IEC COLLEGE OF ENGINEERING & TECNOLOGY END TERM PROJECT REPORT MAY 2012

A PROJECT REPORT ON ethical hacking ( http://ehack.thegeoadventure.com )

SUBMITTED TO : GUNJAN NEHRU

SUBMITTED BY : PANKAJ KUMAR SINGH SACHIN KUMAR RAHBAR RAZA ZAIDI MCA 2011-12 4TH SEM

TABLE OF CONTENTS
TOPICS
CERTIFCATE ACKNOLEGEMENT TEAM MEMBER DURATION TECHNICAL DETAILS VOTE OF THANKS OBJECTIVE ABOUT THIS SITE LANGUAGES USED SNAPSHOTS & CODING BIBLOGRAPHY

PAGE NO.
3 4 5 6 7 8 9 10 11-27 28-42 43

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page2

Certificate
This is to certify that the project entitled ETHICAL HACKING is the bonafide work carried out by Pankaj Kumar Singh, Sachin Kumar, Rahbar Raza Zaidi, students of M.C.A., Mahamaya Technical University, Noida, during the year 2012, in partial fulfillment of the requirements for the award of the Degree of Master of Computer Application and that the project has not formed the basis for the award previously of any degree, diploma, associateship, fellowship or any other similar title. Place: Greater Noida Date: 20-April-2012

Mr. Naval Kishore (H.O.D.)

Mrs. GUNJAN NEHRU (PROJECT GUIDE)

INTERNAL EXAMINER

EXTERNAL EXAMINER

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page3

ACKNOWLEGMENT
As anyone who has written a project work, or research work, it is quite impossible to acknowledge by name every individual who has played some part in this work. I feel it difficult to express in words my profound sense of gratitude to most respected persons who helped me to make this work possible. I acknowledge my gratitude to respected Mrs. Gunjan Nehru. who has been kind enough to suggest improvement of this work and make it broad based. I would like to thank my study center IEC, for their support and encouragement. Finally of course great debts are owed to my all-friends whose wholehearted support has given me the inspiration and dedication to complete this work.

(SUPERVISOR HEAD)

PANKAJ SINGH SACHIN KUMAR RAHBAR RAZA ZAIDI

Page4

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

DURATION
It took around 30-35 days for us to complete the initial stage of our project.it included data searching,formatting ,coding , editing etc.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page5

TECHNICAL DETAILS
LANGUAGES USED:
We have used different languages like HTML, CSS, PHP, JAVA-SCRIPT etc. and many software's like Adobe Photoshop, Notepad etc. to provide user a great experience and simplicity while surfing our website.

WEB-DESIGNING SOFTWARE:
NOTEPAD ++ ADOBE PHOTOSHOP CS4

SITE HOSTING SOFTWARE:

FILE-ZILLA

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page6

VOTE OF THANKS
We are very grateful to Mrs. Gunjan Nehru and MCA Department for giving us the opportunity to develop the website. We are thankful to them for their trust and support, without which this would not have been possible.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page7

Objective/goal
This site aims at providing all information related to ethical hacking. Our main goal is to educate all people about hacking techniques, so that they can better protect there system from attacks of hacker or viruses.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page8

About this site

Ethical hackingThe term "white hat" in Internet slang refers to an ethical hacker, or a computer security expert, who specializes in penetration testing and in other testing methodologies to ensure the security of an organization's information systems. Ethical hacking is a term coined by IBM meant to imply a broader category than just penetration testing. White-hat hackers are also called "sneakers", red teams, or tiger teams.

Hacking originally meant making furniture with an axe. Perhaps because of the crude nature of this technique, the word hacker came to mean a person who takes pleasure in using unconventional methods to solve technical obstacles.

Ethical hackerAn ethical hacker is usually employed by an organization who trusts him or her to attempt to penetrate networks and/or computer systems, using the same methods as a hacker, for the purpose of finding and fixing computer security vulnerabilities. Unauthorized hacking (i.e., gaining access to computer systems without prior authorization from the owner) is a crime in most countries, but penetration testing done by request of the owner of the targeted system(s) or network(s) is not. In early 70s, a hacker, John Draper (a.k.a. Capn Crunch) invented a whistle that emits a 2.6 kHz tone used in AT&Ts trunk call switching system. He managed to gain access to call routing (and also a brief time in jail).

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page9

LANGUAGES USED

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page10

HyperText Markup Language (html)

HTML, which stands for HyperText Markup Language, is the predominant markup language forweb pages. It provides a means to create structured documents by denoting structural semanticsfor text such as headings, paragraphs, lists etc as well as for links, quotes, and other items. It allows images and objects to be embedded and can be used to create interactive forms. It is written in the form of HTML elements consisting of "tags" surrounded by angle brackets within the web page content. It can include or can load scripts in languages such as JavaScript which affect the behavior of HTML processors like Web browsers; and Cascading Style Sheets (CSS) to define the appearance and layout of text and other material. The W3C, maintainer of both HTML and CSS standards, encourages the use of CSS over explicit presentational markup.

HTML
(HyperText Markup Language)

Filename extension

.html, .htm

Internet media type

text/html

Type code

TEXT

Uniform Type Identifier

public.html

Developed by

World Wide Web Consortium & WHATWG

Type of format

Markup language

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page11

Extended from

SGML

Extended to

XHTML

Standard(s)

ISO/IEC 15445 W3C HTML 4.01 W3C HTML 5 (draft)

History
Origins
In 1980, physicist Tim Berners-Lee, who was a contractor at CERN, proposed and prototyped ENQUIRE, a system for CERN researchers to use and share documents. In 1989, Berners-Lee wrote a memo proposing an Internetbased hypertext system.[2] Berners-Lee specified HTML and wrote the browser and server software in the last part of 1990. In that year, Berners-Lee and CERN data systems engineer Robert Cailliaucollaborated on a joint request for funding, but the project was not formally adopted by CERN. In his personal notes,[3] from 1990 he lists[4] "some of the many areas in which hypertext is used", and puts an encyclopedia first.

Version history of the standard

HTML version timeline November 24, 1995
HTML 2.0 was published as IETF RFC 1866. Supplemental RFCs added capabilities:

November 25, 1995: RFC 1867 (form-based file upload) May 1996: RFC 1942 (tables) August 1996: RFC 1980 (client-side image maps) January 1997: RFC 2070 (internationalization)

In June 2000, all of these were declared obsolete/historic by RFC 2854.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page12

January 1997
HTML 3.2[14] was published as a W3C Recommendation. It was the first version developed and standardized exclusively by the W3C, as the IETF had closed its HTML Working Group in September 1996.[15] HTML 3.2 dropped math formulas entirely, reconciled overlap among various proprietary extensions, and adopted most of Netscape's visual markup tags. Netscape's blink element and Microsoft's marquee element were omitted due to a mutual agreement between the two companies.[13] A markup for mathematical formulas similar to that in HTML wasn't standardized until 14 months later in MathML. December 1997 HTML 4.0[16] was published as a W3C Recommendation. It offers three variations: Strict, in which deprecated elements are forbidden, Transitional, in which deprecated elements are allowed, Frameset, in which mostly only frame related elements are allowed;

Initially code-named "Cougar",[17] HTML 4.0 adopted many browser-specific element types and attributes, but at the same time sought to phase out Netscape's visual markup features by marking them as deprecated in favor of style sheets. HTML 4 is an SGML application conforming to ISO 8879 - SGML.[18] April 1998 HTML 4.0[19] was reissued with minor edits without incrementing the version number. December 1999 HTML 4.01[20] was published as a W3C Recommendation. It offers the same three variations as HTML 4.0, and its last errata were published May 12, 2001. May 2000 ISO/IEC 15445:2000[21][22] ("ISO HTML", based on HTML 4.01 Strict) was published as an ISO/IEC international standard. In the ISO this standard falls in the domain of the ISO/IEC JTC1/SC34 (ISO/IEC Joint Technical Committee 1, Subcommittee 34 - Document description and processing languages).[21] As of mid-2008, HTML 4.01 and ISO/IEC 15445:2000 are the most recent versions of HTML. Development of the parallel, XML-based language XHTML occupied the W3C's HTML Working Group through the early and mid-2000s.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page13

Markup
HTML markup consists of several key components, including elements (and their attributes), characterbased data types, and character references and entity references. Another important component is the document type declaration, which specifies the Document Type Definition. As of HTML 5, no Document Type Definition will need to be specified, and will only determine the layout mode [4]. The Hello world program, a common computer program employed for comparing programming languages, scripting languages, and markup languages is made of 9 lines of code in HTML, albeit Newlines are optional: <!doctype html> <html> <head> <title>Hello HTML</title> </head> <body> <p>Hello World!</p> </body> </html> This Document Type Declaration is for HTML 5.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page14

Hypertext Preprocessor (php)

PHP (Hypertext PreProcessor) is a general-purpose server-side scripting language originally designed for Web development to produce dynamic Web pages. It is one of the first developed server-side scripting languages to be embedded into an HTML source document, rather than calling an external file to process data. Ultimately, the code is interpreted by a Web server with a PHP processor module which generates the resulting Web page. It also has evolved to include a command-line interface capability and can be used in standalone graphical applications. PHP can be deployed on most Web servers and also as a standalone shell on almost every operating system and platform free of charge.A competitor to Microsoft's Active Server Pages (ASP) server-side script engine and similar languages, PHP is installed on more than 20 million Web sites and 1 million Web servers. PHP was originally created by Rasmus Lerdorf in 1995. The main implementation of PHP is now produced by The PHP Group and serves as the formal reference to the PHP language. PHP is free software released under the PHP License, which is incompatible with the GNU General Public License (GPL) due to restrictions on the usage of the term PHP.

History
PHP development began in 1994 when the Danish/Greenlandic/Canadian programmer Rasmus Lerdorf initially created a set of Perl scripts he called "Personal Home Page Tools" to maintain his personal homepage. The scripts performed tasks such as displaying his

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page15

rsum and recording his web-page traffic. Lerdorf initially announced the release of PHP on the comp.infosystems.www.authoring.cgi Usenet discussion group on June 8, 1995. He rewrote these scripts as Common Gateway Interface (CGI) binaries in C, extending them to add the ability to work with Web forms and to communicate with databases and called this implementation "Personal Home Page/Forms Interpreter" or PHP/FI. PHP/FI could be used to build simple, dynamic Web applications. Lerdorf released PHP/FI as "Personal Home Page Tools (PHP Tools) version 1.0" publicly on June 8, 1995, to accelerate bug location and improve the code. This release already had the basic functionality that PHP has today. This included Perl-like variables, form handling, and the ability to embed HTML. The syntax was similar to Perl but was more limited and simpler, although less consistent. A development team began to form and, after months of work and beta testing, officially released PHP/FI 2 in November 1997.

Licensing
PHP is free software released under the PHP License.

Security
Vulnerabilities are caused mostly by not following best practice programming rules: technical security flaws of the language itself or of its core libraries are not frequent (23 in 2008, about 1% of the total). Recognizing that programmers make mistakes, some languages include taint checking to detect automatically the lack of input validation which induces many issues. Such a feature is being developed for PHP, but its inclusion in a release has been rejected several times in the past. There are advanced protection patches such as Suhosin and Hardening-Patch, especially designed for Web hosting environments.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page16

PHPIDS adds security to any PHP application to defend against intrusions. PHPIDS detects attacks based on cross-site scripting (XSS), SQL injection, header injection, directory traversal, remote file execution, remote file inclusion, and denial-of-service (DoS).

Syntax

Functions
PHP has hundreds of base functions and thousands more via extensions. These functions are well documented on the PHP site; however, the built-in library has a wide variety of naming conventions and inconsistencies. PHP currently has no functions for thread programming, although it does support multiprocess programming on POSIX systems. Additional functions can be defined by a developer:

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page17

Cascading Style Sheets (css)

Cascading Style Sheets (CSS) is a style sheet language used to describe the presentation semantics (that is, the look and formatting) of a document written in a markup language. Its most common application is to style web pages written in HTML and XHTML, but the language can also be applied to any kind of XML document, including SVG and XUL. CSS is designed primarily to enable the separation of document content (written in HTML or a similar markup language) from document presentation, including elements such as the layout,colors, and fonts. This separation can improve content accessibility, provide more flexibility and control in the specification of presentation characteristics, enable multiple pages to share formatting, and reduce complexity and repetition in the structural content (such as by allowing fortableless web design). CSS can also allow the same markup page to be presented in different styles for different rendering methods, such as on-screen, in print, by voice (when read out by a speech-based browser or screen reader) and on Braille-based, tactile devices. While the author of a document typically links that document to a CSS style sheet, readers can use a different style sheet, perhaps one on their own computer, to override the one the author has specified. CSS specifies a priority scheme to determine which style rules apply if more than one rule matches against a particular element. In this so-called cascade, priorities or weights are calculated and assigned to rules, so that the results are predictable.

Syntax
CSS has a simple syntax and uses a number of English keywords to specify the names of various style properties. Pankaj, Sachin, & Rahbar
http://ehack.thegeoadventure.com

Page18

A style sheet consists of a list of rules. Each rule or rule-set consists of one or more selectors and adeclaration block. A declaration-block consists of a list of declarations in braces. Each declaration itself consists of a property, a colon (:), a value, then a semi-colon (;). In CSS, selectors are used to declare which of the markup elements a style applies to, a kind of match expression. Selectors may apply to all elements of a specific type, or only those elements which match a certain attribute; elements may be matched depending on how they are placed relative to each other in the markup code, or on how they are nested within the document object model. Pseudo-classes are another form of specification used in CSS to identify markup elements, and in some cases, specific user actions to which a particular declaration block applies. An often-used example is the :hover pseudo-class that applies a style only when the user 'points to' the visible element, usually by holding the mouse cursor over it. It is appended to a selector as in a:hover or#elementid:hover. Other pseudo-classes and pseudoelements are, for example, :first-line, :visited or :before. A special pseudo-class is :lang(c), "c". A pseudo-class selects entire elements, such as :link or :visited, whereas a pseudo-elementmakes a selection that may consist of partial elements, such as :first-line or :first-letter. Selectors may be combined in other ways too, especially in CSS 2.1, to achieve greater specificity and flexibility.[2] Here is an example summing up the rules above: selector [, selector2, ...][:pseudo-class] { property: value; [property2: value2; ...] } /* comment */

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page19

History
Style sheets have existed in one form or another since the beginnings of SGML in the 1970s. Cascading Style Sheets were developed as a means for creating a consistent approach to providing style information for web documents. As HTML grew, it came to encompass a wider variety of stylistic capabilities to meet the demands of web developers. This evolution gave the designer more control over site appearance but at the cost of HTML becoming more complex to write and maintain. Variations in web browserimplementations made consistent site appearance difficult, and users had less control over how web content was displayed. To improve the capabilities of web presentation, nine different style sheet languages were proposed to the W3C's www-style mailing list. Of the nine proposals, two were chosen as the foundation for what became CSS: Cascading HTML Style Sheets (CHSS) and Streambased Style Sheet Proposal (SSP). CHSS, a language which has some resemblance to today's CSS, was proposed by Hkon Wium Lie in October 1994.Bert Bos was working on a browser called Argo which used its own style sheet language, Stream-based Style Sheet Proposal (SSP). Lie and Bos worked together to develop the CSS standard (the 'H' was removed from the name because these style sheets could be applied to other markup languages besides HTML). Unlike existing style languages like DSSSL and FOSI, CSS allowed a document's style to be influenced by multiple style sheets. One style sheet could inherit or "cascade" from another, permitting a mixture of stylistic preferences controlled equally by the site designer and user.

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page20

JavaScript
JavaScript is an object-oriented scripting language used to enable programmatic access to computational objects within a host environment. Although also used in other applications, it is primarily used in the form of client-side JavaScript, implemented as part of a web browser, providing enhanced user interfaces and dynamic websites. JavaScript is a dialect of the ECMAScriptstandard and is characterized as a dynamic, weakly typed, prototype-based language with first-class functions. JavaScript was influenced by many languages and was designed to look like Java, but to be easier for non-programmers to work with.

JavaScript

Paradigm

Multi-paradigm: prototypebased, functional,[1]imperative, scripting

Appeared in

1995

Designed by

Brendan Eich

Developer

Netscape Communications Corporation, Mozilla Foundation

Stable release

1.8.1 (2009)

Preview release

1.9.3 (2010)

Typing discipline

dynamic, weak, duck

Major

KJS, Rhino,SpiderMonkey, V8,WebKit

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page21

implementations

Influenced by

Self, C, Scheme, Perl,Python, Java

Influenced

JScript, JScript .NET,Objective-J

JavaScript

Filename extension

.js

Internet media type

application/javascript, text/javascript[2]

Uniform Type Identifier

com.netscape.javascript-source[3]

Type of format

Scripting language

History
JavaScript was originally developed by Brendan Eich of Netscape under the name Mocha, which was later renamed to LiveScript, and finally to JavaScript. The change of name from LiveScript to JavaScript roughly coincided with Netscape adding support for Java

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page22

technology in its Netscape Navigator web browser. JavaScript was first introduced and deployed in the Netscape browser version 2.0B3 in December 1995. The naming has caused confusion, giving the impression that the language is a spin-off of Java, and it has been characterized by many as a marketing ploy by Netscape to give JavaScript the cachet of what was then the hot new web-programming language. "JavaScript" is a trademark of Sun Microsystems. It was used under license for technology invented and implemented by Netscape Communications and current entities such as the Mozilla Foundation. In January 2009 the CommonJS project was founded with the goal of specifying a common standard library mainly for JavaScript development outside the browser.

Syntax and SemanticS

As of 2009, the latest version of the language is JavaScript 1.8.1. It is a superset of ECMAScript (ECMA-262) Edition 3. Extensions to the language, including partial E4X (ECMA357) support and experimental features considered for inclusion into future ECMAScript editions, are documented here.[21] Sample code showcasing various JavaScript features: /* Finds the lowest common multiple of two numbers */ function LCMCalculator(x, y) { // constructor function function checkInt(x) { // inner function if (x % 1 != 0) throw new TypeError(x + " is not an integer"); // exception throwing return x; } //semicolons are optional (but beware since this may cause consecutive lines to be //erroneously treated as a single statement) this.a = checkInt(x) this.b = checkInt(y) } // The prototype of object instances created by a constructor is // that constructor's "prototype" property. LCMCalculator.prototype = { // object literal gcd : function() { // method that calculates the greatest common divisor

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page23

// Euclidean algorithm: var a = Math.abs(this.a), b = Math.abs(this.b); if (a < b) { var t = b; b = a; a = t; // swap variables } while (b !== 0) { t = b; // |t| already declared above (though we could redeclare if we wish) b = a % b; a = t; } // Only need to calculate gcd once, so "redefine" this method. // (Actually not redefinition - it's defined on the instance itself, // so that this.gcd refers to this "redefinition" instead of LCMCalculator.prototype.gcd.) // Also, 'gcd' == "gcd", this['gcd'] == this.gcd this['gcd'] = function() { return a; }; return a; }, "lcm" /* can use strings here */: function() { // Variable names don't collide with object properties, e.g. |lcm| is not |this.lcm|. // not using |this.a * this.b| to avoid FP precision issues var lcm = this.a / this.gcd() * this.b; // Only need to calculate lcm once, so "redefine" this method. this.lcm = function() { return lcm; }; return lcm; }, toString : function() { return "LCMCalculator: a = " + this.a + ", b = " + this.b; } }; [[25,55],[21,56],[22,58],[28,56]].map(function(pair) { // array literal + mapping function return new LCMCalculator(pair[0], pair[1]); }).sort(function(a, b) { // sort with this comparative function return a.lcm() - b.lcm(); }).forEach(function(obj) { /* Note: print() is a JS builtin function available in Mozilla's js CLI; * it's functionally equivalent to Java's System.out.println(). * Within a web browser, print() is a very different function (opens the "Print Page" dialog), * so use something like document.write() instead. */

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page24

print(obj + ", gcd = " + obj.gcd() + ", lcm = " + obj.lcm()); }); // Note: Array's map() and forEach() are predefined in JavaScript 1.6. // They are currently not available in all major JavaScript engines (including Internet Explorer's), // but are shown here to demonstrate JavaScript's inherent functional nature. The output is:
LCMCalculator: LCMCalculator: LCMCalculator: LCMCalculator: a a a a = = = = 28, 21, 25, 22, b b b b = = = = 56, 56, 55, 58, gcd gcd gcd gcd = = = = 28, lcm = 56 7, lcm = 168 5, lcm = 275 2, lcm = 638

Versions
Version Release date Equivalent to Netscape Mozilla Navigator Firefox Internet Explorer Opera Safari Google Chrome

1.0

March 1996

2.0

3.0

1.1

August 1996

3.0

1.2

June 1997

4.0-4.05

1.3

October 1998

ECMA-262 1st edition / ECMA-262 4.06-4.7x 2nd edition

4.0

1.4

Netscape Server

1.5

November 2000

ECMA-262 3 edition

rd

6.0

1.0

5.5 (JScript 5.5), 6 (JScript 5.6), 7 (JScript 5.7), 8 (JScript

6.0, 7.0, 8.0, 9.0, 10.0

3.0, 3.1, 3.2, 4.0

1.0

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page25

5.8)

1.6

November 2005

1.5 + Array extras + Array and String generics + E4X

1.5

1.7

October 2006

1.6 + Pythonic generators + Iterators + let

2.0

1.8

June 2008

1.7 + Generator expressions + Expression closures

3.0

1.8.1

1.8 + Native JSON support + Minor Updates

3.5

1.8.2

1.8.1 + Minor updates

3.6

1.9

1.8.1 + ECMAScript 5 Compliance

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page26

Screen shots & coding

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page27

home page/
1st screen shot

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page28

2nd screenshot

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page29

Coding of Home page<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html> <head> <title> @Hack: Ethical hacking :: Unblock everything on internet </title> <link href='http://fonts.googleapis.com/css?family=Muli' rel='stylesheet' type='text/css'/> <style type="text/css"> td.font { color: #FFFFFF; font-weight:bold; font-face:verdana; } td.box { vertical-align:top; text-align:left; } #testimonials { width:700px; background:#E7E9E6 ; border:1px solid #D8D9D6; margin:5px 0; } #testimonials blockquote{ padding:10px; width:680px !important; font-family:Georgia, "Times New Roman", Times, serif; font-style:italic; color:#808080; display:block; } #testimonials blockquote p{ margin: 0 !important; padding: 6px!important; } #testimonials blockquote cite { font-style: normal; display: block; text-transform: uppercase; font-weight: bold; font-style:italic; color: #555; padding-left:5px; margin-top:10px; } html { -webkit-font-smoothing: antialiased;} * {

font-family: inherit; font-style: inherit;

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page30

font-size: 100%; border: 1 none; outline: 0; } p { padding: 0 0 0em; } .msg_list { margin: 0px; padding: 0px; width: 705px; } .msg_head { padding: 30px 10px; cursor: pointer; position: relative; background-color:#E7E9E6 ; border:1px solid #D8D9D6; margin:1px; color:white; font-weight:bold; } .msg_body { padding: 5px 10px 15px; background-color:#F4F4F8; } </style> <!-- include jQuery library --> <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.5/jquery.min.js"> </script>

<!-- include Cycle plugin --> <script type="text/javascript" src="http://cloud.github.com/downloads/malsup/cycle/jquery.cycle.all.latest.js"> </script> <script type="text/javascript"> $(document).ready(function() { $('#testimonials') .cycle({ fx: 'fade', // choose your transition type, ex: fade, scrollUp, scrollRight, shuffle pager: '#nav', timeout: 10000 }); }); </script> <script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-31335232-1']); _gaq.push(['_trackPageview']); (function() {

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page31

var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script>

<script type="text/javascript"> $(document).ready(function() { //hide the all of the element with class msg_body $(".msg_body").hide(); //toggle the componenet with class msg_body $(".msg_head").click(function() { $(this).next(".msg_body").slideToggle(600); }); }); </script> </head>

<body bgcolor="#D8D8D8" style="font-family:Arial,Dejavu Serif,tahoma,verdana,arial,lucida grande; font-size:1em; text-rendering: optimizeSpeed; margin:0;"> <table width=100% cellpadding=0 cellspacing=0> <tr width=100% height=40px bgcolor="#2E2E2E" align="center" style=" boxshadow: 10px 10px 5px #888;"> <td class=font>Home</td> <td class=font>Web Proxies</td> <td class=font><a href="http://sendmail.thegeoadventure.com/"> Email Spoofing <a> </td> <td class=font>IP Address</td> <td class=font>MAC address</td> <td class=font>Unblocking..</td> </tr> <tr align="center" > <td colspan=6> <table width=900px bgcolor="white" cellpadding=0 cellspacing=0 > <tr> <td width=750px> <table cellpadding=0 cellspacing=0 > <tr> <td rowspan=10 width=15px></td> <td height=10px colspan=4></td> <td rowspan=10 width=15px></td> </tr> <tr> <td width=220px rowspan=3> <img align="left" width="200px" height="100px" src="images/ethical 2.png"> </td> </tr> <tr> <td align="left" colspan=3 style="word-wrap:break-word;">

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page32

<h2>"At @hack.com, we are here to make you expert to tackle all the problems related to computer security."</h2> </td> </tr> <tr> <td width=150px align="right"> <a href="https://twitter.com/share" class="twitter-sharebutton">Tweet</a> <script>!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0];if(!d.getElementById(id)){js=d.createElement (s);js.id=id;js.src="//platform.twitter.com/widgets.js";fjs.parentNode.insertBef ore(js,fjs);}}(document,"script","twitter-wjs");</script> </td> <td width=150px> <iframe src="//www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.ehack.thegeoadven ture.com&amp;send=false&amp;layout=button_count&amp;width=150&amp;show_faces=fal se&amp;action=like&amp;colorscheme=light&amp;font&amp;height=21" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:150px; height:21px;" allowTransparency="true"> </iframe> </td> <td align="left"> <!-- Place this tag where you want the +1 button to render --> <g:plusone href="http://ehack.thegeoadventure.com"></g:plusone> <!-- Place this render call where appropriate --> <script type="text/javascript"> (function() { var po = document.createElement('script'); po.type = 'text/javascript'; po.async = true; po.src = 'https://apis.google.com/js/plusone.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(po, s); })(); </script> </td> </tr> <tr> <td colspan=4 align="left" width="680px" style="word-wrap:breakword;"> <p> The term "white hat" in Internet slang refers to an ethical hacker, or a computer security expert, who specializes in penetration testing and in other testing methodologies to ensure the security of an organization's information systems. Ethical hacking is a term coined by IBM meant to imply a broader category than just penetration testing. White-hat hackers are also called "sneakers", red teams, or tiger teams. </p> </td> </tr> <tr> <td colspan=4 align="center"> <div id="testimonials">

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page33

<blockquote><p>"Hacking originally meant making furniture with an axe. Perhaps because of the crude nature of this technique, the word hacker came to mean a person who takes pleasure in using unconventional methods to solve technical obstacles." <cite>&ndash;@hack.com</cite></p></blockquote> <blockquote><p>"Computer hacking was first practiced in the late 50s, when a group of MIT students prepared punch cards to manipulate an IBM 704 mainframe. One of the groups early programs was a code to control lights on mainframes console." <cite>&ndash;@hack.com</cite></p></blockquote> <blockquote><p>"In early 70s, a hacker, John Draper (a.k.a. Capn Crunch) invented a whistle that emits a 2.6 kHz tone used in AT&Ts trunk call switching system. He managed to gain access to call routing (and also a brief time in jail)." <cite>&ndash;@hack.com</cite></p></blockquote> </div> </td> </tr> <tr> <td colspan=4 align="center"> <div class="msg_list"> <table width=100% cellpadding=0 cellspacing=0 align="center"> <tr> <td colspan=2 height=30px> </td> </tr> <tr> <td> Let's come, and peep inside....<br> &nbsp; </td> </tr> <tr> <td width=50% class=box> <p class="msg_head" style="background-color:#00bcf2">Web Proxies </p> <div class="msg_body"> It is an application that acts as an intermediary for requests from clients seeking resources from other servers. <ul> <li>www.hidemyass.com/ <li>www.anonyomuse.org/ <li>www.anonymizer.com/ </ul> <a href="proxy.html">more..</a> </div> </td> </tr> <tr> <td width=50% class=box> <p class="msg_head" style="background-color:#bad80a">Email Spoofing </p> <div class="msg_body"> It is an activity in which the sender address and other parts of the email header are altered to appear as though the email originated from a different source.<br>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page34

<a href="http://goo.gl/0gzXI">try..</a> </div> </td> </tr> <tr> <td width=50% class=box> <p class="msg_head" style="background-color:#00bcf2">IP Addressing </p> <div class="msg_body"> An Internet Protocol address (IP address) is a numerical label assigned to each device (e.g., computer, printer) participating in a computer network that uses the Internet Protocol for communication. <ul> <li>www.whatismyip.com/ <li>www.hidemyip.com/ </ul> <a href="ip.html">more..</a> </div> </td> </tr> <tr> <td width=50% class=box> <p class="msg_head" style="background-color:#bad80a">MAC Addressing </p> <div class="msg_body"> A Media Access Control address (MAC address) is a unique identifier assigned to network interfaces for communications on the physical network segment. <ul> <li>mac spoofing </ul> <a href="mac.html">more..</a> </div> </td> </tr> <tr> <td width=50% class=box> <p class="msg_head" style="background-color:#00bcf2">Unblocking.. </p> <div class="msg_body"> <ul> <li>unblocking access to usb ports <li>unlocking applications <li>unlocking torrents </ul> <a href="ublock.html">more..</a> </div> </td> </tr> <tr> <td colspan=2 height=30px> </td> </tr> </table> </div> </td> </tr> </table> </td>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page35

<td bgcolor="grey" valign="top"> <script type="text/javascript"> <!-google_ad_client = "ca-pub-8997992639238510"; /* ehack */ google_ad_slot = "7725369586"; google_ad_width = 160; google_ad_height = 600; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script> </td> </tr> <tr bgcolor="#2E2E2E"> <td class=font colspan=2 text align="middle">Developed by:- pankaj singh</td> </tr> </table> </td> </tr> </table> </body> </html>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page36

home/sendmail.php
Screenshot-

http://sendmail.thegeoadventure.com
Pankaj, Sachin, & Rahbar
http://ehack.thegeoadventure.com

Page37

Coding of home/sendmail.php<?php

// fill in $server = $username $password $database

your databasa data here! "localhost"; = "user name"; = "password"; = "database_user";

$connId = mysql_connect($server,$username,$password) or die("Cannot connect to server"); $selectDb = mysql_select_db($database,$connId) or die("Cannot connect to database");

$tracking_page_name="sendmail"; $ref=$_SERVER['HTTP_REFERER']; $agent=$_SERVER['HTTP_USER_AGENT']; $ip=$_SERVER['REMOTE_ADDR']; $host_name = gethostbyaddr($_SERVER['REMOTE_ADDR']); $strSQL = "INSERT INTO track(tm, ref, agent, ip, tracking_page_name, host_name) VALUES(now(),'$ref','$agent','$ip','$tracking_page_name','$host_name')"; $test=mysql_query($strSQL); ?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html> <head> <title>sendmail: free mail, fake mail, fastest mail</title> <SCRIPT TYPE="text/javascript"> <!-function popup(mylink, windowname) { if (! window.focus)return true; var href; if (typeof(mylink) == 'string') href=mylink; else href=mylink.href; window.open(href, windowname, 'width=400,height=200,scrollbars=yes'); return false; } //--> </SCRIPT> <style type="text/css"> #wrapper{ width:900px; margin:0 auto; text-align:right;

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page38

background-color:white; } #wrapper2{ width:900px; height:130px; margin:0 auto; text-align:left; background-color:#101014; } A:link {color:#C0C0C0;text-decoration: none;} tr.spaceUnder > td { padding-bottom: 0.5em; }

</style> <meta itemprop="name" content="Geo Adventure"> <meta itemprop="description" content="rafting and trekking in rishikesh"> <script type="text/javascript"> (function() { var po = document.createElement('script'); po.type = 'text/javascript'; po.async = true; po.src = 'https://apis.google.com/js/plusone.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(po, s); })(); </script> <script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-29341171-1']); _gaq.push(['_setDomainName', 'thegeoadventure.com']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script>

</head>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page39

<body bgcolor="#212E34" onLoad="popup('http://www.thegeoadventure.com/', 'ad')"> <table width="900px" align="center" cellpadding=0 cellspacing=0 > <tr> <td> <div id="wrapper2" ><br> <table width=100% cellpadding=0 cellspacing=0> <tr> <td width=2% rowspan=3> &nbsp; </td> <td valign="bottom"><font color=white size="8.6em" line-height="1.13em" family="Georgia,Times New Roman,Times,serif"><b>&nbsp;&nbsp;Sendmail</b></font> </td> <td width=2% rowspan=3> <img src="images\mail_imag.png" height=148 width=163> </td> <td width=2% rowspan=3> &nbsp; </td> </tr> <tr> <td valign="top"><font color="sky blue" size=4>&nbsp;&nbsp;&nbsp;&nbsp; sendmail.thegeoadventure.com</font> </td> </tr> <tr> <td> &nbsp; </td> </tr> </table> </div> </td> </tr> <tr > <td> <div id="wrapper"> <table width=100% cellpadding=0 cellspacing=0 > <form action="myform.php" method="post"> <tr class="spaceUnder"> <td rowspan=10 width=2% bgcolor="#101014" align="left"> </td> <td height=30 colspan=4> </td> <td rowspan=10 width=2% bgcolor="#101014" align="right"> </td> </tr> <tr class="spaceUnder"> <td rowspan=10 width=10%> </td> <td>TO (Email of Recepient): </td> <td align="left"><input type="text" name="email1" size="50" /> <font color="grey"> ex- user@example.com </font></td> <td rowspan=10 width=10%> </td> </tr> <tr class="spaceUnder"> <td >From (Email of sender): </td> <td align="left"><input type="text" name="email2" size="50" /><font color="grey"> ex- user@example.com </font> </td> </tr> <tr class="spaceUnder"> <td >Subject: </td> <td align="left"><input type="text" name="subj" size="50" /> <font color="grey"> subject of email </font></td> </tr> <tr class="spaceUnder"> <td > Your Message: </td> </tr>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page40

<tr> <td colspan=2 align="center"> <textarea name="msg" rows="10" cols="60"></textarea> </td> </tr> <tr class="spaceUnder"> <td align="center" colspan=2><input type="submit" value="Send it!" style="height: 60px; width: 150px"><input type="reset" style="height: 60px; width: 150px"> </td> </tr> <tr > <td colspan=3> <center> <script type="text/javascript"> <!-google_ad_client = "ca-pub-8997992639238510"; /* mail */ google_ad_slot = "1011752962"; google_ad_width = 468; google_ad_height = 60; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script> </center> </td> </tr> </form> </table> </div> </td> </tr> <tr> <td id="wrapper2"> <center><g:plusone></g:plusone> <a href="http://twitter.com/share" class="twitter-share-button" datacount="horizontal" data-via="gogeoadventure">Tweet</a> <script type="text/javascript" src="http://platform.twitter.com/widgets.js"> </script> <iframe src="http://www.facebook.com/plugins/like.php?app_id=261431410546069&amp;href=ht tp%3A%2F%2Fwww.sendmail.thegeoadventure.com&amp;send=false&amp;layout=button_cou nt&amp;width=80&amp;show_faces=false&amp;action=like&amp;colorscheme=light&amp;f ont&amp;height=21" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:80px; height:21px;" allowTransparency="true"> </iframe><br><br> <font color="white">Developed by :- </font><a href="https://plus.google.com/110009362621004890475#110009362621004890475/about" ><font color="white">Pankaj kumar singh</font></a> <br><br> <img src="http://suprax.net/count.php?c_style=2&id=1329585190" border=0><br> </center> </td> </tr> </table>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page41

</body> </html>

Coding for home/sendmail/myform.php

<?php $ip=$_SERVER['REMOTE_ADDR']; $to = $_REQUEST["email1"]; $from = $_REQUEST["email2"]; $subject = $_REQUEST["subj"]; $message = $_REQUEST["msg"];

$headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n"; $headers = "From: $from\r\n". "this mail was sent from http://www.sendmail.thegeoadventure.com". "\r\n". "from the ip address :- $ip". "\r\n" ; mail($to, $subject, $message, $headers); echo "Your Email Sent Successfully !!! :-) ";

?>

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page42

Biblography
Here are some web address through which we gathered the information www.google.com www.wikipedia.org

Pankaj, Sachin, & Rahbar

http://ehack.thegeoadventure.com

Page43