Tuesday, 21 April 2015

Understand The Hacker Mindset To Become A Real Hacker

Understand The Hacker Mindset- picateshackz.com
Now a days everyone wants to get into the hackers’ community. They look cool, they crack code, they program and they find interesting stuff along their lives. so in this article you will learn to understand the hacker mindset to become a real hacker.
Recommend to read my previous article: How To Become A Hacker - Complete Guide For Beginners 2015
What the public doesn’t understand is the real meaning of this word. In the past couple of years, journalism has destroyed this word by using it to refer to criminals with malicious intentions. After years and years of using the word hackers in the wrong way, the general belief is that they are people you don’t want to be friends with.
However a hacker is not what you think he/she is. The term itself comes from the early days at MIT, when people were inventing what later became computer science. Richard Stallman was and is a hacker. He likes programming, he used to share his discoveries and he was innovating in his field.
Being a hacker is more a mindset than a matter of skills. In the early 50s, hackers were those who innovated by building new computers, inventing new programming languages and creating the basis for a software revolution. The stereotype of a hacker was a guy with great interests in technology and great analytical skills, which fed his curiosity to find and discover new things.
Eric Raymond, one of the founders of open source and early employee at the Free Software Foundation, gives an extensive definition of what Hackers are in his Jargon File:
There is a community, a shared culture, of expert programmers and networking wizards that traces its history back through decades to the first time-sharing minicomputers and the earliest ARPAnet experiments. The members of this culture first coined the term ‘hacker’. Hackers built the Internet, they made the Unix operating system what it is today and they make the World Wide Web work. If you are part of this culture, if you have contributed to it and other people in it know who you are and call you a hacker, you’re a hacker.
The hacker mind-set is not confined to this software-hacking culture. There are people who apply the hacker attitude to other things, like electronics or music — and actually, you can find it at the highest levels of any science or art. Software hackers recognize these kindred spirits elsewhere and may call them ‘hackers’ too, some claim that the hacker nature is really independent of the particular medium the hacker works in. But in the rest of this document we will focus on the skills and attitudes of software hackers, and the traditions of the shared culture that originated the term ‘hacker’.
There is another group of people who loudly call themselves hackers, but aren’t. These are people (mainly adolescent males) who get a kick out of breaking into computers and phreaking the phone system. Real hackers call these people ‘crackers’ and want nothing to do with them. Real hackers mostly think these people are lazy, irresponsible, and not very bright, and object that being able to break security doesn’t make you a hacker any more than being able to hotwire cars makes you an automotive engineer. Unfortunately, many journalists and writers have been fooled into using the word ‘hacker’ to describe crackers; this irritates real hackers no end.
The basic difference is this: hackers build things, crackers break them.
Criminals are crackers, not hackers. If someone breaks into your computer in order to steal something, he is a criminal; he’s not a Hacker.
The only way to become a hacker is to do what you love, there is no book, jargon or general rule. Hackers are people who love what they are doing and they just do it for the sake of doing it. If you try to define yourself as a hacker, just because you know ten different programming languages and have a lot of skills, you are wrong. It’s the community that decides if someone is a true hacker or not.
If you don’t know where to start, but you want to get into this “culture”, there are a few steps you may want to start taking. First, learn how to program. Writing code is essential, this culture invented modern programming languages, so the minimum you must do is to learn one of those. Further, start using one of the dozens of Linux distributions that you can find online. Windows and Mac Os are businesses and they were built for everyone, the GNU/Linux distributions were built just for the sake of doing it.
There were thousands of hackers programming and building operating systems just because they loved doing it. That’s why you may find them not so “customer oriented” and that’s why you should start using them. Further find some interesting IRC channels. IRC is all about interesting people who are helping each other on different topics, find them and start learning.
Remember, being a hacker is about sharing things and knowledge. It’s not about writing proprietary software, finding 0-Days and keeping them in order to use for malicious purposes or trying to steal. There is a close relationship between the definition of entrepreneur and hacker. They are not moved for money, they love what they do and they try to get more people involved in their own projects.
If you find that geeky guy with extremely good programming skills, who codes for his own needs, he’s the guy you should stick with.

Discover a Hacker's Mindset



Originally, the word “hacking” meant an elegant, witty or inspired way of doing almost anything.

In this session, you will learn how a hacker’s mindset can teach you to appreciate what is possible.


Key Points
• Hacking is more than just something mischievous tech geeks do for fun and profit: it is a habit of mind that ignites innovation and inspires invention
• The playground of hackers is not limited to the realm of PCs and the Internet: it encompasses nearly all devices,from everyday locks and keys to automobiles and mobile devices
• Forward-thinking corporations should consider taking hackers out of computer security departments and puttingthem in product development departments

Synopsis
Pablos Holman is a self-described “white hat hacker” – that is, one who puts his hacking skills to use to educate organizations about network security rather than wreak havoc in cyberspace and purloin sensitive data. In a lively and eye-opening session, Holman illustrated just some of the many security vulnerabilities that surround people in their everyday lives, demonstrating the ease with which hackers can manipulate remote car keys, networked hotel room television systems, cellular networks’ voicemail systems, Bluetooth-enabled devices and credit cards containing RFID chips.

Holman is also an inventor, who harnesses the very same out-of-the-box thinking and irrepressible curiosity that compels him to hack to come up with innovative solutions to some of the world’s more intractable problems. Holman and his colleagues at Intellectual Ventures Labs, founded by former Microsoft CTO Nathan Myhrvold, are now devoting their technological prowess and eclectic minds to intriguing projects: networks of giant, sea-borne rings made from recycled truck tires, that harness wave energy to push the warm surface downward to reduce warm air updrafts that create hurricanes; using hoses borne aloft by helium balloons to spray sulphur dioxide into the upper atmosphere to mimic the effect of volcanic activity in hopes of reversing the retreat of the Arctic ice cap; and a technology to reuse the millions of tons of nuclear waste created by nuclear plants and weapons programes for power generation.

Where non-hackers typically look at a device – a mobile phone, for instance – and understands it in terms of “what does this device do”, the hacker looks at the same device and asks, “What can I make this device do?” Holman believes that this mindset is precisely what is needed to spark innovation and invention. And it is also the mentality needed in the World Economic Forum’s ongoing efforts to rethink, redesign and rebuild.


The Hacking Mindset



The idea that looking for magic shortcuts, and “hacks” might be related to the belief that one is special or doesn’t need to put in long hours of demanding work in order to achieve something.
I’d like to expand on this idea a bit and explain why I think the “hacking” mentality (in language learning or even “life” itself) may actually be a sign of a fixed mindset. If you have a fixed mindset, you don’t like being told that things require hard work and sustained effort. After all, you’re special. You should be able to achieve success without effort, because you inherently deserve it.

A Fixed Audience

I think that the popularity of “hacking” websites is probably related to the creation of a generation of students with fixed mindsets (myself included, though . If you have a fixed mindset, you don’t want to hear that real skills take time to develop. You’re smart/talented/gifted/special and you need to prove this to people, perhaps by showing how quickly you can learn something. This means that hacks and shortcuts will be just what you’re looking for.
I think that this explains the widespread success of someone like Tim Ferriss, who promises that you can “master” skills in hours rather than years. This is a promise that appeals to the fixed mindset, suggesting that once you know the special secret, you no longer have to work hard. The irony is that I do think that Tim works very hard himself, but his relentless emphasis on short-cutting your way to success promotes a fixed mindset. His approach to supposed mastery seems to be more about creating a gilded appearance of skill that will convince others that you can speak X language, play Y instrument, or tango with the best of them, rather than admitting that, even with the best strategies, actually doing any of these things at a truly high level will require hours and hours (and hours) of focused effort and deliberate practice.
Of course, the appeal of reducing effort is not new, and I’m certainly not trying to argue against the idea of improving efficiency. Certainly we should want to “work smarter”, but we shouldn’t suppose that we are so “smart” we can completely remove the “work”. Increasing efficiency so that you can reduce overall effort is just laziness. Greater efficiency should enable us to do more, not less.

What’s the Rush?

If we put aside this fixed-mindset need to prove our talents and abilities, we’ll see that shortcuts to appearing successful are no longer particularly desirable. If you no longer care about impressing others (by speaking x language, lifting x weight, or cooking x meal) and you don’t actually enjoy the process of cultivating that particular skill, there’s really no reason to do it. Hacks and shortcuts for something you don’t like doing aren’t really saving you time, they’re just wasting it slightly more efficiently.  If you’re doing something you actually enjoy, there’s not much need to rush the process.

The Tortoise or the Hare?

Of course, I should be careful not to be hypocritical here. In other sections of this site you can find mnemonic techniques that could be considered “hacks” for memorizing numbers, learning to pronounce the Hangeul and Devanagari scripts, and memorizing the order of a pack of cards. I’m certainly not suggesting that techniques which allow rapid improvement are bad. What I am suggesting, however, is that while techniques like these help to simplify the initial steps of learning something new, they may cause us to underestimate the true amount of work (and time and frustration) required to reach intermediate and advanced stages.  There’s nothing wrong with sprinting ahead, just so long as you don’t start thinking that now you’ve got time to spare.
For example, creating mnemonics for Hangeul will certainly help one to get comfortable with the script more quickly. With mnemonics the (approximate) pronunciations can be learned in about an hour. Of course, this doesn’t mean that one can actually understand anything in Korean (except maybe some cognates). Now, without mnemonics, learning to pronounce the script may take a couple more hours. When considered in the overall context of a goal like “learning Korean”, using mnemonics saves a few hours, but saving a couple hours is rather insignificant when you think of the thousands of hours required to truly become fluent. It’s better to save a few hours where you can, but one shortcut is not a free pass to skip the majority of the effort.
The excitement of a technique that makes progress seem fast and effortless can temporarily blind us from the fact that there’s still a lot more work to be done. As a result, many people keep looking for more and more of these shortcuts rather than just focusing on the slow and steady process of actually doing the work. Now all the time spent searching for shortcuts (and putting off the real work) actually causes reduced efficiency and slower progress. I’ve certainly been guilty of this myself. So instead, I’m working to just accept the amount of effort that will be involved in reaching my goals and ignore the glittery promise of progress without effort.


The Hacker Mindset


The hacker mind-set is not confined to this software-hacker culture. There are people who apply the hacker attitude to other things, like electronics or music. Actually, you can find it at the highest levels of any science or art. Software hackers recognize these kindred spirits elsewhere and may call them hackers too  and some claim that the hacker nature is really independent of the particular medium the hacker works in. But in the rest of this document we will focus on the skills and attitudes of software hackers, and the traditions of the shared culture that originated the term hacker.



The Basic Difference Between Hackers and Crackers

There is another group of people who loudly call themselves hackers, but aren't. These are people (mainly adolescent males) who get a kick out of breaking into computers and phreaking the phone system. Real hackers call these people crackers and have nothing to do with them. Real hackers mostly think crackers are lazy, irresponsible, and not very bright, and object that being able to break security doesn't make you a hacker any more than being able to hotwire cars makes you an automotive engineer. Unfortunately, many journalists and writers have been fooled into using the word hacker to describe crackers; this irritates real hackers no end.

Hackers build things, crackers break them."


A hacker mindset for success, the accelerated way


In the 19th century, it took John D Rockefeller, the oil tycoon 46 years to make $1bn. In the late 2000s it took Andrew Mason two years to do the same at Groupon, the online daily deals company. So opens Shane Snow’s book Smartcuts, which claims the difference is not all down to inflation. Arguing that progress can be a lot speedier these days, Snow cites futurist Ray Kurzweil’s essay “The Law of Accelerating Returns”, which suggest that “we won’t experience 100 years of progress in the 21st century – it will be more like 20,000 years of progress (at today’s rate)”.

However, too many of us are mired in dated ways of doing things, argues Snow. Traditional thinking goes something like this: if we pay our dues and take our time, we might earn great success. What Snow suggests instead is that we learn from people such as Mr Mason, who “buck the norm and do incredible things in implausibly short amounts of time”.

Mr Mason is a curious benchmark of success to set for readers. After all, the Groupon founder and chief executive was sacked in 2013 due to overseeing accounting missteps, poor earnings and stock price. Notice of his dismissal went viral after his announcement that “after four-and-a-half intense and wonderful years as CEO of Groupon, I’ve decided that I’d like to spend more time with my family. Just kidding – I was fired today.”

Snow, a tech journalist in New York and co-founder of Contently, which provides content for brands, believes we all need a hacker mindset to become successful. He is not advocating criminality or even the skills of a coder but suggests applying lateral thinking to careers and business problems. Rather than shortcuts, he advocates ethical “smartcuts”, hence the book’s title. Classic success advice, he writes, is “work 100 hours a week, believe you can do it, visualise, and push yourself harder than everyone else. Claw that nail out with your bare hands ‘til they bleed if necessary”. He dismisses this as “the hard way”.

He argues, for example, that mentors do not work because they are stiff and formulaic. Yet companies pay vast sums for expensive mentoring schemes. He cites Sheryl Sandberg, Facebook’s chief operating officer, who wrote in her book, Lean In: “Searching for a mentor has become the professional equivalent of waiting for Prince Charming . . . Young women are told that if they can just find the right mentor, they will be pushed up the ladder and whisked away to the corner office to live happily ever after.”
The smart mentee approaches things differently, suggests Snow. “She develops personal relationships with her mentors, asks their advice on other aspects of life, not just the formal challenge at hand. And she gets involved in her mentors’ lives too.” For those who favour boundaries when it comes to their colleagues, such a strategy will be alarming.

The modern mantra that we must embrace failure in order to succeed is debunked. In fact, he writes, we do not necessarily learn from our missteps because all too often we prefer to attribute our mistakes to others instead of making a real effort to learn from them.
Like a junior Malcolm Gladwell, the author fuses academic research with personal stories, citing a broad range of people who have achieved career success – from the Cuban revolutionaries to Skrillex, the electronic dance music producer, to cardiac surgeons. Snow’s advice is sensible if not groundbreaking: be savvy, flexible, make an effort to learn from your mistakes and others’ successes and collaborate with well-connected people.

This is a manifesto for success for those who do not want to toil away unnoticed. The book is shot through with an itchy impatience. Yet in his rush to take “smartcuts”, there is something that bothers me. If you achieve your desired goal – be it billions of dollars or millions of YouTube followers – what do precocious overachievers do then? What is all this success for?


Understanding the Hacker Mindset To Minimize the Risk of Becoming a Victim of a Cyber-Attack


Financial institutions need to start by learning about potential attackers and their preferred information targets - and then pinpoint vulnerabilities that could be exploited.

That's the advice from David Pollino, senior vice president and enterprise fraud prevention officer at Bank of the West, a $69 billion institution based in California. Pollino will be a featured presenter at Information Security Media Group's Fraud Summit in Los Angeles on Feb. 24.
"You not only need to know your attacker, but also what their tactics are," Pollino says in an exclusive interview with ISMG. "[Attackers] share information among themselves, and occasionally that information will find its way back to us, so that we can learn from it and modify our tactics accordingly." Once organizations identify what kind of information hackers have been targeting, they can more accurately pinpoint vulnerabilities that could be exploited, he explains. Another key step, he says, is to share what they've learned with peers, law enforcement, regulators - and even those in other industries, Pollino says.
"It is important for us to have a strong external and internal intelligence practice," he says. "Once we learn things, how do we share that back to the greater community? That's a key component of intelligence."
Pollino says understanding the threat landscape, and the unique challenges it poses for an individual organization or institution, is critical.
"Being able to drive for the right outcomes involves knowing what problem you're trying to solve, or, in some cases, knowing who your enemies are and how they react," Pollino says. "For us to give the right information to both our internal stakeholders as well as external stakeholders, which include customers, law enforcement and other institutions, we really need to know what action they need to take. And that changes, based on the problem that we're trying to solve or the enemy that is attacking us."
During this interview, Pollino also discusses:
  • How automation is helping banking institutions more readily share information;
  • Why more needs to be done to expand threat intelligence sharing with other industries, such as retail and healthcare; and
  • How consistent customer education can help with fraud reduction.

At the upcoming ISMG Fraud Summit LA, Pollino will speak on two topics - customer education and cyberthreat intelligence. Pollino, during a solo presentation, will review steps Bank of the West has taken to enhance cyber-awareness and customer education - a key anti-fraud measure the bank implemented in 2013, after suffering a $900,000 account takeover loss in December 2012 during a distributed-denial-of-service attack. Then, during a panel with Lance James, who heads up cyber intelligence for consultancy Deloitte & Touche, he'll explore why knowing more about the adversaries that wage cyber-attacks is so critical.
To learn more about the summit, visit the summit registration page.
Pollino has been with Bank of the West since 2011. Previously, he served as manager of online fraud prevention strategy and analytics for Wells Fargo and was the online risk officer for Washington Mutual. Pollino conducts ongoing research on cybercrime techniques.

Recommended Articles To Become A Hacker:

Posted by at No comments:
Labels:

Monday, 20 April 2015

Linux Powerful Distros For Hacking Or Security: Kali, Tails And Qubes

Linux Powerful Distros : Kali, Tails And Qubes - picateshackz.com

It is a brief details of my comparison research about powerful hacking or security-focused Linux distros like Tails, Kali, and Qubes. They're really useful for browsing anonymously, ethical hacking or penetration testing, and tightening down your system so it's secure from would-be hackers. 


What Is A Linux Distro (Distribution)?


A ‘distro’ refers to a distribution of the Linux Operating System, where a person, group or company builds upon Linux and releases it under their name. Examples of popular Linux distros include Ubuntu, Fedora, OpenSUSE, among others. While all of them use the Linux kernel, they are all different with what software they include. From the the default software to even the user interface and experience, no two distros are alike.


Each distro brings something different to the table, offering up specific features for specific user sets. However, for a beginner, it is best to start simple, with a distro that offers a simple user experience for people that are new to Linux. The most recommended Linux distro for beginners would be Ubuntu Linux, as it is relatively easy to set up and use and has a lot of support.
In the Linux world, there are hundreds of different flavors of distro. Examples include Debian, Ubuntu and Red Hat (among many others). When referencing a Linux OS, administrators usually ask questions like: Which distro does the application sit on top of? or Which distro are you using?
Technically, a distribution is any deployment of software and isn't specifically Linux. Usually in this case you'll hear it referred to as a "distribution of software." Despite this, the term "distro" is nearly always used in a Linux context. So, while a distribution of software is a generic term for any bundle of software, distro is nearly always a flavor of Linux.


Why Linux Is Free?

Most people know Linux as the free operating system, free here meaning free of charge. That’s right, free of charge, but it also refers to free speech. What this means is that the source code for Linux is available for everyone to view, study and modify, along with sharing their changes with anyone who would like a copy.

Compare this to Windows and OS X which, while still popular, are closed source, cannot be studied and cannot be distributed freely. This open nature is one of the main reasons that Linux derived operating systems have been successful, with many people and companies creating their own derivative versions of Linux.

Strengths and Weaknesses of all three distros (Kali, Tails And Qubes)

It seems like every other day we hear about another hack, browser exploit, or nasty bit of malware. If you do a lot of your browsing on public Wi-Fi networks, you're a lot more susceptible to these types of hacks. A security-focused distribution of Linux can help. For most of us, the use cases here are pretty simple.
If you need to use a public Wi-Fi network at a coffee shop or the library, then one of these distributions can hide your traffic from someone trying to peek in. Likewise, if you're worried about someone tracking down your location—whether it's a creepy stalker or something even worse—randomizing and anonyming your traffic keeps you safe. Obviously you don't need this all the time, but if you're checking bank statements, uploading documents onto a work server, or even just doing some shopping, it's better to be safe than sorry.

All of these distributions can run in a virtual machine or from a Live CD/USB. That means you can carry them around in your pocket and boot into them when you need to without causing yourself too much trouble.

Tails - Security Through Anonymity


Tails protects you in a number of ways. First, since all your traffic is routed through Tor, it's incredibly difficult to track your physical location or see which sites you visit. Tails doesn't use a computer's hard disk, so nothing you do is saved to the computer you're running it on. Instead, everything you're working on is stored in RAM and erased when you shut down. This means any sensitive documents you're working on are never stored permanently. Because of that, Tails is a really good operating system to use when you're on a public computer or network.

Tails is also packed with a bunch of basic cryptographic tools. If you're running Tails off a USB drive, it's encrypted with LUKS. All your internet traffic is encrypted with HTTPS Everywhere, your IM conversations are encrypted with OTR, and your emails and documents are encrypted with OpenPGP.

The crux of Tails is anonymity. While it has cryptographic tools in place, its main purpose is to anonymize everything you're during online. This is great for most people, but it doesn't give you the freedom to do stupid things. If you log into your Facebook account under your real name, it's still going to be obvious who you are and remaining anonymous on an online community is alot harder than it seems.

From the moment you boot up, your computer leaves footprints. Websites leave tracking cookies, following you from page to page and session to session, alongside the usual traces left by your IP address. Persistent logins from Google and Facebook tie each site visit to your offline identity. If anyone really wants to go after you, they can also make a direct attack, targeting malware to track your movements in the background. With the right tools, a computer is an open book.

Not this computer, though. It's running Tails, an open-source operating system designed to leave as little trace as possible, after more than five years of open development. It's an amnesiac system, which means it's completely fresh every time you boot up. There are no save files, no new programs, and most importantly, it becomes a blank slate the moment you shut down. It's the digital equivalent of buying a new computer for a single session and tossing it into the river once you're done.

That trick has earned Tails a lot of attention. It’s already standard software at Glenn Greenwald’s First Look Media, where he’s called it “vital to my ability to work securely on the NSA story.” Tor researcher Jacob Appelbaum praised the project onstage at this year's Chaos Communications Congress, and in March Tails received a $50,000 grant to keep the project going. Nearly 8,500 computers booted up with Tails on a given day in March, 500 more than the month before. Those are surprisingly high numbers for a project that’s this hard to use, and does this little. But if you need a secure line, Tails is the best way to get it. In the era of the NSA, that’s a rare thing.


pros: Routes all your traffic through Tor, comes with a ton of open-source software, has a"Windows Camouflage" mode to make it look more like Windows 8.

Cons: Can't save files locally, slow, loading web sites through Tor takes forever.

Who It's Best For: Tails is best suited for on-the-go security. If you find yourself at coffee shops or public libraries using the internet a lot, then Tails is perfect for you. Anonymity is the game, so if you're sick of everyone tracking what you're doing, Tails is great, but keep in mind that it's also pretty useless unless you use pseudonyms everywhere online.


Kali - Offensive Security


Where Tails is about anonymity, Kali is mostly geared toward security testing. Kali is built on Debian and maintained by Offensive Security Ltd. You can run Kali off a Live CD, USB drive, or in a virtual machine.


Kali's main focus is on pen testing, which means it's great for poking around for security holds in your own network, but isn't built for general use. That said, it does have a few basic packages, including Iceweasel for browsing the web and everything you need to run a secure server with SSH, FTP, and more. Likewise, Kali is packed with tools to hide your location and set up VPNs, so it's perfectly capable of keeping you anonymous.
Kali has around 300 tools for testing the security of a network, so it's hard to really keep track of what's included, but the most popular thing to do with Kali is crack a Wi-Fi password. Kali's motto adheres to "a best defense is a good offense" so it's meant to help you test the security of your network as a whole, rather than just making you secure on one machine. Still, if you use Kali Linux, it won't leave anything behind on the system you're running it on, so it's pretty secure itself.

As stated before Kali is based on Debian. However, unlike Debian it is focused on forensics. For this reason Kali preinstalls packages relevant for forensics. Kali also actively seeks bugs in forensics-related packages. Thus Kali saves you from finding and installing forensic packages. It also keeps you informed about bugs in these packages. Furthermore it provides a community platform for those interested in forensics.

Added later on: All right, Kali focuses on penetration testing as well. The main point is still that Kali preinstalls useful things for a specific domain, and it provides a community platform. General purpuse distributions like Debian do not have a similar focus.

Kali is Backtrack 6 in all but name, and Kali has a totally revamped software loadout (including base distribution; Debian instead of Ubuntu). In my experience, Kali is more stable, but your mileage may vary. The core functions remain the same but some packages may have been swapped out for alternatives, depending on what you want to do. Also you can update Kali packages without the whole thing falling to shit :)



Besides a Live CD, Kali can also run on a ton of ARM devices, including the Raspberry Pi,BeagleBone, several Chromebooks, and even the Galaxy Note 10.1 - How to Install Kali Linux on Android

Pros: Everything you need to test a network is included in the distribution, it's relatively easy to use, and can be run on both a Live CD and in a virtual machine.

Cons: Doesn't include too many tools for everyday use, doesn't include the cryptographic tools that Tails does.

Who It's Best For: Kali is best suited for IT administrators and hobbyists looking to test their network for security holes. While it's secure itself, it doesn't have the basic daily use stuff most of us need from an operating system.

Qubes - Security Through Isolation


Qubes is desktop environment based on Fedora that's all about security through isolation. Qubes assumes that there can't be a truly secure operating system, so instead it runs everything inside of virtual machines. This ensures that if you are victim to a malicious attack, it doesn't spread to the operating system as a whole.

With Qubes, you create virtual machines for each of your environments. For example, you could create a "Work" virtual machine that includes Firefox and Thunderbird, a "Shopping" virtual machine that includes just Firefox, and then whatever else you need. This way, when you're messing around in the "Shopping" virtual machine, it's isolated from your "Work" virtual machine in case something goes wrong. You can create virtual machines of Windows and Linux. You can also create disposable virtual machines for one time actions. Whatever happens within these virtual machines is isolated, but its not secured. If you run a buggy web browser, Qubes doesn't do much to stop the exploit.

The architecture itself is set up to protect you as well. Your network connection automatically gets its own virtual machine and you can set up a proxy server for more security. Likewise, storage gets its own virtual machine as well, and everything on your hard drive is automatically encrypted.

The major downfall with Qubes is the fact that you need to do everything manually. Setting up virtual machines secures your system as a whole, but you have to be proactive in actually using them. If you want your data to remain secure, you have to separate it from everything else.

Our overall impression of Qubes is positive. Its design is well thought out. Everything worked after installation without issues (network, video, sound, USB, DVD-ROM, etc.) and without the need to manually edit files. The performance, although certainly not blazing fast, was better than expected when considering what Qubes is doing in the background. The software is still in beta and so we did run into a couple of bugs however they were mostly pop-up messages that did not prevent us from doing what we were trying to do. We did not experience any problems creating, deleting, and updating the software in AppVMs. We were expecting to experience at least a few technical issues after installing Kali Linux in a new HVM, however it booted up fine with no errors and Qubes didn't erroneously get in the way as we started using nmap to scan external systems. We are reassured by the discussions of the developers in the Qubes mailing list which show that they understand information security and are implementing measures to protect against various types of attack scenarios that others don't even consider. All that to say we are quite pleased with this OS and are planning on keeping it installed. This is one to keep watching for its eventual non-beta release.


Pros: The isolation technique ensures that if you do download malware, your entire system isn't infected. Qubes works on a wide variety of hardware, and it's easy to securely share clipboard data between VMs.

Cons: Qubes requires that you take action to create the VMs, so none of the security measures are foolproof. It's still totally susceptible to malware or other attacks too, but there's less of a chance that it'll infect your whole system.

Who It's Best For: Qubes is best for proactive types who don't mind doing a bit of work to set up a secure environment. If you're working on something you don't want in other people's hands, writing out a bunch of personal information, or you're just handing over your computer to a friend who love clicking on malicious-looking sites, then a virtual machine's an easy way to keep things secure. Where something like Tails does everything for you out of the box, Qubes takes a bit of time to set up and get working. Qubes user manual is pretty giant so you have to be willing to spend some time learning it.


The Rest: Ubuntu Privacy Remix, JonDo, and IprediaOS


Tails, Kali, and Qubes certainly aren't the only security-focused operating systems around. Let's take a quick look at a few other popular options.

  • Ubuntu Privacy Remix: As the name suggests, Ubuntu Privacy Remix is a privacy focused distribution built on Ubuntu. It's offline-only, so it's basically impossible for anyone to hack into it. The operating system is read-only so it can't be changed and you can only store data on encrypted removable media. It has a few other tricks up its sleeve, including a system to block third parties from activating your network connection and TrueCrypt encryption.
  • JonDO: JonDo is a Live DVD based on Debian that contains proxy clients, a preconfigured browser for anonymous surfing, and a number of basic level security tools. It's similar to Tails, but is a bit more simplified and unfamiliar.
  • IprediaOS: Like Tails, IprediaOS is all about anonymity. Instead of routing traffic through Tor, IprediaOS routes through I2P.

Of course, none of these operating systems are particularly ideal for day-to-day use. When you're anonymizing your traffic, hiding it away, or isolating it from the rest of your operating system you tend to take away from system resources to slow things down. Likewise, the bandwidth costs means most of your web browsing is pretty terrible. All that said, these browsers are great when you're on public Wi-Fi, using a public computer, or when you just need to use a friend's computer that you don't want to leave your private data on.
They're all secure enough to protect most of us with our general behavior, so pick whichever one is best suited for your particular needs.



Recommended Articles To Become A Hacker:

Posted by at No comments:
Labels: , , , , , ,

Thursday, 16 April 2015

GoLismero: New Hacking Tool For Pentesting Projects

GoLismero Hacking Tool For Pentesting- picateshackz.com

GoLismero is an open source framework for web auditing which has been recently presented at AppSec EU de OWAP  en Hamburgo. It has been developed by Daniel Garcia Garcia a.k.a cr0hn (@ggdaniel) and Mario Vilas (@Mario_Vilas).

This tool allows you to map a web application and detect vulnerabilities of it.

Also you can manage a lot of security tools like OpenVas, Nikto, DNS recon, robot analyzer... and take their results merged in a single report automatically.

GoLismero has been tested on Windows, Linux, BSD and OS X and it doesn’t have library dependencies, you only need to have Python 2.7.5 installed.

It's really easy to install. Just execute the command below in your Linux machine (Kali Linux).


git clone https://github.com/golismero/golismero.git


Also, this project has created a GoLismero VM (based in Kali Linux). You can download here:http://golismero-project.com/downloads/kali-golismero.ova

This VirtualBox Machine includes:
  • OpenVAS installations pre-configured.
  • VirtualBox tools.
  • GoLismero updater.
  • GoLismero stable and develop version.


We have a lot of options to set in order to run GoLismero. Have a look at the picture below. If you want more information about an option, just type this command.

python golismero.py --help


Like the one mentioned above, GoLismero can manage some well known applications like Nikto. With the command below, we can see all the plugins available to use.

python golismero.py --plugin-list


Here, I'm going to describe all plugins included with this tool.


-= Import plugins =-
  • csv:  Import the results of a Nikto scan in CSV format.
  • xml:  Import the results of an OpenVAS scan.


-= Recon plugins =-
  • default_error_page:  Identifies default error pages for most commonly used web servers.
  • dns_analyzer:  Tries to find hidden subdomains by enumerating them using the DNS protocol.
  • dns_subdomains_bruteforcer:  Tries to find hidden subdomains by brute force.
  • dns_zone_transfer:  Tries to make a DNS zone transfer.
  • fingerprint_os:  Fingerprinter of server operating systems.
  • fingerprint_web:  Fingerprinter of web servers.
  • robots:  Analyzes robots.txt files and extracts their links.
  • spider:  Web spider plugin. Without it, GoLismero can't crawl web sites.
  • suspicious_url:  Flags suspicious words in URLs.
  • theharvester:  Integration with theHarvester (https://code.google.com/p/theharvester/).


-= Scan plugins =-
  • brute_directories:  Tries to discover hidden folders by brute force:  www.site.com/folder/ -> www.site.com/folder2 www.site.com/folder3 ...
  • brute_extensions:  Tries to discover hidden files by brute force:  www.site.com/index.php -> www.site.com/index.php.old
  • brute_permutations:  Tries to discover hidden files by bruteforcing the extension:  www.site.com/index.php -> www.site.com/index.php2
  • brute_predictables:  Tries to discover hidden files at predictable locations. For example: (Apache) www.site.com/error_log
  • brute_prefixes:  Tries to discover hidden files by bruteforcing prefixes:  www.site.com/index.php -> www.site.com/~index.php
  • brute_suffixes:  Tries to discover hidden files by bruteforcing suffixes:  www.site.com/index.php -> www.site.com/index2.php
  • nikto:  Run the Nikto scanner and import the results.
  • openvas:  Run the OpenVAS scanner and import the results


-= Report plugins =-
  • html:  Plugin to generate HTML reports.
  • text:  Creates text reports in files or on screen.


-= UI plugins =-
  • console:  Console user interface.
  • disabled:  Empty user interface.


Also you can create your own plugins. You can obtain more information about its plugin's API here.

If you want to know more details about some plugins you can get it typing --plugin-info plugin_name.Have a look at the commands and pictures below:


python golismero.py --plugin-info openvas

If you would like to integrate GoLismero with OpenVAS you should set the correct IP, port, user and password of your OpenVAS installation.



python golismero.py --plugin-info nikto


After this brief introduction of the GoLismero's details, I want to show you an example of how to work with this tool.

First of all,  take care with this tool. If you launch it with the default options, the tool begins to search other subdomains and try to attack them. You might want to audit all your infraestructure and if it's your goal, that is ok, if not, use the "--forbid-subdomains" option.


Ok. Let's go.


sudo python golismero.py -d theharvester,openvas,dns* --forbid-subdomains --audit-name MyProject -o MyProject.html www.example.es


Details about this command:
  • With "-d" option, we are telling to GoLismero that we don't want to use theharvester, openvasand the rest of plugins which begin with "dns".

  • With "--forbid-subdomains" we avoid attacking other subdomains. We are going to focus in only one target.

  • With "--audit-name MyProject" we are going to save the results in a database named MyProject.db.

  • With "-o MyProject.html" we are going to generate a HTML report.


Note: If you want to set which plugins you want use instead of which plugins you don't want to use, you can use "-e" option.




Then, you only need to wait until the scan is finished. Depending on the website you are auditing or the command you have typed, you need to wait more or less time. Be warned, getting the report can take some time, so, I recommend launching the scans, then doing something else like having a relaxing cup of coffee while the scan is working ... ;)


When the scan is finished, just open the HTML report with your favourite web browser.





We can see the details of the report filtered by Vulnerability...


... or filtered by resource.



The picture below shows us a vulnerability found on the web site we have just audited.


In my opinion GoLismero is a great tool which is currently growing.

The next features of GoLismero will be:


  • Integration with Nmap, SQLMap, Metasploit and many other tools.
  • Web UI.
  • Export results in PDF format.


Recommended: Top 15 Advanced Operating Systems For Hackers

Posted by at No comments:
Labels: , ,
Subscribe to: Posts (Atom)