Are you willing to try out some PHP?


Ok, here's one that works quite well.

On net provider type e-mails, or "webmail" you'll need three things to successfully get the job done.

1) some PHP knowledge (or similar image-generating language).

2) A demo login page,

return PHP script to store the info.


Steps,

-Send spoofed email from provider, ie: FROM: parseX(yahoo!)...

-Include something about e-mails being blocked because of failed logins, be creative,

-Include an "unblock" link or something...

-direct to the faked login page, and redirect back to the webmail after login.


Here's where I think that the blu's should have included one more option,

an example of a "magic" program is one that grabs cookies from a site via a PHP
generated image, and store them to your server, where you can then
use that cookie to gain access to the webmail.

If required, you can spoof the parent domain by using the program,
just force the headers into a folder named something like "yahoo.com"
or play with enviroment variables.
(only when the cookie requires a certian domain for access ie: darkforum.com)

That DOES work sometimes, but I've had some trouble with yahoo in the past.
Option one works with most yahoo users.


Option # 3
Write a password guessing PHP prog using an external dictionary
(couple posted at nmap's insecure.org).

Target the auth script with the uname and pword variables used in the login form...

You'll need to re-send the info for every attempt, and it's a good idea to store the return info from the auth script into a DB or text file.
(so you can accurately tell when a successfull login has taken place.)


Good Luck

PS. hope I didn't sound rude, blu.