PDA

View Full Version : Brute Force Attacking



leeoconnor
08-09-2006, 04:26 PM
Hi, I have a program called Brute, but im not completley sure how to use it, what i want to do is hack someones account on an online game called runescape, I was wondering if anyone could tell me how to do it, this is the address im using http://www.runescape.com/lang/en/aff/runescape/loginform.ws?mod=offenceappeal&dest=viewoffencehistory.ws

I'm trying to hack an account called Dan2*Uk

you can download Bruts here > http://www.hoobie.net/brutus/index.html

I would really apreciate it if you could help me, thankyou ;)

Ezekiel
08-09-2006, 04:51 PM
Hi, I have a program called Brute, but im not completley sure how to use it, what i want to do is hack someones account on an online game called runescape, I was wondering if anyone could tell me how to do it, this is the address im using http://www.runescape.com/lang/en/aff/runescape/loginform.ws?mod=offenceappeal&dest=viewoffencehistory.ws

I'm trying to hack an account called Dan2*Uk

you can download Bruts here > http://www.hoobie.net/brutus/index.html

I would really apreciate it if you could help me, thankyou ;)

Apart from brute forcing being a lame, inefficient, and totally illegal way of recovering passwords, almost all authentication systems prevent against brute force in different ways. For example, web based email login pages lock the account after a certain amount of incorrect tries, and also make the user enter a code from an image (effectively disabling brute force programs, and ensuring the user is human).

Another example is the login system on suse linux which i'm running now. When I boot up and get to the login page, the password box will freeze for *-5 seconds if I enter an incorrect password, preventing any software from brute forcing the password locally.

My point is, these days any good programmer will prevent their authentication systems from being brute forced. Even if you find a weak authentication system, it is plainly obvious what you were attempting from looking at the server/your ISP's logs.

If runescape logs you in through a java applet, there will be NO brute force programs available for the task. They are designed for common protocols like ftp, http, pop, etc, not some complex java applet.

Also, nobody here cares about lame kiddies' games like runescape.

leeoconnor
08-09-2006, 04:54 PM
ok, but is there ANY possible way to hack it ?

ferg-t
08-15-2006, 08:22 PM
erm well my m8 has a brute forcer for rs so ur wrong but it has taken him years 2 make and has payed ppl in jagex to help him find weak spots:D but he only givs it 2 ppl for alot ov ***** he has asked me for 500usd for it

DarkeScr1pt
06-15-2007, 11:02 PM
There is one way that i think will work (but i dunno not tried it, too busy playing the game the proper way) go to the "forums" and when it comes up with the new java box click the link that says "If all you see below is a grey/white box, click here" and click it. Then run your brute forcer against the login form on the password field (if you techno lingo you'll understand me, if you don't STAY AWAY FRO ANYTHING TO DO WITH CRACKING, LEARN FIRST PRACTICE LATER!) and use the "Log all valid attempts" function which come standard to most brute forcers (some times they appear already as a table, like in one of my favorite brute forcers, Brutus)
Though really, the game is for having fun on, and if you're not enjoying it to the point where you're hacking accounts then you shouldn't be playing at all.

NOTE: THERE IS A DIFFERENCE BETWEEN HACKING AND CRACKING!!! cracking is when you try lots of different characters to break passwords and serial keys, Hacking, however, is when you bypass passwords completely please do not confuse the two.

&#**6*;&#**20;&#**48;&#**4*;&#**50;&#**60; --(=====DarkeScr*pt======- &#**60;&#**50;&#**4*;&#**48;&#**20;&#**6*;

___________________________
Educating young |\|ʘ&#*20;ßs everywhere[/I]