I have modified Luigi's original tool called "flashchatz" to work with pro chatrooms. code is bugged and i can't bother to make it better. i lost the original source, which Luigi helped me to make (he hates chatrooms so i dont ask him again to help write it perfect). I modified the flashchatz code just enought so it will work with guest accounts, but i can add support for logged users if necessery.
NOTE - it says that something is wrong, but if you go into chatrooms and check, then users will show up.
2. Font size.
This can be changed to HUGE in the packets. simply use either tamper data or webscarab. it clearly says "fontsize=" in the packet. simply change it to 9000 or so, it will be HUGE. it will block whole screen and may even cause some serious lag in chatroom.
3. Talking under other names.
not so easy. it is cookie based. so you need a working cookie stealer, which i can't give you right now, because i do not have 100% working cookie stealer.
well you simply replace PHPSESSID= cookie's content id with the one you stole and you can talk under that other person :)
4. Kicking out users:
use tamper data (or any other tool that will do the job) to change your avatar.jpg (or whatever it is) to:
Code: Select all
../logout.phplogout.php < this is used to log users out.
logging users out is simple, once you click "logout" then all that this chatroom does, is requests the page "logout.php".
so if you change your avatar to logout.php, then all users will 'request' it and fly out (including you).
if you wanna logout a specific user, then change your avatar only in his private window.
you can do that with tamper data again. you say something to somebody and then change avatar only in his window.
best tool to do so is webscarab. you set it to intercept POST data, then you simply say something in the chat and webscarab will pop up a window, you will find the place where your avatar is and replace it.
