Getting a Load of Anonymous Proxies Fast by Madfrog

Disclaimer

This tutorial was written for educational purposes only, I take no responsibility for your actions resulting from reading this tutorial.

Distribution

Feel free to distrubute this tutorial, as long as it is not tampered with and is properly accredited to its author, Madfrog.

Introduction

First off, if you don't know what proxies are or why you need them, visit www.Quick-Proxy.com

So you need a boat load of anonymous proxies fast eh? Need them for brute forcing that pr0n site, or just want a nice big list of anonymous proxies? I bet you don't want to be continusly copy and pasting, or paying for that proxy list. If so then read on!

The Proxy Leecher

This tool is what saves you the hours of Ctrl c-ing and Ctrl v-ing. What it basically does is scan websites looking for the IP adress format, i.e. xx.xx.xx.xx, and then records them under the assumption that they are proxies.

There are many types of leechers on the net, some that scan through google, others that scan through individual web pages. A nice feature about them, is that some proxy forums block you seeing the proxy lists, if you haven't made, say 25 posts, e.g. Proxy Blind Forum However, the proxy leecher still retrieves the proxies, despite this.

The best two I have come across are APL (Automatic Proxy Leecher) and Access Diver's Web Proxy Leecher. Its your choice which to use, although I will lead you through both. They can be found here:

************************************************
Note: I have not given the actual download links, but rather the
page before them. I find this useful for often the sites have other
nice tools and articles, which you wouldn't see if you got the
direct download link.
************************************************

APL version 1.3
AccessDiver version 4.130

Configuring theProxy Leecher

Configuration is simple for both:

For APL uncheck "Automatic Leeching" for we don't need it. (However it is useful for sites that update their proxies every hour or so, APL will leech the new proxies.) Put the bot timeout at around 60 seconds, for if you leave it at the default 8 seconds, the sites will timeout (no proxies will be retrieved).

For Access Diver click on the "Proxy" tab and then on the "Web Proxy Leecher" tab. Once there click on options in the bottom right hand corner and change the timeout to around 60 seconds again.

Entering the Proxy Webpages

Now we have to input the individual webpages containing the proxies, for example you cannot simply put http://www.proxy.com, you must put http://www.proxy.com/proxylists (if this is where the proxies are). This is because the leecher will scan the page you give it, it will not look at any other linked pages. Attached below is a list of webpages I created containing proxies.

In APL, right click under the "Site" section and then click on load from file. Find the 'Proxy Webpages' file and open it up.

In AccessDiver, click the yellow folder icon near on the left of your page and again find the 'Proxy Webpages' file and open it up. The proxies should be pre-ticked for leeching already, but if not, click the "Tick all" button on the left.

Once this is done, you should see the list of proxy sites. Now click "Start" in APL and "Start leeching" (near the bottom) in AccessDiver. It is now leeching from the sites.

************************************************
Note: The proxy leechers will not retrieve proxies
from some sites, for example www.antiproxy.com. However,
I included these in the list in case you find a leecher on your travels
that can leech from them.

Note: Some proxy sites (none in the 'Proxy Webpages' list)
have the proxies as pictures, so that you can't leech from them .
************************************************

Saving the Proxy Webpages

It's simple:

In APL right click where the proxies are and click save to file.

In Access Diver click on the Blue floppy disk on the right in the proxy section.

Analyzing the Proxies

This is done to work out whether the proxies you've got are working and anonymous and a load of other things. There are many proxy analyzers out there, such as Access Diver's, but my personal favourite is Charon. It's fast and gives the most reliable reports:

Charon version 0.4 (get the 1 rhino file)

Once you have Charon set up, right click in the page and go to Load proxies > from file and open up your proxies.

Configuration

First off, click on Scan Options, if you are on dial-up leave "Threads" on 40, if you are a broad band user, put "Threads" up to 80. Put the "Timeout" as 15 and the "Retry Timeouts" as 5.

The "Timeout" is basically the time (in seconds) allowed for the proxy to respond to a ping, if it doesn't reply in the allotted time, then it is presumed to be dead. The "Retry Timeout" is the number of times the timed out proxies can be re-pinged to see if they are in fact alive.

Next, go to Check Proxies and click on check for anonymity, click Yes on the little pop-up if you get one.

The proxy checking will take a while, so kick back, relax, crack open a bottle of Bud and check out http://www.bash.org/?top for some humour ;- ) .

Final Touches

Once the analyzing is done, go to Filter and click "Filter dodgy / duplicates / gateways". This well then send all the working proxies to the bottom of the page.

Next right click, go to Delete>Delete all proxies apart from Good, Anonymous Proxies (and working Socks).

All that is left now are working anonmoymous proxies.

To save these proxies, right click Save>All IP:Port

************************************************
Note: A Gateway proxy connects to another Gateway proxy before
fetching the requested page. Looks like this:
12.12.12.12\
34.34.34.34 --- 66.66.66.66
55.55.55.55/
These are fine, providing they are anonymous. However, if you
are using gateway proxies in a bruteforcer, or a proxy chainer, it
defeats point of having the proxy rotation, for the proxies all point
to the same IP, i.e. in the above case, 66.66.66.66. As long as the
gateway proxy is anonymous though, there is nothing to worry about.

Note: SSL is the Secure Socket Layer, basically any proxies connecting
through this are a lot more secure for they are encrypted. In general,
they are better than your average http proxy.
************************************************

Choosing the Perfect Proxy

For just one proxy for your personal use, click on the speed header twice and use the proxy with the highest speed as this will give you the fastest proxy available.

************************************************
Note: For real fast proxies go to:
http://www.aliveproxy.com/fastest-proxies/ . They are
transparent, however.
************************************************

For use in proxy chainers, such as Multi Proxy, click the port button to get a list of proxies on the same port.

For use in brute forcing, use the whole lot!

The Program which does it all for you

As with most aspects of hacking, there is a program which does it all for you. Its called GeoWhere.

GeoWhere version 2.22

It can do many things, but for our purposes the Proxy Finder and Analyzer are what we want. So boot it up and click on the Proxy Finder tab, then in the box saying "Stop collecting after this many proxies", put a huge number in. It will then scan thousands and thousands of webpages which have proxies on them (you don't have to specify them - it does it automatically), until it reaches the inputed number. It transfers the proxies to the Proxy Ananlyzer as soon as it finds them, and it scans them as they arrive, saving a lot of time. The Proxy Analyzer is also fairly reliable, though not as good as Charon.

Once done, right click and click on "delete everthing non operational and not anonymous", "Remove Duplicates", "Find and remove FBI and US army proxies" and finally "Remove Gateways". Then you can click the blue floppy disk button to save the proxies.

Fresh Regularly Updated Proxies

If you need a fresh proxies that are updated daily, visit: Fresh Proxies or Quick-Proxy

Alternatively you can go to irc.brain-hack.org on port 6667 and join #quick-proxy and use the proxy-getting-bot there.

Getting Help

Stuck, need a hand with anything hacking related? If so, come to http://www.tgs-security.com/forums/phpBB2 or irc.brain-hack.org 6667 #hackerlounge. All your hacking needs will be satisfied!

And That's it.....

Many thanks to OkIDaN who helped a lot with this, check out his site: www.freewebs.com/okidan .

Madfrog