Technology Education Blog

1. Open up the site that you want to make the fake page from it, after the load right click and save the page as "web page complete"

2. open that page with notepad, and press control+F to access search bar, and then search "login".

3. before the word "login" it's written action, we don't need those so clear everything behind the login (this tutorial is for PHP, may you see login.aspx)

4. Change method="post" change it to method="GET" ,but if it's like that leave it.   

5. Now save it as .html

6. Open a new notepad, and type this commands on it

7. instead of Location: target.com, write your login page address! 

8. Save this as Login.PHP

9. Go to website's that offer free hosts

10. Create an account, get your host and upload both of files!

11. After that you only need to give your HTML link to your victim!

12.  If he opened and input his Login information you can access it!

13.  If you look at PHP source, you can see log.txt that's your victim info's saved.

Steps:

️1: first scan the air for a target access point. Then create an access point using airbase-ng with the same name and channel of the target access point, hence Evil TWIN attack.

️2:The victim is now disconnected repeatedly from the  original access point and as most modern system’s setting says… “Connect back to same ESSID (AP name) if disconnects”.

This also happens because when the victim disconnects from any access point it starts sending probe requests in the air with the name of the access point it connected to earlier. Hence BSSID isn’t a barrier, you just need ESSID to spoof the AP

3: Clients will now be connected to the Evil Twin access point and now client may start browsing Internet.

️4: Client will Receive a web administrator warning saying “Enter WPA password to download and upgrade the router firmware”

️5: The moment he/she enters the password, he/she will be redirected to a loading page and the password will be stored in the MySQL database of the attacker machine

Requirement:

1) You have to first get a wellsfargo log with good balance from a good(trusted) source

2. Login the wellsfargo log

3. Click on wire transfer

4. An access code will be sent to phone number attached

5. If the log you bought , comes with an advanced access code , click on “I already have a code” and input the code there , it will be verified and wire will be sent to the receiving information you have provided .

If the log you bought doesn’t come with advanced access code , unless you change the phone number on file to yours

6.  An alert will be sent to the email attached so you get inside email and delete alert

7. Wired money will reflect in receiving account in 30 minutes time

Step 1 - Register to Twillo

Step 2 - Create a project

Step 3 - Look for a "buy number" option

Step 4 -  Pick the country and remember to tick the SMS option

Important - Now you should have a number. To see SMSes, go to the  (Phone Numbers) option -> Active numbers.

Click on the number and proceed to "Messages log in.
Remember to change "Outcoming to "Incoming
If you need to verify Google, use a UK number!

What  is  Single  Sign-on  (SSO)  ?

Single  Sign-on  is  a  method  of  authentication  process  that  helps  to  log  in  multiple application  using  single  login  credentials.  Security  is  enhanced  through  Single Sign-on  (SSO)  in  light  of  the  fact  that  users  are  diminished  of  the  various  secret password  trouble.  Let  be  honest,  users  detest  complex  passwords;  SSO  Single Sign-on  makes  that  agony  more  acceptable  by  diminishing  the  number  of complicated  passwords  they  have  to  remember.
There  are  two  major  challenges  that  these  businesses  are  facing:

➡How to manage  the  permission  and  roles  of  diverse  users  and  applications. ➡How to address  the  many challenging  and  ever-changing  compliance  and  security risks  that  come  with  the  digital  expansion  of  access. These  challenges  are  a  constant  worry  for  those  who  manage  the informatics systems  and  data  or  deal  with  compliance  in  any  company. 

     There  are  four important  factors  that  need  to  be  considered  when  a  strategy  for  access management  and identity  is  being  developed  by  a  company’s  IT  team  and security.

➡The  Expansion  of  Third-party  Access

More  entities  are  gaining  access  to  the  apps,  data,  and  networks  of  a  company. With  different  partners  working  in  different  locations,  it  can  make  things  even more  complicated  when  it  comes  to  security  and  ensures  only  the  right  people are  gaining  access. In  the  study  completed  by  Aberdeen, 

it  showed  that  about  1/3  of  the  enterprises studied  allowed  at  least  25  third-party  organizations  to  have  access  while  a shocking  10%  had  upwards  of  200  external  partners.  in  this  case,  Single  Sign-on (SSO)  will  be  a  very  useful  solution  to  protect  your  company  asset.

➡The  Balancing  of  Security  and  Usability

When handling  the  growing  userbase  of  a  manufacturer,  security  and  cost  are  of utmost  importance.  If  an  enterprise  is  not  prepared  for  the  expansion,  the  risk  of security  problems  is  higher.  The  theft  of  this  type  of  data  can  be  devastating  to  a company.
While  making  sure  the  system  is  accessible  by  the  people  who  need  to  use  it  is important,  the  security  is  just  as  if  not  more  important.

➡The  Frequency  and  Cost  of  Cyber  Attacks

Manufacturers  deal  with  a  lot  of  sensitive  information  and  are  the  victims  of more  phishing  attacks  than  any  other  industry  in  the  United  States.  One  data breach  costs  around  an  average  of  $450k  but  can  cost  considerably  more  than that.  A  little  bit  of  preparation  can  save  a  lot  of  money  and  trust.

➡Traditional  System  Costs

Operating a traditional  system  can  be  expensive,  about  $3.5  million  for  manufacturers.  In  some  cases,  they  can  costs  tens  of  millions  though.  By  using  a  single platform  to  manage  access  can  save  a  lot  of  money in  the  end  and  save  time.

It  streamlines  the  whole  process  and  provides  support  for  all  organizations  that are  accessing  it  no  matter  how  far  in  the  cloud  they  happen  to  be.

Reduce  the  headache  of  assisting  users  with  password  recovery  using  Single Sign-on  (SSO)

Envision  an  organization  running  ten  distinct  administrations.A  single  sign on  (  SSO)  arrangement  can  incredibly  decrease  the  measure  of  helpdesk manpower  required  as  clients  just  need  to  recover  a  solitary  Account.

While  not a  security  concern,  this  is  an  extremely  unmistakable  advantage  to  organizations by  using  Single  Sign-on  Solution.

Single  Sign-on  (SSO)  Helps  to  Reduce  the  Amount  of  Passwords  users  have  to remember.

Clients  are  urged  to  utilize  endlessly  unique  passwords  for  different  sites.  single sign-on  Dealing  with  that  a  Different  of  passwords  can  be  tricky.

Clearly,  this  isn’t  an  issue  if  the  client  utilizes  a  password  manager  tool  yet  how about  we  are  reasonable,  what  number  of  users  would  you  be  able  to  hope? 

An Single  Sign-on  (SSO)  arrangement  can  extraordinarily  decrease  the  quantity of  passwords  users  need  to  remember,  which  may urge  the  user  to  pick  a significantly  choose  a  much  stronger  password.

Requirement:

1. IE passview - This a small program that help us view passwords saved in Internet explorer.download here

2. Password fox -This a program that allow us to view passwords saved in  mozilla firefox download here

3. Mail passview - This is a small password recovery tool that reveals passwords and other account details of outlook,epress and window mail download here

4. MessenPass- This password recovery tool reveals pasword for instant messenger applications download here

5. PSPV - Utility program that also reveals passwords in our computer download here