1. Welcome to PHCorner Forums. Take a moment to Sign up and gain unlimited access and extra privileges that guests are not entitled to, such as:

    All that and more! Registration is quick, simple and absolutely free. Join our community today!

Tutorial Alamin pano mag scan ng maraming 200 status payload at san hanapin

Discussion started by crushkitaalammoba, Nov 16, 2018.

  1. Similar concept sa host checker in http injector pero in bulk.

    SCAN AND SEARCH FOR PAYLOADS IN BULK:


    Download ka ng HEADMasterSEO. Login to view Links
    Then, install.

    FOR NOLOAD NO PROMO: Siguraduhin walang load or walang gs or walang freebie data (yung pakulo ni globe na magbibigay ng free 15mb kung magpaload ka ng 20 pesos something, example lang to ha, meron kasing mga times na mag text yung network sa freebie at meron ding times na hindi na).

    FOR WITH PROMO: You need pocketwifi at make sure naka register sa promo yung sim. If walang pocketwifi, pwde mong gawin yung cellphone mo as wifi hotspot at e connect ang laptop/pc mo sa hotspot.

    Make sure bago mo mai check dapat naka set ka ng proxy dito. kasi kung mag direct ka na walang proxy meron ngang 200 status pero di magwowork sa freenet. kasi freesites lang sila, but, meron din mga freesite na pwdeng gawing payload or mag work as payload.

    First, pagka install mo sa HeadMasterSEO, open it and go to Configuration Menu > Proxy Settings (lagyan mo ng rp). Sample working open remote proxy is 128.199.174.190:8000 then wag nyo na lagyan yung sa authentication.

    [​IMG]


    Then, go to Check URLs Menu > Check URLs ... (Enter Manually) then paste mo yung list of payloads. Make sure na nalalagyan nyo ng http:// lahat ng payload para mag work yung scan.
    [​IMG]

    Sample payload list (attached files) na pwde nyo e copy paste na lang agad. Ni breakdown ko into 3 files kasi 500 hosts per scan lang pwde sa software kasi hindi sya fully activated pero at least magagamit natin. So, kada scan is 500 hosts, per file, meron yang 500 less hosts so copy paste lang. After sa payload1.txt, copy paste at scan mo naman yung payload2.txt, so on. Feel free to add hosts or payloads into those lists.


    RESULT OUTPUT SAMPLE:
    [​IMG]

    [​IMG]

    ================================================================

    PAYLOADS, HOW TO KNOW, WHERE IT COMES FROM, WHERE TO GET THEM:

    1.) PROMOTIONAL OFFERS - merong mga new promo ang globe na inilabas sa tv or sa news tapos naka attach or associated sa isang url/website. pwde maging payloads yan. meron din promos ang globe na in partnership sa ibang website or company na merong inooffer pwde maging payload yung partner site nila. ma huhunt mo yung mga iba't ibang payloads or hosts kung meron kang packet analyzer or kahit sa proxifier lang makikita mo mga hosts na naka connect or nagload pag mag visit ka sa mga associated sites na ganito. examples are like 7 eleven or gcash or other pakulo ni globe/smart.
    -makakuha ka rin ng payload sa mga apps na magwowork sa isang certain promo example, free viber, so mga hosts related or naka link sa viber pwde mo gamitin as payload para yung data na makukuha mo galing dun sa viber kaya merong mga config na gswitch lang ang kainin or video lang ang kainin.
    -additional hosts, pwde mo sila makuha using reverse ip/host lookup. goto Login to view Links/ then lagay nyo yung sample payload, example m.viber.com then ang result nyan lalabas yung mga hosts na related to viber then pwde nyo silang e scan lahat.
    2.) FREE SITES - merong mga free sites si globe na pwde din potential maging payload. example, isang bank na website na kung wala kang load or kung meron kang certain na promo, magload pa rin yung bank site kahit hindi ka na mag load ng data. it could be a partner website na merong mga offers or part ng globe services. pwde mong ilagay sa payload list mo ang mga ganitong hosts or websites.
    3.) SOCIAL ENGINEERING - either in clean or dirty way (not recommended/advisable). clean way, hanap ka na IT staff sa globe at kaibiganin. dirty way, hanap ka ng mga ****ers na magexploit sa mga websites ng globe. or pwde rin mag apply ka sa mga globe base stations or sa corporate offices nila at magmanman ka dun.
    4.) MAGING ABANGERS DITO SA PHCORNER, SA OTHER SITES OR BLOGS OR SA FACEBOOK!!! DUHHH~

    NOTE!!!
    -again, tama yung sabi ni SilentCreator na yung payload (host) is dapat naka whitelist sa firewall system ng globe AT naka allow na mag accept ng any ip sa inbound para magamit mo sila. one example of this is sa globerewards-cdn, naka set kasi na naka allow na kahit anong ip pwde maka visit or maka use ng host dun kaya sya pwde but now it is set to Access Denied.
    -another example is the gswitch, kasi, kahit wala kang data or load, magload or access pa rin yung gswitch at isa sa main host dun sa gswitch is ang dew-asia.lotusflare.com (if I were not mistaken), therefore, naka whitelist sya sa firewall ng system ng globe PERO! hindi sya accessible sa lahat ng ip only sa mga globe ips lang. so, pwede bang gawin payload? NO! kasi naka restrict sya na globe ips lang ang inbound at hindi tayo makakagamit ng mga squid proxies or open proxies (kung 200 status sya kung direct pero hindi sa merong proxy, kokonek pero mag error connection - parang ilalaglag ng server dun sa other end agad agad pag ma detect ka na wala ka sa list nila) para ma poison yung headers at ma bypass natin maka freenet.
    -although ang dns tunneling pwde mag work gamit ang google dns pero makupad kasi parang gumamit lang ng free google search yung pag tunnel.
    -if maghunt kayo, make sure na nagamitan ninyo ng proxies. preferably squid and with ssl certificate yung host (https).
    -wag kayong makipag siksikan sa common na payload at gagamit sa mga shared configs (all the time. pansin nyo, yung madalas naba block eh yung mangilan ilan lang) para hindi kayo madamay sa blocking. nyhehehee

    happy hunting!!!

    CREDITS: mostly nakukuha ko mga info dito sa phcorner, nakalimutan ko or di ko mahanap yung mga posts ng original creators. I give credits to where credits is due. If you want me to post your name, msg me.

    PAHABOL SULAT OR P.S.:
    FOR UNBLOCKING TIPS, load up then activate the roaming feature. wag galawin ang load and make sure na you have the maintaining balance intact. dapat naka roam on ka in 3-7days bago ka mag roam off and in that period, wag mo gamitin ang sim. (to avoid blocking agad. para to sa mga tao na na-block nag roam on then pag roam off nag gamit agad sila ng freenet then na block ulit kahit hindi na nagfreenet.)

    Kung may mga tanong kayo, sorry, you're on your own. :emoji_stuck_out_tongue_winking_eye::emoji_stuck_out_tongue_closed_eyes::emoji_stuck_out_tongue_winking_eye::emoji_money_mouth:
     

    Attached Files:

    • payload1.txt
      File size:
      12.3 KB
      Date Added:
      Nov 16, 2018
      Views:
      79
    • payload2.txt
      File size:
      11.6 KB
      Date Added:
      Nov 16, 2018
      Views:
      59
    • payload3.txt
      File size:
      20.6 KB
      Date Added:
      Nov 16, 2018
      Views:
      65
    Last edited: Nov 16, 2018
    speedgear28, Jikjacx, Chibeg and 23 others like this.
  2. K r A T o S

    K r A T o S Moderator Staff Member Moderator

    thank you pin natin ito paps
     
    Zyzz likes this.
  3. Zyzz

    Zyzz Forum Veteran Established

    Salamat ts...
    Pa bookmark...
     
  4. Beeggy

    Beeggy Forum Guru Established

  5. Sir Pepz

    Sir Pepz Forum Veteran Established

    may aral ito sir salamat
     
  6. Thanks for sharing ts
     
  7. skellum

    skellum Honorary Poster Established

    very informative. thanks TS keep sharing
     
  8. maraming salamat sa info sir
     
  9. Thank you sa share ng nalalaman mo boss
     
  10. wow nice info bm ko una hehe
     
  11. PHC-Ehsaw84

    PHC-Ehsaw84 Addict Established

  12. salamat ng marami sa info papsikels.
     
  13. JaCall

    JaCall Honorary Poster Established

    thanks for the info ts
     
  14. Thairyl

    Thairyl Honorary Poster Established

    Napakalaking tulong neto, very detailed. Thanks !
     
  15. thanks sir po laking tulong sa kaalaman ko to... keep sharing
     
  16. maraming salaamt sir isang malaking kaalaman nanaman ,,,, maraming salamat
     
  17. saiki kusuo

    saiki kusuo Enthusiast Established

    salamat pero sayang patay na pc ko XD
     
  18. Ibong_Ligaw

    Ibong_Ligaw Enthusiast Established

    salamat.. yan request ko hehe kaso sir 32bit lang sakin meron kaya ???
     
  19. PH-Danz

    PH-Danz Grasshopper Established

    Salamat sa info bossing.
     
  20. Maganda ito ts salamat
     
  1. PHCorner uses cookies to help personalise content and tailor your experience. By continuing to use this site, you are consenting to our use of cookies. Accept Learn More
    Dismiss Notice