Protect USB Drive with password without 3rd Party Tool


 Today I'm gonna talk about USB Drives.
I'll show you a simple trick to lock your USB drive without using any 3rd party software.
Most of the people doesn't like other people checking their personal files and folder on USB, including me. This insecure situation creates a huge space to theft our personal data by someone. If you use password protection to your USB, you can reduce the data theft.

Lots of USB password protect software available in present market, but you want to pay money to use it for lifetime. If you're using Windows you don't need any software.



So let's see how to set a password protect on your USB without using any software I am showing this tutorial with window 7....
Insert your USB drive to computerOpen My Computer..... Then left click on USB drive.






Now click on Turn on BitLocker...
It opens one window, in that it asks for that password... 
Enter the strong password






        Now, after entering the password click on next button

Now Store your recovery key to somewhere on your harddrive
or take printout of the key



After storing the key click on the next....

It's open another window.... Now click on
Start Encryption



When you click on Start Encryption

It starts Encrypting your Drive.



That's all !!! :)
From right now if someone tries to access your USB, Windows will ask him/her to enter the current password.




Note : If you not find the option then jst follow bellow steps

Goto > Start menu 

In search just type BitLocker....

Then click Turn On BitLocker  for USb Drive.. Then follow above steps.





Best Smiley Collection for Facebook Chat







  Now a days, we should chat on Facebook lots,
 If we think chat without smiles than how boring 
so here i have some basic and some extra smiles 
to make your chat interesting... so for what are you waiting 
just open your chat box any try it.......i know you like it 



Classical Smiles




classical Facebook emoticons

New chat smiles.... 


Just copy past and see the migic....   ;)

[[f9.laugh]]
[[f9.sad]]

[[f9.angry]]

[[f9.sleepy]]

[[f9.shock]]

[[f9.kiss]]

[[f9.inlove]]

[[f9.pizza]]

[[f9.coffee]]

[[f9.rain]]

[[f9.bomb]]

[[f9.sun]]

[[f9.heart]]

[[f9.heartbreak]]

[[f9.doctor]]

[[f9.ghost]]

[[f9.brb]]

[[f9.wine]]

[[f9.gift]]

[[f9.adore]]

[[f9.angel]]

[[f9.baloons]]

[[f9.bowl]]

[[f9.cake]]

[[f9.callme]]

[[f9.clap]]

[[f9.confused]]

[[f9.curllip]]

[[f9.devilface]]

[[f9.lying]]

[[f9.rofl]]

[[f9.billiard]]

[[f9.cakepiece]]

[[f9.rosedown]]

[[f9.shutmouth]]

[[f9.shy]]

[[f9.silly]]

[[f9.tongue1]]

[[f9.fastfood]]

[[f9.ring]]


                          

Please post your comments .....
And help us to improving our blog.

RUN - COMMANDS



Hey friends here I have something for you .......
As I have shared  previously COMMAND-LINE prompt on desktop.
Today, I am going to share some basic RUN commands to use in that command line prompt.
By using this run commands you can interact with most applications easily .




 1. Accessibility Controls - access.cpl
 2. Accessibility Wizard - accwiz
 3. Add Hardware Wizard - hdwwiz.cpl
 4. Add/Remove Programs - appwiz.cpl
 5. Administrative Tools - control admintools
 6. Automatic Updates - wuaucpl.cpl
 7. Bluetooth Transfer Wizard - fsquirt
 8. Calculator - calc
 9. Certificate Manager - certmgr.msc
10. Character Map - charmap
11. Check Disk Utility - chkdsk
12. Clipboard Viewer - clipbrd
13. Command Prompt - cmd
14. Component Services - dcomcnfg
15. Computer Management - compmgmt.msc
16. Control Panel - control
17. Date and Time Properties - timedate.cpl
18. DDE Shares - ddeshare
19. Device Manager - devmgmt.msc
20. Direct X Troubleshooter - dxdiag
21. Disk Cleanup Utility - cleanmgr
22. Disk Defragment - dfrg.msc
23. Disk Management - diskmgmt.msc
24. Disk Partition Manager - diskpart
25. Display Properties - control desktop
26. Display Properties - desk.cpl
27. Dr. Watson System Troubleshooting Utility - drwtsn32
28. Driver Verifier Utility - verifier
29. Event Viewer - eventvwr.msc
30. Files and Settings Transfer Tool - migwiz
31. File Signature Verification Tool - sigverif
32. Findfast - findfast.cpl
33. Firefox - firefox
34. Folders Properties - control folders
35. Fonts - control fonts
36. Fonts Folder - fonts
37. Free Cell Card Game - freecell
38. Game Controllers - joy.cpl
39. Group Policy Editor (for xp professional) - gpedit.msc
40. Hearts Card Game - mshearts
41. Help and Support - helpctr
42. HyperTerminal - hypertrm
43. Iexpress Wizard - iexpress
44. Indexing Service - ciadv.msc
45. Internet Connection Wizard - icwconn1
46. Internet Explorer - iexplore
47. Internet Properties - inetcpl.cpl
48. Keyboard Properties - control keyboard
49. Local Security Settings - secpol.msc
50. Local Users and Groups - lusrmgr.msc
51. Logs You Out Of Windows - logoff
52. Malicious Software Removal Tool - mrt
53. Microsoft Chat - winchat
54. Microsoft Movie Maker - moviemk
55. Microsoft Paint - mspaint
56. Microsoft Syncronization Tool - mobsync
57. Minesweeper Game - winmine
58. Mouse Properties - control mouse
59. Mouse Properties - main.cpl
60. Netmeeting - conf
61. Network Connections - control netconnections
62. Network Connections - ncpa.cpl
63. Network Setup Wizard - netsetup.cpl
64. Notepad - notepad
65. Object Packager - packager
66. ODBC Data Source Administrator - odbccp32.cpl
67. On Screen Keyboard - osk
68. Outlook Express - msimn
69. Paint - pbrush
70. Password Properties - password.cpl
71. Performance Monitor - perfmon.msc
72. Performance Monitor - perfmon
73. Phone and Modem Options - telephon.cpl
74. Phone Dialer - dialer
75. Pinball Game - pinball
76. Power Configuration - powercfg.cpl
77. Printers and Faxes - control printers
78. Printers Folder - printers
79. Regional Settings - intl.cpl
80. Registry Editor - regedit
81. Registry Editor - regedit32
82. Remote Access Phonebook - rasphone
83. Remote Desktop - mstsc
84. Removable Storage - ntmsmgr.msc
85. Removable Storage Operator Requests - ntmsoprq.msc
86. Resultant Set of Policy (for xp professional) - rsop.msc
87. Scanners and Cameras - sticpl.cpl
88. Scheduled Tasks - control schedtasks
89. Security Center - wscui.cpl
90. Services - services.msc
91. Shared Folders - fsmgmt.msc
92. Shuts Down Windows - shutdown
93. Sounds and Audio - mmsys.cpl
94. Spider Solitare Card Game - spider
95. SQL Client Configuration - cliconfg
96. System Configuration Editor - sysedit
97. System Configuration Utility - msconfig
98. System Information - msinfo32
99. System Properties - sysdm.cpl
100. Task Manager - taskmgr
101. TCP Tester - tcptest
102. Telnet Client - telnet
103. User Account Management - nusrmgr.cpl
104. Utility Manager - utilman
105. Windows Address Book - wab
106. Windows Address Book Import Utility - wabmig
107. Windows Explorer - explorer
108. Windows Firewall - firewall.cpl
109. Windows Magnifier - magnify
110. Windows Management Infrastructure - wmimgmt.msc
111. Windows Media Player - wmplayer
112. Windows Messenger - msmsgs
113. Windows System Security Tool - syskey
114. Windows Update Launches - wupdmgr
115. Windows Version - winver
116. Wordpad - write


Please share it with your friends & also leave your comments Or Suggestions.......  :)

Put a Command-Line Prompt on Your Desktop

Some command line junkies always want the command prompt within easy reach.
So here is the way ...... If you use the command line regularly—for example, to launch Windows Explorer with shortcuts you'd like the command line within easy reach. In fact, you'd like it right on your desktop. XP has no built-in way to do that for you.

               Here is the one Great program called MCL that run as small command line you can put anywhere on your desktop as shown in this figure.
To download : CLICK HERE



Now you would use the normal command line, including any normal switches that you use to launch programs.But MCL does more than just let you enter commands. It includes a number of other goodies that the XP command prompt doesn't, including these:
  • It keeps a history of your last 100 commands, so you can easily reenter or edit any commands you've already typed.
  • It includes an AutoComplete function that finishes your commands for you.
  • It lets you launch URLs directly from the command line. If you type a URL, your default browser will open to that URL.
  • It can be minimized to the System Notification area.
  • It can be launched with a hot key. The default is Ctrl-Alt-M.
The program has a few eccentricities you'll have to keep in mind when using it. When executing a DOS command, you have to use the % prefix. For example, to copy a file from C:\Favorite Files to C:\Summer, you'd use this command:
%copy C:\Favorite Files\Gabecamp.doc C:\Summer\Gabecamp.doc
To open to a specific directory in Windows Explorer, precede the command with a $. So to open to C:\Program Files, you'd issue the command $C:\Program Files.
Command-line fans will also want to get a copy of 4NT (http://www.jpsoft.com). Run it instead of the normal command prompt and get countless new features, such as a command-line editor for modifying and reexecuting previous commands; the ability to copy, delete, and rename groups of files and directories with a single command; a built-in file viewer; the ability to select or include files by a variety of criteria, including date, time, and size; the ability to append descriptions (up to 511 characters) to files; and an exceedingly powerful batch language. It's shareware and free to try, but if you continue to use it, you're expected to pay $69.95.

Tips for the PHP developer to prevent from SQL injection

                 As we seen in our previous topic that some of the way to prevent from the SQL injection.
If you have not  read yet then must read that first.... click here 

   Today, I am going to share some tips for PHP developer that how to make secure their site from the SQL injection. There are number of things are their to do, from that one of the things are as below:


Let, see the First one

Suppose, As below is your code:

<?php
 $result = mySql_query('select Text from pages where id=' . $_GET['id']);
echo($result);
?>



As shown in the above code it says that you are selecting the page content which is "Text"  from "pages" in the SQL database, and you are sorting out the right page content with $_GET[''id] and $_GET['id'] is the thing in url...

for e.g. :                http://www.example.com/index.php?id=123

As this code is easily injected by the some one, but if you can do this ...

<?php
$result = mySql_query('select Text from pages where id=' . mySql_real_escape_String($_GET['id']));
echo($result);
?>

Then you are 100 % secure.............. If  you like this post then please share this with your friends &  make aware them too from the SQL injection.

Ways to prevent your webserver from SQL Injection

                            As we all know that today SQL Injection is the easiest way to hack someone's website or any companies website. Today mostly all hackers and script kiddles are using this ....
                            So today, I am going to  share some ways to prevent SQL injection on your own or may be on your company's website.

(1) Use the email-id instead of the user id always

                          This is the one of the best way to prevent the SQL injection, to prevent it you have to use an Email Id ,so what is happening that here the code written will validate in such a way that it will not accept anything else instead of the Email address ,so here the SQL injection string is not acceptable, so the SQL injection is prevented this way.

(2) Never use default admin login page.

                        Another way to protect your website from SQL injection is that never use the default admin login page means as you use your default login page as  "AdminLogin" according to you. But try to have other than this such as "SuperLogin.asp" or "GentalLogin.asp" mean something different which can not be found easily  on the search engine hacks (i.e Google,Yahoo,Bing,etc). So when any hacker try to search for your AdminLogin page he/she , he will try in search "AdminLogin.asp"  or "Admin|Login.asp" some thing like this but he can't get the result and will be frustrated and hence your site will be prevented.

(3)  Make your Admin page became hidden from the others.

                      As we all know that nothing is secure in this universe, only just one opportunity is required. So as SQL injection is only possible through your Admin login panel or sometimes with url. So never show or link your "AdminLogin" page on your site and always make it hidden from  the other users.  If you are showing the "AdminLogin" page directly on your site than you are giving an opportunity to the hackers to hack your site.

(4)  Social Engineering.

                     Never show your website vulnerabilities to anyone or never discuss to any single person. With out asking or discussing Just try to get solution  by searching on Google. At last never show any type of warning messages on your login page such as "We are using transparent proxy don't try to hack otherwise an legal action would be taken."  


Friends I hope you like this Tips for preventing you website from SQL Injection. If you like this and it helpful  any how then share it with others too..... 


SQL METHOD ~ SQL MANIPULATION


                       As in the Earlier post I had discuss that it is  the most commonly described attacks for all types of databases (including SQL Server, MySQL, PostgreSQL, and Oracle).   Let see the SQL MANIPULATION method in some detail with basic......

Note : SQL statements are used in this chapter to demonstrate the  SQL injection method. In order to be programming language neutral, only the developer intended and attacker manipulated SQL statements are presented.  The portions in blue, italics is a sample of what input the programmer is expecting and what an attacker might actually enter into a string field of the application. 

                       The most common type of SQL Injection attack is SQL manipulation.  The attacker attempts to modify  the existing SQL statement by adding elements to the WHERE clause or extending the SQL statement  with set operators like UNION, INTERSECT, or MINUS.  There are other possible variations, but these are the most significant examples.

Example : 

                   The classic SQL manipulation is during the login authentication.  A simplistic web application may check user authentication by executing the following query and checking to see if any rows were
returned –

SELECT * FROM users
WHERE username = 'bob' and PASSWORD = 'mypassword'  

The attacker attempts to manipulate the SQL statement to execute as –

SELECT * FROM users
WHERE username = 'bob' and PASSWORD = 'mypassword' or 'a' = 'a'  

Based on operator precedence, the WHERE clause is true for every row and the attacker has gained
access to the application.

The set operator UNION is frequently used in SQL injection attacks.  The goal is to manipulate a SQL
statement into returning rows from another table.  A web form may execute the following query to
return a list of available products –

SELECT product_name FROM all_products
WHERE product_name like '%Chairs%'


The attacker attempts to manipulate the SQL statement to execute as –

SELECT product_name FROM all_products
WHERE product_name like '%Chairs' 
UNION 
SELECT username FROM dba_users 
WHERE username like '%'

The list returned to the web form will include all the selected products, but also all the database users.




Also See : What is SQL Injection ?
                 SQL Injection category.