Netcat Linux Tutorial with Examples | Netcat Download

netcat
netcat

Many hacker and information security experts are using netcat. Netcat is a old but powerful information security tool is used to read and write from one computer to another computer through the network connection using TCP or UDP protocol.
I have been working in cyber security field more than 7 years, and found netcat working very well still. due to the use and multiple functionalities, got name swiss army knife for ethical hacking. Most big certification course like CEH (Certified Ethical Hacker) and Penetration Testing with Kali Linux are teaching about netcat.
By default netcat is available in Kali Linux but if you want to use netcat in windows, download netcat windows. netcat download
Here are most common uses of netcat:

  • Port scanning.
  • Banner Grabbing
  • Transferring Files.

Port Scanning by Netcat Linux

Port scanning is a methodology to find out open ports on target machine. Nmap is most known and powerful tool used for port scanning but necat also can be used to scan target machine to check open port.
Here is an example of port scanning. syntax:

#nc -v [Target Machine IP address] [Port Number]

#nc -v 192.168.0.1 80

The -v switch is used to get verbose output. 192.168.0.1 is the IP address of Target Machine and port number is 80.
Result: port is open.
If you want to scan port within range, provide range instead of single port. For the example if you want to scan port range 10 to 100 then you will use following syntax:

#nc -v 192.168.0.1 10-100

Banner Grabbing by Netcat

Banner grabbing is a fingerprinting technique, used to extract useful information from the target machine like what service running on open port.
When we send banner grabbing request through the netcat, we will send some output, after analyzing same find out helpful information like Operating system detail, service detail on particular port etc.One important thing is established connection is required by netcat to the victim machine before start banner grabbing.
Here is an example of banner grabbing, victim is google.com server and Syntax:

#nc [domain name / IP Address] [Port Number]

#nc www.google.com 80

Transferring Files by using Netcat

Most common method for transferring files over network is using FTP, netcat is another tool is used to transfer files over networking using TCP or UDP protocol.
Two modes are required, one is listen mode on sending end another is receiver’s end. you must establish connection between target and attacker with specific IP address, then execute file transfer command.

Syntax following:
On Target Computer (Victim / Reciver Computer):

nc -v -w 30 31337 -l
nc -v -w 30 31337 -l file.txt

nc                      —Netcat

-v                      verbose mode; gives feedback on the screen during an operation

-w 30             tells Netcat to wait for 30 seconds before terminating the file transfer process

31337               the port number

-l                    the computer is the listener

<text.txt        —taking the file and sending it

On Attacker Machine:

#nc -v -w 3 [victime IP Address] [port number] > [File name]

#nc -v -w 3 192.168.0.1 4444 > file.txt

-w 3 —wait two seconds before canceling the transfer, in case of loss of connection

192.168.0.1 —IP address of the Victim machine

4444 —listening port of the Victim machine

>text.txt —receiving the output of the Windows machine and putting it in a new text file

If you have any question related this post please comment below.
Happy Hunting

How to Install Flash Player Kali Linux Firefox [Full Guide]

commands to install flash player plugin in mozilla - kali linux

Hello & Welcome on on my Blog, I am happy to see you here. I hope you are doing well.

Today I updated my Kali Linux in latest version 2018.2 and I found the flash player is not working in Mozilla Firefox. Flash Player mostly used to play videos and flash content in a browser. so if you don’t have the latest version of Flash Player many flash content will not visible. I open a website which has some flash content, I got the following error.

plash player error

So I decided to write an article on how to update and install Flash player Kali Linux Mozilla. So this article also will helpful for those, who are facing the same problem. By the way, it’s very easy to update Flash Player. download from the official websites of the flash player and extracted and copy libflashplayer.so into /usr/lib/mozilla/plugins . If you don’t know how you can install the flash player plugin in Mozilla, so you can follow the steps given below

STEP 1: Download Flash player plugin

Go to the official website of Adobe flash player and download appropriate file (.tar.gz) for your Kali Linux version. After some time downloading will be completed then go for the next step.

STEP 2: Extract or unzip the downloaded file

Go to the download folder and you will find .gz file. You need to extract it .just right click on the file and select option extract here

download folder in kali

STEP 3: Install the flash player plugin in Mozilla

After the extracting just run the following commands
commands to install flash player plugin in mozilla - kali linux

STEP 4: restart Firefox browser

If you have any suggestion or question please post into the comment box.

Cheers!

2 commands How to install libreoffice for Kali Linux

How to install libreoffice in Kali Linux

Hello and welcome on my blog Cyberpratibha.

Most of us are using windows and familiar with Microsoft Office including MS Office here is Libre office for Kali Linux. In this tutorial you will learn Kali Linux commands  “How to install LibreOffice for kali Linux. Libreoffice is office for Kali Linux and other Linux distribution. You are at the right place to learn 2 commands to complete this operation.

How to install LibreOffice for Kali Linux

This is a software office for Linux distros similar as Microsoft Office in window Operating System. It is always free and available for all Linux flavor. Further future process run following commands

apt-get update

apt-get install libreoffice

or

$ sudo apt-get install libreoffice

Video Demonstration:

Kali Linux Online Terminal via Gotty [Video Tutorial]

kali linux online terminal

Kali linux online terminal – MSF Web

Gotty is software used to make Kali linux online terminal accessible via  web browser. cmd could be shared with other users. it is little bit fun. You can download and install gotty in Kali linux 2.0 and older version. It is a terminal emulation freeware and works like a terminal servers and Terminal client.
By default, gotty doesn’t allow clients to send any keystrokes or commands except window re-sizing. When you want to permit clients to write input to the PTY, add the -w option. However, accepting input from remote clients is dangerous for most commands. Make sure that only trusted clients can connect to your gotty server when you activate this option.

After use PC Terminal emulator your PC will start work like a SSH client. As you know ssh secure file transfer is used to transfer files.

 

Here is Video Tutorial of linux online terminal

[sociallocker id=2182]

Access kali linux terminal online

Access kali linux terminal online via gotty.

Posted by Q Hacker on Friday, March 3, 2017

[/sociallocker]

Learn about Kali Linux configure network manually [Tutorial]

How ot do Kali Linux network configuration

Hello and welcome on my blog, there Vijay Kumar, 

This article about ” Kali Linux configure network manually ” it will cover all about Kali Linux network configuration of LAN and Wireless LAN adapter, assign IP manually and by DHCP server as well.

Kali Linux Network Configuration for Ethernet Connection

Network interfaces (LAN adapter, wireless adapter, usb adapter, fast Ethernet) are responsible to connect and make communication between two or more computers in a network. If network card is not configured properly, then you are out of network and configuration is important for network security. Network should have proper IP Address, subnet mask, Default gateway, domain name server etc.

So configure network and get into the network. but most important question:

How do you check Kali Linux network configuration ?

There are different methods for windows and Linux operating systems. Here we are discussing about kali linux, I will explain tasks used in Linux. Following command is used to check the status of the networking cards in Kali Linux:

#ifconfig

#ifconfig –a

Using The Command Line To Configure Network Interface In Kali Linux _image1

ifconfig command sow assigned IP address, MAC, Netmask, for IPv4. you can run this command as normal user and sudo user.

Enable/Disable network interface cards

Ifconfig command using the up option can start network interface and stopped using the down option. Following syntax is used

#ifconfig eth0 down

#ifconfig eth0 up

Using The Command Line To Configure Network Interface In Kali Linux _image2

Using The Command Line To Configure Network Interface In Kali Linux _image3

Assign IP Address for network (eth0 or wlan0)

Eth0 is the number of wired network interface card. if you want to assign ip address for wireless adapter replace eth0 by wlan0. The current configuration of this adapter can be changed by using following command and this command will assign new ip address for your computer interface

#ifconfig eth0 192.168.1.10

Kali Linux network configuration with IP address and Netmask

Netmask is used to indentify the network address. It can be configured by using given command. This will set the ip address 192.168.1.10 and set the subnet mask 255.255.255.0

#ifconfig eth0 192.168.1.10 netmask 255.255.255.0

Using The Command Line To Configure Network Interface In Kali Linux _image4

Add default gateway

Default gateway is added or changed, by using following command. It will set the default gateway 192.168.1.1

#route add default gw 192.168.1.1

Using The Command Line To Configure Network Interface In Kali Linux _image5

Add dns-namesevers

In Linux Domain Name Server or DNS can be set or modifying the resolv.conf  in the /etc directory. It can be changed by editing this file. add the following sytex in terminal

#echo nameserver 8.8.8.8 > /etc/resolv.conf

This command will remove the current nameserver and set 8.8.8.8. It can be added alternate nameserver by using following syntax

#echo nameserver 4.4.4.4 >> /etc/resolv.conf

Kali Linux network configuration from DHCP 

DHCP services is one of the easiest ways to configure a Ethernet. Free DHCP server provides all required configuration setting for network card. Use the following method:

#leafpad /etc/networking/interfaces

make these entries

auto eth0

iface eth0 inet static

address {ip_Address}

netmask {netmask}

gateway {Default_gateway_IP_Address}

Save the file and exit to complete modification. It is required to take down network and again bring up Ethernet interfaces to applying this configuration.

Use following command to configure network adapter
#dhclient eth0

This will configure the network adapter using the settings provided by the DHCP Server.

How to configure network adapter in Kali Linux

How to configure network adapter in Kali Linux by Command line

Posted by Q Hacker on Thursday, March 16, 2017

4 Steps to install flash player plugin in Mozilla – Kali Linux

Hello & Welcome on on my Blog, I am happy to see you here. I hope you are doing well.

Today I updated my Kali Linux in latest version 2016.2 and I found flash player plugin is not working in Mozilla Firefox. Flash Player mostly used to play videos and flash content in a browser. so if you don’t have the latest version of Flash Player many flash content will not visible. I open a website which have some flash content, I got follwwing error.

[sociallocker]

plash player error

[/sociallocker]

So I decided to write an article on how to update and install Flash player plugin in Mozilla on Kali Linux Operating System. So this article also will helpful for those, who are facing the same problem. By the way it’s a very easy to update Flash Player. download from the official websites of the flash player and extracted and copy libflashplayer.so into /usr/lib/mozilla/plugins . If you don’t know how you can install flash player plugin in Mozilla, so you can follow the steps given below

STEP 1: Download Flash player plugin

Go to the official website of Adobe flash player and download appropriate file (.tar.gz) for your Kali Linux version. After some time downloading will be completed then go for the next step.

STEP 2: Extract or unzip downloaded file

Go to the download folder and you will find .gz file. You need to extract it .just right click on the file and select option extract here

download folder in kali

STEP 3: Install flash player plugin in mozilla

After the extracting just run the following commands

 

STEP 4: restart Firefox browser

10 Steps ot install Kali Linux 2.0 Graphical on Hard Drive

install Kali Linux 2.0 Graphical

 Install Kali Linux 2.0 Graphical on Hard Drive

To accurately install Kali Linux on hard drive, or indeed boot to the live disk, it is basic that the Basic Input Output System (BIOS) be set to boot from optical disk. To start the installation, put the DVD in the computer’s DVD tray and boot the machine by Kali Linux DVD.

STEP 1# FIRST TIME SYSTEM BOOTING WITH KALI LINUX:

A computer booted to the Kali Linux DVD effectively will show a screen that seems to be like the figure. Kali Linux is distributed as a “Live CD” (otherwise known as Live ISO), which implies that the operating system could be run straight from the disk notwithstanding being installed to a hard drive. Running Kali from the live disk permits the system to boot and the majority of the instruments will execute; notwithstanding, the working system exhibited is nonpersistent. Nonpersistent implies that once the system is shut down, any memory, spared settings, reports, and potentially extremely imperative work or examination may be lost. Running Kali in a nonpersistent state takes extraordinary forethought, propelled taking care of, and not too bad understanding of the Linux orders furthermore working system.Hard Drive Installation of Kali Linux image1

STEP 2: INSTALL KALI LINUX – Setting the Defaults

The following few screens will permit the determination of the systems a default language, location, and keyboard language. Select the fitting settings and click on keep on advance the installer.

STEP 3: INSTALL KALI LINUX – Initial Network Setup

Figure subtle elements the introductory setup and essential arrangement of the essential system interface card. Pick a hostname by writing in the box and clicking on proceed. In the wake of selecting a hostname and clicking on the Continue catch, the following screen will request the computers’s completely qualified domain name, FQDN. For this guide, the FQDN was left purposefully clear and can be continue by selecting the Continue catch. Hard Drive Installation of Kali Linux image2

STEP 4: SETTING UP STRONG PASSWORD

The default password is: toor; however, it is suggested that another password is chosen that holds no less than one each of the accompanying: uppercase, lowercase, number, furthermore symbol. The password ought to have no traceability to the client and not be effortlessly guessed.

Hard Drive Installation of Kali Linux image3
Some case of solid password:

St0n(3)b@tt73 _ “Stone Battle”

_ P@p3r0kcur5# _ “Paper, Rock, Curse”

_ m!gh7yp@jjjama% h _ “Compelling Pajamas”

STEP 5: CONFIGURING THE SYSTEM CLOCK

The figure indicates the brief for selecting a time zone. Click on the suitable time zone and the click on the Continue button to advance on in the installation.

STEP 6: PARTITIONING DISK

There are such a large number of approaches to configure partitions for setting up a Linux working Systemthis aide will concentrate on the most essential establishment, Guided Partitioning. “Guided—client whole circle,” should be chosen. Click on the Continue catch to development through the establishment process. install kali 06install kali 07
An essential segment holding the majority of the system, client, furthermore scripting records will be made as one segment. A second parcel is made for swap partition. The swap range is virtual system memory that pages records back furthermore hence between the computer’s Central Processing unit (CPU) and rendom access memory (RAM). All Linux systems are recommened to have a swap area also the general practice is to situated the swap territory equivalent to or one and a half times the measure of physical RAM introduced on the machine.

STEP 7: CONFIGURE THE PACKAGE MANAGER

The package manager refers to the update repository where Kali Linux will force redesigns also security patches. It is proposed to utilize the system reflect that comes with the Kali Linux ISO as this will the most forward hotspots for bundle administration. Figure shows that “YES” will be chosen of course. Click on the Continue catch to development through the installation process.

STEP 9: INSTALLING THE GRUB LOADER

The Grand Unified Bootloader (GRUB) is the main screen that will be showed each time the computer is started. This allows the confirmation of specific settings at boot, roll out on the fly improvements, and make setting alterations before the working system loads. While GRUB is not essential for some developed clients, it is exceptionally prescribed for generally installation process.
Finishing the Installation install kali 08

Remove disk and reboot the system, click on the continue button to finish the installation. In the wake of rebooting, the welcome screen will be displayed. Log in as the root user with the predefined password set prior in the installation process.

STEP 10: Welcome to Kali Linux !!

[sociallocker id=2182]

Install Kali linux 2.0 on Virtual box,

Install Kali Linux on Virtual box, Similar you can install on hard drive

Posted by Q Hacker on Thursday, February 16, 2017

[/sociallocker]

Top 10 insecure programming languages

New research shows that scripting languages cause web vulnerabilities

To this news, I was like.WHHHHHHHAAAAAAAAAAttt?? But it is true. A new research showed that scripting languages, in general, spawn security vulnerabilities regarding web applications. Now this got many on the web their panties got all twisted. As millions are websites are now under potential security bugs that earlier we weren’t aware of.

Veracode, an app security firm has recently released its State Of Security: Focus On Application Development report. The PDF  is available too. In this report the analyzed data of over 200,000 separate application from Oct 31st, 2013, to March 31st, 2015 is present.

To prepare this report, security researchers crawled through most of the popular languages including but not limited to

  • PHP,
  • Java,
  • JavaScript,
  • Ruby,
  • .NET,
  • C and C++,
  • Microsoft Classic ASP,
  • Android,
  • iOS,
  • and COBOL

and alongside it hundreds of thousands of applications for the past 18 months.

Now the comparison they used for the graphical statistics of the languages is with OWASP(Online web Application Security project). The analysis was how much of the passing rate of individual programming language was with OWASP. In short Classic AHP  and ColdFusion are the riskiest programs and java and net are the safest of the bunch. But safe doesn’t mean completely shielded. So here below is the stat of each program.

unsafe programming languages

This below is the list of Top 10 insecure programs,
  • Classic ASP – Has 1,686 flaws/MB (1,112 of them are critical)
  • ColdFusion –Has 262 flaws/MB (227 of them are  critical)
  • PHP –Has 184 flaws/MB (47 of them are  critical)
  • Java –Has 51 flaws/MB (5.2 of them are critical)
  • .NET -Has 32 flaws/MB (9.7 of them are critical)
  • C/C++ –Has 26 flaws/MB (8.8 of them are critical)
  • iOS –Has 23 flaws/MB (0.9 of them are critical)
  • Android –Has 11 flaws/MB (0.4 of them are critical)
  • JavaScript -Has 8 flaws/MB (0.09 of them are critical)

 

The most vulnerable web apps are the ones that got PHP ..but why? Is PHP at the third position? The reason for that is ColdFusion is for niche users and Classic ASP is not taken any heed to.

A close inspection of PHP shows the following vulnerabilities

  • Almost 86% of applications written in PHP have at least one XSS vulnerability
  • 56% of apps included SQLi (SQL injection), which is easily exploitable…Read (Hack puts kid/parents data in danger)
  • 67% of apps aren’t immune to directory traversal.
  • 61% of apps aren’t immune to code injection.
  • 58% of apps had problems with managing credentials
  • 73% of apps are storehouse for cryptographic issues
  • 50% aren’t immune to information leakage.

Now we know that OWASP almost never changes, but the new security vulnerabilities always pop up putting SQL and XSS (Cross Site Scripting) right at the top of Owasp

Now about how to tackle all this:

Using scripting language wisely is your salvation. Less then a quarter of java applications have SQL flaws which is much lower than PHP.

“Knowledge is amazing but is inconsequential if there is no wisdom behind that knowledge’s usage”

 

 

 

Download Kali Linux 32 or 64 bit ISO file free

Download Kali Linux Images Securely

Download Kali Linux 32 or 64 bit Image from Official Website

Kali Linux is a debian based Linux distribution launched at 13th March 2013. This Operating system widely used for Penetration Testing. It has bunch of tools used for penetration testing, Security auditing, network testing, wireless security, Forensics etc. There are more than 4oo tools are available on it repository. Kali Linux Operating system is always free as per offensive security’s announcement. It’s 32 bit and 64 bit ISO file, VMware file, and arm file are available for download.  You can download it by torrent too.

[button color=”red” size=”medium” link=”https://www.kali.org/downloads/” icon=”” target=”false”]Download Kali Linux 32 or 64 bit Image[/button]

 

[button color=”blue” size=”medium” link=”https://www.youtube.com/watch?v=cItLLZo3-sk” icon=”” target=”false”]Video Tutorial[/button]

 

Add Kali Linux git repository in source list

Add Kali Linux git source repository

After install Kali Linux the next step how to update and upgrade it. Repository play an important role to update and upgrade Kali Linux. Git Source Repository is a Server store all updated verified tools for Kali Linux.  We need to add these servers addresses in source.list file, locate /etc/apt/.  As we know Kali Linux is a Debian based Operating System, so all the Debian package can be installed on it. but some package may be cause of crash the Kali Linux due to incompatibility. So it is important add only officially source list in file.

Step 1: Go to the Official website HERE

Step 2: Copy the source lists ( Regular Repositories and Source repositories) and add into /etc/apt/source.list file

Regular repositories

On a standard, clean install of Kali Linux, you should have the following two entries present in/etc/apt/sources.list:

deb http://http.kali.org/kali sana main non-free contrib
deb http://security.kali.org/kali-security sana/updates main contrib non-free

You can find a list of official Kali Linux mirrors here.

Source repositories

In case you require source packages, you might also want to add the following repositories as well:

deb-src http://http.kali.org/kali sana main non-free contrib
deb-src http://security.kali.org/kali-security sana/updates main contrib non-free

 

Video Tutorial of Adding Repository in Kali Linux 2