Scribd
Upload
297 views

Private Combo Method

1. The document provides instructions for using a tool called TSP Dork Generator to generate search dorks targeting gaming stores and games. 2. It then explains how to use those dorks in a link gathering tool to search Bing and retrieve URLs, and how to check those URLs for login credentials using Site Hunter and Combo Dumping tools. 3. Successful use of the tools following the provided steps could result in obtaining user passwords from vulnerable websites.

Uploaded by

demirasaftagmur22
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
297 views

Private Combo Method

1. The document provides instructions for using a tool called TSP Dork Generator to generate search dorks targeting gaming stores and games. 2. It then explains how to use those dorks in a link gathering tool to search Bing and retrieve URLs, and how to check those URLs for login credentials using Site Hunter and Combo Dumping tools. 3. Successful use of the tools following the provided steps could result in obtaining user passwords from vulnerable websites.

Uploaded by

demirasaftagmur22
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 3

CKING PACK: https://anonfiles.

com/TcZ8e2Y5y8/TSP_DORK_GEN_exe
-----------------------------------------------------------------------------------
-----------------------------------------------------------------------------------
-----------------------------------------------------------------------------------
-----------------------------------------------------------------------------------
-----

1. Download the file linked above.

2. Open Tsp Dork generator.

Ok now let's start

https://prnt.sc/rk3ko9

Check those 2 boxes .

Click on Domain Extentions

Delete all the domains , if you want to target domains, type in the domain that you
want to gather. ( Targeting a domain only will result in lower hits of urls )
If you don't want a specific domain just type this : .com , .net , .to , .org .

Like this : https://prnt.sc/rk3ltw

Go to keywords

Now get creative. You have 2 options , if you will use the inurl: option that means
that you have to put keywords that you find only in urls (Without spaces, with - or
+ between keywords)

Let me explain here what I mean

Those dorks will target only what it exists in a link/url

Inurl: redeemcode.asp?StoreID=
or
Inurl: steam+giftcard.html?CheckoutId=

Those dorks will target everything that has this keyword in it


intext: Steam Giftcard.asp?Storeid=
or
intext: Steam Library.html?GameID=

DIDN'T UNDERSTAND ? Inurl : searches for keywords inside an link/url , intext:


searches for keywords inside a website

I personally use keywords with spaces between them, you can use " + " or " - " to
get more hq results.

Go to pagetypes after you are done. Now, I personally use my private method to
gather pagetypes. Just go on google and search for your target.
My target is steam , mostly gaming stores or games. I will teach you how to gather
the pagetypes.

Here you go: https://prnt.sc/rk3s5v

Now type the pagetypes in there without the " = "


Like this : https://prnt.sc/rk3tgz

Go to pageformats

Delete all of them and add only : .asp? , .php? , .htm? , .html? , .aspx?

Go to searchfunctions , delete all of them and use intext: if you used keywords
with spaces , or use inurl: if you used keywords with " - " or " + " instead of
spaces.

Now , type 8000 or more (your choice) where the dork amount is. Then click on
generate.

WARNING ! IF YOU GET A WINDOW FROM SANDBOXIE CLICK ON RECOVER ! IT ASKS YOU IF YOU
ALLOW THE FILE TO BE SAVED ! CLICKING ON RECOVER WILL SAVE THE FILE

It should look like this : https://prnt.sc/rk3x6h

Good job, now you have your dorks. They are saved where the tsp dork generator tool
is as Generated0 File. If it is not saved just copy the dorks from the right side
and save them into a txt file.

3. Open Link Gathering folder.


Open Searcher , click on login. Then click on source and import your dorks , now
download some free proxies from proxiescrape.com and import them into the tool .
How to import the proxies into the tool? Click on proxy button and select your
proxy file. I use socks4 because it is fast.

Now , select your website in which you want to search with your dorks , i use Bing
because it gathers lots of urls , you can use other engines.

Here you go: https://prnt.sc/rk430d

Good job, now wait until you get a lot of urls!

After you are done , click on recover , select each file by itself if you use
sandboxie
Open Result, click on each folder until you have your result. (Check the date and
time to see which one is yours)
Now there will be 2 files , if you checked the antipublic box. There should be a
file named private.

Here: https://prnt.sc/rk4hxa

Copy the urls from the file

4.Open Urls Checking , paste the urls in input, open Site hunter
WARNING ! IF YOU USE SANDBOXIE THE RESULT WILL NOT BE SAVED! SELECT ALL URLS
MANUALLY AND RIGHT CLICK TO COPY THEM

Here: https://prnt.sc/rk4n5y

5. Open Combo Dumping


You can either use 8.3 or 8.5 , both are good.
If you open 8.5 it will ask for a key, just type anything.

Here: https://prnt.sc/rk4oo3
and then : https://prnt.sc/rk4pdo

next step : https://prnt.sc/rk9ntu

Now in order to find whether or not you have some combos in the vulnerable sites
you need to do this:
s
Here: https://prnt.sc/rk9p6u

Next step : https://prnt.sc/rk9qh0

Next: https://prnt.sc/rk9r9l

Here is how to dump : https://prnt.sc/rk9s39

Now if you want user password follow me : https://prnt.sc/rk9sxa It should look


like this : https://prnt.sc/rk9t7i

And here you go : https://prnt.sc/rk9ub7

Congrats , now you have your private combo!

You might also like