BlackHat video: Xrumer, the forum spamming software

September 24th, 2007 - Filed under Spam,Websites by Cristian Mezei
1 Star2 Stars3 Stars4 Stars5 Stars (15 votes, average: 2.73 out of 5)
Loading ... Loading ...

Ever wanted to see how one of the many available (PMBlaster, Zunker, Xrumer etc.) forum spamming software looks and runs like ?

See Xrumer in action.

What’s interesting to see in the video above, from the WhiteHat point of view, is how the program works. The procedures, the checklists, the options, so you can build your own anti-spam blockade.

Some of you guys, will be amazed to see how captchas and/or math spam questions are like so … 1945.

Important: Please be aware that I do NOT endorse, NOR do I recommend the use of such spamming software, except for your own, personal and private use, to see how the program functions. As one user says in this WP article about Xrumer, you have to know the enemy and the weapons used by the enemy before you can defend against them.

Submit your business or company to Webotopia.
Tags: none

17 Comments so far

miromulus said:
September 24th, 2007

Xrumer is “old news” but still impressive in action. However, a good captcha and a cron job with a simple script that cleans the junk will keep a forum clean… most of the time.

adiz said:
September 25th, 2007

unfortunately it’s not so hard to make such a program or any like this … still impressive however.

September 26th, 2007

Adi, it’s actually not so easy to acomplish.

Still, they exist and are used by thousands. That’s why Akismet and others were born.

It’s like that military shit with Ebola and viruses. One makes the virus and takes money by selling it to Irak and stuff, and then makes the cure by selling it to the infected.

Janos said:
September 27th, 2007

I’ve always been curious how this PIECE OF SHIT works because I had hard times deleting all the spam generated inserted it. Indeed, a good (modified) captcha and a question that only a human can answer can spare you lots of headaches… Impressive nonetheless.

Janos said:
September 27th, 2007

Search and replace above:
generated inserted it = generated with it

September 27th, 2007

This software, just like most other intelligent spamming software, can recognize all the default captchas from any forum or blog software.

Not only that, but it can answer math and word questions pretty easily.

What do you guys understand by custom captcha ?

Janos said:
September 27th, 2007

Custom captcha = not the one that came in the forum package – eg. I replaced the default phpBB captcha with this one and it works like a charm keeping the bad boys away. As for the second supposition, come on, how can a piece of software answer what’s missing from No**a (on a GSM related forum)… Did Skynet come alive and I’ve missed it? :)

September 28th, 2007

I was searching a program like this now 1 year ago, why u can’t write this post now 1 year? :(, but i think it will help me and now, thanks for information, it really help me !

Janos said:
September 28th, 2007


September 28th, 2007


September 30th, 2007

jeez – that comment had engrish (dot) com beat, hands down… lol

rob said:
December 28th, 2007

i have played with the demo and read a few reviews – looks like a gd bit of software

webcam said:
January 11th, 2008

Thanks i always wanted to know how it worked.

black hat said:
January 14th, 2008

The problem is that you still need unique content to post, as these spammy coments wont still unless on unmoderated forums, which are full of spammy links anyway and have no importance because of the hundreds of links already there, its probably better you write your own postings at least they will stick, using that software you can post thousands of messages but about 5% will stick and only on forums that are probably already spam, so its a waste of time !!!

Cole Janna said:
February 16th, 2008

Now this answered my question of “where the hell am I getting this load of spam on my forum”.

btw, I thought that there were web based spam scripts, but its a software. hmmm

May 17th, 2008

@black hat

Actually this software can pass a lot of human inspection or moderation. If the mods are not aware of xrumer software, and believe me most don’t know what it is and what it does, spam posts can easily be bypassed. Xrumer has the ability to spam links like in a Question-Answer session. It registers two usernames at a time. The first account is then used to ask a question, like where can I get the best car insurance? The other spam account answers his question and inserts the link.

With a little creativity one can bypass most of the human inspections.

June 3rd, 2008

You guys are about half crazy.! Im laughing all the way to the bank.! Good Day gents.!

Leave a reply

Allowed tags (XHTML): <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

RSS Readers & Technorati:

My Subscribers Add to Technorati Favorites
View Cristian Mezei's profile on LinkedIn

Subscribe & Syndication:

RSS Feed at FeedBurner NewsGator Google Bloglines My MSN Add to My Yahoo! Add to FeedLounge Add to My AOL Add to NetVibes Add to NewsBurst Add to Pluck Add to NewsIsFree

Updates by e-mail:

Webotopia B2B Portal

Tag Cosmos: Top Tags