The guy that programed temple os was bat shit crazy, not a good role model, you can believe in whatever religion you want but I'm good without a bible thumping system developed by someone with schizophrenia. I run Arch BTW.
man, if only malware was as cool & good looking as corona-chan. then i wouldn't have to worry about getting anything malicious whet downloading my retro game ISOs & game cracks.
Hey dude I'm a fan of your videos :) Your reverse shell explaination is worded slightly wrong. A reverse shell does spawn a shell on the compromised computer. In Linux the process is along the lines of: 1) Create socket on victim comp via socket syscall 2) Connect back to attackers computer which is listening for a connection via connect syscall 3) Make STDIN, STDOUT, STDERR for process on victim computers go to socket created in step 1 via dup2 syscall 4) Spawn a shell on victim computer via execve syscall. STDIN, STDOUT, STDERR for the spawned shell on victim computer will now go through the socket and appear on the listening client on the attackers computer. Input to the listening client will be sent back to the shell on the victim computer. A bind shell is slightly different in that the victim computer does not connect back to attacker computer. Instead it opens up a listening port on the victim computer.... The attacker then connects to the listening port on the victim computer. In both cases however, the shell is running on the victims computer. One of advantages of a reverse shell over s bind shell is it's easier to get past a firewall by connecting out to a commonly allowed outbound port, e.g port 80 or 443.
I was typing in my onedrive on microsoft word today and my entire computer froze up once I started writing fiction about imaginary mind control weapons. I couldn't type a single letter after that for at least 5 mins. The only thing that happened was the screen would go to a word that said "VISION" and block everything else out. Then I checked my computer memory and I magically regained like 27 gb of unaccounted for memory.
Can't get malware on my old PC that keeps crashing, One time I actually got ransomware but It crashed before it could encrypt my files. And as I said, It was my OLD PC
Password managers are stupid, just make text file(s) with your passwords in them, change them a bit, maybe apply some basic encryption like Playfair, add extra letters, etc. Encrypt the text file with gpg or smth, and then put them on an encrypted USB flash drive.
@@ContraIsBased They track your activity mostly. Have you ever seen the "Be the first one of your friends to like this page" on alot of websites? They actually report back to Facebook that you've visited that page (yep, every single page with that embed this), and they can tailor ads suited to what you just visited. For example, maybe you just visited a blog about parenting your new-born baby or something, then you might suddenly see ads for baby products. Google does about the same, but in a different way. Almost every site has Google ads, and they also get to know what sites you visit. This might not seem like a big deal, but you probably visit hundreds or even thousands of webpages everyday. With all those data, these companies can build a shockingly accurate and scary profile of you. God forbid you have logged into a Google account in your browser, they can track literally every single website you visit regardless of the presence of any ads or trackers.
Do you need to execute/open a malware file for it to run? Can you get malware from *only* having the file in your hard drive? Can you get malware from visiting a website and not downloading or running any files?
Yes you can get malware from just visiting a website. Infact it can even be able to get credit card info. Look up drive by downloading and ip logging links. Anyone can get your ip just by you clicking on a link. your ip is connected to many things such as your house address, email, and other stuff. when you visit a website in the traffic will be your ip address. ip addresses are basically just your computer's signature.
@@wyattlynch1614 having someone's ip is pretty useless. Drive by downloads are real though but you didn't answer if they can run without you executing them.
Has someone been a victim of ransomware on a Unix-like system? Info I found said WannaCry needed WINE, something probably not on most servers? Outside of intentionally setting up a guest virtual machine to run WannaCry on a customly-setup environment for that purpose.
WannaCry only works on wine if you have a drive pointing to your home directory. If you don't have any wine drive pointing to your home directory there's nothing to worry about.
Ransomware doesn't necessarily need to be compiled. If you want to target unix systems your best bet is to use some wide used scripting language with only preinstalled modules by most unix systems, and even use gpg on host target if you can't encrypt using your script...
My man .. what portion of this channel's audience of crypto-neckbeards running obscure linux distributions do you reckon has "nudes of the end-user that are saved to their desktop"?
unplugging your computer when ransomware pops up may not be a good idea. The GUI window isn't spawned until the application requests a window object from the API. There is nothing stopping a ransomware from encrypting all of your files and then spawning the GUI window to tell you your files are encrypted. Why would it play its hand early? You might think that you should unplug your computer just in case the designer of the ransomware was dumb and played their hand early, but what if doing so bricks your PC? You don't know that it _doesn't_ encrypt your OS files. If the ransomware uses a rootkit, there is absolutely nothing to stop it from bypassing the locks Windows places on "in use" files and just encrypting your boot sector and kernel. That would take, what, 5 seconds? If you shut off your computer in that case, your computer's gone. Plus, once your hard drive is infected, where are you gonna plug it in to recover your files? Are you sure that's a good idea considering the malware is _on_ that hard drive? That's what I would do if I designed a ransomware: infect the hard drive, infect the MBR, make the autorun infect any computer the hard drive is plugged into (the whole reason it's considered dangerous to plug in a rogue thumbdrive), use a rootkit, run all the encryption, encrypt the kernel, encrypt the MBR, then throw up the window saying the files are already encrypted and that shutting down will brick your computer, but also write another dialogue box for the rootkit to run if they shut down the computer and start it back up with a bricked Windows. Shutting down and restarting takes you back to the malware screen. Plugging the hard drive into another computer will most likely infect it etc etc. My point is I would cover every scenario I could think of. So real malware would probably be much worse.
My only experience with ransomware was once, using Windows 7, I disabled the antivirus thinking it was a false positive alert, I was quite wrong. Several programs were installed, and I managed to activate the antivirus and turn off the internet, which seems to have stopped the ransomware, soon after I discovered that some files had been encrypted, nothing very important, but I found a printscreen of my desktop, and a complete dump of all the information that was in Google Chrome. I removed the virus but the system was no longer the same, Chrome always insisted as "managed by your organization", so I formatted the hd.
Can’t get malware on templeOS god handles all my networking needs
The guy that programed temple os was bat shit crazy, not a good role model, you can believe in whatever religion you want but I'm good without a bible thumping system developed by someone with schizophrenia.
I run Arch BTW.
spiting fax
templeOS comments are really getting old now
@@bosschad8273 tldr u wrong
@@pinko7429 Well, keep acting like a child then.
Your bank account: 😴
Your social media account: 😴
Your Runescape login: 😳😰
The true treasure is in my habbo hotel account
@@TheIsioisi My Rule34 account is my personal treasure, it needs to be protected and kept reachable.
@@flowgangsemaudamartoz7062 bruh
0$ in my bank account, but those 3rd age items tho 😳😳😳
😣
My favourite ransomware is gotta be "Reisenware". It asked for the user to get a certain amount of points in a Touhou game.
not just a certain amount of points: you had to get an insanely high score on lunatic difficulty
My man infected himself too.
@@FlipNdip579 Extreme measures are needed to improve.
*rensenware
@@TorutheRedFox r u dat anoyin kid who corects ppl whiel they spoke?
thumbnail game is stronger than ever
I was gonna say that :(
They are too powerful. I can't stop clicking on them.
WhyEddy he’s starting to reveal his power level
@@michealsmith9150
Lmao glow more
As someone who takes class on this, your videos teach me more about this stuff than a 2 hour lecture
Lol, stop paying for that class then
what have you learnt in cybersecurity so far?
@@slayer_hazard8993 truth be told thats no longer my career path now. I just started training to become a pilot.
@@crazy4gta1 those are my top two career choices, would you mind sharing the route to getting a job in either of these fields?
school is lectureware
the only reason I use a reverse shell is to get the flag.txt
Is this a pentesting joke?
@@Supakills101 CTF :)
I only want user.txt and root.txt
th-cam.com/video/VUeMyaTtYuw/w-d-xo.html
Very interesting thumbnail I need to tell you
Glad you like it
@@MentalOutlaw He didn't say he liked it, just said it was interesting.
@@PyPylia So?
@@tharushasarange Just saying.
@@PyPylia true, but for the record, he liked it.
and so did i.
Yep, I knew it was going to be an ecchi thumbnail.
The F*** is ecchi?
@@alexkubrat3868 Lurk more.
@@zenmastakilla What?
@@alexkubrat3868 look it up..
@@GamerBoy705_yt I dunno man.
This is like the tutorial stage for luke smiths channel
man, if only malware was as cool & good looking as corona-chan. then i wouldn't have to worry about getting anything malicious whet downloading my retro game ISOs & game cracks.
Bruh
Coomer
Hey dude I'm a fan of your videos :)
Your reverse shell explaination is worded slightly wrong. A reverse shell does spawn a shell on the compromised computer. In Linux the process is along the lines of:
1) Create socket on victim comp via socket syscall
2) Connect back to attackers computer which is listening for a connection via connect syscall
3) Make STDIN, STDOUT, STDERR for process on victim computers go to socket created in step 1 via dup2 syscall
4) Spawn a shell on victim computer via execve syscall.
STDIN, STDOUT, STDERR for the spawned shell on victim computer will now go through the socket and appear on the listening client on the attackers computer. Input to the listening client will be sent back to the shell on the victim computer.
A bind shell is slightly different in that the victim computer does not connect back to attacker computer. Instead it opens up a listening port on the victim computer.... The attacker then connects to the listening port on the victim computer. In both cases however, the shell is running on the victims computer.
One of advantages of a reverse shell over s bind shell is it's easier to get past a firewall by connecting out to a commonly allowed outbound port, e.g port 80 or 443.
glad I found this channel, love this type of humor and explanations.
Was worried that clicking on the thumbnail would give me malware
What's a better way of learning how malware works than experiencing yourself?
memes aside, I love the videos where you explain technical stuff c:
255 likes 0 dislikes. I'm scared to upvote because I don't want to overflow it
This comment didn't age well.
@@PixelTrik Wait until it overflows again and reaches close to 255 again
A redditor! Explain yourself!
Don't worry that won't happen. They upgraded to 64-bit integers a long time ago which support 9 quintillion likes/dislikes (around there)
@@Kristibek A star system can easily overflow it
I love the anime thumbnails, cause it actually makes me click, which results in me studying for class. 😂
I like this Thumbnail better. Although I give you extra points for using the Malwarebytes knock of Gypsy Danger mech in that one. 👍
just recently switched to linux because of your channel :) thank you for a new hobby too
Glad I found this channel!
Loved the thumbnail 10/10
ah yes... the extortion key... my favorite key...
"and your runescape account" that felt real, u ok man
That thumbnail makes me want to use Windows lol
best channel out there
Catchy thumbnail check, good content check, wait something is wrong
great video!!! :-D
Good stuff!
A lesson to remember: KEEP YOUR BACKUPS OFFLINE
So Reversed Shell is what they use in those "Destroying a scammer's computer!!1!1!" videos
I have used reverse shells much but I didn't know that they are considered as malware
That thumbnail earned you sub!
Cool, thanks.
The safe way is to store your stuff in txt files renamed to exe files that are inside of c:\system32
2:38 it actually gets sent to government databases as well. Entire buildings dedicated to online data from the USA citzens
I was typing in my onedrive on microsoft word today and my entire computer froze up once I started writing fiction about imaginary mind control weapons. I couldn't type a single letter after that for at least 5 mins. The only thing that happened was the screen would go to a word that said "VISION" and block everything else out. Then I checked my computer memory and I magically regained like 27 gb of unaccounted for memory.
Nice thumbnail.
Can't get malware on my old PC that keeps crashing, One time I actually got ransomware but It crashed before it could encrypt my files.
And as I said, It was my OLD PC
Can you talk a bit about password managers and if any are in anyway hardened against keyloggers or copy/paste monitoring?
When your system is compromised, all bets are off.
Password managers are stupid, just make text file(s) with your passwords in them, change them a bit, maybe apply some basic encryption like Playfair, add extra letters, etc. Encrypt the text file with gpg or smth, and then put them on an encrypted USB flash drive.
dumb non related normie question,but how exactly facebook tracks your PC (the actual device)
@@ContraIsBased i think facebook target phones rather than computer since an app could do more than the website
@@ContraIsBased They track your activity mostly. Have you ever seen the "Be the first one of your friends to like this page" on alot of websites? They actually report back to Facebook that you've visited that page (yep, every single page with that embed this), and they can tailor ads suited to what you just visited. For example, maybe you just visited a blog about parenting your new-born baby or something, then you might suddenly see ads for baby products. Google does about the same, but in a different way. Almost every site has Google ads, and they also get to know what sites you visit. This might not seem like a big deal, but you probably visit hundreds or even thousands of webpages everyday. With all those data, these companies can build a shockingly accurate and scary profile of you. God forbid you have logged into a Google account in your browser, they can track literally every single website you visit regardless of the presence of any ads or trackers.
Should include information about botnets. Botnets are everywhere.
Nice thumbnail
Virus aren't capable of self replicating they require a host cell. But good video
@0:00-0:19 what is that type of display called? I used to see that in Gamefaqs and sometimes in comment sections...what is that and how is it made?
“And even your RuneScape account”
Ouch
i came for the thumbnail-chan and im extremely disappointed. take my 'like' bruh
Blursed thumbnail mate
11:39 "maybe give them even more nudes"🤣🤣🤣 I laughed so hard.
Oh hell yeah, give me more weeb shit on the thumbnails
nice thumbnail
This got randomly recommended to me lol
Do you need to execute/open a malware file for it to run? Can you get malware from *only* having the file in your hard drive? Can you get malware from visiting a website and not downloading or running any files?
yeah always asked myself that too
From my understanding. No. However if you touch any part of that websites page, all bets are off.
Yes you can get malware from just visiting a website. Infact it can even be able to get credit card info. Look up drive by downloading and ip logging links. Anyone can get your ip just by you clicking on a link. your ip is connected to many things such as your house address, email, and other stuff. when you visit a website in the traffic will be your ip address. ip addresses are basically just your computer's signature.
@@wyattlynch1614 your ip most of the time isnt even accurate about your city how will it be your address bruh
@@wyattlynch1614 having someone's ip is pretty useless. Drive by downloads are real though but you didn't answer if they can run without you executing them.
I was hoping for a RuneScape reference at some point
Oh no. Not my runescape account!
beat me to it
Good basic info, if only Iphone users could be convinced that viruses are only a tiny area in the scope of malware.
Cute thumbnail
Put Facebook, Amazon, and Google's logos on the screen in that order
infosec chad
I was expecting this to be a joke video based on the thumbnail. Im not sure if i should be disappointed or not
How can i encrypt my files??pls tell
Is getting malware on arch linux a thing, ive never had a virus compared to windows
When the hacker records the poo sock. 😱
When you want to click on the video for the title bit thumbnail makes you wanna skip it
According to your definition of malware, proprietary software is a form of malware.
how to prevent exploit using vulnerability
Has someone been a victim of ransomware on a Unix-like system? Info I found said WannaCry needed WINE, something probably not on most servers?
Outside of intentionally setting up a guest virtual machine to run WannaCry on a customly-setup environment for that purpose.
I would be interested to learn about this as well!
WannaCry only works on wine if you have a drive pointing to your home directory. If you don't have any wine drive pointing to your home directory there's nothing to worry about.
Ransomware doesn't necessarily need to be compiled. If you want to target unix systems your best bet is to use some wide used scripting language with only preinstalled modules by most unix systems, and even use gpg on host target if you can't encrypt using your script...
Absolutely!!! Pretty much all the servers in the news, since it is very, very likely they use Linux
Well i think there are other Suspicious apps on linux whom you have to give sudo access to so that they can hack your computer
Thumbnail: 😱
these days people don't even do the malware part, they just send you extortion spam
Based
dam that thumbnail tho
Sheesh just put a respirator on the Ethernet cable
I'm bout to bu
11:37 Ultimate Recursive Power Move!:
const I_Have_User_N00dz === True
function extort_User_For_N00dz() {
while (I_Have_User_N00dz === True) {
extort_User_For_N00dz()
}
}
extort_User_For_N00dz()
12:24 uh oh
That thumbnail 💀💀💀
where does he get that thumbnail asking for a friend of course
Question: Why the thumbnail looks so weird?
7:50 Shouldn't that be, "might have *come*"?
no, anything but my runescape account. noooo!
sauce?
earth chan and corona chan
sorry that im 5 months late
@@sinject_ u hero
static.wikia.nocookie.net/joke-battles/images/3/3a/Corona_chan_meets_earth_chan_by_glee_chan_ddse78i-pre.png/revision/latest?cb=20200324214934
Saddam virus in 1992 ruined many of my Amiga games.
That's sad.
That's sad, damn, without the n.
god i wish i was in that thumnail
1st! 😎
based thumbnail game
Pfft I’m on windows 98 so I’m safe.
@@trp225 archlinux w/xfce and Chicago95 theme
I'm on windows 95 so im safe
I'm still using windows 1.0 so I'm safe.
i use DOS so i am safe
I don't have a computer, so I am safe
We all know you clicked on this video because of the thumbnail. Don't even try hiding it.
Not my runescape account! Theyre going to be rude to that gf i bought and cause her to break up with me D’:
mmmm, mmmmmALWARE! NOT TASTY!
bank account and facebook account password gets hacked: i sleep
runescape account gets hacked: real shit
My man .. what portion of this channel's audience of crypto-neckbeards running obscure linux distributions do you reckon has "nudes of the end-user that are saved to their desktop"?
the windows portion normies
IDK about you but I personally, I save my nudes as a dynamic background
NOT MY RUNESCAPE ACCOUNT
unplugging your computer when ransomware pops up may not be a good idea. The GUI window isn't spawned until the application requests a window object from the API. There is nothing stopping a ransomware from encrypting all of your files and then spawning the GUI window to tell you your files are encrypted. Why would it play its hand early? You might think that you should unplug your computer just in case the designer of the ransomware was dumb and played their hand early, but what if doing so bricks your PC? You don't know that it _doesn't_ encrypt your OS files. If the ransomware uses a rootkit, there is absolutely nothing to stop it from bypassing the locks Windows places on "in use" files and just encrypting your boot sector and kernel. That would take, what, 5 seconds? If you shut off your computer in that case, your computer's gone. Plus, once your hard drive is infected, where are you gonna plug it in to recover your files? Are you sure that's a good idea considering the malware is _on_ that hard drive?
That's what I would do if I designed a ransomware: infect the hard drive, infect the MBR, make the autorun infect any computer the hard drive is plugged into (the whole reason it's considered dangerous to plug in a rogue thumbdrive), use a rootkit, run all the encryption, encrypt the kernel, encrypt the MBR, then throw up the window saying the files are already encrypted and that shutting down will brick your computer, but also write another dialogue box for the rootkit to run if they shut down the computer and start it back up with a bricked Windows. Shutting down and restarting takes you back to the malware screen. Plugging the hard drive into another computer will most likely infect it etc etc. My point is I would cover every scenario I could think of. So real malware would probably be much worse.
My only experience with ransomware was once, using Windows 7, I disabled the antivirus thinking it was a false positive alert, I was quite wrong. Several programs were installed, and I managed to activate the antivirus and turn off the internet, which seems to have stopped the ransomware, soon after I discovered that some files had been encrypted, nothing very important, but I found a printscreen of my desktop, and a complete dump of all the information that was in Google Chrome. I removed the virus but the system was no longer the same, Chrome always insisted as "managed by your organization", so I formatted the hd.
Man... that thumbnail was clickbait ;c
Where's the waifu malware ???
how exploits works ??
by the picture in the beginning most software and windows is malware lmao
Thumbnail lol
thumbnail is what
what the heck is the thumb nail
im so afraid of 4chans hackers! 😱
How can I infect someone with a reverse shell?
high quality click bait ;)
Your personality is really bland, but I really like your content. Hope you grow bigger.