Hacking macOS: How to Create an Undetectable Payload
Encrypting payloads and encoding stagers are more effective against macOS than one might think. It's very easy to evade VirusTotal and macOS antivirus software using a few simple tricks.
Beijing Attacked Search Results
How To: Exploit Remote File Inclusion to Get a Shell
A simple security flaw can allow an attacker to gain a strong foothold with little effort on their part. When a web application permits remotely hosted files to be loaded without any validation, a whole can of worms is opened up, with consequences ranging from simple website defacement to full-on code execution. For this reason, RFI can be a promising path to obtaining a shell.
How To: Program a $6 NodeMCU to Detect Wi-Fi Jamming Attacks in the Arduino IDE
Hackers and makers are often grouped under the same label. While hackers draw on computer science skills to write programs and find bugs, makers use electrical engineering to create hardware prototypes from microprocessor boards like the Arduino. We'll exercise both sets of skills to program a $6 NodeMCU to display the status of a Wi-Fi link via an LED, allowing us to monitor for jamming attacks.
How To: Exploit Shellshock on a Web Server Using Metasploit
One of the most critical bugs to come out in the last five years was Shellshock, a vulnerability which allows attackers to execute arbitrary code via the Unix Bash shell remotely. This vulnerability has been around for a while now, but due to the ubiquity of Unix machines connected to the web, Shellshock is still a very real threat, especially for unpatched systems.
SQL Injection 101: How to Avoid Detection & Bypass Defenses
It is often said that the best hackers remain unknown, and the greatest attacks are left undiscovered, but it's hard for an up-and-coming penetration tester or white hat to learn anything unless one of those factors is actually known or discovered. But the end goal here in our SQL injection lessons is to make that statement as true as possible for us when performing our hacks.
SQL Injection 101: How to Fingerprint Databases & Perform General Reconnaissance for a More Successful Attack
Know thy enemy — wise words that can be applied to many different situations, including database hacking. It is essential to performing adequate reconnaissance on a system before even thinking about launching an attack — any type of attack — and this is no different for SQL injection.
News: Makers of Ghostbusters World Scare Up Sneak Peek of Gameplay Footage
Sony's Ghost Corps, the caretaker of the Ghostbusters franchise, just released some pre-alpha gameplay footage from the upcoming Ghostbusters World location-based AR game to whet the appetites of would-be hunters of the paranormal.
How To: Execute Code in a Microsoft Word Document Without Security Warnings
Code execution in Microsoft Word is easier than ever, thanks to recent research done by Etienne Stalmans and Saif El-Sherei. Executing code in MS Word can be complicated, in some cases requiring the use of Macros or memory corruption. Fortunately, Microsoft has a built in a feature that we can abuse to have the same effect. The best part, it does so without raising any User Account Control security warnings. Let's look at how it's done.
News: Bacteria Turn Off Plant Genes to Help Parasites Destroy Billions of Dollars of Crops Every Year
Before you bite into that beautiful tomato in your garden, the tomato fruitworm, or the Colorado potato beetle, might have beat you to it.
News: The Cheap USB Kill Stick That Destroys Any Computer You Want
There are two types of bad USBs out there. One lets you trick the computer into thinking it's a keyboard or other USB device, and the other goes straight over malicious into computer killing territory.
Hack Like a Pro: Metasploit for the Aspiring Hacker, Part 12 (Web Delivery for Linux or Mac)
Welcome back, my budding hackers! Metasploit, one of my favorite hacking/pentesting tools, has so many capabilities that even after my many tutorials on it, I have only scratched the surface of it capabilities. For instance, it can be used with Nexpose for vulnerability scanning, with Nmap for port scanning, and with its numerous auxiliary modules, nearly unlimited other hacking related capabilities.
News: Simple Man-in-the-Middle Script: For Script Kiddies
This Is for the Script Kiddies: This tutorial is about a script written for the How to Conduct a Simple Man-in-the-Middle Attack written by the one and only OTW.
How To: Antisocial Engine
A.E Hi again this is my second post on nullbyte. The first one was on how to make a remote screenshot captor, now I will give you a presentation for a project of mine(I have named It Antisocial Engine) that It is not something extraordinary but will help many guys.
News: Kaspersky Offs Two Ransomware Strains
According to security firm Kaspersky Lab, CoinVault and Bitcryptor ransomware are officially dead.
How To: Build a Man-in-the-Middle Tool with Scapy and Python
Man-in-the-Middle attacks can prove to be very useful, they allow us to do many things, such as monitoring, injection, and recon.
The Hacks of Mr. Robot: How to Send a Spoofed SMS Text Message
Welcome back, my rookie hackers! As most of you know, Mr. Robot is probably the best hacker TV show ever! This is a great show about a cyber security engineer who is being enticed to hack the very corporation he's being paid to protect. This show is so good, I began a series to demonstrate how to do the hacks he uses in the show.
Hack Like a Pro: How to Hack Web Apps, Part 3 (Web-Based Authentication)
Welcome back, my novice hackers! In this third installment of my Hacking Web Apps series, we will look at the authentication of web applications. Remember, there are many ways to hack web applications (as I pointed out in my first article), and cracking authentication is just one method.
News: Funniest Hacks in History
Usually when a hacker takes control of a system, they use it for a good purpose (on their end, anyway). But some hackers have made jokes or pranks with their hacks. Here is a list of the top of them...
How To: Crash an iPhone (Until a Hard Reset)
Before I start this tutorial, no, this is not that "Effective. Power." text that is going around. With that being said, let's talk about this attack.
The Sony Hack: Thoughts & Observations from a Real Hacker
By now, nearly everyone with any type of media access is aware that Sony Pictures Entertainment was hacked on November 24th. Although there can be many interpretations and lessons drawn from this audacious act, there is one indisputable conclusion: it and its ripples across the globe underlines how important hacking has become in our all-digital 21st century. As I have emphasized so many times in this column, hacking is the discipline of the future. From cybercrime to cyber intelligence to cy...
Hack Like a Pro: An Introduction to Regular Expressions, Part 2
Welcome back, my hacker novitiates! A short while ago, I introduced you to regular expressions. Regular expressions are a language that is particularly useful for finding complex text patterns in streams of data.
Hack Like a Pro: How to Crack Passwords, Part 3 (Using Hashcat)
Welcome back, my greenhorn hackers! Continuing with my series on how to crack passwords, I now want to introduce you to one of the newest and best designed password crackers out there—hashcat. The beauty of hashcat is in its design, which focuses on speed and versatility. It enables us to crack multiple types of hashes, in multiple ways, very fast.
Hack Like a Pro: How to Extract Metadata from Websites Using FOCA for Windows
Welcome back, my greenhorn hackers! My preference for Linux as a hacking platform is well documented, and I have even created a series of tutorials to train new hackers. Without being proficient in Linux, you can't really call yourself a hacker.
How To: Over 4 Million Snapchat Accounts Have Been Compromised—Is Yours One of Them?
Just days after news spread that Snapchat could be exploited by spammers, an anonymous group of hackers have released the private information of over 4 million users of the popular photo-sharing application.
How To: Understanding Signature Schemes: How Data Sources Are Authenticated, Secured, & Spoofed
One of the biggest problems in data security is authentication of data and its source. How can Alice be certain that the executable in her inbox is from the venerable Bob, and not from the not-so-venerable Oscar? Clearly Alice wants to know because if this file is actually sent to her by Oscar, the file might not be a game, but a trojan that can do anything on her computer such as sift through her email and passwords, upload her honeymoon pictures, or even turn on microphones and webcams. Thi...
Become an Elite Hacker, Part 3: Easy DDOS
Welcome back my fellow hackerians, Today i'm going to tell a bit more about the famous DDOS thing. And on top of that we're going to DDOS a website.
Hack Like a Pro: How to Crack User Passwords in a Linux System
Welcome back, my eager hackers! In recent blogs, I've demonstrated how to grab password hashes remotely using Metasploit's meterpreter and pwdump. Once we have the Windows passwords from the SAM file, we can then crack these hashes using tools such as Cain and Abel.
How To: The End of the World Survival Guide: Staying Alive During a Global Cyber War
Will the predicted apocalyptic date—December 21st, 2012—really be the end of the world? In this ongoing five-part series, we examine what would happen if zombies, nuclear weapons, cyber wars, earthquakes, or aliens actually destroyed our planet—and how you might survive.
How To: Bake a hash brown pizza with ground beef
This is why you're fat. Coincidentally, this is also why you're happy when you nom on artery clogging junk fare. We don't recommend you whip up this recipe on a regular basis unless you're hopin' and wishin' for a heart attack this Christmas, but this would make a sweet treat every once in a while.
How to Beat level 7: The Battle for the Salvation in Star Wars: The Force Unleashed 2
Of course, in a Star Wars story, one cannot hope to board a major ship and take it any major distance without being attacked by Rebel or Imperial forces, depending on your side. Star Wars: The Force Unleashed 2 is no exception, and in this video you'll learn how to deal by beating level 7: The Battle for the Salvation.
How To: Install brakes, shifters, and grips
In this video, we learn how to install brakes, shifters, and grips. You will need: Allen keys, grease, a knife, and a grip to do this. First, attack the brakes onto the handles, then the shifter and the bolts. Make sure to grease the bolts before you place them onto the handles. Do this on both sides of the bike. Make sure you have everything on the correct sides, then slide the grip in. Customize the grip so it's the right length and cut it with the knife to do this. Once finished, connect a...
How To: Decorate and create paintings for your base in Minecraft
In Minecraft, the key to survival is building proper shelter for yourself to survive the nightly attacks by the creatures that roam the land. But whose to say that you can't spruce the place up a little bit? Notch has included a feature in the game that allows you create paintings using a few sticks and a piece of wool. In this video you will learn how to craft the paintings and also how to put them up and some of the random paintings that you can get.
How To: Make spooky sweet chocolate candle desserts for Halloween
During Halloween, party planning can get really hectic. Between baking and cooking party food to picking up plates and utensils at the store to putting up black and orange streamers, there's more than enough stuff to do to give you a panic attack.
How To: Make small changes to your diet for a healthier lifestyle
We once read a Twitter profile that said, "Love food. Hate exercise. Will die of heart attack." While that's funny and all, we doubt any of you guys and gals would want to drop dead on your 40th birthday. While we're totally for the occasional splurge, it's definitely a good idea to begin eating healthy now.
How To: Make a healthy homemade pepperoni pizza
A big part of pizza's allure is its perfectly crispy crust and oodles of heart attack-inducing oil sitting on the cheese. Personally, we can't even consume a pizza we get from Pizza Hut or Domino's without taking a napkin and blotting off the oil.
How To: Understand & get rid of bed bugs
Bed bug management requires many levels of attack. Prevention is very important. You should never pick up discarded items on the street. Don't buy used or refurbished mattresses or furniture. Toss out vacuum bags.
How To: Make a floating flower, Swarovski crystal toe ring
Kameron Kay teaches us how to make a floating flower crystal toe ring in this tutorial. You will need: stretch cord, large crimp bead, flat nosed pliers, flat backed crystal flower, glue, and small scissors to make this. First, cut out your chord to the exact size that you need. After this, use glue to attack the ring into the middle of the string. Place a crimp bead on the bottom to help the bead stay in place, then glue these together as well. Next, tie this together and attach an end to th...
How To: Work a spinner bait
In this tutorial, we learn how to work a spinner bait. This has a head as the weight, then the hook underneath the head and skirt. On the other side of the safety pin, there is who flat blades for murky waters. These help with sun reflection. This is a very versatile type of bait that helps you fish in murky waters. Bass will attack it as soon as they see it, helping you catch more fish. There is a lot of equipment on this, so it takes the bass a little while to get a hold of it. To ensure yo...
How To: Defeat the Tiamat in the game Darksiders
Are you having a hard time defeating the character Tiamat? Well, this tutorial is just what you need! In this video, you'll find out how to defeat this ugly, Predator looking beast.
How To: Find all the pieces to Abyssal Armor in Darksiders
if you're looking for a little bit more of a challenge in the game Darksiders, then check out this tutorial. In the video, you'll be finding out how to find all ten pieces to the Abyssal Armor. This armor is much different than War's original armor and is much stronger and gives life on all attacks. It doesn't need to be collected to win the game, but it helps make your character stronger.