• XSS.stack #1 – первый литературный журнал от юзеров форума

Фишинг меня (примеры)

Отслеживать
admin

admin

#root
Администратор
Регистрация
12.11.2004
Сообщения
7 146
Решения
1
Реакции
10 006
Добрый день. Клоуны заваливают мне почту, жаббер, телеграм фишингом. Есть варианты умнее, есть совсем глупые. Буду сюда закидывать. Можете поковырять, если кому-то интересно. Вдруг, найдете что-то интересное рядышком =)
Код: 
<html><head></head><body>Launching in September, we've formed a minor adjustment to the rules governing our cooperation. We ask you to analyze the current list of rules <br> <br>
https://webcontentfarm.com/51/a3m93y13yo1 <br> <br>
We hope that this modification will not have any negative effect on our collaboration with you.

<div style="display: flex; max-width:50%;"><div style="background:none; border-bottom: 1px solid #d7dfe3; width:50%; margin:0; padding: 0;">&nbsp;</div></div></body></html>
    <blockquote>
    <footer>
    <cite><!DOCTYPE html>
<html lang="ru-RU" dir="LTR">
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
    <base href="
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="format-detection" content="telephone=no">
    <title>xss.pro (ex DaMaGeLaB) - запрос на подтверждение учётной записи</title>
</head>
<body dir="LTR" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0" style="margin: 0; padding: 0; word-wrap: break-word; -ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%; background-color: #f1f3f6; font-size: 15px; font-family: 'Segoe UI','Helvetica Neue',Helvetica,Roboto,Oxygen,Ubuntu,Cantarell,'Fira Sans','Droid Sans',sans-serif; line-height: 1.4; color: #1d1d1d;">

<table id="bodyTable" border="0" width="100%" height="100%" cellpadding="0" cellspacing="0" style="border-spacing: 0; mso-table-lspace: 0pt; mso-table-rspace: 0pt; border-collapse: collapse; margin: 0; padding: 0; background-color: #f1f3f6; height: 100%; width: 100%;">
<tr>
    <td align="center" valign="top" id="bodyTableContainer" style="border-collapse: collapse; background-color: #f1f3f6;">
        <table border="0" width="600" cellpadding="0" cellspacing="0" class="container" dir="LTR" style="border-spacing: 0; mso-table-lspace: 0pt; mso-table-rspace: 0pt; border-collapse: collapse; width: 100%; max-width: 600px; table-layout: fixed;">
        <tr>
            <td class="header" align="center" valign="top" style="border-collapse: collapse; color: #597DA4; padding: 10px 15px; border-top-left-radius: 4px; border-top-right-radius: 4px; font-family: 'Segoe UI','Helvetica Neue',Helvetica,Roboto,Oxygen,Ubuntu,Cantarell,'Fira Sans','Droid Sans',sans-serif; font-size: 24px; line-height: 1.4;">
                <a href="" style="text-decoration: none; color: #597DA4;">xss.pro (ex DaMaGeLaB)</a>
            </td>
        </tr>
        <tr>
            <td class="content" align="left" valign="top" style="border-collapse: collapse; background-color: #fff; border-radius: 2px; color: #1d1d1d; padding: 15px; font-size: 15px; font-family: 'Segoe UI','Helvetica Neue',Helvetica,Roboto,Oxygen,Ubuntu,Cantarell,'Fira Sans','Droid Sans',sans-serif; line-height: 1.4;">





<p style="margin-top: 0;">Toby206, для завершения регистрации на сайте <a href="" style="color: #34495e; text-decoration: none;">xss.pro (ex DaMaGeLaB)</a>, Вам необходимо подтвердить свою учётную запись, перейдя по ссылке ниже.</p>

<p style="margin-bottom: 0;"><a href="" class="button" style="display: inline-block; padding: 5px 10px; background-color: #1e2b34; border: none; border-radius: 4px; font-size: 13px; color: #fff; text-decoration: none; white-space: nowrap;">Подтвердите Ваш email</a></p>




            </td>
        </tr>
        <tr>
            <td class="footer" align="center" valign="top" style="border-collapse: collapse; padding: 10px 15px; text-align: center; color: #767676; font-size: 13px; font-family: 'Segoe UI','Helvetica Neue',Helvetica,Roboto,Oxygen,Ubuntu,Cantarell,'Fira Sans','Droid Sans',sans-serif; line-height: 1.4;">
                <div><a href="" style="color: #767676; text-decoration: underline;">Перейти на xss.pro (ex DaMaGeLaB)</a></div>


            </td>
        </tr>
        </table>
    </td>
</tr>
</table>

</body>
</html>

</cite>
    </footer>
</blockquote>
 
kkain сказал(а):
href вёл на форму ввода лог:пасс? 😅
Понятия не имею. Но там рядышком на сервере могут быть интересные вещи. Вдруг кому-то интересно покопаться. Если уж человек решил по своим по-свински работать (это максимально отвратительно).
 
HTML: 
                <html>
                <body>
                        <p>Okay... We represent an oil company that is one of the leaders in the industry. Our company has been entrusted with an important project in your region and requires the presence of our senior executives to make it a success. These are 27 outstanding professionals who play a key role in the development of our company.<br>
We approached your hotel because we had heard of its outstanding reputation and level of service. Our bosses appreciate comfort and excellent service and we would like to provide them with the best accommodation during their business trip.<br>
We have attached an official document with a complete guest list on file for your convenience. This document also confirms our financial readiness for booking. https://www.dropbox.com/scl/fi/lp71ava8s6a5o2nmylfvz/Bur-Oil-Company-List.zip?rlkey=065t3r1q32pp087wu9uambs4n&dl=1<br>
We are ready to discuss all details and requirements to make sure that our bosses will feel at home in your hotel. We await your booking confirmation and look forward to a fruitful cooperation.<br>
Best regards,<br>
"BurOil Company"</p>
                    <table style="border-top: 1px solid rgb(211, 212, 222);"><tbody><tr><td style="width: 55px; padding-top: 13px;"><a href="https://www.avast.com/sig-email?utm_medium=email&amp;utm_source=link&amp;utm_campaign=sig-email&amp;utm_content=webmail" target="_blank"><img src="https://ci6.googleusercontent.com/proxy/Y2Ro-My7OBOpVJK5jh5wZ7m37zALcEMs5lSrvAhrWVK6EJ9qfxbRRD8cubuTtNzEAKTvUm3cgvdRSiUfjuqw2e6IUaehD7ShgVEWJdnjuemjsVH2ubakhL2wuqLYw41qlcT__Zhl8QeLX-PtvLufHa_kTMJ9oC5eSnM=s0-d-e1-ft#https://s-install.avcdn.net/ipm/preview/icons/icon-envelope-tick-round-orange-animated-no-repeat-v1.gif" alt="" width="46" height="29" class="gmail-CToWUd" style="width: 46px; height: 29px;"></a></td><td style="width: 470px; padding-top: 12px; color: rgb(65, 66, 78); font-size: 13px; line-height: 18px;">Virus-free.&nbsp;<a href="https://www.avast.com/sig-email?utm_medium=email&amp;utm_source=link&amp;utm_campaign=sig-email&amp;utm_content=webmail" target="_blank" style="color: rgb(68, 83, 234);">www.avast.com</a></td></tr></tbody></table>
                </body>
                </html>
 
Пожалуйста, обратите внимание, что пользователь заблокирован
admin сказал(а):
HTML: 
                <html>
                <body>
                        <p>Okay... We represent an oil company that is one of the leaders in the industry. Our company has been entrusted with an important project in your region and requires the presence of our senior executives to make it a success. These are 27 outstanding professionals who play a key role in the development of our company.<br>
We approached your hotel because we had heard of its outstanding reputation and level of service. Our bosses appreciate comfort and excellent service and we would like to provide them with the best accommodation during their business trip.<br>
We have attached an official document with a complete guest list on file for your convenience. This document also confirms our financial readiness for booking. https://www.dropbox.com/scl/fi/lp71ava8s6a5o2nmylfvz/Bur-Oil-Company-List.zip?rlkey=065t3r1q32pp087wu9uambs4n&dl=1<br>
We are ready to discuss all details and requirements to make sure that our bosses will feel at home in your hotel. We await your booking confirmation and look forward to a fruitful cooperation.<br>
Best regards,<br>
"BurOil Company"</p>
                    <table style="border-top: 1px solid rgb(211, 212, 222);"><tbody><tr><td style="width: 55px; padding-top: 13px;"><a href="https://www.avast.com/sig-email?utm_medium=email&amp;utm_source=link&amp;utm_campaign=sig-email&amp;utm_content=webmail" target="_blank"><img src="https://ci6.googleusercontent.com/proxy/Y2Ro-My7OBOpVJK5jh5wZ7m37zALcEMs5lSrvAhrWVK6EJ9qfxbRRD8cubuTtNzEAKTvUm3cgvdRSiUfjuqw2e6IUaehD7ShgVEWJdnjuemjsVH2ubakhL2wuqLYw41qlcT__Zhl8QeLX-PtvLufHa_kTMJ9oC5eSnM=s0-d-e1-ft#https://s-install.avcdn.net/ipm/preview/icons/icon-envelope-tick-round-orange-animated-no-repeat-v1.gif" alt="" width="46" height="29" class="gmail-CToWUd" style="width: 46px; height: 29px;"></a></td><td style="width: 470px; padding-top: 12px; color: rgb(65, 66, 78); font-size: 13px; line-height: 18px;">Virus-free.&nbsp;<a href="https://www.avast.com/sig-email?utm_medium=email&amp;utm_source=link&amp;utm_campaign=sig-email&amp;utm_content=webmail" target="_blank" style="color: rgb(68, 83, 234);">www.avast.com</a></td></tr></tbody></table>
                </body>
                </html>
А в чём прикол? Тебя считают владельцем какого то отеля? Странная разводка под админа даркнет форума)
 
admin


Напишите ответ...
  • Вставить:
Прикрепить файлы
Верх