The Dark Tech

The Dark Tech

BlackHammer

Top Hacker’s That makes History

By Leave a Comment

In this article, we will have a brief synopsis of some of the top famous Hackers and how they became famous. So stay with me.

Jonathan James

Jonathan jems thedarktech

Jonathan James was an American hacker, ill-famous as the first juvenile sent to prison for cybercrime in the United States. He committed suicide in 2008 with a self-inflicted gunshot wound.

In 1999, at the age of 16, he gained access to several computers by breaking the password of a server that belonged to NASA and stealing the source code of the International Space Station among other sensitive information.

Lan Murphy

TAMPA-6/23/99-Ian Murphy, a.k.a. “Captain Zap” was the first person arrested for hacking into military computers and was the inspiration for the 1992 feature film “Sneakers”. Murphy now runs a legitimate business, IAM/Secure Data Systems, Inc., which helps corporations guard against hackers. (STAFF/JOCK FIRESTICK)

Ian Murphy, also known as Captain Zap, at one point in time was having high school students steal computer equipment for him. Ian self proclaims to have been “the first hacker ever convicted of a crime”.

Ian’s career as a master hacker was fabricated in 1986 after he and his unemployed wife decided to form some type of business.

He has a long history of computer and Internet fraud. One of his favorite games is to forge Email headers and to send out third-party threat letters.

Also Read: What is Enumeration? [Enumeration] with the Infographic.

Kevin Mitnick

Kevin Mitnick is a computer security consultant and author, who infiltrates his clients’ companies to expose their security strengths, weaknesses, and potential loopholes.

He is the first hacker to have his face immortalized on an FBI “Most Wanted” poster. He was formerly the most wanted computer criminal in the history of the United States. From the 1970s up until his last arrest in 1995.

He skilfully bypassed corporate security safeguards and found his way into some of the most well-guarded systems such as Sun Microsystems, Digital Equipment Corporation, Motorola, Netcom, and Nokia

Mark Abene

Mark Abene, known around the world by his pseudonym Phiber Optik, is an information security expert and entrepreneur. He was a high-profile hacker in the 1980s and early 1990s.

He was one of the first hackers to openly debate and defend the positive merits of ethical hacking as a beneficial tool to the industry. His expertise spreads across penetration studies, on-site security assessments, secure code reviews, security policy reviews, and generation.

systems and network architecture, systems administration, and network management, among many others. His clientele includes American Express, UBS, First USA, Ernst & Young, KPMG, and others.

John Helsingius

Johan Helsingius, better known as Julf, came into the limelight in the 1980s when he started operating the world’s most popular anonymous remailer, called penet.fi

Johan was also responsible for product development for the first Pan-European internet service provider, Eunet International.

He is at present, a member of the board of Technologia Incognita, a hackerspace association in Amsterdam, and supports the communication companies worldwide with his cyber knowledge.

Linus Torvalds

Linus Torvalds is known as one of the best hackers of all time. He rose to fame by creating Linux, the very popular Unix-based operating system.

Linux is open source and thousands of developers have contributed to its Kernel. However, Torvalds remains the ultimate authority on what new code is incorporated into the standard Linux kernel.

As of 2006, approximately two percent of the Linux kernel was written by Torvalds himself.

He just aspires to be simple and have fun by making the world’s best operating system. Torvalds has received honorary doctorates from Stockholm University and the University of Helsinki.

Robert Morris

Robert Morris, known as the creator of the Morris Worm, was the first computer worm to be unleashed on the Internet.

The worm had the capability to slow down computers and make them no longer usable. As a result of this, he was sentenced to three years’ probation, 400 hours of community service, and also had to pay a penalty amount of $10,500.

Morris is currently working as a tenured professor at the MIT Computer Science and Artificial Intelligence Laboratory

Gary McKinnon

Gary McKinnon is a renowned systems administrator and hacker. He was famously accused of the “biggest military computer hack of all time”.

He had successfully hacked the networks of the Army, Air Force, the Navy, and NASA systems of the United States government. In his statements to the media.

He has often mentioned that his motivation was only to find evidence of UFOs, antigravity technology, and the suppression of “free energy” that could potentially be useful to the public.

Kevin Poulsen

Kevin Poulsen, also known as Dark Dante, became famous for his notoriety.

When he took over all the telephone lines of   Los Angeles radio station KIIS-FM, guaranteed that he would be the 102nd caller and win the prize of a Porsche 944 S2.

Poulsen also drew the ire of the FBI, when he hacked into federal computers for wiretap information, for which he had to serve a sentence of five years.

He has reinvented himself as a journalist and has carved a niche for himself in this field.

If you are still with me then I think you are quite interested in learning new things, Then you should also check out our Ethical Hacking Blog.

What is Enumeration? [Enumeration] with the Infographic.

By 2 Comments

So the enumeration phase, an attacker creates an active connection with the system and performs directed queries to gain more information about the target. We will talk about the exact concept of enumeration.

What is Enumeration?

Attacker uses the extract information to identify points of system attacks to gain unauthorized access to information system resources.

Enumeration techniques are conduct in an internet environment.

What is Footprinting?

By 8 Comments

Footprinting is the essential step of Hacking which is behind every big hacking attack one of the most important. And we will talk about it about passive and active footprinting.

An essential aspect of footprinting identifying the level of risk associated with the organization’s publicly-accessible information. Footprinting, the first step in ethical hacking, refers to the process of collecting information about a target network and its environment. Using footprinting, you can find a number of opportunities to penetrate and assess the target organization’s network.

After you complete the footprinting process in a methodological manner, you will obtain the blueprint of the security profile of the target organization. Here the term “blueprint” refers to the unique system profile of the target organization acquired by footprinting.

Also read: How to Hack Android Phone

There is no single methodology for footprinting, as information can be traced in a number of ways. However, the activity is important, as you need to gather all the crucial information about the target organization before beginning the hacking phase. For this reason, footprinting needs to be carried out in an organized manner.

Types of Footprinting

Footprinting can be categorized into Passive Footprinting and Active Footprinting.

Passive Footprinting

Passive footprinting involves gathering information about the target without direct interaction. It is a type of footprinting that is mainly useful when there is a requirement that the information-gathering activities are not to be detected by the target. Performing passive footprinting is technically difficult, as active traffic is not sent to the target organization from a host or from anonymous hosts or services over the internet. We can only collect the archived and stored information about the target using search engines, social networking sites, and so on.

Also Read: How To Hack Facebook

Passive footprinting techniques include:

  • Finding information through search engines
  • Finding the Top-level Domains (TLDs) and sub-domains of a target through web services
  • Collecting location information on the target through web services
  • Performing people search using social networking sites and people search services
  • Gathering financial information about the target through financial services
  • Gathering infrastructure details of the target organization through job sites
  • Monitoring target using alert services
  • Gathering information using groups, forums, and blogs
  • Determine the operating systems in use by the target organization
  • Extracting information about the target using Internet archives
  • Performing competitive intelligence
  • The monitoring website traffic of the target
  • Tracking the online reputation of the target
  • Collecting information through social engineering on social networking sites

Also Read: How To Hack PUBG Mobile

Active Footprinting

Active footprinting involves gathering information about the target with direct interaction. In active footprinting, the target may recognize the ongoing information gathering process, as we overtly interact with the target network.

Active footprinting techniques include:

  • Querying published name servers of the target
  • Extracting metadata of publishing documents and files
  • Gathering website information using web spidering and mirroring tools
  • Gathering information through email tracking
  • Performing whois lookup
  • Extracting DNS information
  • Performing traceroute analysis
  • Performing social engineering

Information Obtained in Footprinting

The major objectives of footprinting include collecting the network information, system information, and the organizational information of the target. By conducting footprinting across different network levels, you can gain information such as network blocks, specific IP addresses, employee details, and so on. Such information can help attackers in gaining access to sensitive data or performing various attacks on the target network.

Network information: You can gather network information by performing Whois database analysis, trace routing, and so on.

The information collected:

  • Domain and sub-domains
  • Network blocks
  • IP addresses of the reachable systems
  • Whois record
  • DNS records, and related information

System Information: You can gather system information by performing network footprinting, DNS footprinting, website footprinting, email footprinting, email footprinting, and so on.

The information collected includes:

  • Web server OSes
  • Location of the webserver
  • Users and passwords and so on.

Organization Information: Such information about an organization is available from its website. In addition, you can query the target’s domain name against the Whois database and obtain valuable information.

The information collected includes:

  • Employee details (Employee names, contact addresses, designation, and work experience)
  • Address and mobile/telephone numbers
  • Location details
  • Background of the organization
  • Web technologies
  • News articles, press releases, and related documents

Attackers can access organizational information, and use such to identify key personnel and launch social engineering attacks to extract sensitive data about the entity.

If you are interested to learn hacking then you can check it. And if you got any problems in any topic of hacking you can comment below or contact us.

Ajinkya Kadam

What is Ethical Hacking Overview

By Leave a Comment

Hacking has been a part of computing for almost five decades and it is a very broad discipline, which covers a wide range of topics. The first known event of hacking had taken place in 1960 at MIT and at the same time, the term “Hacker” was originated.

Hacking is the act of finding the possible entry points that exist in a computer system or a computer network and finally entering into them. Hacking is usually done to gain unauthorized access to a computer system or a computer network, either to harm the systems or to steal sensitive information available on the computer.

Hacking is usually legal as long as it is being done to find weaknesses in a computer or network system for testing purposes. This sort of hacking is what we call Ethical Hacking.

A computer expert who does the act of hacking is called a “Hacker”. Hackers are those who seek knowledge, to understand how systems operate, how they are designed, and then attempt to play with these systems.

Ethical Hacker

Types of Hacking                                                     

We can segregate hacking into different categories, based on what is being hacked.

Website Hacking: Hacking a website means taking unauthorized control over a web server and its associated software such as databases and other interfaces.

Network Hacking: Hacking a network means gathering information about a network by using tools like Telnet, NS lookup, Ping, Tracert, Netstat, etc. with the intent to harm the network system and hamper its operation.

Email Hacking: It includes getting unauthorized access to an email account and using it without taking the consent of its owner.

Ethical Hacking: Ethical hacking involves finding weaknesses in a computer or network system for testing purposes and finally getting them fixed.

Password Hacking: This is the process of recovering secret passwords from data that has been stored in or transmitted by a computer system.

Computer Hacking: This is the process of stealing computer ID and password by applying hacking methods and getting unauthorized access to a computer system.

The concept’s name may be different but all you need to understand is the meaning of the concept.

Also read Hack Android Phone in 2022 With Easy Steps.

Advantages of Hacking

Hacking is quite useful in the following scenarios:

To recover lost information, especially in case you lost your password.

To perform penetration testing to strengthen computer and network security.

To put adequate preventative measures in place to prevent security breaches.

To have a computer system that prevents malicious hackers from gaining access.

Disadvantages of Hacking

Hacking is quite dangerous if it is done with harmful intent. It can cause:

Massive security breach.

Unauthorized system access to private information.

Privacy violation.

Hampering system operation.

Denial of service attacks

Malicious attack on the system.

Purpose of Hacking

There could be various positive and negative intentions behind performing hacking activities. Here is a list of some probable reasons why people indulge in hacking activities:

  • Just for fun
  • Show-off😂
  • Steal important information
  • Damaging the system
  • Hampering privacy
  • Money extortion
  • System security testing
  • To break policy compliance

That’s it for today if you really like this info also visit our Blog page.

Data Backup And Backup Strategy/Plan

By 9 Comments

Nowadays the data backup is one of the most important things. So today we will talk about an important concepts. Which really needs if you want to learn Hacking.

Data Backup

Data Backup
Data Backup

The data is the heart of any organization; data loss can be very costly as it may have a financial impact on any organization. Backup is the process of making a duplicate copy of critical data that can be used to restore and serve towards the recovery purpose. when a primary copy is lost or corrupted either accidentally or on purpose. Data backup plays a crucial role in maintaining failures, application failures, security breaches, human error or deliberate sabotage, etc. All regulatory compliance such as COBIT, SSAE SOCII, PCI-DSS, HIPPA, SOX, FINRA, FISMA, EU, General data protection Regulation (GDPR), etc. require businesses to maintains data backups of critical data for a specified duration.

Also Read What Data Leakage Risks And It’s Threats

Data backup is mainly used for two purposes: To reinstate a system to in its normal working state after damage or to recover data and information after a data loss or data corruption. Data loss in an organization affects the financial, customer relationship, and company data. Data loss in personal computers may lead to a loss of personal files, images, and other important documents saved in the system.

Backup Strategy/Plan

An ideal backup strategy includes steps ranging from selecting the right data to conducting a drill test data restoration.

Also read : How to hack Facebook Account 2020

Identifying the critical business data

Every organization has an abundance of data. The criticality of the data is based on the importance it serves to the organization’s proper functioning. The critical data may consist of revenue, emerging trends, market plans, databases, files including documents, spreadsheet, e-mails, etc. and loss of such critical data can affect the organization immensely. Therefore, an organization should identify critical data or files that require backup.

Selecting the backup media

Choosing backup media is a common concern within most organizations. Backup media selection depends on the type and amount of data the backup will consist of. With a better and well thought out plan, selecting the proper media enables a better level of data backup. Whereas the selection of the wrong media devices. At times, data backup also consumes a large amount of space and therefore, attention is required while selecting the best backup media for the situation and fulfillment of the needs of the organization.

Also read: PUBG Mobile hacks 2020

Selecting a backup technology

Choosing proper backup technology plays a major role in backup strategy planing. Organizations need to select proper backup technology that acquires the ability to restore, recover and maintain the availability of its services whenever needed.

Selecting the appropriate RAID levels

Many organizations depend on RAID technology for handling their critical backup needs, especially with the increases in data flow and data volume. Organizations are expanding their networks in order to improve their productivity in the market. However, this additional increase can cause network bottlenecks. The probability of losing data due to a disaster, threats, mistakes, and hardware failure hamper an organization’s ability to grow. RFID technology overcomes these situations providing an option for data availability, high performance, efficient, and accessible recovery options without a loss of data. selection of any RAID level should be based on the needs of the organization and features offered by each level.

Selecting an appropriate RAID levels

Organizations can choose any backup method depending on their budget and IT infrastructure. The different types of data methods are:

Hot backup

A hot backup is a popular type of backup method. It is also called as a dynamic backup or active-backup. In a hot backup, the system continues to perform the backup process even if the user is accessing the system. Implementation of a hot backup in an organization avoids downtime.

Cold backup

A cold backup is also called an offline backup. The cold backup takes place when the system is not working or is not accessible by users. A cold backup is the safest method of backup as it avoids the risk of copying the data. A cold backup involves downtime, as the users cannot use the machine until the process is back online.

Warm backup

A warm backup, also called a nearline backup, will have connectivity to the network. In a warm backup, the system updates are turned on to receive periodic updates. It is beneficial when mirroring or duplicating data.

Choosing a backup location

Organizations can choose any backup location depending on their budget and IT infrastructure. the different types of data backup locations are:

Onsite data backup

This type of backup is performed within the organization. Onsite backup uses external devices such as a tape drive, DVD, hard disk, etc. The choice of external storage will depend on the amount of data to be backed up.

Offsite data backup

In an offsite backup, the backup is done at a remote location. It either stores the data on physical drives, online or third-party backup service. Storing the data online helps have update data backup available.

Cloud data backup

A cloud backup is also known as online backup. It involves storing the backup on a public network or on a proprietary server. Usually, a third-party service provider hosts the proprietary server. The backup process in a cloud data backup works according to the requirements of the organization. If the organization needs the backup on a daily basis, the proprietary server will run a daily backup. Usually, any non-critical data is archived using a cloud data backup.

Selecting the backup types

An appropriate backup type is the one that does not add a major impact to the bandwidth, cost, time required and the resources of the organization. The three most common backup types are full, differential and incremental.

Full backup

It is also called a normal backup. The full backup occurs automatically according to a set schedule. It copies all the files and compresses them to save space. A full backup provides efficient data protection to the copied data.

Incremental backup

Backups only the data that has changed since the last backup. The last backup can be any type of backup. Before an incremental backup can be performed, the system should be backed up using a full or normal backup.

Differential backup

Differential backup is the combination of a full backup and an incremental backup. A differential backup backs up all the changes made since the last full backup.

Choosing the right backup solution

Choosing an appropriate backup solution is essential for efficient and effective backups. Data loss is avoidable to an extent with excellent backup solutions.

Conducting a recovery drill test

An organization performs a drill test to validate it has a foolproof and updated DR plan. Having chosen the appropriate backup solutions, it is advised to perform a recovery drill test at least once or twice a year, depending on the size of the organization.

Ajinkya Kadam