Righty oh ... mr paranoid spreading fear here ... OK he is partially right tho there is such a thing as firmware malware its rare and unlikely to be used in a random attack as its uber traceable .. and as this is ring zero its pretty damn awkward to remove at times there are engines out there that can detect this firmware like trapezoid firmware integrity engine.
Onto the O/S so he created a forensic image (for what purpose) and sniffed through deleted files ( let's hope its not a ssd as once trimmed a ssd is irrecoverable) but looking for deleted files is frankly attempting to access unauthorised data and maybe depending on your country and laws possibly punishable.
So my list buy If I buy second hand laptop. Flash firmware(bios) Reset bios Format disk and install operating system. ( if you want to install Windows just google Windows boot disk creator)
For those using Linux, you already know all the above..
Then you have to buy a ThinkPad old enough to be able to be CoreBooted and have the Intel ME disabled. ;^) There's no point in being too paranoid with opsec, you are not as important as you think in the eyes of the government, unless you're a terrorist, drug dealer, pedo movie producer, or a journalist or political activist in an authoritarian country. Computers are too complex for you to be ever able to trust them, carrier pigeons may actually be safer to use.
You should reinstall the OS anyways because either:
You run windows and don't want to deal with someone else's programs and files, or manufacturer bloatware
Or You run Linux and would have to anyways.
You should update the UEFI/BIOS not because of some boogeyman firmware malware, but because most people never do anyways, and it's good practice, plus it can increase compatibility with hardware if nothing else.
Snooping into other people's deleted files is creepy and invasive as hell. Frankly it's just as bad as someone planting malware in the first place: it's data you shouldn't have access to and just because you can, doesn't make it okay. It's like breaking into someone's house because they left their back door unlocked.
If you go to this level of trouble not just for a tidy, updated system, but because you're terrified of the one in a million chance someone spent days, maybe months or years, engineering a semi-custom firmware/hardware malware, you're insane. Especially when at the same time, there are plenty of real, for-profit software and hardware organizations that can barely even get WiFi, webcams, GPUs, or microphones working. Planting malware in the OS it came with, I can understand as it's easier to do, but again, you should be installing a fresh os anyways.
If you do it because you're a security expert who finds it fun, or a snowden, a spy, a terrorist, a "poor little journalist investigating sensitive subjects" (always seems to be the go-to example), or just happen to be buying a used laptop to carry millions of dollars of your company's IP, then I can understand. Otherwise it's doing more harm than good to suggest that not doing these things is going to leak people's bank info.
hey sir, i would recommend you to insert the text so i can clearly understand what are you sayibg coz u speak lil faster ... IT's not necessarily but i love your 1 min rich videos..
If you have reasons to be paranoid, never buy second hand hardware like that from untrusted sources/vendor. You'll never know if everything inside has not been tampered. Easiest would be a chip tapping into one of the usb slots. Google super micro chips in the news.
No, it isn't. Just reinstall your OS and update the BIOS/UEFI (not because they will hack you but because it's just a good thing to do) and nobody can hack you.
by technicality no because it can be exploited but unless you want to buy something from 2008 or try and disable it yourself despite the major risks there's nothing you can do, everything else has the same flaw too
This good that you are doing this but the just sounds like pain I think I would just buy a brand new laptop instead.ps I did buy a use laptop before it was really nice I guess but the battery wasn't great and my charger broke in the end so I bought a new one but the changing port is broking or something wrong I don't know but suck so, want I'm trying to say is maybe don't buy a cheap/used laptop.
You can get charging port replacements online, the connector isn't soldered onto the motherboard (usually)
0 likes
M Rusli2020-10-04 10:47:39 (edited 2020-10-04 10:51:05 )
Can i ask a question? Some of the Lenovo Thinkpads only comes with Intel Integrated Graphic cards. Since it does not come a Dedicated GPU like Nvidia GT'X or AMD Radeon. I wonder any possibily doing password hashcat cracking with only Intel Graphic card as it only using 1GB shared memory with the RAM. How about the current lineup of Apple macbook pros? How to pentesting since it only using thunderbolt 3. And require using Thunderbolt 3 dongle. Any success rate of using Kali Linux with the current macbook pro line up that comes with Apple T2 chip problems???? There are numerous problems as it causing apple T2 chip crashing. What can you reckon me to buy a PC laptop or still a macbook pro 16 inch?????
Can you help me on my Inspiron Laptop? Mostly everyone has this problem with their dell inspiron computer, and most of the discussion is on dell support. The 2 w s x and caps lock are not working.
@UN-common Sense AUS on Kali Linux’s official page, it is explicitly mentioned that:
Kali is a Linux distribution specifically geared towards professional penetration testers and security specialists, and given its unique nature, it is NOT a recommended distribution if you’re unfamiliar with Linux or are looking for a general-purpose Linux desktop distribution for development, web design, gaming, etc.
Righty oh ... mr paranoid spreading fear here ... OK he is partially right tho there is such a thing as firmware malware its rare and unlikely to be used in a random attack as its uber traceable .. and as this is ring zero its pretty damn awkward to remove at times there are engines out there that can detect this firmware like trapezoid firmware integrity engine.
43 likesOnto the O/S so he created a forensic image (for what purpose) and sniffed through deleted files ( let's hope its not a ssd as once trimmed a ssd is irrecoverable) but looking for deleted files is frankly attempting to access unauthorised data and maybe depending on your country and laws possibly punishable.
So my list buy If I buy second hand laptop.
Flash firmware(bios)
Reset bios
Format disk and install operating system. ( if you want to install Windows just google Windows boot disk creator)
For those using Linux, you already know all the above..
Replies (1)
@no, as a matter of fact spent a bit of time in data recovery world.. rotational disks you can reassemble partitions, ssds just a quick trim
0 likesWhile I think the risk is small, there's no reason to even take a small risk. Good on you for sharing these tips.
11 likesReplies (1)
Then you have to buy a ThinkPad old enough to be able to be CoreBooted and have the Intel ME disabled. ;^)
1 likeThere's no point in being too paranoid with opsec, you are not as important as you think in the eyes of the government, unless you're a terrorist, drug dealer, pedo movie producer, or a journalist or political activist in an authoritarian country. Computers are too complex for you to be ever able to trust them, carrier pigeons may actually be safer to use.
You should reinstall the OS anyways because either:
10 likesYou run windows and don't want to deal with someone else's programs and files, or manufacturer bloatware
Or
You run Linux and would have to anyways.
You should update the UEFI/BIOS not because of some boogeyman firmware malware, but because most people never do anyways, and it's good practice, plus it can increase compatibility with hardware if nothing else.
Snooping into other people's deleted files is creepy and invasive as hell. Frankly it's just as bad as someone planting malware in the first place: it's data you shouldn't have access to and just because you can, doesn't make it okay. It's like breaking into someone's house because they left their back door unlocked.
If you go to this level of trouble not just for a tidy, updated system, but because you're terrified of the one in a million chance someone spent days, maybe months or years, engineering a semi-custom firmware/hardware malware, you're insane. Especially when at the same time, there are plenty of real, for-profit software and hardware organizations that can barely even get WiFi, webcams, GPUs, or microphones working. Planting malware in the OS it came with, I can understand as it's easier to do, but again, you should be installing a fresh os anyways.
If you do it because you're a security expert who finds it fun, or a snowden, a spy, a terrorist, a "poor little journalist investigating sensitive subjects" (always seems to be the go-to example), or just happen to be buying a used laptop to carry millions of dollars of your company's IP, then I can understand. Otherwise it's doing more harm than good to suggest that not doing these things is going to leak people's bank info.
Replies (1)
Imo selling a hard drive means selling the data on it. What does the law in your country say about this?
0 likeshey sir, i would recommend you to insert the text so i can clearly understand what are you sayibg coz u speak lil faster ... IT's not necessarily but i love your 1 min rich videos..
115 likesReplies (7)
finally someone with same thought
10 likesor maybe get a pair or ears
5 likes@UN-common Sense AUS i'm learning but i ain't native but thank you
13 likesYou can always reduce the playback speed to 0.75x
6 likesnija problem alahai xtau ke perang abes forword lama buat apa alamak i ar
0 likes@『CHAR』 Ninja tau pun haha
0 likeschange the video speed
1 likeIf you have reasons to be paranoid, never buy second hand hardware like that from untrusted sources/vendor. You'll never know if everything inside has not been tampered. Easiest would be a chip tapping into one of the usb slots. Google super micro chips in the news.
1 likeGreat, now i cant have a safe pc without having a phd in computer security wooo
3 likesOh wow that's why I never bought something used :c you could take a risk to be hacked or something like that
1 likeDo you have a site online where you go into more detail on the tools you use and constructing a kali usb toolbox?
8 likesReplies (1)
No copying
0 likesHey can you do some diy external hacking tools
5 likesWatched this video a few times but still can't understand how to do it 😃☺️
3 likesIf you make a full tutorials it will be a lot more helpful
1 likeCould we get a more in depth video on this?
0 likesNo, it isn't. Just reinstall your OS and update the BIOS/UEFI (not because they will hack you but because it's just a good thing to do) and nobody can hack you.
0 likesUmm...
6 likesI think I'll just buy a new laptop.
if this laptop has intel s management engine or amd s equivalent, is it secure?
1 likeReplies (1)
by technicality no because it can be exploited but unless you want to buy something from 2008 or try and disable it yourself despite the major risks there's nothing you can do, everything else has the same flaw too
1 likeWould you recommend buying of craigslist laptops, if we follow your procedure (to the point and beyond)?
2 likesReplies (1)
@mister.T Jr lol almost every Job does pay monthly where the hell are you from?
0 likesYouTube only recommends me videos with a ThinkPad in it!
1 likeThis good that you are doing this but the just sounds like pain I think I would just buy a brand new laptop instead.ps I did buy a use laptop before it was really nice I guess but the battery wasn't great and my charger broke in the end so I bought a new one but the changing port is broking or something wrong I don't know but suck so, want I'm trying to say is maybe don't buy a cheap/used laptop.
1 likeReplies (1)
You can get charging port replacements online, the connector isn't soldered onto the motherboard (usually)
0 likesCan i ask a question? Some of the Lenovo Thinkpads only comes with Intel Integrated Graphic cards. Since it does not come a Dedicated GPU like Nvidia GT'X or AMD Radeon. I wonder any possibily doing password hashcat cracking with only Intel Graphic card as it only using 1GB shared memory with the RAM. How about the current lineup of Apple macbook pros? How to pentesting since it only using thunderbolt 3. And require using Thunderbolt 3 dongle. Any success rate of using Kali Linux with the current macbook pro line up that comes with Apple T2 chip problems???? There are numerous problems as it causing apple T2 chip crashing. What can you reckon me to buy a PC laptop or still a macbook pro 16 inch?????
0 likesIf you just remove the BIOS battery could does it remove virus on the firmware
0 likesPersistence boot for kali linux is not working, can you help me with that?
1 likeCould someone explain to me in detail how to do everything he says to do?
0 likesReplies (1)
oSenzu YT yea: step one: don’t be insecure, this will never happen to you. Maybe 1 x 10 ^-50 % chance
2 likesWiping hard drive in a forest... How romantic
0 likesI must learn.
0 likesI am a beginner in security
0 likesAny advice
I am a beginner in security
0 likesAny advice
Replies (1)
No system is safe.
0 likesI'll just get a new one
0 likesCamera closed XD💀
4 likesLike diy rubber ducky or something like that
1 likeAnyone suggest me a good laptop please
3 likesHate when I delete my porn folders before sell laptop and then some guy finding them looking for deleted suspicious files :<
2 likesThank
0 likesbro this mans speaking enchantment table what the frick
0 likesThnx
0 likesCrypto the Lama. Help!
0 likesI have a fucking x250 too
0 likesIm too stupid for this
0 likesCan you help me on my Inspiron Laptop? Mostly everyone has this problem with their dell inspiron computer, and most of the discussion is on dell support. The 2 w s x and caps lock are not working.
1 likeYou must be rich
0 likesAre you hacker
1 likeWhy are you using kali as your main os?
3 likesReplies (7)
Pen testing.
1 like@Meh Meh he can run it as a vm
0 likes@nonasuomynona 173 And dual boot it from a usb, your point is?
0 likesWhy not ? ...
0 likes@UN-common Sense AUS on Kali Linux’s official page, it is explicitly mentioned that:
1 likeKali is a Linux distribution specifically geared towards professional penetration testers and security specialists, and given its unique nature, it is NOT a recommended distribution if you’re unfamiliar with Linux or are looking for a general-purpose Linux desktop distribution for development, web design, gaming, etc.
@nonasuomynona 173 my point stands.
0 likes@UN-common Sense AUS sure
0 likesHaha lenovo stinkpad
0 likesHey gib me a free laptop ..... Me really poor 😭
0 likesReplies (2)
Mtlb maangne wali aadat nhi jayegi 😂😂
1 likeI'm good.
0 likes