AnonHacks

Every decade brings a new programming language that sweeps developers off their feet. One of the most popular and in-demand programming languages is Python. Stack Overflow recently ranked Python ahead of Java, C, and C++. Certification in Python is becoming increasingly popular among programmers. In this blog, I'll list my top 10 reasons Why Python is So Popular?

The right time to dive into Python is now when the technology is at its nascent stage and you can learn the skills. Here are some reasons why people choose Python as their first programming language:

1. Simple & Easy To Learn

Python is very simple and easy to learn. The language is versatile and it is similar to English!

What makes it simple? The language Python

Open-source & free

High-level

Interpreted

Work with Large Community

Furthermore, Python does not require complex syntax.

You have to write the above three lines to print 'hello world' in C, but just one line is necessary for Python.

The best thing about the code is its simplicity, which makes it suitable for beginners.

2. Portable and expandable

Python is portable and extensible, enabling seamless cross-language operations. The majority of platforms are compatible with Python, including Windows, Linux, Macintosh, Solaris, Playstation, and others.

You can integrate Java and .NET components with Python's extensibility features. You can also use C and C++ libraries.

3. Development of Web Sites

The Python programming language has several frameworks for building websites. Django, Flask, Pylons, etc., are popular frameworks. Python's ability to write fast and stable code is the primary reason behind these frameworks.

Alternatively, you can perform web scraping to retrieve information from any other website. It is also surprising that many websites such as Instagram, BitBucket, and Pinterest are built only on these frameworks.

4. Artificial Intelligence

Artificial intelligence is the next revolution in technology. Machines that can analyze, think and make decisions can mimic the human brain.

Those libraries include Keras and Tensor Flow. They let you learn without explicitly programming. Additionally, libraries such as opens can assist with computer vision and image recognition.

5. Computer Graphics

It is popular for small, large, online, and offline projects. You can use it to build GUI and desktop applications. It uses the Tkinter library to create applications quickly and easily.

A module 'pyramid' is also used in game development, and this module runs on Android as well.

6. Testing Framework

Python is a valuable tool for validating ideas and products for established companies. Several built-in Python testing frameworks cover debugging & fastest workflows. Selenium and Splinter are just two of the many tools and modules that make things easier.

This tool supports cross-platform and cross-browser testing with frameworks like PyTest and Robot Framework. Python is the booster for testing, so every tester should use it.

7. Big Data

Python handles a lot of data hassles. You can also use Python for Hadoop using parallel computing. The Python library Pydoop allows you to write Map Reduce programs and process data from HDFS by writing a MapReduce program in Python.

Other data processing libraries include Dask and Pyspark. As a result, Python is popular for processing Big Data!

8. Scripting & Automation

It's common knowledge that Python is a programming language, but you can also use it as a scripting language. Scripting involves:

Scripts are written to execute code

using a machine that reads and translates the code

Runtime error checking

Once the code passes verification, you can use it again and again. This way, you can automate certain tasks in a program.

9. Data Science

The leading language of many data scientists is Python. It was once common practice for academic scholars and private researchers to use MATLAB, but all that changed after Python numerical engines such as Numpy and Pandas were released. Python can also handle tabular, matrices, as well as statistical data, and it even visualizes them with libraries like Matplotlib and Seaborn.

10. Popularity of Python & High Salary

Python engineers earn one of the highest salaries in the industry. Python Developer salaries in the United States average $116,028 annually. In recent years, Python has become more popular. Here you come across Why You Should Learn Python in 2022.

Hey freaks! Anonhacks here. lets’s straight jump into the topic .There is a hole in WhatsApp that allows attackers with zero hacking and programming skills to permanently block any user’s account. They only need to know his phone number, and nothing else, and it is impossible to protect against potential blocking. The WhatsApp developers have been slow to fix the problem.WARNING All further steps were performed for educational and research purposes only. The author does not intend to harm any individuals privacy.All information is provided for informational and educational purposes only. The author is not responsible for any possible harm caused by the materials of this article.New flaw in WhatsApp Every WhatsApp user can lose their profile at any second with a minimal chance of recovery. As Forbes writes, it is simply impossible to protect against this, and an attacker will not even need to hack the gadget — he just needs to know the user’s phone number, after which he can initiate the blocking procedure without the possibility of re-authorization in the system.Possibility to deprive any person to use WhatsApp — this is a consequence giant vulnerability discovered in the messenger information security specialists Luis Kartintero (Luis Carpintero) and Ernesto Perrin (Ernesto Canales Pereña). They notified the WhatsApp developers of their find, but they have not yet released a patch to fix the breach, leaving 2 billion users at risk of losing their account.WhatsApp does not protect users from blocking their profile in any way.WhatsApp is the most popular messenger in the world. According to Statista.com, in terms of the number of monthly active users in January 2021, it was ahead of Facebook Messenger (1.3 billion) and Chinese WeChat (1.21 billion) with its more than 2 billion, along with QQ (617 million) … Since February 2014, WhatsApp has been owned by Facebook.How the vulnerability worksThe vulnerability in WhatsApp allows a complete blocking of the victim’s account and is carried out in two very simple steps, at each of which the performer does not even need hacking or social engineering skills — he will not contact the owner of the profile at all.

At the first stage, the attacker just needs to install WhatsApp on the smartphone and try to log in with the desired phone number. The messenger will send an SMS with a confirmation code to him, and here it is calculated that the owner of the number will ignore them. After several such attempts, the application on the attacker’s device will report too frequent authorization attempts and will allow the next one only after 12 hours. At the same time, WhatsApp on the victim’s device will continue to work as before.

Notification about impossibility of authorization due to excessive number of attempts

At the second stage, the attacker registers a new email address and writes a letter to WhatsApp technical support, in which he says that his account has been lost or stolen. He asks to turn it off and indicates the victim’s number. WhatsApp can send an automatic email asking you to rewrite the number, and the attacker will do it.

Letter to WhatsApp technical support with a request to block

Further, WhatsApp, without making sure that the real owner of the account wrote to technical support, initiates the blocking procedure. After about an hour, the messenger will suddenly stop working on the victim’s device — she will see a message that her number is no longer registered in the system. “It could have happened because you registered it on another phone. If you have not done so, please confirm your phone number to log in to your account again, ”the notification will say.

WhatsApp reply with confirmation of the request

All of this will work even if the user has activated two-factor authentication. An attempt to request a new code will fail — WhatsApp will only allow you to do this after 12 hours.

Bonus stage and complete blocking

If the attacker decides to stop at the second stage, then everything will end with just the inability of the user to connect to WhatsApp with his number for several hours. After a maximum of 12 hours, the user will be able to regain control over his account and continue working in the messenger exactly as long as someone does not want to repeat the “trick” with blocking.

But in fact, there is an additional, third stage, leading to a complete blocking of the account.

This stage can actually become the second — the attacker does not have to send a letter in support of WhatsApp, he can simply wait 12 hours, and then again make several attempts to register someone else’s number on his phone. After the third 12-hour blocking, WhatsApp will break down, and instead of a timer counting down the time until the next authorization attempt, it will show “-1 second”, moreover, constantly. This is a glitch in the messenger that cannot be bypassed.

Hanging timer on the phones of the victim (left) and the attacker

This picture will be observed both on the hacker’s device and on the victim’s smartphone, and as a result, no one else will be able to log in to the messenger using this phone number. The only thing left is to try to contact WhatsApp technical support and look for solutions to the problem.

WhatsApp does not solve the problem

An article in Forbes shedding light on a new issue in WhatsApp was published on April 10, 2021. By April 13, 2021, the developers had not released an update that fixes it and did not set a timeline for its release.

Instead, they are preparing for the implementation of a new privacy policy, according to which the messenger will automatically transfer huge amounts of personal data of users to Facebook for better ad targeting.

WhatsApp intended to introduce this policy on February 8, 2021, but was forced to temporarily abandon this idea due to a barrage of criticism. The new date of its entry into force is May 15, 2021, and all those who are not going to agree with it will face a very serious punishment.

In February 2021, CNews wrote that those who disagree with the new WhatsApp privacy policy will no longer be able to send and receive text messages. The developers will leave them with only voice calls. Moreover, the profiles of those users who stop using WhatsApp and switch to other messengers are guaranteed to be completely deleted.

Other WhatsApp problems

WhatsApp is known not only for the fact that it is used by billions of people, but also for the fact that it does not always value its users. For example, in June 2020, it became known that some phone numbers associated with user profiles in WhatsApp had been in the public domain for a long time and even got into Google search results. In total, with the help of Google, it was possible to find up to the number of about 300 thousand messenger users, and this problem was of a global nature.

WhatsApp is still in first place in terms of the number of users

In November 2019, CNews reported that WhatsApp users were automatically permanently blocked for participating in harmless group chats. It turned out to be possible to fall under the sanctions for changing the name of the chat to something that would seem to the moderators of the service to be something sinister, illegal or malicious.

At the same time, WhatsApp was in no hurry to fix this failure. To all inquiries from victims about the reasons for the blocking, the messenger employees answered that the users themselves violated the rules of the service, and the blame for the blocking lies solely with them. As a result, people had to either change their phone number to register a new profile, or go to other services — Telegram, Viber, Signal and others.

Thanks for attention!

INTRODUCTION

WhatsApp has become an important part of billions of people’s life. Many of us woke up or go to bed, by checking our WhatsApp messages. Some of us are always curious to know to check WhatsApp of our friends. Girlfriends want to check on boyfriends and boyfriends want to check on girlfriends. Today Ethical Hacking researcher from X University of Cyber Security will demonstrate on How to Hack WhatsApp of your Friend by sending a Single Link.

We will use a tool called Ohmyqr which is a social engineering tool. Using this OhMyQR Tool, we can hijack anyone’s WhatsApp account using the Malicious QR code. We will send Victim a URL using social engineering techniques and when the victim opens that URL he/she will receive a malicious WhatsApp malicious QR code on his/her machine. This QR code is a replica of what you normally see when you use WhatsApp web. On scanning QR code, hackers will be able to session hijack victims WhatsApp account.

ENVIRONMENT

O S: Kali Linux 2019.3 64 bit

Kernel-Version : 5.2.0

INSTALLATION STEPS

Use this command to clone the project.

git clone https://github.com/thelinuxchoice/ohmyqr

root@kali:/home/iicybersecurity# git clone https://github.com/thelinuxchoice/ohmyqr

Use the cd command to enter into ohmyqr directory

root@kali:/home/iicybersecurity# cd ohmyqr/

root@kali:/home/iicybersecurity/ohmyqr#

When we tried to launch the tool, we got an error for not installing the required packages for the tool as shown below.

Use this command bash ohmyqr.sh.

OhMyQR – Scrot Missing Package

For this we used this command to install missing scrot package.

sudo apt-get install scrot

root@kali:/home/iicybersecurity/ohmyqr# sudo apt-get install scrot

In the same way we got another error for missing package while launching the tool.

OhMyQR – xdotool Missing Package

For this we used this command to install xdotool package.

Code:

sudo apt-get install xdotool

root@kali:/home/iicybersecurity/ohmyqr# sudo apt-get install xdotool

Now, use the same command to launch the tool bash ohmyqr.sh

OhMyQR – Tool Launch

We successfully launched the tool.

Now, choose option 1 to launch the Ngrok server.

Select website to mirror or press enter for default WhatApp and it will starts PHP and Ngrok server and then it generates malicious Link (ngrok link).

Then press enters to start the Web WhatsApp on hackers machine.

It will launch web.whatsapp.com on FireFox browser in Full screen mode on Hacker machine.

Now send malicious Link (ngrok link) to the victim using social engineering techniques.

As shown below when the victim opens the malicious link in the browser, it will display the same WebWhatsApp QR code which is coming on hacker machine.

For more understanding, on the right is the Hacker screen and on the left is the Victim screen.

OhMyQR – Right is the Hacker screen and on the left is the Victim screen

When the victim scans the QR code, BOOM!

Hacker screen will get the web.whatsapp account of Victim. Now the victim whatsapp session is hijacked.

On the same Victim will also be able to view his/her WhatsApp, but victim will not be able to do anything on it (as it is only a screen shot of what hacker is viewing).

OhMyQR – Victm’s WhatsApp Account

Right is the Hacker screen and on the left is the Victim screen

In the above picture, we can see one is the Victim machine (on left) and the other one is the hacker’s machine (on right).

We successfully hacked the victim’s account.

Its very easy to hack account of victim using social engineering techniques, in the similar way researcher of International Institute of Cyber Security demonstrated other techniques to hack other things.

CONCLUSION

Now, we saw on how easy to view and access the victim’s WhatsApp using one malicious link. Most of the people imagine that we had logged in our WhatsApp web account but their WhatsApp account is been Hijacked. So it is always recommended to not click on any unknown link.

Enjoy freaks😎

How To Install and Use Masking-URL Tool

It is always the same now in this case and we will download it first using the following command This is a very small tool that does not require any additional reliance, so we can use it in any third party Android app. After the download is complete then we will go to the guide for this tool. That is the only way we can launch this tool using the bash command.

Step 1 :- First you need to Open the Terminal, Termux. After installation you need to open and type the apt update and hit Enter. Then type the command apt upgrade -y to upgrade the termux.

pkg update -y && pkg upgrade -y

Step 2 :- After updating and upgrading the termux then you need to install other packages like, git etc.

pkg install git

Step 3 :- A small and simple tool written in bash, called "MaskPhish". This tool is made by us and is specially available in our GitHub repository. We can add this from our GitHub repository via the following command:

git clone https://github.com/OnlineHacKing/Masking-URL

Step 4 :- Now we just need to navigate to the maskphish directory by simply using the cd command:

cd Masking-URL

Step 5 :- Use the command below to make the file Permission readable, compact, and effective.

chmod +x *

Step 6 :- We can do this by using the following command:

bash Masking-OH.sh

MaskPhish will then open the main menu in front of us as a screenshot:

Step 7 :-Now we need to set up our URL for sensitive identity theft here or anywhere (via http: // or https: //).

Step 8 :-After that we need to set up a trusted URL, anything that can mislead the victim's mind like https://google.com or https: //youtube.com or http: //anything.com. As we did on the following screen:

Step 9 :-Here we need to use some social engineering words separated by "-" to make an example if the victim is a football fan then we can use something like the footaball skills concept that here we are not using anywhere.

After that we just install it and have our MaskPhish link. We started our URL with facebook.com and the URL has no ngrok at the exact URL.

Follow On

Search This Blog

Hidden WIKI

Translate

About Me

Top 10 Reasons Why Python is So Popular and Why You Should Learn Python

Link List