CEH v9 : Certified Ethical Hacker V9 PDFs & Tools Download

Download Certified Ethical Hacking ( CEHv9 ) PDF & Tools. This is a PDF & Tools collection of CEH | V9. Read to learn How to Hack and become good Hacker. Check Hacking section for more Tutorials and Ebook For more Ebook download.

Download CEH V9 Ebook Modules From Below:

  1. CEHv9 Module 00.unlocked.pdf
  2. CEHv9 Module 01 Introduction to Ethical Hacking.pdf
  3. CEHv9 Module 02 Footprinting and Reconnaissance.pdf
  4. CEHv9 Module 03 Scanning Networks.pdf
  5. CEHv9 Module 04 Enumeration.pdf
  6. CEHv9 Module 05 System Hacking.pdf
  7. CEHv9 Module 06 Malware Threats.pdf
  8. CEHv9 Module 07 Sniffing.pdf
  9. CEHv9 Module 08 Social Engineering.pdf
  10. CEHv9 Module 09 Denial-of-Service.pdf
  11. CEHv9 Module 10 Session Hijacking.pdf
  12. CEHv9 Module 11 Hacking Webservers.pdf
  13. CEHv9 Module 12 Hacking Web Applications .pdf
  14. CEHv9 Module 13 SQL Injection.pdf
  15. CEHv9 Module 14 Hacking Wireless Networks.pdf
  16. CEHv9 Module 15 Hacking Mobile Platforms.pdf
  17. CEHv9 Module 16 Evading IDS, Firewalls, & Honeypots.pdf
  18. CEHv9 Module 17 Cloud Computing.pdf
  19. CEHv9 Module 18 Cryptography.pdf

CEH v9 : Certifies Ethical Hacker v9 Tools Download

Download the respective tools softwares for Hacking Pentesting for CEHv9

  1. CEHv9 Tools 02 Footprinting and Reconnaissance.zip 144M
  2. CEHv9 Tools 03 Scanning Networks.zip 171M
  3. CEHv9 Tools 04 Enumeration.zip 13M
  4. CEHv9 Tools 05 System Hacking.zip 489M
  5. CEHv9 Tools 06 Malware Threats.zip 80M
  6. CEHv9 Tools 07 Sniffing.zip 87M
  7. CEHv9 Tools 08 Social Engineering.zip 116K
  8. CEHv9 Tools 09 Denial of Service.zip 39M
  9. CEHv9 Tools 10 Session Hijacking.zip 88M
  10. CEHv9 Tools 11 Hacking Webservers.zip 293M
  11. CEHv9 Tools 12 Hacking Web Applications.zip 21M
  12. CEHv9 Tools 13 SQL Injection.zip 691M
  13. CEHv9 Tools 14 Hacking Wireless Networks.zip 71M
  14. CEHv9 Tools 15 Hacking Mobile Platforms.zip 13M
  15. CEHv9 Tools 16 Evading IDS, Firewalls and Honeypots.zip 7M
  16. CEHv9 Tools 17 Cloud Computing.zip 125M
  17. CEHv9 Tools 18 Cryptography.zip 187M

How To Root Xiaomi Redmi Note 4 using android application

How To Root Xiaomi Redmi Note 4 using android application Towel Root?

1). Download towel root2). Install the application3). Run towel root4). Click on make the rain button5). Done

How To Root Xiaomi Redmi Note 4 using KingoRoot apk?

1). Download application using below link:


2). Install the application and it ask you to enable the unknown source during installation
Just follow phone instructions and install Kingo Root on your device and allow installs from "Unknown Sources".
Root any Android device with KingoRoot, the best one-click Android apk root tool.
3). Run kingo root android application and start rooting4). Waiting for a few seconds till the result screen appear.5). Done
How to Root Xiaomi Redmi Note 4 - Install TWRP unlock Bootloader

How to Root Xiaomi Redmi Note 4 – Install TWRP & unlock Bootloader

Xiaomi has released some of the best budget smartphones with great customer support. The Smartphone giant, has always tried to bring more and more development to its device to push more updates. The Xiaomi Redmi Note 4, launched in Dec 2016, is the next budget smartphone after the Redmi Note 3. If have successfully got your device, you might be aware of Android Nougat beta for Xiaomi Redmi Note 4. The good news is, you can Successfully root Redmi Note 4.
If you’re the one who loves to tinker with Android devices, rooting your Xiaomi Redmi Note 4 & installing custom ROMs should be your first choice. Rooting will not allow you to remove Bloatware but also improve your device’s performance. If you’re not aware of the term Rooting, you can read everything about Android rooting.
Now that you have finally decided to Root your Xiaomi Redmi Note 4, let me guide you through the entire rooting procedure. We can’t root our Android devices directly as nowadays, Manufacturers lock the Bootloader on your device. The locked bootloader won’t allow installation of any custom softwares or change system files. First we need to unlock the Bootloader on Redmi Note 4. Then we can install TWRP to flash the Root file (SuperSU) in Redmi Note 4 as known by his codename “nikel.”


  1. A Windows PC.
  2. Mi Unlock Tool: Download (Source)
  3. ADB Fastboot Tool (Installation is shown in link)
  4. ADB USB Drivers (Installation is shown in link)
  5. TWRP Recovery for Redmi Note 4: Download
  6. SuperSU v2.78: Download

Procedure to root Xiaomi Redmi Note 4

  1. Unlocking Bootloader:We first need to unlock the bootloader, which will allow installation of custom software (TWRP).
  2. Installing TWRP Custom Recovery: We will install the TWRP Recovery for Xiaomi Redmi Note 4 in our device. Through TWRP we can flash files without messing with code.
  3. Root Redmi Note 4: In this step, we will flash the SuperSU zip file that will root our device & install the SuperSU Root management App.

How to unlock Bootloader on Xiaomi Redmi Note 4

Step 1. Go to MiUnlock, Sign in with your Mi ID and request for Bootloader unlock with proper reason.

Unlock Bootloader on Redmi Note 4
Unlock Bootloader on Redmi Note 4

Step 2. Login with the same Mi account in your Xiaomi Redmi Note 4.
Step 3. Extract the Mi Unlock tool and launch “MiFlashUnlock.exe” file as an Administrator.

Mi Unlock Tool for Xiaomi Redmi Note 4
Mi Unlock Tool for Xiaomi Redmi Note 4

Step 4. After opening the app, click on Agree. Enter your same Mi Account details in the Mi unlock app.

Mi Unlock for Xiaomi Redmi Note 4
Mi Unlock for Xiaomi Redmi Note 4

After login, Mi will check if your Account has unlock permissions.
Step 5. Once you get the Device not connected message, switch off your Redmi Note 4 & boot into fastboot mode (Press and hold Volume Down + Power button), release the button as soon as you see “Fastboot” written on screen.
Step 6. Connect your Redmi Note 4 using a USB cable & click on “Unlock” in Mi Unlock tool.

Unlocking Bootloader on Redmi Note 4

Step 7. Wait for the unlock tool to unlock the bootloader on your Xiaomi Redmi Note 4. Once the procedure is completed, you’ll something similar to this:

Successfully unlocked bootloader on Xiaomi Redmi Note 4
Successfully unlocked bootloader on Xiaomi Redmi Note 4

You have not successfully unlocked the bootloader on your Xiaomi Redmi Note 4. You can now head on to installing TWRP Custom Recovery in Xiaomi Redmi Note 4.

How to install TWRP Recovery in Xiaomi Redmi Note 4

Step 1. Download the ADB Fastboot tool and extract it. Transfer the downloaded TWRP.img file in ADB folder.

Minimal ADB TWRP for Redmi Note 4
Minimal ADB TWRP for Redmi Note 4

Step 2. Connect your Redmi Note 4 to PC by enabling USB Debugging (Go to Settings > About Device > Tap on Build Number 7 times. Return to Settings > Developer options > Enable USB Debugging)
Step 3. Launch the “command.bat” file from ADB folder. Run the below command to check if everything is setup well. It will return code with connected devices.

adb devices
Xiaomi Redmi Note 4 installing TWRP Recovery
Xiaomi Redmi Note 4 “ADB devices”

Step 4. To boot the device in fastboot mode, type:

adb reboot bootloader

Step 5. Now the final step of TWRP installation, type:

fastboot flash recovery
How to flash TWRP recovery in Redmi Note 4 using ADBHow to flash TWRP recovery in Redmi Note 4 using ADB
How to flash TWRP recovery in Redmi Note 4 using ADB

You have not successfully installed TWRP custom recovery. You can now install custom ROMs, MODs, Kernels & Xposed too. It’s time to root Redmi Note 4 using TWRP.

TWRP Recovery for Xiaomi Redmi Note 4
TWRP Recovery for Xiaomi Redmi Note 4

How to Root Xiaomi Redmi Note 4?

Step 1. Transfer the SuperSU.zip file in your Xiaomi Redmi Note 4’s Internal memory. Turn off your device.
Step 2. Boot into TWRP custom recovery mode using Press and hold Vol Up and power button.

How to boot Redmi Note 4 in TWRP recovery

Step 3. Click on Install and locate the SuperSU Root file from the list.
Step 4. Swipe to confirm installation of SuperSU Root file in Xiaomi Redmi Note 4.
Step 5. After the installation is completed, Clear Dalvik cache and Cache. Now reboot your Xiaomi Redmi Note 4.
You have successfully rooted your Xiaomi Redmi Note 4 with latest SuperSU v2.78 that works even with Nougat beta MIUI ROM. To check Root status, you can use any Root checker App from Playstore.

Successfully Rooted Xiaomi Redmi Note 4 with SuperSU without PC
Successfully Rooted Xiaomi Redmi Note 4 with SuperSU without PC

Facebook Hacker | Hacking Facebook Account in Minutes and Its Prevention

How to hack a Facebook account online? Hacking Facebook / Facebook Hacker is one of the most searched and hot topics around the Internet like Gmail hacker. I have prepared a detailed list of how hackers could hack someone’s Facebook account easily in few minutes and how could we prevent the same. Being a FB whitehat hacker, i get these question frequently from many people

  • Is there any online Facebook cracker tool?
  • Where can i get FB hacking software?
  • Is there any free Facebook password finder?
  • How can i hack someone’s facebook account easily?

To the best of my knowledge there is no such tool, you won’t find it anywhere and yeah if you google it, you would find many websites claim that they are providing free hack tool either online or offline but you cannot download it without completing a survey. Even after completing a survey you won’t get anything in the end. These things are posted only in the intension of making money. Don’t waste your precious time in searching such hack tool. If you want to know how hackers could hack someone’s Facebook account, please go ahead and read the techniques listed below. The most successful method among all of these techniques is PHISHING that enables anyone with no or little technical knowledge to hack a Facebook account’s password easily in few minutes
hacking facebook account easily | online facebook hacker
Some of the techniques listed below are not only applicable to FB but to all daily used internet websites like Google, Twitter, Yahoo etc.

You won’t be vulnerable to hacking if you understand how hacking works

10 ways to hack someone’s FB account Online | Prevention and Safety Measures – 2017

1 Phishing

Phishing is the most common technique used for hacking FB passwords. It is easy for anyone who is having little technical knowledge to get a phishing page done and that is why phishing is so popular. Many people become a victim of Phishing page due to its trustworthy layout and appearance.

How phishing works?

In simple words, Phishing is a process of creating a duplicate copy of a reputed website’s page in the intention of stealing user’s password or other sensitive information like credit card details. In our topic, Creating a page which perfectly looks like Facebook login page but in a different URL like fakebook.com or faecbook.com or any URL which pretends to be legit. When a user lands on such a page, he/she might think that is real Facebook login page and asking them to provide their username and password. So the people who do not find phishing page suspicious might enter their username, password and the password information would be sent to the Facebook hacker who created the phishing page, simultaneously the victim would get redirected to original FB page.
Example : John is a programmer, he creates a FB login page with some scripts that enable him to get the username and password information. John put this fake login page in https://www.facebouk.com/make-money-online-tricks. Peter is a friend of John. John sends a message to Peter “Hey Peter, I found a free trick to make money online easily, you should definitely take a look at this https://www.facebouk.com/make-money-online-tricks-free”. Peter navigate to the link and see a Facebook login page. As usual Peter enters his username and password of FB. Now the username and password of Peter was sent to John and Peter get redirected to a money making tips page https://www.facebouk.com/make-money-online-tricks-tips-free.html. That’s all Peter’s Facebook account is hacked.

How could you protect yourself from online FB phishing?

Hackers can reach you in many ways like email, personal messages, FB messages, Website ads etc. Clicking any links from these messages would lead you to a Facebook login page. Whenever you find a FB login page, you should note only one thing which is URL because nobody can spoof / use Facebook URL except when there are some XSS zero day vulnerabilities but that’s very rare.

  1. What is the URL you see in browser address bar?
  2. Is that really https://www.facebook.com/ (Trailing slash is important since it is the only separator in Google chrome to distinguish domain and sub domain. Check out the below examples to know the difference)?
  3. Is there a Green colour secure symbol (HTTPS) provided in the address bar?

Keeping these questions in your mind would prevent you from getting hacked of online phishing pages. Also see the below examples of phishing pages.
Some super perfect phishing pages are listed below.

Facebook Perfect Phishing Page
Facebook Phishing Page – Note the misleading URL

Most of the people won’t suspect this page (snapshot given above) since there is https prefix with green colour secure icon and no mistake in www.facebook.com. But this is a phishing page, how? Note the URL correctly. It is https://www.facebook.com.infoknown.com so www.facebook.com is a subdomain of infoknown.com. Google Chrome do not differentiate the sub-domain and domain unlike Firefox do.
SSL Certificates (HTTPS) can be obtained from many online vendors, few vendors give SSL Certificate for Free for 1 year. Its not a big deal for a novice to create a perfect phishing page like this. So be aware of it.

Phishing Someone's Facebook Account Password
Facebook Phishing Page – Note the misleading URL.

This is a normal FB Phishing page with some modification in the word Facebook.

2 Social Engineering

This is the second most common technique of hacking Facebook accounts. Actually this method shouldn’t come under Hacking since there is no much knowledge required for this method. I am listing this method under hacking to ensure the list of most common techniques used for FB account hacking in their respective order. Social engineering is basically a process of gathering information about someone whose account you need to hack. Information like date of birth, their mobile number, their boyfriend / girlfriend’s mobile number, nickname, mother’s name, native place etc.

How Social Engineering works?

Security Question


Many websites have a common password reset option called Security Question. Most common security questions would be “What is your nickname?” , “What is your 10th grade score?” , “What is your native place?” or any custom questions defined by user. Obtaining these information from the respective people might let us hack into their account. Facebook too provides security question as password recovery option. So if anyone get to know the answer of it, they could hack your account using forgot password option.

Most Common and Weak Passwords

Security Question does not let you get into others FB account easily. But setting a weak password could easily allow any of your friends to hack into your account. What is a weak password in this scenario? A password which can be easily guessed by a third person is called weak password. Below are some of the most common passwords people tend to use in Facebook.

  • Mobile Number
  • Nickname / Name and Date of Birth Conjunction
  • Boy Friend’s Mobile Number / Girl Friend’s Mobile Number – Most of the lovers
  • Boy Friend’s / Girl Friend’s Name – Most of the lovers
  • Boy Friend and Girl Friend Name Combination
  • Bike Number
  • Unused / Old Mobile Number
  • Pet Name
  • Closest Person Name (can be friends too)

Now be honest and comment here if you are one of the people who have any one of the common passwords mentioned above. Don’t forget to change your password before making a comment

How could you protect yourself from Social Engineering?

Security Question

Don’t have a weak or familiar security question/answer. It should be known only to you. You can set your Facebook security question here. Additionally FB provide an option called “Login Alerts” under Facebook Security Settings, you should add your mobile or email there to get notified whenever your Facebook account is logged in to a new or unknown device.

Most Common and Weak Passwords

Very simple. Change your Facebook password now if you have any one of the weak passwords stated above.

3 Plain Password Grabbing

This is another common method used to steal Facebook user’s password. Most people are unaware of these method but traditional hackers use this method to hack user accounts.

How Plain Password Grabbing works?

In this method, the Facebook hacker / attacker target a particular low quality website where the victim is a member and hack their database to get the stored plain username & password of victim. Here how could the hacker / attacker get access to Facebook? Many of us use the same password for FB and some poorxyz.com so its easy for a Facebook hacker to get your password through the low quality poorxyz.com.
In another scenario, the Facebook hacker / attacker creates a website in the intension of getting victim’s password. Whenever a user signup or register his account using email and create a password and those details will get stored in their db. So they get your email and password. Common people who uses same email and password for these kind of low quality websites might end up getting their Facebook account hacked.

How could you protect yourself from Facebook Plain Password Grabbing?

You should never trust third party low quality websites, even popular websites like Linkedin passwords are getting hacked. So never and ever trust third party low quality websites. Most of the website developers are storing plain passwords in database without even thinking about encryption or security. This makes Facebook hackers job easy since the password is stored as plain text. Best way to prevent this method is to have a unique password at least for websites that you really trust. Don’t use your FB password for any other website/portal and that’s when your password will never get exposed.

Facebook Rewarded Me For Hacking!How I Hacked Your Facebook Photos | Deleting any photo albums on Facebook using Graph API07:15 How I Hacked Your Facebook Photos | Deleting any photo albums on Facebook using Graph API07:15 How I Exposed Your Private Mobile Photos Using Facebook Graph API | Private Mobile Photos Hack01:04

4 Key Logger

Key logger is a software tool used to record keystrokes of a computer or mobile devices. This in turn records everything you type using your keyboard and store it for use.

How Key Logging works?

All keyloggers run in background (except trail versions) and won’t be viewable to users until you know the keylogger password and shortcut used to view it. It will record all the keys pressed and give you a detailed report of when and what keys are used for what application – Simply a clean report to identify passwords. Anyone who is reading the keylogger logs might be able to see the Facebook password or any passwords typed and sensitive information like credit cards, bank username password etc. Whenever you login to a public computer, there are chances for you to get your password hacked.
In another scenario, your friend/colleague/neighbour could ask you to login using their computer as a help. If their intension is to get your password then you are most likely to get your FB account hacked.
Now a days many people are using mobile key loggers, it enables to track the keypad of mobile. So any sensitive information typed in mobile could be hacked easily.

How could you protect yourself from Key Logging?

You need not be afraid of key loggers when you use your personal computer since you are the only one who is going to access it. But whenever you use any public computer or any of your friend’s computer, you should not trust it.
I always suggest my friends to use On Screen Keyboard whenever they are in need to type a password, also please make sure nobody is checking your screen while you type your password since your screen would expose what you had typed. In windows, there is a inbuilt tool called On Screen Keyboard that helps us to select keys using mouse. You can open OSK by using Run dialog box. WinKey + R opens Run dialog box, type osk and then press enter. Now a days many banking portals provide a screen keyboard in browser itself. So please make use of it whenever you are surfing in public computers.

5 Browser Extension Facebook Hacker

This method don’t let the Facebook hacker / attacker give complete access to your Facebook account but gives some power to control your account indirectly. I’ve seen multiple Google Chrome and Firefox addons which hiddenly perform actions like following a person, liking a page on behalf of your Facebook profile, etc.

How Browser extension Facebook hack works?

When you visit some malicious websites or webpages, you will be prompted to install a browser addon. Once you install the addon, it would perform all the tasks described by Facebook hacker or attacker who created it. Some primary actions are posting status updates in your wall, liking a FB page, following a person, adding you to some Facebook groups, inviting your friends to like a page or join a Facebook group etc. You may not know these things happening in your FB account except when you check your Facebook activity log periodically.

How could you prevent browser extension Facebook hack?

You can monitor your activities using a Facebook feature called Activity Log. You should not trust any third party websites prompting you to add a browser extension. Install addons only if you trust the publisher. Why should you take risk if you don’t know the publisher or intension of the addon? Always stay from these malicious browser extensions.

6 Malicious Facebook Application Hack

All the apps you use in Facebook are owned by third party and not by Facebook. Ofcourse there are a few exceptions like Instagram. A malicious application which is requesting your permission could do almost all kind of stuffs in your Facebook profile.

How malicious Facebook application hack works?

Whenever you find Login using Facebook option in any website, you should come to know that it is a third party Facebook application not owned by Facebook. When you click Login using Facebook, you will be shown a permission dialog box with the requested permission details. Once you click okay button, the requested details can be accessed from FB or the requested actions can be performed in your FB account on your behalf.

What could a third party application do in your Facebook account?

  • Post photos and status update
  • Share link to your timeline or to any group you belong
  • Manage your page
  • Post on behalf of you on the Facebook pages you own
  • Access your personal information
  • Access your photos including “Only me” privacy photos, some times they can access your mobile photos using a Facebook vulnerability like the one i found (Don’t worry its completely fixed now ).

These are just examples of what could be done. What if the application you are using is malicious? It could spam your Facebook account with bunch of worthless content.

How could you prevent yourself from malicious Facebook application hack?

You should always be aware of what permissions you give to a Facebook application even though FB is reviewing application’s permission requests. Don’t give permission to an application if you don’t trust the website or application.

FB Application Permission Dialog Box

You can edit the information that you give to an application in the permission dialog box (snapshot given above). Also you can review the applications that have access to your Facebook account here.

7 Browser Vulnerabilities

Browser Vulnerabilities are security bugs which exists in older versions of mobile and desktop browsers.

How browser vulnerabilities works in Facebook hacking?

Most browser vulnerabilities are exploited through an older version of browser since all of the zero days are patched by browser vendor once it is reported by researchers around the world. For example, Browser Same Origin Policy Vulnerability could allow a hacker / attacker to read response of any Page like Facebook and could be able to perform any action in your Facebook account since they are able to read the response by accessing the Facebook origin. Android Chrome SOP bypass by Rafay Baloch is one such vulnerability that is affecting Android webview in Android < 4.4.

How could you prevent yourself from browser vulnerabilities?

You should always update your browser and operating system once there is an updated version available. Keeping an older version always have many risk factors involved.

8 Self XSS Scam

Self XSS also known as Self Cross Site Scripting. XSS is basically a web security vulnerability, it enables hackers to inject scripts to web pages used by other users. What is self XSS then? Self XSS is a kind of social engineering attack where a victim accidentally executes a script, thus exploiting it to the hacker.

How Facebook self XSS scam works?

In this method, hacker promises to help you hack somebody else’s FB account. Instead of giving you access to someone else’s account, the hacker tricks you into running malicious Javascript in your browser console that gives hacker the ability to manipulate your account. Facebook hackers use this technique to add you in groups, add your friends to group, post in your wall, add your friends in comments etc.

How could you prevent yourself from self XSS?

Self XSS is something that you let hackers to hack your account Never and ever copy & paste code given by someone in your browser. Otherwise you will get your Facebook account hacked.

9 Trojan Horses

Trojan Horse is a malicious program which is used to spy and control a computer by misleading users of its true intent. Malware Trojan can also be called as Remote Key Logger since it records key strokes of all the applications of our computer and send it to the hacker online.

How Trojan Horse Facebook hacking works?

A software you think legit might be a trojan. A PDF you don’t suspect might contain a trojan. A avi media file given by someone might be a trojan. Trojan horses runs in the backgroud process, collect information and send it to hacker. Trojan horses can be sent in any form through any medium like pen drive, ipod, website or email. In our topic, Trojan records FB password that you have typed in your browser and send it to the Facebook hacker using Internet.

How could you prevent yourself from Trojan?

  • Don’t install programs from unknown online sources.
  • Don’t play media files received from unknown source.
  • Don’t open any kind of files downloaded from untrusted sources.
  • Don’t insert pen drive from any suspicious people.
  • Have an updated anti-virus software installed in your computer.

Having an updated anti-virus software do not guarantee you to stay safe from hacking. Basically an anti-virus software is a collection of detected malwares and viruses. Its job is to compare each and every file with their database of viruses. There are many softwares which enable us to create a undetectable trojans. But it is very unlikely to target a common man with undetectable trojanware. So having a updated antivirus program is some what protective. Don’t forget to update your anti virus software once their is an update available.

10 FB Zero Day

Zero day is a security vulnerability that are unknown to the respective software vendor. In our context, Undiscovered Facebook vulnerabilities are called Facebook Zero Day.

How Facebook Zero Day hacking works?

FB zero day vulnerabilities are very rare since Facebook runs a bug bounty program where security researchers around the world participate and report zero day vulnerabilities. It is basically a security loop hole that is unaware to FB. It can be any hack affecting Facebook. There are two types of people who find zero day vulnerabilities. First case is Security Researchers and Bug hunters who make a responsible disclosure about the vulnerability to the software vendor, FB in our context. Another case falls under evil side, black hat hackers who find zero day vulnerabilities don’t disclose it to Facebook and they will use it for their personal benefit of hacking.

How could you prevent yourself from Zero Day found by a hacker?

You need not be afraid of a zero day vulnerability affecting FB. As i have said earlier, zero day vulnerabilities are very rare. In most cases zero day vulnerabilities are targeted only at influential people and celebrities. It is rare to target a common man using a zero day vulnerability.

An Android Ransomware that Bypasses all Antivirus Security Protocol.

In a blog post published yesterday, Google said that one in 10 million app installs from the Google Play Store are labeled as ransomware infections, whereas one in 10k app installs from untrusted sources like third-party stores or from any other sources deliver ransomware strains.
Researchers at Zscaler have found a new variant of Android ransomware that could evade detection on all mobile antivirus engines at the time of its discovery.
According to mobile cyber-security firm Zscaler, who first spotted the infections, the mysterious hijacker behind this threat are using different web source to spread their payload/ransomware..
Currently the hijacker has been targeting Russian-speaking audience, this ransomware lacks some basic decryption process. Means that even if they pay the ransom, the users infected with this ransomware variant cannot unlock their phones and recover their data.
How This Ransomware Works?
The working state is same and simple & has been replicated from various other ransomware that came before. Hijacker first finds a popular app on the Play Store, clone, and disassemble it.
Then the hijacker alter and insert the malicious payload into the app. At last, the hijacker binds the code with its own algorithms and repack the app, uploading it to various source on the internet.
When users download and install this untrusted app, thinking it was a legitimate application, the malicious app waits four hours before shattering the users phone screen with popups that ask him for administrator rights.

The popups are un-deniable, as they pop up over and over again until the app gets what it wants.
Once the app has admin rights, it locks the user's display with a note below, stating users they have to pay 500 Russian rubles.

After Popups the ransomware then try to lure users to pay, the ransomware then threatens the infected phone users into sending an SMS to all their contacts, and stating the victim was caught watching illegal adult materials online.

How Does the Ransomware Evade Antivirus security check?
Because it used very obfuscated code, but also because it employed a Java reflection technique to run its code.
The app also used a 4-hour delayed execution timer, it also evaded security solutions that relied on dynamic analysis, who usually install and interact with an app for up to a few minutes.
According to Zscaler analyst, Gaurav Shinde "Considering the stealth tactics designed into this sample, it wouldn't be difficult to imagine the author successfully uploading this ransomware to the Google Play Store".
Zscaler researchers say that an analysis of the ransomware's source code did not reveal any functions that checked if the user paid the ransom, let alone send SMS to all contacts in users phone.
Preventive Measures:
In case users get infected with this new ransomware strain, researchers advise booting the device in Safe Mode, removing the Device administrator account and the app.

First Look At Google’s Open Source Fuchsia OS — Here’s How To Try Fuchsia Armadillo UI

fuchsia armadillo gui settingsLast year, we introduced you to Google’s new operating system in works, which is called Fuchsia. It has been a while that it has even got its new logo. If you’re familiar with Fuchsia, you might be knowing that unlike Android and Chrome OS, this open source operating system isn’t based on Linux kernel. You can read more about Fuchsia and Magenta kernel in our dedicated post.Google describes Fuchsia OS as an operating system for modern phones and computers. Now, in the latest development, it looks like Fuchsia has got an early interface. It features Google’s favorite card-based design and looks very fluid.A major part of Fuchsia is written with the cross-platform Flutter SDK, a project that produces code that runs on iOS and Android. Hotfixit.net has recently spotted the Fuchsia System UI, which is called Armadillo, according to Ars Technica. Here are some pictures:

fuchsia armadillo gui cards
Fullscreen apps
fuchsia armadillo gui google now
Google Now card, keyboard
fuchsia armadillo gui tablet mode
Tablet mode
fuchsia armadillo gui settings

Here’s Fuchsia Armadillo GUI in action:Armadillo is supposed to act as the default system UI for Fuchsia. Now it’s possible to download the source code, compile Fuchsia Armadillo into an Android APK and run it on an Android device. You can read more about Armadillo on GitHub.As shown in the video below, the home screen looks like a large scrollable list. There’s a profile picture, name, date, and battery icon in the center. The home button at the bottom is a small white circle.Talking about different cards, they look like Google Now suggestions. You can drag different cards here and there. You can tap the center profile picture which opens an Android-like menu. There are sliders for brightness and volume. There are other settings too like airplane mode, auto rotate, etc.

How to build Fuchsia Armadillo for Android APK?

As described on Hotfixit.net, you need to install Flutter on your computer. Here are the instructions. After doing so, create a new folder on your computer named Fuchsia and open a command prompt inside that. Now run the following commands:

123456789101112 mkdir appsmkdir libmkdir third_partycd appsclone https://github.com/fuchsia-mirror/sysui.gitmkdir modulescd modulesclone https://github.com/fuchsia-mirror/modules-common.git commoncd ../../libgit clone https://fuchsia.googlesource.com/widgetscd ../third_partygit clone https://github.com/fuchsia-mirror/third_party-dart-pkg dart-pkg

This code downloads the bare minimum for building Armadillo from Google repos. It also arranges everything for dependencies.Now open a command prompt, preferably PowerShell, in Fuchsia/apps/sysui/armadillo folder and run the following command for building APK:

1 flutter build apk –release

The above command will create Fuchsia Armadillo GUI APK, which can be found in android/app/build/outputs/apk/app-release.apk. Install the APK on your Android device and you’re good to go.

New Research Can Charge Your Smartwatch/Smartphone Without A Charger, Just Wave Your Hands

Most of us are still waiting to get wireless charging on our smartphones and smartwatches. Even with the comfort of wire-free chargers, plugging in devices every night is a real pain.
The researchers at Samsung Advanced Institute of Technology (SAIT) are working on a tech which could eliminate chargers from our lives completely. It involves the conversion of our body’s mechanical energy, produced due to everyday movements, directly into electricity. To accomplish this, a type of tiny device known as Triboelectric Nanogenerator (TENG) is used.
TENG was first demonstrated in 2012 by a research team, led by Prof. Zhong Lin Wang, at the Georgia Institue of Technology. Last year, it was known that Wang’s team is leveraging TENG devices to create energy-harvesting clothes that could store energy gathered from sunlight and human motion and store it in embedded fibers.
This technology can allow portable like smartwatches, fitness bands, and even smartphones to be charged without any external power source, just by doing activities like waving hands or typing.
Hyeon-Jin Shin, one of the authors, said that they utilized the mechanical energy generated by human movement and calculated the possibility of charging wearable devices.
“We confirmed that if the mechanical energy is entirely converted into electrical energy, the energy generated by the daily motion of an arm can sufficiently cover the energy consumption of a smart watch and even the stand-by energy consumption of a smartphone,” Shin said.
The researchers ran comparison tests for the energy generated by the TENG after one minute of typical activity against the energy consumed by different electronics and wearables during the same time period.
It’s highly unlikely that a TENG could be used to power your iPad in any case. The most it would be able to fuel is a smartwatch or a low-power phone. According to Shin, TENG’s maximum possible energy could be further boosted by “understanding the factors related to the motion in an aspect of the velocity (kinetic energy) and elasticity (impulse).”
The tech is still in development and various real-world hurdles including impedance matching, frequency control, and the stability of the structure would have to be considered in order to optimize the output of energy of TENG.
The research “Potential role of motion for enhancing maximum output energy of triboelectric nanogenerator” has been published in the APL Materials. Follow this link to read more.

Caller ID Spoofing – How to Call Anyone from Any Number and Unlimited Credits Trick..!

Before going deep into which application to use to Call Anyone from Any Number for call spoofing and more, let us first understand the concept of caller id spoofing. So first, what do you mean by caller id?
Caller ID (caller identification, CID) is a telephone service, available in analog and digital phone systems and most voice over Internet Protocol (VoIP) applications, that transmits a caller's number to the called party's telephone equipment during the ringing signal, or when the call is being set up but before the call is answered. In short, it is a unique identification of a caller on network and this is generally the number displayed to you on your screen.

What is Caller ID Spoofing?

Caller ID spoofing is the act of altering the information forwarded to your caller ID in order to hide the true origin ID. In simpler terms, caller ID spoofing allows you to display a phone number different than the actual number from which the call was placed. Oftentimes, the most important aspect of caller ID spoofing is spoofing the area code, thus giving you the ability to appear as though they’re calling from a specific location. Caller ID spoofing has been around for many years, and there are various reasons for which someone would place a spoofed call.
Generally, caller ID spoofing means to fake a call to some person from another number. So that the original number is not shown to the receiver but a fake number is shown as a caller ID.

How Caller ID Spoofing Works?

Outbound Caller ID can be spoofed in a number of ways. The most popular, and easiest of these methods is through VoIP (Voice-over-Internet-Protocol). VoIP is the technology that allows for voice communications to be sent over an Internet connection rather than through a phone line or cell tower.
Some VoIP providers allow users to configure the number they display as the caller ID through the configuration page on their website. In spoofing services which use VoIP, the user flow is as follows: The user opens the application (web or mobile) of the spoofing provider. They enter the number they wish to call, followed by the number they wish to display. When they press ‘send’ or ‘call’, the call is sent through a VoIP service, where the outbound caller ID is changed and then connected to their desired number.
Other spoofing services use a personal identification number (PIN). Users dial a number to connect to the service and enter their PIN. Then they enter the number they wish to call and the number they want to display as their Caller ID. The call is connected and the person they call sees the caller ID they chose to display as their outbound number.
In short, the server masks original caller ID with a fake one and then it makes the call.

Which apps to use?

There are many apps available on Playstore for this purpose. But we should take a great care using apps. As apps can also get access to our contacts and gallery and more, and hence there is a scenario of us being spied by others. Also sometimes, cases of data stealing takes place. So, a great care should be taken.
Most of the apps available on Playstore asks us to buy credits for calling. Hence, they do not provide this service for free. Also, the rates are different for different apps. And also a limitation is, certain apps work over a definite region only. For example, one app may be able to spoof calls in India but not in other country.
Some apps provide use a trial of 60 seconds or more. Then if you are comfortable with the service, they will ask you to buy a package. One such similar app was tried and here I got a trick for you to make unlimited calls.

How to Call Anyone from Any Number?

Application and Trick for Unlimited Credits:

You should strictly follow these steps for getting unlimited credits or else this trick will not work.
Step 1: Download Fake Call app from Playstore and Install it. But Do Not Open this app after installation. (Don't open the app after installation or else it will not work.)
Step 2: Download and install Parallel Space from Playstore. Parallel Space is an application that allows you to clone apps on your android so that you can run two same apps simultaneously.
Step 3: Now open Parallel Space (not Fake Call), and select any app to clone. After that you have cloned any app, Parallel Space generates a new ID for this parallel running apps which is different from the original phone's ID.
Step 4: Now, clone the Fake Call app. You will find it by the name "ID Changer" in your list of applications inside parallel space. (Please take care not to open the application in phone before or after cloning.)
Step 5: Now, open the app (ID Changer) from Parallel Space (and not from your original app drawer).
Step 6: After opening, you will get a screen with 0.5 credits, asking your fake number and the number you want to call to. But still don't make any calls. Instead, close the app and reopen it again from Parallel Space. On reopening, your credits will increase to 0.6.
Step 7: Now, use this credits making calls and having fun.
Step 8: When your credits are used, i.e you have no more credits left, then uninstall Parallel Space and repeat from step2 to step7.
NOTE: Do not open ID Changer from the inbuilt app drawer and always open the app from Parallel Space.

Is Caller ID Spoofing Legal?

Now you are using this app for free but is it good and legal to use such applications and spoof caller ID!!! There are different laws applied in different countries.
In the United States, “Under the Truth in Calling Act, FCC rules prohibit any person or entity from transmitting misleading or inaccurate Caller ID information with the intent to defraud, cause harm, or wrongly obtain anything of value. If no harm is intended or caused, spoofing is not illegal. Anyone who is illegally spoofing can face penalties of up to $10,000 for each violation. In some cases, spoofing can be permitted by courts for people who have legitimate reasons to hide their information, such as law enforcement agencies working on cases, victims of domestic abuse or doctors who wish to discuss private medical matters.”
In Canada, Caller ID spoofing is completely legal, although Canadians are plagued by corporations using spoofing for illegitimate or fraud purposes. These are unsolicited calls that go against the terms of service of most spoofing services, meaning the companies in question likely have an in-house service they use.
In the United Kingdom, the spoofed number MUST be allocated to the caller, or used with a third party’s explicit permission in order to remain legal.
On the top of google you may find the link of this caller spoofing article but it is not working.
Please do comment if you are having any problem following these steps. Thank you..! I am looking forward to share the knowledge of SMS spoofing and E-mail spoofing, so stay in touch

Newly Found Malware Uses 7 NSA Hacking Tools, Where WannaCry Uses 2

EternalRocks-windows-smb-nsa-hacking-toolsA security researcher has identified a new strain of malware that also spreads itself by exploiting flaws in Windows SMB file sharing protocol, but unlike the WannaCry Ransomware that uses only two leaked NSA hacking tools, it exploits all the seven.
Last week, we warned you about multiple hacking groups exploiting leaked NSA hacking tools, but almost all of them were making use of only two tools: EternalBlue and DoublePulsar.
Now, Miroslav Stampar, a security researcher who created famous 'sqlmap' tool and now a member of the Croatian Government CERT, has discovered a new network worm, dubbed EternalRocks, which is more dangerous than WannaCry and has no kill-switch in it.
Unlike WannaCry, EternalRocks seems to be designed to function secretly in order to ensure that it remains undetectable on the affected system.
However, Stampar learned of EternalRocks after it infected his SMB honeypot.
The NSA exploits used by EternalRocks, which Stampar called "DoomsDayWorm" on Twitter, includes:

  • EternalBlue — SMBv1 exploit tool
  • EternalRomance — SMBv1 exploit tool
  • EternalChampion — SMBv2 exploit tool
  • EternalSynergy — SMBv3 exploit tool
  • SMBTouch — SMB reconnaissance tool
  • ArchTouch — SMB reconnaissance tool
  • DoublePulsar — Backdoor Trojan

Whereas EternalBlue, EternalChampion, EternalSynergy and EternalRomance are SMB exploits, designed to compromise vulnerable Windows computers.
And, DoublePulsar is then used to spread the worm from one affected computers to the other vulnerable machines across the same network.
Stampar found that EternalRocks disguises itself as WannaCry to fool security researchers, but instead of dropping ransomware, it gains unauthorized control on the affected computer to launch future cyber attacks.

Here's How EternalRocks Attack Works:

EternalRocks installation takes place in a two-stage process.
During the first stage, EternalRocks downloads the Tor web browser on the affected computers, which is then used to connect to its command-and-control (C&C) server located on the Tor network on the Dark Web.

"First stage malware UpdateInstaller.exe (got through remote exploitation with second stage malware) downloads necessary .NET components (for later stages) TaskScheduler and SharpZLib from the Internet, while dropping svchost.exe (e.g. sample) and taskhost.exe (e.g. sample)," Stampar says.

According to Stampar, the second stage comes with a delay of 24 hours in an attempt to avoid sandboxing techniques, making the worm infection undetectable.
After 24 hours, EternalRocks responds to the C&C server with an archive containing the seven Windows SMB exploits mentioned above.

"Component svchost.exe is used for downloading, unpacking and running Tor from archive.torproject.org along with C&C (ubgdgno5eswkhmpy.onion) communication requesting further instructions (e.g. installation of new components)," Stampar adds.

All the seven SMB exploits are then downloaded to the infected computer. EternalRocks then scans the internet for open SMB ports to spread itself to other vulnerable systems as well.
If you are following The Hacker News coverage on WannaCry Ransomware and the Shadow Brokers leaks, you must be aware of the hacking collective's new announcement of releasing new zero-days and exploits for web browsers, smartphones, routers, and Windows operating system, including Windows 10, from next month.
The exclusive access to the upcoming leaks of zero-days and exploits would be given to those buying subscription for its 'Wine of Month Club.' However, the Shadow Brokers has not yet announced the price for the subscription.
Since the hackers and state-sponsored attackers are currently waiting for new zero-days to exploit, there is very little you can do to protect yourself from the upcoming cyber attacks.

HP Silently Installs Telemetry Bloatware On Your PC—Here’s How to Remove It

HP-Touchpoint-Analytics-ClientDo you own a Hewlett-Packard (HP) Windows PC or laptop?
Multiple HP customers from around the world are reporting that HP has started deploying a "spyware" onto their laptops—without informing them or asking their permission.
The application being branded as spyware is actually a Windows Telemetry service deployed by HP, called "HP Touchpoint Analytics Client," which was first identified on November 15.
According to reports on several online forums, the telemetry software—which the HP customers said they never opted to have installed and had no idea was continually running in the background—was pushed out in a recent update.
However, it's not yet clear whether the software has come with the latest Microsoft's Windows updates, or via HP's support assistant processes.
An official description of the software says that the program "harvests telemetry information that is used by HP Touchpoint's analytical services."

HP Touchpoint Makes Your Computer Slow

HP customers also complained that the installation slowed down their system significantly.
On HP's customer forum, one user even reported that due to more than 95 percent CPU usage by the analytics service, his system anti-malware software started checking for suspicious activity.
Another user owning an HP laptop head on to Reddit and said:

"So today all of a sudden, I'm experiencing a considerable slowdown in my laptop (Pavilion P3V59PA). Once I look for the problem in Task Manager, I found out that the program called HP Touchpoint Analytics Client (and it's subsequent follow up) constantly jumping the memory usage (~300Mb at a minimum, ~nearly 2Mb at maximum)."

"I don't remember ever installing this program whatsoever, and in control panel, I found that for some reason this program was silently installed today, without my consent."

German blog reader Detlef Krentz contacted borncity this weekend and wrote:

"I noticed that HP secretly installed the program 'HP Touchpoint Analytics Client' on all my HP devices on November 20, 2017. The program connects every day to HP. The files sent can be found under 'Program Data/HP/HP Touchpoint Analytics Client/Transfer Interface.'"

The program seems to send data to the company's server once per day. If you own an HP PC or laptop, you can find this data under ProgramDataHPHP Touchpoint Analytics ClientTransfer Interface on the Windows drive.
While responding to the allegations, HP said that the company has been shipping the same software on HP laptops since 2014 as part of its Support Assistant software and that it only collects anonymous information about the computer's hardware performance.
However, the only thing that the company has changed is the name.

"HP Touchpoint Analytics is a service we have offered since 2014 as part of HP Support Assistant. It anonymously collects diagnostic information about hardware performance. No data is shared with HP unless access is expressly granted. Customers can opt-out or uninstall the service at any time," HP said in a statement.

"HP Touchpoint Analytics was recently updated, and there were no changes to privacy settings as part of this update. We take customer privacy very seriously and act in accordance with a strict policy, available here."

Here’s How to Remove HP Touchpoint Analytics Client

If you don't want this application to send data from your computer to HP's servers, you can disable the service or uninstall the program completely, which is relatively quickly and easily.
To uninstall this service, go to Control Panel and right-click on the program name, and select Uninstall to remove it.
Alternatively, you can just press Windows+R, type "appwiz.cpl," and press Enter to load the Programs and Features control panel applet. Now, select "HP Touchpoint Analytics Client" from the list and click the "Uninstall/Change" to remove the service from your PC.
A few months ago, HP was caught using a built-in keylogger that silently spied on your all keystrokes, and stored every single key-press in a human-readable file located at the public folder, making it accessible to any user or 3rd party app installed on the PC.
Recently, Lenovo has also settled a massive $3.5 million fine from the Federal Trade Commission (FTC) for preinstalling spyware onto laptops without users' consent.

Here’s how to jailbreak iOS 11.1.2 or earlier released by google researchers

iOS 11 jailbreak exploit
Thanks to him, Google has recently released a powerful iPhone hacking tool that can help security researchers hack iOS 11.1.2 and find bugs in it. The tool is powered by an exploit of Beer. You can also check out our list of best iPhone hacking tools for ethical hacking purposes.
s promised last week, Google's Project Zero researcher Ian Beer now publicly disclosed an exploit that works on almost all 64-bit Apple devices running iOS 11.1.2 or earlier, which can be used to build an iOS jailbreak, allowing users to run apps from non-Apple sources.
On Monday morning, Beer shared the details on the exploit, dubbed "tfp0," which leveraged double-free memory corruption vulnerabilities in the kernel, the core of the operating system.
Here, "tfp0" stands for "task for pid 0" or the kernel task port—which gives users full control over the core of the operating system.
The Project Zero researcher responsibly reported these vulnerabilities to Apple in October, which were patched by the company with the release of iOS 11.2 on 2nd December.
While Beer says he has successfully tested his proof of concept exploit on the iPhone 6s and 7, and iPod Touch 6G, he believes that his exploit should work on all 64-bit Apple devices.
Another security researcher confirmed that the exploit released by Beer also works on his Apple TvOS 11.x and TV 4K running iOS 11.1.2.
What's worse? Since Apple's iOS mobile operating system and macOS desktop operating system share the same code base, the kernel for macOS is also vulnerable to the bug, according to a report published by Project Zero on Google's Chromium Blog.

Talking to Motherboard, Beer told that it would allow experts to explore and test iOS without the need to develop their own exploits. While it might seem surprising that Google would release a tool to hack its competition’s device, it’s appreciable from the security point of view. It’s not hidden that iOS exploits are rare and very hard to find; that’s why they are usually sold for high prices to third parties.

Earlier versions of the operating systems are still vulnerable to the exploit, which basically grants complete core access to the operating system and that is really what the jailbreak community requires.
Although we have not heard any news about iOS jailbreaks from the jailbreak community from very long, Beer's exploit could be the basis for a future iOS 11 jailbreak, allowing iPhone and iPad users to install third-party OS customizations via apps that are restricted by Apple.
If iOS 11.1.2 jailbreak surfaces in upcoming days, you can still downgrade to iOS 11.1.2 using iTunes even if you have updated to iOS 11.2 because Apple is still signing the operating system.