Hack Windows Password in Clear Text using Mimikatz and Windows Credentials Editor

Mimikatz

mimikatz is a tool to check Windows security. It’s now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.

First Download mimikatz windows version from here. And right click on it & Run it as Administrator.

It will open mimikatz windows.

Type the following command to check  privilege

privilege::debug

Now type the following command to get users passwords in text mode.

sekurlsa::logonPasswords

Windows Credentials Editor

Windows Credentials Editor (WCE) is a security tool that allows to list Windows logon sessions and add, change, list and delete associated credentials (e.g.: LM/NT hashes, Kerberos tickets and clear text passwords).

First Download WCE from here.

Go to WCE directory & execute the following command as Administrator. And run the following command

 wce.exe -w It will show the password in plaintext.

Hack Android Devices using Omni RAT

OmniRAT is a brand new lightweight Remote Administration Tool for all versions (1.0 – 6.0) and devices that support Android. The Server is written in Java thus working on Windows, Linux and Mac. The Client is fully undetected by any Antivirus, persistent and stealth. It offers a lot of Features.

Activity Information                                                                                                              

You can retrieve detailed information about services and processes running on the client’s device.

App Widgets                                                                                                                                 

You can view the installed app widgets.

Audio Information                                                                                                 

You can retrieve detailed information about the client’s audio configuration.

Battery Information                                                                                                                               

 You can retrieve detailed information about the client’s battery configuration.

Bluetooth Information                                                                                                

You can retrieve detailed information about the client’s Bluetooth configuration.

Call Information                                                                                                                                 

 You can retrieve detailed information about the client’s call logs.

Camera Information                                                                                                                  

You can retrieve detailed information about the client’s camera configuration.

Configuration Information                                                                                                     

 You can retrieve detailed information about miscellaneous configurations.

Connectivity Information                                                                                                                       

You can retrieve detailed information about the client’s connectivity configuration.

Contacts Information                                                                                                                        

You can retrieve detailed information about the client’s contacts.

Display Information                                                                                                      

 You can retrieve detailed information about the client’s display configuration.

Features Information                                                                                                

You can retrieve the installed features on the client’s device.

Installed Apps Information                                                                                                   

You can retrieve the installed apps on the client’s device.

Location Information                                                                                                                    

You can retrieve detailed information about the client’s location.

Memory Information                                                                                                                 

You can retrieve detailed information about the client’s memory.

System Information                                                                                                                  

You can retrieve detailed information about the client’s system.

Telephony Information                                                                                                                                  

You can retrieve detailed information about the client’s telephony configuration.

WiFi Information                                                                                                                                          

You can retrieve detailed information about the client’s WiFi configuration.

Hidden and Persistent                                                                                               

OmniRAT does not show up in the client’s launcher nor in the task manager. It starts on each boot.

Small Client                                                                                                                            

 The OmniRAT apk is only 100kb small!

Account Manager                                                                                                                                                 

You can view and manage all available accounts on the client’s device.

Audio Manager                                                                                                                              

 You can manage the client’s audio (e.g. adjust volume or play sounds, etc.).

Bluetooth Manager                                                                                                                        

You can manage the clients Bluetooth (e.g. discover nearby devices, get a list of the bonded devices, etc.).

Browser Manager                                                                                                                                                     

You can view and delete the client’s browser history, bookmarks and searches.

Call Manager                                                                                                                                

You can make calls to any number and end running calls.

Clipboard Manager                                                                                                                     

 You can view and set the clients clipboard.

Download Manager                                                                                                                  

You can download files from the internet through the android Download Manager.

File Manager                                                                                                                                        

You can access, rename, delete, download files and folders of the clients file system. You can also upload files and create new directories.

Notification Manager                                                                                                                                                                  You can send advanced notifications to the client.

Sensor Manager                                                                                                                                   

 You can view the available sensors and their data.

SMS Manager                                                                                                                                             

 You can view, delete and send SMS.

UiMode Manager                                                                                                                                   

You can view and set different modes (e.g. night mode, car mode).

Vibration Manager                                                                                                                     

You can vibrate the client’s device.

Wallpaper Manager                                                                                                                                 

You can view, delete and set the clients wallpaper.

WiFi Manager                                                                                                                                    

You can view the configured WiFi networks; you can retrieve the WiFi scan results and you can enable / disable the clients WiFi.

Record Microphone                                                                                                                                        

You can record the client’s microphone.

Text to Speech                                                                                                                                                

 You can speak text on the client’s device.

Toast                                                                                                                                                                          

You can toast messages on the client’s device.

No root required                                                                                                                                                  

OmniRAT does not need root permissions in order to work.

Completely FUD                                                                                                                                                  

OmniRAT is completely FUD.

In order to use OmniRAT, you need to buy it here and install it on your pc.

Now it will ask you accept the terms of service; select the check box and click on continue

Specify a port and then start listening.

You will be prompted to allow the connection.

Now send .Apk file to the victim Android, which will display a message to update the existing application.

When victim will click on all and install option. It will show a message “App installed”.

When victim will click on done .It will show a error message 505 i.e. Device is not compatible.

Victim will click on Close.

Now OmniRat will get the control of the victim Android .

Now Right click on Galaxy Alpha and click on Information Gathering Option. It will show a list of activities to get complete information about the various activities performed on that Android.

To get the information about Battery, Click on Battery Option.

To see the call Record, Select the option Calls. It will display the complete information about the calls.

Use call manager, to make a call.

Click on Contact Information, it will show the list of all the contact details.

Click on Managers, It will show a list of option, any option

Click on Others Option, to record microphone or capture live SMS etc.

Extract the metadata Information of Any website using Foca

FOCA (Fingerprinting Organizations with Collected Archives) is a tool used mainly to find metadata and hidden information in the documents its scans. These documents may be on web pages, and can be downloaded and analyzed with FOCA.

It is capable of analyzing a wide variety of documents, with the most common being Microsoft Office, Open Office, or PDF files, although it also analyzes Adobe, In Design or SVG files, for instance.

First of all, download the FOCA from the given below link.

//www.elevenpaths.com/labstools/foca/index.html

Now click on Project & then select New Project.

Now enter the Project Name, name of the website and name of the folder where we have to save the documents and click on create to proceed further.

Now enter the name of the file where documents will be saved and click on save.

Now it will show Document collecting window, click on Search All option.

Now it will show the list of documents. Now right click on the URL and click on Download to save it in the specified folder.

AuthorMukul Mohan is a Microsoft Certified System Engineer in Security and Messaging. He is a Microsoft Certified Technology Specialist with high level of expertise in handling server side operations based on windows platform. An experienced IT Technical Trainer with over 20 years’ Experience. You can contact him [email protected]

How to Find your IMEI No. of Your Lost Android Phone

From Wikipedia

The International Mobile Station Equipment Identity or IMEI is a number, usually unique, to identify 3GPP (i.e., GSM, UMTS and LTE) and iDEN mobile phones, as well as some satellite phones. It is usually found printed inside the battery compartment of the phone, but can also be displayed on-screen on most phones by entering *#06#on the dial pad, or alongside other system information in the settings menu on Smartphone operating systems.

The IMEI number is used by a GSM network to identify valid devices and therefore can be used for stopping a stolen phone from accessing that network. For example, if a mobile phone is stolen, the owner can call his or her network provider and instruct them to “blacklist” the phone using its IMEI number. This renders the phone useless on that network and sometimes other networks too, whether or not the phone’s SIM is changed.

The IMEI is only used for identifying the device and has no permanent or semi-permanent relation to the subscriber. Instead, the subscriber is identified by transmission of an IMSI number, which is stored on a SIM card that can (in theory) be transferred to any handset. However, many network and security features are enabled by knowing the current device being used by a subscriber.

Open google.com/settings, sign-in with your Google account and expand the Android tab.