You are hacked if you find this device on your network...

s

h

U

T

T

E

R

Closed due to brain overheating

:/

@Glitchey sorry it'll open when fortnite dies

SNIPER so it should open pretty soon

RMC 247 we can hope

@beastrollmcisavirgin yup and it's open now

FORTNITE DIED

Start crab rave at 100% volume lol

s:

Stop with the “boy” and “boi”

@3K3H it better be open considering they put black panther in fortnite, how disrespectful of them

Ryrygamers ikr

Ryrygamers lmao i’m not a fan of fortnite but they did it in memory of him

@Nicholas Prado Boi

Just cause something is encrypted, doesn’t mean it can’t be broken into.

kʌnt any better chanels??

moonlitee could you please explain more?

@OskarZyg no

@moonlitee you can't https is encrypted

@moonlitee but you can't read the packets because it's end-to-end encrypted. Only you and the destination have the decryption key

@OskarZyg yes it does, https uses public key encryption and trust chains .To break https on the fly is frankly impossible. The traffic intercepted will list the domains you visit ( as dns is not encrypted ) but the actual packets between you and the server if it is on https it going to be nearly impossible to break that traffic

Where’s his original comment lmao

OP - GP I think he deleted it.

OskarZyg oof very sad

It does... the ONLY thing they can see with https is what website it is... and if u use brave browser it automatically converts http requests to https

OskarZyg but they can access the ip bypassing the https lmao

@chicken pock what do you mean? I really don't know, I am asking

@Melih Çelik The Private IP is in the systems information, they can access critical content by getting access to this, say for example a hacker gets into a private ip, they can also access and manipulate links changing the https to http, a non secure web format

@OskarZyg , to some extent yes. Https does protect you to some extent from packet sniffing attacks ( when someone captures your packets through wireshark and sees what are you doing over an unprotected network). Unless the website you are visiting is using a fradulent TLS/SSL certificate or the hacker is smart enough to initiate an "ssl strip" attack.

Here's how https works, when you visit a website there's what is called a 3-way handshake that happens between your broswer and the website server. Your browser first sends a request over http , the server responds back with its public key with a 301 redirect to an ssl gateway so that browser can encrypt it's messages with that public key over that gateway.

Now if a hacker is smart enough, they can intercept this response and "pretend" that they are "you". So instead of your browser talking to the websites server, it instead talks to the hacker's proxy. Whatever you do so is not actually encrypted and that isnejat we call an " SSL strip " Attack.

Nico VB Not everything id

@chicken pock no. no no no no no no.

This entire video is fake just listen to the waffling hes doing also it makes no sense.

@Nico VB Yeah I don't think this attack would "pwn" many people today. Nearly every site using sensitive info is https. But oh noes, muh dns. They know I went to coolmathgames.com

This is correct. The attacker will only be able to see where the packet is going, but not the data it contains.

@jnex26 in the early 2000s SSL Strip (an applicaton) could be ran to unencrypt any ssl data
..... that is not the case today however

HTTPS
the s is for secure

@Koi589 x u have no idea man

@Koi589 x https is good enough for me

Hahahahaha... no, this is sending it all through there every little thing and password I mean just get wireshark and start playing with it

@Koi589 x not true

@Ash Ash I completely see your point, except at that point the hacker would have to get lucky with when they pretend to be you, as you wouldn't see the page, the hacker would (assuming you're faking IP). So either the hacker sees your encrypted packets, or they see one webpagw you went to in 1 state at a time before they refresh.

@Hellfire missile salesman if it is https you can't

william lee The topic here is if HTTPS could be seen in raw infos.

Very true very true

undefined channel I don’t think it’s fear mongering, the guy was just explainingsomething.

@Swaggy Pea all his videos get subs/likes/whatever because hes scaring them into watching his other "safety" videos.

undefined channel yeah, the title does seem to be a bit exaggerated

undefined channel Can you explain what HTTPS is?? sorry lol i dont know much about this type of stuff

@lol HTTPS is a method most websites now use to send encrypted data to your device which means that your ISP/wifi hacker can't see the data the website sends you

@lol websites will normally start with http:// or https://. http encrypts your packets like a vpn might, whereas http is the raw data and is unencrypted. Think of the s in https:// as "safe"

NotXion oh cool

@xion The S actually means Secure but sure close enough

@Channel Name • 10 years ago I never said it meant safe, I said "think of the S as safe", because https is safe, and http is not.

@xion yeah I know. I was just clearing things up in case someone found this thread or something

Not everything is, for example legacy websites or websites that simply don't have it due to lack of capabilities. But for everything else, they use HTTPS which is a secure connection to any supported website.

@Lerma Bean (Please Call Me Lemur) with services like let's encrypt it's free to get a certificate that most systems will trust, so there's really no reason for sites to not support https

jnex26 someone who knows something about security...

@Taylor S Thank you...

@Gangranea so it'd be useless if you were the end user?

@Gangranea lmao I just kinda called you useless mate, obviously sarcastic. Also it is useless.

Dude I knew this wasnt right but I couldn't figure out what the device was! What did you have running on them?

Lol

they couldnt see anything else besides the domain name of the website

AND COLLECT DATA










of your roleplay! Because the hacker isn't a hacker, she's your mom looking at your roblox chatting! ;D

@Loop I-

@Loop NoOOoOoOoOOoOoOoO, ah frick she's calling my full name

Just because you dont have something to hide doesnt mean others dont have a right to privacy or security

@Souliousery who pissed in your cereal my dude

@Death Sticks Addict i did, i am the one who pisses in my cereal

this is wholesome

Dude, do some reading on public key encryption, two factor authentication and hashed password transfer.

This video is a load of nonsense

@jnex26 if ya think that thing can't be cracked!

@chraso All cracking of SSL nowadays requires exploititing the private key in another way then attempting a bruteforce ... which still takes weeks if your not using a elliptical cypher then good luck..

Oh BTW tls1.3 starts to close that little loophole

Https look it up

@chraso You're one of those guys who plays games on Linux cuz he's scared of the big bad cooperation

@Jett Wrong, at my workplace, company runs windows and uses other proprietary accounting software. And personally I use linux for everything at Home. :D
BTW it's not a big deal for me to use anything that I can have my hands on with.

@jnex26 sounds like this dudes channel is a load of fear mongering for views

@LeeroyMLG Yeh I really have issues with people spreading fear , uncertainty and doubt. Us in the industry spend countless hours on systems, processes to protect everyone else.. and a simple video like this starts to unravel it.

@jnex26 yeah I don't believe this kind of stuff. I have faith in the systems we have. Its not that easy to get away with kind of stuff unless you have years of experience and really want to do it

I have it better, i dont even have a bank

@jnex26 everyone has a key but said key only locks it the bank has the only key to unlock it

And vice versa

@jnex26 Only way I can possibly see someone grabbing actually valuable data is using the local network to compromise network devices that have improperly configured settings, but even then a mediocre anti-virus would probably detect anything remotely suspicious being uploaded via the network.

@Just a Goose even if you have full access to the local network, your not getting the private keys without compromising the machine

@jnex26 I meant, if you compromise the network they are sending data from, you could just interpret their information and send it to the website as a middleman and then the connection would be from your device to the website and they are using your device as more of a proxy than anything.

@Just a Goose even if your acting as a proxy you will need to exploit the machine because your not going to get a trusted root cert, on the client machine without administrator access to the machine, then you may aswell just install a key logger..

The point being is that even if you can see all the packets of data SSL encryption is of such a high standard nowadays ,MITM is frankly not worth it.. it used to be you could use a downgrade attack to expose the private key, but they have not worked for years now either.

And that’s why your broke

Good thinking. Dont ever access personal data on public wifi

@RoscoeJustros why not !!! If your running https why should you not !

Come on back up your statement!

Who would? Like seriously someone could just, look over

All I use free wifi is porn surfing lol

@Jett nothing wrong with Linux even I use it or used to but people are crackheads if they think TLS and https is easy to crack. Also you need to be tech savvy enough to know how HTTPS and TLS works if you game on Linux.

@chraso it can't be easily cracked, it takes billions of years

Almost**

That would be the biggest case of the oofs imaginable

HTTP and HTTPS are not the only protocols in existence... there are thousands more. SMB is often used for transferring files or sharing printers. FTP is a plain text protocol for the same. If those handshakes are captured, they can be abused to gain higher privileges.

@BugByt3 Anything with basic E2E encryption is completely protected from network sniffing programs like Wireshark.

TLS/SSL certified websites are 100% invulnerable to network sniffing, as they use a 2 key system that only allows 1 connection using the same key from a device, so unless your device is compromised it won't do shit.

@BugByt3 if you want secure file transfer there's ftps (normal FTP but over SSL) or sftp (over ssh). It's also possible to transfer files over HTTPS.

Or just understand that if there's a padlock in the url bar it's almost impossible to see what you're doing

It can also do the same for phones and it's overestimated in this situation

Dankpods?

@Plinky yes

@JamesnLollify you wouldve been a dingus if it wasnt dankpods!

Oh really..

Nah if a site uses https then it's end to end encryption, this device won't effect you as all sites that handle sensitive info such as banks or social media use https

In other words don't listen to him

Also https which is generally used to encrypt a VPN and most websites you visit: bro y u don't c me? Am I dis smol?

Aka

Bro, why don't you see me? Am I this small??

Just know https can't be cracked easily

Try Proton VPN

@Not A Programmer nah there are good free vpn's and you could also set up your own vpn

@Carter Bohrer yeah true

@Salman Sajid try cyber ghost.

No need for a vpn unless you want privacy... all this device can do is see the domains you are visiting... HTTPS SSL/TLS encrypt all your data safely, HTTPS is the default encryption method for over 90% of the internet (correct me if im wrong) so that means all the data in the packet gets encrypted... all they can see is the domain name of the website your on. Unless the website you are using uses HTTP you are fine :) @ohtaylr on twitter if u need any more explanation just dm me :)

VPN's are virtually scams

@Carter Bohrer bruh what?

@Nim Luikham He doesn't have a clue what he is talking abt lol

You aren't at risk anyway, almost all sites now days use end to end encryption so either this guy is just trying to scare everyone or doesn't have a clue what he is on about

@SimmerTheSauce only website? Website like in browser? How bout an app?

@the tin Yep, apps too. Banking apps, social media, all of it. The packets going to and from the router are all encrypted so even if a hacker has got it they won't be able to see what it contains

The guy is a script kiddie and is either trying to sell the product to other skiddie's or doesn't have a fucking clue on what he's talking about lol

New think pads are still made there quite pricy too this looks like a 2017 Thinkpad that could have retailed anywhere from $500 to $16000

This is a hoax. You cannot decrypt a https request. This guy is just showing you a bunch of dns whose value is nothing at all

@HAI LA HONG really? Well dam

Ebay

Wrong

Sean Worrall lol. Vpn has nothing to do with this. Read some documentation. Come on

@HAI LA HONG why vpn has nothing? Please tell me something. Or some documentation link. Please. I was wrong. if you have knowledge then please give us.

GrayCyberMonk https encrypts your payload already. You don’t need vpn for this anymore.

the first one is a packet squirrel and the second one is a lan turtle

@your car's extended warranty thank you so much, mate

Do. Not. Install. Kali. As. Your. Main. OS. Only use it as a live USB. Do not install it. You will have problems and you will break the system. Try something like Ubuntu, Linux Mint or Manjaro Linux.

Kali Linux.

Kali linux on lenovo think pad

@The king Kali linux is alright for a linux distro. Its made for pentesting but sucks for everyday use. Its better to use something like Arch and just install the tools want. If you mean Thinkpads then sort of. Lenovo will refuse to offer support if you installed linux on the system, otherwise they are pretty good. Many of them have a second antenna inside that allow for devices to connect to them, imagine all the fun stuff you could do with that feature.

@The king I currently work in enterprise IT and work closely with infosec in a fortune 100 company. A Thinkpad is a good choice. There is no laptop built suitable for cybersecurity, its the software and operating system you install. I only suggest a Thinkpad as they are built with a rollcage inside, can be serviced and have lots of parts available, have a drain hole for the keyboard, are most of the time not lacking in ports and are used everywhere in enterprise environments. Not to mention the second antenna inside.

@Gray Shell Isn't Lenovo actively contributing to the Linux kernel now?

lubuntu

@Grant Mulholland They offer support on certain models but mostly Ubuntu.

@Gray Shell This is the part where Bedrock comes in.

Yes officer, this person right here

Most sites use ssl so this is useless. All you will capture is fucked up encrypted data

Vpns dont make you hack proof in the slightest

@Sushi Midnight VPNS protects you your data when ur using a free network

@Activegamer 86 no, thats something vpn companies say to sell thier product, a VPN does almost nothing to proctect you from malware and hackers

@Activegamer 86 lol no they dont, they just change your ip address

All vpns really do is mask your ip but routing through a different place, making you pretty hard to track. If someone has your actual ip or physical access to your pc, they can connect and do whatever given they can bypass whatever security you have

They do make you hack proof cuz they generally use TLS or other encryption to communicate with your device

@mom ruoy dekcuf I (Read it the other way around) so does any website that uses https

@Pastel Splash but does any HTTPS website mask your IP

@mom ruoy dekcuf I (Read it the other way around) No but masking your IP only helps a tiny bit from getting hacked.

@Veersing Hansdah seems like some nerd just got offended..lol

@Veersing Hansdah read properly fool .."STUDENT". Btw the channel owner is not worried about my comment why the hell are you so bloody obsessed ? Go do some work make your fam proud kid !

@Veersing Hansdah blah blah blah...😴😴

@Veersing Hansdah bruh, he said "ethical" , calm down.
Gov. don't break into someone's house just because they mentioned the words "ethical hacker" on some YouTube tiktok lol

yep

@Not A Programmer But you sure aren't

@Not A Programmer ,,Well it's complicated "haha

Hes a skid lmao, who df uses kali with nothing loaded up?

@Not A Programmer Nah lol, he is a skid

Bet you use a macbook lol (no i don't use a thinkpad but i also don't think they are cringe)

@SimmerTheSauce hell no I don't use a MacBook. Apple is dogshit, I use a Dell XPS.

@b00t n3t oh, well how are thinkpads cringe?

@SimmerTheSauce because of what I said before, everyone uses them.

Read books and Deep Web forums and you will learn.

He is a skid, he clearly doesn't know what end to end encryption is

You must've felt so badass 🔥😂

M8 these things are not only used for spying since most internet traffic is encrypted it can't even read the packets, but it can provide useful information. Also your pc and phone do track everything you do (except your using Linux).

@Carter Bohrer not everyone knows about this stuff
You cant say that everyone with 3 or more IQ would know

Yeah you can because if noob id got hacked than this does not matter

Lol😂

I wanted to tell you I am on ace and have a kd of 4.96

Ohhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh

And I was the #1 player in the world after world war 7

@Sadik Sadik but can it run crysis?

?