Naylor__

Members
  • Content Count

    55
  • Last visited

Community Reputation

1 Neutral

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. we allways need spotify accs to listen some rude musique u know
  2. i'm failed almost all my scrapping script so let's see your's
  3. i use to code in python for long time and i don't know if cmd return data value or plain text, by parsing this code i'm gonna figure this out
  4. i'll check them and make an edit to confirm the quality of this combolist
  5. yes why not, i will make a second tuto on the csrf vulnerabilty, where we're gonna build a code to exploit automatically a csrf vuln on your website and anonymously
  6. If you are watching this thread longtime after the date of publication the account may not work. the x190 ACCOUNT: [hide] https://pastr.io/view/rmsqvS [/hide] LEECHER WILL BE REPORTED ! :pepegun: leave a like and i don't report u
  7. What is a CSRF vulnerability ? CSRF is an abbreviation which means Cross-Site Request Forgery, it is also called Sea-Surfing but also often XSRF. This is a web authentication vulnerability. This technique benefits from the trust of Web applications to its customers. The goal is to force the victim's browser to send an HTTP request without the knowledge of this user who is logged into his account (the session must be active). It will exploit this authentication and will allow to execute actions in a completely transparent way. How to exploit ? [hide] When you send a HTTP request the url look like : www.victim.com/transfer.php?from=Unknown&to=Someone&amount=100 this is the normal request When "Unknown" send 100 units to "Someone" . To exploit this vulnerability the Unknown's sessions must be active on the website, then send him the same url. when he will click on it, the target website will send 100 unit again to "Someone". but if you hide the url with BBcode like that : (if you have an error it's normal the www.victim.com website doesn't exist) ImageCool.jpghe he will believe that he's opening a image but in reality you can see that, If you click on this link you will see that the url is www.victim.com/transfer.php?from=Unknown&to=Someone&amount=100 so the "Unknown" one will send without knowing 100 unit to "Someone" Because the url will say to the www.victim.com website to send 100 units to "Someone"that work only if the victim.com session of "Unknown" is open because if not, no website will understand the request. (in general session keep open because of cookies) [/hide] Leave a like https://forum.exploit-zone.eu/uploads/emoticons/biggrin.png[/img] LEECHER DIE IN HELL :pepegun:
  8. i need comblist so i can public acc and then no been a leecher
  9. wow u made a real presentation, french combo are rare so your are like a savor EDIT: your pastr.io link don't work :/
  10. i know a version modified by a friend of mine, it's like every body crack this shit EDIT: it's the one of my friend x)
  11. I really like your username and how you gave back to the community! is that you'r first post ? well done
  12. i absolutly don't agree with this kind of content i'm just stying for a school project x)
  13. Thanks for the tool! This was my first time actually seeing one of these rofl