Ethical Hacker

Data technicians, also known as data-entry keyers, clerks or coders, are responsible for the collection, recording and retrieval of information. They read source documents, verify the accuracy of the information, prepare reports and manage data storage and retrieval systems

[05/08, 16:49] : https://www.youtube.com/channel/UCjZ2bleHzDAr9oL9b33ZkbQ
: Please subscribe

Rannvijay Singh chauhan Motivator Finally, how you present yourself can affect how your Listener responds to your presentation.You need to fit with your Listener's expectations if they are no...

today we are going to explain how to hack android using Metasploit.
Before we go ahead let's know few things about android.

What is an Android?
Android is an operating system based on the Linux kernel, and designed primarily for touchscreen mobile devices such as smartphones and tablet computers. Initially developed by Android, Inc., which Google backed financially and later bought in 2005, Android was unveiled in 2007 along with the founding of the Open Handset Alliance: a consortium of hardware, software, and telecommunication companies devoted to advancing open standards for mobile devices.

Requirements:

1. Metasploit framework (we use Kali Linux 2016.2 in this tutorial)
2. Android smartphone (we use 6.0.1 Marshmallow)

Follow complete steps for Hacking Android Smartphone using Metasploit

1. Open terminal (CTRL + ALT + T).
2. We will utilize Metasploit payload framework to create exploit for this tutorial.
3. As we are using reverse_tcp payload where attacker expects the victim to connect back to attacker machine, the attacker needs to set up the handler to handle incoming connections to the port specified above. Type msfconsole to go to the Metasploit console.
4. In the next step we need to configure the switch for the Metasploit payload specified in step 3.
5. Attacker already has the APK's file and now he can start distributing it (I don't find any need to describe how to distribute this file, you all are intelligent enough to do so).
6. The following picture Describes outcome on Metasploit when Victim downloads the malicious APK.

This is the work of Ethical Hackers Club & is licensed under
a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

7. This shows that attacker is already inside the victim android smartphone and he can control the victim's phone.
7. This shows that attacker is already inside the victim android smartphone and he can control the victim's phone.

today we are going to explain how to hack android using Metasploit.
Before we go ahead let's know few things about android.

What is an Android?
Android is an operating system based on the Linux kernel, and designed primarily for touchscreen mobile devices such as smartphones and tablet computers. Initially developed by Android, Inc., which Google backed financially and later bought in 2005, Android was unveiled in 2007 along with the founding of the Open Handset Alliance: a consortium of hardware, software, and telecommunication companies devoted to advancing open standards for mobile devices.

Requirements:

1. Metasploit framework (we use Kali Linux 2016.2 in this tutorial)
2. Android smartphone (we use 6.0.1 Marshmallow)

Follow complete steps for Hacking Android Smartphone using Metasploit

1. Open terminal (CTRL + ALT + T).
2. We will utilize Metasploit payload framework to create exploit for this tutorial.
3. As we are using reverse_tcp payload where attacker expects the victim to connect back to attacker machine, the attacker needs to set up the handler to handle incoming connections to the port specified above. Type msfconsole to go to the Metasploit console.
4. In the next step we need to configure the switch for the Metasploit payload specified in step 3.
5. Attacker already has the APK's file and now he can start distributing it (I don't find any need to describe how to distribute this file, you all are intelligent enough to do so).
6. The following picture Describes outcome on Metasploit when Victim downloads the malicious APK.

This is the work of Ethical Hackers Club & is licensed under
a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

7. This shows that attacker is already inside the victim android smartphone and he can control the victim's phone.
7. This shows that attacker is already inside the victim android smartphone and he can control the victim's phone.

Ethical Hacker Hacking is not a crime but it's a game of mind....

http://www.mit.edu/hacker/hacker.html

Sometimes, we don't have a specific target in mind, but rather we are simply looking for vulnerable and easy-to-hack targets anywhere on the planet. Wouldn't be great if we had a search engine like Google that could help us find these targets? Well, we do, and it's called Shodan!
What Is Shodan?
Some have described Shodan as a search engine for hackers, and have even called it "the world's most dangerous search engine". It was developed byJohn Matherly in 2009, and unlike other search engines, it looks for specific information that can be invaluable to hackers.
Shodan pulls service banners (see my tutorial on fingerprinting web servers for more on banners) from servers and devices on the web, mostly port 80, but also ports 21 (ftp), 22 (SSH), 23 (telnet), 161 (SNMP), and 5060 (SIP).
What Can Shodan Show Us?
Since almost every new device now has a web interface (maybe even your refrigerator) to ease remote management, we can access innumerable web-enabled servers, network devices, home security systems, etc.
Shodan can find us webcams, traffic signals, video projectors, routers, home heating systems, and SCADA systems that, for instance, control nuclear power plants and electrical grids. If it has a web interface, Shodan can find it!
Although many of these systems communicate over port 80 using HTTP, many use telnet or other protocols over other ports. Keep that in mind when trying to connect to them.
Now let's take a look at this fascinating and nefarious search engine!

1) Log in to Shodan

First, we need to log in to shodanhq.com. Although you can use Shodan without logging in, Shodan restricts some of its capabilities to only logged-in users.

What is Wordlist ????
Wordlist is a text document in which we have or create the list of password that are used worldwide or the continuous set of all words or numbers, we use those wordlists to crack passwords using dictionary attacks

1.Dictionary attack :-
A dictionary attack uses a targeted technique of successively trying all the words in an exhaustive list called a dictionary (from a pre-arranged list of values).
2. Brute Force Attack :-
In contrast with a brute force attack, where a large proportion key space is searched systematically, a dictionary attack tries only those possibilities which are most likely to succeed, typically derived from a list of words for example a dictionary (hence the phrase dictionary attack).
3. Hybrid Attack :-
It works like a dictionary attack, but adds some numbers and symbols to the words from the dictionary and tries to crack the password.
4. Syllable Attack :-
It is the combination of both brute force attack and the the dictionary attack.
5. Rule-Based Attack :-
This attack is used when the attacker gets some information about the password.
Now we are gonna use CRUNCH .

# # Best ever platform over web to earn and promote at the same time # #
www.socialtrade.biz
A brand under Ablaze Info Solutions Private Limited
Highlights of Project
--------------------
1. 100% Genuine likes or visits on your page or blog
2. Cost per like or cost per click is cheaper than the price of facebook and google
3. Generation of work is based on Reseller API based model
4. Free of cost opportunity to work from home
5. Daily Payments in bank account
6. Six years experience of market
7. Fully professional Team
8. Dedicated 24 x 7 Support
9. Mobile Friendly Website
10. No Minimum bar for payments to be transferred
Product/ Services
------------------
STP - 20
11450.00 (Inclusive of all taxes)
1000 ePoints*
20 PTL per day**
1 Lakh capping per week
12 Months Validity
STP - 50
28625.00 (Inclusive of all taxes)
3000 ePoints
50 PTL per day
2 Lakh capping per day
12 Months Validity
STP - 100
57250.00 (Inclusive of all taxes)
6000 ePoints
125 PTL per day
2 Lakh capping per day
12 Months Validity
* 1 ePoint can be used to promote your social campaign to 1 Person
** PTL stands for Part time Links, for which company will pay 5/- per link clicked
Booster
--------
Complete 2 sales in 1:1 ratio in 30 days and get chance to double your part time work i.e double your income
Marketing Model
-----------------
Binary model , which is based on 1:1 ratio
10% of the sales balancing is rewarded as binary or promotional income
Legalities
----------
1. Purely service based industry
2. Taxable Invoice
3. TDS submission on time
4. No e-wallet
5. Payment Modes : Credit Card, Debit Card, DD, NEFT
6. All legal documents ( PAN, Service Tax Number, TAN, ROC)
7. Physical Office in India
8. No Cash is allowed
9. Maximum 1 ID's on a single PAN Card
10. 10 days refund policy
Vision
------
To become No. 1 company in the field of Digital Marketing in world
----------------------
Mr. Santosh shukla
More details call me +919990016580 [email protected]

Social Trade | Part time Work | Online Work at home Social Trade is a social media exchange based portal that helps you to promote your brand and earn money by exchanging links and many other online work