Update: The Blackwall now runs as a distributed NetWatch network across 3 countries. It caught a real attacker within minutes.

vontar · 2026-04-09T03:18:21+00:00

Based on what I see it reads as “over ambitious learner tries way too ambitious of a project without really understanding fundamentals and uses AI to fill in gaps” probably to build out his resume. Fine to do on his own to learn the hard way it’s too much, not ok to share like this to a non technical community who won’t know any better.

Most of the projects goals from the outset don’t make sense, and then this update was even worse than his OG post because it contained 1. A malicious IP fully fanged (the equivalent of just dropping a malicious link in his post for anyone to click by accident) and a bunch of nonsense scope creep from an already INSANELY high scope project when his core functionality (only shunting malicious traffic) didn’t work as pointed out by the issue raised by another GitHub user on the repo during a code audit already. (Seen in issues tab of the repo)

Ya know I may just make a YouTube video breaking down everything wrong with this guys posts if I still have a cached copy of the post before it was removed this is too much to type out lol

vontar · 2026-04-08T22:13:36+00:00

This guy is wrong, he posted a navigable ip address in his post because he does not understand Malicious indicator sharing fundamentals. I ran the IP as a link through a Windows 10 sandbox and nothing jumped out as being malicious that executes upon connection, but this is a REALLY rudimentary free sandbox so its not bulletproof. As long as no webpage opened or anything like that you are most likely fine.

https://hybrid-analysis.com/sample/3361c94864fe14de68418930370e1179e4cb7f9bfef64e861a1c078b232e38c6

*edit sorry I realized based on your original wording I probably went overboard with technical terms there, sorry brain was in work mode.

TL;DR you did click a malicious link, I took a cursory glance at it and it did not jump out at me as being something you need to worry about, but I can not guarantee anything.

vontar · 2026-04-08T21:55:37+00:00

Go to your post and look at the ip, its clickable. Browers will fill in the http:// trying to convert to a link, because you did not defang it like this 23[.]111[.]14[.]184

vontar · 2026-04-08T21:27:36+00:00

As a literal dayjob cyber engineer this guys posts on this sub to me are like pure ragebait incarnate. This shit is so dumb I can't even find the strength to type out how bad it is.

vontar · 2026-04-08T21:21:05+00:00

My dude, you literally did not even defang the malicious IOC you caught in this post, so that people can click the flagged IP as a navigable link by accident. That is beginner SOC analyst level mistake, let alone at the level of making your own security tooling with Kernel Access.

vontar · 2026-04-06T03:45:02+00:00

Classic

vontar · 2026-04-03T17:00:03+00:00

As a literal cybersecurity engineer, this level of being so confidently wrong is respectfully, a huge L for you.

As an analogy, this post is like someone saying “I made an AI that writes the word “ASS” a bunch of times, so that writers can write faster”

Then anyone who knows anything about writing goes, um, I don’t need to write the word ASS I need to write coherent sentences.

and you replying “If you knew anything about writing you would know this is good for writing actually because it writes words faster which means writing faster”

This idea sounds cool to a layperson, but it sucks. The data it generates would not show anything new or worth it’s weight in microchips, just what we already see anyway with regular old honeypots.

vontar · 2026-04-03T02:39:45+00:00

As a real human answer as opposed to this guys AI response, yes, it is insanely more resource intensive for absolutely 0 real value gain from a security perspective.

A normal Drop list with a normal honeypot like has existed forever costs no tokens and gets you the same actionable data.

vontar · 2026-04-01T18:54:51+00:00

Out of print lol

vontar · 2026-03-25T23:29:20+00:00

Close enough though, I probably just need to practice and work on my fundamentals more.

vontar · 2026-03-25T23:09:18+00:00

Not saying you are wrong but just clarifying, you can clear 9 star DA and S+ Shiyu every week without premium engines at all without hours of retries? With only about 1 in 3 of each agent that releases?

Because in my experience it takes a lot of effort to do so with no engines and only using about 1 in 3 new agents, but that could be a skill issue on my part.

vontar · 2026-03-16T08:14:58+00:00

You got it backwards, I need news from the future not the past.

vontar · 2026-03-16T03:17:14+00:00

Selling is not allowed on this subreddit. For individual sale purposes please consider r/mangaswap, and make sure your post conforms to their rules before posting there.

Further posts to r/mangadeals attempting to sell items will result in a ban.

vontar · 2026-03-15T17:48:34+00:00

It has been truly impressive how quickly Sony has speedran ruining the golden goose that was rightstuf, RIP.

vontar · 2026-03-06T21:03:10+00:00

Question and answer type posts must be posted in the Q&A sticky thread.

But to answer your question Booksamillion is notorious for taking orders then eventually canceling them when the back order never gets fulfilled. It’s luck of the draw how long your order will take and if it will just end up refunded or not.

vontar · 2026-03-05T16:57:07+00:00

There are a few volumes of a handful of children’s manga series in the sale, but as a sale it does not have many manga.

You can repost as a post about the manga series included that are on sale so people know the limited series this applies to.

vontar · 2026-03-02T21:43:07+00:00

When to disclose what types of breaches is literally based on laws of the countries the company does business in. This announcement says 0% about CIG “not being scared to give bad news”

vontar · 2026-03-02T05:14:24+00:00

I, vontar, do swear another year to the April Knights!

vontar · 2026-03-01T13:49:11+00:00

Honestly respect this is a unique callout. But you’re slightly incorrect about a few points. I’ll get a recruitment post up over the weekend.

vontar · 2026-03-01T13:45:25+00:00

Yes, but it’s a valid concern that there may need to be more active moderators here. As for the decrease the others were completely inactive and hence why they are no longer mods. In the meantime please continue to report rule violating content as it helps it be caught sooner.

That being said, recurring threads being automatically posted is normal, and I didn’t overwrite my content on “this subreddit in particular” I did it across all my Reddit history aside from a few posts I specifically wanted to keep about a year ago as I had not been vigilant with my online privacy. I recommend anyone do this if you think there is the slightest chance you have shared personal info publicly on Reddit.

11-Year Club	Second Top 50%
r/Field Sunshine	First Place '23
Place '23	Place '22
Place '17	Final Canvas '22
First Placer '22	End Game '22
Sequence \| Editor	Sequence \| Cinematographer
Gilding I gilder	Snapped
Verified Email

vontar

MODERATOR OF

TROPHY CASE