how to see google chrome cookies

Posted on 26 March, 2013 by @dmin

Cookie is small piece of data added by website to client browser. When user, using the browser want to browse the same website, this website can load stored information from the cookie. This information such as user past activity in that website, any page that has been accessed, user login information, etc.

See google chrome cookie can be done using some ways :
1. Viewing using chrome browser menu

1. Using option icon in chrome (upper-right corner), choose setting

Chrome Setting

2. Show advanced setting in chrome (u can find the link by navigating to the bottom of the page)

Show advanced setting in chrome

3. Choose “content setting” in Privacy section

content setting in google chrome

4. In Cookies part, choose “all cookies and site data”

alt cookies and site data in chrome

5. New window will appear listing all cookies stored in chrome, you can choose to delete it by selecting the cookies and choose remove. However your action is very limited because you can only view and remove the cookie

Cookies and site data in chrome

2. viewing using extension

you can also see google chrome cookie using extension such as Edit This Cookie. It has some feature such as :

delete cookies
add cookies
edit cookies
search cookies
block cookies
protect cookies
export and import cookies in JSON
limit expiration date of any cookies

However this browser extension has option to add ads or behave like an adware. It is said that it is used to support the extension and unicef but, if found out it is not needed you can just opt-out it in extension setting.

you can download the extension here

Backtrack Testing Process

Posted on 11 December, 2012 by @dmin

backtrack testing process

How to strengthen your wordpress : plugins to secure wordpress

Posted on 18 November, 2012 by @dmin

In previous post (My WordPress is Hacked) i have explain to you that my website have been hacked for sometime. From source in internet we can use some plugins to minimize the chance of the attack. this plugin is Better WP Security.

some plugins exist but, i just found this Better WP Security plugin.
this plugins offer you some facility such as :

1. file protection
2. edit file permission
3. hidden your login
4. enable/disable ip address
5. enable/disable limit login
6. change the prefix of your table
7. modify htaccess
8. move common directory
9. autobackup database
10. etc

other facility is written in its original website, this however, i write to support this plugins because i use it . you can perform all of those action just by pressing your mouse in one or two click. it is easy to use, and offer you comprehensive options.

you can download and read the rest of the article here

Cookie Injection With Greasemonkey

Posted on 10 October, 2011 by @dmin

Http cookie is used for an origin website to send state information to a user’s browser and for the browser to return the state information to the origin site. it can also be taught as ticket for us to enter website, from simple explanation, it will be similiar with ticket for entering specific place. User that has examined ticket are free to enter or go in or out the place, for example once u have logged to facebook.com, in new tab or window, you don’t have to enter log in information again, because your log in state has been stored by your browser through http cookie.

Browser use this http cookie to store information of your session, so that, user that have stored cookie has some advantages such as :

1. saved logging session
2. tracked browsing preference
3. preferred search or article provided by website
4. any service that can be done by storing browsing state on your computer.

because it is usually stored in text format in computer, http cookie will not contain virus or harm computer in a way virus does.

although it gives us advantages but http cookie may harm us in these ways:
1. Used by spyware to track browsing activities (in bad way).
2. Used by hacker to gain access to log in any web service

How to view cookies
you can view your cookies in firefox :
1. tools – option – privacy – remove individual cookie
there you can simply view cookie stored in your computer and remove it.
2. firefox plugin – View Cookies
this plugin is easy to use, you just need to right click anywhere on the site – click view page info – click view cookies menu.
3. wireshark
you can capture cookies with wireshark, in earlier network infrastructure (hub, unprotected wifi) wireshark can be used to capture entire network activities, so that u can easily steal cookies but now you need more efforts to steal/capture network activities

Cookie injection
Cookie injection is a method to modify our own cookie / inject cookie information to our computer/browser, using this method we can gain access to any browser state in particular sites.
In firefox Cookie injection can be done with greasemonkey. greasemonkey is plug-in that enable user script to be run to modify browsing activities.
These are the steps :

1. Download Greasemonkey
2. Install cookie injector script
3. Open sites you want to inject
4. Alt+C , enter cookie information to the form
5. You get logged in in without entering log in forms

source: wikipedia.org, google.com

Snort Installation on Ubuntu

Posted on 27 September, 2011 by @dmin

Snort is free intrusion detection system (ids) for unix, linux, and windows. Snort is very light, means it will not asked your cpu to work to hard. Snort is actually simple to install and to use in it basic installation, it is advanced configuration of course, need more research and practice. Here i will give example of Snort installation on Ubuntu. This guide is for snort 2.9. on Ubuntu 10.04.

Original installation documentation can be found on snort web page.

1. Install dependencies
Snort require these application installed to work well:
sudo apt-get install nmap
sudo apt-get install nbtscan
sudo apt-get install apache2
sudo apt-get install php5
sudo apt-get install php5-mysql
sudo apt-get install php5-gd
sudo apt-get install libpcap0.8-dev
sudo apt-get install libpcre3-dev
sudo apt-get install g++
sudo apt-get install bison
sudo apt-get install flex
sudo apt-get install libpcap-ruby
sudo apt-get install mysql-server
sudo apt-get install libmysqlclient16-dev

2. Update Ubuntu
apt-get update
apt-get upgrade

3. Install Jpgraph and Snortreport
Jpgraph is required to display graph later on our web monitoring
sudo wget http://hem.bredband.net/jpgraph/jpgraph-1.27.1.tar.gz
sudo mkdir /var/www/jpgraph
sudo tar zxvf jpgraph-1.27.1.tar.gz
sudo cp -r jpgraph-1.27.1/src /var/www/jpgraph/
Continue reading →

Metasploit Connect_db

Posted on 17 August, 2011 by @dmin

root@bt:~# ruby1.8 /pentest/exploits/framework3/msfconsole

888 888 d8b888
888 888 Y8P888
888 888 888
88888b.d88b. .d88b. 888888 8888b. .d8888b 88888b. 888 .d88b. 888888888
888 “888 “88bd8P Y8b888 “88b88K 888 “88b888d88″”88b888888
888 888 88888888888888 .d888888″Y8888b.888 888888888 888888888
888 888 888Y8b. Y88b. 888 888 X88888 d88P888Y88..88P888Y88b.
888 888 888 “Y8888 “Y888″Y888888 88888P’88888P” 888 “Y88P” 888 “Y888
888
888
888

=[ metasploit v3.7.0-release [core:3.7 api:1.0]
+ — –=[ 684 exploits - 355 auxiliary
+ -- --=[ 217 payloads - 27 encoders - 8 nops

msf > db_driver mysql
[*] Using database driver mysql
msf > db_connect root:okeydokey@127.0.0.1:3306/metasploit
msf > db_status
[*] mysql connected to metasploit
msf > db_nmap -sS -n okeydokey.com
[*] Nmap: Starting Nmap 5.51 ( http://nmap.org ) at 2011-08-18 03:39 WIT
[*] Nmap: Nmap scan report for okeydokey.com
[*] Nmap: Host is up (0.14s latency).
[*] Nmap: Not shown: 995 closed ports
[*] Nmap: PORT STATE SERVICE
[*] Nmap: 21/tcp open ftp
[*] Nmap: 22/tcp open ssh
[*] Nmap: 80/tcp open http
[*] Nmap: 111/tcp open rpcbind
[*] Nmap: 3306/tcp open mysql
[*] Nmap: Nmap done: 1 IP address (1 host up) scanned in 32.27 seconds
msf > exit

thx to :
http://www.backtrack-linux.org/forums/ fnord0
http://forums.techarena.in/ !cons

Squid + Squidguard Words Restriction

Posted on 29 June, 2011 by @dmin

Squid, an Open Source proxy server is really good proxy server i think, since its free, yet it can serve us enough basic and middle needs of proxy server. Mostly, proxy server is used to limit amount of bandwidth that users can reach, by using proxy server we can distribute bandwidth fairly between user. it can also serve caching service. any request and response through that proxy will be saved as in certain amount of cache size. it then, help us to give faster access, because we don’t need to download all the element of web pages directly from the source, instead we can access the cached pages on our proxy server.

squid logo

Combination from Squid and Squidguard can works even better. Some instances and educational institutions use it to help blocking unwanted internet access completely and in a good way. In my college for example, it use squid as transparent proxy. All web access will be diverted to this proxy, while squidguard is there to block unwanted web address. At first some methods can be done to bypass this Squid + Squidguard resctriction, for example we can use proxy that available in many websites. But last time i tried it can be used again and any website address i entered through the proxy directed to warning page from squid proxy.

Then i find out that it is the use of Squidguard. by visiting documentation section in its website i find regular expression configuration. using this regular expression configuration, we can detect any words and restrict it. the admin must have found common characteristic of web proxy provider that will convert any address entered into “some.php” string passed into our browser. all the admin needs is just to set this regular expression matched with the string.

Well, since the method i use to bypass proxy is really easy method, i can hope for hard way to block it too. gonna find other way to bypass it though. hope this information can help you to understand how squid and squidguard work.

Nessus installation on Backtrack 5

Posted on 25 June, 2011 by @dmin

Nessus is vulnerability scanner that has web-based interface. You can use it to improve your backtrack funcionalities.

1. Install from apt-get
# apt-get install nessus

2. Follow the instruction displayed (add user). this user will be the administrator user, you can add other type of user later
# /opt/nessus/sbin/nessus-adduser

3. Register to nessus.org to get your activation code. if you have received it, run this command
# /opt/nessus/bin/nessus-fetch –register

4. if this procces doesnt run well, it may be caused by wrong proxy configuration. setting proxy configuration on nessus-fetch.rc will solve it

5. Upgrade your nessus
# apt-get upgrade nessus

6. Run nessus daemon
# /etc/init.d/nessusd start

7. Open your browser and enter https://localhost:8834/
you may login to nessus now.

Nmap Basic in Backtrack 5

Posted on 14 June, 2011 by @dmin

backtrack has its nmap installed inside, the use of nmap it to scan other computer ports. it is the part of penetration testing. after we know what ports opened and what application possibly installed on computer, we can go further by trying to attack the application.

nmap logo

nmap basic, taken from http://nmap.org/bennieston-tutorial/

nmap has some basic options :
1. -sT : TCP Connect, using method connect(), we can determine wheter the port opened or not, but it is easily to detect by firewall/intrusion detection software.
2. -sS : SYN stealth scan, using syn to begin connection then sending rst to stop initiation connection, so that no connection will be made. it results in harder detection.
3. -sF, -sN, -sX : FIN, NULL, Xmass Tree Scan. FIN will send Fin Flag, Null will set no flag and Xmass Tree sets the FIN, URG and PUSH flags. It is used to avoid system detection.
4. -sP : Ping Scan , scan with ping command to determine whether the target online or not
5. -sU : UDP Scan , scan port with UDP packet.
6. -sO : IP Protocol Scan, scan port using ip raw packet.
7. -sI : Idle Scanning, more advanced scanning mode
8. -sV : Version Detection,
9. -sA : ACK Scan,
10. -sW, -sR, -sL : Window Scan, RPC Scan, List Scan,

using those basic options we can determine the ports opened in target.
example command

1 open terminal
2 enter the command
nmap -sS 127.0.01

so it will look like this

#rootbt: nmap -sS 127.0.0.1
Host is up (0.0021s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
80/tcp open http
139/tcp open netbios-ssn
143/tcp open imap
445/tcp open microsoft-ds
3306/tcp open mysql
10000/tcp open snet-sensor-mgmt

Nmap done: 1 IP address (1 host up) scanned in 7.06 seconds