Go Back   Xisp.org Forums > Porn Password Cracking > Cracking Tutorials

tut on key words in sentry - jimi

Reply
Views: 2895 - Replies: 13  
Thread Tools Display Modes

tut on key words in sentry - jimi
Old 01-06-2005, 01:29 PM   #1
buddblack
Guest
 
Posts: n/a
Threads: 5107
Default tut on key words in sentry - jimi

heres a tut I found this is for faliure keys but this IS NOT MY WORK

OK lets look at some debug text

========== Hit: http://galamoor:samson@xxxxx/members Proxy: 61.235.140.200:80 Time: 1/2/2004 9:35:40 PM ==========
---------- Begin Header Data ----------
HTTP/1.1 200 OK
Date: Sat, 03 Jan 2004 10:18:26 GMT
Server: Apache/1.3.20 (Unix) PHP/4.0.5
Cache-Control: no-cache
Pragma: no-cache
Vary: Authorization
Content-Type: text/html
Connection: Close

---------- End Header Data ----------
---------- Begin Source ----------
<META HTTP-EQUIV="refresh" CONTENT="0; url=http://www.pennywize.com/blocked.html"><!-- Your username or IP has been permanently blocked. All requests future requests will receive a '200 OK' response immediately until the block expires -->
---------- End Source ----------

So here we have a fake reply. Now we need a failure key. Lets look at this.
<META HTTP-EQUIV="refresh" CONTENT="0; url=http://www.pennywize.com/blocked.html"

From this we can pick out two that will stop this fake reply.
1. META HTTP-EQUIV="refresh"
2. pennywize


========== Hit: http://billou73:18111973@xxxxxx/membersarea Proxy: 218.66.219.11:8080 Time: 1/2/2004 9:40:53 PM ==========
---------- Begin Header Data ----------
HTTP/1.0 200 OK
Content-Type: text/html

---------- End Header Data ----------
---------- Begin Source ----------
<html>
<head>
<title></title>
<meta http-equiv=Pragma content=no-cache>
</head>
<body>
<script language=JavaScript>
location.replace('http://218.66.219.11:10000/www/stop.cgi?uid=0&reason=db_domain&location=http://xxxxxx/membersarea')
</script>
</body>
</html>

---------- End Source ----------

Here is another type of fake reply. We could pick out two from here also but one will be enough enough.

1. stop.cgi


========== Hit: http://Judas_I2:Ownzyou2@xxxxxx/membersarea Proxy: 61.117.134.130:80 Time: 1/2/2004 9:41:19 PM ==========
---------- Begin Header Data ----------
HTTP/1.0 200 OK
Via: 1.1 INTERNET
Connection: close
Content-Type: text/html
Date: Sat, 03 Jan 2004 02:36:15 GMT
Server: Apache/1.3.27 (Unix) PHP/4.3.0
Cache-Control: no-cache
Pragma: no-cache

---------- End Header Data ----------
---------- Begin Source ----------
<META HTTP-EQUIV="refresh" CONTENT="0; url=http://www.xxxxxx/main.php?rid=pennybob"><!-- Your username or IP has been permanently blocked. All requests future requests will receive a '200 OK' response immediately until the block expires -->
---------- End Source ----------

Her we can pick out two more.
1. META HTTP-EQUIV="refresh"
2. pennybob I like this one for this site. It is like pennywize.


========== Hit: http://baatezu:ayelet@xxxxxx/membersarea Proxy: 211.248.242.252:80 Time: 1/2/2004 9:41:31 PM ==========
---------- Begin Header Data ----------
HTTP/1.1 200 OK
Via: 1.1 WEBSER
Connection: close
Content-Length: 321
Content-Type: text/html
Server: Microsoft-IIS/5.0
Date: Sat, 03 Jan 2004 02:36:17 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 18 May 2000 09:26:34 GMT
ETag: "0816f28abc0bf1:9af"

---------- End Header Data ----------
---------- Begin Source ----------
<HTML>
<HEAD>
<TITLE>수호천사 차단회</TITLE>
</HEAD>
<BODY bgcolor=white>
<CENTER>
<BR><BR>
<font color = black size = 10 align=center>
<B>수호천사 * NET 3.0</B>
</font>
<p>

<font color = red size = 5 align=center>
본 사이트로의 접근이 금지되어 있습니다
<p>
</font>



</CENTER>
</BODY>
</HTML>

---------- End Source ----------

Here we got nothing telling us why this is a fake but the weird coding means proxy error.

1. 수호천사 차단회 this is the failure key


========== Hit: http://tigger12:panties@xxxxxx/membersarea Proxy: 203.72.44.5:80 Time: 1/2/2004 9:41:58 PM ==========
---------- Begin Header Data ----------
HTTP/1.1 200 OK
Via: 1.0 FS_2
Connection: close
Content-Type: text/html
Date: Sat, 03 Jan 2004 02:38:01 GMT
Server: Apache
X-Powered-By: PHP/4.2.2
X-Cache: MISS from gate1

---------- End Header Data ----------
---------- Begin Source ----------
<html><body>
<br><br>
<div align='center'><IMG src=
'http://netflow2.nccu.edu.tw/MOE/noaccess.gif'></div>
</body></html>
---------- End Source ----------

http://netflow2.nccu.edu.tw/MOE/noaccess.gif'
This line tells us noaccess.

1. http://netflow2


========== Hit: http://gorge:may12@xxxxx/membersarea Proxy: 65.172.164.2:80 Time: 1/2/2004 9:41:59 PM ==========
---------- Begin Header Data ----------
HTTP/1.0 200 OK
Content-type: text/html
Expires: 0

---------- End Header Data ----------
---------- Begin Source ----------
<html>
<head>
<title>Cannot Access Web Address</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body bgcolor="#FFFFCC">
<form method="post" action="http://database.n2h2.com/cgi-perl/catrpt.pl" name="suburlpost">
<input type="hidden" name="req_URL" value="http://xxxxx/membersarea">
</form>

This one is easy.

1. Cannot Access Web Address


========== Hit: http://barb34:satchel1@xxxxx/membersarea Proxy: 203.246.81.54:3382 Time: 1/2/2004 9:42:01 PM ==========
---------- Begin Header Data ----------
HTTP/1.0 200 OK
Content-Type: text/html

---------- End Header Data ----------
---------- Begin Source ----------
<html><HEAD><TITLE>CeaManager * 2000 연결 차단</TITLE></HEAD><BODY bgcolor="WHITE"><CENTER><table border=0><tr><td><center><font size="6" face="Arial"><b> </b></font></center></td></tr><tr><td><br><center><font size="4" face="굴림체" color="blue"><h2><b>본 사이트는 접속할 수 없습니다.</h2><br><br>
효율적인 인터넷 사용을 위하여 일부 사이트를 차단합니다.<br><br>
차단이 잘못되었거나 사용상 불편한 점이 있으면 정보처리센터로 <br>
문의하여 주시기 바랍니다.<br><br>

Once again a bunch of garbage telling u nothing.

1. CeaManager


========== Hit: http://ronmul:perzikln@xxxxxx/membersarea Proxy: 203.115.12.41:80 Time: 1/2/2004 9:42:12 PM ==========
---------- Begin Header Data ----------
HTTP/1.1 200 OK
Via: 1.1 NTSERVER
Connection: close
Date: Sat, 03 Jan 2004 02:37:08 GMT
Content-Type: text/html
Server: Apache/1.3.27 (Unix) PHP/4.3.0

---------- End Header Data ----------
---------- Begin Source ----------
<html>
<head>
<title>Members Area</title>
</head>
<body bgcolor="#000000" text="#FFFFFF" vlink="#ECE113" alink="#CC99FF" link="#ECE113">

<style type="text/css">
<!--
a:hover { color :#cc99ff; text-decoration: underline;}
-->
</style>

This is what u are looking for. For this site this is a valid hit.

<title>Members Area</title>

Most sites a good hit says something to the effect that you reached the members page. But beware some sites
say something different for their members page. Latest one I came across was .. processing ..

Hope this gives u a insight on how to read the debug file.


hope this helps
  Reply With Quote

Old 01-20-2005, 07:46 AM   #2
Snowdog
Guest
 
Posts: n/a
Threads: 5107
Default

Thanks for the info on Sentry. I have found that your info has helped me out a lot. I tell ya I am liking Sentry a lot better than AD also.

SNOWDOG
  Reply With Quote

Old 01-21-2005, 05:43 AM   #3
lazo
Guest
 
Posts: n/a
Threads: 5107
Default

thank you m8 very much for sharing those gold information with us
  Reply With Quote

Old 01-27-2005, 12:45 AM   #4
maichinht
Poor Replier
 
maichinht is offline Offline
Join Date: Jan 2005
Posts: 30
Threads: 0
maichinht is on a distinguished road
Default

nice tutorial! thanks.
  Reply With Quote

Old 02-10-2005, 07:30 PM   #5
toniii
Guest
 
Posts: n/a
Threads: 5107
Default

Thanks a lot for the tut!
  Reply With Quote

Old 03-07-2005, 11:28 PM   #6
solomunder
Guest
 
Posts: n/a
Threads: 5107
Default

I really needed this info. Perhaps the most confusing part for me using sentry.
  Reply With Quote

Old 03-08-2005, 01:45 AM   #7
devo
Guest
 
Posts: n/a
Threads: 5107
Default

Thanks for sharing your find
  Reply With Quote

Old 03-08-2005, 09:05 AM   #8
agajan_m
Guest
 
Posts: n/a
Threads: 5107
Smile

ohhh.... finally i found helpful txt for this tool.... thanks.
  Reply With Quote

Old 03-09-2005, 03:45 AM   #9
vehement
Guest
 
Posts: n/a
Threads: 5107
Default

nice tutorial. thanks for sharing
  Reply With Quote

Old 03-14-2005, 05:52 AM   #10
agajan_m
Guest
 
Posts: n/a
Threads: 5107
Default

this tutorial hepls me so greatly. before i usually get fakes. i burden my mind (how can i dissolve these). thnx.thnx.thnx !!!
  Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump



All times are GMT -4. The time now is 04:42 PM.


vBulletin skin developed by: Xisp.org Crew
Powered by vBulletin®
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.
2005 Copyright Xisp.org