/r/blackhat

Photograph via snooOG

Focused on the ongoing discussion and documentation of vulnerabilities and exploitation techniques. Please read the rules before posting here.

We seek to discuss vulnerability and exploitation theory and [evading] the countermeasures used to deter exploitation. This is also a place to discuss general blackhat rules, etiquette and culture. We welcome:

  • Writeups (not CTF or HTB)/talks detailing new vulnerabilities or techniques (there should be enough information to reproduce the exploit/technique)

  • Proof of concepts of old vulnerabilities or techniques

  • Projects

  • Hypothetical questions

 

Rules:

  • Be excellent to each other.

  • No Solicitation

  • Stay on topic.

  • Avoid self-incriminating posts.

  • Pick a good title.

  • Do not post non-technical articles.

  • Ideally, the content should be original, we don't care about your crappy ARP poisoner or Kaspersky's latest scam.

  • No pay / signup walls.

  • No coin miners

  • No "Please hack X" posts

  • Well thought out and researched questions / answers only.

  • If your project is not free / open source it does not belong.

  • Please limit your posts (we don't want to read your blog three times a week).

  • If you want to submit a video, no one wants to listen to your cyberpunk music while you copy/paste commands into kali terminals.

The mods are ban-happy, you have been warned.

 

Other helpful links:

/r/blackhat

98,463 Subscribers

0

Where to sell an organic 58000 followers X account ?

Hey

From time to time I work with small-medium influencers. I got a client who's got a 58000 followers X account grown by themselves. No bots whatsoever.

They're willing to sell, but I don't know where neither the pricing.

Don't care at all if it'll be used maliciously, just looking to cash out

Any insight is appreciated

5 Comments
2024/12/05
04:55 UTC

1

Someone keeps stalking me and sending spam messages via telegram. Can the local police track him/her down?

I have blocked them many times but they keep coming back with new accounts. I guess because they have my phone number, changing my username doesn't stop them from coming back. I guess at this point I have to change my personal phone number. Any suggestions?

6 Comments
2024/12/02
05:55 UTC

0

How to spoof bumble app location without setting it to passport mode?

Scouting locations, if you know how apps work then you know. Women won't give a chance if you're far away. And they won't work in one week convos.

From Match to date it takes on average 2-3 weeks.

I'm not spending 2-3 weeks in a hotel room lonely af.

I'm scouting locations in advance

6 Comments
2024/12/01
07:47 UTC

0

How to scrape data from a website

How to scrap data from site, Like if someone fills out a form on a site, How can we get that information? Realtime whenever someone fills the form we get the information? From any website.

3 Comments
2024/11/27
20:51 UTC

0

Track down spoofed SMS

Does anyone have a good strategy for finding who’s behind a string of spoofed SMS messages? I used to have a website with analytics that I wish I still had so we could respond with a link and see what IP address clicks the link. Any similiar/better strategy or service like that? Backstory: Lately a bunch of my coworkers are getting harassing text messages, all from spoofed numbers (sometimes the numbers appear to come from one coworker to another, but it is definitely some third party sending everything). The person is digging up old social media posts, digging into family members accounts, sending creepy “I know everything about you” messages, with birthdays and other doxxing info. Nothing is technically illegal, so it doesn’t seem like the police would get involved. Figured the black hat community might have some tips. P.s. lock down your social media

17 Comments
2024/11/25
04:02 UTC

0

WhatsApp workaround?!?

Unlike telegram, It seems they don't recognize numbers from anything other than actual SIM cards. I tried Google voice, Skype, sly number, none are accepted. Any app or online service like the ones mentioned above that actually work for WhatsApp?

4 Comments
2024/11/24
00:44 UTC

0

Together

Looking for a group of hackers as I believe there's strength in numbers so if Ur in then please message me also if this post isn't allowed delete it as I'm not to sure if it is

11 Comments
2024/11/22
23:42 UTC

0

Need help with airbnb scammer. Want to catch him.

Someone tries to scam us with a airbnb phoshinh site. I have some knowledge of kali and the tools but not enough. Is there Someone willing to help?

3 Comments
2024/11/22
18:05 UTC

1

Is there anyway to retrieve iMessage messages from 5 months ago without having to reset the iPhone to that period (I don’t want to lose data)

2 Comments
2024/11/15
07:17 UTC

0

testing

3 Comments
2024/11/11
05:16 UTC

0

My girlfriend has a brother who is in the cybersecurity

Should I be worried that I've already been hacked and he knows what a class guy I am? What kind of software could he have installed on my girlfriends phone/laptop to allow for spying on our conversations?

e.g. He has full access to his sisters laptop, what malware/spyware/rootkit can he install on her laptop??

8 Comments
2024/11/10
20:48 UTC

0

Best Free VPN in 2024?

7 Comments
2024/11/05
09:45 UTC

0

Does anyone know BHW?

I know this post is about Black Hat, but it seems like the BH everyone is discussing here is different from the affiliate BH on BHW. Is this mainly a hacker tech forum?

1 Comment
2024/11/05
02:02 UTC

10

Spectrum vulnerability?

Someone at 3AM activated their eSIM with my number through spectrum 🥲 luckily I woke up around 4:30 today so they didn’t have much time to do much but they did change my bank password (they got locked out after trying to log in with new password they made because I had log in pins required that couldn’t be changed by them) and my Amazon account. Oh and obviously my spectrum account. When I called spectrum to deactivate my number (off my currently offline phone 😂) I wasn’t able to call them because it wouldn’t ring since I didn’t have service on my phone. It’s 4am and I was just waking up so be gentle on me. But I tried again from my girlfriends phone and the first person said they couldn’t do anything about it and sent me to tech support who told me they could transfer my number back to my eSIM if I could verify it was me by sending me an OTP to my number 😂 which obviously I wouldn’t be able to give him if he texts my number. But he then canceled my number and when I asked how this was possible he told me he doesn’t know but it’s been happening a lot. Anyways deleted my number off all my accounts including email which they never got into (if it were me that would be the first password I change) and changed passwords. Just curious how yall think this happened.

TLDR: Someone stole my number and started changing my passwords. Spectrum rep said it’s happening a lot. How?

19 Comments
2024/11/04
14:36 UTC

5

Terravision breach (2023-02-01)

Where can i find Terravision breach (2023-02-01) ? . I can't find it anywhere

1 Comment
2024/11/04
00:30 UTC

0

How do I bypass Administrator privileges?

How do I give myself admin privileges on a limited access pc?

Hi, I am at work and wanted to use an unused pc to try out hacking and stuff as I am trying to get into the cyber Security branch of where I work, and besides having some fun, I wanted to exercise accessing a PC with just the PC at my disposal without external media devices, I tried asking on r/hacking about how to do this particular task, but I was met with negative response about this being illegal and unethical (its neither, pc is empty and only used to access a local area website to write reports) and that I would be fired (no, I work in a place where I won't be held accountable for fiddling with some PC about to be replaced anyways, besides that I am automatically hired for reasons I won't go into, and am encouraged to show my prowess in different areas of security(cyber or otherwise) so I can get sent to more suit able Department etc etc...)

So, after this wall of text, what should I do? Keeping in mind that I don't necessarily have access to external media.

22 Comments
2024/10/29
14:36 UTC

0

Can you spoof a reaction in text?

I am an iPhone user and the suspect is an android user. I saw a text notification on my Home Screen that android had reacted to their own text. I thought maybe they were trying to copy & paste and didn’t bother to check it out. Today, android is stating I was the one who reacted and it does show my name under the reaction. Which I promise I only react other iPhone users.

Google told me that you can spoof reactions to text to make it look like someone else liked or disliked your text. Wanted to see how easy it would be to do something like this.

Edit to add: found out we are both iPhone but they are using 3rd party app to text me from (unsure what the app is). I am using the normal green messages app for iPhone. Basically want to make sure it can’t happen again or that they can’t hack my phone.

6 Comments
2024/10/29
04:06 UTC

31

Methods to reveal IP behind Cloudflare?

All I know is DNS history and censys are all possible ways, are there any other potentially better ways?

15 Comments
2024/10/28
14:02 UTC

16

Law Enforcement Hacked Infrastructure of Redline and Meta Infostealers

*Not fully confirmed yet

According to the website which was discovered through Redline related Telegram channels, law enforcement was able to hack the infrastructure of Redline and Meta Infostealers and obtain critical data

With the message being that more information is to come.

Find more information here – https://www.operation-magnus.com/

https://preview.redd.it/9ci8wu16qgxd1.png?width=962&format=png&auto=webp&s=8688bd0cf019e508502fa6b72e7d30fdee33b9a9

0 Comments
2024/10/28
09:04 UTC

0

Does anyone know how to get access to someone else’s instaa account?

9 Comments
2024/10/22
14:03 UTC

13

IPhone management tool on Linux

Hi i was wondering if there is a tool on Linux that is free and can help me manage my IPhone like installing firmware and manufacturing software restore and more...

thanks for the help

1 Comment
2024/10/20
23:41 UTC

Back To Top