Network Hacking

This PART introduces TCP/IP to a person with any level of computer skills or computer
background knowledge. My hope in writing this PART is to explain in a simple way some concepts that may be considered difficult. My ambition is to write a note that makes no assumptions and that leads a TCP/IP beginner to an intermediate understanding of TCP/IP.
This note isn't boringly technical; each topic is covered to sufficient depth but not to an EXTREME.
part :1
chapter : origin of Tcp/ip
so let us start:=====>
Q : WHAT IS TCP/IP ? WHY WE NEED IT?
ANS :TCP/IP Transmission Control Protocol/Internet Protocol (TCP/IP) is a set of protocols that enable communication between computers. There was a time when it was not important for computers to communicate with each other. There was no need
for a common protocol. But as computers became networked, the need arose for computers to agree on certain protocols.SO WE NEED IT TO COMMUNICATE TWO COMPUTER SIMPLY .
ORIGIN :
Understanding the roots of the Internet will give you insight into the development of TCP/IP
and many of its rules and standards. If you know why TCP/IP was created and how it evolved,
the TCP/IP protocol suite is easier to understand.
The predecessor of today's Internet was ARPAnet ,but we will not cover to arpanet .because to day is latest tcp/ip.so will cover it but some understanding of it also require
ARPAnet, a supernetwork that was created by the
Advanced Research Projects Agency (ARPA)
The protocol, or language of choice, used on the ARPAnet was called Network Control
Protocol (NCP)-TCP/IP had not yet been developed. As the ARPAnet grew, however, a new
protocol was needed because NCP simply didn't fulfill all the needs of a larger network. The
NCP protocol was similar to a human language that has only a few words. The language
might enable a few people to communicate, but as you include more people who want to talk
about many more subjects, you have to improve the language.so due to limitation a tcp/ip came in origin
The Birth of TCP/IP As stated earlier, the "language" spoken by hosts on the ARPAnet in 1969 was called NCP.
However, NCP had too many limitations and was not robust enough for the supernetwork,
which was beginning to grow out of control. The limitations of NCP and the growth of the
ARPAnet lead to research and development of a new network language.
SO TCP/IP CAME INTO EVOLUTION .
As you will learn in later chapters, TCP is responsible for making sure that the data gets
through to the other host. It keeps track of what is sent and retransmits anything that did not
get through. If any message is too large for one package, TCP splits the message into several
packages and makes sure that they all arrive correctly. After they have arrived, TCP at the
other end puts all the packages back together in the proper order.
==== So Ma fRend this is birth of tcp/ip=======
Actually tcp/ip is set of different protocol for e.g = we can say that there is a person whose name is pappu and he has 14 child . so when outsider person call to thier child ,they will simply use word that [o pappu ke bachey ] pappu'child .such like that there is so many protocol and tcp ,ip is also a partbut when we called this we simply say tcp/ip stack .hope u understand it.

How To Hack Using Google

Google is able to index almost everything now is more than satisfied, even this feature plays her very often to the benefit of those who have some pretty questionable purposes related all'hacking and infringement of Internet servers and websites. And 'Just a poorly configured web server to enable the' access to Google's crawlers, and directories containing sensitive information resources, configuration files and utilities password. And of course when Googlebot access to a resource accessible via HTTP provides "right" to index it and then making it available for research.     In this article we will see a list of interesting hacking techniques based on using Google to obtain credentials for access and use information to make intrusions and attacks. Try to just enter in the Google search box the search strings below in italics.
#1 Utilities and passwords stored on FTP and WS FlashFXP WS FlashFXP and FTP are two popular FTP client, respectively, using a file called ws_ftp.ini and flashFXP.ini to save the information for access to FTP sites configured. Search string for WAS FTP: intitle: index.of ws_ftp.ini or filetype: ini pwd WS_FTP or "index of /" "ws_ftp.ini" "parent directory" Search string for FlashFXP: filetype: ini inurl: flashFXP.ini.
#2 Utilities and passwords of sites created with Frontpage Frontpage client is still widely used to create static web sites: the authentication system for automatic connection is based on the service.pwd file that contains the users and encrypted passwords that can be decoded with little effort by using John The Ripper. Ricenca string: "#-FrontPage-" inurl: service.pwd
#3 Log files with users and passwords It seems incredible but that happens very often the users and passwords for access to restricted areas or sites are stored in a file passwords.log. Try it yourself ...Search string: filetype: log inurl: "password.log"
#4 Download complete database mdb Forums Web Wiz Forums If a forum Web Wiz Forums is not properly configured, you can download the entire database in an instant!String of ricenca: filetype: mdb wwforum
#5 VNC server interface exposed via Java Applet VNC is a remote control software that can also be exposed via web through a Java applet that is normally listens on port 5800.String of ricenca: intitle: vnc.desktop inurl: 5800 or "VNC Desktop" inurl: 5800
#6 Configuration file for proftpd The configuration file for proftpd server contains a lot of information about installing, utilities and logs.Search string: filetype: conf inurl: proftpd.conf-sample
#7 Create a user on the mail server pro Argosoft If a mail server Argosoft is not properly configured, you can create your own mail user entering a URL ad hoc.Search string: "adding new user" inurl: addnewuser - "there are no domains"
#8 Administration interface for Web Data Administrator Microsoft SQL Server Web Data Administrator is a web utility written in ASP.NET and used to manage via a web database SQL Server.Search string: intitle: "Web Data Administrator - Login"
#9 Files backup of passwords and configurations Many managers are (rightly) used to make a backup copy before you edit a configuration file, and often change the extension. "Bak".Search string: filetype: bak inurl: "htaccess | passwd | shadow | htusers"
#10 Archives of e-mail in Microsoft Outlook Outlook stores the email on file with the extension. Pst: uploading a file of this type on Outlook you can access all the email that contains immediately.Search string: outlook filetype: pst

How to detect a hacker attack

Most computer vulnerabilities can be exploited in a variety of ways. Hacker attacks may use a single specific exploit, several exploits at the same time, a misconfiguration in one of the system components or even a backdoor from an earlier attack.Due to this, detecting hacker attacks is not an easy task, especially for an inexperienced user. This article gives a few basic guidelines to help you figure out either if your machine is under attack or if the security of your system has been compromised. Keep in mind just like with viruses, there is no 100% guarantee you will detect a hacker attack this way. However, there's a good chance that if your system has been hacked, it will display one or more of the following behaviours.
For windows:
1. Suspiciously high outgoing network traffic. If you are on a dial-up account or using ADSL and notice an unusually high volume of outgoing network (traffic especially when you computer is idle or not necessarily uploading data), then it is possible that your computer has been compromised. Your computer may be being used either to send spam or by a network worm which is replicating and sending copies of itself. For cable connections, this is less relevant - it is quite common to have the same amount of outgoing traffic as incoming traffic even if you are doing nothing more than browsing sites or downloading data from the Internet.
2. Your resident antivirus suddenly starts reporting that backdoors or trojans have been detected, even if you have not done anything out of the ordinary. Although hacker attacks can be complex and innovative, many rely on known trojans or backdoors to gain full access to a compromised system. If the resident component of your antivirus is detecting and reporting such malware, this may be an indication that your system can be accessed from outside.
Unix machines:
1. Suspiciously named files in the /tmp folder. Many exploits in the Unix world rely on creating temporary files in the /tmp standard folder which are not always deleted after the system hack. The same is true for some worms known to infect Unix systems; they recompile themselves in the /tmp folder and use it as 'home'.
2. Modified /etc/passwd, /etc/shadow, or other system files in the /etc folder. Sometimes hacker attacks may add a new user in /etc/passwd which can be remotely logged in a later date. Look for any suspicious usernames in the password file and monitor all additions, especially on a multi-user system.
Regards!