Finding WEIRD Typosquatting Websites

Рет қаралды 280,331

Ай бұрын

jh.live/flare || You can track down shady sellers, hunt for cybercrime, or manage threat intelligence and your exposed attack surface with Flare! Try a free trial and see what info is out there: jh.live/flare
Free Cybersecurity Education and Ethical Hacking with John Hammond
📧JOIN MY NEWSLETTER ➡ jh.live/email
🙏SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎FOLLOW ME EVERYWHERE ➡ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/discord ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
🔥KZfaq ALGORITHM ➡ Like, Comment, & Subscribe!
Music sourced from Artlist.io
Alon Ohana - Parallel Room
Stanley Gurvich - Sunny Days

Пікірлер: 275

@memesfromtheforsakenworlwi9218 Ай бұрын

fun facts, most companies buy as much of those "typo domains" to make them redirect to the real site

@madloudnoises Ай бұрын

Ah, I was wondering why they kept redirecting to the real site. Cool!!

@Azuuraas Ай бұрын

yup, i know for sure google did that

@GOOFLEr Ай бұрын

'Most'

@kuromiLayfe Ай бұрын

still check if you are on the real site.. as the scammers can spoof the address bar and status bar to show the official url (and of course also the titlebar and all links when using inspector). just takes 3ms to replace what is shown the moment the page or hover is activated.

@BillAnt Ай бұрын

Cuz many type "goggle" when typing fast. lol

@kalicxingnjenga9657 Ай бұрын

Please do a video showing what’s inside that APK.

@TomJacobW Ай бұрын

hearted - neat! Looking forward to seeing that!

@infohazard Ай бұрын

I was really annoyed that he didn't do it xD

@IDontModWTFz Ай бұрын

Get APK tool and do it yourself, apks are really easy to re

@posifurg Ай бұрын

Im going to do a vid showing the APK - ill post it when i can

@DEZXD1 Ай бұрын

The apk says failed to download something

@dinosaurgardening2401 Ай бұрын

I know the guy who bought Google with 3 ooo's. He bought it in high-school because he was smart. He isn't a scammer.

@4rumani Ай бұрын

Yeah very smart lol. Obvious WIPO violation, no legitimate interest, bad faith typosquatting

@Linkman8912 Ай бұрын

@@4rumanichill

@justarandomchannel1319 Ай бұрын

Bro could prolly sell that for alot tho

@ihatenerds4689 Ай бұрын

@@4rumaniyou are a sad being

@Limelaz23 Ай бұрын

@@4rumani y so salty

@kyokazuto Ай бұрын

"I think that is the real google", he says looking at google from 10 years ago

@mordechajloooo 18 күн бұрын

interesting

@Yadobler 16 күн бұрын

I believe that some devices will result in the old version loading, probably for compatibility

@kyokazuto 16 күн бұрын

@@Yadobler I highly doubt that

@rosenette11 7 күн бұрын

@@Yadobler You're right, my Vita loads exactly this ver of google

@aloedg3191 7 күн бұрын

"I highly doubt that" -🤡@@kyokazuto

@bdot02 Ай бұрын

Personally like "guthib"

@szabolcstoth822 4 күн бұрын

Yap, also my favorite.

@AKABeestYT 27 күн бұрын

I love the typos for regularly nsfw sites that redirect to sites that ask you to repent and fix your ways

@fruitynyanko7316 2 күн бұрын

How did you find out about such sites 🤨📸

@AKABeestYT 2 күн бұрын

@@fruitynyanko7316 twas simply a passing thought

@spimbles Күн бұрын

@@fruitynyanko7316by being a normal human being and watching porn, if i had to take a total shot in the dark

@dubplater 20 сағат бұрын

@@spimblesthats not normal

@wombatpandaa9774 Ай бұрын

Near the beginning I jokingly thought this was going to be an ad segment for Nord VPN but to my pleasant surprise it's an actually really useful FOSS tool. Love to see it.

@Gamerappa Ай бұрын

14:34 google looks like this on certain user agents, it's their old design from 2011-2013

@kidnamedfingor Ай бұрын

Just to let u know, when i went on the googie website, there was some illegal content, if i were you i would cut that part out. I went on that domain i wish i could unsee what i saw.

@jjprisma3d Ай бұрын

It’s really traumatizing.

@kidnamedfingor Ай бұрын

@@jjprisma3d cant believe he actually let it slip into this video

@jjprisma3d Ай бұрын

@@kidnamedfingor Atleast he blurred it.

@jjprisma3d Ай бұрын

@@kidnamedfingor And also, whoever's chid was that. I feel bad for the parents. The person who did that shoud be ashamed.

@kidnamedfingor Ай бұрын

@@jjprisma3d I translated the Chinese and it said that it was the dad who did it

@adamn0 Ай бұрын

please don’t go to the website at 19:40 i wish i wasn’t curious and went to it i think you should blur out that link or remove that part of the video it’s absolutely disgusting

@zixea3318 Ай бұрын

yeah there’s CP on there 🤢

@donaldud-deen7604 17 күн бұрын

Bro whats in there?

@dan_loeb 13 күн бұрын

this is one of those things where it's best not to check at all. there is a really messed up image there.

@tankman5783 13 күн бұрын

@@dan_loebman just describe it i dont want the fbi knocking on my door

@dan_loeb 13 күн бұрын

@@tankman5783 the site has c.s.a.m. material and should not have made it in to the video period. If you don't know what that means it's often called cp. if you don't know what that means, I'm not going to describe it, as it violates yt policy and should be reported and avoided.

@ExperiencersInternational Ай бұрын

It was funny seeing Goole as one of the screenshots 😂 Had some fun with pronouncing it when driving past signs for that place on the motorway a few months ago

@Fluttergoat Ай бұрын

Isn't a $32/Month virtual server absolutely overpriced and overkill for this? Maybe I just don't know enough about the program or droplets so I'd be curious if there was a genuine reason it had to be that expensive.

@T1C Ай бұрын

Probably could get by on a $5 vps

@tbuk8350 Ай бұрын

he could've probably done the same thing on oracle always free compute

@Scootakip 7 күн бұрын

This video really is the meme of "Linux users trying to install a web browser"

@U20E0 Ай бұрын

KZfaq actually owns the domain youtobe, apparently

@81gamer81 Ай бұрын

you to be, is actually how its meant to bee. Monkey see monkey do. They decide what you see, and what you do

@FnafAcc-bg9vn 3 күн бұрын

Oneshot

@cybercub4367 Ай бұрын

Please do reverse engineer that APK, we're bound to find something juicy there 😂

@unchained_jb Ай бұрын

With adult sites it's even crazier

@dingusbrule5756 Ай бұрын

Lmfao

@Nodsaibot Ай бұрын

zvideos

@oz_jones Ай бұрын

Stop watching corn.

@LeReubzRic Ай бұрын

@@oz_joneswhat about carrots

@kab43 Ай бұрын

@@LeReubzRicno. only peas and cilantro/coriander

@kiwipomegranate Ай бұрын

Please make a part two I wanna see more about that "live (ph)fishing game" and the Amazon typosquat hijinks

@ThisIsJustADrillBit Ай бұрын

Its such a fun rabbit hole watching malicious domains as they are registered. Weird how many of them sre hosted behind cloud flare these days... 🤔

@chigga5years173 Ай бұрын

Why does cloudflare even support them?.. I recently got an sms scam of gettimg rich easily and upon scanning and tryim7to find vulnerabilities of those scammers.. I didn't get anything

@PazLeBon Ай бұрын

cos cheap hosting is slow :)

@chrissametrinequartz9389 Ай бұрын

or it could also be (for whatever reason) that, thats what they are using to manage their domains or smth

@greenockscatman Ай бұрын

I like the raw realism of the Linux experience at 17:30

@purplepeak8575 Ай бұрын

Trying this back on Windows 95-Windows XP days is a guaranteed PC destroyer.

@WALLE1D1W 13 күн бұрын

Funnily enough, today it's probably safe to do this on the MS-DOS based Windows 9x versions of Windows, as they're too old to be a worthwhile target for malware. All the viruses that you might encounter naturally expect XP and later. At least, according to MattKC's video on the subject.

@circuitgamer7759 Ай бұрын

I would love to see you doing this more, it's just really fun to watch you have fun with it :) Also looking forward to you looking through those files :)

@ricestrange Ай бұрын

The true video begins somewhere at 13:00

@zixea3318 Ай бұрын

Linux users typing the entirety of their computer’s code into the command line just to make a new folder: 🤬🤬🤬

@thesoftone Ай бұрын

^ this user knows nothing about computers

@spaghetti5914 15 күн бұрын

@@thesoftoneSalty linux user ^

@thesoftone 15 күн бұрын

@@spaghetti5914 ^ GIGA cope

@spaghetti5914 14 күн бұрын

@@thesoftone This user doesn't know I'm a linux user as well ^

@Shoegaze- 14 күн бұрын

Lain pfp hating on Linux… Get off TikTok lol

@AtlasBit Ай бұрын

I love your videos. Thank you for your efforts to raise awareness.

@WebDesignerAmy Ай бұрын

This was a great utility to learn about John! Def found some permutations of some domains I own and those for another creator that came up. ty!

@pitche Ай бұрын

14:33 It's an old Google UI :) Thx for the likes 😆

@papei.taisii 6 күн бұрын

I have fallen for Agor,io. I wasn't scammed, but traumatised (TW: loud sound + flashing Jeff the Killer image)

@bokrayoomjdeed Ай бұрын

loved this thanks JOHN ;)

@Noctuu Ай бұрын

Loved this video, u should do more “unserious” funny videos, either here or on a secondary channel

@uuu12343 Ай бұрын

This is genuinely amazing for Typosquat monitoring and intelligence gathering

@k1ngslay3r41 Ай бұрын

lol I never noticed you owned a whole island of dinosaurs that's AWESOME!

@februalist4686 Ай бұрын

WE NEED a continue of this series

@skelkankaos Ай бұрын

Really enjoyed this video because it's a topic that's interesting and you let it be interesting on its own merits instead of overly sensationalizing it

@oz_jones Ай бұрын

Youtubs - for all your Jacuzzi needs!

@dannydetonator Ай бұрын

As someone not well versed in IT, coding and html, i just learned a bunch of new words here. Typosquatting just made me think of my poor-ass unaccomodated seasonal-worker (initially) eurotrip.

@iBridgee Ай бұрын

Who knew typosquatting could be so bizarre? 😅

@nrhowe84 Ай бұрын

That is such a cool tool, would love to see a video on what is inside that apk file. Great video keep up the great work that you do.

@rocket01666 Ай бұрын

Crack open that APK next PLEASE!

@EVENCOOLERTHANJOHN Ай бұрын

F I S H I N G L I V E G A M E . A P K ( 2 0 )

@user-cd4bx6uq1y Ай бұрын

16:59 that's master Rama isn't it? The cult Edit: 19:41 amazing reaction

@monkepog3236 Ай бұрын

theres even illegal content on it, jail for at least 30 years for hosting it

@lordvgames Ай бұрын

should do more dnstwist shenanigans, really fun to see what you find

@Lo-Sir Ай бұрын

thirteen whole minutes of bullshitting to get to the real video

@maskstorm2881 Ай бұрын

Ikr

@BrimmFate Ай бұрын

Adversaries is a funny way of describing scammer. Like calling them enemies

@CainXVII Ай бұрын

This was great. Would have loved to see some other websites too. And what was actually in that fish file....

@milentiusgaming Ай бұрын

looking forward to THE video of the breakdown of the APK, maybe there was more to the "nothing" in the empty text file....

@aidi4886 Ай бұрын

I choose you John. Make me smart!!!

@bokrayoomjdeed Ай бұрын

Hilarious maaan daamn! nice video bro really thanks.

@blakeeey27 28 күн бұрын

i love the term typosquatting sm

@cormarcormar 21 күн бұрын

the phishers are just squattin on that typo

@oussemabenayech2345 Ай бұрын

every jhon hammond should get into a fight and see who will earn the name

@PazLeBon Ай бұрын

not a fight, even a dummy can win a fight

@DerMarkus1982 Ай бұрын

Let's see if Jason will feature John Hammond in a clip compilation soon 😁

@ownmicelio Ай бұрын

Please do a part 2

@half-faust Ай бұрын

Ah, the eternal internet nemesis: people with the same full name as you.

@ErichSchulz Ай бұрын

It seems to have a domain name size limit when using the web interface.

@abdoudicko5352 Ай бұрын

You are the best

@yewo.m 18 күн бұрын

This gave me "hacking in movies" vibes

@thesoftone Ай бұрын

kinda makes me want to try live booting Kali maybe, cool vid

@JohnDoe-bd1qe Ай бұрын

Now I see the true meaning of the minor spelling mistake meme.

@sucra0710 Ай бұрын

Dnstwist it, bop it, pull it

@lancemarchetti8673 Ай бұрын

Brilliant

@Ilikeflowers22 Ай бұрын

Unrelated, but i really like your hair :)

@Jarkabob Күн бұрын

I tried that one time and got a virus 😭

@joebambanchannel Ай бұрын

The best,👍

@v.adithya1768 Ай бұрын

Hi, When i run the --phash command, I get this error even though selenium is already present in /usr/lib/python3/dist-packages dnstwist: error: missing Selenium Webdriver

@cherno6592 Ай бұрын

that fishing live game is advertising as that one gambling game or application, it on Indonesian language

@pollywops9242 Ай бұрын

Super useful tool

@stefanjohansson2373 Ай бұрын

16:50 Never seen this?!

@mattsadventureswithart5764 Ай бұрын

Based on the one guy I met with that first name, its pronounced "Mar cheen" with the "mar" being the same as "mark" without the k, and "cheen" being the same as "cheese", with an n instead of the z sound.

@abdelhay. Ай бұрын

WE WANT MOOORE OF MALWARE ANALYSIS VIDEOS PLEASE.

@malka1762 19 күн бұрын

gotta hand it to the fishing "devs", they're kinda transparent when you think abt it 😂

@Ramonatho Ай бұрын

Wait. Hang on. I noticed something about that slots game with the automatic download. On the section that says "The New One" it mentions Bob Slots, a youtube channel I watch, who has never promoted this app. That means they're scraping ultra specific small slots youtubers and saying they're promoting their game. Bob isn't a big channel. This is truly weird stuff.

@scrungles7853 Ай бұрын

I have no idea what you're talking about, nice!

@maskstorm2881 Ай бұрын

Same here

@harrylumsdon6773 Ай бұрын

Chrome and edge has the safe search option??

@The_hot_blue_fire_guy Ай бұрын

Is there a program like that website detecting thing for people who use normal operating system like windows or Mac OS and not those hacker OSs like Linux. You know, normal software for normal people that actually exist in the real world.

@scykol 19 күн бұрын

domain expansion: typo

@UltimatePerfection Ай бұрын

Marcin is (roughly) pronounced as Martzin.

@methical__ Ай бұрын

Interesting you don't know plesk, is this a europe hosting thing?

@gurukuappannadora8982 Ай бұрын

Excellent stuff but we are missing actually what you are explaining kindly explain your experience in slow motion I feel it something like something that computation is going here

@attilazimler1614 Ай бұрын

Looks like from the gy start for youtube that it is having a base assumption that the keyboard layout is English.

@torrtoise Ай бұрын

alternative title: linux working as intended

@MFoster392 Ай бұрын

Very Cool :)

@YTInnovativeSolution Ай бұрын

Daily Dose of Internet is one of the best channels ever made. Thanks for your daily dose Mr. H.

@AmCanTech Ай бұрын

The site that redirects to aliexpress is likely a 3rd party that outputs their affiliate kink so they earn a commission... even if you dint shop via that link directly, a refer cookie is likely stored such that if you end up shopping within X amount of time they get credit for the sale.

@mattnaylor29 Ай бұрын

There is a bank in the uk called first direct. My 80+ year old family went to fist direct, it was a fisting porn site.

@Karman7 18 күн бұрын

I actually made a typosquatting website that i obviously took down but i was trying to cause drama with other kids at my school at the time. I was copying a website at my school and i talked about the real website talking bad about it saying it was the fake. Then i blamed it on a innocent kid not in the drama... Lets name him Dave. Then i told the Actual creators of the real website saying that Dave stole your website. And thats when they confronted Dave and i was just laughing the whole time... Now i know it is very evil... So then i just decided to take down the website because thats when i realized that i was evil...

@Qw3rtyLly 23 сағат бұрын

Goop gle dev is a jokester lol

@RandomGeometryDashStuff Ай бұрын

12:43 why didn't it understand --screenshots -t as save screenshots in directory named -t

@rob-890 Ай бұрын

He's doing the thing where he repeats synonyms over and over again 😂😂😂😂

@Breecheesegeez Ай бұрын

i've seen roblox typosquatting websites before

@gamernikan Ай бұрын

cool (there is not your ip at 15:48)

@purplesam2609 Ай бұрын

I wanted to go to the SpongeBob website as an 8 year old kid on my grandma's laptop and I found a site with a photo of some random man with a typo

@theappealtoheaven Ай бұрын

Please more of this, also please install the apk. 😂

@Nitroband Ай бұрын

I hope you were running a VPN, your IP Address got dropped by one of those pages.

@wombatpandaa9774 Ай бұрын

I'm pretty sure that was the digital ocean ip and not his host

@Nitroband Ай бұрын

@wombatpandaa9774 Okay, that's good then!

@someaccount5200 6 күн бұрын

I accidentally typed amazone instead of amazon and it popped open amazon but in a different language

@someaccount5200 6 күн бұрын

It was a redirect link

@SilentOnion Ай бұрын

14:33 is not really "strange" google its just the old design from like the late 2000s.

@Steve60638 26 күн бұрын

1jt+ means 1 million plus.

@aryaroxanne3225 Ай бұрын

wow that apk. funny stuff

@Nooner301 2 күн бұрын

a little help, the live fishing page is in Indonesian, prolly trying to steal info or malware due to how many people use gambling / slot sites and apps here. 1jt is 1 million, reffering to downloads