­=+=­ Savage Doxing ­=+=­

Lecture by $avage, Profile: ​http://hackforums.net/member.php?action=profile&uid=2582112

Welcome to my Doxing & Anonymity eBook. Hopefully you discover some new tips and
tricks to help you with your Private Investigations and Anonymity. If you are not satisfied with
this eBook that is your problem, be prepared as this is a $4.99 eBook. I spent quite the time
making this though and would love feedback.

T.O.S

­You are not allowed to leak this eBook

­You are not allowed to resell this eBook

­You are not allowed to chargeback, all sales are final

Context

Page | Concept

1. Intro

2. Context

3. Doxing Introduction

4. Doxing Template

5. Doxing with Skype

6. Doxing with Email + getting the email

7. Doxing with a Name

8. Doxing with a Number and IP Address

9. Using their Alias, getting SSN’s and Credit Reports

10. Getting Ancestor’s, House Picture and House Information

11. Using Database’s and Social Engineering

12­13. Picture to Account, and what to do after completing a Dox

14. Anonymity Introduction

15. Hiding your IP Address

16. Removing your Dox

17. Using XXMP, BTC and Deleting Accounts

18. Outro
 Doxing Introduction

Dox also known as docs is the action of gathering person(s) information which is but not
limited to: Addresses, phone numbers, date of birth, name, emails, family, IP addresses,
passwords, credit cards and SSN's. Most people use doxing as a method to attack someone
online, such as if you've gotten scammed, hacked or just hate a user and want to make them cry.
Let us begin our journey to revealing the private information of a user.
 Doxing Template

The key to success is having a unique and sexy arrangement to post the information.
Here's a sample template that I just created:

~ DOX dropped by (Your username or way of contact, e.g. Skype or XXMP)

===============================================================

Target: (Name) / (IP) / (Alias)

===============================================================

Usernames:

===============================================================

Locations:

===============================================================

IP info:

===============================================================

Family:
*

===============================================================

Other information:

===============================================================

Along with the template you can decorate it with this text to art Website:
http://1lineart.kulaone.com/#/

Using their Skype

Skype is one of the most broken p2p programs out there, and it quite simple to find IP's
through unless the user is running their Skype on a different connection.

Resolving their IP

Resolving their IP is very simple and barely requires you to use your brain. First off, you
can resolve using a packet sniffer. Wireshark a known packet sniffer is what we're going to use.
You can download it here:

https://www.wireshark.org/#download

After downloading simply launch it, if you're a beginner it might seem quite confusing,
don't worry I will guide you! To start off select what Network you are using, most people use
"WiFi" so click that if you're unsure, and press Start. Now you're going to want to add a filter.
So, find a box that says "Filter:" it should be located at the top left and enter this inside it:

ip.src == YOUR IPV4 ADDRESS and udp.srcport == SKYPE PORT

 Fill in the blanks with your IPv4 address which you can find from going into Command
Prompt and typing “ipconfig”, and enter your skype port. After adding the filter press your
"enter" key. Now all you have to do is call the person who’s IP you're trying to get. Once they
accept you should be spammed with a bunch of packets from an IP, this is their IP. Make sure to
check if it is a proxy or VPN just in case.

Another method is using the Skypedeob, a.k.a the deobfuscated version of Skype. All you
need to do is open the "Enable logging" file, start Skype, click "view profile" on one of your
Skype contacts that is online and then open the debuglog in Notepad++ and ctrl+f this text in
<Name>.*(r)[1­9] make sure you replace <Name> with the username of the skype. Click
Regular Expression and hit enter and you should see an IP, if not just keep on clicking enter, and
if it still doesn’t show they’re probably offline. Here is the download to a recent Skypedeob
version:

https://mega.nz/#!dcQVURob!HrASVfzFUwIC2­y7GuCAWwKnpzaajS7_QWqS6OoAlQk

If none of those seem to work, you can go for an old fashion IP Logger. One of the
easiest but also less productive way is IP logging as most people can distinguish what is an IP
logger and what is not. Of course it’s easy to make the logger but sending it and getting someone
to click it is just a hassle, unless the person doesn’t pay attention to anything or knows nothing of
IP logging. Some methods I use are using HTML to your advantage. If you use a program known
as Teamspeak there is a huge bug, the bug is that Teamspeak allows HTML. I will show you
how to spoof your IP logger link so that it can show as anything you want. Here is how you do it:

[url=IPLOGGERHERE]Fake link here[/url]

This is what you’re going to send your victim if you’re in Teamspeak. As you can see,
where is says “IPLOGGERHERE” is where you put the link of your IP logger, and where is says
“Fake link here” is where you’re going to put anything you want. You could simply just put
“click here” or you could be creative and make a link. This is my example:

[url=memediplogger.com]http://hackforums.net/[/url]

Here are some IP Loggers that I can vouch for:

http://grabify.link/
http://skidtools.net/login.php

Acquiring and Using an Email

Here are some procedures to use for doxing with an email. An email can almost always
be a good trace, unless you find something like a 10minute mail.

Acquiring Email through Facebook

A very broadcasted method, not sure if it works anymore but pretty much you sign into
your Facebook account, make sure to create a fake account without any private information on it.
Now you want to import your contacts from Skype, so find that and sign in then send a request to
your contacts. After doing that head over to this link:
https://www.facebook.com/invite_history.php​ then click the hidden emails and complete the
captcha and the email should be there.

Another method is importing your Facebook contacts through Yahoo to find their email.
Basically create a Yahoo and click the top left where it says contacts and choose Facebook, then
login and import the contact you want to and voila the email should come up.

In the case that you only have the email you can search Skype for an account connected
with it. Simply input the full email into the "add contacts" and if there is a Skype connected it
should pop up.

Forgot Password

For Gmail accounts the Forgot Password button is quite superficial and can sometimes
really help your dox. So basically for Gmail try logging in, after entering the email click "Forgot
Password", it should bring you to a page which says "enter the last password you remember". On
the same screen the Username they have chosen should show on top. Sometimes it is a username
they use and other times it's their name. You can also go more forward after that and check what
recovery email/phone they have chosen and try to guess it. (Not likely to guess with a Phone but
can be easy for an email).
 PayPal Method

This used to give you tons of information like their address, phone number and such but
now it only gives you the Name, the only way you'll get the address and stuff is if they send you
money. The method is quite simple all you need to do is request or send money to the email you
have. Once you do that there should be a notification in your Activity and it should say their
name. Remember sometimes people put fake leads so don't always go for it.

Finding Social Media

There are many sites you can use to find social media and accounts on targets. They
search the web through tons of social media with the email you give them and return every bit of
information they find for you. Here's a list of some social media finders:

https://pipl.com/

http://thatsthem.com/

http://com.lullar.com/

https://namechk.com/

http://email.addresssearch.com/

Using their Name

Using the target's name is also very helpful. If you have their name then you can possibly
find out their address, phone number, and relatives. Remember you cannot use their name if they
are below the age of 18. If they aren't below the age of 18 and you know where they live just
enter the information in the sites posted below. If you don't know where they live but have their
name then you all you can basically do is look at the locations information on some of their
social media or accounts or use the IP address geographical location.

Here are some sites to do the lookups on:

http://10digits.us/

http://thatsthem.com/

http://www.yellowpages.com/

http://www.whitepages.com/

http://www.ussearch.com/

http://www.canada411.ca/​ (Canada)

http://www.pipl.com/

http://www.peekyou.com/united_kingdom/​ (UK)

http://webmii.com/​ (UK)

http://www.ratsit.se/BC/SearchPerson.aspx/​ (Sweden)

http://www.dgs.dk/​ (Denmark)

https://find­person­germany.com/​ (Germany)

Using their Number

Just like the name search you can do a lookup on their phone number, except you do not
need a location on the user just their number. If nothing shows up you can just search Google,
sometimes phone numbers are posted publicly, but haven’t been connected to Whitepages.

Here are some sites to do number lookups:

http://www.10digits.us/

http://www.reversemobile.com/index.php/

http://www.numberway.com/
http://www.phonenumber.com/

http://www.whitepages.com/

http://www.dgs.dk/​ (Denmark)

http://www.canada411.ca/​ (Canada)

https://www.goyellow.da/​ (Germany)

Using their IP

Using the target's IP address is a very powerful way to dox, if you're quite advanced an IP
is all you need to leak the user’s information.

Geolocating the IP

Basically head over to the website ​http://www.infosniper.net/​ and input the IP address
then click search. After doing that you should be granted a rough location on the user, along with
their hostname, and other information. Remember that this information is pretty inaccurate and
you should not think that it is their exact location.

ISP Doxing

Before doing this make sure you know what you are doing, never call from your home or
mobile phone! Always use spoofed numbers!

ISP doxing is basically when you call up the users ISP (Internet Service Provider) and SE
(Social Engineer) the support into giving you information on the IP address. You can get basic
information such as full names, addresses, phone numbers, emails or you can go further and get
SSN's and Credit cards. I will not be providing a guide on how to do this, there are a ton out
there just search for some.

Searching the IP

In addition you may also search the IP address, as you can sometimes find another Dox, a
leaked database or sometimes sites publicly post their IP ban list. Just go to google and search for
their IP address with quotation marks. Ex: “127.0.0.1”

Using their Alias'

Searching the target's alias(s) is also a good idea unless their alias is "Mike123". Of
course searching google for Mike will lead you with millions of results which most likely won’t
have any connection with the user. If the user has an alias such as "Carrotcake123lololol" or
something along the lines of that it will be much easier. To search with their Skype you can
simply type this in the search bar "Skype: (Username)" make sure to include the quotations.

Getting their SSN’s

Grabbing the target’s SSN is relatively simple but it costs a little BTC. It’s recommended
to hide yourself before doing any of this because it is very illegal. So head over to a website
known as ​http://ssndob.so/login​ and sign up. You can do this on some from the US or UK. Then
deposit money into your account, once you have enough funds head over to the search bar and
enter all the information you have on the target. After that you should see a couple entries and
then just buy ‘em and you’re done.

Getting their Credit Report

Another illegal and spooky thing to provide on your dox. There are a couple of sites that
help you obtain credit reports but the only way to successfully get one is by having tons of your
target’s information. There is no possible way of actually gaining credit reports without firstly
having a full dox on the person, which is (If they are +18) their DOB, address, phone number,
full name, and more. If they aren’t +18 then you’ll have to dox their parents.

Here are a couple of sites that can aid you with credit reports:

www.annualcreditreport.com
www.creditkarma.com

Getting their Ancestor’s

This unlike other information is very easy to obtain. All that you have to do is look up the
sites below and enter in the information it asks you for. Along with that you can look at their
Family on Facebook and perhaps they have added their family to it.

Here are some ancestry search sites:

http://www.advancedbackgroundchecks.com/

http://www.findmypast.com/

http://www.archives.com/search/ancestor/

http://www.familytreesearcher.com/

Viewing their House Picture

Attaining the target’s house picture is very simple. Head over to Google Maps and in the
search bar enter in the target’s address and in a matter of seconds their house picture should
show up. If you want to get a more close view you can click the “earth’ and use the scroll or +
and – buttons on the website to get closer.

Along with this there is something known as exif­data. Basically once you’re uploading
an image to a site you can possibly cache exif­data that can lead to coordinates of where the
image was taken. Anyways, head over to one of the sites below and upload then search the image
and you should end up with results.

Here are some websites to use:

http://www.geoimgr.com/

http://exifdata.com/
http://www.makeuseof.com/tag/exif­photo­data­find­understand/

Grabbing their House Information

Now I’ll show you how to get the target’s house information such as the number of
bedrooms, bathrooms, how large the yard and lot is, etc. All you have to do is go on one of the
websites below and enter in the address of the user.

Here are some sites you can use:

http://www.zillow.com/

http://www.realtor.com/

Using Databases

Database, a file or list of information something analyzes and gathers on users. In short
words a database is more or less a text file in which information of users is stored, like
passwords, emails, usernames, IPs, and much more. Liking this so far? Well, unfortunately
databases are rather hard to find or easy but you need to pay a crazy sum of money, at least the
more useful ones. But this does not mean that there aren’t any good ones for free, no there are
plenty such as the MPGH forums database and 000webhost which have been leaked on many
sites. So you don’t want to pay $100 for a database right? No problem, there are a ton of
websites that have gathered hundreds of databases in which you can use for just $2 BTC a day.
One of those websites is known as http://leakedsource.com/, and just input one of the following
registries: Usernames, emails, phone numbers, names, and IP addresses. In result you will get a
password (Hashed or real), email, username, and more.

Here are a couple free databases:

MPGH Database: ​http://www.filedropper.com/mpgh

Nulled.io Database: ​http://www.filedropper.com/nullediodatabasedump06052016

000webhost Database: ​http://www.filedropper.com/000webhostcom_1

Social Engineering the User

The amount of times I’ve done these techniques and succeeded. Many times when I end
up with a blank page I go to a last resort, faking a Skype account and messaging the user and
SE’ing them to give me information. Here is a quick guide on how I SE through Skype.

Let’s get a setting first, for example I will be faking a PayPal Support member.

Me: “Would like to add you as a contact…blah blah blah”

Target: “Accepts.”, “Hello who is this?”

Me: “Hello, this is Dan with the PayPal support team, we are currently having an attack and
encourage all users to change their passwords. Unfortunately you may not manually reset them,
we have to reset them for you because they will potentially get logged by the attackers.”

Target: “How did you find my Skype?”

Me: “We are PayPal, a large organisation that surveys many users and connect much of their
information, but in the act that this is the improper account I ask of your email to confirm your
identity.”

Target: “Ok, it’s ……………@domain.com

Me: “Aaaaah, yes I found you. May I just ask for another method of access such as a card linked,
phone number, address, or current password?”

Target: “Yeah, my password is *********.”

Me: “Alright let me just check here, yep everything looks fine. Now what do you wish your new
password to be?”

Target: “I guess change it to **********.”

Me: “Very fell, the process will take up to 1 hour, please do not login to PayPal until we send out
emails stating that you can. Thank you for your time and patience, Goodbye.”

Target: “Cya m9.”

And it can be done like this, or so this is how I usually do it. Although very skeptical
people will usually either decline and block you, or just be notorious trolls. If they get quite
curious though and say the PayPal site looks fine you can just say, “Our site is currently being
controlled by hackers and they currently have stolen up to $1 million dollars. We are currently
moving and changing our database and we need you to choose a new password.” Or something
along those lines. Customize this however you want and have fun.

Picture to Account

Basically when someone posts a picture it sometimes can be taken from a photo hosting
website, you can right click it and click it and open in a new tab and sometimes it will lead to
imgur or something.

Or if you have a picture of the user in real life you could reverse the image to find if there
is another profile that it is linked with. You can do this with the website known as
https://www.tineye.com/

What to do after completing a Dox

A very interesting subject that many get after completing a Dox is “What the fuck do I do
now”. Act like a badass or el1te hax0r? Sure go ahead! Or you can get a little lethal and do some
of these suggestions:

Posting Le Dox: The easiest of them is just posting the dox. Here are some sites to post doxes on:

http://pastebin.com/

http://skidpaste.org/

http://paste4btc.com/
Pizza Bombing: Basically, when you order many pizza’s to the address of the user, unfortunately
I’m not quite sure if this works anymore but I’ll implement it anyways. Simply head over to
https://www.dominos.com/en/​ and order whatever you want to the person’s house. If you
intentionally order a large meal you will be prompted to confirm the order via a call to a phone.
Don’t worry, I will teach you how to make a free number in the anonymity section.

Swatting: Now claimed as an illegal act, swatting is when you ring up the police and claim your
target has a bomb or is doing something worthy of a Swat team arriving and raiding the home. I
do not condone anyone to swat.

Craigslist: A godly website, known as craigslist is the horror point of doxing. One of my favorite
things is faking a large party at the place. All you have to do is create a thread on it exclaiming
that there will be free food, DJ, booze and many chicks and you will have a total sausage fest. In
the thread include the address, your email just in case people have questions and the date it is
occurring. (Best days of the week would have to be Friday – Sunday and the time could be from
8:00pm til 12:00am.

DDoS: Although this is quite pointless unless you have like a huge net and can boot for days on
days.

Legal action: If the user has done something illegal the best option is to inform the police, and
give them all the info you have (apart from the illegal stuff you gained, if you did).

Outro
 Again I would like to thank you for purchasing Savage Doxing and I would love
feedback. If you have any questions feel free to private message me and I hope for the best in
your further Private Investigations.