Monday, January 24, 2011

Kebakaran Di Kajang






Kebakaran berlaku pada hari Sabtu 22/01/11 pukul 6.00pm. Tiga jentera bomba dan satu bomba sukarelawan berada ditempat kejadian.Alhamdullilah,api berjaya dipadamkan oleh pihak bomba 15-20 minit kemudian.Pihak bomba bertindak pantas dan saya amat memuji pihak bomba malaysia kerana dapat memadamkan kebakaran tersebut.

Cuma saya tidak puas hati ketiadan pili bomba berhampiran kawasan tersebut menyebabkan kehadiran jentera bomba ketiga yang membawa bekalan air untuk memadamkan kebakaran.Oleh itu diharap pihak bomba dan jabatan bekalan air selangor dapat menyediakan pili bomba tersebut di Kajang

Apa pun tahniah buat pihak bomba dan alhamdulilah mangsa kebakaran terselamat.

Sunday, January 9, 2011

Ophcrack...Hack your Windows Hash



What is ophcrack?

Ophcrack is a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with a Graphical User Interface and runs on multiple platforms.


Click HERE to Download.

For Ubuntu User also can you ( apt-get install ophcrack )

How to Install and run It.



a)First step

This step is optional but will speed up the cracking process.

Run ophcrack and set the number of threads under the Preferences tab to the number of cores of the computer running ophcrack plus one.For example, for an old processor set the number of threads to 2, for a Core 2 Duo to 3 and for a Core 2 Quad to 5. If you change this value, you have to exit ophcrack and to restart it in order to save the change. If you don't exit and restart, the new number of threads will not be taken into account by the program.

b)Second step

This step is mandatory.

Load hashes using the Load button. You can either enter the hash manually (Single hash option), import a text file containing hashes you created with pwdump, fgdump or similar third party tools (PWDUMP file option), extract the hashes from the SYSTEM and SAM files (Encrypted SAM option), dump the SAM from the computer ophcrack is running on (Local SAM option) or dump the SAM from a remote computer (Remote SAM option).

For the Encrypted SAM option, the SAM is located under the Windows system32/config directory and can only be accessed for a Windows partition that is NOT running. For the Local SAM and Remote SAM options, you MUST logged in with the administrator rights on the computer you want to dump the SAM.

c)Third step

This step is optional but will speed up the cracking process.

Delete with the Delete button every user account you are not interested in (for exemple the Guest account). You can use the Ctrl key to make multiple selection. Ctrl-a will select every loaded hash.

Keep in mind that the time needed to crack password hashes with rainbow tables is proportional to the number of hashes loaded. With a brute force attack the cracking time is NOT dependant on the number of unsalted hashes loaded. That's why it's advisable to remove any unnecessary user account with the Delete button.
Fourth step

This step is mandatory.

Install (Tables button), enable (green and yellow buttons) and sort wisely (up and down arrows) the rainbow tables your are going to use. Keep in mind that storing the rainbow tables on a fast medium like a hard disk will significantly speed up the cracking process.

Here are a few guidelines :

* If you want to crack LM hashes as found on Windows XP by default (the LM Hash column is never empty on the ophcrack main window), first install and enable either the XP free small (if you have less than 512MB of free RAM) or the XP free fast (if you have more than 512MB of free RAM). Do NOT enable both of them since this is generally useless and will slow down the cracking process. Then install and enable the Vista free tables set. Finally install and enable the other XP rainbow tables you may have (XP special, XP german) and Vista one (Vista special). Sort the rainbow tables with the up and down arrows the following way : first the XP free then the Vista free then the XP special after that the Vista special and finally the XP german.

* If you want to crack NT hashes as found on Windows Vista by default (the LM Hash column is always empty on the ophcrack main window), first install and enable the Vista free tables set. Then install and enable the Vista special tables set. Disable every other XP tables sets since they are useless and slow down the cracking process. Sort the enabled rainbow tables with the up and down arrows the following way : first the Vista free then the Vista special.

* If you want to crack a mix of LM and NT enabled hashes (some accounts have their LM column empty, others have both the LM and NT columns filled with hashes) proceed the same way as "If you want to crack LM enabled hashes".

d)Fifth step

This step is mandatory.

Click on the Crack button to start the cracking process. You'll see the progress of the cracking process in the bottom boxes of the ophcrack window. When a password is found, it will be displayed in the NT Pwd field. You can then save the results of a cracking session at any time with the Save button.

========

Example using Ubuntu
====================

1)Download Ophcrack Gui

apt-get install ophcrack

2) Download Rainbows Tables

Click Here

3)Run Ophcrack by typing in terminal

#ophcrack

4)Install Tables by creating Folder

Unzip Rainbows Table in one single folder eg: /Table
Click Table and load in on which you safe the folder and click Install + Enable

5)Load Hash as show inside the Ophcrack hash sample

6) Click Crack

7) View the NT pwd and that is the password you crack

EOF

Thursday, January 6, 2011

SELANGOR DARUL EHSAN

Even I am from Perak,but im living in Selangor for almost 10 years.I like to live here with my families.I love Selangor State under PAKATAN RAKYAT Government.I can see there is a lot of changers under the ruler of PAKATAN RAKYAT such as new small stalls for people to sell such as Frieds Bananas (Goreng Pisang),Nasi Lemak and etc..For me its such a good improvement and make the place more organizable.Just a slight traffic jams at Kajang town but that happens until now.Its unavoidable as Kajang Town raise as bigger town rapidly.

Also near my residence, the long time River now are properly rebuild and no longer having a small landslide near it.That i wish a long time ago...thank for making it and it look nicer and also got a lots of fish..hehehe..

By the way ..Near the famous Kajang Satay the old time Stadium some part are converted to play ground and I love the initiative of the state government to promote family relationship come with dining at the same time at Kajang Hj Samuri Satay Restaurant.

I would Love if the Pakatan Rakyat to abolish Tolls at the Cheras-Kajang Highway..!

Twinkle : Free Sip Softphone Application For Linux


Twinkle is a softphone for your voice over IP and instant messaging communcations using the SIP protocol. You can use it for direct IP phone to IP phone communication or in a network using a SIP proxy to route your calls and messages.


Click Here For Link to Twinkle website


I Just downloaded it last night as my Phone suddenly dont have coverage.Damn...! Thank to SIP :P

Saturday, January 1, 2011

Bandwidth Monitoring Tools

Bandwidth in computer networking refers to the data rate supported by a network connection or interface. One most commonly expresses bandwidth in terms of bits per second (bps). The term comes from the field of electrical engineering, where bandwidth represents the total distance or range between the highest and lowest signals on the communication channel (band).

Bandwidth represents the capacity of the connection. The greater the capacity, the more likely that greater performance will follow, though overall performance also depends on other factors, such as latency.

Bandwidthd

BandwidthD tracks usage of TCP/IP network subnets and builds html files with graphs to display utilization. Charts are built by individual IPs, and by default display utilization over 2 day, 8 day, 40 day, and 400 day periods. Furthermore, each ip address’s utilization can be logged out at intervals of 3.3 minutes, 10 minutes, 1 hour or 12 hours in cdf format, or to a backend database server. HTTP, TCP, UDP, ICMP, VPN, and P2P traffic are color coded.

Current Stable Version :- 2.0.1

Project Home Page :- http://bandwidthd.sourceforge.net/

Bmon

bmon is a portable bandwidth monitor and rate estimator running on various operating systems. It supports various input methods for different architectures. Various output modes exist including an interactive curses interface,lightweight HTML output but also formatable ASCII output.

Bwbar

bwbar is a small C-based program for Linux-based machines which produces bandwidth usage statistics for a network interface. It was originally written by H. Peter Anvin, and I (Brian Towne) modified it somewhat to better suit my needs. The original program was released under the GPL. A number of people have asked for the modified program and its source, so I have created this page.

Current Stable Version :- 1.2.3

bwm

This is a very tiny bandwidth monitor (not X11). Can monitor up to 16 interfaces in the in the same time, and shows totals too.

Current Stable Version :- 1.1.0

bwm-ng

small and simple console-based bandwidth monitor.Bandwidth Monitor NG is a small and simple console-based live bandwidth monitor.

Current Stable Version :- 0.6

Project Home Page :- http://www.gropp.org/?id=projects&sub=bwm-ng

Cacti

Cacti is a complete network graphing solution designed to harness the power of RRDTool’s data storage and graphing functionality. Cacti provides a fast poller, advanced graph templating, multiple data acquisition methods, and user management features out of the box. All of this is wrapped in an intuitive, easy to use interface that makes sense for LAN-sized installations up to complex networks with hundreds of devices.

Current Stable Version :- 0.8.7e

Project Home Page :- http://cacti.net/

cbm

cbm — the color bandwidth meter — is a small program to display the traffic currently flowing through your network devices.

Current Stable Version :- 0.1

dstat

Dstat is a versatile replacement for vmstat, iostat, netstat, nfsstat and ifstat. Dstat overcomes some of their limitations and adds some extra features, more counters and flexibility. Dstat is handy for monitoring systems during performance tuning tests, benchmarks or troubleshooting.

Current Stable Version :- 0.7.1

Project Home Page :- http://dag.wieers.com/home-made/dstat/

EtherApe

EtherApe is a graphical network monitor for Unix modeled after etherman. Featuring link layer, ip and TCP modes, it displays network activity graphically. Hosts and links change in size with traffic. Color coded protocols display.

Current Stable Version :- 0.9.9

Project Home Page :- http://etherape.sourceforge.net/

gdesklets

gDesklets is a system for bringing mini programs (desklets), such as weather forecasts, news tickers, system information displays, or music player controls, onto your desktop, where they are sitting there in a symbiotic relationship of eye candy and usefulness. The possibilities are really endless and they are always there to serve you whenever you need them, just one key-press away. The system is not restricted to one desktop environment, but currently works on most of the modern Unix desktops (including GNOME, KDE, Xfce).

Current Stable Version :- 0.36.1

Project Home Page :- http://www.gdesklets.de/

GKrellM

GKrellM is a single process stack of system monitors which supports applying themes to match its appearance to your window manager, Gtk, or any other theme.

Current Stable Version :- 2.3.4

Project Home Page :- http://members.dslextreme.com/users/billw/gkrellm/gkrellm.html

ipband

ipband is a pcap based IP traffic monitor. It tallies per-subnet traffic and bandwidth usage and starts detailed logging if specified threshold for the specific subnet is exceeded. If traffic has been high for a certain period of time, the report for that subnet is generated which can be appended to a file or e-mailed. When bandwidth usage drops below the threshold, detailed logging for the subnet is stopped and memory is freed.

Current Stable Version :- 0.8.1

Project Home Page :- http://ipband.sourceforge.net/

iftop

iftop does for network usage what top does for CPU usage. It listens to network traffic on a named interface and displays a table of current bandwidth usage by pairs of hosts. Handy for answering the question “why is our ADSL link so slow”.

Current Stable Version :- 0.17

Project Home Page :- http://www.ex-parrot.com/pdw/iftop/

iperf

Iperf is a tool to measure maximum TCP bandwidth, allowing the tuning of various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, datagram loss.

ipfm

IP Flow Meter (IPFM) is a bandwidth analysis tool, that measures how much bandwidth specified hosts use on their Internet link.

Current Stable Version :- 0.11.5

Project Home Page :- http://robert.cheramy.net/ipfm/

ifstat

ifstat is a tool to report network interfaces bandwith just like vmstat/iostat do for other system counters.

Current Stable Version :- 1.1

Project Home Page :- http://gael.roualland.free.fr/ifstat/

ibmonitor

ibmonitor is an interactive linux console application which shows bandwidth consumed and total data transferred on all
interfaces.

Current Stable Version :- 1.4

Project Home Page :- http://ibmonitor.sourceforge.net/

ipaudit

IPAudit monitors network activity on a network by host, protocol and port.IPAudit listens to a network device in promiscuous mode, and records every connection between two ip addresses. A unique connection is determined by the ip
addresses of the two machines, the protocol used between them, and the port numbers (if they are communicating via udp or tcp).

Current Stable Version :- 0.95

Project Home Page :- http://ipaudit.sourceforge.net/

IPTraf

IPTraf is a console-based network statistics utility for Linux. It gathers a variety of figures such as TCP connection packet and byte counts, interface statistics and activity indicators, TCP/UDP traffic breakdowns, and LAN station packet and byte counts.

Current Stable Version :- 3.0.0

Project Home Page :- http://iptraf.seul.org/

IFStatus

IFStatus was developed for Linux users that are usually in console mode. It is a simple, easy to use program for displaying commonly needed / wanted statistics in real time about ingoing and outgoing traffic of multiple network interfaces that is usually hard to find, with a simple and effecient view. It is the substitute for PPPStatus and EthStatus projects.

Current Stable Version :- 1.1.0

jnettop

Jnettop is a traffic visualiser, which captures traffic going through the host it is running from and displays streams sorted by bandwidth they use.

Current Stable Version :- 0.13.0

Project Home Page :- http://jnettop.kubs.info/wiki/

MRTG

The Multi Router Traffic Grapher (MRTG) is a tool to monitor the traffic load on network links. MRTG generates HTML pages containing PNG images which provide a LIVE visual representation of this traffic.

Current Stable Version :- 2.16.3

Project Home Page :- http://oss.oetiker.ch/mrtg/

moodss

moodss is a graphical monitoring application. It is modular so that the code accessing the monitored objects is completely separate from the application core. The core takes care of managing modules (loading and unloading),displaying modules data through sortable tables and diverse graphical viewers, handling user set threshold conditions with email alerts, recording and browsing data history from a database.moodss can even predict the future, using sophisticated statistical methods and artificial neural networks, and therefore be used for capacity planning.

Current Stable Version :- 21.5

Project Home Page :- http://moodss.sourceforge.net/

monitord

A lightweight (distributed?) network security monitor for TCP/IP+Ethernet LANs. It will capture certain network events and record them in a relational database. The recorded data will be available for analysis through a CGI based interface.

Current Stable Version :- 4.0

Project Home Page :- http://sourceforge.net/projects/monitord/

Netmrg

NetMRG is a tool for network monitoring, reporting, and graphing. Based on RRDTOOL, the best of open source graphing
systems, NetMRG is capable of creating graphs of any parameter of your network.

Current Stable Version :- 0.20

Project Home Page :- http://www.netmrg.net

nload

nload is a console application which monitors network traffic and bandwidth usage in real time. It visualizes the in-and outgoing traffic using two graphs and provides additional info like total amount of transfered data and min/max network usage.

Current Stable Version :- 0.7.2

Project Home Page :- http://www.roland-riegel.de/nload/index.html

ntop

ntop shows the current network usage. It displays a list of hosts that are currently using the network and reports information concerning the IP (Internet Protocol) and Fibre Channel (FC) traffic generated by each host. The traffic is sorted according to host and protocol. Default protocol list (this is user configurable).

Current Stable Version :- 3.3.10

Project Home Page :- http://www.ntop.org

netspeed

Netspeed is just a little GNOME-applet that shows how much traffic occurs on a specified network device (for example eth0). You get the best impression of it, if you look at the screenshots below.

Current Stable Version :- 0.14

Netwatch

Netwatch is a Linux program created to aid in monitoring Network Connections. It is based on a program called “statnet” but has been substantially modified for its Ethernet emphasis. It is a dynamic program which displays the Ethernet status based each the connection’s activity. It has the capability of monitoring hundreds of site statistics simultaneously. The connection’s port number (Well Known Service) and destination address are available as well. There are options which allow router statistics to be measured on simple networks (with one router). External network communication is counted and transfer rates are displayed.

Current Stable Version :- 1.3.0-1

Project Home Page :- http://www.slctech.org/~mackay/netwatch.html

NOCOL

NOCOL is a popular system and network monitoring (network management) software that runs on Unix systems and can
monitor network and system devices. It uses a very simple architecture and is very flexible for adding new network management modules

Current Stable Version :- 4.3.1

Project Home Page :- http://www.netplex-tech.com/nocol/

NeTraMet

NeTraMet is an open-source (GPL) implementation of the RTFM architecture for Network Traffic Flow Measurement,
developed and supported by Nevil Brownlee at the University of Auckland. Nevil also developed a version of NeTraMet
which uses the CoralReef library to read packet headers. This ‘CoralReef NeTraMet meter’ can work with any CoralReef
data source; it has been tested on both CAIDA and NLANR trace files, and on DAG and Apptel ATM interface cards.

Current Stable Version :- 43

Project Home Page :- http://freshmeat.net/projects/netramet/

NetPIPE

NetPIPE is a protocol independent performance tool that visually represents the network performance under a variety of
conditions. It performs simple ping-pong tests, bouncing messages of increasing size between two processes, whether
across a network or within an SMP system. Message sizes are chosen at regular intervals, and with slight perturbations, to provide a complete test of the communication system. Each data point involves many ping-pong tests to provide an accurate timing. Latencies are calculated by dividing the round trip time in half for small messages ( <64 Bytes ).

Current Stable Version :- 3.7.1

Project Home Page :- http://www.scl.ameslab.gov/netpipe/

netperf

Netperf is a benchmark that can be use to measure various aspect of networking performance. The primary foci are bulk
(aka unidirectional) data transfer and request/response performance using either TCP or UDP and the Berkeley Sockets interface. As of this writing, the tests available either unconditionally or conditionally

Current Stable Version :- 2.4.5

Project Home Page :- http://www.netperf.org/netperf/

potion

This is a console utility which will listen on an interface using libpcap, aggregate the traffic into flows and display the top (as many as can fit on your screen) flows with their average throughput. A flow is identified ip protocol, source ip, source port, destination ip, destination port, and type of service flag.

Current Stable Version :- 0.0.4

pktstat

Display a real-time list of active connections seen on a network interface, and how much bandwidth is being used by what. Partially decodes HTTP and FTP protocols to show what filename is being transferred. X11 application names are also shown. Entries hang around on the screen for a few seconds so you can see what just happened. Also accepts filter expressions รก la tcpdump.

Current Stable Version :- 1.8.4

Project Home Page :- http://www.adaptive-enterprises.com.au/~d/software/pktstat/

RTG

RTG is a flexible, scalable, high-performance SNMP statistics monitoring system. It is designed for enterprises and service providers who need to collect time-series SNMP data from a large number of targets quickly. All collected data is inserted into a relational database that provides a common interface for applications to generate complex queries and reports. RTG includes utilities that generate configuration and target files, traffic reports, 95th percentile reports and graphical data plots. These utilities may be used to produce a web-based interface to the data.

Current Stable Version :- 0.7.4

Project Home Page :- http://rtg.sourceforge.net/

speedometer

Monitor network traffic or speed/progress of a file transfer. The program can be used for cases like: how long it will take for my 38MB transfer to finish, how quickly is another transfer going, How fast is the upstream on this ADSL line and how fast can I write data to my filesystem.

Current Stable Version :- 2.6

Project Home Page :- http://excess.org/speedometer/

Spong

Spong is a simple system-monitoring package written in Perl. It features client based monitoring, monitoring of network services, results displayed via the Web or console, history of problems, and flexible messaging when problems occur.

Current Stable Version :- 2.7.6

Project Home Page :- http://spong.sourceforge.net/

slurm

slurm started as a pppstatus port to FreeBSD. As I ripped off several functions

Current Stable Version :- 0.3.3

SNIPS

SNIPS (System & Network Integrated Polling Software) is a system and network monitoring software that runs on Unix systems and can monitor network and system devices. It is capable of monitoring DNS, NTP, TCP or web ports, host performance, syslogs, radius servers, BGP peers, etc. New monitors can be added easily (via a C or Perl API).

Current Stable Version :- 1.1

Project Home Page :- http://www.navya.com/software/snips/

tcpflow

tcpflow is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way
that is convenient for protocol analysis or debugging. A program like tcpdump shows a summary of packets seen on the
wire, but usually doesn’t store the data that’s actually being transmitted. In contrast, tcpflow reconstructs the actual data streams and stores each flow in a separate file for later analysis. tcpflow understands TCP sequence numbers and will correctly reconstruct data streams regardless of retransmissions or out-of-order delivery.

Current Stable Version :- 0.21

Project Home Page :- http://www.circlemud.org/~jelson/software/tcpflow/

vnstat

vnStat is a network traffic monitor for Linux that keeps a log of daily network traffic for the selected interface(s).vnStat isn’t a packet sniffer. The traffic information is analyzed from the /proc -filesystem, so vnStat can be used without root permissions. However at least a 2.2.x kernel is required.

Current Stable Version :- 1.10

Project Home Page :- http://humdi.net/vnstat/

WMND

Shows a graph of incoming/outgoing traffic, activity indicators for rx/tx and current/maximum rate for rx/tx in bytes or packets.Tailored for use with WindowMaker, it will as well work with any other window manager though.

Current Stable Version :- 0.4.13

Project Home Page :- http://dockapps.org/file.php/id/178

Updated on 18th March 2010