discrete account stealing, semi guide.

[fatalmind]

i'm sure you're not goind to get the info from a gm. they probably use a tunneling method to keep people from seeing the data they send to the server, and vice versa. Blizz isn't stupid, just a little slow. They wouldn't let something as easy as sniffing jeopardize a gm account, which if stolen would wreak havoc on retail wow.



sure Google :P

[Zylin]

Well if they can protect their gm's from it why not protect their paying users from it? this seems weird to me...

[fatalmind]

why waste the money and resources unless account hacking becomes an issue. Keep in mind, they are a business. Businesses don't like to spend money if they don't have to. a normal wow account isn't nearly as important as a gm account. If someone steals a gm account, they could do anything they wanted to. (not sure if gm's are per realm or global accounts) PLUS they could just have it set up to only allow a gm to connect if it's from a specified IP. Like say, the computers in blizzard's building that the gm's use, since they are paid to come in and gm. I know they don't let you gm from an off site location (like at your house).

not sure which method they are using, if any, but i'm pretty sure it's safe to say you will NEVER get a functional gm account. Even if in the 1:1,000,000 chance that you even get their account info.

[plasqr]

can you me a write me a by step guide useing the program you are I think I have the same one like how to bind and all that other stuff ill +rep if I can get this to work

[fatalmind]

I've mentioned all the software I use. as well as the cygwin libraries. read this thread from start to finish, you should have your answer. I'm not willing to write a step by step fact on this because I don't want it to be harder than it already is. the more people that try to hack it, the more difficult they make it. this was ment for the 'smart' people to figure it out, and the rest not to. it keeps the proper balance i think.

[Wisher]

im rly a noob at this,could u tell me wht data is this?

..%.WoW......68x.niW.SUne<...O._..SEBOJA1
....%[..v...[.{U.....x5ve.W..TX.\....!..@*.^[email protected]..(...j..mt..
.....

im guessing the pass is there,since i see my username...but how can i find it?

[Wisher]

and +Rep anw
(had to post a new reply since i cant edit )

[Global Fugitive]

m rly a noob at this,could u tell me wht data is this?

..%.WoW......68x.niW.SUne<...O._..SEBOJA1
....%[..v...[.{U.....x5ve.W..TX.....!..@*.^[email protected]..(...j..mt..
.....

im guessing the pass is there,since i see my username...but how can i find it?

lmao! If anyone *could* see it you just got scammed :P

[lolkekbye]

Can you actually got problems with the law from this?

[ciano1]

ok thanks for sharing - will try now but seems to easy to be true

[Global Fugitive]

Have tries and can see both incoming and outgoing IPs and the data, however can only see in text my own username in CAPS, but cannot find the passwords anywhere.

Have also worked out the TCP Headers, etc. etc. and apart from that, almost all the other outgoing data is .......... (dots) which kind of makes it impossible to reverse engineer even if you *could*.

Looks like passwords have been hashed, and doesn't look like anyone will be able to do this anytime soon, unless a *REAL* genius can work out where the password is stored and how to reverse engineer it. Will +(MANY)rep if anyone can do it.

[MelonFarmer]

Wall of text crits Marrz for 5 damage. ouch

[somanydice]

what exactly am i looking for in the packets (i am using wireshark)?

IE: what letter/number combos contain the account info / password

[Global Fugitive]

does NOT work you cannot get the victim's IP this way.

[billymays]

This guide makes no sense at all and the OP obviously doesn't understand how TCP/IP or the internet works. When a user logs in to WoW from another network (as in not the same house as you) it would be impossible to sniff the connection between said user's computer and Blizzard's login servers unless you somehow compromised one machine or the other. What the OP is demonstrating is how to sniff YOUR OWN login packets, because the only packets available to sniff would be those between YOUR MACHINE and Blizzard's server.

He is either a noob, or seriously trolling you guys.