How to bruteforce a login page? – Blazy

What is Blazy? Blazy is a python script to bruteforce login pages. The script takes input from usernames.txt and passwords.txt and try every possible combination to find the correct authentication credentials. It can also check for login bypass via SQL injection and CSRF. Common usernames and passwords can be downladed online. kali linux has a […]

How to find website admin panel using cpscan

How to find website admin panel using cpscan

Most of the websites have their own custom control panel/admin panel other than the server cpanel. They are simply programmed in php, html and java like languages. These admin panel can control the website completely other than the server settings. Once you have access to this then you can upload new images, edit pages and […]

windows-login-by-replacing-utilman-exe

Backdoor windows login by replacing utilman.exe

Forgot windows login password? Need to drop a simple backdoor on windows? Then this blog will help you. Utilman.exe is a program designed for users with some disabilities. Utilman enables accessibility features like magnification, narration, virtual keyboard, high contrast themes, etc. This can be helpful for people who have poor vision or with hearing problems. […]

create-custom-wordlist-crunch

How to create custom wordlist

In penetration testing the worst part is authentication failure. Cracking a hash or a dictionary attack to an authentication form is time consuming. It depends on the strength of the password. An eight character password can have the possible combination of 6,634,204,312,890,625 including special char . Bruteforcing all the possible combination may take hours or […]

reaver-wps-hack-wifi

How to hack WPS protected wifi router

Reaver-wps targets the external registrar functionality mandated by the WiFi Protected Setup specification. Access points will provide authenticated registrars with their current wireless configuration (including the WPA PSK), and also accept a new configuration from the registrar. In order to authenticate as a registrar, the registrar must prove its knowledge of the AP’s 8-digit pin […]

facebook

How to hack facebook – 2017 100% working

Hacking facebook is nearly impossible. Then how facebook accounts are hacked? Actually hacking into facebook database is nearly impossible. Its not an easy job (only a few had done it.. lol). But still there are many other ways to hack an account. Here is one method – ‘phishing’. Phising means collecting sensitive data like passwords […]