app trailers exploit

iOS App Trailers Hacking

By Decimator

Materials:

• A computer (Obviously )

• Fiddler 2 (http://www.getfiddler.com/dl/Fiddler2Setup.exe)

• Fiddler 2 Addon (http://www.fiddler2.com/dl/FiddlerCertMaker.exe)

• iPhone Configuration Utility (http://support.apple.com/downloads/DL1466/en_US/iPhoneConfigUtilitySetup.exe)

• iOS Device (iPhone 5, iPod 4, ect)

Process List:

-Lets get started! First download the needed programs from the list above.

-Now its time to configure the programs.

-IMPORTANT NOTE: “Download and install the Addon

before you attempt to create the certificate, or else it won’t

sniff HTTPS properly.”

-Open up Fiddler 2. Go to Tools. Then “Fiddler Options”.

-Make sure that Fiddler listens on port: 8888 and “Allow all

remote connections” is enabled.

-Go to Tab named “HTTPS”, Click Capture, Decrypt,

“Select from all Processes”, Ignore, and save certificate to

Desktop.

- Connect iOS Device to the computer.

- Open up iPhone Configuration Utility on your desktop.

-Click on “Configuration Profiles”

-Select “New”

-Type anything in the Identifier Box (Com.XXXXXX.XXX)

-Scroll down to “Credentials”.

-Then click “Configure”

-Choose the Certificate you just made in Fiddler. (Look for “DO_NOT_TRUST_FIDDLER”)

-Click Ok.

Click to your ios device that is plugged in, click “Configuration Profile” then install the profile you made.

-Accept the installation of the Profile from your iOS device’s screen.

-On your desktop type CMD into the search bar. Type in “ipconfig”. Find your

IPv4 Address. (Ex: 192.168.1.5)

-On your iOS Device go to (Settings->Wi-Fi-> (Your Wi-Fi’s Name)(Click arrow in the corner) ->Manual)

- For the server, type in the your IPv4 (192.168.1.5 for me, yours might me different)

- The port number is 8888 (same thing you set in fiddler).

THE HARD PART IS OVER NOW!!!!

-Open up Fiddler and if not already selected, select “Decode”.

On your iOS Device open AppTrailers. If you see a bunch of requests on Fiddler then you’re golden. Something like

that.

-On App trailers go to “videos” and scroll down to the

videos worth “+5”.

- Watch the video, and in Fiddler after the Video is done there is a request that looks like this.

-Look for this link

(/redeem_video.php?uuid=Your UDID)

-Click on the request in Fiddler and hold “R”, doing so will

repeat the request. Adding +5 points each time. Each request takes less than a second to complete. So you can get a massive amount of points in a short time.

- This may not work the first time, but it will eventually work.

IMPORTANT NOTICE:

-Don’t go overboard because you can get your

account banned if you redeem too many points at a time or too many redeems in a row. I redeemed twice within a couple minutes and by the third time I was banned. I am currently working on trying to get around the ban. If anyone wants to work on it with me, message me on hack forums. Decimator. If you would like to use any information in this tutorial in another post, just message me first. I’ll most likely say yes. Well that’s it, happy

hacking!!

~Decimator