AionSZ

11/01/2009 06:47 Pindle#1
Can someone post the link to the SZ english bot? I had just bought a key from bestaionbot but went to check the private section for the download link and that forum pretty much is gone >.> the one on botsmall is a corrupted download for me.

Think the version is 1.1.2
11/01/2009 07:13 tman78#2
goto aionsz .com Tell em I sent ya..
11/01/2009 07:27 Pindle#3
What the fuckkk, all the downloads I have of SZ are corrupted and I can't open them lol.
11/01/2009 09:20 NewUser2.0#4
Quote:
Originally Posted by Pindle View Post
What the fuckkk, all the downloads I have of SZ are corrupted and I can't open them lol.
Pindle, my sites back up. Botsmall hacked my forums yet again.
11/01/2009 10:31 sess#5
Quote:
Originally Posted by NewUser2.0 View Post
Pindle, my sites back up. Botsmall hacked my forums yet again.
If your site gets hacked, you need to learn how to run one or get someone who knows what they're doing ;)

Edit:
By any chance your site is bestaion bot.com?
11/01/2009 14:17 ricsiq#6
Back to the Topic...

If your downloads are getting corrupted, use a Download Manager to download it right. Or try to update your Zip Manager. Try Winrar from rarlabs.com
11/01/2009 17:08 NewUser2.0#7
Quote:
Originally Posted by sess View Post
If your site gets hacked, you need to learn how to run one or get someone who knows what they're doing ;)

Edit:
By any chance your site is bestaion bot.com?
yes that's my site.
11/01/2009 17:57 sess#8
Quote:
Originally Posted by NewUser2.0 View Post
yes that's my site.
Then you deserve to get hacked. I found where your site was hacked through, and frankly, that shouldn't be an issue.

Good luck finding it though :D
Oh, and to whoever buys from him, I suggest having seperate login info for what is used on his site/bot vs everything else you use. You may get your account hacked otherwise :cool:
11/02/2009 04:41 NewUser2.0#9
Quote:
Originally Posted by sess View Post
Then you deserve to get hacked. I found where your site was hacked through, and frankly, that shouldn't be an issue.

Good luck finding it though :D
Oh, and to whoever buys from him, I suggest having seperate login info for what is used on his site/bot vs everything else you use. You may get your account hacked otherwise :cool:
The purpose of this would be?
And for those "worried" don't let the above guy scare you, your passwords are md5 encrypted, which damn near impossible to decrypt. Shame the oh so great hacker didn't know that.

reported.
11/02/2009 05:20 sess#10
Quote:
Originally Posted by NewUser2.0 View Post
The purpose of this would be?
And for those "worried" don't let the above guy scare you, your passwords are md5 encrypted, which damn near impossible to decrypt. Shame the oh so great hacker didn't know that.

reported.
md5 encrypted? near impossible to decrypt?

I'll let you in on a secret. You can crack your forum users passwords.
Dont let the above guy fool you, your password can be cracked. That, and he doesn't even know what hes talking about. If it was encrypted in plain MD5, you can use rainbow tables which is around 400 gigabytes of passwords now.

However, vBulletin stores passwords in this format:
md5(md5($pass).$salt)

That means yes, it is technically hashed as an MD5 but it also double hashes it and a salt is randomly generated on each new password so even if two users had the same password of "test", they would both have different hashes and salts.
Sound uncrackable? Hardly. A single 3.2ghz CORE (one core) can brute force at around 2.7m passwords a second. Put that on an I7 and thats roughly 10m/sec.
Ever heard of GPGPU? It uses your video card to do it instead. Video cards are immensely more powerful than CPUs. The vBulletin hashing type can be cracked at around 250 MILLION per second.


Edit:
Oh, forgot to mention. Since most users dont bash their head on the keyboard to make a pass and rather uses words, a dictionary attack can go at about 2m/sec per core. If you use mutations, the efficiency of a dictionary attack will be above 95%.
11/02/2009 07:57 Kinu#11
back 2 topic please


otherwise i'll close this thread
11/02/2009 09:25 Fanana#12
Quote:
Originally Posted by sess View Post
md5 encrypted? near impossible to decrypt?

I'll let you in on a secret. You can crack your forum users passwords.
Dont let the above guy fool you, your password can be cracked. That, and he doesn't even know what hes talking about. If it was encrypted in plain MD5, you can use rainbow tables which is around 400 gigabytes of passwords now.

However, vBulletin stores passwords in this format:
md5(md5($pass).$salt)

That means yes, it is technically hashed as an MD5 but it also double hashes it and a salt is randomly generated on each new password so even if two users had the same password of "test", they would both have different hashes and salts.
Sound uncrackable? Hardly. A single 3.2ghz CORE (one core) can brute force at around 2.7m passwords a second. Put that on an I7 and thats roughly 10m/sec.
Ever heard of GPGPU? It uses your video card to do it instead. Video cards are immensely more powerful than CPUs. The vBulletin hashing type can be cracked at around 250 MILLION per second.


Edit:
Oh, forgot to mention. Since most users dont bash their head on the keyboard to make a pass and rather uses words, a dictionary attack can go at about 2m/sec per core. If you use mutations, the efficiency of a dictionary attack will be above 95%.
:handsdown:

Don't teach noobs how to do it tho, please.