Beginner Hacking Guide

For complete Beginners / Somewhat of a Hacker Guide

This is my second article now. This article is for anyone that is new / wants to start doing some real hacking. There are quite a few articles on web hacking on this site, but most are for more experienced hackers, so in this article I will put some basic hacking all in a nutshell.

First I will start with the people who are completely new to hacking. PLEASE I repeat PLEASE don’t start numerous threads or shout or spam “Please teach me how to hack.” This gets quite annoying, and you probably will not get a good response from someone. If you want to learn how to hack then you need to start at the very bottom of the pyramid. Start on this site with the Basic’s and then move onto the Javascript challenges. A great site to learn HTML (Hyper Text Markup Language – what you will need to have the most knowledge on, it is the most basic language, what you will need most knowledge for Basic challenges and other ones like Realistic Challenges.) and Javascript, as well as PHP and loads of other languages is http://www.w3schools.com. They have lots of examples, indepth tutorials and a very start to learning languages. Once you beat the first few Basic challenges, you might think “well how is this going to help me at all when I am trying to hack a site?” Well you have to start somewhere because how else are you going to get to the top of the pyramid without setting down a good foundation?

Another thing as a beginner to hacking and actually the whole time you are a hacker, you should be reading and learning about everything you can get your hands on. The more knowledge you have about how things work, will get give you the best way to exploit / solve the problem that you have at hand. GOOGLE should be your best friend!

THE SECTION FOR THE PEOPLE THAT HAVE BEEN HACKING FOR A BIT

Like I have said before Google should be your best friend! Many times you can find vulnerable sites by using google.

If you are going to do any hacking then you can’t just roam around the internet giving everyone you hack your I.P. address or else they can easily find you and then send authorities if they want to. So you need to use proxies!! Proxies are used so that it looks like you have a different I.P. I personally use multiple proxies so that it’s quite hard to track me, unless FBI gets involved in which they can find your I.P. much easier. So now you are asking yourself “well how do I set up a proxy?”. Well first google free proxies, I use http://www.proxy4free.com and I get a proxy from there. Find the list of I.P.’s there and if you are in FireFox(if you are using Internet Exploder (internet explorer) then get off it and go to firefox.com and download firefox!) then go to Tools -> Options -> General -> Connection Settings. Select from the radio button – Manual Proxy Configuration:. Then type into the text box next to HTTP Proxy the I.P. from the list of proxies at the free proxy site, and enter the port number into the port text box. Click OK and now you have configured the first part of the proxy. Now go to guardster.com and access their free proxy. Once on the free proxy page scroll down to where you type the address of the website you want to go and type in google.com. Once at google click on Language Tools(right of the search box) and scroll down to Translate Websites: type in the vulnerable site that you want to hack and there you go. You now have 3 I.P.’s that the webmaster would have to go through to finally find your I.P. which usually takes quite a bit of time to do so.

One of the easiest hacks to start with is Guestbook Hacking. Since guestbooks are the most common way of uploading your own text to a website, then you can upload your own code that will be embedded into a webpage! But, don’t just go around trying to hack guestbook’s by putting in your code, because then you will look like a newb if it doesn’t work and you will be reported lol. So you have to test the guestbook by maybe typing

or

if either of these comes out with a broken image, or “test” in large red font, then the guestbook allows HTML into the coding. If the creators are smart then they usually use a function in PHP called strip_tags() which will do just what it says therefore defending itself from being hacked. But if it is vulnerable then you put in HTML code that will refresh the page to a different page like google.com, so whenever someone goes to that guestbook, then they are taken directly to google.com. If you do not know how to refresh a page then look it up on http://www.w3schools.com. Just remember to use some proxies so that you don’t get caught!

Another easy hack that you can start with is FTP hacking. For more reference to this hack go to oxeh’s article on FTP Defacing at http://www.hellboundhackers.org/readarticle.php?article_id=242.

A type of hacking if you want to call it that is Social Engineering which is conning a person by talking to them and tricking them to answer some valuable answers for you. An example is getting the correct answer to someone’s security question on like hotmail, which Mr_Cheese has already given an article on. Titled “Hacking Hotmail” – it will give you a more in depth look at Social Engineering which is an easier type of hacking if you are good at negotiating lol.

One of the most common hack’s is using javascript injections and XSS (Cross Server scripting) which is quite complex lol and is needed for a whole new article. Basically though is you steal someone’s session cookies, and log into their account. It is much more intricate then that though. Lots of redirecting between your fake site and the real site.

Well this wraps up this article. Please rate / comment!!!!