ADD BACKTRACK REPOSITORY ON UBUNTU (DEBIAN BASED)

Backtrack is OS specific for penetration testing (in addition Kali Linux), who do not know backtrack?

The lucky is backtrack a derivative of Ubuntu OS, remastering of Ubuntu 10.04 and Ubuntu 10.10. And Ubuntu is derived from Debian OS. Then of course Debian or Ubuntu users can use backtrack software.

Here's how to install backtrack repository in your Debian or Ubuntu :

 

1.Open your terminal emulator and type the command:

sudo wget http://all.repository.backtrack-linux.org/backtrack.gpg

sudo apt-key add backtrack.gpg

2.Then add the source or mirror by typing this command :

sudo nano /etc/apt/sources.list

(For text editor, you can use your preferred editor. Nano, pico, vi, or else his. If you prefer the vi editor, then his command to be like this :

sudo vi / etc / apt / sources.list)

3.Add the following source on the top row below your text editor :

deb http://all.repository.backtrack-linux.org revolution main microverse non-free testing
deb http://32.repository.backtrack-linux.org revolution main microverse non-free testing
deb http://source.repository.backtrack-linux.org revolution main microverse non-free testing

4.For Indonesian local source, you can add this source :

deb http://backtrack.indonesianhacker.or.id/all revolution microverse play non-free testing
deb http://backtrack.indonesianhacker.or.id/32 revolution microverse play non-free testing
deb http://backtrack.indonesianhacker.or.id/source revolution microverse play non-free testing

5.And then, type the command :

sudo apt-get update

6.After completed,  you can install all tools that exist in backtrack. It's can be seen in synaptic or ubuntu software center 

 

Read More

E: Could not get lock /var/cache/apt/archives/lock - open (11: Resource temporarily unavailable)

Do you ever find an error message like this on your linux?

E: Could not get lock /var/cache/apt/archives/lock - open (11: Resource temporarily unavailable)

E: Unable to lock directory /var/cache/apt/archives/

 I ever experienced it. And shortly after the error message appears on my debian linux, then what happens next is I can not install or update apps and other commands through the terminal emulator, the message always appears.

 I was wondering how to get rid of error message like that, but after some time surfing the internet (and several times following the tutorial wrong) I finally found a way to eliminate the error message like that.

The way is like this, open a terminal emulator and type this command in the terminal emulator:

rm / var / lib / apt / lists / lock
rm / var / cache / apt / archives / lock

Done!!! I can re-install the application and run other commands here through my terminal emulator

Read More

WASP Xenotix XSS Exploit Framework V4.5

WASP Xenotix XSS Exploit Framework V4.5 is released. OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework. It provides Zero False Positive scan results with its unique Triple Browser Engine (Trident, WebKit, and Gecko) embedded scanner. It is claimed to have the world’s 2nd largest XSS Payloads of about 1500+ distinctive XSS Payloads for effective XSS vulnerability detection and WAF Bypass. It is incorporated with a feature rich Information Gathering module for target Reconnaissance. The Exploit Framework includes highly offensive XSS exploitation modules for PenetrationTesting and Proof of Concept creation.

V4.5 Additions

==========

• JavaScript Beautifier
• Pause and Resume support for Scan
• Jump to Payload
• Cookie Support for POST Request
• Cookie Support and Custom Headers for Header Scanner
• Added TRACE method Support
• Improved Interface
• Better Proxy Support
• WAF Fingerprinting
• Load Files <exploitation module>
• Hash Calculator
• Hash Detector

Read More

Hard Disk AV WD-25 Offer Toughness in Multimedia Streaming

As the leader of storage manufacturers in the world, Western Digital ( WD ) reportedly recently launched hard disk a new series of AV - 25 . And as reported , this device reportedly was specifically designed for digital audio streaming services or video that was always active or ON continues as DVR / PVR , digital video display is also demanding surveillance and other multimedia applications .





Hard disk SATA 2.5 - inch is available in capacities of 160GB , 250GB , 320GB and 500GB . The AV- 25 device was equipped SlikStream technology features, to keep the video is running still smooth and seamless , digital video playback continuously up to five simultaneous HD display capable of done . In addition , this hard disk also offers an extra cooling system and quiet operation , and low electrical power consumption . So practically counts as an environmentally friendly device .

For those of you who want to try it , AV WD- 25 hard drives can now be purchased on Amazon.com website with prices ranging from $ 59.99 range or about 600 thousand rupiahs. .

Read More

Blackberry Messenger for Android and Iphone

As promised, BlackBerry has now officially announced the existence of the BlackBerry Messenger (BBM) for Android and iOS. The Android smartphone and iPhone users can get the app for free in the App Store and Google Play.
With this application, users of Android or iOS smartphones can get BBM PIN. So, if anyone asks, "eh what's your PIN number?", The users of iPhone-and Android are now also able to provide the answer.
The use of PIN also provide more privacy to the user instead of the email or phone number.

BBM display in android and iphone are as like this : 

 

Although recently launched, the application is getting a positive reaction from Android or iOS users. At the time of writing this news, Android BBM app has been downloaded over 12 thousand times. In addition, this application also given 4.5 stars by user. And it is also happened in the App Store.

Download link BBM for Android or Iphone : http://global.blackberry.com/bbm/en.html

Read More

VMWare PLAYER INSTALLATION ON UBUNTU BACKBOX

In case someone would like to set up the own pentest lab we can do something by using VMWare Player.
That is what we are going to do in this tutorial (how to download, install and remove VMWare player with BackBox) :
If you are using BackBox with VMWare Workstation, you will need to install the last version of VMWare Tools.

How to install last version of VMWare Tools

Open a terminal and perform the following :

sudo apt-get install open-vm-tools open-vm-toolbox

You won't be able to install VMWare Player without these tools.

So, let go with VMWare download/installation process...

To download the last version follow the instruction given by visiting below link :

https://my.vmware.com/web/vmware/free#desktop_end_user_computing/vmware_player/5_0

NOTE: You will need to create an account if you don't have one, then you can download last version and run install script.

Once we are done with downloading then lets run the installation script, to do that, open a terminal and type as follow :

sudo bash ./<vmware_player_version>.bundle

You will be able to view the installation screen in progress and once it has finished, you can go through the main menu of Backbox, then select VMWare player and run.
We are done with installation of VMWare...

Removing VMWare Player

In case you want to remove it follow the instructions given below on a terminal :

sudo vmware-installer -l
sudo vmware-installer -u vmware-player

Read More

MODIFYING PACKAGES ON UBUNTU BACKBOX

Enable the source code repository :

cr45h@tr45h:~$ sudo nano /etc/apt/sources.list.d/backbox-two-natty.list

Add the following string :

deb-src http://ppa.launchpad.net/backbox/two/ubuntu natty main

In our example we’ll customize the weevely tool. Type on terminal the following commands :

cr45h@tr45h:~$ sudo apt-get update
cr45h@tr45h:~$ apt-get source weevely

After few seconds in your directory you’ll find the subsequent files :

weevely_0.5-0backbox1.diff.gz
weevely_0.5-0backbox1.dsc
weevely_0.5.orig.tar.gz

And the source folder :

cr45h@tr45h:~$ ls weevely-0.5

After making the necessary changes, before creating the new deb archive, the installation of some packets is needed :

cr45h@tr45h:~$ sudo apt-get install devscripts

Open the "debian/control" file and check the compilation needed dependences, in the example examined :

[...]
Build-Depends: debhelper (>= 7)
[...]

After this check type on terminal :

cr45h@tr45h:~$ sudo sudo apt-get install debhelper

Now the new packet creation is possible :

cr45h@tr45h:~$ cd weevely-0.5
cr45h@tr45h:~/weevely-0.5$ debuild binary

Otherwise, if preferred, create the debian source to be uploaded on the Launchpad repository :

cr45h@tr45h:~/weevely-0.5$ debuild clean
cr45h@tr45h:~/weevely-0.5$ debuild -S
cr45h@tr45h:~/weevely-0.5$ cd ..
cr45h@tr45h:~$ dput ppa:user/ppa-name weevely_0.5-0backbox1_source.changes

Read More

INSTALLING PACKAGES FROM SOURCE ON SLACKWARE

Installation package directly from the source is generally no dependence (dependencies) with other packages. Unfortunately this technique is not practical.
But if you study hard, you can read installation steps in the INSTALL file and READ ME. Before starting the installation, make sure you are in the source folder is located.
Do not forget, if you fail to do the configuration files, wipe binarie files with make clean and repeat the steps. The following commands are commonly used :

#./configure
#make
#make install

Read More

tgz PACKAGE ON SLACKWARE

Software package is owned by Slackware tgz. To do the installation, run the command :
#installpkg [package name].tgz

To see the packages that have been installed, you can check the file / var / log / package.log. One way to view the log file is to run the command :
#vi /var/log/pakcage.log

Or you can use a utility pkgtool. In addition to make system management to be easier, pkgtool also designed to install tgz package, seeing information package installed, and to remove the package from the system.
#pkgtool

You can also change the rpm package into tgz with rpm2tgz command . For example we want to change the package mp3blaster-3.1.3-113.i586.rpm  into tgz, run the command :
#rpm2tgz mp3blaster-3.1.3-113.i586.rpm 

Read More

CHANGE THE PERMISSIONS OF THE FILE OR DIRECTORY ON SLACKWARE

Chmod useful to give limited access (security) a file or directory, so not all users can read, write or execute (except root).
And it's also useful to change the permissions on a file or directory.

File and directory permissions are divided into three kinds of access :
READ (r)          :   read a file or directory.
WRITE (w)       :   write and create a file or directory.
EXECUTE (x)   :   executing a file or entering a directory.


For example, we create a file tr45h.txt in /home/cr45h  using touch commands (create a empty file).
By the user the file can not be read (r), written (w) and executable (x) .
By the group can be read (r) and written (w).
But, by the other only can be read (r)

To make the licenses there are two methods, letter method and number method.

LETTER METHOD
Imperative :
#chmod [ugoa] [= + -] [rwx] [the name of file or directory] 

u : user
g : group
o : other
a : all
= : set as the only license held
+ : add permission
- : disable a permission
r : read access
w : write access
x : execute access

The steps are :
$cd /home/cr45h 
$touch tr45h.txt 
$chmod u+rxw, g+rw, o+r tr45h.txt 

To see the results, run the command :
$ls -l /home/cr45h/tr45h.txt 

-r w x r w -r - -               1               cr45h     users     0     2013-04-10
5:53     tr45h.txt

Other group user


NUMBER METHOD
Imperative :
#chmod [number of license] [file or directory] 

4 : read (r)
2 : write (w)
1 : execute (x)

Because the user will be given access to read (4). write (2) and execute (1), then the licenses are 4+2+1=7
Group read (4) and write (2), then the licenses are 4+2=6
Other read (4), then the license is 4

So, the command is like this :
#chmod 764 tr45h.txt 

Read More