Rating: 4 out of 5 stars
4/5
Ebook267 pages1 hour
How to Hack Like a Pornstar
By Sparc Flow
Rating: 5 out of 5 stars
5/5
()
About this ebook
This is not a book about information security. Certainly not about IT. This is a book about hacking: specifically, how to infiltrate a company’s network, locate their most critical data, and make off with it without triggering whatever shiny new security tool the company wasted their budget on.
Whether you are a wannabe ethical hacker or an experienced pentester frustrated by outdated books and false media reports, this book is definitely for you.
We will set up a fake – but realistic enough – target and go in detail over the main steps to hack the company: building phishing malware, finding vulnerabilities, rooting Windows domains, pwning a mainframe, etc.
Author
Sparc Flow
Sparc Flow is a security researcher based in Europe. He works for different institutions (banks, airlines, insurers, etc.) as a chief penetration tester. This entails looking for vulnerabilities, devloping malwares and exploiting flaws in a stealthy manner in order to find data that will make board members drop their jaws. His first book "How to Hack Like a Pornstar" captures the essence of multiple situations he faced in real life and offers the reader a peak into the world of hacking and pentesting
Related to How to Hack Like a Pornstar
Related ebooks
How to Hack Like a GOD: Master the secrets of hacking through real-life hacking scenarios Ultimate guide for being anonymous: Avoiding prison time for fun and profit Rating: 4 out of 5 stars4/5How to Hack Like a Pornstar: Hacking the Planet, #1 Rating: 5 out of 5 stars5/5How to Hack Like a Pornstar: A Step by Step Process for Breaking into a BANK Rating: 5 out of 5 stars5/5How to Hack Like a Legend: Hacking the Planet, #7 Rating: 5 out of 5 stars5/5Hacking Essentials - The Beginner's Guide To Ethical Hacking And Penetration Testing Rating: 3 out of 5 stars3/5Hacking into Hackers’ Head: A step towards creating CyberSecurity awareness Rating: 5 out of 5 stars5/5Ultimate Hacking Challenge: Hacking the Planet, #3 Rating: 5 out of 5 stars5/5How to Investigate Like a Rockstar: Hacking the Planet Rating: 0 out of 5 stars0 ratingsHacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking Rating: 5 out of 5 stars5/5Ultimate Guide for Being Anonymous: Hacking the Planet, #4 Rating: 5 out of 5 stars5/5Hacked: The Ultimate Guidence Rating: 5 out of 5 stars5/5Ethical Hacking Rating: 4 out of 5 stars4/5Cyber Security for Beginners: How to Become a Cybersecurity Professional Without a Technical Background (2022 Guide for Newbies) Rating: 0 out of 5 stars0 ratingsDeep Web Secrecy and Security: an inter-active guide to the Deep Web and beyond Rating: 4 out of 5 stars4/5The Darknet Superpack Rating: 0 out of 5 stars0 ratingsHow to Hack Like a GOD: Hacking the Planet, #2 Rating: 5 out of 5 stars5/5Hacking: 10 Easy Beginners Tutorials on How to Hack Plus Basic Security Tips Rating: 0 out of 5 stars0 ratingsZero to Hacking: Zero Series, #1 Rating: 0 out of 5 stars0 ratingsEthical Hacking 101 - How to conduct professional pentestings in 21 days or less!: How to hack, #1 Rating: 5 out of 5 stars5/5Hacking Rating: 3 out of 5 stars3/5Learn Ethical Hacking: A Help Book of Ethical Hacking Rating: 0 out of 5 stars0 ratingsHacking for Beginners: Your Guide for Learning the Basics - Hacking and Kali Linux: Security and Hacking, #1 Rating: 5 out of 5 stars5/5Make Your Smartphone 007 Smart Rating: 4 out of 5 stars4/5
Security For You
Remote/WebCam Notarization : Basic Understanding Rating: 3 out of 5 stars3/5Hacking for Beginners: Mastery Guide to Learn and Practice the Basics of Computer and Cyber Security Rating: 0 out of 5 stars0 ratingsCompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5How to Become Anonymous, Secure and Free Online Rating: 5 out of 5 stars5/5Make Your Smartphone 007 Smart Rating: 4 out of 5 stars4/5Wireless Hacking 101 Rating: 4 out of 5 stars4/5Tor and the Dark Art of Anonymity Rating: 5 out of 5 stars5/5Practical Ethical Hacking from Scratch Rating: 5 out of 5 stars5/5Hacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking Rating: 5 out of 5 stars5/5Ultimate Guide for Being Anonymous: Hacking the Planet, #4 Rating: 5 out of 5 stars5/5Cybersecurity For Dummies Rating: 4 out of 5 stars4/5Hacking For Dummies Rating: 4 out of 5 stars4/5Game Console Hacking: Xbox, PlayStation, Nintendo, Game Boy, Atari and Sega Rating: 0 out of 5 stars0 ratingsCompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsAmazon Web Services (AWS) Interview Questions and Answers Rating: 5 out of 5 stars5/5IAPP CIPP / US Certified Information Privacy Professional Study Guide Rating: 0 out of 5 stars0 ratingsPractical Lock Picking: A Physical Penetration Tester's Training Guide Rating: 5 out of 5 stars5/5Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Dark Territory: The Secret History of Cyber War Rating: 4 out of 5 stars4/5Security+ Boot Camp Study Guide Rating: 5 out of 5 stars5/5Network+ Study Guide & Practice Exams Rating: 4 out of 5 stars4/5Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity Rating: 5 out of 5 stars5/5Codes and Ciphers - A History of Cryptography Rating: 4 out of 5 stars4/5Social Engineering: The Science of Human Hacking Rating: 3 out of 5 stars3/5CompTIA Security+ Certification Study Guide, Fourth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5CompTIA Network+ Certification Guide (Exam N10-008): Unleash your full potential as a Network Administrator (English Edition) Rating: 0 out of 5 stars0 ratings
Related podcast episodes
69: Human Hacker: Human Hacker 0% found this document usefulOSINT: Who's watching you? 0% found this document usefulcybersecurity maturity model certification (CMMC) (noun) [Word Notes] 0% found this document usefulEpisode 24: To 3D Secure or Not? For Merchants That is the Question 0% found this document usefulSocial Engineering works because we're human. 0% found this document usefulS17:E5 - What is AWS and how you become a cloud engineer (Hiroko Nishimura): Opening doors and knocking out AWS jargon 100% found this document usefulCybersecurity and Hacking with Kevin Mitnick 0% found this document usefulMobile Forensics 0% found this document usefulIs enhanced hardware security the answer to ransomware? [CyberWire-X] 100% found this document useful100: NSO: NSO 0% found this document usefulEpisode 61: The Dark Web 100% found this document useful
Related articles
My Deep Dive Into One Of The Largest Dark Web Hacking Forums | Dylan Curran The GuardianArticle
My Deep Dive Into One Of The Largest Dark Web Hacking Forums | Dylan Curran
Jul 24, 2018
4 min read“Vulnerability Hunters Tend To Be Cut From A Different Cloth. They Are Naturally In Quisitive” PC Pro MagazineArticle
“Vulnerability Hunters Tend To Be Cut From A Different Cloth. They Are Naturally In Quisitive”
Jan 6, 2022
7 min read“Someone Who Under Takes A Ransomware Attack Isn’t A Hacker, They’re An Attacker” PC Pro MagazineArticle
“Someone Who Under Takes A Ransomware Attack Isn’t A Hacker, They’re An Attacker”
Aug 12, 2021
If you’ve ever attended an infosec or cybersecurity event, you will no doubt have noticed the preponderance of “Hacking is NOT a Crime” stickers. In 2018, some 500 such stickers were handed out at the DEF CON 26 event, the following year 5,000 were d
7 min readNetwork Attacks TechLifeArticle
Network Attacks
Sep 21, 2020
Though less common than malware and social engineering, network-based attacks are still a threat to every computer and mobile user, and everyone should have at least a basic understanding of what they are and how to avoid them. So this month let’s lo
4 min readSocial Engineering Maximum PCArticle
Social Engineering
Oct 15, 2019
5 min read“When The Biggest Dark Web Market Gets Busted, The Broken One Is Quickly Replaced Like Shark Teeth” PC Pro MagazineArticle
“When The Biggest Dark Web Market Gets Busted, The Broken One Is Quickly Replaced Like Shark Teeth”
Mar 11, 2021
7 min readStop All Browser Snooping with Tor Maximum PCArticle
Stop All Browser Snooping with Tor
Mar 3, 2020
8 min readAn Algorithm That Hides Your Online Tracks With Random Footsteps The AtlanticArticle
An Algorithm That Hides Your Online Tracks With Random Footsteps
Apr 11, 2017
4 min readHacker’s Manual Maximum PCArticle
Hacker’s Manual
Mar 2, 2021
1 min readRevisiting Tor TechLifeArticle
Revisiting Tor
Aug 24, 2020
4 min readRun Kali Linux NetHunter on Android Linux FormatArticle
Run Kali Linux NetHunter on Android
Jan 14, 2020
7 min readHacker’s Manual Linux FormatArticle
Hacker’s Manual
Nov 17, 2020
1 min readThe Low-Tech Hack You're Not Prepared For EntrepreneurArticle
The Low-Tech Hack You're Not Prepared For
Sep 1, 2016
1 min readEverything You May Have Wanted to Know About Ethical/Whitehat Hackers TechfastlyArticle
Everything You May Have Wanted to Know About Ethical/Whitehat Hackers
Oct 21, 2020
5 min readNmap Deep Dive Linux FormatArticle
Nmap Deep Dive
May 31, 2022
5 min readIntroducing Kali Maximum PCArticle
Introducing Kali
Mar 2, 2021
4 min readPeople Are Secretly Buying Handguns On The Dark Web FuturityArticle
People Are Secretly Buying Handguns On The Dark Web
Apr 24, 2019
2 min readHacker’s Toolkit 2o22 Linux FormatArticle
Hacker’s Toolkit 2o22
May 31, 2022
1 min readSherlock Linux FormatArticle
Sherlock
May 31, 2022
1 min read‘Open Ports’ Leave a Hole in Smartphone Security FuturityArticle
‘Open Ports’ Leave a Hole in Smartphone Security
May 8, 2017
Smartphone apps that use “open ports” to share and receive data are more vulnerable to security breaches than previously thought, mainly due to the their widespread use in internet communication, a new study suggests. The vulnerability the researcher
3 min readHack The Planet/Parrot Linux FormatArticle
Hack The Planet/Parrot
May 31, 2022
2 min readIntroducing Kali Linux FormatArticle
Introducing Kali
Nov 17, 2020
4 min readKRACK Wi-Fi Attack Threatens All Networks: How To Stay Safe And What You Need To Know MacWorldArticle
KRACK Wi-Fi Attack Threatens All Networks: How To Stay Safe And What You Need To Know
Nov 29, 2017
5 min readHack The System Linux FormatArticle
Hack The System
Dec 17, 2019
If you followed our handy guide on the previous pages, then you’ll already have augmented your Kali Light installation with Nmap, a port-scanning utility par excellence and a vital part of any pen-tester’s arsenal. As mentioned on the DVD page (there
4 min readHacker Distributions Linux FormatArticle
Hacker Distributions
Nov 17, 2020
1 min readHacking Power New PhilosopherArticle
Hacking Power
Jul 30, 2018
4 min readKRACK Wi-Fi Attack Threatens All Networks: How to Stay Safe and What You Need to Know PCWorldArticle
KRACK Wi-Fi Attack Threatens All Networks: How to Stay Safe and What You Need to Know
Dec 4, 2017
5 min readData Recovery APCArticle
Data Recovery
Mar 21, 2022
12 min readHacking Banks Linux FormatArticle
Hacking Banks
Dec 17, 2019
4 min readIs Your VPN Secure? How To Check For Leaks PCWorldArticle
Is Your VPN Secure? How To Check For Leaks
May 1, 2018
4 min read
Reviews for How to Hack Like a Pornstar
Rating: 5 out of 5 stars
5/5
2 ratings0 reviews
Book preview
How to Hack Like a Pornstar - Sparc Flow
Foreword
This is not a book about information security. Certainly not about IT. This is a book about hacking: specifically, how to infiltrate a company’s network, locate their most critical data, and make off with it without triggering whatever shiny new security tool the company wasted their budget on.
Whether you are a wannabe ethical hacker or just an enthusiast frustrated by outdated books and false media reports, this book is definitely for you.
We will set up a fake – but realistic enough – target and go in detail over the main steps to 0wn the company: building phishing malware, finding vulnerabilities, rooting Windows domains, p0wning mainframes, etc.
I have documented almost every tool and custom script used in this book. I strongly encourage you to test them and master their capabilities (and limitations) in an environment you control and own. Given the nature of this book, it is ludicrous to expect it to cover each and every hacking technique imaginable, though I will try my best to give as many examples as I can while staying true to the stated purpose of the book.
I will do a flyover of some concepts like IPSEC, TOR, and NTLM by briefly explaining how they work and what they mean in the context of the hacking scenario. If you feel like you want to go deeper, I strongly advise you to follow the links I offer near each item and explore the dark, fun concepts behind each technique and tool.
Note: Custom scripts and special commands documented in this book are publicly available at www.hacklikeapornstar.com.
By the same author:
Important disclaimer
The examples in this book are entirely fictional. The tools and techniques presented are open-source, and thus available to everyone. Pentesters use them regularly in assignments, but so do attackers. If you recently suffered a breach and found a technique or tool illustrated in this book, this does in no way incriminate the author of this book nor imply any connection between the author and the perpetrators.
Any actions and/or activities related to the material contained within this book is solely your responsibility. Misuse of the information in this book can result in criminal charges being brought against the persons in question. The author will not be held responsible in the event any criminal charges are brought against any individuals misusing the information in this book to break the law.
This book does not promote hacking, software cracking, and/or piracy. All the information provided in this book is for educational purposes only. It will help companies secure their networks against the attacks presented, and it will help investigators assess the evidence collected during an incident.
Performing any hack attempts or tests without written permission from the owner of the computer system is illegal.
Safety first
I am a blank slate – therefore I can create anything I want.
Tobey Maguire
If there is a section that most hacking books and blogposts currently disregard, it is the ‘stay safe’ section on hacking. In other words, they fail to detail the schemes and techniques a typical hacker can use to guarantee a certain level of anonymity and safety. You may be the best hacker in the world, but if you cannot control your footprint on the internet and correctly erase your trail, you will simply crash and burn.
So before trying out new techniques, we will cover in detail how to stack up layers of security to ensure maximum protection. If you want to start hacking right away, feel free to jump to Section 3, but make sure you find the time to read this section at a later time.
The single most effective rule for hacking safety can be summed up in seven words: ‘Start from scratch each and every time’. By from scratch
, I mean get a new computer, new hotspot, new IP address, and new servers for each hack. Investigators will look for common patterns between attacks. They will try to piece small evidence together to obtain a bigger and clearer picture: ‘Did we see this IP in another attack? Which browser was it using at that time¹? Which Gmail/Yahoo/Microsoft/Facebook account did it access?’.
Do not think for a second that law enforcement agencies are working alone when conducting an investigation. They have access to a pool of information, ranging from your local Internet Service Provider’s record to social network sites’. To get a sense of the massive surveillance projects conducted by governments (the USA, France, Canada, UK, etc.) check out Edward Snowden’s story² and prepare to be amazed.
Starting afresh each time helps keeping a shroud of mystery around the artifacts gathered by an investigator, and will prevent them from combining elements to trace them back to your real identity.
The first corollary of the blank slate principle is to never use your home/university/work IP address. Never. Not even with two layers of anonymity on top of it. Always assume that at some point, a small glitch in the system could somehow leak your real IP to an investigator: a tiny detail you omitted, the limits of some technology, or NSA’s superpower intelligence systems. A small connection to the real world is all it takes to motivate a law enforcement agent to dig deeper, issue warrants, and pressure you to confess. We do not want that.
First layer – Blend in
Which IP should you use, then? I would strongly recommend public Wi-Fi hotspots like fast-food places (Starbucks, Olympus, McDonalds, etc.) or large public gathering places like malls, train stations, etc., as long as there are enough people to hide you from possible cameras.
When accessing the Wi-Fi hotspot, they might ask you for personal information, but of course you can just enter any information you want. If they ask for mobile verification, choose another spot or use a prepaid SIM card – paid for in cash – if you have access to one.
If they ask for email confirmation, use a ‘Yopmail.com’ account. It is a website that gives access to a mailbox in literally two seconds, which is quite useful for validation links and spam messages.
Second layer – Smuggle data like a ‘champion’
The second layer of hacking safety is by far the most important one. It usually consists of a tunneled network that encrypts anything that travels in it and ideally maintains zero journals about who accessed which IP address.
TOR³ is a free, open-source project that does just that. It is a network of servers that exchange encrypted information. For example, a request will leave your computer from France, enter the TOR network, get encrypted a few times, and leave from a server in China before reaching its final destination (Facebook, Twitter, etc.).
tor copyThe service visited (Facebook) cannot see the original IP address; they only see the IP address of the exit node. Since multiple people are using this exit node, it can quickly become very confusing for anyone investigating later on.
The first node knows your real IP address (and thus your real location) but does not know which exit node your request will end up using.
Given a big number of nodes available to bounce users’ requests, the chances of going through both a malicious entry and exit node seem pretty low. While that is true, there are still ways to break a user’s anonymity that have
Enjoying the preview?
Page 1 of 1