Tiny MSN fuzzer (passwd demo)

PGP SIGNED MESSAGE
Hash: SHA1

/*
C:\>msn_fuzzer test (AT) mail (DOT) com testpasswd
[.] Resolving: messenger.hotmail.com = 65.54.239.140
[.] Connected: 207.46.4.25:1863
[.] HTTPS: unauthorized (login/passwd)
[.] Disconnection

C:\>msn_fuzzer test (AT) mail (DOT) com testpasswd -v
[.] Resolving: messenger.hotmail.com
[.] Resolving: messenger.hotmail.com = 65.54.239.140
[.] Connecting: 65.54.239.140:1863
[.] Connected: logging (test (AT) mail (DOT) com)
[.] Connected: 207.46.4.33:1863
[.] Connected: logging (test (AT) mail (DOT) com)
[.] Connected: challenge string K
[.] HTTPS: unauthorized (login/passwd)
[.] Disconnection

C:\>msn_fuzzer test (AT) mail (DOT) com testpasswd -vv
[.] Resolving: messenger.hotmail.com
[.] Resolving: messenger.hotmail.com = 65.54.239.140
[.] Connecting: 65.54.239.140:1863
[.] Connected: 65.54.239.140:1863
[.] Connected: logging (test (AT) mail (DOT) com)
[.] Connected: buffer #1
[.] Connected: buffer #2
[.] Connected: buffer #3
[.] Transferred: 207.46.4.92:1863
[.] Connected: 207.46.4.92:1863
[.] Connected: logging (test (AT) mail (DOT) com)
[.] Connected: buffer #1
[.] Connected: buffer #2
[.] Connected: buffer #3
[.] Connected: challenge string K
[.] HTTPS: subconnection #1 (nexus.passport.com)
[.] HTTPS: retrieving login server
[.] HTTPS: retrieving login server (success)
[.] HTTPS: subconnection #2 (loginnet.passport.com)
[.] HTTPS: retrieving hash ticket
[.] HTTPS: unauthorized (login/passwd)
[.] Disconnection

C:\>msn_fuzzer 207.46.4.92 1863 test (AT) mail (DOT) com testpasswd -vv
[.] Connecting: 207.46.4.92:1863
[.] Connected: 207.46.4.92:1863
[.] Connected: logging (test (AT) mail (DOT) com)
[.] Connected: buffer #1
[.] Connected: buffer #2
[.] Connected: buffer #3
[.] Connected: challenge string K
[.] HTTPS: subconnection #1 (nexus.passport.com)
[.] HTTPS: retrieving login server
[.] HTTPS: retrieving login server (success)
[.] HTTPS: subconnection #2 (loginnet.passport.com)
[.] HTTPS: retrieving hash ticket
[.] HTTPS: unauthorized (login/passwd)
[.] Disconnection

etc,etc

The C code might be used to fuzze some MSN clients, bruteforce, etc,
etc

demonstration:


*/
#include <stdio.h>
#include <string.h>
#include <io.h>
#include <afxext.h>
#include <afxinet.h>
#include <winsock2.h>
#pragma comment(lib, "ws2_32")
#pragma comment(lib, "mpr")
#pragma comment(lib, "wininet")

void ver(),usage(),error(),foot(),done(SCKET s);
int vb1=0,vb2=0,port,i,j,l00p=0;
char
*ar0,*ar1,*ar2,*ar3,*ar4,*ar5,*one,*pwd,*mail,mail _[128],mail__[128],newip[1
5],newport[5];
hostent* one_;
WSADATA wsadata;

int engine1(char *one,int port,char *mail,int argc);

int main(int argc,char *argv[])
{
ver();

ar0=argv[0],ar1=argv[1],ar2=argv[2],ar3=argv[3],ar4=argv[4],ar5=argv[5];
if (argc==1){usage();return 0;}
[sniipppppppped]

probably much infos where you know =]


KEY: 0xA7C69C5F
PRINT: 694C 3495 BCC4 2F8B D794 6BD4 AF8B 457B A7C6 9C5F


PGP SIGNATURE
Version: GnuPG v1.4.2rc2 (MingW32) - GPGE 0.4.1


/









bR1mANKpGQo=
=owt+
PGP SIGNATURE



Full-Disclosure - We believe in it.
Charter:
Hosted and sponsored by Secunia - http://secunia.com/