Tuesday, November 26, 2013

LVM with HP-UX 11i v3

Creating a Mount Point after Presenting a LUN from Storage 

 

1.  Identify newly added LUN.
2.  Create Physical volume(PV)
3.  Create Volume Group(VG)
4.  Create Logical Volume(LV)
5.  Create File system
6.  Mount File system
7.  Entries in /etc/fstab file.

Here are the Explanations with commands to perform above plan of action:

Identify newly added LUN

Create a LUN from storage and present to the server on which you want to assign a new mount point. To detect new LUN on the server use below command, it will show you all disks presented to the server till now.

#ioscan –fnNC disk





 





Here:

f:- Generate a full listing, displaying the module's class, instance number, hardware path, driver,  software state, hardware type, and a brief description.
n:- Generate a full listing, displaying the module's class, instance number, hardware path, driver, software state, hardware type, and a brief description.
C:- strict the output listing to those devices belonging to the specified class
N:- Display the agile view of the system hardware.

Below command shows the difference between persistent DFS and Legacy DSF. In next steps we are going to use persistent DSF.

 #ioscan –m dsf

Persistent DSF           Legacy DSF(s)
========================================
/dev/pt/pt4                         /dev/rscsi/c0t0d0
                                          /dev/rscsi/c2t0d0
                                          /dev/rscsi/c4t0d0
                                          /dev/rscsi/c6t0d0
/dev/rdisk/disk41             /dev/rdsk/c1t0d0
                                          /dev/rdsk/c3t0d0                
                                          /dev/rdsk/c5t0d0
                                          /dev/rdsk/c7t0d0
/dev/rdisk/disk42              /dev/rdsk/c1t0d1
                                          /dev/rdsk/c3t0d1
                                          /dev/rdsk/c5t0d1
                                          /dev/rdsk/c7t0d1

 To find which disks are not used in the LVM.
 #pvdisplay –l  /dev/disk/*

/dev/disk/disk41:LVM_Disk=no
/dev/disk/disk42:LVM_Disk=yes
/dev/disk/disk43:LVM_Disk=yes
/dev/disk/disk44:LVM_Disk=yes
/dev/disk/disk45:LVM_Disk=yes

From the above output we are able to find disk41 is not used in LVM. So we proceed with disk41. And cross check with the size of disk.

#diskinfo /dev/rdisk/disk41

SCSI describe of /dev/rdisk/disk41:
             vendor: HP
         product id: OPEN-V
               type: direct access
               size: 56691712 Kbytes
   bytes per sector: 512

Output suggests that it is the same size of disk for which we are looking for. So proceed to next step.

Create Physical volume(PV)

A disk has to be initialized before LVM can use it.
 
 
#pvcreate /dev/rdisk/disk41

Physical volume "/dev/rdisk/disk41" has been successfully created.

 If disk41 already initialized before then you will get below error message

# pvcreate: The Physical Volume already belongs to a Volume Group

If you are sure the disk is free you can force the initialization using the -f option:

#pvcreate –f /dev/rdisk/disk41

Create Volume Group(VG)


Select a unique minor number for the VG:

# ll /dev/*/group

crw-r--r-- 1 root sys 64 0x000000 Apr 4 2010 /dev/vg00/group
crw-r--r-- 1 root sys 64 0x010000 Oct 26 15:52 /dev/vg01/group
crw-r--r-- 1 root sys 64 0x020000 Aug 2 15:49 /dev/vg02/group

Create the VG control file (group file):

# mkdir /dev/vg03

# mknod /dev/vg03/group c 64 0x030000

Create the VG
#vgcreate  -s 256 /dev/vg03 /dev/disk/disk41

Volume group "/dev/vg03" has been successfully created.
Volume Group configuration for /dev/vg03 has been saved in /etc/lvmconf/vg03.conf

 s: Size of physical extend(PE) in MB.

If you have 2 or more PV to add in a VG, you can add them in one go, just adding next to disk41 with a space.
#vgcreate –s 256 /dev/vg03 /dev/disk/disk41 /dev/disk/disk40

To display VG information 
 
#vgdisplay  -v /dev/vg03

--- Volume groups ---
VG Name                           /dev/vg03
VG Write Access                read/write
VG Status                           available
Max LV                             255
Cur LV                              1
Open LV                           1
Max PV                             16
Cur PV                              1
Act PV                              1
Max PE per PV                1727
VGDA                               2
PE Size (Mbytes)             256
Total PE                           216
Alloc PE                           0
Free PE                            216
Total PVG                         0
Total Spare PVs                0
Total Spare PVs in use      0
VG Version                       1.0
VG Max Size                    6908g
VG Max Extents               27632

Create Logical Volume(LV)

To create a LV from a VG (option: L- assigns Size in MB; l - Assigns size in Number of PE, n – assigns name to LV)

# lvcreate  -L 55040 –n /dev/vg03/lvol1 /dev/vg03

Logical volume "/dev/vg03/lvol1" has been successfully created with character device "/dev/vg03/lvol1"
Logical volume "/dev/vg03/lvol1" has been successfully extended.
Volume Group configuration for /dev/vg03 has been saved in /etc/lvmconf/vg03.conf

 To display LV information

# lvdisplay -v /dev/vg03/lvol1

--- Logical volumes ---
LV Name                          /dev/vg03/lvol1
VG Name                         /dev/vg03
LV Permission                 read/write
LV Status                          available/syncd
Mirror copies                    0
Consistency Recovery     MWC
Schedule                           parallel
LV Size (Mbytes)             55040
Current LE                        215
Allocated PE                     215
Stripes                               0
Stripe Size (Kbytes)          0
Bad block                          on
Allocation                         strict
IO Timeout (Seconds)      default

Create File system

 You can use newfs to put a FS onto the LV:

# newfs  -F vxfs /dev/vg03/rlvol1

F: - File system type either hfs or vxfs. Nowadays it is always recommended to use a VxFS (=JFS) filesystem.

Mount File system

Mounting created File System

#mkdir /data


#mount /dev/vg03/lvol1 /data

Use the bdf command to see the mounted file systems

#bdf

Entries in /etc/fstab file

Make entries in /etc/fstab file to make mount point permanent between reboots. You can do this with below command or open this file with vi editor and add entries at the end.

# echo “/dev/vg03/lvol1  /data vxfs defaults 0 2” >> /etc/fstab


#vi /etc/fstab

# System /etc/fstab file.  Static information about the file systems
# See fstab(4) and sam(1M) for further details on configuring devices.
/dev/vg00/lvol3 / vxfs delaylog 0 1
/dev/vg00/lvol1 /stand vxfs tranflush 0 1
/dev/vg00/lvol4 /home vxfs delaylog 0 2
/dev/vg00/lvol5 /opt vxfs delaylog 0 2
/dev/vg00/lvol6 /tmp vxfs delaylog 0 2
/dev/vg00/lvol7 /var vxfs delaylog 0 2
/dev/vg00/lvol8 /usr vxfs delaylog 0 2
/dev/vg03/lvol1 /data vxfs defaults 0 2
 
 

Verifying Which Ports Are Listening

nmap -sT -O localhost
The output of this command looks like the following:
Starting nmap V. 3.00 ( www.insecure.org/nmap/ )
Interesting ports on localhost.localdomain (127.0.0.1):
(The 1596 ports scanned but not shown below are in state: closed)
Port       State       Service
22/tcp     open        ssh
111/tcp    open        sunrpc
515/tcp    open        printer
834/tcp    open        unknown
6000/tcp   open        X11
Remote OS guesses: Linux Kernel 2.4.0 or Gentoo 1.2 Linux 2.4.19 rc1-rc7)

Nmap run completed -- 1 IP address (1 host up) scanned in 5 seconds
 
 
 

Redhat / CentOS / Fedora Linux Open Port


Open flle /etc/sysconfig/iptables:
# vi /etc/sysconfig/iptables

Append rule as follows:
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT

Save and close the file. Restart iptables:
# /etc/init.d/iptables restart

 Open port 110

Append rule as follows:
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 110 -j ACCEPT

Open port 143

Append rule as follows:
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 143 -j ACCEPT

 Restart iptables service

Type the following command:
# service iptables restart

Verify that port is open

Run following command:
netstat -tulpn | less

Thursday, March 14, 2013

Ethical Hacking via Wifi Hacking Android Apps

n a world where most people are almost frequently connected via the internet even when on the go, it’s easy to forget about security. The need to stay in constant communication with friends, family, or colleagues tends to overshadow the need for privacy and security. As such, many are still using public Wi-Fi networks despite the uncertain safety or questionable authenticity of such networks.

Home network users are also getting too complacent with their network’s security. Little do they know that even if their Wi-Fi network is password-protected, it can still be easily hacked and accessed by other willing internet users. The result is a number of security risks, such as having their personal usernames, passwords, and even online banking details obtained. For the entrepreneurs who are using VoIP apps like RingCentral as a way of virtually expanding their office, there’s the risk of exposing sensitive data and business contacts. Speed of internet connection also suffers because of other people trying to…that is to say, borrow their internet connection. Ethical Hacking to Find Security Loopholes In order to alert internet users (whether they’re corporate users or regular home network subscribers) about security breaches or loopholes in their Wi-Fi networks, computer or network experts are resorting to ethical hacking.

Ethical hacking is the “white hat” hacking of a security system with the owners’ knowledge for the purpose of tracing vulnerabilities that any “black hat”, or malicious hacker, can take advantage of. In other words, it’s the permitted process of checking weaknesses in a security or network system by trying to permeate the system as a real hacker would. This practice started around the ‘70s when a group dubbed as the red team was used by the US government to test and hack its computer systems. Since then, ethical hacking has become a common practice even in the private and corporate sectors. Companies like IBM have their own teams of ethical hackers. Ethical Hacking in the Smartphone Age As the number of smartphone users has increased, so did the number of public Wi-Fi networks. Coffee shops, restaurants, hotels, and many other public places are offering free Wi-Fi connection as a means of luring customers in. The problem is, not all public Wi-Fi networks scanned or detected by mobile devices are legit. Some are actually fake networks. People behind such fake Wi-Fi networks only have one goal – to obtain private user information such as usernames, passwords, and bank details. In addition to this, private Wi-Fi networks are becoming more susceptible to piggybacking, or the use of a Wi-Fi network without the owner’s knowledge or consent.

While the idea of piggybacking may mean using another person’s internet connection, it doesn’t necessarily mean that there’s the involvement of hacking. Hacking another person’s Wi-Fi network to gain internet access, however, has become extremely possible these days. As already mentioned, many home network users are clueless when it comes to their own network’s security. Thus, Wi-Fi hacking apps on smartphones like those available for Android users are becoming helpful tools to test vulnerabilities in a Wi-Fi network. Examples of Wi-Fi Hacking Android Apps If you’re an Android phone user, by simply typing the keyword Wi-Fi hack on the Google Play homepage, you’re given a wide variety of Wi-Fi hacking apps in the search results. Some of them are:  

Wifi Hacker Plus This app lets you decrypt the password of a Wi-Fi network in your area. If you need to know the password or even disable it, this is the app to use.  

Wifi Hacker Real This app can break a WPA, WEP, or WPA2 password. To use, just tap to launch the app, press the rescan button, choose a network, wait for the app to do its work, and the chosen network’s password is revealed.

 Hackers Handbook Pro Its description on Google Play says that the app “is for educational purposes only” and is “designed for security testers”. It’s an app that gives step-by-step instructions on hacking. Though these apps allow Android phone owners to hack other peoples’ Wi-Fi networks, it’s advised to use them only for testing purposes and not for any malicious activities. Should you want to use any of these apps, inform the owner’s network about it first and show them how vulnerable their network is.

Wednesday, February 27, 2013

ARPwner – ARP & DNS Poisoning Attack Tool

ARPwner is a tool to do ARP poisoning and DNS poisoning attacks, with a simple GUI and a plugin system to do filtering of the information gathered, also has a implementation of sslstrip and is coded 100% in python and on Github, so you can modify according to your needs. This tool was released by Nicolas Trippar at BlackHat USA 2012. For the tool to work you need pypcap, so assuming are using a Debian derivative OS (like all sane people do) – you’ll need to do this first: bt@root# apt-get install python-pypcap You can download ARPwner here: download here

Monday, January 7, 2013

sql fingerprint next generation

Microsoft SQL Server fingerprinting can be a time consuming process, because it involves trial and error methods to determine the exact version. Intentionally inserting an invalid input to obtain a typical error message or using certain alphabets that are unique for certain server are two of the many ways to possibly determine the version, but most of them require authentication, permissions and/or privileges on Microsoft SQL Server to succeed. Instead, ESF.pl uses a combination of crafted packets for SQL Server Resolution Protocol (SSRP) and Tabular Data Stream Protocol (TDS) (protocols natively used by Microsoft SQL Server) to accurately perform version fingerprinting and determine the exact Microsoft SQL Server version. ESF.pl also applies a sophisticated Scoring Algorithm Mechanism (Powered by Exploit Next Generation++ Technology), which is a much more reliable technique to determine the Microsoft SQL Server version. It is a tool intended to be used by: This version is a completely rewritten version in Perl, making ESF.pl much more portable than the previous binary version (Win32), and its original purpose is to be used as a tool to perform automated penetration test. This version also includes the followingMicrosoft SQL Server versions to its fingerprint database: Microsoft SQL Server 2012 SP1 (CU1) Microsoft SQL Server 2012 SP1 Microsoft SQL Server 2012 SP1 CTP4 Microsoft SQL Server 2012 SP1 CTP3 Microsoft SQL Server 2012 SP0 (CU4) Microsoft SQL Server 2012 SP0 (MS12-070) Microsoft SQL Server 2012 SP0 (CU3) Microsoft SQL Server 2012 SP0 (CU2) Microsoft SQL Server 2012 SP0 (CU1) Microsoft SQL Server 2012 SP0 (MS12-070) Microsoft SQL Server 2012 SP0 (KB2685308) Microsoft SQL Server 2012 RTM download

ScanPlanner : NMAP now Online

sekarang dah ada tools baru tuk run nmap secara online link

MiTM Attacks Against Mobile Devices

Normally when one thinks of MiTM (Man In The Middle) attacks over wireless802.11 protocols, thoughts of ARP Poisoning and Wifi-Pineapples come to mind. Traditionally these attacks were conducted against laptops using embedded wireless functionality. Now that most mobile phones and tablet devices have Wifi capabilities in addition to access to their cellular networks, they have added themselves to the list of potential victims. Wifi only devices, such as Google Android tablets and Apple Ipads, are particularly at risk to these kinds of attacks, especially in public environments such as airports. If you use an Android or iOS device to connect to a Microsoft Exchange server over WiFi, security researcher Peter Hannay a PhD student, researcher and lecturer based at Edith Cowan University in Perth Western Australia has taken readily available security tools and prepared a rather damaging MiTM attack targeting mobile devices over WiFi. The purpose of this attack is to impersonate an application the mobile device is attempting to connect to (MS Exchange Server in this case). Once the connection is established, the bogus Exchange Serve sends provisioning commands back to the device. Among commands that can be sent is the option to remotely wipe the device of its data. How it works: The attacker would enable their wifi-pineapple or similar platform to perform DNS spoofing and offer up a self-signed SSL certificate to clients that connect to i. This would prompt the connecting victim to accept this bogus certificate and make the connection. Unfortunately most end users aren’t particularly security savvy, click through the warning message, and are then subjected to what the attacker has in store for them. In this case, possibly the issuance of a command to remotely wipe the device. The future does not look particularly bright for mobile device owners. Pending research is attempting to add the implementation of an open source software protocol library with the objectives of emulating the ActiceSync protocol and serving as a translation layer between mobile MS Exchange clients and other types of servers. This could ultimately provide such nefarious activities as retrieving data from the mobile device such as address books, contacts, emails, calendar entries and similar data using remote backup facilities or pushing policy to the phone and change configuration options such as what server the device wants to communicate with by default. There are, however, mobile hacking and security training classes available to help people learn countering techniques (and other attack techniques). This attack is not viewed as a flaw in MS Exchange Server or the client software, according to Microsoft, but a flaw in the implementation of the aforementioned client in the Google Android and Apple iOS mobile operating systems. One has to at least question the trust model that is in place. The server component goes through great measures to ensure that a trusted client and end user is connecting while the client doesn’t follow suit. Microsoft Windows Phones are not vulnerable to this attack. rujukan link

Vega Web Security Scanner

Vega Web Security Scanner merupakan satu tools yang ada pada Backtrack5 R3.ia memudahkan kita untuk membuat penentration dan dapat mengetahui kelemahan pada web tersebut.tools ini boleh juga install pada windows dan mac selamat mencuba sumber rujukan

wappalyzer

wappalyzer adalah satu tools untuk kita mudah mengetahui web yang kita surf mengunakan software ape..version web apa..byk hackers menggunakan plugin ini sebelum membuat attack ..download link di bawah download

Hack WPA used reaver

kat sini nak share satu benda.biasenye kita hack wifi gune tools seperti "beini" , "fern wifi cracker" dan "aircrack".tapi kat sini nak share satu cara nak hack wifi yang guna security WPA.yaitu reaver.

reaver hanya untuk platform linux sahaja.sesape guna backtrack guna command dibawah untuk install

sudo apt-get install reaver

reaver boleh hack wifi unifi,yes, yang menggunakan WPA PSK dan wps.proses ini menagambil masa selama 5 jam.

cara nak hack

1.run device wifi pada airmon-ng
2.run airodump-ng.kita copy bssid AP yang kita nak attack dan paste kat command di bawah
3.reaver -i mon0 -b "bssid" -vv

dan akan terpapar proses mseperti dibawah.


command ping dalam sun solaris

biasa dalam windows command ping mudah dan senang tapi dalam sun solaris perlu masuk dalam /usr/sbin mula masuk ke user root cd /usr/sbin ping -s ip address command ini bersamaan command dibawah ping ip address -t