{"id":3132,"date":"2015-03-14T20:40:43","date_gmt":"2015-03-14T20:40:43","guid":{"rendered":"http:\/\/www.lifeandnews.com\/articles\/?p=3132"},"modified":"2016-08-22T20:01:56","modified_gmt":"2016-08-22T20:01:56","slug":"hackers-kit-bag-the-tools-that-terrorize-the-internet","status":"publish","type":"post","link":"https:\/\/www.lifeandnews.com\/articles\/hackers-kit-bag-the-tools-that-terrorize-the-internet\/","title":{"rendered":"Hackers’ kit bag: the tools that terrorize the internet"},"content":{"rendered":"

By James H. Hamlyn-Harris<\/a>, Swinburne University of Technology<\/a><\/em><\/p>\n

Hacking<\/a> is a state of mind. Traditionally, hackers like to discover, understand and share the secrets they expose. They like to laugh at the dumb things they find. They\u2019re not necessarily in it for the money, more so for the glory of mastering the arcane technicalities of computing. Hackers form a community where the most \u201cl33t<\/a>\u201d (pron. \u201cleet\u201d, short for \u201celite\u201d) hackers gain the most respect.<\/p>\n

But these days any \u201cnoob\u201d (short for \u201cnewbie\u201d) can download software tools from the internet that take the hard work out of hacking. These tools are often written by malicious hackers, professional security testers or enthusiasts to increase productivity. For example, it\u2019s hard work typing in three million IP addresses<\/a>. Much easier to write a program that does it for you.<\/p>\n

Add some features, such as automatic port scanning<\/a>, banner grabbing<\/a> and footprinting<\/a>, and share it with fellow hackers and your \u201ccred\u201d (credibility) goes up. If it\u2019s a really good tool, then you can sell the rights to a commercial cyber security company and retire (or work as a consultant). It\u2019s a career path.<\/p>\n

Here are some of the easiest and most potent tools being used by hackers, l33t and noob for both good and ill.<\/p>\n

NMAP<\/h2>\n

Port scanning is a process of finding all of the computers on a network, and finding out all about them. It is a precursor to a malicious hacker (or a penetration tester<\/a>) launching an attack. It\u2019s like a lion finding the slowest gazelle in the herd. Find all of the gazelles, test their weaknesses, pick the slowest.<\/p>\n

Fydor<\/a> wrote the NMAP<\/a> port scanner in 1997 and has been adding functionality ever since. NMAP finds responding computers (by scanning IP addresses), finds services running on them (by scanning ports) and identifies operating systems.<\/p>\n

It runs from the command line<\/a>. Something as simple as \u201cnmap 192.168.1.0\/24\u201d will scan your local network and find your router, PC, game console and phone (if they are connected) and tell you all about them.<\/p>\n

There is a GUI<\/a> version called Zenmap if you don\u2019t like typing. It also has visualisation tools which display the network.<\/p>\n

NMAP is an essential tool for network maintenance, and I use it all the time when setting up computers, to diagnose networking problems and to find out just what my DHCP<\/a> server has been doing.<\/p>\n

SQLMap<\/h2>\n

Daniele Bellucci and Bernardo Damele A. G. wrote SQLMap<\/a> in 2006, using the Python programming language<\/a>. This tool takes all of the hard work out of SQL injection attacks<\/a>.<\/p>\n

SQL<\/a> injection normally requires considerable knowledge of how web sites and programs like MySQL<\/a> store and retrieve information from databases. SQLMap systematically scans for errors while injecting portions of SQL scripts into the target web site.<\/p>\n

It collates the results and by brute force (trial and error) and finds the names of the databases, tables, fields in the tables and even the passwords stored in the database.<\/p>\n

The user has to run the program from a command line (by running a Python script) and has to progressively enter longer, and more specific, commands to get the entire contents of the database, but there are handy YouTube videos which illustrate the process<\/a>.<\/p>\n

SQLMap really lowered the bar for random hacker groups, hacktivists, cyberpunks and LulzSec<\/a>. It has arguably facilitated massive disclosures of private information, including names, addresses, credit card numbers and medical records. Everybody with a website should run this on their own web applications before they go live on the internet.<\/p>\n

PUNKSpider<\/h2>\n

A small group of hackers started Hyperion Gray<\/a> in 2013, demonstrating PunkSPIDER, a web application (a web site) vulnerability search tool and scanner, which allows the user to check for common vulnerabilities without having to conduct noisy and potentially illegal port-scans on a target.<\/p>\n

PunkSPIDER does not attack or exploit web sites, but it does make it easy for web site owners to test their sites for many of the most obvious vulnerabilities. Unlike port-scanners, scans are launched from the punkSPIDER servers, so it\u2019s less likely to get you into trouble.<\/p>\n

Wikto<\/h2>\n

This tool will<\/em> get you into trouble. Wikto is an enhanced Windows version of Nikto<\/a> \u2013- a web application (a web site) vulnerability scanner which blasts HTTP<\/a> requests at a target web site relentlessly.<\/p>\n

It is a brute-force tool that tries to access admin pages, configuration scripts, misconfigured password files (281,000 of them) just in case they are present. After that it tests for 3,000 known web site vulnerabilities, followed by 1,500 GoogleHacks<\/a>, which lists web site vulnerabilities identifiable by Google search strings.<\/p>\n

This tool will produce so much traffic and log entries \u2013- at the victim\u2019s server, your ISP and the NSA -\u2013 that everybody will know what you are up to. Wikto is a great tool for automatically checking for vulnerabilities on a complex web site, particularly if you don\u2019t know it\u2019s history and you need to maintain it.<\/p>\n

LOIC<\/h2>\n

No discussion of entry-level script-kiddie<\/a> tools would be complete without the Low Orbit Ion Cannon<\/a>, a \u201cstress testing\u201d (denial of service<\/a>, or DOS) tool.<\/p>\n

Many versions exist, written in C#<\/a>, Java<\/a>, Javascript<\/a>, and all should be identified by your anti-virus software as malware.<\/p>\n

LOIC blasts a web site with traffic, overwhelming it and making it unavailable to legitimate users (hence the \u201cdenial of service\u201d). Some versions allow thousands of users to simultaneously attack a single target, where the target is chosen by just one of them. Just type in the domain name<\/a> or IP address, and click on \u201cIMMA CHARGIN MA LAZER\u201d).<\/p>\n

LOIC and its variants (LOWC, HOIC) have been used by hacktivist members of Anonymous<\/a> and 4Chan<\/a> to attack (or as they might say, \u201cexercise civil disobedience\u201d against) businesses and governments in response to unpopular decisions, policies, laws or actions. Like any DOS tool, LOIC can have legitimate uses. Stress testing tools allow a web site developer to verify that their site can handle real-world traffic.<\/p>\n

Don\u2019t try this at home<\/h2>\n

A word of warning: these tools (with the possible exception of PUNKSpider) should not be used on the internet.<\/p>\n

There are criminal laws about using these improperly. They should not be used to scan\/profile\/attack (\u201ctest\u201d) web sites or networks that you do not own or have no legal authority to \u201ctest\u201d.<\/p>\n

However, they are great fun to play with and great for testing your own locally-hosted or pretend web sites. Just turn off your internet connection (your router, cable modem or WiFi) before unleashing them -\u2013 to be sure.<\/p>\n

\"The<\/p>\n

This article was originally published on The Conversation<\/a>.
\nRead the original article<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

By James H. Hamlyn-Harris, Swinburne University of Technology Hacking is a state of mind. Traditionally, hackers like to discover, understand and share the secrets they expose. They like to laugh at the dumb things they find. They\u2019re not necessarily in it for the money, more so for the glory of mastering the arcane technicalities of […]<\/p>\n","protected":false},"author":40,"featured_media":7037,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[30,36],"tags":[],"_links":{"self":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts\/3132"}],"collection":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/users\/40"}],"replies":[{"embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/comments?post=3132"}],"version-history":[{"count":1,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts\/3132\/revisions"}],"predecessor-version":[{"id":3133,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts\/3132\/revisions\/3133"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/media\/7037"}],"wp:attachment":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/media?parent=3132"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/categories?post=3132"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/tags?post=3132"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}