Firewall For Windows (Nota)

FIREWALL

-pendinding api yg control in dan out network traffic
-cam guard lah
-bukan antivirus
-tujuan: nak kawal in bound(masuk) dan out bound(keluar) network traffic
-sebab diperlukan: utk kawal in bound dan out bound network traffic
-hanya guna 2 rules - allow atau deny / accept atau reject / allow atau block

*setiap komunikasi yg berlaku menggunakan ip dan port :

• port 22 - ssh(hacker selalu guna)
• port 20 - telnet
• port 80 - http
• port 8080 - proxy
• port 21 - ftp
• port 53 - dns
• port 110 - pop3

*klu kawal network traffic - kawal ip dan port aje

*klu nak hack - pi kat search google - taip = ?intitle:index.of?(apa benda nak hack - cth:kedah)

Khamis - 28hb Feb. 2008

kami belajar tentang proxy server hari ini......
kami juga tau cam mana nak bypass firewall utk buka blocked website.....
heheehheheh...
seronoknye........
semalam, belajar tentang firewall for window sedikit.....
pastu ada project sedikit.....

Isnin - 25hb. Feb 2008

hari ini belajar tentang rfi......
Remote File Inclusion......
pening jg nak buat....
cik kamal tunjuk demo sikit2.....
pening jg nak tgk......

Jummat - 22hb. Feb 2008

sejak 2 hari lalu dgn hari ini kami dok berlatih hack aje......
kat hackthissite.org aje....
naik pening kepala juga....
selain itu belajar remote sql injection.....
best juga........
dan xss juga best belajar tp susah sedikit......

Cisco Router ( Nota )

Router
-satu device utk menghubungkan 2 segment yg berlainan
-menentukan laluan terbaik utk paket yg dihantar / diterima
-bagaimana berfungsi -

• router extract paket yg diterima ke destinasi
• pilih laluan terbaik + forward paket tersebut disepanjang laluan yg dipilh

-tugas -

1. control plane / routing
2. forward paket / forwarding

-sebelum config router - design network dulu ( topologi ) dan tentukan ip mana utk network/ router mana

Cisco router

What to do?

1. set ip address
2. set router
3. buat routing rip - nak route ke mana

What we need to have?

1. cisco router
2. DCE cable - sambung router ke router
3. console cable - sambung ke pc utk config router
4. straight cable - sambung pc ke router

*straight cable - sambung 2 device yg berlainan ( pc /router)
*cross cable - sambung 2 device yang sama (pc /pc)

Element to think before config cisco router

1. topologi / network design
2. configure router - set ip dan buat routing

Selasa - 19hb. Feb 2008

x byk sgt buat hari ini......
update blog sikit.....
pastu cari maklumat sikit tentang cross site scripting (XSS)......
yang tu aje.......

SQL Injection (nota)

• is a technique that exploits a security vulnerability occurring in the database layer of an application.
• Also known as “magic word” or “code string”
• Contoh magic word : 1' or '1'='1

Langkah - langkah nak buat sql injection :

• sebelum buat, check dulu website nak hack
• sql injection - selalunya hack pada application level atau server level
• masukkan magic word kat login/password dan username sekali (klu perlu)

How to protect website from sql injection

Cth: username : 1' or '1'='1
password : 1' or '1'='1

Cara

• if......else statement bhg login - tujuan: check valiable $name contain " ' " dan reject klu ada single code " ' "

IF ($name = "1' or '1'='1") {break;} - sebelum sql statement

• escape " ' " single code
• parameter statement - setkan saiz username dan password
• username tukar dengan guna email address

Klu protect kat server lever - guna apache - guna xmode security

Isnin - 18hb. Feb 2008

hari ini x belajar apa sangat.....
cuma belajar sedikit tentang cam mana nak protect website dari sql injection......
yang itu aje.....
esok mungkin masuk topik baru kot.....

Cisco Router Configuration Format........

Router>enable

Router#config terminal

Enter configuration commands, one per line. End with CNTL/Z.

*********** Setup Hostname *************

Router(config)#hostname LAB_A

*********** Start Setup Serial 0/0 Interface with DCE connection *************

LAB_A(config)#interface Serial 0/0

LAB_A(config-if)#ip addr 10.2.2.1 255.255.255.0

LAB_A(config-if)#clockrate 64000

LAB_A(config-if)#no shutdown

LAB_A(config-if)#

00:08:29: %LINK-3-UPDOWN: Interface Serial0/0, changed state to up

00:08:30: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0, changed state to up

LAB_A(config-if)#exit

LAB_A(config)#exit

LAB_A#

*********** End Setup Serial 0/0 Interface with DCE connection *************

*********** Check Interface *************

LAB_A#show interfaces summary

*: interface is up

IHQ: pkts in input hold queue IQD: pkts dropped from input queue

OHQ: pkts in output hold queue OQD: pkts dropped from output queue

RXBS: rx rate (bits/sec) RXPS: rx rate (pkts/sec)

TXBS: tx rate (bits/sec) TXPS: tx rate (pkts/sec)

TRTL: throttle count

Interface	IHQ	IQD	OHQ	OQD	RXBS	RXPS	TXBS	TXPS	TRTL
FastEthernet0/0	0	0	0	0	0	0	0	0	0
* Serial0/0	0	0	0	0	0	0	0	0	0
Serial0/1	0	0	0	0	0	0	0	0	0

NOTE:No separate counters are maintained for subinterfaces

Hence Details of subinterface are not shown

*********** OK that good serial 0/0 is UP *************

______________________________________________________________________

*********** Start Setup Fast Ethernet l 0/0 Interface *************

LAB_A#config terminal

Enter configuration commands, one per line. End with CNTL/Z.

LAB_A(config)#interface fastethernet 0/0

LAB_A(config-if)#ip addr 10.1.1.1 255.255.255.0

LAB_A(config-if)#no shutdown

LAB_A(config-if)#

00:16:14: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up

LAB_A(config-if)#exit

LAB_A(config)#exit

LAB_A#

*********** END Setup Fast Ethernet l 0/0 Interface *************

*********** Check Interface *************

LAB_A#show interfaces summary

*: interface is up

IHQ: pkts in input hold queue IQD: pkts dropped from input queue

OHQ: pkts in output hold queue OQD: pkts dropped from output queue

RXBS: rx rate (bits/sec) RXPS: rx rate (pkts/sec)

TXBS: tx rate (bits/sec) TXPS: tx rate (pkts/sec)

TRTL: throttle count

Interface	IHQ	IQD	OHQ	OQD	RXBS	RXPS	TXBS	TXPS	TRTL
FastEthernet0/0	0	0	0	0	0	0	0	0	0
* Serial0/0	0	0	0	0	0	0	0	0	0
Serial0/1	0	0	0	0	0	0	0	0	0

NOTE:No separate counters are maintained for subinterfaces

Hence Details of subinterface are not shown

**********************************************************************

FastEthernet0/0 did Not UP yet because of Another Router did Setup yet

**********************************************************************

*********** Check Interface fast Ethernet 0/0 Detail *************

LAB_A#sh int fast 0/0

FastEthernet0/0 is up, line protocol is down

Hardware is AmdFE, address is 000d.28ef.bac0 (bia 000d.28ef.bac0)

Internet address is 10.1.1.1/24

MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

reliability 255/255, txload 1/255, rxload 1/255

Encapsulation ARPA, loopback not set

Keepalive set (10 sec)

Auto-duplex, Auto Speed, 100BaseTX/FX

ARP type: ARPA, ARP Timeout 04:00:00

Last input 00:23:34, output 00:00:04, output hang never

Last clearing of "show interface" counters never

Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0

Queueing strategy: fifo

__________________________________________________________________________

**********************************************************************

Let setup FastEthernet0/1 at LAB_B router

**********************************************************************

LAB_B(config)#int fast 0/1

LAB_B(config-if)#ip addr 10.1.1.2 255.255.255.0

LAB_B(config-if)#no shutdown

LAB_B(config-if)#

00:29:54: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up

00:29:56: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up

LAB_B(config-if)#

*********** End Of setup FastEthernet0/1 At LAB_B router *************

LAB_A#sh int sum

*: interface is up

IHQ: pkts in input hold queue IQD: pkts dropped from input queue

OHQ: pkts in output hold queue OQD: pkts dropped from output queue

RXBS: rx rate (bits/sec) RXPS: rx rate (pkts/sec)

TXBS: tx rate (bits/sec) TXPS: tx rate (pkts/sec)

TRTL: throttle count

Interface	IHQ	IQD	OHQ	OQD	RXBS	RXPS	TXBS	TXPS	TRTL
* FastEthernet0/0	0	0	0	0	0	0	0	0	0
* Serial0/0	0	0	0	0	0	0	0	0	0
Serial0/1	0	0	0	0	0	0	0	0	0

NOTE:No separate counters are maintained for subinterfaces

Hence Details of subinterface are not shown

*********** Now FastEthernet 0/0 was UP sucessfuly ****************

*********** Start Setup routing protocol using RIP ****************

LAB_A(config)#router rip

LAB_A(config-router)#network 10.1.1.0

LAB_A(config-router)#network 10.2.2.1

LAB_A(config-router)#

*********** End Setup routing protocol using RIP ****************

________________________________________________________________________

*********** Start Register IP host lookup table ****************

LAB_A(config)#ip host LAB_A 10.1.1.1 10.2.2.1

LAB_A(config)#ip host LAB_B 10.1.1.2 10.2.2.2

*********** End Register IP host lookup table ****************

Jumaat - 15hb. Feb 2008

hari ini x belajar apa- apa......
sebab byk lecturer sibuk dgn trainer baru masuk........
bole kata hari yang relaks juga......
tp bosan juga......
x tau nak buat apa......

Rabu - 13hb Feb. 2008

masih buat sambungan tentang sql injection juga hari ini.....
byk juga website bole hack hari ini......
kena buat powerpoint juga......
dah siap.....
cuma tinggal nak bagi elok sikit lagi.......

Selasa - 12hb Feb. 2008

hari ini kami belajar hack website org....
guna sql injection......
magic word.....
1' or '1'='1............
heheheheheheh
bestnye.......

Rabu - 6 Feb. 2008

hari pembentangan tentang sniffer sudah tiba.....
hari ini kena bentang.....
relaks........
buat cam biasa aje....
heheheheheh

Selasa - 5 Feb. 2008

masih lagi belajar tentang sniffer.....
kena buat powerpoint tentang cam mana nak guna sniffer yang dipilih.....
esok kena bentang dia pula.....

Isnin - 4 Feb. 2008

Masih lagi buat samb. kpd sniffer.......
dah pilih dah......
so, skrang kena tgk fungsi dia...
pastu buat power point pula.....

Jumaat - 1 Feb. 2008

kami buat sambungan cari sniffer lagi......
sebab minggu depan nak kena bentang......
pening kepala juga nak cari.....
pastu nak compare yang mana yang elok......