My bad, thanks for clarifying

You can't validate arbitrary transaction even if you own 51% or more?

@@ahmedaghadi8281 I'm pretty sure you can yeah I'm confused too

@@mega4488 I mean if one own majority of nodes in a blockchain, he/she can hack it. That's what I know.

@@ahmedaghadi8281 Thinking about it more, I think you can say "address X paid address Y Z amount" and validate that but you cant make currency appear out of thin air but yeah that would count as an arbitrary transaction no? or actually I'm pretty sure you would need access to their private key to do that so what the op was saying makes sense about only being able to redo transactions

They usually ban ransomware and other such malware from their “customers”, but it doesn’t stop people from using it anyway

The botnet owner (bot-herder) doesn't care, I would assume if they are selling "installs" that they have a fairly large number of computers (bots). The physical owner is the only person actually harmed in the process (Plus I guess the BN owner could lose that system but it's all about money nowadays) Seytonic is correct though, due to the possible loss of that bot, they tend to disallow malware installs like this because if the person becomes aware their system is hijacked they will reset and the bot-herder will lose that computer. Apologies for the short paragraph, just my .02 I'll see my way out 🚪🚶‍♂️

Guys anyone suggest me course.. i want to learn botnet please

@@xoticxd 1) It's illegal. 2) Just asking is already such a massive opsec fail that makes it obvious you'd go to jail within months.

@@xoticxd first of all I hope you don't use that username across platforms because as the other person mentioned the process is highly illegal and opsec plays a major role in not getting caught. To answer your question though, first you should learn how networks operate and then how to gain access to systems over the air. Best way to start would be to set up a small network of your own and practice hacking into it (this method is completely legal because you own the systems you are attacking. From there you can use your skills to obtain access to other systems that you don't have permission to but as it was already mentioned this is highly illegal and I do not condone illegal behavior. Tldr: learn the fundamentals and then practice breaching your own systems. Not only will you gain skills required for offensive cybersecurity, you will also learn how vulnerable your home / test network is and discover methods to patch it. Edit: for legality sake I refuse to name specific courses but you are looking for offensive cyber security. If you really want to get skills, join the military and work with them doing cybersecurity. USMC MOS 1711 cybersecurity operations offensive is pretty good, you get top secret clearance which looks amazing on resumes, on top of the title Marine, if you're trying to get a job in this field but obviously you'll be red flagged doing so (both by asking malicious questions such as this one publicly prior to applying and once you have the clearance and have worked in the shop.{because at which point you know everything needed for the most part. Also, you kinda have top secret clearance so they put a spotlight on you}) there are also innumerable private sector firms who use offensive security. Godspeed!

One bad apples spoils the bunch.

greedy people always ruin things for others

Especially with the 100 000 : 160 ratio

@@Whatthellisthisthing yup

I really wish cryptocurrency didn't exist, for this reason. it's very existence causes immense harm to everyone, both through the wasted electricity and by making free CI tiers infeasible :(

lol

well github gives you 2000 minutes for free and they don't really care if you're spending those to mine crypto or for actual CI/CD. so i wouldn't really call that "exploiting". the "exploiting"-part is when you're mass creating accounts to essentially get more minutes per month

That's actually rather genius

Yes

They would least have the key 🤷‍♂️

This is the only comment I see about this and idk why it’s not talked about more. This just proves that the three letter agencies have back door access to majority of tech companies. That prism surveillance stuff is after all true. This isn’t a good look for digital privacy which is diminishing day by day

@@Skiman__ I am a software engineer and have always considered creating systems that allowed for more privacy, but I just know it would be targeted/hacked or I would just be fucked with. Its truly hard to separate ourselves from our online presence and takes a lot of work to pull it off.

I thought so too. The fact that they can see which icloud an email address is connected to and, extending on that, access it is beyond fucked up. We are talking about monetary crimes here, the dude isn't even a terrorist and even then it should be a grey area.

@@Skiman__ It's not backdoor access; it's just a warrant. Companies are legally required to comply and give any data that law enforcement has a warrant for

@@GrantGryczan They don't even provide warrants. All these companies just willingly give it away when asked for it lmao.

Probably hCapture

I managed to score some GPUs using Playwright during the shortage, on a store that used hCaptcha. The trick is to install Privacy Pass in the instrumented Firefox browser being used. Then you go to another website that uses hCaptcha and they give you trust points for every correct captcha you solve. When the script tries to order a GPU, the hCaptcha service sees your cookie and lets you through without a captcha. This isn't a vulnerability per se, because they obviously intended that behaviour. The problem is when website developers think just including a little script will magically solve their bot problems.

Dang, ur a hacker, harry

And it's been ramping up lately too.

I think they were already investigating his online identity before that.

Love hurts !

Hehehe Yeayea just FOLLOW it bro ;p

Google researchers a few months from now: Well most blind people do have good hearing, let's add as much random background noise as possible.

@@sansmoraxz this is already happening with captcha’s, some even do things like “type out the numbers” with audio containing more than just numbers but phrases etc

I think theoretically, so long as any US computers were hacked by them, the US technically has the power to request extradition.

yep that's what crypto knowledable people call useless coins with no market cap

I imagine these botnets have so many people, they just don't care if a couple thousand go offline. They're getting paid anyways.

@@chonchjohnch well, it's a free service. don't use it or pay if you don't want to give personal information

The point is crypto mining is already most likely banned on such services, and major cryptocurrencies are even blocked so you can't mine them (Bitcoin, Ethereum, Monero, etc.), but they don't care about it being banned, and they chose those small cryptocurrencies in order to evade the block - and of course a bunch of bot accounts with spoofed IP addresses. Have the CPUs not have AES support is in my opinion actually a bullshit, because first of all, AES is an algorithm and has nothing to do with CPU architecture (they could simply implement it themselves as well), and in some cases you actually need to test out some cryptographic features of your programs, so they have to support it, unless they're willing to lose customers in favour of competition that does support it. CLI integrations and testing environments have to be built so it's possible to test almost anything. Crypto mining might be banned, but legitimate use of cryptography shouldn't.

@@CZghost is encryption part of compiling? if so maybe only allow the cyphers used for compiling encryption and block the others.

You can get unlimited cc for free and also try to generate the numbers

That's where we're headed but it sucks for poor (and underbanked) people trying to get jobs in IT. GitHub and Heroku are so on are how you show your stuff.

now i’m curious. what does it have you do to mine it?

monero is designed to be only efficient to mine with a cpu

@@chri-k You go to a iron mine, put a raspberry pi there, then you sacrifice a goat and power the raspberry pi with potato batteries, then you mine in github

@@diablo.the.cheater 🤓

@@diablo.the.cheater don't forget the hack involving a blowtorch and some peanut butter to increase efficiency

Eh, it's often a tactful way to say "someone died"

this isn’t a good solution. it could work as a temporary fix though.

and keep blacklisting all new VPN IP Addresses, and Tor, and AWS, and...