Jumat, 27 April 2012

Create a report of all the users and groups in you domain server.


How can I create a report of all the users and groups in my domain?
=====================================================
Note: Removal of the / domain switch will generate a report for the local machine.

NET USERS / DOMAIN> USERS.TXT

This command will return the user accounts from the Primary Domain Controller (PDC) of the current domain, and write them to a file called USER.TXT

NET ACCOUNTS / DOMAIN> ACCOUNTS.TXT

This command will return the policy account information from the PDC of the current domain, and write it to a file called ACCOUNTS.TXT

NET CONFIG SERVER> server.txt

This command will return the server name, version of Windows, active network adapter information / MAC address, Server hidden status, Maximum Logged On Users, Maximum open files per session, Idle session time, and assign it to a file called server.txt

NET CONFIG WORKSTATION> WKST.TXT

This command will return the workstation name, user name, version of Windows, network adapter, network adapter information / MAC address, Logon domain, COM Open Timeout, COM Send Count, COM Send timeout, and write it to a file called WKST.TXT .

NET GROUP / DOMAIN> DGRP.TXT

This command will return the global groups on the PDC of the current domain, and write them to a file called GRP.TXT.

Net localgroup> LGRP.TXT

This command will return the local groups on the local machine, and write them to a file call LGRP.TXT.

NET VIEW / DOMAIN: DOMAINNAME> VIEW.TXT

This command will return the specified resources in the domain, and write them to a file called VIEW.TXT.

Method # 1: By using the NET USER command
====================================

NET USER is an old NT-related user manipulation command. I will not list all of it's attributes here
(You can find for yourself by going to the Help and Support site on your computer). I do not usually use the
NET USER command in an AD environment, mostly due to the fact That it is not tailored for AD objects at all, but still, it can be used for our needs.

You can use the FOR and NET USER commands to accomplish the task in a "quick and dirty" way, without scripting or writing any code.
For example, if you type from the command prompt:
---
FOR / L% i in (1,1,500) DO NET USER myuser% i / ADD
---
This will result in creating 500 new users, named MyUser1, MyUser2, etc. You can, of course, customize the FOR command's parameters. See the FOR command help for more options.

You can also set the user's password (in this case - P @ ssw0rd) in the same manner:

FOR / L% i in (1,1,500) DO NET USER myuser% i P @ ssw0rd / ADD

You can delete all Those users by running the command Following:

FOR / L% i in (1,1,500) DO NET USER myuser% i / DELETE

Note: If run on a stand alone W2K Server, W2K PRO or on an XP machine, this script will create local users. If run on a DC it will create users in the USERS Container in the AD. However, doing so on a domain controller will not create fully-compatible AD users (as you can see Cleary if you open one of these users and try to find the User Principal Name - UPN - field).

Note: If you're using a W2K PRO or XP PRO is connected to the computer That an Active Directory network and you wish to create local users on that computer - run the command above. However, if you want, from That computer, to create users in the Active Directory database on the DC, use this command instead:

FOR / L% i in (1,1,500) DO NET USER myuser% i P @ ssw0rd / domains / ADD

To create users with pre-configured names (for example - a file with all your company's usernames or a database with usernames) create a text file like this one:

daniel Yossy Gabi Moshe's aunt ran bijo baruch

Name the file and place it USERS.TXT in a directory.

Now open a CMD in That directory and run the command Following:

FOR / F% i in (users.txt) DO NET USER% i P @ ssw0rd / domains / ADD

This will create user accounts with the names found in the USERS.TXT file, all with the same password - P @ ssw0rd. You do not have to use the / domain switch unless you want to.

See the NET USER NET USERS command or help for more options.

Please do not use this information for illegal uses.
If you have used this information to make use of this information for goodall kinds of information contained in the article is an adaptation of resource sharing.
Disclaimer
What im hoping by releasing this information is that it will help down on distributed copyrighted information.

di Tidak ada komentar:

HTML5 is the next generation of HTML ...


What is HTML5?

HTML5 will be the new standard for HTML.
The previous version of HTML, HTML 4.01, came in 1999. The web has changed a lot since then.
HTML5 is still a work in progress. However, the major browsers support many of the new HTML5 elements and APIs.

How Did HTML5 Get Started?

HTML5 is a cooperation between the World Wide Web Consortium (W3C) and the Web Hypertext Application Technology Working Group (WHATWG).
WHATWG was working with web forms and applications, and W3C was working with XHTML 2.0. In 2006, they decided to cooperate and create a new version of HTML.
Some rules for HTML5 were established:
  • New features should be based on HTML, CSS, DOM, and JavaScript
  • Reduce the need for external plugins (like Flash)
  • Better error handling
  • More markup to replace scripting
  • HTML5 should be device independent
  • The development process should be visible to the public

The HTML5 <!DOCTYPE>

In HTML5 there is only one <!doctype> declaration, and it is very simple:
<!DOCTYPE html>

Minimum HTML5 Document

Below is a simple HTML5 document, with the minimum of required tags:
<!DOCTYPE html>
<html>
<head>
<title>Title of the document</title>
</head>

<body>
The content of the document......
</body>

</html>

HTML5 - New Features

Some of the most interesting new features in HTML5:
  • The <canvas> element for 2D drawing
  • The <video> and <audio> elements for media playback
  • Support for local storage
  • New content-specific elements, like <article>, <footer>, <header>, <nav>, <section>
  • New form controls, like calendar, date, time, email, url, search

Browser Support for HTML5

HTML5 is not yet an official standard, and no browsers have full HTML5 support.
But all major browsers (Safari, Chrome, Firefox, Opera, Internet Explorer) continue to add new HTML5 features to their latest versions.


So conclusion is HTML5 is a cooperation between the World Wide Web Consortium (W3C) and the Web Hypertext Application Technology Working Group (WHATWG).
WHATWG was working with web forms and applications, and W3C was working with XHTML 2.0. In 2006, they decided to cooperate and create a new version of HTML.
HTML5 is a markup language for structuring and presenting content for the World Wide Web, and is a core technology of the Internet originally proposed by Opera Software. It is the fifth revision of the HTML standard (created in 1990 and standardized as HTML4 as of 1997) and as of April 2012 is still under development. Its core aims have been to improve the language with support for the latest multimedia while keeping it easily readable by humans and consistently understood by computers and devices (web browsersparsers, etc.). HTML5 is intended to subsume not only HTML 4, but XHTML 1 and DOM Level 2 HTML as well. Taken from W3schools.

Please do not use this information for illegal uses.
If you have used this information to make use of this information for goodall kinds of information contained in the article is an adaptation of resource sharing.
Disclaimer
What im hoping by releasing this information is that it will help down on distributed copyrighted information.

di Tidak ada komentar:

Hacking technique with google search ...


Google hacking is a computer hacking technique that uses Google Search and other Google applications to find security holes in the configuration and computer code that websites use.

[edit]Basics

Google hacking involves using advanced operators in the Google search engine to locate specific strings of text within search results. Some of the more popular examples are finding specific versions of vulnerable Web applications. The following search query would locate all web pages that have that particular text contained within them. It is normal for default installations of applications to include their running version in every page they serve, e.g., "Powered by XOOPS 2.2.3 Final".
The following search query will locate all websites that have the words "admbook" and "version" in the title of the website. It also checks to ensure that the web page being accessed is a PHP file.
intitle:admbook intitle:version filetype:php
Another technique is searching for insecure coding practices in the public code indexed by Google Code Search or other source code search engines.
One can even retrieve the username and password list from Microsoft FrontPage servers by inputting the given microscript in Google search field:
"#-Frontpage-" inurl:administrators.pwd
Devices connected to the Internet can be found. A search string such as inurl:"ViewerFrame?Mode=" will find public web cameras.
Another Useful Search is following intitle:index.of[1] followed by what ever u want to search. This can give list of files on the servers.For exampleintitle:index.of mp3 will give all the mp3 file available on various servers.

[edit]Avanced Operators

There are many simmilar Advanced operators which can be use to exploit insecure website
OperatorPurposeMixes with Other Operators?Can be used Alone?WebImagesGroupsNews
intitleSearch page Titleyesyesyesyesyesyes
allintitleSearch page titlenoyesyesyesyesyes
inurlSearch URLyesyesyesyesnot reallylike intitle
allinurlSearch URLnoyesyesyesyeslike intitle
filetypespecific filesyesnoyesyesnonot really
allintextSearch text of page onlynot reallyyesyesyesyesyes
siteSearch specific siteyesyesyesyesnonot really
linkSearch for links to pagesnoyesyesnononot really
inanchorSearch link anchor textyesyesyesyesnot reallyyes
numrangeLocate numberyesyesyesnononot really
daterangeSearch in data rangeyesnoyesnot reallynot reallynot really
authorGroup author searchyesyesnonoyesnot really
groupGroup name searchnot reallyyesnonoyesnot really
insubjectGroup subject searchyesyeslike intitlelike intitleyeslike intitle
msgidGroup msgid searchnoyesnot reallynot reallyyesnot really
So conglusion is google Hacks a compilation of carefully crafted Google searches that expose novel functionality from Google's search and map services. For example, you can use it to view a timeline of your search results, view a map, search for music, search for books, and perform many other specific kinds of searches. You can also use this program to use google as a proxy.
The name should not imply the way it should be used.
Hacks is meant as this definition. "A Hack is a modification of a program or device to give the user access to features otherwise were unavailable to them. " Taken from Wikipedia.
Please do not use this program for illegal uses.
If you have used this program to find a vulnerability or if your domain is being taken advantage of, we suggest you use Google Hacks Honey Pot
Disclaimer
What im hoping by releasing this program is that it will help crack down on illegal and illegally distributed copyrighted material.

di Tidak ada komentar: