Home » Archives for 2010
Hacking Wireless Networks Episode 2
List of Wireless Networks Scanned by NetStumbler |
to use a brute-force or dictionary attack. If your key is secure enough, a dictionary attack won’t work and it could take decades to crack it if you brute-force it. This is why most hackers don’t even bother. But I will explain you smarter ways to hack WAP keys also rather than these noobish methods. I will explain this in my next consecutive tutorials. So guys keep visiting.

How to Hack wifi or wireless networks Episode 1
- Wardriving
- Verifying network configurations
- Finding locations with poor coverage in one’s WLAN
- Detecting causes of wireless interference
- Detecting unauthorized (”rogue”) access points
- Aiming directional antennas for long-haul WLAN links

Recover windows xp after virus attack

How To Download And Install Linux
Thanks Folks For your positive response to A beginners guide to Linux Now in this article i will show you how to download and install linux in vmware work station.
Tools required
Bittorrent or any torrent client / Download Bittorrent Here
Vmware Workstation or Virtual Box or Virtual PC / Download vmware workstation 7.1.3 Here
If you already have vmware workstation 7.1.3 without lisence then make it a full version.
Vmware workstation 7.1.3 Keys
UA5MK-FAZ8H-08EMZ-PFWGT-W2UG6
CV5WA-4VD03-M8EKP-2WW5C-NPUG2
ZA3EK-DVG84-M851Z-RWM5E-PUK90
FG7RR-8GD4H-M84LZ-DPY5Z-MKR9A
CC1N2-42D93-484AZ-8ZMXX-WG2WA
CentOS 5.5 Linux / Download Centos 5.5 From here
Don,t worry about torrent speed these torrents are good.
After downloading all above mention essential things you are ready to install linux.
1 : How To install vmware 7.1.3 in windows video tutorial for newbies
After installing Vmware workstation you are ready to install centOS 5.5 on it.
How to install CentOS 5.5 in vmware see here
Part 1 : How to install cent OS 5.5
Part 2 : How to install CentOS 5.5
If you have any questions please comment here.
Regards
Adnan Anjum
.............................................................................................................................................................................................................

Top Rated Linux Distributions
There are various approaches to answering this question. The broad answer is: "any of them," but that's not very helpful if you're just looking for a place to start.
The problem is, there never can be one best Linux distribution for everyone, because the needs of each user tend to be unique. Telling someone who's looking for a good introductory distribution to try Gentoo, for instance, would be a mistake because for all its positive qualities, Gentoo is decidedly not a beginner's distro.
All too often, Linux aficionados will tend to list the distributions they like as the best, which is fair, but if they are not aware of their audience, they could suggest something that does not meet that person's needs. Finding a good Linux distribution is like finding a good match in an online dating service: good looks aren't the only quality upon which to judge a Linux distro.
To help users discover the Linux distribution that's best for them, this resource will definitively list the best candidates for the various types of Linux users to try. The use-case categories will be:
- Best Desktop Distribution
- Best Laptop Distribution
- Best Enterprise Desktop
- Best Enterprise Server
- Best LiveCD
- Best Security-Enhanced Distribution
- Best Multimedia Distribution
Best Linux Desktop Distribution
There are a lot of Linux distributions that have the primary focus of becoming the next best desktop replacement for Windows or OS X. Of all the categories in this list, this is the most sought-after, and contentious, group of distros.While it would be ideal to include many distributions on this list, the reality is that there really needs to be just one "best" Linux distribution. For early 2010, that distro has to be Canonical's Ubuntu.
Ubuntu edges out its closest contenders, Fedora and openSUSE, because its development team is constantly focused on the end-user experience. Canonical and the Ubuntu community have spent a lot of time and resources on bringing ease-of-use tools to this distribution, particularly in the area of installing Ubuntu and installing applications within Ubuntu.
In addition, Ubuntu's level of support for its desktop products is highly superior, which is important in this class of distributions since it is the most likely to contain users new to Linux. Both the official and unofficial Ubuntu documentation is robust and searchable, a big plus.
Best Linux Laptop Distribution
Laptop distributions almost fall into the same category as desktop users, but there are a number of key differences that make the criteria for evaluating a good laptop distribution important. Power management, docking tools, and wireless ease-of-use are critical to users on the go, as is having a distro that meets those needs.Right now, the best laptop distribution is openSUSE, one of the lead contenders for the desktop honors. On the laptop, openSUSE shines with great connectivity tools, such as an easy-to-use networking toolset that not only handles WiFi connectivity, but also CDMA/cellular modem connections.
openSUSE also deals with docking stations for laptops very well, including dual-monitor management on the fly. Power management is very granular, which is great for detailing various power needs you might find yourself needing.
Best Linux Enterprise Desktop
This category is replete with great contenders as well, and it's difficult to highlight just one. At the end of the day, though, the nod must be given to SUSE Linux Enterprise Desktop (SLED).The reason is simple: while SLED and its primary competitor Red Hat Enterprise Linux Desktop are nearly identical in features and support performance, SLED has the advantage of the openSUSE Build Service, a free and open service that lets applications be built and delivered to SUSE Linux and openSUSE products (as well as Red Hat and CentOS).
This is a very important differentiator in enterprise desktop development, as it means that SLED has the current advantage of application building and deployment in the enterprise arena.
Best Linux Enterprise Server
Again, in this category it really comes down to two main contenders: Red Hat Enterprise Linux (RHEL) and SUSE Linux Enterprise Server (SLES). Given the pick for the Enterprise Desktop category, you might expect SLES to get the "best of" label here.But, when all factors for the enterprise server are weighed, RHEL is still the king of this particular hill.
Red Hat edges out Novell with its server product, because RHEL users get a deeply mature distribution, and Red Hat's support structure is second to none in the enterprise channels.
Best Linux LiveCD
As Linux technology improves, users can easily choose the LiveCD version of practically any of the Linux distros listed here to get the best LiveCD experience for their needs.There is a specialized class of LiveCDs, however, that offers users utilities and tools for the specific purpose of repairing existing Linux and Windows installations. These distros are very useful to have regardless of what primary Linux distribution you like to use, because in a crisis they are invaluable to own.
In this class of distribution, KNOPPIX is hands-down the most complete and useful distro. Loaded on a CD or USB storage device, KNOPPIX will let you recover from nearly any rare Linux system crash as well as the much-less-rare Windows breakdowns.
Best Linux Security-Enhanced Distribution
Linux is inherently very secure compared to other operating systems, but there's always room for improvement.One of the challenges for locking down Linux is if you are not careful, you can take away too much functionality. Another challenge is that the best security-oriented Linux distro, SELinux, is historically known to be difficult to configure correctly. Still, if security out of the box is your priority, this is the best place to begin.
Another approach is the white hat method: using security and forensic tools to examine your existing installation, determine the holes, then lock your system down based on what gaps you find. If you have the time and inclination, this is a great way to do it, because this will get any existing system more secure right away.
For the white hat approach, the best distribution is BackTrack Linux, a dedicated penetration testing distro that will enable you to safely try to crack any system you are caretaking. Its toolset and strong community give it the advantage in this category.
Best Linux Multimedia Distribution
General Linux distributions have come a long way in terms of multimedia performance. Rare is the audio or video file that can't be played on Linux. Music services such as Rhapsody and video sites like YouTube and Hulu are also standards-compliant and accessible to Linux users.Still, for those users who are multimedia creators as well as consumers, there are Linux distributions that contain powerful tools for audio and video editing.
The best in this class is currently Ubuntu Studio. For audio, video, and graphic production, it contains a very complete set of tools, as well as format and codec support for a huge range of multimedia formats.
The applications contained in Ubuntu Studio are the same or similar to those used by major studios to create cutting edge work, so users are getting the best apps, coupled with the strong support ethos already found in the Ubuntu community.
In The Next Article I Will Guide You How To Download And Install Linux.
..................................................................................................................................................................................................................

A beginners guide to Linux
1. What is Linux?
Linux is a free Unix-type operating system for computer devices. The operating system is what makes the hardware work together with the software. The OS is the interface that allows you to do the things you want with your computer. Linux is freely available to everyone.OS X
and Windows
are other widely used OS. Linux gives you a graphical interface that makes it easy to use your computer, yet it still allows those with know-how to change settings by adjusting
0
to 1
. It is only the kernel that is named Linux, the rest of the OS are GNU tools. A package with the kernel and the needed tools make up a
Linux distribution
. Mandrake , SUSE Linux, Gentoo and Redhat are some of the many variants. GNU/Linux OS can be used on a large number of boxes, including i386+ , Alpha, PowerPC and Sparc. 2. Understanding files and folders
Linux is made with one thought in mind: Everything is a file.A blank piece of paper is called a file in the world of computers. You can use this piece of paper to write a text or make a drawing. Your text or drawing is called information. A computer file is another way of storing your information.
If you make many drawings then you will eventually want to sort them in different piles or make some other system that allows you to easily locate a given drawing. Computers use folders to sort your files in a hieratic system.
A file is an element of data storage in a file system. Files are usually stored on harddrives, cdroms and other media, but may also be information stored in RAM or links to devices.
To organize our files into a system we use folders. The lowest possible folder is root / where you will find the user homes called /home/.
/ /home/ /home/mom/ /home/dad/
Behind every configurable option there is a simple human-readable text file you can hand-edit to suit your needs. These days most programs come with nice GUI (graphical user interface) like Mandrakes Control Center and Suses YAST that can smoothly guide you through most configuration. Those who choose can gain full control of their system by manually adjusting the configuration files from foo=yes to foo=no in an editor.
Almost everything you do on a computer involves one or more files stored locally or on a network.
Your filesystems lowest folder root / contains the following folders:
/bin | Essential user command binaries (for use by all users) |
/boot | Static files of the boot loader, only used at system startup |
/dev | Device files, links to your hardware devices like /dev/sound, /dev/input/js0 (joystick) |
/etc | Host-specific system configuration |
/home | User home directories. This is where you save your personal files |
/lib | Essential shared libraries and kernel modules |
/mnt | Mount point for a temporarily mounted filesystem like /mnt/cdrom |
/opt | Add-on application software packages |
/usr | /usr is the second major section of the filesystem. /usr is shareable, read-only data. That means that /usr should be shareable between various FHS-compliant hosts and must not be written to. Any information that is host-specific or varies with time is stored elsewhere. |
/var | /var contains variable data files. This includes spool directories and files, administrative and logging data, and transient and temporary files. |
/proc | System information stored in memory mirrored as files. |
The only folder a normal user needs to use is
/home/you/
- this is where you will be keeping all your documents. /home/elvis/Documents /home/elvis/Music /home/elvis/Music/60s
Files are case sensitive, "myfile" and "MyFile" are two different files.
For more details, check out:
3. Understanding users and permissions
Linux is based on the idea that everyone using a system has their own username and password.Every file belongs to a user and a group, and has a set of given attributes (read, write and executable) for users, groups and all (everybody).
A file or folder can have permissions that only allows the user it belongs to to read and write to it, allowing the group it belongs to to read it and at the same time all other users can't even read the file.
4. Who and what is root
Linux has one special user calledroot
(this is the user name). Root is the "system administrator" and has access to all files and folders. This special user has the right to do anything. You should never log on as this user unless you actually need to do something that requires it!
Use
su -
to temporary become root and do the things you need, again: never log into your sytem as root! Root is only for system maintenance, this is not a regular user (LindowsOS don't have any user management at all and uses root for everything, this is a very bad idea!).
You can execute a command as root with:
su -c 'command done as root'
Gentoo Linux: Note that on Gentoo Linux only users that are member of the wheel group are allowed to su to root.
In The Next Article I Will Post How To Install Linux.
............................................................................................................................................................................................................

How To Recover deleted or corrupt photos
DiskInternals Flash Recovery is a flash memory file recovery tool that restores all corrupted and deleted photographs or the ones that were lost due to hardware malfunction. This utility works even if a memory card was re-formatted.
Features:
• Easy Recovery Wizard.
• Can preview and recover JPEG, JPG, TIFF, BMP, PNG, GIF, TGA and other images.
• Can preview and recover RAW images:
• CRW - Canon Digital Camera Raw Image Format.
• CR2 - Canon Digital Camera Raw Image Format version 2.0.
• NEF - Nikon Digital SLR Camera Raw Image File.
• PEF - Pentax Raw Image Format
• RAF - Fuji CCD-RAW Graphic File.
• X3F - Sigma Camera RAW Picture File.
• BAY - Kodak/Roper Bayer Picture Sequence.
• ORF - Descent 3 Outrage Room Format.
• MRW - Minolta Diamage Raw Image File.
• RAW - Image Alchemy HSI Temporary Raw Bitmap
• SRF - Sony DSC-F828 Raw Image File.
• Other RAW images
• Works under Microsoft® Windows® 95, 98, ME, NT, 2000, XP, 2003 Server.
• Supported file systems: FAT12, FAT16, FAT32, NTFS (NT 4), NTFS5 (2000, XP).
• Recovered files can be saved on any (including network) disks visible to the host operating system.
• Creates recovery snapshot files for logical drives. Such files can be processed like regular disks.

7Loader Windows 7 Genuine Activation

Free Full Version Software to Recover Deleted Files
The file recovery software makes it easy to get back deleted files and folders as well as data lost after virus attacks, system failures, hard disk damage and memory card corruption.
Using the data recovery program could not be easier. Just select the disk that used to contain your files, and Hetman Uneraser will perform the complete scan automatically. You can select, filter, sort, and preview the files it discovers before performing the data recovery step.
Key features
- Recovers Word and Excel documents, digital pictures and RAW files, audio and video files, compressed archives, email, and many other types of data;
- Supports all versions and revisions of NTFS and FAT file systems;
- Unerases deleted files, recovers files and folders from formatted and repartitioned disks, recovers lost pictures from all types of memory cards such as SD, SDHC, Compact Flash, Memory Stick, and so on;
- Recovers data from corrupted and inaccessible hard drives and disks after a computer failure;
- Recovers files removed from Windows Recycle Bin
- By Lokish

TwitterPasswordDecryptor – Instantly Recover Twitter Account Passwords
TwitterPasswordDecryptor is the FREE tool to instantly recover Twitter account passwords stored by popular web browsers. Most web browsers store the login credentials for visited websites so that user don’t have to remember and enter the password every time. Each of these web browsers use their own proprietary encryption mechanism to store the login passwords including Twitter account passwords.TwitterPasswordDecryptor automatically crawls through each of these browsers and instantly recovers all of the stored Twitter passwords.
TwitterPasswordDecryptor presents both GUI interface as well as command line version, the later is more helpful for Penetration testers in their work. Apart from normal users who can use it to recover their lost password, it can come in handy for Forensic officials who can get hold of any stored Twitter account passwords and then use that Twitter profile information to further extend their investigation.
TwitterPasswordDecryptor is fully Portable tool which can be directly run anywhere without installing locally. It also comes with Installer for those who wants to install it locally and use it on regular basis. It works on wide range of platforms starting from Windows XP to latest operating system Windows 7.
Features
Currently supports recovering of the stored Twitter account password from following popular Internet browsers:
- Internet Explorer (all versions from 4 to 8)
- Firefox
- Google Chrome
- Opera Browser
TwitterPasswordDecryptor.zip
Source:Darkside
................................................................................................................................................................................................

Get Someone's IP Through AIM/MSN/Chat
Found a great website that logs IPs and gives you the lat/long./isp.
1)Create Account
http://www.chatrack.frihost.net/index-1.php
2)Get one of the links and tell someone on AIM or whatever to click it, choose any of the images and tell them you painted it or some stupid shit like that.
3)When they look at the image, it logs their IP.
4)Bonus points:
-Tell them its animated and 20 seconds in it will change, this allows the website to have time to ensure all their info is retrieved.
........................................................................................................................................................................................

Beginners Guide To Hacking Wireless Networks
Hacking WEP wifi passwords
Basic Entry into a WEP Encrypted Network
This Tutorial explains EVERYTHING in detail So, it is quite long. Enjoy.
1. Getting the right tools
This Tutorial is in Bt3 But Download The Latest Release Bt4.
Download Backtrack 4. It can be found here:
http://www.backtrack-linux.org/downloads/
I downloaded the Dvd iso and burned it to a Dvd. Insert your BT4 Dvd/usb drive and reboot your computer into BT4. I always load into the 3rd boot option from the boot menu. (VESA/KDE) You only have a few seconds before it auto-boots into the 1st option so be ready. The 1st option boots too slowly or not at all so always boot from the 2nd or 3rd. Experiment to see what works best for you.
2. Preparing the slave network for attack
Once in BT4, click the tiny black box in the lower left corner to load up a "Konsole" window. Now we must prep your wireless card.
Type:
airmon-ng
You will see the name of your wireless card. (mine is named "ath0") From here on out, replace "ath0" with the name of your card.
Now type:
airmon-ng stop ath0
then type:
ifconfig wifi0 down
then:
macchanger --mac 00:11:22:33:44:55 wifi0
then:
airmon-ng start wifi0
What these steps did was to spoof (fake) your mac address so that JUST IN CASE your computeris discovered by someone as you are breaking in, they will not see your REAL mac address. Moving on...
Now it's time to discover some networks to break into.
Type:
airodump-ng ath0
Now you will see a list of wireless networks start to populate. Some will have a better signal than others and it is a good idea to pick one that has a decent signal otherwise it will take forever to crack or you may not be able to crack it at all.
Once you see the network that you want to crack, do this:
hold down ctrl and type c
This will stop airodump from populating networks and will freeze the screen so that you can see the info that you need.
**Now from here on out, when I tell you to type a command, you need to replace whatever is in parenthesis with what I tell you to from your screen. For example: if i say to type:
-c (channel)
then dont actually type in
-c (channel)
Instead, replace that with whatever the channel number is...so, for example you would type:
-c 6
Can't be much clearer than that...lets continue...
Now find the network that you want to crack and MAKE SURE that it says the encryption for that network is WEP. If it says WPA or any variation of WPA then move on...you can still crack WPA with backtrack and some other tools but it is a whole other ball game and you need to master WEP first.
Once you've decided on a network, take note of its channel number and bssid. The bssid will look something like this --> 05:gk:30:fo:s9:2n
The Channel number will be under a heading that says "CH".
Now, in the same Konsole window, type:
airodump-ng -c (channel) -w (file name) --bssid (bssid) ath0
the FILE NAME can be whatever you want. This is simply the place that airodump is going to store the packets of info that you receive to later crack. You don't even put in an extension...just pick a random word that you will remember. I usually make mine "wepkey" because I can always remember it.
**Side Note: if you crack more than one network in the same session, you must have different file names for each one or it won't work. I usually just name them wepkey1, wepkey2, etc.
Once you typed in that last command, the screen of airodump will change and start to show your computer gathering packets. You will also see a heading marked "IV" with a number underneath it. This stands for "Initialization Vector" but in noob terms all this means is "packets of info that contain clues to the password." Once you gain a minimum of 5,000 of these IV's, you can try to crack the password. I've cracked some right at 5,000 and others have taken over 60,000. It just depends on how long and difficult they made the password.
Now you are thinking, "I'm screwed because my IV's are going up really slowly." Well, don't worry, now we are going to trick the router into giving us HUNDREDS of IV's per second.
3. Actually cracking the WEP password
Now leave this Konsole window up and running and open up a 2nd Konsole window. In this one type:
aireplay-ng -1 0 -a (bssid) -h 00:11:22:33:44:55 ath0
http://i574.photobucket.com/albums/ss184...eplay1.jpg
This will send some commands to the router that basically cause it to associate with your computer even though you are not officially connected with the password. If this command is successful, you should see about 4 lines of text print out with the last one saying something similar to "Association Successful :-)" If this happens, then good! You are almost there. Now type:
aireplay-ng -3 -b (bssid) -h 00:11:22:33:44:55 ath0
http://i574.photobucket.com/albums/ss184...eplay2.jpg
This will generate a bunch of text and then you will see a line where your computer is gathering a bunch of packets and waiting on ARP and ACK. Don't worry about what these mean...just know that these are your meal tickets. Now you just sit and wait. Once your computer finally gathers an ARP request, it will send it back to the router and begin to generate hundreds of ARP and ACK per second. Sometimes this starts to happen within seconds...sometimes you have to wait up to a few minutes. Just be patient. When it finally does happen, switch back to your first Konsole window and you should see the number underneath the IV starting to rise rapidly. This is great! It means you are almost finished! When this number reaches AT LEAST 5,000 then you can start your password crack. It will probably take more than this but I always start my password cracking at 5,000 just in case they have a really weak password.
Now you need to open up a 3rd and final Konsole window. This will be where we actually crack the password. Type:
aircrack-ng -b (bssid) (filename)-01.cap
Remember the filename you made up earlier? Mine was "wepkey". Don't put a space in between it and -01.cap here. Type it as you see it. So for me, I would type wepkey-01.cap
Once you have done this you will see aircrack fire up and begin to crack the password. typically you have to wait for more like 10,000 to 20,000 IV's before it will crack. If this is the case, aircrack will test what you've got so far and then it will say something like "not enough IV's. Retry at 10,000." DON'T DO ANYTHING! It will stay running...it is just letting you know that it is on pause until more IV's are gathered. Once you pass the 10,000 mark it will automatically fire up again and try to crack it. If this fails it will say "not enough IV's. Retry at 15,000." and so on until it finally gets it.
http://i574.photobucket.com/albums/ss184...crack1.jpg
If you do everything correctly up to this point, before too long you will have the password! now if the password looks goofy, dont worry, it will still work. some passwords are saved in ASCII format, in which case, aircrack will show you exactly what characters they typed in for their password. Sometimes, though, the password is saved in HEX format in which case the computer will show you the HEX encryption of the password. It doesn't matter either way, because you can type in either one and it will connect you to the network.
Take note, though, that the password will always be displayed in aircrack with a colon after every 2 characters. So for instance if the password was "secret", it would be displayed as:
se:cr:et
This would obviously be the ASCII format. If it was a HEX encrypted password that was something like "0FKW9427VF" then it would still display as:
0F:KW:94:27:VF
Just omit the colons from the password, boot back into whatever operating system you use, try to connect to the network and type in the password without the colons and presto! You are in!
It may seem like a lot to deal with if you have never done it, but after a few successful attempts, you will get very quick with it. If I am near a WEP encrypted router with a good signal, I can often crack the password in just a couple of minutes.
I am not responsible for what you do with this information. Any malicious/illegal activity that you do, falls completely on you because...technically...this is just for you to test the security of your own network. :-)
I will gladly answer any legitimate questions anyone has to the best of my ability.
HOWEVER, I WILL NOT ANSWER ANYONE THAT IS TOO LAZY TO READ THE WHOLE TUT AND JUST ASKS ME SOME QUESTION THAT I CLEARLY ANSWERED. No one wants to hold your hand through this...read the tut and go experiment until you get it right.
There are rare occasions where someone will use WEP encryption with SKA as well. (Shared Key Authentication) If this is the case, additional steps are needed to associate with the router and therefore, the steps I lined out here will not work. I've only seen this once or twice, though, so you probably won't run into it. If I get motivated, I may throw up a tut on how to crack this in the future.
Hacking WEP wifi passwords
By kumalynx
......................................................................................................................................................................................................

Install IIS Server for ASP asp.net Script in Windows XP
Install IIS Server for ASP asp.net Script in Windows XP
If you are running Windows XP Professional on your computer you can install Microsoft’s web server, Internet Information Server 5.1 (IIS) for free from the Windows XP Pro installation CD and configure it to run on your system by following the instructions below: -
3. Place a tick in the check box for ‘Internet Information Services (IIS)’ leaving all the default installation settings intact.
4. Once IIS is installed on your machine you can view your home page in a web browser by typing ‘http://localhost’ (you can substitute ‘localhost’ for the name of your computer) into the address bar of your web browser. If you have not placed your web site into the default directory you should now be looking at the IIS documentation.
5. If you are not sure of the name of your computer right-click on the ‘My Computer’ icon on your desktop, select ‘Properties’ from the shortcut menu, and click on the ‘Computer Name’ tab.
6. Your default web directory to place your web site in is ‘C:Inetpubwwwroot’, but if you don’t want to over write the IIS documentation found in this directory you can set up your own virtual directory through the ‘Internet Information Services’ console.
7. The ‘Internet Information Services’ console can be found in the ‘Administration Tools’ in the ‘Control Panel’ under ‘Performance and Maintenance’, if you do not have the control panel in Classic View.
8. Double-click on the ‘Internet Information Services’ icon.
Once the ‘Internet Information Services’ console is open you will see any IIS web services you have running on your machine including the SMTP server and FTP server, if you chose to install them with IIS.
9. To add a new virtual directory right click on ‘Default Web Site’ and select ‘New’, followed by ‘Virtual Directory’, from the drop down list.
10 Next you will see the ‘Virtual Directory Creation Wizard’ from the first screen click the ‘next’ button.
11. You will then be asked to type in an ‘Alias’ by which you will access the virtual directory from your web browser (this is the name you will type into your web browser after ‘localhost’ to view any web pages you place in the directory).
12. Next you will see a ‘Browse…’ button, click on this to select the directory your web site pages are in on your computer, after which click on the ‘next’ button to continue.
13. On the final part of the wizard you will see a series of boxes, if you are not worried about security then select them all, if you are and want to run ASP scripts then check the first two, followed by the ‘next’ button.
14. Once the virtual directory is created you can view the web pages in the folder by typing ‘http://localhost/aliasName’ (where ‘aliasName’ is, place the alias you called the virtual directory) into the address bar of your web browser (you can substitute ‘localhost’ for the name of your computer if you wish).

How to crack IIS FTP password using Brute-Force
FTP is an application or service or protocol which can be used to transfer files from one place to another place ,it really comes very handy during transfer of files from a local box to a remote one .Suppose someone get access to your FTP then he/she can cause nightmare for you by uploading unappropriate images or files etc.Here we will discuss how we can crack the password of IIS installed FTP service in Windows.
What is Brute-Force?
Brute-force is a type of attack in which every possible combination of letters, digits and special characters are tried until the right password is matched with the username. The main limitation of this attack is its time factor. The time it takes to find the proper match mainly depends on the length and complexity of the password.Here I will be using this attack to crack the password.So,lets start….Requirements:
- The tool we will be using ” BrutusA2”(Download: http://www.hoobie.net/brutus/)
- You need to know the target suppose “ftp://123.123.xx.xxx”
Procedure:
Step 1.Here I have shown an authentication page of an FTP service in the image below and in the following steps we will crack its password using brutus.Step 2.Now open up “Brutus” and type your desire target ,select wordlist and select “FTP” from the drop down menu and click start. If you are confused then follow the image below.
Step 3.The time it takes as I mentioned above depends on the complexity and length of the password.So after clicking the start button wait for the time as mentioned in the tool.The password will be displayed as shown above.
Recommendation: I would recommend the readers to try it in a virtual environment as I did and enjoy the trick.It is not advisable to try it on some unknown user without prior permission.
By Satyajit Das
.........................................................................................................................................................................................................
