[Legion Leak] Advanced Doxing 07-26-2013, 08:36 PM
#1
This post is leaked from the premium section of "Legion" on the competing hack forum. There will be 5 new leaks a day. There may be some format problems due to UTF8 character encoding.
(07-14-2013, 10:20 AM)Processor Wrote:
Processors Advanced Doxing Tutorial
What is doxing:
The Main Websites I Personally Use:
Where to begin:
Social engineering is your friend. If you can talk to your victim it can be extremely easy to dox them. Although talking to them may take time and you might have to gain their trust it can be quite beneficial in the long run. If you befriend your target ask them for gaming profiles, this can give you an excuse to ask for their timezones as well.
Google and social engineering are most likely the most important aspects of doxing and you can almost get by with just those two things.
Do not forget that absolutely any information on the victim is helpful. Sometimes the smallest details give away the most information.
I will go through different stages of doxing and what to do when you have certain information about your victim.
Template:
You should always have a nicely formatted Template to make your Dox less confusing and better looking.
Here is a basic template to user when doxing. Of course this can be changed around to your liking
Google is the doxer's best friend. You should become with familiar with google hacking. If you have no idea what I am talking about a extremely useful site is here.
You should also learn the boolean operators, if you have no idea what I am talking about as well check out this pdf
here.
If there's a dead link which you think will lead to information on the slave, you can always try googles cache. Here is a quick tutorial on google caches from stackoverflow.com
IP address
There is a lot of ways of getting your victims ip address but here is a few methods that work quite well.
Open up a Terminal if you are on linux or open CMD if you are on Windows, then type 'netstat -n', send the slave a file over messaging services like msn, or have them send you a file, or go on webcam with them, and repeat the process. The IP that wasn't previously there is the slave's IP.
Another common way nowadays is through skype, simply use an skype resolver and you can find the ip address of the victims skype name. Here is a online skype resolver.
In order to get the IP of the target you could always use an IP logger such as blasze.tk - just send them a message on any platform with a link to something they've got to check out ("Is this your ad or is someone impersonating you? Here's the link: .."). In order to make the link look completely legitimate you can always go purchase a domain and set it to forward to the IP logger address - don't use bit.ly or such URL shorteners as it'll look suspicious.
Usernames
Most Hackers like to keep the same name across multiple forums/defaces and such. We can use this to our advantage. A good way to find their birthdate and such would be to google their username and look at all the forums they are on. After you have found some forums compare their date of birth and any other information they may have given out on their profiles. You can also look through all their posts and see if they revealed any information. But that can take quite a long time.
Another extremely useful site is here
Email Address
First thing to try would be googling there email. Generally this turns up nothing but I have been surprised before.
If You can also get the victim to send you an email with an attachment, if you hover over the attachment in windows, it should give you the name of the author, which will generally be their name, if they've set up their PC using their actual name.
Here is a reverse-email look up, which can be used to find information from an email-address.
Having a victims email can also be a great opportunity for social-engineering/manipulating them.
Their Name
Bravo if you have gotten this. It now will be quite easy to get the rest of the dox. Do a google search on their name and some social networks might come up. Although this can not help you if they have a common name.
If you find their facebook and they are male then you can do some social engineering. Make a female account and put the profile picture as some attractive looking girl. Try to fill out many details and put the town name as the same as theirs. Then friend request them and send them a message along the lines of this:
If they accept simply look at all their information they have about themselves!
If not there is many sites you can look up their name with. Here are some useful ones:
Phone Number
A google search is highly unlikely to help you here, but it does not hurt to try.
You can no longer reverse phone look up in the United Kingdom.
United states is in luck though, Here are some sites to try:
Picture
If you have this you can try a reverse image look up like TinEye
Another useful way of gathering information about someone's picture, is .exif data. 'exif', stands for Exchangeable image file format. It is the image file format that digital cameras use, and stores information about the camera and photo.
Exif data is completely underrated, if the user has an iPhone, or another phone with GPS tracking enabled(lots of phones do, pretty much any phone using the Android operating system, a few cameras do also.) then you can find the GPS location, which is usually accurate by the nearest hundred metres, of exactly where they were when they took their photo. Some Phones and Cameras even tell you the name of the slave within their .exif data.
An online .exif data viewer can be found here. You simply choose an image from the web, or upload your own image.
Other Stuff
http://www.abika.com/ is a great overall site for doxing, you can do background checks on people, various reverse lookups, criminal record searches, etc. Abika also has a liscence plate search.
Thanks Flaaffy for the splitter bars
Thanks Anonymous for some extra IP and SE stuff
If you took the time to read all off this then :blackhat:
Thanks,
Processor
![[Image: ieq6viOQ6szdE.gif]](http://i.minus.com/ieq6viOQ6szdE.gif)
![[Image: jbaAFNFfllGvo8.png]](http://i1.minus.com/jbaAFNFfllGvo8.png)
![[Image: F4Z9Dqw.png]](https://i.imgur.com/F4Z9Dqw.png)
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)
![[Image: AD83g1A.png]](http://i.imgur.com/AD83g1A.png)