PDA

View Full Version : Hei Mike



Hacxx
06-01-2006, 12:52 PM
There is this domain let's called "xxx.com" from a middle sized company which the registration is about to expire in 2 months.

Now i know the email they used to register with a DNS Registar and i will create an alias and opt-in in +/- *000 mailing lists to keep them with the inbox full. (The purpose is to try that they don't read their expiration notification)

If the goal is achivable can i change registar or do i have to register with the same?

Also they have an SMTP server that handles their email plus other small companies emails in the area.

Since if i'm succeful i don't know which usernames are in their SMTP so is there any server that allow carry / deliver any email inside the domain ex. @xxx.com which their passwords will be blank for their logon.

Is just an idea but thanks for all the help provided Mike.

(Note: Ask syntax****** to make this forum in a revenue share one.)

Ezekiel
06-01-2006, 01:52 PM
There is this domain let's called "xxx.com" from a middle sized company which the registration is about to expire in 2 months.

Now i know the email they used to register with a DNS Registar and i will create an alias and opt-in in +/- *000 mailing lists to keep them with the inbox full. (The purpose is to try that they don't read their expiration notification)

If the goal is achivable can i change registar or do i have to register with the same?

Also they have an SMTP server that handles their email plus other small companies emails in the area.

Since if i'm succeful i don't know which usernames are in their SMTP so is there any server that allow carry / deliver any email inside the domain ex. @xxx.com which their passwords will be blank for their logon.

Is just an idea but thanks for all the help provided Mike.

(Note: Ask syntax****** to make this forum in a revenue share one.)

There are two types of 'takeover' you can do on a domain name; one is legal, and one is illegal. You can read this page to explain the illegal side of things:

[Google cache link - some troll has spammed the real article with ***** generating links and other crap.]

Article (http://66.24*.**.*04/search?q=cache:m8*5CFjZTDwJ:en.wikipedia.org/wiki/Domain_hijacking+domain+theft+wikipedia&hl=en&gl=uk&ct=clnk&cd=*)

Basically, with an illegal domain hijack, the attacker uses social engineering and identity theft to trick the registrar into changing the registration details, thus gaining control over the domain. Also, spam is usually sent to the domain owner's address, so they can't say 'no' to the changes. Surprisingly, in the end the domain usually remains in the control of the hijacker, as it is very time consuming (and expensive) to take the necessary legal action to regain control of the domain.

But you were describing the simple process of taking expired domains, which is legal.



If the goal is achivable can i change registar or do i have to register with the same?

I'm no expert on the domain registration system, but I would say that domains are generic between all registrars, and you can sign up for the expired domain through any registrar service.

I assume the point of spamming them is to ensure they don't see the 'expired' notice they will be sent; but signing up for newsletters and other crap is quite an inefficient way of doing things. To make it so they don't see that one email, you would need a lot more firepower than some newsletters can deliver in a short amount of time, so I s***est you rent/create a botnet for this purpose, or you write a program capable of delivering this spam - whatever your level of skill is.


Since if i'm succeful i don't know which usernames are in their SMTP so is there any server that allow carry / deliver any email inside the domain ex. @xxx.com which their passwords will be blank for their logon.

Most SMTP servers allow 'anonymous' access with no username or password; if the email is being sent inside their own domain (for example, you log on to a SMTP server running @ xxx.com - you can then send to all addresses that are @xxx.com). A good way of testing things would be to telnet to the mail server on port 25, and see what it allows you to do. Or, you could run your own SMTP server, or find some open relay servers.

SyntaXmasteR
06-02-2006, 12:00 PM
Keep your fingers crossed they do not check their postal mail. All the registrars I know send a message via postal service. You can try to backorder the domain, but make sure to check this list:

http://www.icann.org/registrars/ac******ed-list.html

I was told by a registrar that a person has a better chance to manually acquire a domain. I was surprised when he actually said backordering is bullshit. Not too often do you hear that come from a registrar. He recommended watching this website for the status of the domain to change:

http://www.registar.com/register.cgi?action=check&domain=xxx.com

Once the status changes he said to start checking back every hour because it’s about to be released. He did warn me that the whois info is false when the domain is about to expire. The registrar sometimes ads a year or two making it look like the domain has been renewed. Don’t let this fool you.

Well this is all the info I can give you on this subject. Hope it gives you a better idea of your chances.

Hacxx
06-05-2006, 12:15 PM
Thanks for all the help provided both of you.