What is Hacking and how does it work ? Technology Gyan

 what is hacking

Hacking means finding the weakness in the computer system and then taking advantage of that weakness to blackmail the owner of that computer. Hacking is done by a person through a computer, which we call a hacker and he has a lot of knowledge of computer and computer knowledge, so he specializes in stealing data from others' computers. On hearing the name of hacking, it is known that it is a wrong act because it is illegal and a person can be punished by doing so.

History of Hacking and What is done in Hacking

Hacking has been a very big part of computing for the last several decades. It is a very broad discipline, which covers a wide range of topics. If we first find when this hacking happened, then we will know that it was first used in 1960 by MIT, and at the same time this word "Hacker" was also born and which later became very famous also.

If we talk about the process of hacking technically, then the main work that has to be done in it is to find the possible entry points in any computer network or computer system and later finally enter it. Hacking usually involves gaining unauthorized access to a computer system or computer network. Its purpose is either to harm the system or to steal the sensitive information present in the system.

Hacking is often legal as long as a hacker uses it to find the weaknesses of a computer system or computer network for testing purposes. This type of hacking is called Ethical Hacking.

A computer expert who does this hacking himself is called "Ethical Hacker". Ethical Hackers are those who always use their knowledge to gain knowledge, how systems operate, how they are designed, and sometimes to test the security strength of the system.

Types of Hacking

We can divide Hacking into different categories, for this we will see what has been hacked. Let me give you some examples to make you understand.

Website Hacking – This type of hacking means gaining unauthorized control over a web server and its associated software such as databases and other interfaces.

Network Hacking - This type of hacking means to get all the information on a network and for which there are many tools such as Telnet, NS lookup, Ping, Tracert, Netstat, etc. The main purpose of doing this is only to harm the network system and its operation.

Email Hacking - This type of hacking means that the hacker gets unauthorized access to his email account without the permission of the owner. Later which he is going to use for his illigal works.

Ethical Hacking – This type of hacking means to identify the weakness of a system or network and help the owner to fix it. This is a safe hacking process in which all the work is done under the supervision of the owner.

Password Hacking - This type of hacking means that in which secret passwords are recovered from the data which is stored in the computer system or transmitted by any computer system.

Computer Hacking - This type of hacking means that the hacker knows the computer ID and password of a computer system, by using hacking methods, by which they get unauthorized access to any computer system. This puts the owners at risk of their data being stolen.

How many types of hackers are there?

Basically there are three types of hackers, two of them are bad hackers who harm people by doing bad things and one hacker is good who saves us from both these bad hackers. A good hacker is called a white hat hacker, a bad hacker is called a black hat hacker and the one who comes between these two means the one who does both good and bad work is called a gray hat hacker.

Black Hat Hacker

Black hat hackers are those who enter your computer without your permission and steal your personal data like corporate data, fund transactions details, ATM card details etc. They steal and take the wrong advantage of our compulsion and demand ransom from us. Black hat hackers are very bad and they harm others for their own benefit.

white hat hacker

White hat hackers are those people who do the complete opposite of black hat hacker, that is, these hackers check the security of the computer with permission, they do it only to know or to help a company. How strong is the security of their system and whether that security can be easily broken or not. We also call white hat hackers as ethical hackers.

Gray Hat Hacker

Gray hat hackers are those who have no personal intention to play with the data of others computer or spoil their system and they do not even want money in return. But still without permission try to hack the computer of others using their skills. They do this only to learn how to do hacking, so their motive is not bad, so they are not black hat hackers and they tried to hack the computer without permission, so they are not even white hackers, so to such hackers We call it gray hat hacker.

Miscellaneous Hacker

Except for the second class of hackers, they are also divided for their hacking methods. So let's know more about it.

Red Hat Hackers

Red hat hackers are called those who are a mixture of both black hat and white hat hackers. They mainly target government agencies, top-secret information hubs, and all those things that are related to sensitive information to hack them.

Blue Hat Hackers

Blue Hat Hackers are called those who are often freelancers and do not work for any companies but they have complete knowledge about network security, apps, software. Such hackers are used by companies to know the loopholes of their products, for this they provide beta verison of products to them and finally they help companies a lot in this work. Companies also provide them with very good money. Many companies organize many such competitions to encourage such blue hat hackers.

Elite Hackers

This is a social status among the hackers community, which is available only to those selected hackers who have exceptional skills. In this way, he is the most expert player in his work. These hackers have the first of all newly discovered exploits.

Script Kiddie

A script kiddie is called someone who is completely non-expert in their field and they use pre-packaged automated tools that may have been written by someone else to penetrate someone's computer systems. They do not know anything about those tools, how they work, and that is why they go to Kiddie.

Neophyte

These are the hackers who are "n00b", or "newbie" or "Green Hat Hacker". These people are often new to the field of hacking who do not know anything about hacking and its technologies.

Hacktivist

A hacktivist is called a hacker whose technology is used to hack social, ideological, religious, or political messages. In this, most people use website defacement and denial-of-service attacks.

Who are some of the Best Ethical Hackers in India?

You might be surprised to hear that but it is true that some of the Ethical Hackers of India are the most famous in the whole world. Yes friends, this is right because our hackers are at the forefront of ethical hacking. So let's know about these Ethical Hackers. Such people who are raising the name of our country high.

Rahul Tyagi

Ankit Fadia

Trishneet Arora

Manan Shah

Vaidehi Sachin

Sahil Khan

Basic Terminologies of Ethical Hacking

Here we will know about some basic terminologies related to Ethical Hacking which are used a lot in this hacking field and it is very important for all new hackers to know about it.

Adware – Adware is a software that has been designed so that it forces pre-chosen ads to be displayed in the screen.

Attack – This is an action which is done in the system to access it and extract sensitive data.

Backdoor - This back door, or trap door, is a hidden entry into a computing device or software that helps bypass all security measures, such as logins and password protections.

Bot – A bot is a program that helps to automate an action, that work can be done repeatedly at a higher rate and without error, which is not even possible to do by a human operator, that too for a long time. . For example, sending HTTP, FTP or Telnet in a higher rate and in a calling script by which they create an object in a higher rate.

Botnet - Botnet, also called zombie army, is called a group of computers, which is done under the knowledge of the owner. Botnets are used to send spam or to do denial of service attacks.

Brute force attack – A brute force attack is automated and it is the simplest method to gain access to any system or website. It keeps on trying different combinations of usernames and passwords again and again until it finds the right combination.

Buffer Overflow - Buffer Overflow is a type of flaw that occurs when more data is written into a block of memory, or buffer, in which the buffer is instructed to hold more than the allocated space.

Clone Phishing – Clone phishing is a type of modification of existing, legitimate email with a false link that tricks the recipient so that he can provide all his personal information.

Cracker – A cracker is said to modify the software to access its protected features. These are the features that are copy protected.

Denial of service attack (DoS) – This denial of service (DoS) attack is called when a malicious attempt makes a server or a network resource available for some time which are unavailable to the first users. . Usually, in this the services that are connected with the host are temporarily interrupted or suspended.

DDoS – This is a Distributed Denial of Service attack.

Exploit Kit - This exploit kit is a software system that is designed to run in web servers, its main purpose is to identify the software vulnerabilities of client machines and exploit those vulnerabilities for which this malicious code Uploads it to the client to be executed.

Exploit − Exploit is a piece of software, a chunk of data, or a sequence of commands that can compromise a computer or network system, taking advantage of a bug or vulnerability.

Firewall – Firewall is a type of filter that is designed to keep unwanted intruders away from your computer system or network, so that it provides secure communication between systems and users within which firewall.

Keystroke logging - Keystroke logging is a process to track the keys that were pressed, yes in a computer (and any touchscreen points that are used). This is simply a map of the computer/human interface. These are used by gray and black hat hackers to record login IDs and passwords. Keyloggers are often installed secretly in a device using a Trojan in a phishing email.

Logic bomb – This is a virus that is secretly inserted inside the system and it is triggered when certain conditions are met. This is the time bomb of the most common version.

Malware – Malware is an umbrella term used to refer to many types of hostile or intrusive software, including computer viruses, worms, Trojan horses, ransomware, spyware, adware, scareware, and other malicious programs.

Master Program – A master program is a program that is used by a black hat hacker to activate infected zombie drones by transmitting commands remotely, along with Denial of Service attacks or spam attacks. is done.

Phishing – Phishing is a type of e-mail fraud method in which senders send emails that look exactly like legitimate-looking emails, whose main goal is to gather their personal and financial information from the recipients.

Phreaker - Phreakers are often considered to be original computer hackers because they break a telephone network illegally, use it to make free long distance phone calls or tap someone's calls.

Rootkit - Rootkit is a type of stealthy type software, which is typically malicious, and it has been designed in such a way that it is not detected by common security softwares and they can do their work.

Shrink Wrap code − A Shrink Wrap code attack is an act used to exploit holes in unpatched and poorly configured software.

Social engineering - Social engineering means to deliberately mislead people so that they provide all their details to you such as personal information, like credit card details, usernames and passwords etc.

Spam - Spam simply an unsolicited email, which is also called junk email, and which is sent to many recipients against their wishes.

Spoofing - Spoofing is a technique that is used to gain unauthorized access to others' computers. Here the intruder sends messages to the computer, which has an IP address, which makes it appear that the message has come from a trusted host.

Spyware - Spyware is a software that is mainly used to gather information about a person or company. But in this the target does not have the slightest idea about it and they provide all the information even if they do not want to.

SQL Injection - SQL injection is a type of SQL code injection technique, which is designed to attack data-driven applications, where malicious SQL statements are inserted into the entry field for execution (eg. For dumping the contents of the database in front of attackers).

Threat - Threat is a possible danger that someone can exploit a common bug or vulnerability from which any computer and network system can be incorporated.

Trojan – A Trojan, or Trojan Horse, is a type of malicious program that appears like a valid program but in disguised form, so that it is not so easy to distinguish it from a program. But it has been specially designed to destroy files, to do things like alter information, steal passwords.

Virus – Virus is a type of malicious program or a piece of code that is capable of copying itself and also has the detrimental effect, so that it has the ability to corrupt any system and with it the data. can also destroy.

Vulnerability – Vulnerability is a type of weakness that allows hackers to compromise with the security of a computer or network system.

Worms - There is a type of worm self-replicating virus that can alter files, but it is present within the active memory and keeps on duplicating itself.

Cross-site Scripting – Cross-site scripting (XSS) is a type of computer security vulnerability that is typically found in web applications. XSS enables attackers to inject client-side scripts into web pages which are then viewed by users.

Zombie Drone – You can also call a Zombie Drone hi-jacked computer which can be used anonymously for a soldier or 'drone' for malicious activity. For example distributing unwanted spam e-mails.

What is Ethical Hacking? Is this Legal or Illegal?

You have come to know about the three types of hacking and must have also come to know that ethical hacking is legal because it hacks the computer by asking the hacker and improves the security of the system. Ethical hacker follows some rules to hack the system which is very important such as permission has to be taken from the owner of the computer, protects the privacy of the computer so that no one else can hack, find the weakness of the computer. Tax gives all the details to its owner by making a report.

By doing all these things, Ethical hacker protects a person or a company from the eyes of bad hacker and also saves from loss. Big companies hire ethical hackers in their company to keep their important files and corporate data safe and also give them good salary.

Advantages of Ethical Hacking

So let us now know about some advantages of Ethical Hacking.

• With this you can recover your lost information, especially when you forget your password.
• With this we can perform penetration testing so that we can check the strength of any computer or network security.
• This allows us to take adequate preventative measures to prevent security breaches.
• On learning this, we can use it to protect our computer from malicious hackers.

Disadvantages of Ethical Hacking

So let us now know about some disadvantages of Ethical Hacking -

• First of all, after learning Ethical Hacking, people start doing your wrong things in the greed of money.
• With this, we can get unauthorized access to someone's system and know their private information.
• With this we can also commit a privacy violation.
• If used in reverse, then any system operation can also be damaged.