Forem: KARAN JAIN

Phone Numbers as Digital Footprints: Tracking Info with PhoneInfoga!!

KARAN JAIN — Mon, 24 Feb 2025 15:08:30 +0000

⚠️ Warning: This guide is for ethical and educational purposes only! Don’t go scanning your ex’s new number out of curiosity (I know what you want to 👀). Be responsible!

Think Your Phone Number Is Private? Think Again!!!

Well, meet PhoneInfoga – my new best friend for digging up information on any phone number faster than your nosy neighbor. It won’t hack into their WhatsApp, but it will spill some public secrets!!!

Do you want to see how ??

Step 1: Installing PhoneInfoga in Kali Linux.

--Go to Google and search "phoneinfoga".

--Else click the below link.

Installation

Step 2: Open the root terminal

--Use the command given in the link above. If you want to explore the documentation in detail, visit the link as well.
--else directly Install phoneinfoga by giving the below command.

bash <( curl -sSL https://raw.githubusercontent.com/sundowndev/phoneinfoga/master/support/scripts/install )

Step 3: Move the directories

--Pass the below command.

mv ./phoneinfoga /usr/local/bin/phoneinfoga

(This will directly show in the terminal while installing)

--All the installation part is done now!!

Step 4: Commands you must know !!

--For view all the options

phoneinfoga

phoneinfoga -h

--To scan Phone Number

phoneinfoga scan -n <phone_number>

--If you want to use the PhoneInfoga tool in a browser, you need to set up your own port and run it locally!!

phoneinfoga serve <Any_Random_Port_Number>

--Then go to your browser the type.

localhost:<Any_Random_Port_Number>

Hack a little today, meet the FBI tomorrow—free home delivery!!

Access Nearby Wi-Fi Passwords with CMD!

KARAN JAIN — Sun, 12 Jan 2025 14:39:13 +0000

Disclaimer: This post is for educational purposes only. Accessing Wi-Fi networks without permission is illegal and unethical. Use this information responsibly and only for networks you own or have permission to access.

Here’s how you can use the Command Prompt (CMD) to retrieve saved Wi-Fi passwords on your Windows system. Note: This method works only for networks your system has connected to previously.

Step 1: Open Command Prompt

Right-click on the Command Prompt icon.
Select Run as Administrator for elevated privileges.

Step 2: List All nearby Wi-Fi Networks

netsh wlan show network

Step 3: List the all user profiles

netsh wlan show profiles

Step 4: View the Password of a Specific Wi-Fi Network

netsh wlan show profile name="Wi-Fi_Name" key=clear

you can see your password at "key content:"

Explore, Scan, Secure: Nmap for Network Ninjas

KARAN JAIN — Fri, 10 Jan 2025 18:43:29 +0000

Disclaimer:
This post is for educational purposes only. Unauthorized scanning or hacking of websites or networks is illegal and can lead to severe consequences. Always ensure you have proper permission before performing any scans or security tests.

"Want to Hack a Website? Here’s Where It All Begins!"

The first step is finding all the open ports on the website. These ports act as entry points, and discovering them is crucial.

To do this, we use a powerful tool called Nmap. It scans and reveals all the open ports, giving you a map of what’s accessible.

Nmap, which stands for Network Mapper, is a free tool that helps you explore networks and check for security issues. It's really helpful for system admins and those interested in cybersecurity.
Common Uses:
Scanning networks, Detecting open ports, Identifying running services, Checking for vulnerabilities

Step.1: Installing Nmap
For Linux:
Most Linux distributions include Nmap in their repositories. Install it using:

sudo apt install nmap

For Windows:

Nmap official website

Step.2:Give commands:
0.For summary of options

nmap -h

1.Scan a Single Host

nmap 192.168.1.1

nmap www.google.com

2.Scan All Ports

nmap -p- 192.168.1.1

3.Scanning Your Local Network

nmap -sn 192.168.1.0/24

For Aggressive scanning

nmap -A www.google.com

5.To scan UDP ports

nmap -sU www.google.com

6.To scan TCP ports

nmap -sT www.google.com

7.To scan top ports

nmap --top-ports <number> www.google.com

8.Scan Excluding the range of port

nmap --exclude-ports 1-100 www.google.com

9.To increase the scanning speed

nmap -F www.google.com

How to Search Through Multiple Files for Specific Data Using Grep

KARAN JAIN — Fri, 03 Jan 2025 14:20:23 +0000

Recently, I have been solving some CTF questions, and I came across one that says, 'You have a bunch of files(approx 9090 files), and each contains some information. One of the files contains the flag you need, but it's impossible to open and check each file'.

In this case we can use greap command, let's see how...

Grep is command-line utility(not exactly a tool).

The grep command is a crucial tool for anyone working with text-based data and is highly efficient for tasks that require searching and processing large amounts of text.

1. Search in a Single File.

If you suspect the flag is in a specific file, you can use the following command

grep -i "picoCTF{" filename.txt

2.Search in All Files in the Current Directory.

If you want to search through all files in the current directory and its subdirectories

grep -r "picoCTF{" .

3.Search in All Files in a Directory.

If you are not sure where the flag is located but you know it is within a directory, use this command to search through all files

grep -r "picoCTF{" /path/to/directory/

4. Display Line Numbers.

The -n option displays the line numbers where the pattern is found

grep -n "pattern" filename

5. Search for Multiple Patterns.

You can search for multiple patterns by using the -e option.
bash

grep -e "pattern1" -e "pattern2" filename

6. Count the Number of Matches.

The -c option counts the number of lines that match the pattern.
bash

grep -c "pattern" filename

7. Search for the Flag Across Multiple Directories or Files.

If you know the flag might be in multiple files or directories, you can combine the directories in the command like this:

grep -r "picoCTF{" dir1/ dir2/ dir3/

Is Your Laptop Hacked? Here’s How to Find Out!

KARAN JAIN — Mon, 30 Dec 2024 12:13:00 +0000

It is a Windows-specific feature and won't work on Linux or macOS.

Step 1: press windows + R

Step 2: It's open a "Run" tab, Type below command to it.

netplwiz

Manage User Accounts

View all user accounts on the system.
Add, remove, or modify user accounts.

Cyber Attack Chronicles: Types and Real-Life Examples Demystified

KARAN JAIN — Mon, 23 Dec 2024 12:38:39 +0000

MEOW!!!_MEOW!!!

BOOM!!!!!!!!!!!

1. Malware Attacks

Example :Imagine you download a free game from an unknown website. Once installed, your computer starts acting weird, slows down, or displays unwanted ads. This could be malware.

2. Phishing Attacks

Example : You get an email that looks like it's from your bank, asking you to click a link and enter your password. But the email is fake, and the hacker steals your password.

3. Denial of Service (DoS) and Distributed Denial of Service (DDoS) Attacks

Example: Think of a prank where thousands of people call your school's office at the same time, preventing others from reaching the school. A DDoS attack floods a website with traffic to make it crash.

4. Man-in-the-Middle (MITM) Attacks

Example: Imagine two friends passing notes in class, but someone intercepts the note, reads it, and changes the message before passing it on. In the digital world, hackers do this with internet connections.

5. SQL Injection Attacks

Example: You enter 1=1 in the search bar of a website, and it shows you private data of other users because the website didn’t protect its database properly.

6. Cross-Site Scripting (XSS)

Example: If a hacker adds a fake script to a school’s website comment box, and when you visit the page, your computer gets infected with malware.

7. Password Attacks

Example: A hacker tries every possible combination (like guessing your birthday or name) until they crack your email password.

8. Insider Threats

Example: If a school employee who knows the Wi-Fi password shares it with outsiders to let them misuse the school’s network.

9. Zero-Day Exploits

Example: If a hacker finds a bug in a popular messaging app before the company fixes it and uses it to access your private chats.

10. Social Engineering Attacks.

Example: Someone calls pretending to be your teacher and asks for your email password, saying they need it to reset the school portal. You give it, but it was a trick.

11. Ransomware Attacks

Example: Imagine all your photos and files are locked, and a hacker says, “Pay me $100 to unlock them.” That’s ransomware.

12. Supply Chain Attacks

Example: A hacker hacks into a book supplier’s system and changes the delivery address of school books to their own address.

13. Cryptojacking

Example: Your computer gets very slow because someone secretly installed software on it to mine cryptocurrency without your knowledge.

14. IoT-Based Attacks

Example: A hacker takes control of a smart home camera or smart light bulb and uses it to spy on you or others.

15. Advanced Persistent Threats (APTs)

Example: A group of hackers slowly and secretly breaks into a school’s database over months to steal student data and use it for illegal activities.

Hacking the Network: Spying on Devices with Bettercap in Kali Linux

KARAN JAIN — Thu, 19 Dec 2024 22:01:17 +0000

Here's a step-by-step guide for using Bettercap to spy on devices within a network. Note that this is for educational and ethical purposes only.

Disclaimer
This guide is for educational purposes only. We are attacking and monitoring our own Windows machine on a private network to track activities. Unauthorized use on other devices or networks is illegal.

With this method, no additional Wi-Fi monitoring tools are needed. Bettercap itself is powerful enough to intercept and analyze network traffic directly, making it a versatile option for tracking activities on your network or device.

Step 1:Installing buttercap tool

-->Open Kali Linux
-->Go to the terminal in Kali Linux
-->For moving from normal directories to root directories, Give the command

sudo su

Enter your password.
-->Install bettercap by giving the command

sudo apt install bettercap

-->To verify the installation, Run:

bettercap --version

If installed correctly, the version will be displayed.

Step 2:Run bettercap

--> Run the command:

sudo bettercap

Step 3:Getting all device's IP addresses which are connected to the same network in our Kali Linux

--> Just run command

net.probe on

You have all the IP addresses of connected devices but they are not arranged properly, To arrange them run command:

net.show

step 4:Set the target devices on which we are spying by giving their IP addresses

-->Enable ARP spoofing to intercept traffic:

set arp.spoof.targets <target_ip>

-->Start ARP spoofing:

arp.spoof on

Step 5:To display captured data from the target device

-->Enable the network sniffer

net.sniff on

You can see all the data or packets are captured from target device at current time

For Demo

(we are capturing all current network/data of Windows machine on our kali Linux which is a different machine)

Now we can see all the activities of target devices

Step 6:To exit

-->Run:

exit

shhhhhh!!! Keep it a top secret!!

Find the Exact and all connected device's IPs on the virtual machine

KARAN JAIN — Thu, 19 Dec 2024 07:10:51 +0000

The IP address 10.0.2.4 typically indicates that your Kali Linux virtual machine (VM) is using a NAT (Network Address Translation) network configuration. This setup assigns a private IP address to your VM, and the host machine acts as a bridge to access external networks.

If you want to identify the current IP address and ensure proper connectivity, follow these steps:

If you get the same problem as above or can't find the IP addresses of all the connected devices.

Step 1: Go to your virtual box

-->Go to settings.

Step 2:Go to the Network

-->Click on "Enabled network adapter".
-->Go to "Attached to:" and change NAT to bridged adapter.

Step 3:Go to Advanced

-->Enabled promiscuous mode
-->Set it to "Allowed all"

-->click on OK and you are good to go!!

-->you got all the devices exact IP addresses.

Simplify Your Workflow: Effortless File Transfer Between VM and Windows

KARAN JAIN — Wed, 18 Dec 2024 17:57:41 +0000

Step 1: Creating a folder

Step 2: Go to properties

Step 3: Set the shared folder

-->Go to Sharing
-->Then click on Advanced sharing

-->Then click on (check box) share this folder

-->Then Go to the permissions and click on the full control

-->Apply and ok

Step 4: Access the shared folder

--> open virtual machine(In this we are using kali linux)
To access the shared folder We have to give permissions through our terminal
-->open the terminal and give the below commands

sudo usermod -aG vboxsf [username]

-->Enter your password and you are good to go!

Transfer any file in this shared folder and you can access that file in Windows and a virtual machine both...

Transform Your GitHub Profile From Noob to Pro ...

KARAN JAIN — Wed, 27 Nov 2024 16:56:25 +0000

INTRODUCTION :

Every developer uses Github on a daily basis. GitHub is an ID card for a developer, which we show everyone every time.

Below given steps transform your GitHub profile from noob to pro ....without coding

So, Let's goo...

Step1 :

Create a new repository with the same name as your user name. Make sure the README file is included, and the repository should be PUBLIC.
(This is a special repository that you can use to your GitHub profile)

I already created a repo, so it's showing an error.

Step2:

Generate code for our cool-looking profile page, you can directly use this Link,
Here’s how:

Fill in your details like your name, skills, and social media links.
Choose what you want to display on your profile (e.g., badges, stats, etc.).
Click Generate. Once you click Generate, the code will be ready for use!

--------------------------------------------------------------------------

copy the code and paste on Notepad

Step3:

Add an image or GIF.
Here's how:
Go to Google and search for an image or GIF you like.
Copy the image URL (right-click on the image and select Copy image address).
Paste this URL into the following code:

<img align="right" alt="Coding" width="400" src="https://media1.giphy.com/media/Ws6T5PN7wHv3cY8xy8/200.gif?cid=790b7611ko0bcvwdlohbjv0.......">

and then Add this small code to the main code in Notepad.

step4:

Copy the whole code and paste into our README file and click on preview and here we are with your cool-looking profile.

and at last commit that code and refresh the page and BOOM....