Silk Road forums
Discussion => Silk Road discussion => Topic started by: comsec on October 02, 2013, 10:06 pm
-
"Deepbay"
These idiots are using cookie-cutter PHP templates, most likely wordpress.
Zero information on their setup. Just because they are "in europe" doesn't mean shit since the feds can easily close down CIS/Russian and other Eastern Euro fraud forums as they have before. I expect this site to be hacked out of existence quite soon as soon as antichat.ru and Xakepy find out about it and want some free bitcoins. I haven't noticed any CSRF tokens either, appears vuln. I'm on a phone and can't really check.
"BMR - Black market Reloaded"
The guy who runs it is well known and there's literally an Encyclopedia Dramatica page with his picture on it. I expect him to own "Deepbay" pretty quick as he an avid amateur hacker and spammer and has been spamming the forums here for ages.
"SHEEP MARKET" is using Twitter Bootstrap. They aren't at all taking this seriously. Anybody using a fucking framework to run their illegal site is dumber than DPR ordering dozens of fake IDs to his house. Seriously, it's not brain surgery to write a small python or haskell web app. Keep a lookout for Twitter Bootstrap patches, and run diff on them to see what they changed. There's the exploit, now pwn this server before the admin get's a chance to update and install your backdoors.
Any others?
I'm interested in creating a Canada only site. Canada vendors where are you going?
-
Fuck the shitty VPS that hosts this forum is dying out fast with all the users
-
Canadian buyer here. Would definitely be a big time user of a Canadian market. Tessellated, Leaf, PlanetEarth, come to the rescue.
-
This fucking sucks.....so you wouldn't trust BMR? I was kinda leary on it too...
-
Fuck the shitty VPS that hosts this forum is dying out fast with all the users
Yes either going to hit BW limit or get suspended for CPU or I/O abuse or just crash under the load. Need a backup to communicate ASAP, most don't even know this has happened yet.
http://dkn255hz262ypmii.onion/index.php?topic=216541.0
-
BMR does not look too awful. I am seeing several legit medical cannabis vendors from SR moving over there. I sure as shit would not do that deepbay site. Won't even go too it.
-
Sheep doesn't even have escrow. Wtf?
-
"BMR - Black market Reloaded"
The guy who runs it is well known and there's literally an Encyclopedia Dramatica page with his picture on it. I expect him to own "Deepbay" pretty quick as he an avid amateur hacker and spammer and has been spamming the forums here for ages.
link? im searching dramatica for backopy and bmr and theres nothing on there. sounds like fud.
-
Fuck the shitty VPS that hosts this forum is dying out fast with all the users
Yes either going to hit BW limit or get suspended for CPU or I/O abuse or just crash under the load. Need a backup to communicate ASAP, most don't even know this has happened yet.
http://dkn255hz262ypmii.onion/index.php?topic=216541.0
I think MOST know... we have hit an all time high for users on @ the same today TODAY...
-
Something about a site called "sheep" is a concern....
-
Something about a site called "sheep" is a concern....
SHEEP BEING TRAPPED FOR SLAUGHTER!? I've been thinking that over and over... atleast it isn't just me...
-
If anybody was around 4chan circa 2008, you know exactly who runs BMR. Remember when it launched and it had highly illegal CP for escrow?? Gee who could that be. The same guy who shut down his spam service and failed CP board and told everybody he was working on a huge new project that would make him 'millions', and next day BMR starts.
I don't think he will scam anybody, just he's pretty well known to still be running that site considering he's the last one standing and I'm sure there's plenty of DEA money left to go after other online markets. Either way, it's yet another market that deals with the US.. something I want to avoid and make a Canada only market, then expand to EU. Let somebody insane with a death wish run the American markets.
-
does sheep market not have escrow ?????
-
Not related but comsec you know that 4chan servers has been in us fed hands for well over 1yr now? started as fed allowed backdoor to monitor for CP then they took the server.
comsec - where is your PGP key?
-
here's my contact info:
canadasec@yandex.com
Email me if you're in Canada I'll probably have it up in December I'm still working on it (fuzzing the web app, making sure traffic isn't leaking with snort audits, and testing the homomorphic encrypted db). 2048 key because I'm on a phone navigating noodle houses while trying to type this.
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2.0.19 (GNU/Linux)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=rIWO
-----END PGP PUBLIC KEY BLOCK-----