ISP Doxing Super Guide

By
Criminal
This guide will go heavily indepth into the art of
ISP doxing, this guide currently destroys any
public content currently indexed by google, all
the leaked content are simply tools other ISP's
use which barely help because this guides
spoonfeed friendly and goes much more
indepth then just a tool list, so to all who
purchased this guide I will tell you right you
right now your money has been well spent, I
hope after your done reading this innovative
guide that it will refuel your mind to go back to
isp doxing if your bored of it or try it out if your
a beginner! anyways lets get into the guide.

Note*: Before anyone says anything there was

a leaked version of my very old guide and I am
the original creator of it this is the fully
overhauled version which no one else has.

Table of Contents

1. What is ISP Doxing?

2. ISP Doxing Tips + Tricks
3. Employee Impersonation
4. Law Enforcement Impersonation (Subpeona
Method)
5. Copyright Infringment Method
6. Account Holder Method(Internet Troubles)
7. Account Holder Method(Someone stole my
internet)
8. Activations Method
9. RIAA Method
10. Child Pornopgrahy Method
11. DDOS Method
12. Law Enforcement Impersonation(Badge
Method)
13. Law Enforcement Impersonation(Email
Method)
14. Law Enforcement Impersonation(FBI Agent
Method)

====What is ISP Doxing?====

ISP Doxing is the art of doxing someone by
their internet service provider, the internet
service provider contains there modem
information, there phone numbers and most
importantly there street address information!
theirs multiple methods to obtain the
information from the ISP and today ill be
outlining the common ones and even the
harder ones as a bonus.When your done with
this guide you will be a pro at ISP Doxing and
will be pretty much able to dox anyone that
normal whitepage doxing wouldn't allow you to
dox like people with common last names. It's
especially dangerous when you have just an IP
address on someone you can pretty much ruin
someones life, a persons whole life is attached
to that IP address remember that.

===ISP Doxing Tips + Tricks====

- a good tip to know is every isp has a
department system and each department has
a different tool set some departments have
tools exclusively used by them when most
people ISP dox they go straight for tech

support dept, that dept usually has at least one

tool for modem provisioning which can do ip
searches as a bonus but thats not the case for
every ISP so you need to keep that in mind.This
also includes different tiers, each tier has
different tools.
- Some ISP's like verizon fios are call center
based, whats call center based you may ask?
each call center has access to a different part
of the verizon SQL tables and when tools like
CPM manager make search querys sometimes
it will return 0 results, this happened to me a
few times when doxing fios IP's but don't fret
after this tip you will be able to dox any fios IP
even the ones you had problems with so
anyways if the fios IP returns 0 results you
want to enter zip codes for other valid fios call
center locations till the agents tools are able to
return results for that IP, this logic is applied on
more isps then just fios but fios is one of the
only isps this tends to happen on alot.
- Some ISP's are supervisor based, whats
supervisor based you may ask? supervisor
based is when tier 1 agents don't have the
tools or power neccessary to lookup the IP in
this case you need to transfer to a supervisor

and hope your SE skills are good enough to fool

a tier 1 supervisor.The only known mainstream
ISP that seems to be supervisor based is
Optimum Online.This logic can also be applied
on phone carriers such as sprint and verizon
due to tier agents having info grayed out but
supervisors having full access to sqa answers
and pins but thats out of scope for this guide.
- theres 3 types of authority that you can pose
as when ISP doxing: Account Holder,
Worker/Employee, Law Enforcement theres
technically a 4rth one if you consider a
Government Agency but that ties into the 3rd
one and its rarely used. Each authority can
have tons of different pretexts for it not just
one like most people think you can use
different excuses for each authority you pose
as they just need to make sense for that
specific authority or the SE will fail instantly,
authority is a very important concept in ISP
doxing so before you call make sure you know
which authority you plan to use.
- its possible to isp dox on multiple mediums of
communication not just phone like most people
think you can: email employees, DM
employees on twitter(this is comcast exclusive

not many isps have individual employees on

twitter like comcast, comcast twitters are
usually stuff like @comcastterrance for
example and they have alot of tweets relating
to asking for acc numbers these agents provide
alot of juicy inside info of you can se one in
dm's successfully), talk to agents on live chat,
talk to them on forums and more.
- Every ISP stores DHCP assignment logs(PPOE
logs if it's old DSL equipment) This allows them
to track black hat activity or other offense
activitys if the suspect attempts to assign them
self a new IP address. it's a common
misconception where people think their safe,
this is simply untrue.Currently the 2 ISP's this
method works best on is cox and time warner
cable, have not tryed anything else.Edgehealth
has a extra slot for DHCP lookups which return
all mac addresses of modems ever assigned
that IP along with dates the lease began and
ended and TWC docsis has similiar
functionality.If anyone wants to find other
DHCP assignment log methods simply do your
research and SE around to find the tool thats
capable of doing them but the jist is usually
only higher up reps such as tier 2 or 3 have this

ability so be sure to keep that in mind when isp

doxing.
- Each ISP has a special department for
negative activity that occurs on the isp such as
phishing, spam, ddos attacks, other forms of
abuse.On comcast this department is known as
CSA or customer security assurance. On cox
it's known as the customer advocate group and
TWC its called the CAS. These departments can
occasionaly be socialed for IP lookups
depending on the different pretexts you use
but sometimes their strict it all depends, you
can also sometimes SE new tools every so
often since these departments have special
tools for RIAA and other abuse reports to pull
the account up from the IP so keep that in
mind.
====Employee Impersonation====
The common way to obtain information from
someones internet service provider is to
impersonate an employee and act like you
work for the ISP the target is with.First you
want to get an idea of the terminology used at
the company and of course the programs/tools
they use to pull up and or work with the

customer data.Once you have a basic idea of

that its time to call up the tech support line of
their ISP and to start doxing them.Below is
methods I use to dox someone just with there
IP but of course you can look up there account
with whatever info you have on them:

Cox Communications ISP Doxing(Employee

Method)
====Tiers====
-1
-2
- 2.5

====Tools====
- Edgehealth // The primary modem
provisioning tool, Search box's:Docsis CPE, MTA

IP, Phone number, MAC Address, Account

number, SSN, Address.
- Inav
- SL2
- ICOMS
- Polaris
- Optix
- CATS
- SOAK
- Netweather / Digiweather (Las Vegas Call
Center Exclusive)
- Granite
- Vision Provisioning Tools
- KCUI
- Intermanager

====IP lookups====
Method 1.: For Cox IP lookups you can tell the
agent to open up the Edgehealth tool and there

should be a drop down box with a bunch of

options, have the agent choose the one labeled
"Docsis CPE" which you can then enter an IP
Address in the search box next to it and it will
return the customers name, phone number and
address!

Note*: Docsis CPE works for both IPv4 and IPv6

IP Addresses unlike vision which only works on
IPV4's!

Method 2.: For Cox IP Lease History Lookups

you can tell the agent to go to the "Database
Reports" section of Edgehealth and in the drop
down box go to "Lease History" and have the
agent enter the cox ip address in the search
box and all mac addresses that was ever
assigned to that IP address will come up.

Note*: This is useful for those pesky static ips

that tend to not bring any information up!

Method 3.: For Cox IP lookups you can tell the

agent to open up the Vision Provisoning Tools

and go to customer search and there will be a
search box labeled "IPV4 Address", have the
agent type the IP into this box and it will return
all the information on the account.

Note*: What makes vision better then

edgehealth is it's unique ability to
automatically do lease history lookups if it can't
get any results on an IP Address!

AT&T Uverse ISP Doxing(Employee Method)

====Tools====
- G2
- U.S-DOT // One of at&ts backup tools which
means they normally don't use it unless their
tools are down!
- CRM

- CAP
- MYCSP
- Clarify
- Telegence
- Enabler
- CARE
- OPUS
- Pheonix
- PTT
- NBI
- SDP

====IP lookups====
Method 1.: For Uverse IP lookups tell the agent
to go into the G2 Tool then to go into the trans
history search area and there will be 3 search

box's:IP, IP Netblock and IP Assigned. Tell them

to search the IP address up in the IP search box
and it will return a BAN number as a search
result, which can then be looked up in CRM for
the full account information!

Method 2.: For Uverse IP lookups tell the agent

to open their backup tool called U.S-DOT which
can lookup ip's!

Time Warner Cable ISP Doxing(Employee

Method)
====Tools====
- ROI // The primary tier 1 modem provisioning
tool, Search Box's:Cable Modem, MTA, CPE
- Unified // The secondary tier 1 modem
provisioning tool, Search Box's:All, Name,
Account Number, Phone Number, MAC Address,
QMTC, CMTS, Service Area, VOD, HUB, Node.

- AAD(Advanced Agent Desktop) // The primary

tier 1 billing tool.
- Genocide
- DOCSIS/ATG Tools(Level 3/Tier 3 Only) // The
tier 3 master tool for modem
provisioning/billing, Search Box's:Modem Mac,
Mta Mac, Modem Ip, Cpe Ip, Mta Ip, Account
Number, User ID, Phone Number, Subscriber
Name
- Daycare
- ACSR/CSG
- ICOMS // The notorious billing system that
almost every ISP uses.
- Big Brother
- Netcool
- NYROC(BrightHouse Networks Version of
DOCSIS)
- Arris Workforce Management
- Mystro
- Remedy

====IP lookups====
Method 1.: Tell the agent to go into ROI and to
go to the What is the entity name? tab and
then to the What are you looking for? area and
then they will be 3 search box's:Cable Modem,
MTA and CPE.You can try getting the agent to
lookup the IP in the CPE search box and if it
returns "discovery not found" which means the
search returned no results possibly due to the
agents location or what division/market was set
on real you can have the agent set the division
on real to the one of the IP's location so then
when they type the IP in the CPE search box
results should come up, another way you can
do IP lookups in real is you tell the agent to
look the IP up in the Cable Modem search box
and it will bring up all mac addresses ever
associated with the IP including active and
inactive accounts!

Script:"Hello this is Micheal Jones from Time

Warner Cable technical support level 2, all my

tools seem to be down like real and unified and

I need assistance pulling up this customers
account so can you help me? open up the tool
real sir and then when you open up real there
should be a main search box and just type this
IP Address into the box and all the information
should come up tell me when you have an
account pulled up sir."

Method 2.: Tell the agent to go into ATG/Docsis

and they will be an area on the tool called
"Misc.", Tell the agent to go to where it says
"DHCP Lease History" and then have the agent
type the IP Address into the box and it will
show all past owners mac addresses that was
leased the IP Address.

Method 3.: Tell the agent to transfer you to Tier

3/Level 3 and those agents have access to a
special tool known as ATG/Docsis.Tell the agent
to open DOCSIS up and they will be 9 search
box's:CPE IP, MTA IP, Cable Modem IP, Account
Number, User ID, Phone Number, Subscribers
Name, Modem MAC, MTA Mac.Tell the agent to
search the IP Address up in the CPE IP search

box and it will return all the information on the

customer including the service address, MAC
Address of the modem, account holder name
and of course a phone number!, make sure to
ask for these details nicely.Note*:Some Tier
1/Level 1 agents can open up DOCSIS as well.

===Format===
IP:
Name:
DL:
SSN:
Phone Number:
Address:
Account Number:
Skype:
MAC Address: // Device MAC // Cable MAC

Comcast Cable ISP Doxing(Employee Method)

====Tiers====
-1
-2
-3

====Tools====
- Grandslam // The primary tool that does
modem provisioning tasks and can lookup the
account by anything, Search Box's:Phone
Number, Account Number, Postal Address,
City/State/Zip, First/Last name, Email
Username, IP Address(Greyed out in the new
grandslam update, useless), DNS Lookup,
Ticket Number, CDV(Comcast Digital Voice)
Number, MAC Address, Social Network ID,
Previous Accounts.
- Vision // The secondary modem provisioning
tool that can do IP searches. Authors
Note*:Only the Xfinity Home Tech Department

Has This Tool!

- Comtrac // The primary billing tool the billing
deparment uses, live chat agents can also use
this tool and it looks up the account by basic
billing information like name, phone, address,
etc.
- ASCR
- Einstein // The help-desk like tool for
employees which can also search customer
accounts and this tool also replaced the old
help desk system known as CASPER, Search
Box's:Phone Number, Account Number, Postal
Address, City/State/Zip, First/Last name, Ticket
Number, CMAC, DNS Lookup, Previous
Accounts.
- ERone ITG
- CSG // Authors Note*:Only the Xfinity Home
Tech Department Has This Tool!
- BAM
- Competitive Edge
~~~~~~Tier 2/Wireless Gateway Exclusive
Tools~~~~~~~~~
- Ninjato Remote Connection Tool

- Comcast RDS remote router management

tool.
- Nexus Remote Management Tool
- IP-Edge Portal(This tool has the ability to
lookup CPE IP's which are just a fancy term for
WAN IP's or your targets IP)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~
- TTS
- Spectrum
- Everstream
- Cacti // This tool is used to checkfor
globalwide outages, cox also has it. It's useless
and has no search querys.
- Scout

====IP lookups====
Method 1.: For Comcast IP lookups you can tell
the agent to use the Grandslam tool which has
a search box labeled "IP Address" and have
them type the IP into that and it will return all
the details on the customer. This method has

been patched as of january 2014 the "IP

Address" search box has been greyed out!
(Patched)

Method 2.: For Comcast IP lookups you can tell

the agent to use the Grandslam tool which has
a search box labeled "DNS Lookup" under the
greyed out IP Address box which can also pull
accounts up by the IP Address, so just tell the
agent to type the IP Address in it and the
account results should show up! Normally this
search was made for DNS related comcast IPS
like this one for example:69.252.250.103,
which have the hostname dns101.comcast.net
but it seems to also pull up CPE(Customer
Premise Equipment) IP's as well, so this looks
like a bad implementation error on their end.
(Patched)

Method 3.: For Comcast IP lookups you can tell

the agent to use the Comtrac tool which has a
search box labeled "IPV4" which can pull up the
customers account details after the agent
types the IP address in it so the results should
show up.(This was an inaccurate method which

never worked in the first place disregard)

Method 4.: For Comcast IP lookups you can tell

the agent to use the Einstein tool which has a
search box labeled "DNS Lookup" which can
pull up accounts by the IP Address and it will
return the full account results.(Patched as of
late 2015)

Method 5.: For Comcast IP lookups you can tell

the agent to transfer you to the Xfinity Home
Tech, Loyalty and Sik Activations department
and all those agents use Vision and CSG so tell
the agent to type the IP Address into Vision and
it will bring up the whole account.(Vision has
been known to have the ability to do IP's but
everyone has different luck with this method
because no one knows accurately where the IP
search box is located...yet.)
*NEW as of April 2016* Method 6: Get
transfered to either Tier 2, a network engineer
or a field tech. These 3 departments are the
only known ones that can access this tool
similiar to how only tier 3 TWC reps can only

access the DOCSIS/ATG tool. Once there these

reps have access to the modem provisioning
tool known as IP-Edge Portal which is used by
these departments to provision the customers
modem but also has the ability to search
accounts by IP Address as well.This method has
been discovered with extensive research into
comcast.

Verizon FiOs ISP Doxing(Employee Method)

====Tiers====
-1
-2
-3

====Tools====
- CoFee
- CPE Manager
- Legend

- Info Desk
- Torque
- DTI

====IP lookups====
Method 1.: For Verizon FiOs IP lookups you can
tell the agent to use the CPE Manager tool
which has a STB(Set-Top Box) Tracking tab and
on it theres an search box labeled "WAN IP"
which you can look the IP Address up in and
then it will show how many set box's the
customer currently has then you tell the agent
to look up the Circuit ID and it will pull up the
whole entire account!

Extra Employee ID's:

Z3A1533
Z646290

Windstream Communications ISP

Doxing(Employee Method)
====Tools====
- Datacannon

====IP lookups====
Method 1.: For Windstream IP lookups tell the
agent to open up the Datacannon tool, then on
Datacannon you tell the agent to type the IP
Address in the search box labeled "IP", it will
then return a modem serial number which you
ask the agent for nicely and then you can
either have the agent lookup the modem serial
number in another tool or you can call back
and have the modem serial number looked up
by another agent!

Wide Open West ISP Doxing(Employee Method)

====Tiers====
-1
-2
-3

====Tools====
- ICOMS // The only tool tier 1 agents have, this
is just a basic billing tool to pull up accounts
via basic info like address and phone number.
- M.U.S.T(Modem, Upgrades and Statistics Tool)
// The main tier 2 tool used for modem
upgrades, can also search modem and CPE ip's
to pull up accounts.
- ALOPA // The tier 3 master tool, can do CPE,
MTA and cable modem searches.
- Spark // The tool agents use to chat with
other agents using a chat room system.
- Kronos // The agents use this tool to clock

in/out of their shift.

====IP lookups====
Method 1.: For WOW IP Address lookups tell the
agent to open the MUST(Modem Upgrades and
Statistics Tool) tool and it has a main searchbox
for cable modem lookups so just have the
agent type the IP address in the main search
box labeled "CM IP or MAC Address" and it will
pull up the modem information.

Method 2.: For WOW IP Address lookups tell the

agent to transfer you to tier 3 or home
networking department.Once your at tier 3 or
home networking department, have the agent
do a CPE search on the ip using the ALOPA tool.

Suddenlink Communications ISP

Doxing(Employee Method)

===Tiers====
-1

===Tools====
- ICOMS
- Mystro
- Tulse

====IP lookups====
Method 1.: For Suddenlink IP Address lookups
tell the agent to use the tulse tool and theres a
search box thats labeled "Data CPE IP", so have
them type the IP address into that and it will
pull up the full account results!

CenturyLink ISP Doxing(Employee Method)

===Tiers====
-1

- 1.5

===Tools====
- Radius // Primary tool tier 1.5 uses for CPE IP
Searches.
- RX // The secondary modem provisioning
tool/billing tool all in one.
- KGB2
- Qview
- H.S.I // Agent's use this tool to chat with other
tier 1's and tier 1.5 agents which can do CPE
searches on IP's using Radius.
- Qrad // The primary modem provisioning tool
which checks if IP Addresses are dead or alive
and pulls up DSL phone numbers associated
with the modem.
- Remedy
- TRACS // The third modem provisioning tool.
- MARTENS
- Ensemble
- CIRAS

- MetaSolv

====IP lookups====
Method 1.: For Centurylink IP lookups tell the
agent to open up the HSI tool and to open up a
chat with a tier 1.5 agent and have the tier 1.5
agent do a cpe search on the IP Address and if
it appears out of scope tell the them to transfer
you to century legacy support and have them
lookup the IP, remember you need a working
CUID or they will not provide information.

Method 2.: For Centurylink IP lookups tell the

agent to open up the Qrad tool and on it theirs
a search box labeled "User Assigned IP", so tell
the agent to type the IP Address into that and it
will pull up the modem information and show if
the connection is active or dead along with the
DSL phone number which you can tell the
agent to look up in the RX tool to bring up the
full account.If the account is a qwest based
account they will only be able to see name and
part of the address, to get the rest of the info
transfer to the centurylink legacy department.

Frontier Communications ISP Doxing(Employee

Method)
====Tiers====
-1
-2
-3

====Tools====
- Jwalk
- Inet Portal
- Spark // Agents use this tool to chat with tier
1's in their team and tier 2's.
- Arbor Peakflow
- Netcool
- Solarwinds

- Nagios
- CDPI // Frontiers main billing tool.
- Viryanet
- Loopcare
- IP Tracker
- M6
- Netmon

[Network Operations Center Exclusive Tools]

- ISIS Provisioning Tool/IP Master List
- NEEDS Database(IP Address Tab)
- Defaultnet

===IP Lookups===
Method 1.:For Frontier IP Lookups you tell the
agent to transfer you to tier 3 then you use the
"" tool.

===Phone Numbers===

Tier 2 IP Data Team:1-866-474-7662

Network Operations Center:1-888-608-8029
CNOC(Commercial Network Operations
Center):1-800-672-3793
Frontier Communications Normal Support
Line:1-800-584-3384
Frontier Communications Security Operations
Department:1-800-590-6605

Optimum Online ISP Doxing(Employee Method)

===Tools====
- IDA
- IDA Lite
- Boost
- TriO
- SEER
- KDE
- CableData

- Groupwise
- Modem Control
- ZOOM
- KOMS
- Dart
- Remedy
- Monitor
- ServaSure
- Spectrum One Click // The primary network
management tool which can do IP's.
- SAS Portal
- JSI/JSIML
- STI
- DDP

===IP Lookups====
Method 1.: For Optimum Online IP lookups, tell
the agent to transfer you to a supervisor, once
you get a supervisor on the line tell them to
open the master tool "Cable Data" which is the

primary tool they use to do cpe searches on ip

addresses.

Charter Communications ISP Doxing(Employee

Method)
====Tiers====
-1
-2

====Tools====
- Sigma // The primary billing tool, Search
Box's:First + Last Name, FQID, Address, MAC
ID, Email
- IRIS // The secondary billing tool, Search
Box's:First + Last name, Address
- CSR Admin
- D.R.U.M(DOCSIS Reporting, Utilization &
Measurement) // Main tool for modem
provisioning tasks and it also can practically

search by anything, Search Box's:CPE IP, MTA

IP, Modem IP, MAC Address, Address, First +
Last Name.
- Netcool
- MARS
- Hammer
- Webtop
- Everstream
- Tekmark Proviser
- CSG
- ICOMS

===IP Lookups===
Method 1.: For Charter IP Lookups tell the
agent to use the D.R.U.M tool and theres a
dropdown box with various options, the
important ones are labeled "Modem IP", "MTA
IP" and finally "CPE IP", so tell the agent to set
the drop down option to "CPE IP" then have the
agent type the IP in the search box and it
should search for the modem information and
all the information associated with the account

should pull up.

Mediacom Communications ISP

Doxing(Employee Method)
====Tools====
- ASCR
- RDP

====IP Lookups===
Method 1.:?

===Phone Numbers===
Tier 2 Tech Support for internet:515-559-5696
Option 3

AT&T DSL ISP Doxing(Employee Method)

==Tools==
- CSR Admin
- Unisync
- CPSauce
- CRM
- OSS

===IP Lookups===
Method 1.: For AT&T DSL IP lookups tell the
agent to type the IP Address in the main search
criteria box on OSS and it will show if the
connection is active and will pull up the current
Username of whoever currently has the IP
Address assigned to them, you then tell them
to look up the username in CRM and it will pull
up the rest of the account details.


Clear Wireless ISP Doxing(Employee Method)
==Tools===
- Boss
- Salesforce
- Blue Avalanche
- Cheetah
- Clear Fax
- Clearsky
- Lixium
- ATG Oracle

===IP Lookups===
Method 1.:For Clear Wireless IP Lookups you
transfer to tier 2 then see if they can do a cpe
search if not they will transfer you to tier 3 that
can do CPE searches.

RCN ISP Doxing(Employee Method)

===Tools===
- ICOMS // The notorious billing system that
almost every ISP uses.
- TEAD
- Lighthouse
- ASPECT
- PWS
- NPAC/LSOA
- Lotus Notes // The primary feedback system
used to write notes on things.

===IP Lookups===
Method 1.:

Fairpoint Communications ISP

Doxing(Employee Method)
===Tools===

TalkTalk ISP Doxing(Employee Method)

===Tools===
- Singleview // The primary modem provisioning
tool.
- Subportal // The primary billing tool.
- PortalPay // The secondary billing tool.

===IP Lookups===
Method 1. : For TalkTalk IP lookups tell the
agent to type the IP Address in singleview!

Sky Broadband ISP Doxing(Employee Method)

===Tools===
- Lama
- SPM (Superman) - IP Lookups
- Iris

===IP Lookups===
Method 1. : For Sky Broadband IP lookups tell
the agent to type the IP Address in superman.

Verizon DSL ISP Doxing(Employee Method)

===Tools===
- CoFee
- DTI
- Focusnet
- DTI Express

===IP Lookups===

Method 1.: For Verizon DSL IP lookups tell the

agent to the type the IP Address in the
focusnet tool.

Wave Broadband ISP Doxing(Employee Method)

===Tools===
Concurred // The primary modem provisioning
tool used for IP searches. Authors Note*: Only
the networking department has this tool!
Whipeout
Windcable
HSTS

===IP Lookups===
Method 1.: For Wave Broadband ISP Lookups
tell the agent to transfer you to networking
department, once in the networking
department tell the agent to open up
Concurred and they can search the IP Address
which will then bring up the mac address which

tier 2 can lookup to bring the whole account

up.

Shaw Communications ISP Doxing(Employee

Method)
===Tools===
- Unified Desktop
- RSC Tools

===IP Lookups===
Method 1.: For Shaw Communications ISP
Lookups tell the agent to open up RSC Tools
then to navigate to the "Cable Modem Locater"
search box then tell the agent to type the IP
Address into the search and it should bring up
the cable modem brand, name, phone number,
account number and address attached to the
account.

Rogers Cable ISP Doxing(Employee Method)

Tool(s):
- V21
// Master-tool, also known as Vision
21. Every tier has access to it.
- ICM
// Looks up account, used by
wireless agents.
- Telli
// Sub-tool of ICM, allows you to check
devices on account and contracts along with do
updates and change SIMs.
- Nova
// Resource finder, answers
questions regarding tools/products/policy.
Employees only.
- SGI
// Looks up account, used for
internet/cable agents for internet, cable and
RPH accounts.
- Selfserve // Used for support seshs, agents
can generate links asking for pieces of
information on file (e.g. account #s and PIN)

Employee ID format:

First name:
Last name:
ID # (6 digits):
Postal code:

Employee ID(s):

First name: Taylor

ID #: 909837
Call Center: Berry HTS
Supervisor name: Adam

Term(s):
- RSD
- cx

// Residential Support Desk

// Customer.

- FlexTab // The amount left owing on a

phone's subsidy.

Links:

https://www.rogershelp.com/customerserv/ERD
.php?s=6 // Employee chat support login.

https://www.rogersphonefinder.com/ // Trace
any Rogers-connected phone.

12:12 PM Connecting...
12:12 PM Connected. One of our Rogers
specialists will be with you shortly. Please
standby, you will receive an alert when we're
available to help.
12:13 PM Support session established with
Rodeny.
12:13 PM

Rodeny:

Thank you for choosing Rogers, home of Rogers

First Rewards, you have reached Rodeny. For
your references your session id is:271902889
12:13 PM

Nathan Haines:

Hello, I'm a new employee (this is my first shift)

and I was wondering if I could ask a few quick
questions? My supervisor and RSD are busy.
12:14 PM

Rodeny:

I understand
12:15 PM

Nathan Haines:

I know about ICM and SGI, but what does V21

do and what would I use it for?
12:16 PM

Rodeny:

It's to view the account's information, to make

changes and more.
12:17 PM

Rodeny:

V21 looks messy If it's your first time seeing it

so I understand. It's were you see there plan
and details.
12:17 PM

Nathan Haines:

ICM is for wireless, SGI is for internet/cable, so

what would it exactly do besides them?
12:20 PM

Rodeny:

What do you mean besides them sorry?

12:20 PM

Nathan Haines:

What other things can it do that they can't?

12:23 PM

Rodeny:

I'm wireless department so I don't use SGI. But

in v21 you can change the bill cycle's changes
plan, reset voicemail, make payment, change
adress upgrad and more.
12:23 PM

Rodeny:

But what department are you in?

12:23 PM

Nathan Haines:

Internet/cable
12:24 PM

Rodeny:

That's what I tought If you want I can transfer

you to an cable agent instead. What are you
trying to do actually?
12:25 PM

Nathan Haines:

Nothing, I just had some questions about the

tools.
12:25 PM

Nathan Haines:

Thanks for helping, and have a great shift :)

12:26 PM
Bye.

Nathan Haines:

Telus/Koodo ISP Doxing(Employee Method)

Tool(s):
- Synapsis

// IP/MAC address 2 account.

- Smart Desktop // Any other lookups.

ECB ISP Doxing(Employee Method)

Contact:

- Phone #: +1 (423) 648-1372

Tool(s):
- Omnia
- iCall
- Cad
- Toolbox
- Element

Start off by calling

When you get on the phone with them, just

explain to them that you're having troubles
accessing your Omnia and your Toolbox and
need some assistance. Then prompt them to
open up their Toolbox.

After their Toolbox is opened up, they will see a

slot named "DHCP Search" This is where they
should type in the IP address.

After that they're able to view everything on

the customer's account. They can even view
the full SSN!

Here's some info I got after my very first call to

EPB:
IP: 173.247.29.4
Zip: 37363
Name on file: Dixie Ayers
SSN on file: 421-29-5864
Phone on file: 423-362-1258
Address on file: 7017 Flagstone Drive,
Ooltewah, TN 37363
Account #: c10208364
Primary Account Email: dayers30@aol.com

CableMo ISP Doxing(Employee Method)

*Yet another shitty local isp which is exclusive

to Missouri.

===Tools===
-?
-?

===IP Lookups===
Method 1: for CableMo IP Lookups, tell the
agent to go into ?

Guadalupe Valley Telephone Cooperative ISP

Doxing(Employee Method)

http://gvtc.com/

Telstra ISP Doxing(Employee Method)

===Tools===
- Siebel
- Discovery // Sub Options in Discovery =
Customer Search, Cable Tools, RMS, Device
Management, Log off
- OATS
- Siam
- Moby

===IP Lookups===
Method 1.: Have the agent open the Discovery
tool then from there have the agent go to the
RMS sub option in the discovery tool then
they're 3 search box's:1st is Username, 2nd is
Serial Number and last is IP Address.Have the
agent type the IP in the IP Address search box

and it should return the information on the

account.

===Employee Id's===
ROMANO
D400339

====Law Enforcement Impersonation

(Subpeona Method)====
The second way to ISP dox someone is to fake
a cop or federal agency of law enforcement to
gather information attached to an IP
Address.This method is notoriously used by the
blackhat hacker killerpop89 before he got
owned by cosmo and the rest of ugnazi.Unlike
employee impersonation this method is a wee

bit harder but it is possible.First you want to

find the subpoeona compliance line or similiar
law enforcement helpline which I will provide
all the contact information below for all the
common ISP's.Sometimes if you can't social
engineer the legal department fully they may
keep asking you to send in a subpeona which
you can photoshop a legit looking one and to
send it in you can use a service like efax
(efax.com).After all that is done you should get
the information sent to you over phone or over
email.

TL;DR:
1) draft up a fake subpoena for the IP adress
you're targeting
2) send the subpoena into the ISP for the IP
adress
3) call legal department after hours, you will be
transferred to general support
4) tell general support you're calling RE:
subpoena and tell them you need the
information ASAP.
5) They will happily disclose anything you want

to know regarding the account

======Copyright Infringement
Method=========
Send an email to the ISP claiming the user is
using your video content on youtube without
your permission and that youtube is facilitating
the infringment, say you have the users IP
Address and need the subscriber's phone
number so you can contact them and warn
them of any future infringement.

========Account Holder Method(Internet

Troubles)========
If you pose as the account holder and give a
fake phone number, fake address, fake name
and if the agent can't pull an account up act
confused and say thats honestly really strange
because I set up my account with all the
information I gave you, well I upgraded my
modem and picked it up at my local billing
center and ever since then my internet hasn't
been working and I honestly havn't been able

to get on the internet at all nothing loads, im

on cmd and have ipconfig opened with my
wide area network IP Address maybe you can
check my account my pulling up the modem?
I'd give you my modems mac address but
literally it's scratched out I have no idea why it
came like that please help me I work online
and will lose money if I don't get my internet
working again im so frustrated this honestly
never happened before.
Note*:This pretext works incredibly well on
local isps such as penteledata, armstrong,
nuuwave and isps that only have less then 1520 employees, they will look the IP up almost
100 percent because they will see your upset
and want to help you.

========Account Holder Method(Neighbor

Has Stolen My Internet)========
Call up the target isp and use the method
above except instead of internet problems
mention your neighbor stole your modem and
you had to buy a third party one temp and you
think your accounts not coming up because the
internet traffics being directed to a different

modem, say you need to have them try to

locate the account by IP Address to bring up
the correct account because their system
might be confused.

======Activations Method=========
Note*: this is an ISP exclusive pretext!

If you call the "activations" dept at your isp

which is the dept that handles modem
provisioning and activations you can se the rep
for a possible IP Address. The way activations
usually provisions the modem is you provide
them the MAC address of the modem, instead
what you can do is mention your modem was
faulty and never came with a MAC address
sticker on it but you need to apply for a specific
job position which ends in one day and its very
important the modem works again say the
modems CPE IP is showing and say you need
your modem provisioning by the CPE IP leased
to the modem due to issues with the modem
MAC, they will pull up an account and you can
then say for future reference you need the mac

address so you can write it on a sticket and

slap it on the modem and then you can call any
other dept which can do MAC address searches
OR you can just social all the info from
activations whatevers easier on you.

========RIAA Method========
Send an email to the victims ISP with their IP
Address and say that your a representative of
the RIAA and one of your board members was
checking seeder ips distributed via the utorrent
client and you noticed they were pirating music
and you want their information to sue them in
court, say you want this forwarded to their
email and say you want them called as well
cause they've previouslly been doing this and
may have not received the email then have the
ISP forward them a burner number which the
victims parents/account holder will probably
call asking about the alledged infringement
and then you can get their house number
linked to their ISP account which you can then
use to pull up the rest of the account to get
everything else its a type of isp doxing by

"proxy" since the isp is doing everything on

your behalf, theres no known way to get info
directly via this method yet but methods are
currently being tested via other depts hoping
to receive info.

=======Child Pornography Method 1

(National Center for Missing & Exploited
Children's)========
Say your a representative for the NCFMEC and
that your employee ID number is 6Yui5R and
that you found an IP Address distributing child
pornography and need the information on file
so you can help the child out and hopefully if
your lucky the agent will look up the IP address
for you and provide you all the info you need.

======DDOS Method=======
Note*: this is a very notorious/infamous
method used a ton back in 2010 when it had a
huge popularity during the xbox halo 3 days.

Call into the ISP saying a person in your xbox

live party is DDOSING you and you have their
IP Address and need their name and address so
you can get them to stop since they are
continuously doing it and you make alot of
profit from live streaming and every second
your IP address is not allowing outgoing
connections you are losing alot of money and if
the agent is understanding they will give at
least a name if not an address, alot of people
used to use this method, its not patched like
people falsely claim its just very saturated and
doesn't work as good as it did back in 2010 but
still definitely works.

=======Law Enforcement
Impersonation(Badge
Method)===========
Before starting this method call up the local PD
in the city of the IP address your doxing and SE
a cop for their badge number and barracks
number, call the isps general support/legal

dept/tech support alot of diff departments will

work for this experiment but anyways you call
up posing as a local police officer and you
claim the person at this IP address is sending in
multiple bomb threats to big public places such
as malls you can get more creative with this
pretext but anyways the agent will ask for
barracks/badge number oasscionaly they will
want a callback number for the station a
dummy VOIP can be used here but if that
doesn't happen and if your lucky you can get
the info just given to you but sometimes it may
require a callback but its rep based so its the
luck of the draw when your isp doxing with this
method, anyways after the agent provides all
the info on the IP address your pretty much
finished.

=======Law Enforcement
Impersonation(Email
Method)===========
Call the legal emergency quick hotline at your
targets isp and say its an emergency and have
them email you the special release form to a
dummy email, forge all the info and email it

back to them and they will instantly provide all

the info on that IP address, this method was
found a week ago on comcast as an optional
pretext if employee impersonation doesn't
work.Occasionally they will call back the fake
police station number on the form and or field
office if your posing as FBI so I highly
recommend using a VOIP just in case.
Note*:Use a VPN!!!!! this pretext is much more
illegal and more risky then the rest.

=======Law Enforcement
Impersonation(FBI Agent
Method)===========
k, so in this method tutorial I created i am
going to show you my way ISP doxing.
First you are going to need a few things. Such
as a fake name, fake badge #, and the FBI field
office you so called work at. Call customer
support for either one of the following ISP
numbers.
Windstream Customer support- (866) 445-5880
Comcast Customer support- (800) 934-6489

Verizon FIOS Support- (800) 837-4966

Call which ever ISP you are doxing through.
Once an agent answers the phone follow the
conversation bellow. (Mandy=Support agent) I
will use Comcast as an example.

Mandy: "Hello my name is Mandy welcome to

_____ customer service how may i help you?"

You: "Hello Mandy my name is John Herrington

Agent Number 22791 Badge number
JTT047101111. I work for the Federal Bureau of
Investigation in Chicago, Ill. I just spoke with
your supervisor about an on-goinginvestigation regarding a Comcast customer,
He said to call the support and one of you
could give me information on a customer IP
Address."

Mandy: "Sure John, can I have the IP Address of

the customer?"

You: "Yes ma'am the IP is _________."

Mandy: "Ok, one second while i pull up his

records."

You: "Thank you."

Mandy: "Ok John, his name is ______ address

line is _____ and phone number is ____."

You: "Thank you Mandy for your time and

help."
-----------------------------------------------------------------------------------Simple Doxing Method but works I'm pretty
sure a lot of people know this method but i just
decided to make a tutorial so hopefully this
helps you and is a successfull dox.
Note*:This method was leaked by a BWA
member but most likely known even before
that, im just resurfacing it in this guide since
some people may not have seen or known
about it.

I hope you all enjoyed this guide and expect

major revisions to this in the future.