User Controls

  1. 1
  2. 2
  3. 3
  4. ...
  5. 18
  6. 19
  7. 20
  8. 21

Posts by Misterigh

  1. Misterigh Houston
    I've seen charges on credit cards where the merchants name is something like 'asdfhushdu' or 'ndfguehrutheur' or some other random string of characters. What is it that causes this? Is this like some conversion for a foreign language? Usually there is no other info. No city/state. No transaction type. Sometimes the amount is even $0.00.

    Who are these merchants and how can I learn the ways of those who use these merchants for fraudulent activity?

    Thank you for your time.
  2. Misterigh Houston
    Originally posted by Sophie Also, i don't think anyone is just going to give you a PoC that could potentially make them millions.

    lol, yeah I was joking about that part. I think it's just a newer subject that hasn't really been explored much but the profits could be massive.
  3. Misterigh Houston
    Originally posted by Sophie Are these vulnerabilities 0day? If so Zerodium will pay a premium for those.

    Let's say hypothetically that there was an issue with NIS and someone could modify(maybe SQL, maybe not) a request that was being sent to the server and could get back somebodies password. Things like that, but with other data like SSN, DL, DOB, MMN, etc. Maybe US government sites, maybe not.
  4. Misterigh Houston
    I was hoping to use P4wnP1 to do something. High risk due to possibly getting caught slipping one of these on the machine.
  5. Misterigh Houston
    Does anyone know anything about this or have any POC/tutorials? Specifically trustless bridges.
  6. Misterigh Houston
    I just discovered today, that due to new sophisticated fraud detection programs used by banks and Visa, I may not be able to pull of such amounts anymore. They are starting to push back a little.
  7. Misterigh Houston
    Lets say hypothetically someone had a bunch of live vulnerabilities in websites that could be used to obtain different kinds of information and that this person didn't feel like putting the time into harvesting the data, could these be easily sold?

    Would the US government buy these if they were within their own websites?

    Obviously it would be illegal for this person to find these, but what if the person just enjoyed finding them and wanted to make a little extra money?
  8. Misterigh Houston
    Three days of high fever and a sore throat so far.
  9. Misterigh Houston
    I need some ideas on determining what OS is running on a multitude of devices that are not my own and would be difficult to access. I think social engineering might be the best way but I am also considering spying using tiny cameras.

    These devices are devices such as payment systems at restaurants, cash registers, and other payment-related systems.
  10. Misterigh Houston
    Originally posted by vindicktive vinny consolation post

    ):
  11. Misterigh Houston
    I've been considering just using my own email server running on my own physical device. Maybe just use a rPI. I actually did this in the past but my ISP stopped all that.
  12. Misterigh Houston
    I'm not sure if it's what you're discussing, but I wrote up a little android app that creates a web forum and it only uses html and css. I ran it for a little while on TOR. It was ghetto, you posted on it and I had you pentesting it.

    It actually had quite a few bugs and there were serious security issues on it that I had not noticed at first.
  13. Misterigh Houston
    Install your favorite Linux distro.
  14. Misterigh Houston
    What should I do with these?

    I have a habit of making programs that collect all this data and then I refine it, sort it, and eventually add to it, then I redo.

    Is anyone else into this type of thing. It's like a fetish or something. I find it addicting and thrive for more. Not sure why though.
  15. Misterigh Houston
    I doubt my employer knows of the crimes I commit. And of the prostitutes I fuck.
  16. Misterigh Houston
    I bought one like 5 years ago.

    Takes to long to print and if it messes up, you have to completely start over.
  17. Misterigh Houston
    .onion
  18. Misterigh Houston
    I know little about JSON.

    My server accepts a integer variable and I'm just messing around with it trying different little things for fun. The only valid integer is 100, otherwise I get a Bad Request message. If I try sending the HTTP request with 50+50, I get

    Unexpected character ('+' (code 43)): was expecting comma to separate OBJECT entries


    So I tried (50+50) but I get

    Unexpected character ('(' (code 40)): expected a valid value (number, String, array, object, 'true', 'false' or 'null')


    To make things fun, I'm not going to check my server-side code and I'm going to try to manipulate things from my HTTP requests.

    When I try 100/ I get

    Unexpected character ('\' (code 47)): maybe a (non-standard) comment? (not recognized as one since Feature 'ALLOW_COMMENTS' not enabled for parser


    What should I try?
  19. Misterigh Houston
    Originally posted by General Butt.Naked Thank you for your service

    No problem kind sir.
  20. Misterigh Houston
    Originally posted by Quick Mix Ready (Cough)Narc(cough)

    Sell me some drugs.
  1. 1
  2. 2
  3. 3
  4. ...
  5. 18
  6. 19
  7. 20
  8. 21
Jump to Top