Beware of Thieves and Trolls. You know who you are Kiwiman.

Kiwiman is currently running another forum and is planning on stealing all of the tutorials that are posted on this site.
Anyone who wishes to make an account on his forum should take the following into account.

Kiwiman claims to be a hacker, but is just a common and cowardly thief.
DO NOT USE THE SAME PASSWORD FOR HIS FORUM FOR ANY ACCOUNT YOU OWN.
He will steal your password from his forum database and then "claim to have hacked your brute characters".

He will distribute any passwords entered into his forum database on another hacking site for them to add to their dictionary lists to try and steal brutes from people on this forum as well as his.

He is not to be trusted and was demoted from here as a moderator for stealing passwords and then trying to sell them.

o_0 atm still no comment

did he do this to you?

No, but it's no secret he had something to do with fotum's main being "hacked" while he was a moderator here and posted in the marketplace trying to sell brutes he has claimed to of "hacked".

Quote :

He will steal your password from his forum database and then "claim to have hacked your brute characters".

lol wrong. I've delt with forums before and even if your an admin you don't know anyones password. You can change it but thats it.

BadBoy2234123 wrote:

Quote :

He will steal your password from his forum database and then "claim to have hacked your brute characters".

lol wrong. I've delt with forums before and even if your an admin you don't know anyones password. You can change it but thats it.

He has access to the mysql database as the forum owner, and that is where the passwords are stored and you can decide whether or not the passwords are stored encrypted or unencrypted. Even if they are encrypted, you can decipher the hash with minimal effort to get the plain text password. Not including, if he has access to the source files he can write in a way to write the passwords sent during login to a text file to create a dictionary.

Wow, thanks for the heads up

BadBoy2234123 wrote:

Quote :

He will steal your password from his forum database and then "claim to have hacked your brute characters".

lol wrong. I've delt with forums before and even if your an admin you don't know anyones password. You can change it but thats it.

It holds true only if you keep the forum intact. If you hack it......

He can hack the script and remove the hash part (encryption thing), or he can change the script so it sends the password upon account creation.

its true if he has the mysql access he can get pw's easily. all the passwords are encrypted but its very easy to decrypt with online md5 hash rainbow table thingies. its supposed to be for password "recovery" mhhhmmm yah.

theres also lil snipplets of code he can put directly into the php to log passwords too, thats always possible.

zesasa wrote:

its true if he has the mysql access he can get pw's easily. all the passwords are encrypted but its very easy to decrypt with online md5 hash rainbow table thingies. its supposed to be for password "recovery" mhhhmmm yah.

theres also lil snipplets of code he can put directly into the php to log passwords too, thats always possible.

Unnecessary. You are the admin. Simply hack the forum to display the password directly. No more decryption.
You may even hack it so it sends password to his email address when you create a password.
Everything is possible once you can access the source code.

If this were true, as much as I hate to say it, wouldn't he need to be banned?

i dont know kiwi's plans, but i think there is enough to be cautious.

I had no plans of joining his foruum and haven't even bothered visiting it. Its success is uncertain because it's relatively new and is nothing more than a branch-off from this forum.

Lol??
Dude ive done all i can to hack fotum back i can gurantee i had nothing to do with taking fotum..
I had my cracker running for 3 days using a 500k password list to try get fotum back to fotum...
No luck.
As far as i know its impossible to see users password through freeforums.org
And if i made a phisher it wouldnt be freeforums.org now would it?
(phisher is a website that steals a users password and sends it to the creator/owner of the phisher)
Freeforums.org has no way of editing the loggin anyway.
Heroin im not here to steal guides I think you really just dont like me and want to do everything to try make me fail..
Sofar the 2 guides that ive taken from here are written by me and/or I have gotten permission from the creator of the guide to use it.
If I wanted to steal guides my forum would have 50+ guides because I would have gone to every known mybrute forum and taken the guides.
But i havent.
I was Admin here demoted because fotum felt there wasnt any more i could do as an administrator because i had made the skin and set all the configurations for this forum that he asked me to.
I was demoted from moderator due to crackin inactive mybrute accounts (my list was only of accounts that had been inactive for 4 weeks+)
and fotum didnt want a cracker in staff.
My new forum isnt about me trying to steal accounts or anything, i will be posting guides on how to spot a phisher website stop viruses and passwords safe from crackers.
If I had really done something wrong here im sure fotum would have banned me long ago.

heroinmonkey wrote:

BadBoy2234123 wrote:

Quote :

He will steal your password from his forum database and then "claim to have hacked your brute characters".

lol wrong. I've delt with forums before and even if your an admin you don't know anyones password. You can change it but thats it.

He has access to the mysql database as the forum owner, and that is where the passwords are stored and you can decide whether or not the passwords are stored encrypted or unencrypted. Even if they are encrypted, you can decipher the hash with minimal effort to get the plain text password. Not including, if he has access to the source files he can write in a way to write the passwords sent during login to a text file to create a dictionary.

Not true, this is a freeforums.org forum...
Have you ever used it?
I have no access to users passwords at all.
All I can do is change a users username and change there password.
Go make a freeforum from freeforums.org and see for yourself, I cannot seeany current passwords or anything like that and if you know me I know nothing about coding so hacking a forum is impossible to me lol.

hmm even vb.. me i am an admin on a vbulliten and i cannot see or check the password of the forumer.. i can just change it and save..

but i dont know on freeforums.org

I dont care if he can, its only mybrute..

Kiwi, you keep saying you only hacked accounts that were inactive for 4 weeks, but how can you even tell if they were inactive?

mantis33 wrote:

Kiwi, you keep saying you only hacked accounts that were inactive for 4 weeks, but how can you even tell if they were inactive?

Username leecher uses the Mybrute databease.
Mybrute classes the accounts by level activity and rank.
Simply you leech the accounts with the oldest activity in the database that still leechable which is up to 2 month old usernames, so all my usernames are 4+ weeks old guranteed.
Mybrute stores usernames and passwords in different databases (for obvious reasons) so you cant just get into one database steal the usernames and passwords like that, the passwords are in a random order.

Jazz™ wrote:

hmm even vb.. me i am an admin on a vbulliten and i cannot see or check the password of the forumer.. i can just change it and save..

but i dont know on freeforums.org

Using a free forum from freeforums.org has even less features than VB, also you have very little freedom in ways of coding ect your limited to making custom BBcodes and learning how to use the freeforums acp well.

Jazz™ wrote:

hmm even vb.. me i am an admin on a vbulliten and i cannot see or check the password of the forumer.. i can just change it and save..

Of course you can't because you use the default vb.
That's possible if you know how to hack the vb.

ronga wrote:

Jazz™ wrote:

hmm even vb.. me i am an admin on a vbulliten and i cannot see or check the password of the forumer.. i can just change it and save..

Of course you can't because you use the default vb.
That's possible if you know how to hack the vb.

And my forum is phpbb3 made my freeforums.org lol..

Quote :

Username leecher uses the Mybrute databease.
Mybrute classes the accounts by level activity and rank.
Simply you leech the accounts with the oldest activity in the database that still leechable which is up to 2 month old usernames, so all my usernames are 4+ weeks old guranteed.
Mybrute stores usernames and passwords in different databases (for obvious reasons) so you cant just get into one database steal the usernames and passwords like that, the passwords are in a random order.

Kiwiman why do you hack brutes anyway? Even they are inactive?

Anylopectina12 wrote:

Quote :

Username leecher uses the Mybrute databease.
Mybrute classes the accounts by level activity and rank.
Simply you leech the accounts with the oldest activity in the database that still leechable which is up to 2 month old usernames, so all my usernames are 4+ weeks old guranteed.
Mybrute stores usernames and passwords in different databases (for obvious reasons) so you cant just get into one database steal the usernames and passwords like that, the passwords are in a random order.

Kiwiman why do you hack brutes anyway? Even they are inactive?

I stopped a week or two ago anyways heroin just really doesnt like me and blames everything wrong against me :)