.


Read more »
Under: , ,
Spying the network with Backtrack 5


Under: ,
8-steps-how-to-share-folder-in-backtrack-5-r1-to-make-accessible-in-windows


Requirement : 1. Linux O.S (I'm using Backtrack 5 R1) 


Step by Step


1. Open your terminal (CTRL+ALT+T) and then run this command to create a new directory "share". mkdir /var/www/share


 2. Change mode for the share folder into 755. chmod -R 755 /var/www/share/ 


3. Change the ownership of that folder into www-data. chown -R www-data:www-data /var/www/share/


 4. The three steps above have screenshot like this in my computer 









Read more »
Under: ,
how to dual boot backtrack with windows


Dual Boot

BackTrack Dual Boot Install with Windows (Tested on Win 7)

This method of installation is the simplest available. The assumption is that the you have a Windows installation taking up all the space on your drive, and you would like to resize and repartition your drive to allow a BackTrack install alongside your Windows. BACK UP YOUR WINDOWS INSTALLATION FIRST.

Boot BackTrack on the machine to be installed. Once booted, type in “startx” to get to the KDE graphical interface.
Double click the “install.sh” script on the desktop, or run the command “ubiquity” in console.
Bt5 hdd install01.png

Read more »
Under: ,
Hack facebook using BackTrack5


Under: , ,