How a Domain Name Gets Hijacked and How to Protect it

Domain hijacking is a process by which Internet Domain Names are stolen from its legitimate owners. Before we can proceed to know how to hijack domain names, it is necessary to understand how the domain names operate and how they get associated with a particular web server.
The Operation of a Domain Name:
Any website say for example 123.com consists of two parts. The domain name 123.com and the web hosting server where the files of the website are actually hosted. In reality, the domain name and the web hosting server are two different parts and hence they must be integrated before a website can operate successfully. The integration of domain name with the web hosting server is done as follows:
1. After registering a new domain name, we get a Cpanel where in we can have a full control of the domain.
2. From this domain Cpanel, we point our domain name to the web server where the website’s data are actually hosted.
For a clear understanding let me take up a small example:
John registers a new domain called 123.com from an X domain registration company. He also purchases a hosting plan from Y hosting company. He uploads all of his files .html, .php, javascripts etc. to his web server at Y. From the domain control panel of X he configures his domain name 123.com to point to his web server of Y. Now, whenever an Internet user types 123.com, the domain name 123.com is resolved to the target web server and the web page is displayed. This is how a website actually works.
What Happens When a Domain Name Gets Hijacked?
Now, let us see what happens when a domain name gets hijacked. To hijack a domain name, you just need to gain access to the domain Cpanel and point the domain name to some other web server other than the original one. So, to hijack a domain you need not gain access to the target web server. For example, a hacker gets access to the domain Cpanel of 123.com. From here the hacker re-configures the domain name to point it to some other web server Z. Now whenever an Internet user tries to access 123.com he is taken to the hacker’s website Z and not to John’s original site Y. In this case the John’s domain name 123.com is said to be hijacked.
How the Domain Names are Hijacked?
To hijack a domain name, it is necessary to gain access to the domain Cpanel of the target domain. For this you need the following ingredients:
1. The domain registrar name for the target domain.
2. The administrative email address associated with the target domain.
These information can be obtained by accessing the WHOIS data of the target domain. To get access to the WHOIS data, go to whois.domaintools.com, enter the target domain name and click on Lookup and you’ll see Whois Record. Under this, you’ll get the administrative contact email address. To get the domain registrar name, look for the words something like: Registered through:: XYZ Company. Here XYZ Company is the domain registrar. In case if you do not find this, scroll up and you’ll see ICANN Registrar under the Registry Data. In this case, the ICANN registrar is the actual domain registrar. The administrative email address associated with the domain is the backdoor to hijack the domain name. It is the key to unlock the domain control panel. So, to take full control of the domain, the hacker will have to hack the administrative email associated with it. Email hacking has been discussed in my earlier post How to hack Into Emails Using Kali Linux
Once the hacker takes full control of this email account, he will visit the domain registrar’s website and click on forgot password in the login page. There, he will be asked to enter either the domain name or the administrative email address to initiate the password reset process. Once this is done, all the details to reset the password will be sent to the administrative email address. Since the hacker has the access to this email account, he can easily reset the password of domain control panel. After resetting the password, he logs into the control panel with the new password and from there he can hijack the domain within minutes.
How to Protect the Domain Name from Getting Hijacked?
The best way to protect the domain name is to protect the administrative email account associated with the domain. If you loose this email account, you loose your domain. Another best way to protect your domain is to go for a private domain registration. When you register a domain name using the private registration option, all your personal details such as your name, address, phone and administrative email address are hidden from the public.

Edit Any Webpage Directly From Your Web Browser

You surf a lot of websites on internet. Sometime you want your name to appear on the websites to show your friends or just for fun. So, if you wants to edit a website’s page you are just watching then, there is a simple Javascript code which lets you to directly edit the opened webpage at your browser.

Read Also:-Shutdown Any Computer Remotely Using Command Prompt (CMD)

Using this trick you can change the details according to your wish. this trick helps you to edit all the text part of that website so that you can put your content there. You can edit Google or even Facebook for that matter right in your browser and that too without requiring any technical know-how or getting deep into hacking and cracking. You can use it for anything like showing wrong traffic stats or for fooling people by showing that someone said something about them on Facebook or Twitter. It depends only on your creativity. But I would advise you to stay ethical and use it for entertainment purposes only.
Note: Many websites like Facebook, Twitter etc. runs on HTTPS So the trick might not be working there. However, you can browse the link from Proxy Servers and then this JavaScript Trick will work.
Mozilla Firefox does not support this. If you use Firefox, you can use the bookmarklets If you use Google Chrome and the code does not seem to work, precede it with javascript:>
To use this trick, all you need to do is just copy the code given below and paste it in your address bar after you have opened the website you wish to edit and start editing.

javascript:document.body.contentEditable%20=%20'true';%20document.designMode='on';%20void%200

You can capture a screenshot by pressing the Print Screen key or by using the Snipping Tool if you use Windows 7 or Windows Vista. If you wish to again make the website non-editable to give a more authentic look, copy and paste the code given below in the address bar after you are done editing.

javascript:document.body.contentEditable%20=%20'false';%20document.designMode='off';%20void%200

Or, alternatively you can use the following bookmarklets by dragging them to your Bookmarks bar.
1. Edit this Website
2. Done Editing The editing that you do will however be temporary as it is not server-sided. You can also save the modified website through your browser by File > Save.
This (Bookmarks) works on all common web browsers including Chrome, Firefox Opera and Internet Explorer.

Love this article?

Share it with your friends on Facebook

How to Bypass Right Click Block on Any Website

Have you ever gone to a website where you try to right-click and it doesn't work? If you still want to right-click, your browser can display the context menu but the website just tells it not to. You might remember an experience where you tried to right-click on a web page but got a pop-up message saying that the “right-click functionality has been disabled”. Sometimes you may be trying to copy an image or view the source of a web page but when the right-click is disabled, these things would seem impossible. Bank websites and other sites that require a secure transaction such as a payment gateway are the ones to impose this kind of limited functionality on their pages. In this post, I will show you the ways by which you can easily bypass right-click block feature on any website. In order to block the right-click activity, most websites make use of JavaScript which is one of the popular scripting languages used to enhance functionality, improve user experience and provide rich interactive features. In addition to this, it can also be used to strengthen the website’s security by adding some of the simple security features such asdisabling right-click,protecting images,hiding or masking parts of a web pageand so on.

---

How JavaScript Works?

---

Before you proceed to the next part which tells you how to disable the JavaScript functionality and bypass any of the restrictions imposed by it, it would be worthwhile for you to take up a minute to understand how JavaScript works. JavaScript is a client side scripting language (in most cases), which means when loaded it runs from your own web browser. Most modern browsers including IE, Firefox, Chrome and others support JavaScript so that they can interpret the code and carry out actions that are defined in the script. In other words, it is your browser which is acting upon the instruction of JavaScript to carry out the defined actions such as blocking the right-click activity. So, disabling the JavaScript support on your browser can be a simple solution to bypass all the restrictions imposed by the website.

---

How to Disable the JavaScript?

---

Here is a step-by-step procedure to disable JavaScript on different browsers:

For Internet Explorer: If you are using IE, just follow the steps below:
1. From the menu bar, go to Tools > Internet Options.
2. In the “Internet Options” window, switch to Security tab and click on the button Custom level

3. From the Security Settings, look for the option Active scripting and select the Disable radio button as shown above and click on OK
4. You may even select the Prompt radio button, so that each time a page is loaded, you will have the option to either enable or disable the scripting.
For Google Chrome: If you are using Chrome, you can disable the JavaScript by following the steps below:
1. Click on the Chrome menu button (on the top right corner) and select Tools.
2. From the “Settings” page, click on Show advanced settings… 3.Now under Privacy, click on the button Content settings

4. Under the JavaScript, select the radio button which says “Do not allow any site to run JavaScript” and click on “Done”.
For Mozilla Firefox: Steps to disable JavaScript on Firefox:
1. From the menu bar, click onTools -> Options.
2. From the Options window, switch to Content tab, uncheck the option which says “Enable JavaScript” and click on “OK”.

---

How to Bypass the Right Click Block?

---

In order to bypass the right-click block or any other restriction imposed by JavaScript, all you need to do is just disable it in the browser and refresh the same page, so that it now reloads without JavaScript functionality. You are now free to right-click on the page, view its source or even copy any of the images that you may want to. Don’t forget to re-enable the JavaScript once again when your job is over. Otherwise lack of JavaScript support may result in unusual rendering of web pages.