Jump to content
curiosul

Metoda de phishing

Recommended Posts

Posted (edited)

In urmatorul tutorial voi explica cum sa furi parole prin intermediul programelor de tip oDc, D++,StrongDC etc.In primul rand stim ca inca mai sunt multi care dau sharing la partitia C:\, partitia unde este instalat windows-ul si unde sunt salvate parolele browserelor, email,etc.

Pentru inceput sa vedem unde salveaza browserele parolele ca sa stim ce sa luam de pe oDc:

Mozila firefox:

[Windows XP]

C:\Documents and Settings\\Application Data\Mozilla\Firefox\Profiles\.default

[Windows Vista & Windows 7]

C:\Users\\AppData\Roaming

Descarcam fisierele acelea in folderul respectiv din calculatorul nostru [facem la fel cu toate] dupa care folosim FirePassword pentru a decripta parolele:

http://securityxploded.com/firepasswordviewer.php

=======================================

Internet explorer:

[Windows XP]

C:\Documents and Settings\[username]\Application Data\Microsoft\Credentials

[Windows Vista and Windows 7]

C:\Users\[username]\AppData\Roaming\Microsoft\Credentials

Folosim IEPasswordDecryptor

http://securityxploded.com/iepassworddecryptor.php

========================================

Google chrome:

[Windows XP]

C:\Documents and Settings\\Local Settings\Application Data\Google\Chrome\User Data\Default

[Windows Vista & Windows 7]

C:\Users\\Appdata\Local\Google\Chrome\User Data\Default

Folosim GooglePasswordDecryptor

http://securityxploded.com/googlepassworddecryptor.php

========================================

Opera:

Pentru Opera 10 si versiuni mai recente:

[Windows NT/2K/2k3/XP]

C:\Documents and Settings\\Application Data\Opera\Opera\wand.dat

[Windows Vista/Windows 7]

C:\users\\AppData\Roaming\Opera\Opera\wand.dat

Pentru Opera versiuni mai vechi decat 10

[Windows NT/2K/2k3/XP]

C:\Documents and Settings\\Application Data\Opera\Opera\profile\wand.dat

Folosim OperaPasswordDecryptor http://securityxploded.com/operapassworddecryptor.php

=========================================

In cazul celor de mai jos ducem fisierele in propriul pc si cred ca merge sa te loghezi cu acele parole

Skype:

[Windows XP]

C:\Documents and Settings\\Application Data\Skype\<account_name>

[Windows Vista & Windows 7]

C:\Users\\AppData\Roaming\Skype\<account_name>

===========================================

Digsby

[Windows XP]

C:\Documents and Settings\\Local Settings\Application Data\Digsby

[Windows Vista & Windows 7]

C:\Users\\AppData\Local\Digsby

===========================================

Filezila:

[Windows XP]

C:\Documents and Settings\\Application Data\FileZilla

[Windows Vista & Windows 7]

C:\Users\\AppData\Roaming\FileZilla

=============================================

Tutorial facut in graba, nu l-am testat dar sper sa mearga.

Inspiratie: http://securityxploded.com

Restu facut de mine!:)

Edited by curiosul
Posted (edited)

mai repede te loghezi pe 100 hub-uri si dai search la fisierele ce stocheaza parolele.

apoi folosesti un tool sa le decriptezi.

parca la opera era wand.dat si la firefox trebuie key.db si signons.sqlite

(corectati-ma daca gresesc, spun din amintiri demult apuse)

Edited by begood
Posted

Acuma depinde si ce urmaresti sa gasesti daca vrei o victima anume ai un pic de lucru , asa ca intri pe dc si cauti de nebun gasesti , asa iti gasesc si eu cu google parole si userele la cam orice ....

Guest User Name
Posted
nu prea sunt convins

nici eu nu cred asa ceva...Stiu si eu multi tantalai,de pe steam,dar nu cred ce ai spus despre procentul 500/100

Posted

Procentu conteaza ?? Sunt o gramada de tantalai sau sa spun asa nestiutori . Multi cad in capcane de genu si asta cu user si pass nu ii nimic sa ii faci sa isi dea codu de securitate de la casa si exista oameni care il dau . Testat :) nu pot sa vb insa de procente

Posted
nici eu nu cred asa ceva...Stiu si eu multi tantalai,de pe steam,dar nu cred ce ai spus despre procentul 500/100

am incercat cu conturi de yahoo:

am prostit-o pe una din liceu si i-am luat contul,i-am copiat listele de mess pe un ID secundar si am dat mass o data pe zi si la status Cel mai tare site de spart parole si site-ul(si acum e activ yahoohacks.tk) si usor lumea intra am facut de la 600 de mailuri cat aveam la 1000(lumea proasta intra de cate 5-6 ori)

asa si intram pe cate un ID si copiam listele... si am facut o lista in Word (majoritatea nu mai merg ca am vb cu lumea din lista persoanei respective si majoritatea au aflat ca li s-a "spart" parola....

din 443 de ID-uri din lista(restu de 60 am luat ignore si mai era un prost care si-a pus acelasi status ca al meu desinu ma cunostea si am mai luat si de acolo vreo 10-15 ID-uri si cel mai rau m-a enervat ca listee nu se copiau integral...)am copiat din mail si am ajuns la 100 de randuri de Id-uri cu pass care 50 din ele nu cred ca mai sunt valabile...

Posted (edited)

@curiosul folosind ce ai zis tu am gasit si eu din 5 huburi un prost cu Opera


[I]
Password List
***********************************************************************************

Website URL: https://login.yahoo.com
Username: ray_the_Darkest_archangel
Password: rizenothstigma
------------------------------------------------------------------------------------

Website URL: https://www.okazii.ro/login/
Username: username
Password: password
------------------------------------------------------------------------------------

Website URL: http://www.mygarage.ro
Username: raizenkohakus
Password: sangepur
------------------------------------------------------------------------------------

Website URL: http://hi5.com
Username: raizenkohakus@yahoo.com
Password: necrostigma
------------------------------------------------------------------------------------

Website URL: https://www.opendns.com/dashboard/signin/
Username: username
Password: password
------------------------------------------------------------------------------------

Website URL: https://login.facebook.com
Username: ray_the_darkest_archangel@yahoo.com
Password: necrostigma
------------------------------------------------------------------------------------

Website URL: https://login.photobucket.com
Username: raizenkohakus
Password: sangepur
------------------------------------------------------------------------------------

Website URL: http://clienti12.claus.ro
Username: raizenkohakus
Password: sangepur
------------------------------------------------------------------------------------

Website URL: http://www.bestjobs.ro
Username: ray_the_darkest_archangel@yahoo.com
Password: sangepur
------------------------------------------------------------------------------------

Website URL: http://forums.se-nse.net
Username: raizenkohakus
Password: sangepur
------------------------------------------------------------------------------------

Website URL: http://iprotebe.cz
Username: raizenkohakus
Password: sangepur
------------------------------------------------------------------------------------

Website URL: https://sso.forum.nokia.com
Username: raizenkohakus
Password: sangepur
------------------------------------------------------------------------------------

[/I]

Mersi pentru tutorial!

Later edit: parola de la yahoo s-ar putea sa nu mai mearga pt ca am intart la el pe mess si le-am zis prietenilor lui sa-i zica ca i-am luat parola si sa si-o schimbe

LE:Am mai gasit cate ceva:

[i]
Password List
***********************************************************************************

Website URL: http://kinozal.tv
Username: ROGGAL99
Password: 215NEENK
------------------------------------------------------------------------------------

Website URL: https://secure.skype.com
Username: alexey
Password: 1PoGod5
------------------------------------------------------------------------------------

Website URL: http://love.qip.ru
Username: Sergeev5
Password: BACway15
------------------------------------------------------------------------------------

Website URL: http://win.mail.ru
Username: volale
Password: 0
------------------------------------------------------------------------------------

Website URL: http://love.mail.ru
Username: volale
Password: 1
------------------------------------------------------------------------------------

Website URL: http://www.kupivip.ru
Username: volale
Password: neveZUHAJ08
------------------------------------------------------------------------------------

Website URL: http://www.kupivip.ru
Username: volale@mail.ru
Password: neveZUHAJ08
------------------------------------------------------------------------------------

Website URL: http://www.kinoclub.org
Username: Alexey
Password: SeRvis541
------------------------------------------------------------------------------------
[/i]

Asta cred ca e vre-un carder ca vad ca sta numai pe forumuri rusesti dar downloadeaza muzica de pe huburi din Romania.

Si asta la fel:

[i]
Password List
***********************************************************************************

Website URL: http://login.vk.com
Username: dpaluch@mail.ru
Password: xlivkiehorki
------------------------------------------------------------------------------------

Website URL: https://auth.mail.ru
Username: dplitvinov
Password: 0
------------------------------------------------------------------------------------

Website URL: http://www.all.auto.ru
Username: dpaluch@mail.ru
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://www.bibika.ru
Username: w711802
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://www.all.auto.ru
Username: dpaluch@mail.ru
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://wg108.odnoklassniki.ru
Username: dpaluch@mail.ru
Password: xlivkiehorki
------------------------------------------------------------------------------------

Website URL: http://www.all.auto.ru/office/
Username: username
Password: password
------------------------------------------------------------------------------------

Website URL: http://passport.yandex.ru
Username: dpaluch
Password: xlivkiehorki
------------------------------------------------------------------------------------

Website URL: https://mylk.qiwi.ru/features.action
Username: (904)555-93-00
Password: xlivkiehorki
------------------------------------------------------------------------------------

Website URL: https://secure.slando.com
Username: dpaluch@mail.ru
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://on-board.ru
Username: ???????
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://www.love.gorodovoy.spb.ru
Username: dpaluch
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://www.avito.ru
Username: dpaluch
Password: 2128506
------------------------------------------------------------------------------------

Website URL: https://auth.mail.ru
Username: dpaluch
Password: 0
------------------------------------------------------------------------------------

Website URL: http://login.vk.com
Username: dpaluch@mail.ru
Password: xlivkiehorki
------------------------------------------------------------------------------------

Website URL: https://lk.beeline.ru
Username: dplitvinov
Password: 2128506
------------------------------------------------------------------------------------

Website URL: https://auth.mail.ru
Username: dpaluch
Password: 0
------------------------------------------------------------------------------------

Website URL: https://auth.mail.ru
Username: bi-uni
Password: 3
------------------------------------------------------------------------------------

Website URL: http://www.bee.fm/
Username: dpaluch
Password: 2128506
------------------------------------------------------------------------------------

Website URL: https://www.selfcare.tele2.ru
Username: 9045559300
Password: 7927
------------------------------------------------------------------------------------

Website URL: http://www.probki.net
Username: lyapuch
Password: l7565105
------------------------------------------------------------------------------------

Website URL: https://rbkmoney.ru
Username: dpaluch@mail.ru
Password: xlivkiehorki
------------------------------------------------------------------------------------

Website URL: http://my.opera.com
Username: dpaluch
Password: 2128506
------------------------------------------------------------------------------------

Website URL: http://login.rutracker.org
Username: dpaluch
Password: 2128506
------------------------------------------------------------------------------------
[/i]

Astea numai ce am gasit useri de opera...ii pun cand strang mai multi si pe cei de mozilla!

Edited by phantomas90
Posted

Internet explorer:

[Windows XP]

Folosim IEPasswordDecryptor

IEPasswordDecryptor : Internet Explorer Password Recovery Tool - www.SecurityXploded.com

========================================

Google chrome:

[Windows XP]

[Windows Vista & Windows 7]

Folosim GooglePasswordDecryptor

GooglePasswordDecryptor : The Google Account Password Recovery Tool- www.SecurityXploded.com

mereu e gol dosarul acela...caut unde nu trebuie oare?

Posted

Foarte buna metoda ... dar cred ca putini sunt cei care stiu cat de mult ar trebui sa stie ca sa stie ca este un lucru prostesc sa-ti bagi toata partitia ( ma refer la C:/ ) pe un hub ... :);)

Posted

intradevar, se gasesc multi naivi...e de ajuns sa gasesti cateva conturi de yahoo si sa iti imprastii stealerul prin intermediul emailului catre contactele victimei...si tot asa... numai in cateva ore am strans +1000 conturi si pass..

buba cea mai mare e alta... parolele din IE (pentru ca in final sunt multi care il folosesc, in special la noi) unde sunt stocate? vazusem pe net ca sunt duse in niste registri, dar nu stiu cum pot ajunge la ei...si apoi ce sa fac cu ei... orice ajutor ar fi binevenit

Posted
@curiosul folosind ce ai zis tu am gasit si eu din 5 huburi un prost cu Opera

Hahah, eu sunt ala, bine ca m-am gandit sa vad ce gasesc despre mailul meu pe google, frumoasa metoda, am schimbat parolele si strongul il aveam sters demult, da, omiti sa le spui userilor ca ai facut ca orice roman, te-ai luat la injurat cu persoanele din lista, apoi m-a sunat o pr si i-am zis sa-mi schimbe parola, nici o dauna., anyway, bun tutorial:)), bun pt intarirea securitatii ca nu'mi place sa folosesc antivirusi care au anti-phishing, defapt nu folosesc deloc.:-??

Posted
Hahah, eu sunt ala, bine ca m-am gandit sa vad ce gasesc despre mailul meu pe google, frumoasa metoda, am schimbat parolele si strongul il aveam sters demult, da, omiti sa le spui userilor ca ai facut ca orice roman, te-ai luat la injurat cu persoanele din lista, apoi m-a sunat o pr si i-am zis sa-mi schimbe parola, nici o dauna., anyway, bun tutorial:)), bun pt intarirea securitatii ca nu'mi place sa folosesc antivirusi care au anti-phishing, defapt nu folosesc deloc.:-??

Eu nu fac asa ceva. Acum vad raspunsul tau desi s-a intamplat demult chestia. Singurul lucru care l-am facut cand am mai intrat pe messengerul altora a fost sa le zic prietenilor respectivului sa-i transmita sa schimbe parola. Probabil ai fost primul cazut si ti-am pus parolele pe forum. Daca cineva a intrat dupa mine, nu's eu de vina. Cum nu sunt de vina nici pentru faptul ca ai dat C:\ la share. Anyway vad ca ai intrat si ai facut doar un post.

Posted
Imi da o eroare zice sa pun master password ce trebe sa fac :|:D

Daca iti cere asa ceva nu poti sa extragi nimic. Inseamna ca respectivul are o protectie in plus fata de stocarea criptata reversibil facuta cu ajutorul fisierelor cert8.db si key3.db. Pt mozila stiu sigur ca exista protectia in plus cu master password, nu stiu daca e valabil si la opera. PS: nu poti face nimic cu ce ai prins :(

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...