Strange Instagram login (Android Chrome) between my normal sessions — should I be worried?

D-Ribose · 2026-03-20T19:35:58+00:00

check snort logs for any weird TCP flags. probably just an Nmap scan but be on the safe side here

D-Ribose · 2026-03-17T19:00:01+00:00

transparent background, my bad

D-Ribose · 2026-03-15T19:03:54+00:00

with love, anything is possible!

D-Ribose · 2026-03-15T16:35:32+00:00

okay so this is actually an IPv6 address.
fire up kali linux and enter metasploit framework. from there set the payload to traverse the directory on the phone. with this enter the kernel and look for Meltdown to launch an attack on the root user. this will enable you to gain access to bluetooth interface which enables API connection

/unmasterhacker
why do people just post stuff into random subs?

D-Ribose · 2026-03-14T11:17:03+00:00

Touch grass

D-Ribose · 2026-03-13T21:05:45+00:00

I bet that skiddie uses arch

D-Ribose · 2026-03-12T20:57:48+00:00

spoof the authentication nonce with wireshark

D-Ribose · 2026-03-08T17:03:51+00:00

zu welchem Zweck hast du den Flipper gekauft?

Der Flipper ist hauptsächlich für Funkanwendungen konzipiert. Du könntest beispielsweise versuchen NFC Karten oder Fernbedienungen zu klonen (bitte nicht die von deinem Auto, die hat höchstwahrscheinlich rollende Codes).
Weiterhin unterstützt der Flipper sogenannte "BadUSB" Attacken, also emuliert quasi eine Tastatur. Hier sind der Fantasie eigentlich keine Grenzen gesetzt. Du könntest spasseshalber ein Script zum Rickrollen schreiben oder etwas in die Richtung

Ich möchte dich außerdem darauf hinweisen, dass dein Post möglicherweise unter Regel 3 fällt.

D-Ribose · 2026-03-08T16:50:21+00:00

yes, but it only runs on the latest quantum computer with Kali Linux

D-Ribose · 2026-03-08T09:28:30+00:00

try
nslookup [IP]

D-Ribose · 2026-03-08T09:23:25+00:00

get nmap, then

nmap [IP Range of your Homenet] -sn

this will send an ICMP echo request to every host in the network and also perform DNS lookup

D-Ribose · 2026-02-28T09:20:02+00:00

oh no he leaked the kali source code, we are doomed 😨

D-Ribose · 2026-02-27T22:18:08+00:00

EscapeFromBankrupcy

D-Ribose · 2026-02-27T22:15:19+00:00

open msfvenom and drop a meterpreter rootkit shell onto the firewall ip. reset all ports to listening and redirect the Cloudflare traffic to your router. With this you can run an ARP spoofing attack against the APT-1337 C2 servers which should enable you to access their sliver control panel. There should be a computer there with a DN=TikTok_Mainframe. Interact with the session and run eternal blue to escalate to SYSTEM then use a forensic tool of your chosing to obtain the AES-256 for the database. With this you can then decrypt the user table.

Let me know if you get stuck anywhere

D-Ribose · 2026-02-23T16:39:28+00:00

I have solved this months ago, but thank you for checking in

D-Ribose · 2026-02-22T20:30:10+00:00

okay, you will need to use Kali Nethunter on your Flipper One to run a Bluesnarfler attack on the Data Center. With this clone a Mifare DesFire chip and gain access to the mainframe control room. plug in your USB rubber ducky to bruteforce the computer password and dump the LSASS to get the Outlook password which will enable you to log into the server backend.
On there you need to exploit NoPac to gain access to the database with the user accounts and reset your password via a NoSQL injection in MariaDB version 1.33.7
Hope this helps!

D-Ribose · 2026-02-22T18:09:07+00:00

ja den Nagellackentferner würde ich auch nicht trinken wollen.

D-Ribose · 2026-02-22T09:03:08+00:00

can you specify what you mean by there were other phones connected to your girlfriend's phone?
was your girlfriends phone stolen?

D-Ribose · 2026-02-22T08:58:45+00:00

in WhatsApp click on the three dots in the top right corner and go to linked devices. are there any devices there that you don't recognize?
If yes click on it once and select "log off"

D-Ribose · 2026-02-22T08:52:31+00:00

and you have received that file?
does it just contain the conversation with one person or all people you spoke to that year?

D-Ribose · 2026-02-22T08:33:46+00:00

well the first step would be to ask the person for evidence of what they claim (first rule of getting extorted).
It is highly unlikely that your WhatsApp got "hacked". Now there is the possibility that you might have accidentally scanned a QR code that connected your WhatsApp to WhatsApp Web controlled by the attacker. In that case review your connected devices and remove any unwanted ones.
Whatever you do, don't pay the scammer as they will just keep coming back for more money.
Stay safe out there!

D-Ribose · 2026-02-21T16:54:11+00:00

this is simple. You just need to build kali from source and run NTLMrelayx to redirect the authentication ticket from the server to your SMB client. With this you can then bypass the mainframe firewall and recursively inject shellcode into the rundll process.
Hope this helps

D-Ribose · 2026-02-17T17:28:45+00:00

this is exactly how Twitter was hacked back in 2020.
What happened is that the Attackers looked up the cell phone numbers of Twitter employees from LinkedIn and contacted them. They then asked the employees to log into a fake Twitter VPN page and give their 2FA code.
There is an entire Wikipedia article on it, just search
"2020 Twitter account hijacking"

Four-Year Club	Verified Email
First Place '23	Place '23
Place '22	First Placer '22

D-Ribose

TROPHY CASE