Ethical Hacking General Steps

   

 Steps of Hacking

Sounds cool right? Finally getting into the matter! Anyways you must have observed that I haven't used the term ethical while in this heading, it's because this is the common procedure for all the types of hackers to hack someone. I will be using little technical terms so don't get confused it will be explained in the upcoming posts on my blog. So, coming to the point there are in total 11 steps, these all steps are mandatory if want to hack someone and to not to get caught.


steps:



1. Footprinting.

2. Network Scanning.

3. Port Scanning.

4. Version Detection Scan.

5. OS Fingerprinting.

6. Vulnerability Scanning.

7. Search and Build Exploit.

8. Social Engineering.

9. Attacking.

10. Maintaining access with Trojans.

11. Covering Tracks or cleaning Evidence.


so, guys, these are the steps to be followed for the task.
You must be having a question about what these all are, trust me later on you won't be having any such questions.


  • So how we remotely access or do hacking fo it?
It need two things to be known and built that is, Vulnerability and Exploit.

                                  Vulnerability and Exploit.



 okay! Vulnerability?

 Vulnerability



 Definition in simple terms for a Vulnerability is



" It is a weakness in any software application like buffer overflow, cross side scripting, SQL injection etc. Which helps hacker to hang the target or crash the software application is known as a vulnerability. "



 For example, your house,
If suppose you are going for a vacation and you forgot to lock one of your windows, Now a thief came inside and stole all of your stuff.


so here the window is the vulnerability and your house is the software application.

Exploit

 

And now what the term Exploit does even mean?



 In the above example as I mentioned the robbery case in your house, in which the window was the vulnerability and your house was that software and your stuff was the information. So, In this case, the thief is the exploit who actually is going inside and taking all the stuff and delivering it to his gang leader. So, you I mean the gang leader is the Hacker. Hope you got it!



 so yeah! we do have a definition for this too!
"Exploit is a piece of malicious programming code or Software which takes help of vulnerabilities to crash the Software Application and hangs the target and after running the payload (keylogger, virus, trojans) etc."



 More about Ethical hacking will be in my next post "Cyberwar".
Suggestion for better understanding read from the first post:"Ethical Hacking Introduction."


Comments

Post a Comment

Popular posts from this blog

Managing Output with Manipulators in C++

Well, when I started studying C++ or you can say when I was forced to study CPP I was like already I have Maths, Physics and Chemistry to study so why this shitty extra burden on my shoulders. But that subject which I was forced to study or having no other option instead of studying CPP became my passion now. Anyways that's a hell of a story! So, this piece of reading will give you an explanation about what are manipulators and how they are implemented in CPP. Manipulators By the name you might have already thought that this is going to be something related to manipulation of something. Well, you are on a right track So, you already got an idea what it is about I would like to make it clear that what is that "something". That something is nothing but Input and Output operations. Well, in this post we will be focusing mainly on Managing Output with Manipulators. Lets, start the boring thing! The header file iomanip provides a set of functions call
Read more

What is sniffing?

Image
Wiretapping is a process of monitoring the telephone and internet conversations by a third party attackers connect a hardware or software or combination of both to the switch carrying information between two phones or hosts on the internet. Types of wire taping 1. Active wire taping : It only monitors, records the traffic (silently) and also alters the traffic. 2. Passive wire taping : It only monitors and records the traffic. Sniffing attacks are vulnerable to following protocols. 1. Telnet 2. FTP 3.SMTP 4. HTTP 5. POP3 6. NTP 7. IMAP 8. SNMP 9. RDP In network sniffing attacks are mostly done on data link layer and network layer of OSI reference model based switches Recommended sniffing tool is Wireshark.  Wireshark is available for both windows and Linux , it is the best tool for sniffing and it's absolutely free . You can download Wireshark from their official site  Wireshark download . Session Hijack
Read more

Creating a bootable USB.

A lot of people just asks me how to create a bootable USB easily. The funny part is that they mainly ask how to make it for Linux, I mean bro, if you don't know even how to make a bootable USB then you better should stick with windows OS, because it suits you better, but for the people who are reading this article for creating bootable USB, guys, first of all, I will tell you the simplest method. Don’t expect from me to explain to you how to make it using the command prompt. So, all you need is one software of 1 MB, your ISO file, a computer and yeah USB. So, just download the software Rufus from their official site(first link after typing Rufus on Google). Then make sure your ISO image file is downloaded. Now run the Rufus.exe file and then select the USB disk, from the first 'disk' option then in the bottom right of the application there will be a mall option.  Looking like a CD mounted on HDD. Click on that and select the ISO image file. A
Read more