ARP stands for Address Resolution Protocol and it allows the network to translate IP addresses into MAC addresses. Basically, ARP works like this: When one host using IP on a LAN is trying to contact another it needs the MAC address (aka: hardware address) of the host it is trying to contact. It first looks in it’s ARP cache (to see your ARP cache in windows type in “arp –a” at the command line) to see if it already has the MAC address, but if not it broadcasts out an ARP request asking “Yo, who has this IP address I’m looking for?” If the host that has that IP address hears the ARP query it will respond with it’s own MAC address and a conversation can begin using IP. In common bus networks like Ethernet using a hub or 801.11b all traffic can be seen by all hosts who’s NICs are in promiscuous mode, but things are a bit different on switched networks. A switch looks at the data sent to it and tries to only forwards packets to its intended recipient based on MAC address. Switched networks are more secure and help speed up the network by only sending packets where they need to go. There are ways around switches though ;). Using a program like Arpspoof, Ettercap or Cain we can lie to other machines on the local area network and tell them we have the IP they are looking for, thus funneling their traffic through us.

Прочетете остатъка от публикацията »

Here I will outline some use full Unix and NT commands for finding out more information about a given IP. Some of these techniques will fail depending on firewall rule sets.

How do I find my own IP?

How do I find out if an IP is contactable?

How do I find out what organization owns an IP?

How do I find out what OS a box is running?

How do I find out what ports are open/services are running?

How do I tell who is logged in to that box?

Any good all in one tools?

How Do I find the NetBIOS name from the IP?

How Do I find the IP from the NetBIOS name?

How can I see the traffic going between two IPs on a switched network?

Change Log

Прочетете остатъка от публикацията »

Прочетете остатъка от публикацията »

Introduction
Switching
(R)ARP packets
Altering ARP Tables
Going to reality
Workstations are vulnerable too
A worse scenario
ARP poison vaccine
Conclusion

Прочетете остатъка от публикацията »

 Introduction::

Welcome to another hackersclub tutorial.

In here I have figure out some very easy but cool ways to trace out the geographical location and various other infos like ISP details etc of a remote computer using its IP.

Well I guess its one of the most important must learn manul for boys out there if you want to impress your friends particularly gals whom you’ll meet online in a chat room and tell them their geographical locations and ISP details and make them surprised and impressed J.

In the practical execution of this manual you don’t have to work much as it is very simple only you have to use your brain to understand some symbols and some format of expressions and use your IQ to execute things the right way.

Прочетете остатъка от публикацията »

Прочетете остатъка от публикацията »

Бих искал да ви представия един от най добрите порт скенери в света ние го назоваваме NMAP, написан от Gordon Lyon (Fyodor) . Няма да преразказжам историята, а просто малко документация която съм събрал.

Прочетете остатъка от публикацията »

PORTNUMBERS.txt

PORTNUMBERS.pdf

PORTNUMBERS.html