Kali Linux is the next-generation edition of BackTrack. It is BackTrack reborn. If you’ve been using BackTrack, or you’re are thinking about using BackTrack, forget it. Kali Linux is what you want to be using. What’s the difference?
BackTrack is based on an old edition of Ubuntu, while Kali is based on the latest edition of Debian. On the installation side, Kali Linux uses Debian’s graphical installer, which means you get features like LVM, the Linux Logical Volume Manager, and disk encryption. With BackTrack and its Ubuntu installer, you get none of that.
Those are a few of the major differences. When it comes to installing applications or software on Kali Linux, there is no difference between it and BackTrack. This article shows the many methods you can use to install and manage applications on Kali Linux 1.0. Obviously, this is not intended for experienced users, but for those new to Linux.
1. From the command-line: Since Kali is based on Debian, installing and managing software from the command-line is accomplished using apt-get and other components of Debian’s Advanced Packaging Tool (APT). For example, to install an application like Ubuntu’s Software Center, you would issue the following command: apt-get install software-center. It’s that easy, if you know the name of the software you wish to install. You can find out more by reading the man page. Just type man apt-get from the command-line.
2. Gpk-application: The Gnome PackageKit is one of two graphical package managers installed out of the box. The other one is Synaptic Package Manager. For a new user, these graphical package managers offer a more user-friendly method of installing software. You can access it from the menu at Applications > System Tools > Add/Remove Software.


4. Ubuntu Software Center: This is the same graphical package manager available on Ubuntu. It is not installed by default, but is in the repository, so you can install it by typing apt-get install software-center. Once installed, you can access it from Applications > System Tools > Administration > Software Center.

The latest edition of Kali Linux is available for download here.

The next partition will be mounted at /. A new installation of Kali Linux takes up about 6.4 GB of disk space, so any amount greater than that will do. For the test installation, I gave it 60 GB, which is way too much, so you do not have to do the same. About 10-12 GB is more than enough. Continue.

Here are the details of the new partition. Scroll to “Done setting up the partition,” then click Continue.

For the home partition, I gave it a disk space of 100 GB. Continue.

Here are the details of the new partition. Scroll to “Done setting up the partition,” then click Continue.

For Swap, 2 GB is good enough. Continue.

Here are the default details of the new partition. To specify that it be used as a Swap partition, double-click the “Use as” line.

Then select “swap area.” Continue.

Scroll to “Done setting up the partition,” then click Continue.

With all the partitions created, scroll to “Finish partitioning and write changes to disk.” Continue. Make note of the device number of the boot partition. Here, it is sda5. You’ll need it later.

Select “Yes.” Continue.

By default, the installer will want to install GRUB, the boot loader, in the Master Boot Record (MBR). However, for setting up this dual-boot system, we want GRUB in the boot partition. So, select “No.” Continue.

This is where you have to specify where GRUB should be installed. For this test system, it is /dev/sda5. Continue.

After installation, the computer will reboot into Windows 7. The next task involves add an entry for Kali Linux in Windows 7′s boot menu.
3. Add Kali Linux to Windows 7′s boot menu: The simplest graphical application for modifying the Boot Configuration Data of Window that I know, is EasyBCD. It is free for personal use. You may download it from here. Install it as you would any other Windows application. The main window is shown below. To add an entry for Kali Linux in the boot menu, click on the Add New Entry tab.

Then click on the Linux/BSD tab. From the Type dropdown menu, select GRUB 2. Modify the name field to reflect the name of the distribution you are adding. From the Drive menu, you can either select the specific partition corresponding to the boot partition of the Kali Linux installation or let EasyBCD automatically locate and load it. Either one will work. Note that EasyBCD’s drive numbers and the device numbers of the Linux partitions do not match. For example, in this test installation, the boot partition is /dev/sda5, but the corresponding drive number in EasyBCD is Partition 3. The size of the partition helps to determine which one it is. Click the Add Entry button when wll the options have been specified.

From the Edit Boot Menu tab, you can see a preview of the entries that will appear in the Windows 7 boot menu. Exit EasyBCD and reboot the computer. That should do it.

Extra: Here are all the partitions on the HDD as seen from the Windows 7 partition manager.

This article is a step-by-step guide on how to dual-boot Windows 7 and Kali Linux on a single hard disk drive (HDD). Kali Linux is what used to be BackTrack Linux, a distribution designed for penetration testing and security professionals. It ships with about 300 penetration testing and hacking applications installed.
While BackTrack is based on Ubuntu, Kali Linux is based on Debian, and uses the complete Debian Installer. As a result, the installation process is different from that of BackTrack, which uses Ubuntu’s graphical installation program.
The objective here is to show how to install it on an HDD alongside an existing installation of Windows 7, with the Windows 7 boot manager as the “master” boot loader, so that at the end, when the computer is (re)booted, you will be presented with a boot menu that looks just like the one shown below. Selecting Windows 7 boots the system into Windows 7 and choosing Kali Linux will, by default, take you to the Kali Linux boot menu, which is the same thing as the GRUB 2 menu, the version of GRUB used by Kali Linux.

To bypass Kali Linux’s boot menu, simply edit the file named /etc/default/grub and change GRUB_TIMEOUT=5 to GRUB_TIMEOUT=0. Then run the update-grub command.

Now that we know what to do, and what the result will be, let’s get it done. If you have not done so already, download an installation image of Kali Linux from here.
1. Shrink the Windows 7 C Drive: My test system has an existing installation of Windows 7 on a 500 GB HDD, with just two primary partitions. This is how they appear in Windows 7′s partition manager. The task here is to shrink the C drive to create room for installing Kali Linux. To do that, right-click on the C drive and select Shrink Volume.
Note: If you intend to install Windows 7 afresh, this process will be a lot easier if you set aside the free space that will be used for Kali Linux during the installation of Windows 7.

If you have enough free space on the C drive, the system will suggest a 50-50 split of the free space. Which is just good enough for this test installation. Shrink.

After the operation has completed, you should see the newly reclaimed space next to the C drive. You may exit the partition manager and reboot the computer. Be sure to have the installation disc of Kali Linux in the optical drive before rebooting.

2. Install Kali Linux: The best option to select on Kali Linux’s boot menu is Graphical Install. It gives you a point-and-click installation process. Install works just as well, but the interface is ncurses-based.

For installing Kali Linux, the following partitions will be created: /boot, /, /home, and Swap. In that order. The /home partition is optional. At the disk partitioning methods step of the installation process, you get a bunch of options. Because none of the guided options will create a separate /boot partition, creating the partitions will have to be done manually. So select “Manual” and click Continue.

Here you can see the existing Windows 7 partitions, both of which are primary partitions. The free space, reclaimed from Windows 7 in the previous step is what will be used for creating the partitions for Kali Linux. To start creating the partitions, select the free space and click Continue.

Create a new partition. Continue.

This shows the total amount of disk space available for Kali Linux. The /boot partition will be created first, so you need to specify the amount of disk space for it.

For this test system, I assigned 300 MB to it. Continue.

Because you still have two primary partitions to use, you can create the boot partition as a primary or logical partition. Either option will work, but the installer prefers creating it as a primary partition, if the boot loader is going to be installed in it. For this test installation, I chose to create it as a logical partition. Continue.

Beginning. Continue.

This step shows the details of the boot partition you just created. The only thing you need to change here is the mount point. Double-clicking on it will open another window where you can specify the correct mount point.

Here’s what it should look like after the mount point has been specified. The other option you might want to change here is the Bootable flag.

There is a good reason it should be enabled, but the system will boot even if it is disabled. It just depends on your BIOS version. For this test installation, it was disabled and the system still worked perfectly.

Here’s the final details of the boot partition. Scroll to “Done setting up the partition,” then click Continue. Note that the steps you used to create the boot partition will be repeated for the other partitions.

Back to the main disk partitioning window, you can see the boot partition you just created, plus the remaining free space. Select, the free space, then click Continue.

Good luck buddy android on a PC , and may be useful .... : )

As a (sort-of-mediocre) web developer, I find security of the site as #1 priority. However with limited knowledge on the subject, it was near-impossible to look for any sort of  security flaw without scrolling through forums for days.
After hours of googling, I discovered an excellent tool to automatically uncover SQL injection exploits in my website without the requirement of intricate SQL knowledge.

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections

SQLMap is coded in Python programming language and runs natively in Linux operating system, however it should run as nice on Windows machines , however we first need to download and install the Python libraries to the machine for it to run.
Anyway, back to your site, one thing you will need to find are URL’s like this http://yoursite.com/users/user.php?id=3 or http://yoursite.com/gallery/albums.php?aid=532
These parameters (in red) query the database, and if not coded/sanitized correctly, can be vulnerable to sql injection. Users can basically access your database and do things such as access passwords, emails, names etc.
So you’ve found your URL on your site as shown above? Lets see if it is vulnerable to sql injections…..
Step 1 – Download & Install Python 2.7.5
Python 2.7 installed on your Windows machine.
Ensure that version 2.7.5 is installed which can be downloaded from here - http://www.python.org/download/
Choose either the normal Windows installer, or the Windows x86-64 installer.
Run through the install accepting the defaults. If all went well, then all of the Python files should be installed to C:\Python27\
Step 2 – Download SQLMap
SQLMap downloaded on your Windows machine
The latest and greatest version is available on the SQLMap home page – click here - https://github.com/sqlmapproject/sqlmap/zipball/master or here http://sqlmap.org/ (and click download .zip on the left!)
Unzip the .zip and put the folder into the C:\ drive (just for ease of access). The folder may be named something like “sqlmapproject-sqlmap-dbb0d7f” so rename this to something like “sqlmap“. For the purpose of this guide, I will be renaming this folder to “sqlmap“.
Step 3 – Run Command Prompt as Administrator
You can do this multiple ways, but just to explain in a way that everyone can easily do, go to Start > All Programs > Accessories and you will see the Command Prompt icon. BUT WAIT! Don’t just click it!
Ensure that you right-click on the Command Prompt icon and Run As Administrator. Normally, command prompt is set with restrictions meaning certain system tools will not run, so running as administrator enables command prompt to have full access to the system.
Step 4 – Run SQLMap
With the above prerequisites completed, we can now start.
- In the command prompt window, CD into the directory where SQLMap is contained

- Type in the following: python sqlmap.py -u “http://yoursite.com/users/users.php?id=3“ (replace the red with what you have!)

- Hit enter and it will start scanning. If you find that you encounter something like this (in grey) then your site IS vulnerable to SQL injections. Uh-oh!

- Let SQLMap run through and at the end it will dump all the necessary information into a files (readable in notepad) in the directory where it resides (for example C:\sqlmap\output\yoursite\).
Below are what I got from the above test:

sqlmap identified the following injection points with a total of 63 HTTP(s) requests:
—
Place: GET
Parameter: id
Type: boolean-based blind
Title: AND boolean-based blind – WHERE or HAVING clause
Payload: id=8 AND 6220=6220
Type: UNION query
Title: MySQL UNION query (NULL) – 17 columns
Payload: id=-6714 UNION ALL SELECT NULL,NULL,CONCAT(0×7178667171,0x73486f79746764616f74,0x717a666671),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL#
—
web application technology: PHP 5.3.19, Apache 2.2.23
back-end DBMS: MySQL >= 5.0.0

Now, if you’re using a wordpress plugin, disable it and remove it immediately as your site can be easily found using google dorks. Notify the author / developer asap!.
If like me you use WordPress, then it’s best to search your plugins in exploit-db.com to see if there are already exposed vulnerabilites!

**Note that this is a basic guide. If you’re looking for advanced usage, then I suggest starting at SQLMap.org