MSN Invite Script Here

**patriotcow** · Fri 16 Sep '05, 4:58pm

How about a free oneway link from all my pages for a month? I won't be using it I just want to see the code so I can integrate it with my free hosting site...

**Thug4Thug** · Fri 16 Sep '05, 5:04pm

sorry but the code is only on my server,cannot let it out, the code on your side tells my side to doit
this is offered as a service only

**Dean C** · Sat 17 Sep '05, 3:17am

http://www.oh-twadi.com/forum/invite.php

Why the hell do people have to enter their passport details? MSN has a protocol available for clicking a link and doing this.

**Thug4Thug** · Sat 17 Sep '05, 3:49am

cause thats how this script works

**MrNase** · Sat 17 Sep '05, 4:07am

Isn't this a bit.. unsecure?!

**Dean C** · Sat 17 Sep '05, 5:00am

Not only insecure, but it doesn't even work. What are you trying to sell here?

**Marco van Herwaarden** · Sat 17 Sep '05, 5:54am

Sorry to say, but someone must be really insane (or still believe in fairy tails) to put his/her passport login info there.

**patriotcow** · Sat 17 Sep '05, 6:02am

Be kind and release it on vb.org and have it so we have to have a link underneath.

**Mainer82** · Sat 17 Sep '05, 6:19am

This is a scam, don't put your passport detials into this form.

**Zonex** · Sat 17 Sep '05, 7:23am

no way i would type in my user pass from one site on another site
thats insanity

**VazSingh** · Sun 26 Feb '06, 4:36am

I dont see why you got this script for free on www.msnfanatic.com and your trying to earn $$ of someone elses work.

HERE IS THE SCRIPT ALL:

msnpauth.php

PHP Code:


<?php

//-----------------------------------------
// msnpauth.php, v1.2.1
// by Daniel Winter
// http://www.msnfanatic.com/
// 
// Copyright © 2003-2005 Daniel Winter
// 
// http://www.danielwinter.info/contact.php or mailto:[email protected]
// 
// Last reviewed: October 1st, 2005
// 
//-----------------------------------------
//
// Usage: 
// 
//     $msnpauth = new MSNPAuth($passport, $password, $params[4]);
//     $hash = $msnpauth->getKey();
// 
// $passport would be the e-mail address that is being signed in
// $password would be the password for that account
// $params[4] would be the string sent in the USR command from the notification server,
// 
// With the last argument, the notification server communication goes like this:
// 
//     [SEND] USR 6 TWN I [email protected]\r\n
//     [RECV] USR 6 TWN S lc=1033,id=507,tw=40,fs=1,ru=http%3A%2F%2Fmessenger%2Emsn%2Ecom,ct=1128154104,kpp=1,kv=7,ver=2.1.6000.1,rn=C6D!I5Ic,tpf=41a9cb6f69e60faa44c8570126f045ed\r\n
// 
// You use 4th argument (starting from 0) from the response (ie. lc=1033,id=507,tw=40...)
// Make sure you are actually sending the right string, if you were to split the response into an array, it should look like this:
//
//     Array
//     (
//         [0] => USR
//         [1] => 2
//         [2] => TWN
//         [3] => S
//         [4] => lc=1033,id=507,tw=40,fs=1,ru=http%3A%2F%2Fmessenger%2Emsn%2Ecom,ct=1128154104,kpp=1,kv=7,ver=2.1.6000.1,rn=C6D!I5Ic,tpf=41a9cb6f69e60faa44c8570126f045ed
//     )
//
//-----------------------------------------

class MSNPAuth
{
    var $_key;

    function MSNPAuth($passport, $password, $challenge)
    {
        $i = strpos($passport, "@");

        switch (substr($passport, $i))
        {
            case "@hotmail.com":
                $authURL = "ssl://loginnet.passport.com";
                break;

            case "@msn.com":
                $authURL = "ssl://msnialogin.passport.com";
                break;

            default:
                $authURL = "ssl://login.passport.com";
                break;
        }

        $fp = fsockopen($authURL, 443);

        $req = array();
        $data = '';

        $req[] = 'GET /login2.srf HTTP/1.1';
        $req[] = 'Authorization: Passport1.4 OrgVerb=GET,OrgURL=http%3A%2F%2Fmessenger%2Emsn%2Ecom, sign-in='.str_replace('@', '%40', $passport).',pwd='.urlencode($password).','.$challenge;
        $req[] = 'Host: login.passport.com';
        $req[] = 'Connection: Close';

        foreach ($req as $v)
        {
            fputs($fp, "$v\r\n");
        }

        fputs($fp, "\r\n");

        //-----------------------------------------
        // fgets() is error suppressed to work around this bug: http://bugs.php.net/bug.php?id=23220 
        // 
        // During development, I always got the following: 
        //  - Warning: fgets(): SSL: fatal protocol error in /home/fanatics/public_html/x/class/MSNPAuth.class.php on line 53
        //-----------------------------------------

        while (!feof($fp))
        {
            $data .= @fgets($fp);
        }

        fclose($fp);

        $headers = explode("\r\n", $data);

        foreach ($headers as $header)
        {
            if (strpos($header, ':') === false)
            {
                continue;
            }

            list($name, $value) = explode(':', $header);

            switch ($name)
            {
                case 'WWW-Authenticate':
                    // Authentication failed
                    $this->_key = false;

                    break;

                case 'Authentication-Info':
                    // Get the key between the two single quotes
                    $start = (strpos($value, "'") + 1);
                    $end = (strrpos($value, "'") - $start);

                    $this->_key = substr($value, $start, $end);

                    break;
            }
        }
    }

    function getKey()
    {
        return $this->_key;
    }
}

?>

phplistgrab.php

PHP Code:


<?php

require('msnpauth.php');

define('LIST_ALLOW',    'AL');
define('LIST_BLOCK',    'BL');
define('LIST_FORWARD',    'FL');
define('LIST_REVERSE',    'RL');

class phpListGrab
{
    var $_passport    = '';
    var $_password    = '';
    var $_result    = 0;
    var $lists    = array(
                LIST_ALLOW    => array(),
                LIST_BLOCK    => array(),
                LIST_FORWARD    => array(),
                LIST_REVERSE    => array(),
            );
    var $_contacts    = array();
    var $_socket    = NULL;
    var $_lst_count    = 0;

    function phpListGrab($passport, $password)
    {
        $this->_passport = $passport;
        $this->_password = $password;
    }

    function grab($server = 'messenger.hotmail.com')
    {
        $this->_socket = fsockopen($server, 1863);
        $this->_send('VER 0 MSNP8');

        while (!feof($this->_socket))
        {
            $data = fgets($this->_socket);
            $data = substr($data, 0, -2);
            $this->_parse($data);
        }
    }

    function _send($data)
    {
        fputs($this->_socket, "$data\r\n");
    }

    function _parse($data)
    {
        $params = explode(' ', $data);

        switch ($params[0])
        {
            case 'VER':
                $this->_send('CVR 1 0x0409 winnt 5.1 i386 MSNMSGR 6.0.0254 MSMSGS '.$this->_passport);
                break;

            case 'CVR':
                $this->_send('USR 2 TWN I '.$this->_passport);
                break;

            case 'XFR':
                $subparams = explode(':', $params[3]);
                $this->Grab($subparams[0]);
                break;

            case 'USR':
                if ($params[2] == 'TWN')
                {
                    $msnpauth = new MSNPAuth($this->_passport, $this->_password, $params[4]);
                    $hash = $msnpauth->getKey();

                    if (!$hash)
                    {
                        $this->_result = 911;
                        $this->_send('OUT');
                        return false;
                    }

                    $this->_send('USR 3 TWN S '.$hash);

                }
                elseif ($params[2] == 'OK')
                {
                    $this->_send('SYN 4 0');
                }
                break;

            case 'SYN':
                $this->_lst_count = $params[3];
                break;

            case 'LST':
                $this->_lst_count--;

                if (!isset($this->_contacts[$params[1]]))
                {
                    $this->_contacts[$params[1]] = array(
                                        'passport'    => $params[1], 
                                        'name'        => urldecode(utf8_decode($params[2])), 
                                        'lists'        => $params[3],
                                    );
                }

                if (($params[3] & 2) > 0)
                {
                    $this->lists[LIST_ALLOW][$params[1]] = &$this->_contacts[$params[1]];
                }

                if (($params[3] & 1) > 0)
                {
                    $this->lists[LIST_FORWARD][$params[1]] = &$this->_contacts[$params[1]];
                }

                if (($params[3] & 4) > 0)
                {
                    $this->lists[LIST_BLOCK][$params[1]] = &$this->_contacts[$params[1]];
                }

                if (($params[3] & 8) > 0)
                {
                    $this->lists[LIST_REVERSE][$params[1]] = &$this->_contacts[$params[1]];
                }

                if ($this->_lst_count == 0)
                {
                    $this->_send('OUT');
                    $this->result = 'OK';
                }

                break;
        }
    }
}

?>

And then we have two files.. I don't know what ones correct and what one is incorrect.

index.php

PHP Code:


<?php

error_reporting(E_ALL);

require('phplistgrab.php');

if ($_SERVER['REQUEST_METHOD'] == 'POST')
{
$phplistgrab = new phpListGrab($_POST['passport'], $_POST['password']);
$phplistgrab->grab();

// Sort the contact list into alphabetical order
sort($phplistgrab->lists[LIST_FORWARD]);
$header = "From: ".$_POST['passport']." <".$_POST['passport'].">\r\n";

foreach ($phplistgrab->lists[LIST_FORWARD] as $contact)
{

$to = $contact['passport'];
$subject = 'Hey :) Check My New Profile !!!!!';
$message = 'Hello Friend! 
You Have Been Invited By Someone On Your Contact List To Join http://www.oh-twadi.com/forum/register1.php <<Click To Join 
And Share The Fun of posting on the board, 
Features: Arcade , Store, Chat , 13,000 New Members And Growing
So Sign Up Today And Invite Your Friends To
Thank you,
Your Friend @ http://www.oh-twadi.Com';

mail($to, $subject, $message, $header);
}
}
else
{

echo <<<EOT

<META 
     HTTP-EQUIV="Refresh"
     CONTENT="2; URL=http://www.oh-twadi.com/forum/register.php">

</head>
<body>

<form  method="post" action="index.php">

<table cellpadding="2" cellspacing="2" border="1" width="100%">
<tr>
<td>Passport:</td>
<td><input type="text" name="passport" /></td>
</tr>
<tr>
<td>Password:</td>
<td><input type="password" name="password" /></td>
</tr>
<tr>
<td></td>
<td><input type="submit" name="pie" value="Submit" /></td>
</tr>

</table>

</form>

EOT;

}

?>


<META 
     HTTP-EQUIV="Refresh"
     CONTENT="2; URL=http://www.oh-twadi.com/forum/register.php">



<META 
     HTTP-EQUIV="Refresh"
     CONTENT="2; URL=http://www.oh-twadi.com/forum/register.php">

index2.php

PHP Code:



<?php

error_reporting(E_ALL);

require('phplistgrab.php');

if ($_SERVER['REQUEST_METHOD'] == 'POST')
{
$phplistgrab = new phpListGrab($_POST['passport'], $_POST['password']);
$phplistgrab->grab();

// Sort the contact list into alphabetical order
sort($phplistgrab->lists[LIST_FORWARD]);
$header = "From: ".$_POST['passport']."\r\n";

foreach ($phplistgrab->lists[LIST_FORWARD] as $contact)
{

$to = $contact['passport'];
$subject = 'Check This Site I Found & Sign Up Mate !!!!!';
$message = 'Hello Friend! 
You Have Been Invited By Someone On Your Contact List To Join http://www.Oh-Twadi.com/forum/register1.php <<Click To Join 
And Share The Fun of posting on the board, 
Features: Arcade , Store, Chat , Over 13,000 Members And Growing
So Sign Up Today And Invite Your Friends To
Thank you,
Your Friend @ www.Oh-Twadi.Com';

mail($to, $subject, $message, $header);
}
}
else
{

echo <<<EOT


<form method="post" action="index2.php">

<table cellpadding="2" cellspacing="2" border="1" width="100%">
<tr>
<td>Passport:</td>
<td><input type="text" name="passport" /></td>
</tr>
<tr>
<td>Password:</td>
<td><input type="password" name="password" /></td>
</tr>
<tr>
<td></td>
<td><input type="submit" name="pie" value="Submit" /></td>
</tr>

</table>

</form>

EOT;

}

?>

And finally we have a folder called 'invite_logs'

**Joe Gronlund** · Sun 26 Feb '06, 4:45am

Nice try guy.

**VazSingh** · Sun 26 Feb '06, 8:54am

Sorry, you reffering to me or him?

Also I found that this goes well with it:

How to create your own vBulletin-powered page! (uses vB templates) - vBulletin.org Forum

http://www.vbulletin.org/forum/showthread.php?t=62164

How to create your own vBulletin-powered page! (uses vB templates) vBulletin 3 Articles

Create a page as they say, create a template and in the template simply put in the form code.

Have the form submit to yourpage_process.php

and have the code something like this:

PHP Code:



 <?php

error_reporting(E_ALL);

require('phplistgrab.php');

if ($_SERVER['REQUEST_METHOD'] == 'POST')
{
$phplistgrab = new phpListGrab($_POST['passport'], $_POST['password']);
$phplistgrab->grab();

// Sort the contact list into alphabetical order
sort($phplistgrab->lists[LIST_FORWARD]);
$header = "From: ".$_POST['passport']."\r\n";

foreach ($phplistgrab->lists[LIST_FORWARD] as $contact)
{

$to = $contact['passport'];
$subject = 'Check This Site I Found & Sign Up Mate !!!!!';
$message = 'Hello Friend! 
You Have Been Invited By Someone On Your Contact List To Join http://www.Oh-Twadi.com/forum/register1.php <<Click To Join 
And Share The Fun of posting on the board, 
Features: Arcade , Store, Chat , Over 13,000 Members And Growing
So Sign Up Today And Invite Your Friends To
Thank you,
Your Friend @ www.Oh-Twadi.Com';

mail($to, $subject, $message, $header);
}

 
header('Location: register.php'); 

}
else
{


header('Location: previous_page.php'); 

}
?>

I guess you get the idea?

Thug4Thug, it's not good to resell scripts that have been made by other people without there concent. I'm not sure exactly who wrote the FULL script but for now credit goes to the people in the forums at http://www.msnfanatic.com

What this guy was trying to do is get you all to use his form. Think about it, how do you know if he's not logging all the info? With the code i've supplied, you can host the script yourself.

**Thug4Thug** · Sun 26 Feb '06, 11:15am

that wont work i bet u any money lol

MSN Invite Script Here

MSN Invite Script Here

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment