1
7
0
9
9
9
1
Agents
Forums
Heist 4 is up *** SPOILER ALERT ***
Begin the heisting!!
December 8, 2006 7:19 pm
got the same message.. Hmm maybe that is what the application does
December 8, 2006 7:23 pm
A member of the MacUpdate team has learned that an app they've been pursuing for some time for their MacUpdate Promo service has been sniped by macZOT!. They have requested assistance in convincing the app's developer to switch services.
To do this, MacUpdate has provided our members with its application designed to exploit a security flaw in the macZOT! backend. Contact the developer through macZOT! communications and send a nasty message to terminate their relationship. You will receive a combo code as a reward.
Download brute force cracker application provided by MacUpdate and Austin Sarner
The vulnerable username is "apps"
You will need to attack the port that kerberos is running on.
Use it to enter the macZOT! mailbox
Through there, email developer Nick Ledoux and convince him effectively to drop involvement with macZOT!
On completion, we will contact you with a combo code as a reward
### [Still a] Proud Member of the BLUE Team™ ####
December 8, 2006 7:25 pm
cyndown wrote:
Download the NetConnect.framework from Austin Sarner's website. There is a link on the page that says "Files."
I tried putting the file in my ~\Library\Frameworks folder but it still doesn't work.
did you restart the app
and dont put it in your system folders doh
December 8, 2006 7:26 pm
If that doesn't work, try placing the framework directly in the App's "Framework" folder (Open package contents on the app)
I'm not getting a connection on port 88, what server are you connecting to?
Edit: nevirmind, had to enter the actual IP address.
December 8, 2006 7:27 pm
Yup... nevir.. I think its just a simulation !! 
December 8, 2006 7:31 pm
nevir wrote:
ha, bingo, got the password, not too bad
Gotta love the Zelda sound
However the password does not appear to be working in squirrelmail
what are you using for your username?...look in the address bar ;-)
December 8, 2006 7:32 pm
December 8, 2006 7:33 pm
Ok, soo we have to download the download the krakr (http://macheist.com/freebies/Krackr.zip), then insert the framework (http://austinsarner.com/files/NetConnect.framework) in the package contents, write the ip adress 64.38.44.157 with the port 88, until now the pass is aapz4p and the user's apps
December 8, 2006 7:35 pm
hey... just wanted to verify that the app isn't actually talking to the IP..
I'm behind a corporate firewall, but the app said it connected and is now in the process of checking passwords.
So it's not actually talking to the macZOT server.
I'll update you as i go along, but i'm 100% sure that port 88 is blocked by my company.
December 8, 2006 7:37 pm
promoval wrote:
Help - I dont know how to to the ports part!
Mini walkthrough:
Download Krackr and the NetConnect framework. "Show Package Contents" on Krackr once you've downloaded and extrcated it - place NetConnect.framework inside Contents/Frameworks
open up Krackr, and use the following info:
64.38.44.157 port 88
December 8, 2006 7:39 pm
Use port 88 it will run for a while but it will eventually figure it out.
December 8, 2006 7:39 pm
mjar81 wrote:
hey... just wanted to verify that the app isn't actually talking to the IP..
I'm behind a corporate firewall, but the app said it connected and is now in the process of checking passwords.So it's not actually talking to the macZOT server.
I'll update you as i go along, but i'm 100% sure that port 88 is blocked by my company.
The app's fake, I have little snitch enabled and it didn't even bothered to connect to the server.
December 8, 2006 7:39 pm
Did anyone spot the $4 off coupon for AppZapper in the inbox? (which works btw)
December 8, 2006 7:46 pm
tronstr wrote:
I got the same reply, lets see when we hear from Lisa.....
jdcfsu wrote:Reply from Nick:
Thanks a lot for jerking me around like that. Screeew you, and forget
about my app on zot. Unbelievable.- Nick
Let's see if Lisa comes through.
Same response here 
December 8, 2006 7:48 pm
What do we do with the email after we get it?
December 8, 2006 7:48 pm
Hmm... Is the Heist done already ?.. It was kind of easy .. suspiciously easy ??
December 8, 2006 7:48 pm
Micrll wrote:
Im confused as to how they are going to know who sent in the information to give us the code?
When you clicked the link from the briefing page, you should have gone to : http://maczot.com/panel/index.php?key={your username}
that's how they know who logged in and who gets the prize.
December 8, 2006 7:48 pm
Here's what I sent to Nick, I signed it Brian. The really wierd part is, as I was doing the Heist, and sending an e-mail as Brian. I got a real e-mail from Brian from macZot....It's like he knew
On 12/8, 2006 at 11:32 AM apps@maczot.com wrote:
> Nick,
>On second thought, macZot does not want to really deal with you. Maybe
you should find another source, like maybe the MacUpdate team. They suck
almost as bad as you.
>
mjar81 wrote:
ha! "Screeew you"
I told him that he was only going to get $1 from every sale.
December 8, 2006 7:50 pm
mjar81 wrote:
Micrll wrote:Im confused as to how they are going to know who sent in the information to give us the code?
When you clicked the link from the briefing page, you should have gone to : http://maczot.com/panel/index.php?key={your username}
that's how they know who logged in and who gets the prize.
Ahhhhh...Did not see that and still don't see that on the url bar ....no problem
December 8, 2006 7:50 pm