ฝัง
- เผยแพร่เมื่อ 12 มิ.ย. 2024
- This is a series that helps companies and individuals who don't have the money to pay for expensive tools on how they can start looking for compromises in their systems for free! Make sure as a defender you are doing these checks to see what your company is vulnerable too!
If you want to see exclusive content and have the opportunity to game and chat with me about anything check out the patreon!
Patreon to help support the channel! Thank you so much!
/ stuffy24
Hacker Discord
/ discord
THIS IS FOR LEGAL ETHICAL PURPOSES ONLY. Only do this if you understand and you have explicit permission. - วิทยาศาสตร์และเทคโนโลยี
I like that you actually recorded and shared the troubleshooting process as it is very common to run into such issues. Thanks for the great tutorial.
Appreciate that!
I appreciate the 'bloopers'. I hate when guys do videos like this and make it seem like they never have errors, and should work perfect for viewers.
I agree! 100% everyone makes mistakes especially me haha
sexy girl, beautiful girl
sexy girl, beautiful girl
sexy girl, beautiful girl
Agreed 100000%
@@MisterK-YT thank you!
On god
I love the vid with the bloopers and an explanation afterwards, more vids like these is what is needed for us and we enjoy your human side more, thanks a million.
Appreciate ya man
Thanks for great guide / instructions.
also glad you left blooper's in as it show's we all make mistakes and are always learning.
Well no one doesn't make mistakes like you said ! Why pretend we don't
I appreciate you leaving in the bloopers. I have so many of them in real life and I was beginning to think I'm the only one. 😀
Ohh trust me I have a ton everyday! Don't feel alone on that!
I also want to say thank you for being authentic. Most videos, training materials, simulations, etc edit out anything but perfection. Sometimes you know what you need to do but its something simple holding you back. While there is value in struggling and figuring something out, spending extended time on syntax issue or something small is a waste.
I appreciate that! I just try to be honest about it and not sell things
YT just now recommended your video for me on the homepage! Never came across your channel before and glad i did good sir!!
I appreciate you
New to cyber security, love the fact you included your bloopers. Earned yourself a sub❤
Appreciate that. Just know every single person in cyber ever makes those mistakes
Amazing man, have to do a Cyber Assignment on OSINT and this tool, seems amazing. Thank you.
Liked because you keep the bloopers. Makes a difference
Appreciate it
this video got recommended to me in the sidebar. i know almost nothing about coding or python. I sometimes watch defcon videos relating to opsec and low-tech hacking but I enjoyed your video. keep up the good work, man👌
Appreciate it my man!
Greetings from Sweden!.
You, Sir, just got yourself a new subscriber 🎉
Welcome!
downloaded this long time ago and wonder why this didnt work and now this video got put on my homepage. keep up the work
Thank you!
I love that now after I clicked like on one of ur vids
All my feed is about your channel
I hope you actually really do enjoy it lol
@@stuffy24 yes man i truly am
U simply simplify all the noise and explain very well
Thank you!
Really sick how you sinked the glowing of the buttons and the video!!!!! Hell yeah you get my like!
I appreciate it! Wish I could take credit but TH-cam started doing it automatically
@@stuffy24 🤫🤫🤫🤫🤣
Hey so I'm newer to the cyber side, been in physical security for over a decade, but as I look at this I wonder what is, or what are some, job titles that would encompass someone doing this for work?
Thanks for the video!
There are many jobs that utilize osint for sure! Including investigating
Ethical Hacking
"SOC Analyst" or "Threat Intelligence" as a starting point.
Pentesting as well right
Pen Tester.
Do you have a playlist of you explaining more about this tool? Like how to set up the api keys and get them? I’m very interested now
I can do a short video this weekend on adding API keys for sure!
You my man just got a new follower for that
I uploaded the guide for it today for you
Subscribed because you showed how to solve the problem you ran into
I appreciate that!
There should be a use all option obviously its good to learn how to do things manually at first but there needs to be more automation and less fear in building automation tools
Some tools I agree this one I would not want a use all option as different modules are for different things so if I for instance wanted to crawl a website I would have to sit there and wait while it ran all the checks for that website to have profiles on Twitter etc which of course it would never find so it would cause the tool to be 10x slower and give a ton of bad results
@@stuffy24 ya that makes sense maybe have it all broken down. Automation for everything you would need in 1 tool. Automation for something else. Just a complete pen test for obviously as much as you could do for automation but ya I think we're at that point in security penetration testing. The big dogs need to come together and just kill the game with the most awesome automation tools. For times sake. Less stress. Also I've been seeing that android apk payloads are now getting a different warning by Google play now I use evil droid to make and test payloads I've tried looking up everything I could to obfuscate the apk or Android manifest code but everything I tried didn't work. I would be easier to obfuscate a windows payload it seems lol which I find hard to believe. If you have any to date tools that work for obfuscating apk payloads that would be cool im just finally at the point of trying to learn obfuscation.
@@CoryResilient I def understand this perspective but once you get into advanced pentesting you see that automation has been done in pentesting A LOT and always falls short because hacking is more an art than anything. You have to look for things a computer doesn't always see. I am actually a big advocate for less automation because of all the failed pentesting I've seen from automation lol I understand the thought though!
@@stuffy24 that's why I said only have automation for things that can allow for automation which don't really require the manual operations or a human that can solve problems intellectually uniquely in every situation lol but for things that can be automated that don't require the human touch then LET THERE BE AUTOMATION this foolishness and pride need to stop lol I can do everything manually I just can't build tools I can't code lol so to tool creating Gods of the world of pen testing lol stop being 🐯 s and let's level up and stop being so critical about it lol 😆 the big guys are scared to create real lethal automation tools because then anyone with basic Linux knowledge could be able to do things that should have taken them 10 years to do which would filter out most bad actors they want instant gratification lol the danger of effective automation tools is it opens up more risk to hackers actually easily and effortlessly getting some serious foot holds lol
@@CoryResilient so I def understand what your saying and to an extent I agree. You can hop in the discord and keep the Convo going! The main reason I don't necessarily agree is because it's been done before and the more you automate the more often those skills just get easier to detect and then become useless. This is why advanced pentesters don't use much automation bc that's what EDR tools look for and you can basically defend any automated attack given the automation. So becomes useless after a timeframe
"Trying to get to 5K this year" -- Congrats on 11.4K!
Thanks so much! It def was not expected!
cool video, thank you for your time and for sharing ✌
Thanks so much!
Broo said he wanted to get 5k subs last year and is now at 13k🙌🙌
Really appreciate the support!!
Awesome tool dude!!! Thanks for the vid
Thank you!
Hey the profiler tool was working 2 days ago im curious if its broken now for you as well i just checked if there were updates or whatever and it doesn't seem so but the thing shits out MILES of red error code when i do run after setting a module and setting the source and running it when 2 days ago it was working fine. I am curious if you are also getting this error as well?
Hey thanks for the question. Feel free to throw it in the discord with a screenshot and I'm sure one of the people have used it in the last few days could tell you.
While bloopers are great, so would the efforts to troubleshoot would have been for us newbies! Thank you!
I agree with you on this one i think i missed the mark because in my head it was simple fix but i didnt show it.
Very great idea?! I dont think ive ever seen that implemented in a post
Nice touch lighting up the like button
I literally have no clue how that's done lol
Do it for 3 days in a row, easiest to start/stop a habit. I read that someplace!
Def is a start
KEEP GOING ON, FRIEND.
Thank you!
Good video thanks 😊 🤘
Thanks
I'm trying to run this on kali linux but my only issue is that since i have kali install on a usb drive and i insert the command recon-ng it tells me [!] Unable to synchronize module index. (connection error). any help is well appreciated. thanks
I would try to reinstall recon-ng and update the system
I subbed & all that. Kali or Parrot? As an older learner where do I start? Can I install Kali/Parrot etc to load from a usb? Also VB or VMware? (Win 10) After surviving being shot two times, scraping by on a a disability income I’m truly hungry to learn. To improve my life. I thank you for sharing your experience. In want/need of a teacher…to be the apprentice. Your time in sharing your knowledge is as close as I’ll get. And I thank you.
Kali or parrot is preference, both can be USB boot, vb or VMware again preference. Appreciate the support
@@stuffy24 Which is best for a “newb” like myself? In your opinion? Kali or P?
@@BluesStraightFromTheHarp probably Kali. I love parrot but Kali comes with a few more things
@@stuffy24 Thank you!!
good stuff
once i get results what do i do with them
how do i check the file
Feel free to join the discord and throw your questions in there with screenshots pls we have a questions channel
Every time I try to run it now, it doesn't find anything because of the "Google CAPTCHA trigger. no Bypass available". Is there a quick way to solve this?
Im getting the same error too, so hoping to find a solution. Google didnt seem to helpful sadly!
Great osint video keep up the osint videos 🤝
Thanks so much!
info says metacrawler "disabled" how to enable it?
Feel free to join the discord and throw your questions in there
Fantastic video. Thank you
Thanks so much
I'm gonna try it, but can you set IP's as source?
Didn't even notice 17 minutes had gone by lol
❤🔥❤🔥❤🔥❤🔥
When would "first things first" be anything but first?
That's a good point
hacker: sometimes i open files without paying attention. 😂
Reality is everyone is guilty of this at some point in their busy days lol
The best tool is the tool that does what has not been done already.
Well let me know lol
When we measure any kind of things we do it in the realm of reality not fantasy stories.
When we measure any kind of things we do it in the realm of reality not fantasy stories.
incredible stuffs, how i become soc analyst?
Feel free to join the discord and join the Livestreams
the like button literally started glowing in rgb when you said hit that like button! How does this work?
I'll be honest with you I have no clue! I didn't set that up
Where an I download that tool?
Depends on the distro but just GitHub
Subbed. 👍
Welcome aboard!
can I use this tool on Mac or PC aswell?
You can run a vm on either
Your so under rated bro
Thank you!
This chanel is on 🔥🔥🔥
Thank you so much!! Hopefully we continue to grow and get you all more content!
What are we exactly doing here can someone please summarise ,thank you.
Just gathering information about a website.
==> 404 error is page not found, Not you've found the admin directories.
I've responded to those comments already.
It's about how to use the tool..I'm not going to show live pages for a site that doesn't want to show them. This is for educational purposes not to expose a real site. Therefore it's to show what the tool does and how. Hopefully you understand that. I make all of my videos using Osint on tryhackme mostly specifically for this purpose
Yes but don't act like it's done this and found this when it blatantly has not, are you a security professional or just some script kitten and decided to teach although you yourself doesn't have a clue?
@@rootmonsters lol I've addressed it in the comments below that I missed this due to worrying about the video script. You can watch my other videos and decide what I am. I'm not here to prove anything to you. I addressed that I made a mistake due to paying more attention to the video than the tool In this case. No one's forcing you to use my videos or even watch them. Feel free to find someone else you like. I appreciate the feedback but that's why I told you I addressed this in other comments
do you have any privite tool?
I don't publish my own tools no
how do you get around the "google CAPTCHA triggered, no bypass available?
Thanks for the comment! Feel free to hop in the Discord and ask your specific questions and I can answer them when I get a chance
@@stuffy24 will do, sure. However because this is a common occurance for us in the learning space, making a public video to address it, if it's possible, would answer and reach your audience as apposed to re repeating your answer to all who individually ask it. My osint practices currently are primarily windows based away from terminal. But I am trying to get more proficient with the likes of parrot and kali to see if there is a way to obtain public records that generally sit behind paid to view catfish scans. I feel terminal tools might be more powerful. This captia situation is very persistent when using your socket puppet properly with layers such as tor proxy chaining and vpn jumping. Easily worked around from a browser but no idea how to counter it from terminal. See you in discord at some stage soon hopefully. Thanks again though for the great content
@@AsidsTechTips appreciate the suggestion.
@@AsidsTechTipsjust run kali or parrot or any distro on a VM or dual boot or install it on a usb drive you are limited with windows and it takes no time at all to setup don’t be lazy
have you solved it?
gg on 5k
Thanks so much;
@@stuffy24 yessssssir
jesus already 6k?!?@@stuffy24
When i am watching this video,the like button will come with special effect how do you do that
TH-cam Auto does it when you say hit the like button.
Dont you think 404 means admin console was not found?
That's correct. I address that in multiple comments. It's me showing how the tool works and I was worried more about not messing up the video and completely didn't pay attention to the 404 error. I just have a "script" ish and I was focused on it and didnt pay attention.the video still shows how the tool works which is why I don't take it fown
tl:dr whats its for?
Please hop into the discord and put any questions you have
it will never be as good as Shodan
Appreciate your opinion
$
it says it on the output **D=has dependencies** **K=requires keys**
Yea that means you have to install the dependencies or add an API key
@@stuffy24 I know this, you said something about dependencies, etc, while looking at the marketplace table, and I was saying that it tells you what the D/K column means and which module(s) it applies to.
@@WilliamLDeRieuxIV ohh gotcha sorry misunderstood! Thank you
Brother you hack just like I do!
It was like watching myself, except there’s normally a bit more cussing… 🤬😂
Haha ohh plenty of cussing just not on camera
this world is geting dangerous go for paper mail guys
lol its been dangerous!
Don’t worry people won’t be able to handle ai video you won’t be alive in 4 years unfortunately
7:06, saying that with a 404 RIP
lol
lol i understand why that wouldnt make sense because that generally means it doesnt exist but these should never be dismissed. This is simply your osint recon phase you should always take note of what the tools find and go back and validate later.
@@stuffy24 301 i validated but if you see a 404 in a dirbust thats a good sign your dirbust is bad or it has a flag where you can filter out 404(you would think it would do this by default). But in short i was saying rip causr the tool didnt actually find anything other than sitemape which can be useful sometimes and a robots.txt which no one is dumb enough to leave anything here
@@Michael_Jackson187 correct but the purpose of the video was simply to show how the tool works I'll be honest I wasn't even paying attention because I lay out the videos before hand and was more focused on doing the steps correctly since I do my videos in 1 take. So yes I would agree but with Osint always take a grain of salt due to it being possibly wrong info or old info that's still useful
og name❤
how to download
Just use apt-get
Do you have a telegram channel
I do not because I have no reason to hide what I'm doing. I have a discord channel
warning if you have a amd chip parrot os know longer works, several errors will be thrown. note parrot os does not suppport intel, kali linux how ever works
I'll have to look into this and see. Appreciate the heads up
@@stuffy24 it throws several errors with python pip3 which prohibits installs of cloned githubs, or pip3 tools you need. also quite a few cammands have errors
@@hacked-ze1nn make sure you install all dependencies
@@stuffy24 everything is installed as need to be, ive unistall reinstalled all depenencies nothing still the same error, within pip3 an several of the commands
i moved back to kali
1:23
c'est le petit frereya processus thief ça 😂
Not sure what this means but appreciate ya
@@stuffy24 hehe bro it doesn't mean something bad don't worry ,i just said you are the little brother of the French TH-camr processus thief (cybersecurity oriented) cuz of your face similarity 👍
@@osmanlisback219 ohh gotcha never heard of him. Will have to check him out!
idk how to do on windows
Read the documentation please
@@stuffy24 yeah i found out right after i posted and then realized you were on parrot os and now im getting parrot os
@7:29 you know that 404 is page not found.............right?
You didn't read the other comments where I explained that did you?
I didn't see any other comments mentioning anything @@stuffy24
Definitely helped me thanks my nigga
não entendi porra nenhuma
Lol I have a life now I should not be looking at stuff like this again. Glad I never went to jail before. SWIM managed to get away with a million in his youth. Don't do crime kids. And if you do don't get caught.
Or just do this legally ethically and professionally and make a lot of money
Nah you goated my nigga
u got tele gang?
Video starts at 1:23
Thank you. I'm sure it helps a lot of ppl who don't wanna hear me blabber on about subbing lol
@@stuffy24I love hearing you blab I watch the whole thing every time
as soon as i see kali or parrot i know you know nothing more than copy paste
Lol thanks for the comment.
Looks completely pointless
This is a POC the tool is quite useful if you install all the modules and keys
> makes vid about OSINT
> showes face
> huh
Why would I hide my face ?
its more of a "why woudl you" since ur just blocking the console. also since ur making a vid on osint i can imagine that some skid would try to doxx u. in genneral it just seems safer to hide ur face@@stuffy24
'Be safe' is not a hacker mindset, how is that going to help you in your career, or in your life? Also, hacking your brothers and sisters and hear them complain is actually pretty funny.
That's pretty simple since many new hackers don't know where the line of legal and illegal is. Not being safe in the cyber world can ruin your career before it ever gets started. Messing with someone for fun isn't hacking it's just bullying. Being safe is simple know what your doing before doing it. Don't just run tools that you see and think are cool. Understand them first
This is not OSINT. This is 17 min of bullshit!
If you are new to cybersecurity this video is not good. It’s not the fact that their are “bloopers”, it’s because the host’s will eat up your working and short term memory loads with his many mis-takes (especially in the beginning). New learners need clean prose and thoughtful teaching with a plan. Anyone who has been in the 4th grade on can tell you that. 🎉
Parrot pwns kali esp when run as a qube
It's just a preference
oh its useless, i tried it and it did not work for me, it only works for western phone numbers.
I would look at different modules it's Def not useless if your not in western area
Phoneinfoga?
Please Make A Video On How To Make A B0tnet (Latest), For Doing DD0S At*acks
Appreciate the support but won't be doing any botnet videos
We gain nothing from your bloopers except a waste of time. It would have been 10x better for the viewer had you taken the 17 minutes to share quality info that could be learned. We're not doing any form of diagnostics or repair work where a mistake could help the viewer avoid a problem. Time is valuable for everyone, and I do appreciate you sharing your knowledge.
I appreciate your opinion and there are a lot of youtubers out there that do eactly what your saying. I have had many people with the opposite feedback that appreciate the bloopers so thank you for the feeback i will continue to keep them in for the time being. If thats not something you want to see i understand and appreciate your feedback.
Once you have an email or handle sherlock pwns
Sherlock absolutely is a great tool!