cloud9factor

Thanks lets see if this one works

Thanks Micro. Gonna test it out!

Hello everyone, cloud9factor here. This tutorial is to show you how you can invite your Spotify account to a Family Plan and how to find the adress and zip code so you wont get kicked off. Its pretty easy and straightfoward. Just follow the steps. But first you need to find a Spotify Premium Family Plan with available invites. To help in that area I'm going to be giving 400 Spotify Premium Family Plan accounts, so that way you can test it out yourself. All tools used in this tutorial are available to download at the end with correspondent Virus Total scan I hope you learn something new and enjoy the reading. :smart: TUTORIAL [hide]For this tutorial we are going to use one main tool: 'Charles' and his crack! Charles is an HTTP proxy / HTTP monitor / Reverse Proxy that enables a developer to view all of the HTTP and SSL / HTTPS traffic between their machine and the Internet. Its using this Charles that we are going to be able to get the adress and zip code from the main Family Plan account! So, for you to better understand im going to divide this tutorial in parts! LETS DO THIS! :hype: Part 1 - How to Install 'Charles' Pretty straight foward! Just download the winrar link at the bottom of the page. Extract the winrar and install the exe file. I made the gif just to avoid the super newbies from asking question :kek: Part 2 - Installing Charles Crack! In this part you are going to copy and paste the charles.jar file, from the winrar file you downloaded, to the lib folder where the Charles is installed. You NEED TO DO THIS! Otherwise we wont be able to see the adress and zipcode from the account. Usually the folder is located at : C:\Program Files (x86)\Charles\lib Also pretty easy. Just follow the gif below. PART 3 - Installing Charles Root Certificate You have to do this part because if you dont, when you start 'Charles' you will not be able to acess Spotify cause the site will block you! So if you get a ERROR saying that you cant acess the site its probably because you did not do this part. Step 1: Open 'Charles', go to Help and inside of 'SSL Proxying' click on "Install Charles Root Certificate" Step 2: Click on "Install Certificate..." and choose "Local Machine" Step 3: Change to "Place all certificates in the following store" and when you browse choose "Trusted Root Certification Authorities" Step 4: Finish! PART 4 - Enable SSL on Spotify However, after you installed the ROOT Certification on yourr computer you still have to Enable the SSL on the Spotify website. PAY ATTENTION IN THIS one cause you need to enter the Spotify website with the 'Charles' online, turn it off and then turn it on again! Step 1: After root certification, turn on the Charles if it wasnt online and acess the Spotify website Step 2: Then go to the 'Charles' and look for the following structure "www.spotify.com" in the Charles application Step 3: Click it right mouse and choose "Enable SSL Proxying" Step 4: TURN OFF THE CHARLES! You can clean it or not. TURN THE CHARLES BACK ON! Step 5: Go back to Spotify and login on the Spotify Account with Family Plan and available invites Step 6: After you are logged in, get back to Charles and you are going to see that the structure "www.spotify.com" is now blue! That means you did everything right! PART 5 - Sending the Invite Code to your email! This part is pretty easy, BUT REALLY IMPORTANT! Cause its this part that is going to give us the ADRESS AND ZIP CODE! You have to do this part with Charles RUNNING! You will go "Manage your Family Accounts", click in "Go" and send an invite to someone. YOU HAVE TO SEND AN INVITE TO SOMEONE TO GET THE ADRESS! If you cant see this part that probably means the account doesnt have available invites. TIP: Go through the 400 accounts i provided below and see if there is a Family Plan with invites available. When you get an account with invites available, do this tutorial. Link: https://anonfiles.com/M0Lapaw4n3/PREMIUM_FOR_FAMILY_rar Im going to put this link here with the account so that only people that read the tutorial use it to test it out. Its password protected and the pass is: cloud9factorcracked.to PART 6 - How to get the ADRESS AND ZIP CODE After you sent you the invite you have to go back to Charles and see email as the gif shows Step 1: Go back to Charles and in the structure "www.spotify.com" that has a blue ball on the side Step 2: Follow the folders: us > family > api > get-family-plan Step 3: After you get to 'get-family-plan' you need to click on the '/ ' file Step 4: Then you click the tab "Contents" Step 5: You will find the Adress and Zip Code on the JSON TEXT. Linel is the Street Name! PART 7 - Using your Spotify Premium Account This part will show you sign up to the Family Plan and use your account! If there is not a number for the Street you can use 'rd', that means 'road'. [/hide] DOWNLOAD LINKS! [hide]1 - 'Charles' and his crack LINK: https://anonfiles.com/M6I6pfwfn4/charles_rar VT: https://www.virustotal.com/gui/file/19f3244a44ef09c0efdaf5d2cfd561aa373f1d9da93c2a1b0c6a12d7e03e61ff/detection [/hide] Please leave a LIKE! :fiesta: Dont be a LEECHER!

Thank you. Gonna give it a try to see if it works! EDIT: I got this error when i tried to use this config EDIT 2: I edited the config to use MAILPASS, cause mine was empty. You can edit the config on the Other Options and Data in the Openbullet. The config is working (22/06/19), its really fast and i got a few hits with 60 points. But when i try to use more bots, sometimes it freezes. But i dont know if thats my Openbullet version.

Thank you sir. Im gonna try it out and get back to you!

Thank you sir. Gonna take a look

I made a tutorial. You can check it out. There are a lot of tools there.

:hype: Congrats dude! Hope you help a lot of members!

if you leave the bot on and let the people come to u you can make more than $15 i made $100 in 2 days HER IS MY DADDY M8 Srsly? 100$ in 2 days? My god. People are desperate for sex.

Lets check it out and see if it works Edit: Might work but takes too much time.

Jesus christ :kek: The lenght people go to see someone else naked hahaha

Hello, i made a tutorial about decrypting hashes and at the last part i cited a option to pay for someone to decrypt your hashes. Can i link your topic to my tutorial?

Hello guys, cloud9factor here. Before we start, you need to know that this is going to be a really big tutorial. This tutorial is exclusive to Cracked.to and you will not find in any other forum! You will need 2 things before you start reading this tutorial 1. Patience. 2. Time. This tutorial will be updated with another methods. I hope you learn something and enjoy the reading. I tried to make the easiest way possible for everyone to understand. All tools used in this tutorial are available to download at the end with correspondent VirusTotal scan. Let's begin? First of all you need to identify the type of hash you have! We are going to do that by using a Hash Identifier. https://media.giphy.com/media/323VuHv6DwQUQrmXUn/giphy.gif[/img] As you can see in the gif, we found a MD5 and a MySQL hash. To make it easier for you guys to understand, im going to decrypt these 2 hashed combos (MD5 & MySQL) with you, and go step by step so you can understand! LET'S GO! :hype: Method 1 [hide] FindMyHash 0.2.1.1 - Decrypts MD5 In my opinion, this is the best free tool right now to decrypt MD5. Its kinda fast, the database is big and it allows you to export found and not found. Let's start decrypting one of the hashed combos, in this case the MD5. https://media.giphy.com/media/fHiauzULsudWVojFsx/giphy.gif[/img] As you can see, FindMyHash decrypted 80% of the hashes :feelsgood: That leaves us with 296 email:hash to find! If you want you can delete the original mail:hash (in my case i named my file, as you can see in the gif, "mail.hash 1 MD5"). From now on we are going to use the "not found.txt". Now, we are going to Method 2 to decrypt the rest.[/hide] Method 2 [hide]Hash Cracker Lite v1.3.2 - Decrypts MD5 & SHA1 This tool is good, but its a 'free version' so probably a lot of the hashes are going to the private file forcing you to buy the PRO version. However, sometimes i use it just to decrypt a little more and another reason that you are going to see in the Method 3. Lets see how this tool works with the "not found.txt". See? As i said, almost all of the hashes went to the PRO version. However we were able to decrypt 39. That still leaves us with 256 MD5 hash to decrypt. Now in the folder that we opened in the 'Hash Cracker Lite' you are going to copy "good.txt" and "bad.txt", and paste them in the folder that contains "found.txt" and "not found.txt" that we created in the previous gif. The "good.txt" we are later going to combine with the "found.txt". The "bad.txt" is now the file with mail.hash that we are going to decrypt in the Method 3. [/hide] Method 3 [hide] Hashkiller Helper - Decrypts MD5, SHA1 & NTLM This tool is a very, very good! They use the Hashkiller.co.uk database that its HUGE and its daily updated! They have a DeathbyCaptcha plugin that solves the captchas (not tested this dbc - if you have and account and can lend me to test or test yourself, let me know!) However, its an old tool and needs an update so there are a few problems that we need to adress before using this tool! 1 - You MUST USE this tool with VPN or in a RDP. Cause if you end up using too much of this tool, Hashkiller.co.uk will ban you IP! That will disable the abiity of the tool to decrypt the hashes. 2 - Since its using the Haskiller.co.uk decrypter format, that only allows 64 hash at a time, the tool will only be able to decrypt 64 hash at a time. 3 - If your "bad.txt" or "not found.txt" with hashes is still pretty big, decrypting them will be very time cosuming, cause every 64 hashes you will have to solve a captcha. 4 - However, the main problem of this tool is that after you finish decrypting, you wont be able to retrieve the "Not Found" hashes in the tool. This is the reason why i always leave this tool to last. BUT, if you liked this tool and if you have the DeathbyCaptcha account, there is a way to retrieve the "Not Found" with a different tool. But im going to make a tutorial in the end of the topic to show you guys how to do it. Lets see how this tool works with the 256 mail.hash that we still have to find. https://media.giphy.com/media/9zXFe5E29BZGPNpjDz/giphy.gif[/img] Now you will copy the 'Results' into a notepad and save it. As you can see the tool decrypted 230 out of the 256 hashes. Leaving us with 26, however we cant copy from the tool the 26 not found. But you might say: "But 26 its a really small number to care!". I agree with you! But what if it was 1000, 10000 Not Found? This is the problem with this tool. But, as i said ii will make a tutorial in the end of this topic on how to resolve this problem. Now, you used the 3 methods to crack your MD5 mail.hash combo,you will have 3 txt files. In the end of this tutorial im going to teach you how to combine them! [/hide] Method 4 [hide] Hashkiller Online Tool, InsidePro Hash Finder and Passwords Pro. - Decrypts ALL Hashes! Since we decrypted 99% of the MD5. We are going to decrypt now the MySQL mail.hash that we identified in the beginning. Now you have to understand that there are not a lot of tools to decrypt MySQL, like there are to MD5. So we are probably have a harder time to decrypt 99%, we might not even be able to make it that high porcentage! In this method we use 3 different tools so it can get a bit tricky to explain, so im going to break it into 5 parts so you can understand it better! PART 1 - Using Hashkiller Online Tool to divide the mail from the hash We need to use this tool, because the decrypter we are going to use doesnt recognize mail:hash, only recognizes hash. So we have to separate the mail from the hash first. For that we use the hashkiller tool that its pretty easy. https://i.imgur.com/UsZor7X.gif[/img] After you split them you have to copy only the hashes. So now we have to get these hashes that we copied to the InsidePro Hash Finder. PART 2 - InsidePro Hash Finder to decrypt the hashes InsidePro its a website that decrypts the hashes in a lot of formats. It allows the maximum of 25.000. However its a free tool, so a lot of the hashes will go to the private folder that you can only decrypt by paying. But its still worth it to use it! Paste only the Hashes in the InsidePro, solve the recaptcha and Search for the Hashes. https://media.giphy.com/media/3YLmCx452tn53Rojx4/giphy.gif[/img] So the InsidePro Hash Finder decrypted 4817 hashes. However we dont know to which email the password belongs to. For that we will need the PasswordPro. But first we need to separate the Hash from the password. PART 3 - HashKiller Online Tool to separate the HASH from the PASS Its just the same as the Part 1 https://i.imgur.com/Abfn8bS.gif[/img] Now you are going to save ONLY the decrypted password in a txt so that way we can open in the PasswordPro PART 4 - Using PasswordPro to find which password belongs to which email. Im going to show the gif, but i will detail step by step on how to do it. Step 1: Go to the Settings, Click on 'Dictionaries' and add the .txt file with the password that you saved! Step 2: Import the user.hash file to the PasswordPro Step 3: Select the type of hash(in this case MySQL) and the line format(In this case username:hash) Step 4: Go to attack type and select 'Simple Dictionary Attack' Step 5: Them click on 'Run Attack from Start' After that the PasswordPro will find out which password belongs to which email. PART 5 - Exporting the found and not found with Password Pro. Now we are going to export the found and the not found The not found is Username and Hash, always remember to EXPORT THE NOT FOUND!!!! THERE IS ANOTHER METHOD TO DECRYPT THE HASHES! So we had a 10801 mail.hash and we were able to decrypt 5560 (50%). But we can improve this porcentage a little bit more with the next Method![/hide] Method 5 [hide] Password Pro with Simple Dictionary Attack - Decrypts ALL Hashes! This method is easy, but its hard. Because to work you will need to have a wordlist with the password that you want to find! There are a lot of wordlists in the internet and they can be pretty big (up to 96gb) and even them, if the password is not in the worldlist you will not decrypt it! The worldlist that i am going to use is the wordlist that hashkiller.co.uk provides in their website. It has a lot of good passwords. You can find the wordlist that i used to download here: https://hashkiller.co.uk/downloads.aspx However in the end of this method i will provide you a few links to download good worldlist to give it a try! Lets start! The ones that i am going to use are the 'Hashkiller Passwords' and the 'HashKiller Output Wordlist'. If you download the PyscOPacK v2 make sure you have space on your computer or VM cause they are 37gb when you extract! Lets try this now. Lets go Step by Step Step 1: Open the 'Settings' and go to Dictionary. Delete the file in there (you can leave the file, however i know all passwords in there will be useless cause we already tried them, so i deleted because if i leave it it will check that file and take a little longer) and open the wordlist that you downloaded! (in this case i used 2). Step 2: Go to the main page and delete all the user (You can also leave it, it will decrypt) Step 3: If you deleted, like i did, go and Import the "not found.txt" that we saved earlier. Step 4: Make sure the attack type is 'Simple Dictionary Attack' Step 5: Click on 'Run the attack from start' Now, you will also save the found and the not found. Look at the second gif, of the PART 5 from the Method 4. As you can see, we were able to find 1165 password out of 5241 that we had in the 'not found.txt'. We can find a lot more. However, you will need different worldlists As promised here are a few links for you to find wordlists 1- https://thehacktoday.com/password-cracking-dictionarys-download-for-free/ 2 - https://weakpass.com/wordlist/huge 3 - https://crackstation.net/crackstation-wordlist-password-cracking-dictionary.htm 4 - https://wiki.skullsecurity.org/Passwords 5 - http://blog.g0tmi1k.com/2011/06/dictionaries-wordlists/?redirect But know that Password Pro only recognizes .txt and .dic extension!!! Some wordlists are .lst that PasswordPro will not recognize! [/hide] Method 6 [hide] Paying and Asking for Help - Decrypts ALL Hashes I leave this Method for last cause it requires you to pay or requires the help of others. Part 1: Paying to decrypt hashes I recommend that you use the InsidePro Hash Finder Client. Their database is big, the price is very low(1$ for 500k hashes :kek: ) and they decrypt pretty much all the formats that you are going to find. But you can also look it up at the marketplace of the forum, sometimes there are people that offer their services to decrypt for a few bucks. A few examples of dehashing services in the marketplace are: Link 1: https://cracked.to/Thread-Combo-dehashing-service Part 2: Asking for help of other You can ask for help in the "Cracking Help" area of the forum. But what i really recommend is that you ask for help in the HashKiller forum, their forum is very active and they really help if you need! But remember to only post your HASH, however you are literally giving away your combo![/hide] Method 7 [hide]UNDER CONSTRUCTION - will be updated[/hide] Questions you might have! [hide]1- "I did Method 1, 2 and 3 now i have 3 separate txt files! How do i combine them??" Under Construction! 2 - "You said you were going to show us how to retrieve the 'Not found' from the Hashkiller Helper tool! Where is that tutorial?" Under Construction! 3 - "Help me! I found 4 different types of MD5 in the InsidePro! What do i do???" Under Construction! 4- "But my combo its 50000! How do i decrypt them if InsidePro only allows maximum of 25000???" Under Construction![/hide] Downloads Links! [hide]1 - FindMyHash 0.2.1.1 Link: https://anonfiles.com/tbx9A0k8b6/FindMyHash_rar VT: https://www.virustotal.com/#/file/dcfa1a1db6368e80d4580f2f652430d0b2eb7183f17ab787e09372106e232c32/detection 2 - Hash Identifier Link: https://anonfiles.com/I5xeAdkcbc/Hash_Identifier_rar VT: https://www.virustotal.com/#/file/4a114ee9b67a559bb4f6246f341e1625ba4be6f9a531fe3ae91e16502a5867b1/detection 3 - HashKiller Helper Link: https://anonfiles.com/51y7A0k8be/Hashkiller_Help_zip VT: https://www.virustotal.com/#/file/84ebd8f0598803fcc0a346a132e2ff10705062ff0115a765a7cd0892ed133a1c/detection 4 - HashCracker Lite 1.3.2 Link: https://anonfiles.com/D5ybAbk7bb/HashCracker_Lite_1.3.2_rar VT: https://www.virustotal.com/#/file/ea35d5c7d6e75250d28bf78da0b86491e9e1fee19c212d8265e6b03615d4d08b/detection 5 - PasswordPRO Link: https://anonfiles.com/f2z0A0k8bf/passwordspro_zip VT: https://www.virustotal.com/#/file/98790456c9ba045919c78efdb9382ff63a847ddfbbd5d20ba356038d528b1b0b/detection 6 - Combos used in this tutorial (MD5 and MySQL) Link: https://anonfiles.com/W82bA1k1b0/combo_rar VT: https://www.virustotal.com/#/file/79c571a0425c89cc29132c4e46424bcc4b909035fdab2aa5a61b674c53ea865b/detection 7 - HashKiller Online Tool Link: https://hashkiller.co.uk/list-tool.aspx 8 - InsidePro Hash Finder Link: http://finder.insidepro.team/ EVEN THOUGH ITS CLEAN! ITS BETTER TO USE EVERYTHING ON RDP, VM![/hide] Please leave a LIKE! Dont be a LEECHER!

They really do! :pepe: But you can check if the password is correct and turn a big dump into a quite good combolist. :smart:

Gmail Bruteforce Disclaimer: This is not my tool. All the credit goes to the creater. This is a very good tool to Brute Gmail accounts. Its easy, light and very fast. REMEMBER! Works with Proxy Sock 4 and 5. Tested and Working: November 4 of 2018. VT: https://www.virustotal.com/#/file/d527da19771a5c15fa1a89cbc84f7a6326e14ef3b598240dbcf616209e2b2a0d/detection [hide]Download Link:https://anonfile.com/W2kf22k6bd/Gmail_Brute_rar[/hide] Please leave a LIKE! Dont be a LEECHER!

Lets see this tool! Thank you sir.

Thank you. Gonna take a look and get back to you.

Thank you sir. Gonna take a look and see if i can do it!

Im also making a tutorial about HASH. Lets see if yours is similar!

Gonna try it out and will edit later. Edit: Really good tool but perhaps it need a few tweaks in the fast option. I got different results for the faster and for the slower option. Faster: 1492 Slower: 817 Other Checker: 703 Other Checker 2: 880

Thanks dude. Gonna check it out. If works i will leave my like. Edit: Wont start checking here.

Probably only MD5. However im dumping a db with DES Hash, i will give it a try and get back to you. :fiesta:

Hoping this helps me with my dorking abilities! Thank you. Edit: Very good book! Thanks man!

Thank you. Gonna check the tutorial and will get back to you if its working. Edit: Works however its a very limited RPD so no good for cracking.

Seems like a nice way to share what you have. Thank you. I would just change the font its kinda bad :kappa: