Inside a Cybercrime Scam Operation
jh.live/snyk || Use Snyk to help review code! Try it FOR FREE ➡ jh.live/snyk
🔥 KZread ALGORITHM ➡ Like, Comment, & Subscribe!
🙏 SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎 FOLLOW ME EVERYWHERE ➡ jh.live/discord ↔ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
Пікірлер: 117
"I'll be honest, I write bad code" has to be the best transition to a Sponsor ad 😂
As a brazilian, seeing some account from SENAC (which translates to National Commercial Learning Service) being stolen is really sad. Poor Ana Luiza
@GustavoPinho89
11 ай бұрын
And that Grillz dude surely look BR 😂😂😂😂
props to the webdev who is being open about the issue and sharing the code so solutions can be found.
Hey there, noticed that the api key(1T1hE9XTKxb4yVBcwAgpN79sbAGvckiF) at 2:30 is a bitcoin address. Might be useful for further research?
That was wild. From a person new to the CyberSec field, seeing what the threat actors are doing on their own turf was both fascinating and scary. It's one thing to deal with hypotheticals all day, but to see their posts and sit in front of their monitors... damn.
@gooniesfan7911
11 ай бұрын
its code from 2019 calm down lil bro
As someone who speaks Arabic I died laughing when the chemistry channel appeared 🤣🤣
@lumosyob
11 ай бұрын
saame xD the more freaked out john was the louder i laughed
@logiciananimal
11 ай бұрын
May well be a good place to host an exfiltration vector!
reminds me of my study days at the espresso bar, being all new to SQL and PHP. good thing i could understand what it was doing by myself.
The last one, even John couldn't hold his laugh xD
Your wild J. Freaking love it! Keep it up'
I really loved right at the end, that you did show your struggles proving that you are human 🤣
Excellent John.
Mr Orange Flavoured John, more of these please. Love from a member of the crew of Vanilla flavoured Jon.
I love script kiddies who write fake copyrights into their malware telling me what makes a real programmer😂😂😂😂 (or should I say "coder")
@retzerR
11 ай бұрын
Most of the code is so basic, one was like 20 lines of actual code, and they want to "copyright" it😂
The email username shown early in the video, "jrountree", is the name of an American bank robber famous for robbing banks in his 80s and 90s who was called "the oldest bank robber" in the media at the time. Seems like this guy has no problem with people thinking he's a thief.
10:17 if the intent was the blur out that output blob, it's perfectly visible for a number of frames before the blur kicks in!
Hello, any chance for writeups for nahamcon 2023? I would love to see intended solutins for one zero 1&2
at 13:29 probably meant 1 millions Paraguay dollars which is actually like 130 usd lol.
Regarding the the last one by "mrcew," the language used is Arabic, and upon closer examination, the content presented in your video does not appear to involve any form of scamming. In fact, the it focuses on third grade courses related to chemistry. Btw: I didn't check his channel, I just wanted to rectify any misunderstandings regarding the content displayed in the video
Instead of pw protected archives, i used to put a zip inside a zip to avoid scans. Does that still work?
LMFBAO at the end🎉 But John, are you NL?😮
Yeah, trying to use Google apps on Tor is a nightmare. :D
those last ~20 seconds were so real
lmaoo. the end with the sea of google captchas. i empathize . . . 😭
12:10 Isnt it kind of redundant to redact data later on when you show all of it on screen at 10:20 ?
@YoshiAsk
11 ай бұрын
It's blurred?
@sdsdsdssdsdxdd
11 ай бұрын
@@YoshiAskit wasn’t when I commented
@vaibhav3852
11 ай бұрын
10:17
@vaibhav3852
11 ай бұрын
Don't know the reason for the blue, do tell me if you know it
All of Spox and Blackhat Egypts fans are just malding in the comment section, that's how you know you did a good job dissecting their skiddy scripts 🤡
I recognised your voice as the one from the Blue Team Level 1 video courses... Is that correct ?
O man, i really love this!
Hey John, Is it possible to share the package?
This is amazing!
the last one they looked like they were studying because its exam season right now...nothing weird about it.
the software that used in rdp was open-bullet its a account bruteforcer tool .... 16:28
@H4ckWise
11 ай бұрын
no this one is "silver bullet"
those are phising page. If you dig more then lots of things will come and you will find Lots of Indian scammers (bank scammers).
I think sk-live string @ 18:00 on line 31 is their stripe API key 😂
god tier blur @ 10:17
1:40 Perhaps "yes" is enumerated (somewhere else) in an _enum_ type: no=0, yes=1? And they use the _very secure_ "eval()" command? What do they care? It's not running on their machine. I doubt they're concerned about potential exploits in their code. "Oh, no! Someone could use the config file _to inject code_ into our malware!" lol *Alternatively...* I wouldn't be surprised if they copy/pasted code from some (shell) script(s) - which requests user input ("yes" or "no") - to proceed or cancel. As "expert coders", they chose to include the answers in the config file. Rather than changing the code (that they copied) to accept boolean values as an argument, instead of a String(). Assuming that they actually _need to check_ the config file; i.e. is there ever a reason to set the value to "no"? Or did they include a pointless artifact of the code they copied? Because, "We don't know how to fix, without breaking something else. Or we know how to fix, but we too lazy. So we include pointless items in config file. Keeps adversaries guessing, 'Do these guys know what they're doing? Or not?'" smh lol *Possibly...* They are leveraging a binary, but do not have the source code. They can't (really) change the binary. So they include the correct responses to prompts or arguments for the (CLI?) interface. What do you think?
Saw Openbullet in the video, that's a fantastic pen-testing tool, but none of KZreadrs, like JH has made any video related to that. looking forward John...
as an Egyptian i laughed the shit out of me from the last channel 😆
Bro, first the sponsor, then literally an ad pops up
How many files bylclns
Just casually slipping into some blackhat DMs. 🤣
Oh i found a ton of these thru misconfigured phishing pages, might email them to ya if you wanna snoop around.
The last one is just a chemistry for 3rd year high school students (Grade 12)
The Bot Token was recreated. That’s unauthorized The first is not recreated, but maybe the script has a newer token / bot / channel already
22:26, maybe john is a robot😏🤖
It would be amazing if you somehow could do a collab with ScammerPayback.
@jacobfurnish7450
11 ай бұрын
yes that would be amazing XD. Steal their credentials, take the money from the bank accounts, and give it back to the victims. Then, call back the scammers and tell them you stole all their money and use ransomware to finish the job, but make sure you hack webcams to see their faces when all their money is gone.
@luketurner314
11 ай бұрын
Scammers don't stand a chance against ethical hackers like Jim Browning and John Hammond. Just imagine a collab between John Hammond, Jim Browning, ScammerPayback, Kitboga and maybe others
@jjann54321
11 ай бұрын
SP wouldn't know what to do with someone as talented as John aside from ask a lot of questions and take notes. Those guys are 95% graphic art/animation/entertainment and 5% "security/IT professionals." I don't think John would need to rely on a noob scammer's unfamiliarity with AnyDesk or TeamViewer to gain access or run an exploit.
@jacobfurnish7450
11 ай бұрын
@@jjann54321 I think they would be useful for social engineering. They would be great for buying time and wait for John to upload the payload. Even if they are not tech savvy, it would still be hilarious to see a collaboration between them.
I knew where this is from as soon as i saw the dz lol😂
Jesus, that thumbnail is so over the top XD
For clarification, the last user("mrcew") is an educational channel for the third grade average, an Iraqi Arab channel that has nothing to do with hacking
Nice John :D
that ending tho xD felt it
21:16 LMFAO 😂😂 😂😂😂
I still get Emails about Renewing My Anti-Virus or That it was Renewed and i get The Invoice pdf ... Its funny.. So far they dont know how to use A PDF to run a virus
the last guy is just talking about chemistry exams
Malicious hackers write some sloppy code.
make a complete ethical hacking playlist
did i just see a stripe api there lol
don't know what to feel about the Paraguayan (negative(?)) representation
imagine ending each commented line of code with the word "bro"...
That's Horrible.
I found a full discord server devoted to selling malware
So THIS is the guy spam mailing me? Disappointing. IT would probably be trivial to fully counter these spam mails...
😂😂😂😂😂 its school 21:04
Most of them are scammer , if you pay them you get a big ghost
21:01 this is language is Arabic and it's appear this Chanel for chemistry class of third year of high school
commenting to give more views
Bink details explain
Uh oh! There was an error importing your projects. Please try again. Snyk LOL
Looool this last one is Arabic about romance
I don't speak Arabic, but it may be the tactics of the scammers to fool that it is a class group. Most probably the images contains juicy stuff because it can't be translated easily.
@kyay10
11 ай бұрын
I speak Arabic, the images were literally just chemistry homework. The scammers really aren't that clever
@kyay10
11 ай бұрын
Also, Google translate can translate very well from images now
Bro is scrolling past video's of checker scripts that I was using as a 15-year-old kid in 2017 to play Minecraft for free 💀💀💀
Nice
15:42 roflmao
the ending - ahhaahahahahahhaahahahah
@M0rn1n6St4r
11 ай бұрын
Yeah. He managed to omit 1-2 boxes, each time: 1. Very bottom of motorcycle wheel (1) 2. Bottom-right corner for bus (1) 3. Top corners of traffic light (2) 4. Top corners of taxi (2) ...and so on. "Why isn't this working!?!" - John Hammond lol
Not surprised .. hacker kids 😂 i Think Admin Using Google Search Like This : How hack Google 🤣
@_tr11
14 күн бұрын
how 2 hack nsa pyton D++ blackhat haker!!!!1 /j
This is geniuses
"recording doesn't make you a coder" sounds like bad english for 'copying doesnt make you a coder'
Curse words everywhere. 666 everywhere. Really high class people.
@lilv728
11 ай бұрын
They're 15 most of the time so to be expected I suppose
It would be hilarious if some of you badass whitehats took Mr. Blackhat Egypt's course.
lol, skids
I used to love john hammond and wait for his episodes every day since 2020 and still .. However I missed Your CTF vids Bro and malware analysis vids to, who doesn't ? hhhhhh. Beside, I don't advise you to dig no more in this world. It's bad, very bad and not so educative for audience compared to the old vids you made. it's only gonna encourage people to take path in this dark crazy world that leads to unfortunate ending [..] I still respect what you're doing .. You are no ordinary content maker, trust me, you are one of the best. So best of luck my friend. We're expecting goodies in the next vids to come !
@jamesp1389
11 ай бұрын
Hahahahahaha nice try bud wow you guys are hopeless.
First comment 😊😊
@racapadexxa_
11 ай бұрын
DINKLEBERG !
يديني ع الضحك😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂😂
500th
ههههههههههه مت ضحك
it was a dig at you noob
@michaelwentzell9809
11 ай бұрын
Lol I take it this was your script 😂
@doctahkang
11 ай бұрын
@@michaelwentzell9809 huh? I was just agreeing that it may be a dig at John.
:/ helping russian illegal service. Cringe.
16:50 openbullet is the original program, silverbullet its kinda better
Hi, Spox is a well Algerian carder he uses Spox_DZ as DZ for Algerian ..... He have multiple phishing attemps against the Algerian Postal Debit Cards
INTERESTING!🥸🧐
"click all the cars... i said ALL the cars... and wait for me to show you more muahaha" --googleCaptChaBot