Disclaimer: For Educational purpose only, We DO NOT take responsibility of any harm caused by this method to any one or any organization.

We are using PC with Backtrack OS, You can also do it without installing backtrack but I am not going to explain around here how you can. Because if you want to really dig in to some real hacking grab Backtrack for free here & Install on your PC.

Hacking Scenario:

If you around a paid wi fi network & you need to connect to internet you need to pay per hour for any network. To use it for free hackers use the method call session stealing to bypass the Wi Fi Hotspot’s Access Control. In plain words we have to create a fake MAC address for our network card. And the fake one should resemble to some paid user already on network. (Don’t worry you’ll understand stuff in process)

You can read our Tutorial  – What is Session Hijacking For more information.

Goal: Changing your MAC Address to Someone’s Who has already purchased for using the network.

Step 1:  Verify Wi Fi Network is Around

Start Wireless Assistant in Backtrack  & confirm you have some wireless network around. Then you can click “Connect” to that network. It won’t let you connect because you are not the paid user. It will open up browser and will ask you to pay for usage.

Close it.

Step 2: Connectin up With Wi Fi Network (rausb0)

There are multiple ways you can do this & very simple would be to use Ping Scan from backtrack. I am demonstrating here by using AiroDump which will be an add on method for you to learn.

Open up your Shell or Konsole form Backtrack & now we have to put network in Monitor mode.

Type in ifconfig -a (Hit Enter)

You ll see list of network interfaces. I see “rausb0” in my list which I want to connect so type in following and hit enter again.

ifconfig rausb0 up

Now your network is up & we have to put network in monitor mode so type in following.

iwconfig rausb0 mode monitor (Hit Enter)

iwconfig (Enter again)

So now we are up in monitor mode. We have to start Airodump Next.

Step 3: Start Airodump

In the same shell type in

airo (Enter)

Then, type next

airodump –ng rausb0 (And guess what – Enter again)

Now we will see the SSID of the whole network. We have to find the user’s MAC address that is already on a network.

Step 4: Capturing MAC Address For Spoofing (of Connected User)

You ll see a list of SSID’s around there. But at the end of all lines you have to find out the name of Wi Fi access point. E.g – You’ll Find attwifi if you are on the AT&T wifi network. As shown in following image.

You have to copy the MAC address corresponding to that wifi network. And use it in following command.

airodump –ng –bssid xx:xx:xx:xx:xx:xx rausb0 (Replace copied MAC Address at XX & Hit Enter)

It will now open up the rausb0 interface & will take some time to find out network traffic. Then you’ll see some stations with its packet data flow information. For security pick up the station that have more data packets flowing. (Like more than 30-40)

Copy the MAC ADDRESS of this station.

Now you have finalized the address to replace as our MAC address, you have to put back the network to Manage mode from monitor Mode.

If you have USB dongle plugged in simply unplug it, change MAC adrdress and plug it back again. If you are not USB dongle type in following and it enter again.

Ifconfig rausb0 down

Step 5 : Changing MAC Address

In your shell type in mac and hit enter to change MAC Address.

macchange –m xx:xx:xx:xx:xx:xx rausb0 (replace xx with copied MAC address & Enter)

Now you’ll see current MAC address & Fake MAC address .

Now you have to plug back in your USB you took out few minutes ago. Or if you have used command to put your interface down use following command to put it back up.

Ifconfig rausb0 up

Now your MAC address successfully changed you can check by typing ifconfig in console.

Step 6: Connecting to Hacked Wi Fi Network

Now you are done at Bypassing Wi Fi HotSpot’s  Access Control Using Session Stealing & you can connect to hotspot as follows.

1. Open Wireless Assistant.
2. Select Network
3. Hit Connect

And you’re done !!!

You can thank me, give suggestions, ask any question in comments section below.

We use mail clients for sharing emails through our friends & colleagues & different purposes. But what are essential aspects for a perfect mail service are mentioned as follows.

Simple User Interface

Customization in GUI

Easy Filtration

Spam Filtration

Secured mail transactions

Overall Security

From 6 aspects mentioned above we find first 5 in any of mail service like in MSN, Yahoo & hundreds of different mail services.

But the point related to security is more important as we know many accounts can be compromised.  For spamming, advertising, teasing many kind of personal information Email accounts can be hacked by criminal hackers.

What I noticed in Gmail that it establishes Secured connection while logging inside the mail sever.

When you connect to www.gmail.com, you ll; see following address in your browser.

https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&bsv=zpwhtygjntrz&scc=1&ltmpl=default&ltmplcache=2

The https:// means the Secured socket layer protection which is often used by banks for secured transaction. So it is truly ensured for our mail security in Gmail.

While logging in you ll see this

https://www.google.com/accounts/ServiceLoginAuth?service=mail

& after establishing secured connection gmail verifies your identity & gives your session a ID, which makes it unique.

http://mail.google.com/mail/?zx=AAAAAAAAAAA&shva=1#inbox

Now the AAAAAA is actually have some other ID which is your session id.

So this is how Gmail is secured from hacking. Well it is not 100 % secured, as it every time sends information from browser to website, makes it possible to sniff the session.

But still it is far more secure than any other mail service. Even in any case if your account is stolen, you can retrieve it by giving your personal information. It is great new feature introduces by google.

So this is how I think Gmail Hacking is not possible. I guess it is 95% secure because nothing is perfect in security & there is always a bug.

Port scanning determines which ports are listening to the active connections on the subjected host. These ports represent potential communication channels. With the help of port scanning we get close to the network communication scenario. We get to know more about victim’s network which is useful for further attacks. Internet does not exclusively rely on TCP port 80, used by hypertext transfer protocol (HTTP). Any surfer surfing any website can gain the same level of proficiency as your average casual surfer. Port scanning can be efficiently done to reveal the secret’s about the host.

Automated port scanners are necessary to perform such scanning, which are available in the market for very small cost.

Port scanning is done so as to gather information passively about the victim. This help’s intruder to eavesdrop into Victim’s Network.

Such scanning also helps in gathering information so as to form a network map. Network map are useful to get to know the victim network architecture or hierarchy.

There are thousands of ports available for communication on a network some well known are FTP, HTTP, SMTP etc., Which ports remains open or close depends on the network’s requirement. Like any web server will always have an FTP port open.

Every port has its unique number which is targeted after the successful port scanning. Various bugs, backdoors are installed on these ports and tested whether the system is vulnerable.

And this is how a successful attack through port scanning is done.

Hope you have enjoyed this informative article about port scanning. We are covering requirements of a good port scanner in next post.

To know more about port scanning comment here or mail us at amol@hackersenigma.com

These are the individuals who you should be weary of. Their sole intent on system infiltration is to cause damage or use information to create havoc. They are primarily the individuals who are responsible for the majority of system attacks against home users. They are more likely to be interested in what lies on another person’s machine for example yours.

Mostly you’ll find that these individuals have slightly above computer skill level and consider themselves hackers. They glorify themselves on the accomplishments of others. Their idea of classing themselves as a hacker is that of acquire programs and utilities readily available on the net, use these programs with no real knowledge of how these applications work and if they manage to “break” into someone’s system class themselves as a hacker. These individuals are called “Kiddie Hackers.”

They use these programs given to them in a malicious fashion on anyone they can infect. They have no real purpose to what they are doing except the fact of saying “Yeah! I broke into <insert name here> computer!” It gives them bragging rights to their friends.

If there is any damage to occur in a system being broken into these individuals will accomplish it. These individuals are usually high school students. They brag about their accomplishments to their friends and try to build an image of being hackers.

This is primarily the term given to individuals who are skilled at the art of bypassing software copyright protection. They are usually highly skilled in programming languages. They are often confused with Hackers.

As you can see they are similar in their agenda. They both fight security of some kind, but they are completely different “animals.”

Being able to attribute your attacks to the right type of attacker is very important. By identifying your attacker to be either an Anarchist Hacker or a Hacker you get a better idea of what you’re up against.

“Know your enemy and know yourself and you will always be victorious…”

These are generally who performs criminal hacking like bank frauds with phishing, hacking web servers and intruding into the personal network.

Their other crimes includes spreading viruses and infected files among the newsgroups and forums, infected software give away, passing the Trojans through infected files, planting backdoors and hacking email accounts for gaining personal data.