Malware Removal Service

Every website needs to be trusted by its users for it to be successful. Growing concerns about fake sites, viruses, and identity theft has made consumers reluctant to do business online or post their information on websites that have not followed any security measures.

Malware is not going away any time soon. Malware is growing, developing and constantly evolving. It is becoming more difficult to detect, and even harder to remove. Your computer is constantly at risk from infection by malware in the form of viruses, worms, trojans, rootkits, dialers and spyware.

Happy Hacking New Year 2015

Whatsapp Remote Crash POC

Recently a vulnerability has been discovered in a widely used mobile application “WhatsApp” , This application is being used by million’s of mobile phone users for messaging.

Two young security researchers have found a vulnerability which can remotely crash whatsapp by sending a specially crafted message of 2000 words ( 2 KB ) in size.

Realtek Software Defined Radio Ninja

I have recently become a huge fan of SDR, taking a 12$ USB dongle which is intended to receive FM and TV channels into a whole new world of listening to open frequencies , un-encrypted wireless handsets or ATC.

After getting into SDR in my learning phase i managed to listen to different frequencies and perfecting them making customized antennas using things i find at home.

Bash Script for automated De-Auth on 802.11

This bash script is to deauth all clients on wifi, The script is using Aircrack-ng suite to deauth clients, feel free to modify and use this script as it is.

aircrack-ng with showing all clients connected.

Shellshocked

Shellshock, is also know as Bashdoor, this bug was first disclosed on 24th September 2014. This bug let malicious hackers craft certain requests allowing them to execute arbitrary commands to the vulnerable version of bash.

CVE:
CVE-2014-6277
CVE-2014-6278
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187

My Hi-Tech birthday cake

Wanted to share the picture of my birthday cake 🙂

My 27th Birthday Cake

VLDPersonal Bug Bounty

# Exploit Title: VLD Personals – Multiple Vulnerabilities
# Date: 09/11/2014
# Exploit Author: Talib Osmani
# Exploit Authors Website: http://www.securitypentester.ninja
# Vendor Homepage: http://www.vldpersonals.com/
# Software Link: http://www.vldpersonals.com/clients/downloads.php
# Version: 2.7
# CVE: CVE-2014-9004
# Exploit-db: http://www.exploit-db.com/exploits/35193/
# Fixed Version 2.7.1
# Tested on: Windows / Linux

Introduction

I am a security enthusiast, Having 12 years of hands-on experience working in the Pakistani information security industry. I have been learning new things every day, testing new tools, playing around with my Hak5 gadgets, SDR, Wifi gadgets, building my own gadgets on Raspberry Pi. I specialize in Penetration testing, with Red team skills.

This blog is all about the experience I have gained till now, ill include the tools I am testing (which I failed to do much as of now) and the web application bugs which I am responsibly for reporting. Hope my website ends up in your bookmark and you have a present stay here

Mr. T

EDITED: May 2020

Security Pentester Ninja

Security. Tools. Hardware