Skip to content

Latest commit

 

History

History
66 lines (46 loc) · 3.15 KB

methods.md

File metadata and controls

66 lines (46 loc) · 3.15 KB

Twitter

Search for ransomware related resources on the dark web

(url:onion) "ransomware"

ransomware AND (url:onion -filter:retweets)

(hxxp:// OR http://) [.] AND url:onion

Search for PoC of vulnerabilities

PoC and CVE-20xx-xxxxx

Search for leaks on pastebin or ghostbin

target OR dump OR combo OR password OR leak OR breach OR databreach OR credential OR steal AND (url:pastebin.com OR url:ghostbin.co)

Google

Search for onion sites on AnonFiles shared intext:.onion site:anonfiles.com

Search for vulnerability PoC in GitHub CVE-20xx-xxxxx site:GitHub.com

Shodan

Use these filters: ssl:".onion" ".onion" "linkxyz.onion"

Interesting urls

r/onions on reddit In an article at Neteye blog we can see how to perform an analysis of a site present on the Dark Web

Other

How to download large files from Tor or anonymize yourself while downloading files

  • Install torsocks sudo apt install torsocks
  • Use torsocks chained with wget torsocks wget --tries=0 --retry-connrefused --retry-on-host-error --retry-on-http-error=500,502 --continue --timeout=90 --progress=bar --show-progress --random-wait --append-output=/tmp/wget_background <YOUR DOWNLOAD LINK>
    • If you get a message that states "PERROR torsocks[6770]: socks5 libc connect: Connection refused (in socks5_connect() at socks5.c:202", check your /etc/tor/torsocks.conf and make sure that the TorPort is set correctly. By default it is set to 9050, but may need to be changed to 9150.

How to download large and numerous files from Tor at high speed trough multi-threading and downloads fragmentation

Aria2-onion-downloader docker image is composed by an aria2ng webinterface as well as an downloader, which creates up to 99 tor-services and allows to load-balance downloads between these via an local nginx instance. This means you can download at an really high speed, since Aria2 fragments the downloads by default to 10 connections, which get load-balanced to Tor-Services. https://github.com/sn0b4ll/aria2-onion-downloader

How to download files via cmdline from Raidforums

  • On your favorite browser go to raidforums website
  • Open developer tools (for firefox CTRL+SHIFT+i)
  • Go to network (if no data do CTRL+r to reload)
  • Right click on a request and copy cURL (this cURL should contain your session cookies)
  • Paste copied on your favorite text editor
  • Replace url with download link (usually it's something like https://db.raidforums.com/z/down.php?id=259554)
  • Append --output to your cURL cmd with a filename like (curl ... --output thisisatest.7z)
  • Enjoy

Search for invitation links

Thanks to IntelligenceX