Cyber Freak

17/04/2012

We are here on our New page Cyberada join it soon...!!!

03/03/2012

Control yoh andoird on air...itz awwssii....

AirDroid is a fast ,free app that lets you wirelessly manage&control your Android Device from a web browser Over-The-Air.

02/03/2012

Ipad 3 concept....!!

Awesome iPad 3 concept. This iPad 3 video contains advanced CG iPad 3 features on a new iPad design. A huge step up from iPad 1 features or iPad 2 features. ...

02/03/2012

Windows 8 to come soonn...

See Windows 8 in action.

02/03/2012

No.1 – Full throttle! Samsung Mobile wins 2 prestigious awards at the Mobile World Congress 2012! ‘Samsung Galaxy S’ II adjudged the ‘Best Smartphone’ award while ‘Samsung Mobile’ is declared the ‘Device Manufacturer of the Year’! Share our happiness if you own a Samsung Mobile!

29/02/2012

As of today, nearly 25 billion apps have been downloaded worldwide. Which is almost as amazing as the apps themselves. So we want to say thanks. Download the 25 billionth app, and you could win a US$10,000 App Store Gift Card.* Just visit the App Store and download your best app yet. The countdown has started check out the site

Download the twenty-five billionth app and win a US $10,000 App Store Gift Card.

28/02/2012

Norton Android App for Monitoring Kids

Norton App to Monitor Kids's
The security geek Norton has introduced a free App for Android Smartphone named Norton Safety Minder Mobile Edition. It’s a free Norton Online family security App for the parents to monitor their kid’s activity on their Smartphone. The App also allows some cool blocking features for parents and web monitoring features.

Norton is now showing some interest in the Mobile App world Norton so far was concentrating on the making personal software for Pc Mac but now Norton has stepped forward to make a Mobile App to provide a better security tool for parents.

Parents can download the Security tool from Android market for free. Then they need to login to onlinefamily.norton.com and they can manage different settings to add their kid’s mobile to their list and apply some restrictions to them.

Parents are always concerned about their children digital activity on computer and mobile Internet. So making some rules and regulation and applying them on their children parents may know what is their child actually doing on Internet and restrict them to do so, by using Norton Safety Minder Mobile Edition.

There is a premier Norton Online family which has some extra features like mobile edition lacks such as Sms and text monitoring.

28/02/2012

89% of iPhone users likely to buy another iPhone

In recent research by UBS, the large investment bank, they found out that 9 out of 10 iPhone users were planning to buy another iPhone as their next phone.

UBS were doing research into whether users were likely to change mobile phone brands and platforms. It seems Apple has satisfied their customers excellently and they are likely to buy another iPhone in the future. With the iPhone 5 due to be announced on the 5th October, iPhone users better start saving their cash!

Just 39% of HTC mobile phone owners said they were going to buy another HTC phone as their next mobile phone. This is an incredible drop and considering HTC were second in the retention figures it doesn’t bode well for BlackBerry.

In terms of retention with operating system platforms Android fared quite well with 60% of users saying they will stick with an Android running smartphone. However 30% of Android users surveyed said they want to get an Apple iPhone running iOS for their next phone.

UBS assessed the mobile phone use trends by asking a various sample about their habits. In one section, however, 515 executives owning smartphone were asked. The executives were from 30 American and European mobile networks. So overall the sample that this survey is based on may not be the most realistic and could be biased. The sample mentioned were also business minded people so they are not the general public and it won’t necessarily represent a clear picture of everyone’s views.

Let us know in the comments section whether you are wanting to change smart phone manufacturer or operating system!

Research in Motion, owners of BlackBerry, won’t be happy to know that just 33% of BlackBerry owners were definitely going to buy a BlackBerry as their next phone. This comes as quite a shock to me as most BlackBerry users i know say that they like their BlackBerry and mostly BBM, the instant messaging service.

27/02/2012

Samsung continued to hold its silence on the highly anticipated Galaxy S3 at the Mobile World Congress 2012 on Monday, but BGR has leaked new specs that were apparently revealed before the show by other sources.

Expected to land running Google’s newly released Android 4.0 Ice Cream Sandwich OS the Samsung Galaxy S3 release has been repeatedly rumoured with the next-gen handset tipped to tout a and a 4.65-inch rendition of Samsung’s now trademark HD Super AMOLED display with a stunning 1280 x 720p resolution. BGR claim that here is the Samsung Galaxy S3 Spec,

1.5GHz quad-core Samsung Exynos processor
4.8-inch “full HD” 1080p resolution with 16:9 aspect ratio display
A 2-megapixel front-facing camera and an 8-megapixel rear camera
Ceramic case
4G LTE
Android 4.0

26/02/2012

Blackberry Bold 9780 has been upgraded to BlackBerry 9790. It has many features like, powered by BlackBerry 7 OS, 1.1 GHz Marvel Tavor MG1 processor,5 megapixel camera with autofocus, EDGE,3Gand WI-FI.It not a major upgrade in term of technology and following the BlackBerry traditions the phone has seen improvement in designs. Another major inclusion is that of a capacitive touch screen so that now you can navigate using the optical trackpad along with the touchscreen.BlackBerry 9790 current price in India as of February 2012 is Rs.26450.

Size and Design:

Bold 9790 has the traditional blackberry QWERTY keyboard design. The phone weighs 107g and has a width of 11.4mm. It is 60mm wide and is 110mm long. It also features and optical trackpad, now you can navigate with the trackpad as well as the touch screen.


Display:

It features a TFT capacitive touchscreen with 16M color support. The display resolution is 480*360ppi and the pixel density is 245ppi. The display is quiet sharp and crisp.


Camera:

Bold 9790 features a 5Mp camera having a resolution of 2592x1944 pixels. The camera has auto focus and LED flash. It also features image enhancing features such as Geo-tagging, Face detection and image stabilization. The camera is capable of recording video with VGA resolution.


Storage Capacity:

The internal storage capacity of the phone is 8GB and the external storage is expandable up to 32GB via micro SD memory card..


Processor and OS:

The processing power of the phone is 1.1 Ghz featuring a Marvel Tavor processor powered by 768Mb of RAM and running the latest Blackberry 7 OS.


Connectivity:

The phone has support for EDGE and 3G. It follows Wi-Fi 802.11 a/b/g/n standards, has Bluetooth v2.1 with A2DP and EDR, support for NFC and micro USB 2.0.


Battery:

The standard Li-Ion 1230 battery is capable of providing up to 408 h of standby time, up to 5h and 20 min of talk time on 3G network and up to 33h of non stop music play.


Other features:

Other features of the phone include support for GPA with A-GPS and SNS application integration. The phone supports a no of audio and video formats. It doesn’t support JAVA apps and is available in Black color only.


Price:

The phone is available for Rs 26450.

25/02/2012

STEGANOGRAPHY: HIDE DATA IN IMAGE, AUDIO & VIDEO FILES

Ever wondered to know how to hide secret messages in images, audio and video files? Well, in this post I will take you through a concept called steganography using which, it is possible to hide your secret information in image files, songs or any other file of your choice.

What is Steganography?

Steganography is a mean of obscuring data where secret messages are hidden inside computer files such as images, sound files, videos and even executable files so that, no one except the sender and the receiver will suspect the existence of stealth information in it. Steganography may also involve the usage of cryptography where the message is first encrypted before it is concealed in another file. Generally, the messages appear to be something else such as an image, sound or video so that the transfer of secret data remains unsuspected.
The main advantage of steganography over other methods such as cryptography is that, it will not arose suspicion even if the files fall in the hands of a third party. Unlike cryptographic messages, stegnographic messages will no way attract the attention of a third party by themselves. Thus stegnanography has an upper hand over cryptography as it involves both encryption and obscurity.

What are the Applications of Steganography?

Steganography is mainly used to obscure confidential information/data during storage or transmission. For example, one can hide a secret message in an audio file and send this to another party via email instead of sending the message in the textual format. The receiver on the other end will decrypt the hidden message using the private decryption key. In a worst case scenario, even if a third party does manage to gain access to the email, all he can find is the audio file and not the hidden data inside it. Other usage of steganography include digital watermarking of images for reasons such as copyright protection.
Eventhough steganography has many useful applications, some may use this technique for illegitimate purposes such as hiding a pornographic content in other large files. Roumors about terrorists using steganography for hiding and communicating their secret information and instructions are also reported. An article claiming that, al-Queda had used steganography to encode messages in images and transported them via e-mails, was reported by New York Times, in October 2001.

How do Steganography Tools Work?

Stegnography tools implement intelligent algorithms to carefully embed the encrypted text messages or data inside other larger files such as an image, audio, video or an executable file. Some tools will embed the encrypted data at the end of another file so that there will be enough room for storing larger data.
There are many steganography tools available online but only a few are able to work flawlessly. I did not find any tool that worked perfectly on both small and large data. However I have managed to develop my own tool that can work perfectly on all types of files and all size of data. The tool is called “Stego Magic“. You can download it from the following link.

http://www.mediafire.com/?mr05s8c2rjxw8bi

The zip file contains two versions of Stego Magic: One for encrypting the text messages and the other for encrypting binary files. StegoMagic_TXT can be used to hide text messages in other files such as an image or a sound file. StegoMagic_BIN can be used to hide one binary file in another such as an executable file inside an image or an image inside a video file.
With Stego Magic, there is no limitation on the size and type of the file that you are intending to hide. For example, you can hide a video of size 1 GB in an image of size 1 MB or hide an executable file inside a WORD document. The tool is pretty straightforward to use and requires no special understanding of the concept.
At the end of the encryption process, a secret decryption key will be generated and the same is required during the decryption process.
How to Use Stego Magic?

Suppose you want to hide a text message inside a JPG file:
1. Place the JPG and the text file (.txt) in the same folder as that of StegoMagic_TXT.exe
2. Run StegoMagic_TXT.exe and follow the screen instructions to embed the text message inside the JPG image.
3. Note down the secret decryption key.
Now you can send this image to your friend via email. To decrypt the hidden message, your friend should load this JPG file onto the Stego Magic tool and use the secret decryption key.

StegoMagic.zip

24/02/2012

TOP 10 TRICKS TO EXPLOIT SQL SERVER SYSTEMS

This Website has been moved to a new Domain

Whether it is through manual poking and prodding or the use of security testing tools, malicious attackers employ a variety of tricks to break into SQL Server systems, both inside and outside your firewall. It stands to reason then, if the hackers are doing it, you need to carry the same attacks to test the security strength of your systems. Here are 10 hacker tricks to gain access and violate systems running SQL Server.

1. Direct connections via the Internet

These connections can be used to attach to SQL Servers sitting naked without firewall protection for the entire world to see (and access). DShield's Port Report shows just how many systems are sitting out there waiting to be attacked. I don't understand the logic behind making a critical server like this directly accessible from the Internet, but I still find this flaw in my assessments, and we all remember the effect the SQL Slammer worm had on so many vulnerable SQL Server systems. Nevertheless, these direct attacks can lead to denial of service, buffer overflows and more.

2. Vulnerability scanning

Vulnerability scanning often reveals weaknesses in the underlying OS, the Web application or the database system itself. Anything from missing SQL Server patches to Internet Information Services (IIS) configuration weaknesses to SNMP exploits can be uncovered by attackers and lead to database server compromise. The bad guys may use open source, home-grown or commercial tools. Some are even savvy enough to carry out their hacks manually from a command prompt. In the interest of time (and minimal wheel spinning), I recommend using commercial vulnerability assessment tools like QualysGuard from Qualys Inc. (for general scanning), WebInspect from SPI Dynamics (for Web application scanning) and Next Generation Security Software Ltd.'s NGSSquirrel for SQL Server (for database-specific scanning). They're easy to use, offer the most comprehensive assessment and, in turn, provide the best results.

3. Enumerating the SQL Server Resolution Service

Running on UDP port 1434, this allows you to find hidden database instances and probe deeper into the system. Chip Andrews' SQLPing v 2.5 is a great tool to use to look for SQL Server system(s) and determine version numbers (somewhat). This works even if your SQL Server instances aren't listening on the default ports. Also, a buffer overflow can occur when an overly long request for SQL Servers is sent to the broadcast address for UDP port 1434.

4. Cracking SA passwords

Deciphering SA passwords is also used by attackers to get into SQL Server databases. Unfortunately, in many cases, no cracking is needed since no password has been assigned (Oh, logic, where art thou?!). Yet another use for the handy-dandy SQLPing tool mentioned earlier. The commercial products AppDetective from Application Security Inc. and NGSSQLCrack from NGS Software Ltd. also have this capability.

5. Direct-exploit attacks

Direct attacks using tools such as Metasploit, shown in Figure 2, and its commercial equivalents (CANVAS and CORE IMPACT) are used to exploit certain vulnerabilities found during normal vulnerability scanning. This is typically the silver-bullet hack for attackers penetrating a system and performing code injection or gaining unauthorized command-line access.

6. SQL injection

SQL injection attacks are executed via front-end Web applications that don't properly validate user input. Malformed SQL queries, including SQL commands, can be inserted directly into Web URLs and return informative errors, commands being executed and more. These attacks can be carried out manually -- if you have a lot of time. Once I discover that a server has a potential SQL injection vulnerability, I prefer to perform the follow-through using an automated tool, such as SPI Dynamics' SQL Injector.

7. Blind SQL injection

These attacks go about exploiting Web applications and back-end SQL Servers in the same basic fashion as standard SQL injection. The big difference is that the attacker doesn't receive feedback from the Web server in the form of returned error messages. Such an attack is even slower than standard SQL injection given the guesswork involved. You need a good tool for this situation, and that's where Absinthe

8. Reverse engineering the system

The reverse engineering trick looks for software exploits, memory corruption weaknesses and so on. In this sample chapter from the excellent book Exploiting Software: How to Break Code by Greg Hoglund and Gary McGraw, you'll find a discussion about reverse engineering ploys.

9. Google hacks

Google hacks use the extraordinary power of the Google search engine to ferret out SQL Server errors -- such as "Incorrect syntax near" -- leaking from publicly accessible systems. Several Google queries are available at Johnny Long's Google Hacking Database. (Look in the sections titled Error Messages and Files containing passwords.) Hackers use Google to find passwords, vulnerabilities in Web servers, underlying operating systems, publicly available procedures and more that they can use to further compromise a SQL Server system. Combining these queries with Web site names via Google's 'site:' operator often turns up juicy info you never imagined you could unearth.

10. Perusing Web site source code

Source code can also turn up information that may lead to a SQL Server break in. Specifically, developers may store SQL Server authentication information in ASP scripts to simplify the authentication process. A manual assessment or Google could uncover this information in a split second.