Napenda kushare nanyi elimu ndogo niliyonayo
juu ya urahisi au ugumu na uwezekano na mbinu
za mtu kuteka(ku hack) id na password zako
mtandaoni.
Wanafanyaje?
Mtu anayeteka password anafanya hacking kwa
kutumia kitu kinatwa XSS( cross site scripting .)
Zipo XSS scripting za aina mbili. Kuna
Pesistance XSS na Non Persistance XSS .Soma
Cross-site scripting - Wikipedia, the free
encyclopedia kupata maelezo ya undani zaidi.
Kwa wanao penda kupata technical detail zaidi
wanaweza google maneno niliyo bold..
Inawezekanje?
Inawezaka mtu "xyz" usiyemjua au hata unamjua
akakutumia email yahoo , hotmail au popote pale
na kwenye email akaweka link ambyo wewe
unaweza ku click. Au hata kama sio email
inawezekan unatembelea mitanado mbali mbali
na kuclick mambo mengi.
Kitendo cha kuclick link usiyokuwa na uhakika
nayo kinaweza kuwa hatari. Ni hatari zaidi kama
ume set browser yako ihifadhi cookies za
account zako kama yahoo hotmail, jf etc.
Sababu ndani ya ile link hatarishi uliyoclik
kunakuwa na script inayochota cookies zako zote
na kuzihamisha kwenye site ya tapeli. Tapeli
akizipata cookies zako anaweza uingia kwa jina
na password yako ya yahoo au hotmail au site
yeyote kwenye mashine yake. Hapa ieleweke
udhaifu haupo yahoo au hotmail au jf sabbau ile
"link hatari" unayobofya inakuwa nje ya hizo site
So kwa kupata cookies zako anafanikiwa kuiteka
account yako. Mara nyingi wanataka kupata
detail zako zaidi ili uwezekano wa kukutapeli
uwe rahisi. Mfano detail wanazotafuta ni tarehe
ya kuzaliwa, Majina yako kamili na taarifa
nyingine nying kama connection za watu
unawasiliana nao. unaweza usitapeliwe wewe
akatapeliwa rafiki yako ambaye mnatumiana
email
Ufanyeje kujikinga ?
Hakuna uhakika wa usalama 100% . Hata kama
ni kompyuta binafsi usifanye browser ihifadhi
cookies hasa kwenye site ambazo una mambo
yako muhimu. Binafsi nimeset cookies kwenye jf
najua hata wakiiteka hawata gain kitu wala
sitaathirika sana. but sijaset cokie kwenye
account zangu muhimu.
Firefox wana plugin initwa WOT . ( https://
addons.mozilla.org/en-US/firefox/addon/wot-
safe-browsing-tool/ ) ambayo ukitembelea site
hatari inakupa alert. Kwa wenye firexo ni vizuri
wakawa nayo hii installed.
Nataka kujua zaidi kuhusu XSS . Nifanyeje?
Tazama hii clip ujue baadhi ya nyenzo na mbinu
zinazotumika kuhack tovuti na kuhack privacy
detail za watu kupitia mtandao
3 comments
Write commentssafi
ReplyIf you know you not are ready for a relationship why get into one and still cheat and liar. I and my wife has been married for some years now,Lately she has been hiding her phone from me and keeping Late nights. I was curious about her cheating on me.I had no proof and no one to run to.I contacted a Private investigator who linked me up with Mr James(worldcyberhackers@gmail.com) via email. He understood me well and helped me spy on my cheating wife.He gave me the password to my wife's Gmail and Facebook account and linked all my spouse WhatsApp and phone conversation to me, to find out the truth. He showed me proof of work and I just want to openly say thank you. Contact him today if you need help. Worldcyberhackers@gmail.com
ReplyHello everyone I want to introduce you guys to a group a private investigators who can help you with information you need in any situation in life and they are ready to follow you step by step until your case is cleared just contact +17078685071 and you will happily ever after
ReplyPremiumhackservices@gmail.com
EmoticonEmoticon