Forums

Heist 4 is up *** SPOILER ALERT ***

MacHeist Forums » The Backroom » Heist 4 is up *** SPOILER ALERT ***
irrational

irrational

Tinkerer

43 posts

Begin the heisting!!

December 8, 2006 7:19 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

"You are missing a vital hacking framework" Blast!

December 8, 2006 7:21 pm
jdcfsu

jdcfsu

Automaton Tech

268 posts

Anyone have a clue how to find out what port kerberos runs on?

I like to pull heists.

December 8, 2006 7:22 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

I think the 'official' ports are usually 88 or 750, check those first

December 8, 2006 7:23 pm
irrational

irrational

Tinkerer

43 posts

got the same message.. Hmm maybe that is what the application does

December 8, 2006 7:23 pm

cyndown

Tinkerer

22 posts

Download the NetConnect.framework from Austin Sarner's website.  There is a link on the page that says "Files."

Fiji

December 8, 2006 7:24 pm
coolmaui

coolmaui

Tinkerer

49 posts

A member of the MacUpdate team has learned that an app they've been pursuing for some time for their MacUpdate Promo service has been sniped by macZOT!. They have requested assistance in convincing the app's developer to switch services.

To do this, MacUpdate has provided our members with its application designed to exploit a security flaw in the macZOT! backend. Contact the developer through macZOT! communications and send a nasty message to terminate their relationship. You will receive a combo code as a reward.

Download brute force cracker application provided by MacUpdate and Austin Sarner
The vulnerable username is "apps"
You will need to attack the port that kerberos is running on.
Use it to enter the macZOT! mailbox
Through there, email developer Nick Ledoux and convince him effectively to drop involvement with macZOT!
On completion, we will contact you with a combo code as a reward

### [Still a] Proud Member of the BLUE Team™ ####

December 8, 2006 7:25 pm
jdcfsu

jdcfsu

Automaton Tech

268 posts

Thanks for the tip, 88 worked.

(Edit)  Put the framework in the Kracker App's Framework folder in the package contents.

I like to pull heists.

December 8, 2006 7:25 pm
Photo678

Photo678

Automaton Tech

from quaint little town in PA
332 posts

cyndown wrote:

Download the NetConnect.framework from Austin Sarner's website.  There is a link on the page that says "Files."

I tried putting the file in my ~\Library\Frameworks folder but it still doesn't work.

did you restart the app

and dont put it in your system folders doh

December 8, 2006 7:26 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

If that doesn't work, try placing the framework directly in the App's "Framework" folder (Open package contents on the app)


I'm not getting a connection on port 88, what server are you connecting to?

Edit: nevirmind, had to enter the actual IP address.

December 8, 2006 7:27 pm
gallagb

gallagb

Gearhead

79 posts

and the IP address?

*sigh

December 8, 2006 7:27 pm
jdcfsu

jdcfsu

Automaton Tech

268 posts

I pinged maczot.com in terminal and used the ip that came up.

64.38.44.157

This kracker program could take awhile.

I like to pull heists.

December 8, 2006 7:27 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

and away it goes...

At the consistent speed this is running over a 'net connection, I kinda wonder if it's actually talking with the server

December 8, 2006 7:28 pm
gallagb

gallagb

Gearhead

79 posts

ip: 64.38.44.157 -- got it

*sigh

December 8, 2006 7:30 pm
irrational

irrational

Tinkerer

43 posts

Yup... nevir.. I think its just a simulation !! smile

December 8, 2006 7:31 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

ha, bingo, got the password, not too bad.  Not going to post it here, since ya gotta love the Zelda sound tongue

However the password does not appear to be working in squirrelmail using either apps or apps@maczot.com as a username

December 8, 2006 7:31 pm
Photo678

Photo678

Automaton Tech

from quaint little town in PA
332 posts

nevir wrote:

ha, bingo, got the password, not too bad

Gotta love the Zelda sound

However the password does not appear to be working in squirrelmail

what are you using for your username?...look in the address bar ;-)

December 8, 2006 7:32 pm
irrational

irrational

Tinkerer

43 posts

Imagine maczot replying to all the requests if it were a real network connection smile smile

aapz4p

December 8, 2006 7:33 pm
gallagb

gallagb

Gearhead

79 posts

nick is the username

*sigh

December 8, 2006 7:33 pm
R031E5

R031E5

Tinkerer

34 posts

Ok, soo we have to download the download the krakr (http://macheist.com/freebies/Krackr.zip), then insert the framework (http://austinsarner.com/files/NetConnect.framework) in the package contents, write the ip adress 64.38.44.157 with the port 88, until now the pass is aapz4p and the user's apps

December 8, 2006 7:35 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

I've tried every username I can think of (including appending @maczot.com to the end of every one of these):

apps
app
nick
nevir

nothing.

December 8, 2006 7:35 pm
jdcfsu

jdcfsu

Automaton Tech

268 posts

No, apps is the username.

I like to pull heists.

December 8, 2006 7:35 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

jdcfsu wrote:

No, apps is the username.

*grumble*

December 8, 2006 7:36 pm

promoval

Tinkerer

from Charlotte
35 posts

Help - I dont know how to to the ports part!

December 8, 2006 7:36 pm
tronstr

tronstr

Tinkerer

from Vegas
41 posts

I got it work with "apps"

December 8, 2006 7:37 pm

mjar81

Urchin

6 posts

hey... just wanted to verify that the app isn't actually talking to the IP..
I'm behind a corporate firewall, but the app said it connected and is now in the process of checking passwords.

So it's not actually talking to the macZOT server.

I'll update you as i go along, but i'm 100% sure that port 88 is blocked by my company.

December 8, 2006 7:37 pm
R031E5

R031E5

Tinkerer

34 posts

What do we have to do? email Nick about what?

December 8, 2006 7:38 pm
jdcfsu

jdcfsu

Automaton Tech

268 posts

Reply from Nick:

Thanks a lot for jerking me around like that. Screeew you, and forget
about my app on zot. Unbelievable. hmm

- Nick


Let's see if Lisa comes through.

I like to pull heists.

December 8, 2006 7:38 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

promoval wrote:

Help - I dont know how to to the ports part!

Mini walkthrough:

Download Krackr and the NetConnect framework.  "Show Package Contents" on Krackr once you've downloaded and extrcated it - place NetConnect.framework inside Contents/Frameworks

open up Krackr, and use the following info:

64.38.44.157   port 88

December 8, 2006 7:39 pm

markfleser

Urchin

6 posts

Use port 88 it will run for a while but it will eventually figure it out.

December 8, 2006 7:39 pm
R031E5

R031E5

Tinkerer

34 posts

mjar81 wrote:

hey... just wanted to verify that the app isn't actually talking to the IP..
I'm behind a corporate firewall, but the app said it connected and is now in the process of checking passwords.

So it's not actually talking to the macZOT server.

I'll update you as i go along, but i'm 100% sure that port 88 is blocked by my company.

The app's fake, I have little snitch enabled and it didn't even bothered to connect to the server.

December 8, 2006 7:39 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

I am completely unable to login with the given password and username 'apps' - this is frustrating

Edit Edit:  Lol, I'm dumb.


two a's  no two p's...

December 8, 2006 7:40 pm

cyndown

Tinkerer

22 posts

Sending nasty emails is fun!  Got a quick reply from Nick who's dropping his app from MacZot.  Now what?

Do we have to CC ourselves on the email to get the combo code?

Fiji

December 8, 2006 7:41 pm

promoval

Tinkerer

from Charlotte
35 posts

This is what is says when i try to open krackr after downloading it:
You cannot open Kracr as you are missing a vital hacking network

December 8, 2006 7:43 pm
nevir

nevir

Gearhead

from Illinois, USA
83 posts

promoval wrote:

This is what is says when i try to open krackr after downloading it:
You cannot open Kracr as you are missing a vital hacking network

Scroll up to my reply with the "mini walkthrough"

December 8, 2006 7:43 pm
tronstr

tronstr

Tinkerer

from Vegas
41 posts

I got the same reply, lets see when we hear from Lisa.....

jdcfsu wrote:

Reply from Nick:

Thanks a lot for jerking me around like that. Screeew you, and forget
about my app on zot. Unbelievable. hmm

- Nick


Let's see if Lisa comes through.

December 8, 2006 7:44 pm
gallagb

gallagb

Gearhead

79 posts

got the same response- yea we'll see what lisa/code...etc

*sigh

December 8, 2006 7:45 pm
Micrll

Micrll

Gearhead

54 posts

Im confused as to how they are going to know who sent in the information to give us the code?

December 8, 2006 7:46 pm

mixmasterjones

Urchin

1 posts

Did anyone spot the $4 off coupon for AppZapper in the inbox? (which works btw)

December 8, 2006 7:46 pm

mjar81

Urchin

6 posts

ha! "Screeew you"
I told him that he was only going to  get $1 from every sale.

December 8, 2006 7:46 pm
jamito

jamito

Tinkerer

from Iowa
42 posts

$4 coupon works on the appzapper website wink

Nothing here, just random text.

December 8, 2006 7:47 pm
R031E5

R031E5

Tinkerer

34 posts

tronstr wrote:

I got the same reply, lets see when we hear from Lisa.....

jdcfsu wrote:

Reply from Nick:

Thanks a lot for jerking me around like that. Screeew you, and forget
about my app on zot. Unbelievable. hmm

- Nick


Let's see if Lisa comes through.

Same response here hmm

December 8, 2006 7:48 pm

markfleser

Urchin

6 posts

What do we do with the email after we get it?

December 8, 2006 7:48 pm
irrational

irrational

Tinkerer

43 posts

Hmm... Is the Heist done already ?.. It was kind of easy .. suspiciously easy ?? smile

December 8, 2006 7:48 pm

mjar81

Urchin

6 posts

Micrll wrote:

Im confused as to how they are going to know who sent in the information to give us the code?

When you clicked the link from the briefing page, you should have gone to : http://maczot.com/panel/index.php?key={your username}

that's how they know who logged in and who gets the prize.

December 8, 2006 7:48 pm
Micrll

Micrll

Gearhead

54 posts

jamito wrote:

$4 coupon works on the appzapper website wink

So I guess were not going to see appzapper in the final bundle...:(

December 8, 2006 7:49 pm
jdcfsu

jdcfsu

Automaton Tech

268 posts

jamito wrote:

$4 coupon works on the appzapper website wink

Yeah, I saw that.  Too bad I already have AppZapper.  Any reply from Lisa yet?

I like to pull heists.

December 8, 2006 7:49 pm

promoval

Tinkerer

from Charlotte
35 posts

Thanks anyway.  I don't get it - heists are over for me I guess.  I downloaded both aps and can't even get into Krackr.  It was fun while it lasted.

December 8, 2006 7:49 pm
tronstr

tronstr

Tinkerer

from Vegas
41 posts

Here's what I sent to Nick, I signed it Brian. The really wierd part is, as I was doing the Heist, and sending an e-mail as Brian. I got a real e-mail from Brian from macZot....It's like he knew

On 12/8, 2006 at 11:32 AM apps@maczot.com wrote:
>    Nick,
>On second thought, macZot does not want to really deal with you. Maybe
you should find another source, like maybe the MacUpdate team. They suck
almost as bad as you.
>


mjar81 wrote:

ha! "Screeew you"
I told him that he was only going to  get $1 from every sale.

December 8, 2006 7:50 pm
Micrll

Micrll

Gearhead

54 posts

mjar81 wrote:
Micrll wrote:

Im confused as to how they are going to know who sent in the information to give us the code?

When you clicked the link from the briefing page, you should have gone to : http://maczot.com/panel/index.php?key={your username}

that's how they know who logged in and who gets the prize.

Ahhhhh...Did not see that and still don't see that on the url bar ....no problem smile

December 8, 2006 7:50 pm
MacHeist Forums » The Backroom » Heist 4 is up *** SPOILER ALERT ***

Become an agent



Keep me posted on more free offers and deals on great Mac software (We'll never sell your email, spam is evil)


As a MacHeist agent you'll be privy to special missions like these, tons of awesome free software, and the best software deals around. What do you want to hear about?

 

Login to MacHeist



As a MacHeist agent you'll be privy to special missions like these, tons of awesome free software, and the best software deals around. What do you want to hear about?