Lunes, Abril 22, 2019

How to inspect if you downloaded a apps is a phishing application. Here's how to do it.

Requirement:

1. Apk editor pro apk

2. Brain.apk (common sense)


Okay let's start the tutorial

Step:
1. Download and install the apk editor pro apk. 

2. Download the apps you want to install but first do not install yet. 

3. Open your apk editor pro apps and click "Select an Apk File" option and search the apps then              click   "Full Edit" option. 

4. At the down portion of the apk editor you will see three option there STRING FILES             MANIFEST

5. Click Files option then click DEX-SMALI and wait it till it succeed.

6. Now go to Smali Folder and look for xmainactivity.xml

7.Now you can inspect the apps if its remod with phishing method or not.

Thats it and i hope you enjoy my simple tutorial on how to know if a apps is a phishing application. Enjoy and be vigilant at all time.
Good Day Everyone ! ! ! !

Ngayon pag-uusapan natin naman ang mostly nagiging problema ng karamihan ngayon lalo na sa kanilang mga social account.

Lets start with this following question. Bakit nga ba nahahack ang isang account? And papano natin maiiwasan na mahack ang ating account.?

Mga posibleng dahilan kung bakit nahahack ang isang social account.

1. Phishing attack
2. Keylogger / Keylogging
3. Ransomware


What is Phishing?

Phishing is a type of social engineering attack often used to steal user data, including login credentials and credit card numbers. It occurs when an attacker, masquerading as a trusted entity, dupes a victim into opening an email, instant message, or text message. The recipient is then tricked into clicking a malicious link, which can lead to the installation of malware, the freezing of the system as part of a ransomware attack or the revealing of sensitive information.
An attack can have devastating results. For individuals, this includes unauthorized purchases, the stealing of funds, or identify theft.

Ang phishing can be form into application or  link like game links, porn link which is when you click or ask to log in that's the way that the hacker can fully gain access to your information and changed it.


What is Keylogger?

A keylogger is a function which records or keystrokes on a computer. Taken at this basic level, a keylogger looks absolutely harmless. In the hands of a hacker or a cyber criminal, a keylogger is a potent tool to steal away your information. We'll talk about how a keylogger works, how cybercriminals install it on your computer, and what you can do to avoid being a victim. You'll know what is a keylogger when we're done.


What is Ransomware?

Ransomware is a form of malicious software (or malware) that, once it's taken over your computer, threatens you with harm, usually by denying you access to your data. The attacker demands a ransom from the victim, promising — not always truthfully — to restore access to the data upon payment.

Users are shown instructions for how to pay a fee to get the decryption key. The costs can range from a few hundred dollars to thousands, payable to cyber criminals in Bitcoin.


Papanu natin maiiwasan yan mga ganyan?

1. For social account user specially facebook iwasan natin magclick ng link like game link or porn 
    link kasi onces na naclick mo at naglog in ka dyan palang makukuha ng hacker ang impormasyon
    mo.

2. Siguraduhin nyo din  na may recovery information ang mga social account nyo. Pwede link sa 
    mga gmail account or yahoo account or recovery number mo.

3. For Facebook user use Two Factor Authentication na nasa setting ni Facebook. Medyo hassle nga
    lang sya pero hindi naman basta basta mafufull access ang inyong facebook account.

4. For phishing application naman later on ipopost ko naman kung papanu machecheck or 
    malalaman nyo kung ang isang application is vulnerable sa phishing method.

So papanu hanggang dito na lang muna at sana may natutunan kayo sa lahat ng nasulat ko dito. 



Hanggang sa muli. Tandaan think before you click ðŸ˜‰ðŸ˜‰




  










Biyernes, Abril 12, 2019

Step by Step on how to use Http Injector

Requirement:

1.) Http Injector application (download it on Google Playstore)
2.) Ehi or Files that you will use it in Http Injector Apps
3.) And lastly dapat meron ka din nito - brain.apk (common sense 😂😂😂😂)

Step:

1.) Let's say nakapag-install kana ng Http Injector Apps sa celphone mo. Punta ka ngayon sa mga
     group or kung saan man na pwede ka makadl ng ehi files.

2.) Click mo yun binigay na link ng gumawa ng ehi. Takenote lang dapat kung ano yun sim mo dl
     mo lang yun pwede sa sim mo or pwede sa nakapromo sayo.

3.) After mo na makadl ng ehi or files. Open mo na si Http Injector Apps.

4.) After that punta ka sa bandang kaliwa sa taas ni Injector tapos hanapin mo yun parang papel na
     icon then click mo and piliin mo si Import Config.

5.) Then saka mo hanapin yun dinownload mo na files o ehi. Usually makikita mo yan it's either sa
    external or internal download folder ng cp mo or depende din sa kung ano set up ng cp mo kapag
   kapag ikaw ay nagdodownload.

6.) Then after mo na makita si Ehi iclick mo sya and wait mo na magsuccess import config sya. Pero
   in some case minsan nag-eerror sya so i would suggess na try mo sya iclear cached data si Http
   Injector Apps then restart cp and saka mo i-try ulit na iimport yun ehi.

7.) After na magsuccess import config sya check mo naman yun dalawang box na sina "DNS" at "Start SSH" then saka mo iclick na si "START"

8.) After that punta ka naman kay Log Menu ni Injector para makita mo kung ano nangyayari sa
   ginawa mo kanina. Pag may nakita ka na parang ulan lang sa taas ng cp mo ibig sabihin nun
   nagttry palang sya kumonek pero pag may ulap at parang susi na lumabas na sa taas ng cp mo ibig
   sabihin naman nun ay konektado kana kay injector.