Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



   865

Cracking? Checkers? Combos?

by Harmazi - 02 January, 2020 - 11:47 PM
This post is by a banned member (Harmazi) - Unhide
Harmazi  
Registered
8
Posts
1
Threads
5 Years of service
#1
OP 02 January, 2020 - 11:47 PM
New to this whole "cracking" scene. Not really sure how everything is supposed to work.

I've done some google/forum searches, not really finding the answers I'm looking for. What's the process?

What are combos? How do "checkers" work? I'd love some insight so I can better contribute and understand.

Thank you.
This post is by a banned member (Astronautix) - Unhide
Astronautix  
Registered
28
Posts
8
Threads
5 Years of service
#2
03 January, 2020 - 03:32 AM
Combos or combolists are what a cracker references.
They will usually come in the format of username:password

The cracker reads it and knows that the first part before the colon is the username and the last part is the password. Then it will input it properly in the website. 

Crackers are tools that are used to actually do the bruteforcing. They normally come equipped with the ability to add a proxy list and the ability to add a captcha account just in case a captcha prevents the bot from continuing. Within the code, the cracker is able to load up the URL and input the combolist credentials. Some poorly coded ones have an unseen web browser component in the background that runs it and it finds the HTML element (username textbox, password textbox, etc) by HTML ID's or elements.

Checkers are sometimes built into crackers, sometimes they are not. They basically are used to check the hits that you get from the cracker and tell you more about it.

For example;

A Fitbit cracker will tell you that xxxx@gmail.com:passw0rd123 is a valid account.
A Fitbit checker can tell you that they have a Fitbit Alta synced up to their account and they last used their Fitbit on Dec 12, 2019 5:10pm.
[Image: 0Fa43Db4_o.gif]
This post is by a banned member (Harmazi) - Unhide
Harmazi  
Registered
8
Posts
1
Threads
5 Years of service
#3
OP 03 January, 2020 - 04:27 AM
So where do you get acccess to combos? I've obviously seen the lists on these forums, but how would I go about getting my own? Instead of recycling theirs.

And Crackers are basically the bots that automatically enter passwords to find out what works and what doesnt. Followed by checkers that give you information on that account.
This post is by a banned member (Astronautix) - Unhide
Astronautix  
Registered
28
Posts
8
Threads
5 Years of service
#4
03 January, 2020 - 04:44 AM
(03 January, 2020 - 04:27 AM)Harmazi Wrote: Show More
So where do you get acccess to combos? I've obviously seen the lists on these forums, but how would I go about getting my own? Instead of recycling theirs.

And Crackers are basically the bots that automatically enter passwords to find out what works and what doesnt. Followed by checkers that give you information on that account.

Database dumps, etc. That would go more into web hacking/SQL injections/etc.
I'm not sure if the program is still relevant now, but before many people had used SQL dumper. You would use things called "dorks" (ex:, https://www.exploit-db.com/google-hacking-database)

Those were used to find possible vulnerabilities in the URL's that SQL dumper found. From there you would be able to go through the website and find the database that housed emails and passwords that went together. 

Nowadays, I'm not sure what they use to do this, but that's just what I remember. Of course this program would just generally give you already-known databases since most people found the same things. 

Another option that I know of that I do not recommend, is using a combolist generator. You would only need an email list which can be found publicly on like Pastebin or something too. And then the comoblist generator would generate well-known passwords such as qwerty123, abc123, etc and make it a combo.
Ex:

jim.jones@gmail.com:abc123
jim.jones@gmail.com:qwerty123

and so forth.
[Image: 0Fa43Db4_o.gif]
This post is by a banned member (Harmazi) - Unhide
Harmazi  
Registered
8
Posts
1
Threads
5 Years of service
#5
OP 03 January, 2020 - 05:56 AM
What software would you recommend I use? Any good free ones out there?
This post is by a banned member (Astronautix) - Unhide
Astronautix  
Registered
28
Posts
8
Threads
5 Years of service
#6
03 January, 2020 - 06:23 AM
(03 January, 2020 - 05:56 AM)Harmazi Wrote: Show More
What software would you recommend I use? Any good free ones out there?

For which part? Making combolists or for cracking?
I don't have any recommendations for combolists because I don't know.
For cracking I would recommend getting SentryMBA (or a similar software that lets you crack multiple stores in one) since they have configs, etc you can find online for free or make your own.
[Image: 0Fa43Db4_o.gif]
This post is by a banned member (Ulysses) - Unhide

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)

About Cracked.sh

Cracked.sh is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account