Getting the Hang of Linux! (Really.)

Some of the bros on MadIRC were messing with me about giving some variety to the blog, and suggested that I document my Linux learning process for you all. After all, the “dark web” isn’t always as fascinating as it’s made out to be.

So, as I’ve mentioned, my particular Linux distro is Ubuntu, which is considered to be a good distro for a beginner. I suppose that, after time, I may move on to something more advanced (yes, that’s what I tell myself…).

As some of you may know, Ubuntu at least has a GUI to start off with (I’m using the GNOME desktop), as opposed to, say, Arch, which is bare bones. Maybe I’ll get to that one day.

Mine looks very similar to this one:

cinnamon2ubuntu-large_001

One of the major adjustments, of course, has been using the Terminal, and learning the associated commands. I assume this will become second nature at some point. I’m already used to typing:

sudo apt-get update

sudo apt-get upgrade

And getting the message “Permission denied, are you root?” That’s so much fun, isn’t it?

http_cdn5.howtogeek.comwp-contentuploads201203apt-get-update

One of the major reasons I switched to Linux was that I was tired of getting viruses on Windows, and as many had told me, “Don’t use Windows with the dark web!” I guess they weren’t kidding, huh?

Another reason is the fact that it’s open source, and that there seems to be a lot of Linux community support. In particular, I really disliked Windows 10 – I felt as though it was collecting way too much info about me, and had numerous glitches.

Anyway, a lot of the learning has been trial-and-error, but I subscribed to Linux Hint, which is helping, and plus, I know a lot of Linux users, so they’ve been giving me useful hints along the way. Hints like, “Type ‘yes [string]’ on the terminal.”

funny_commands-yes

Very funny guys.

Of course, I use Tor with it too, which seems to run very smoothly. I don’t know if it’s my imagination, but it seems faster. Is it?!

tor_browser_ubuntu

In addition, I liked the idea of running Tor from the terminal, with a command like:

start-tor-browser

I plan on documenting more of my Linux/dark web drama as it unfolds, so expect to hear more!

Besides, I know that some of you readers are also Linux users, so do you have any terminal hints for me? Feel free to leave them in the comments.

angry_penguin

 

Advertisements

Hidden Clubs: What’s the Password??

The first rule of Hidden Clubs is – you do not talk about Hidden Clubs.

Lo and behold, it’s exactly what it sounds like: a dark web site with numerous exclusive “clubs” that either require an invite or can only be entered with a certain number of “points” on the site.

If you want the link, here it is: http://x7giprgefwfvkeep.onion/

hidden_clubs_edited

To register, you have to use a fake email address, as in “gebryotes@fake.onion.” Once that’s done, go through the “Club Directory” pictured above, and find things that interest you.

Of course, I had to join the MadIRC club, because they’re awesome, right? At the moment, that, and a few other clubs (as you can see in the screenshot) are the ones I’ve joined. So far, I’ve “gained access” by asking for an invite. I imagine this isn’t the case with all of the clubs, if they’re more “secretive.”

If they’re anything similar to sites like Suicide Apartment or the now-defunct dark0de, then they won’t give out invites to just anyone – but you never know.

One of the more interesting clubs I came across was called “Silk Road,” (yeah that), and claimed to be a “new” market, or something along those lines. If you want my opinion, the Silk Road brand is dead, but good luck!

JERTPRINTCAMELDOG-WEB

So, what’s the point of all this, then? I suppose that, like much of Tor, it’s intended for privacy and anonymity – or just to sound cool. I’ve noticed that, any time I say that a site is exclusive or members only, people keep asking how to get in. Ironically, once they do get in, the sites have a tendency to look disappointing.

Don’t get me wrong – I think Hidden Clubs is entertaining, but so far I haven’t figured out anything all that secretive about it. Maybe the problem is that I haven’t earned enough points yet.

That being said, I should start my own club on there. Any suggestions as to what to call it?

 

Did Captain Kutchie Stop By?

For those of you who read my post I Tried Captain Kutchie’s Key Lime Pies!, there’s been an interesting development. On that same post, there are two comments, which I at first thought were spam, but I’m not so sure.

They appear to have been written in ciphertext, but I have no idea what algorithm they’re using, if that’s the case.

captain_kutchie_comment

As people like Elder’s Vault and Nightmare Expo have mentioned on their videos, “Captain Kutchie” often leaves comments on random sites and articles. What also tends to happen is that sometimes the commenters reply to each other, as if in conversation. That’s what seems to have happened here, except that for the first time I’m aware of, the comments are written in code.

The first comment, from someone named “sUmpybUdv,” reads “tWOisjjWhk PuWXEYkZlX TUdAdIFjKC rzYLfPULJW FsBRftDMsw jqOlRJlwgs rddhwwfnva SMbBILFtzI JQYUtYnpWm HvRXmHGhoL.”

The reply, from “rAtlebAjfs,” reads “xIdhjsKUgh OruttExsad FjnkjnIcIv rudFgjklkk KIjzifKugH.”

Interestingly, under the info for the first user, it says that their email address is “ljjyit@snepzn.com,” which is probably a spoofed email. Also, the first commenter lists their website as ixzuffja.com, which doesn’t appear to exist. The IP address of the first commenter reads “185.159.131.192,” while the address of the second reads “134.3.216.30”.

I attempted to look up these IP addresses using the WHOIS IP Lookup Tool, and this was the result I got:

whois_denied

Access denied?! Oh well. So, is this person just a spammer, or are they trying to tell me something? I would have assumed the former, but the fact that it was on the Captain Kutchie post makes me curious.

In the meantime, please enjoy your key lime pie – and tell Mrs. Anita Pelaez that I said hello.

Key-Lime-Pie-2

Red Triangle: Unsolved Parts!

So, rather than just repeat everything from the Red Triangle puzzle that’s already been solved, I thought it might be fun to analyze the parts that are yet unsolved! (At least by the community, that is.)

Referring to the wiki again, the most recent piece that’s been solved is called Lust, which is at http://hvdnczxro3ssxkau.onion. On that page is this image:

red_triangle_lust

Go back to where you came from.
Go back to where it began.
Go home my child.
To where it is safe.

 I would go back to where I came from, but I’m not sure where that is.

On this same page is a file called “Cake.rar,” at the link http://hvdnczxro3ssxkau.onion/Cake.rar (Note: if “.onion” doesn’t work, try “.onion.link”; just make sure you’re using the Tor Browser.)

I haven’t tried this yet, but if you combine the characters from the various pages on the link above, it gets you the next onion link.

Anyhow, the following pieces of the puzzle are still unsolved (at the time of this writing, anyway):

  • Gluttony
  • Greed
  • Wrath

Gluttony is at this link: http://xvp2vy5iwzmeam5e.onion

It consists of this image:

red_triangle_gluttony

According to the wiki (yes, I cheated again), ROT-17 and Base64 decode the top string, while ROT-23 and Base64 decode the bottom string. The others haven’t yet been figured out (at least not by the group of solvers).

The red text at the bottom of the page still hasn’t been solved, either. Anyone care to take a crack at it?

Greed is at this link: http://no327mkyg2mmflx3.onion

red_triangle_greed

As you can see from the image above, it consists of that spiral, with the accompanying message:

Stare into my Eyes, what do you see

Greedy Greedy Greedy children receive nothing.

dAc58AAA88568Ac5c549g3c8dc3B3chB

45Bf5d4674e8d9g54d96d4dgcgA65c6A

On this site are three other pages with additional parts to the puzzle:

http://no327mkyg2mmflx3.onion/Sunshine.html

http://no327mkyg2mmflx3.onion/Raindrops.html

http://no327mkyg2mmflx3.onion/Pi.html

These pages each have more encoded messages. Here’s an image of Sunshine, for the curious:

red_triangle_sunshine

Obviously, the text on the top and bottom is in Cyrillic, though I’m not positive what language it is. And the text in the center is Hebrew, but I haven’t had a chance to translate it yet.

Also, clearly the symbols on the left are significant as well, but they don’t look familiar at the moment. Help me out here, puzzle solvers!

Page 3, “Raindrops,” has this message:

red_triangle_raindrops

This page has a sequence of numbers (a Pascal’s Triangle):

1

1 1

1 4 1

1 9 9 1

1  16  36  16  1

1 25 100 100 25 1

149 441 1225 1225 441 49 1

1 64 784 3136 4900 3136 84 64 1

1 81 1296 7056 15876 15876 7056 1296 81 1

As to how the Pascal’s Triangle leads to the next clue, I’m not positive – the sequence of numbers is usually significant, and there may be another pattern I haven’t figured out yet!

Finally, page 4 is called “Pi,” and looks like this:

red_triangle_pi

Hmm…that sequence of letters looks familiar, doesn’t it? If you want the spoiler, go to the wiki. Or you can try and figure it out by yourself.

Anyhow, do you guys and gals think you can solve some of these unsolved riddles? Leave your answers in the comments.

 

Interview with DrBundy, Hitman Site Operator

On the dark web, or more specifically, Tor, “hitman” sites are a dime a dozen. I had assumed that most were scams, based on both my experience and revelations about sites like Besa Mafia.

Nonetheless, when someone gave me the opportunity to interview a person who runs one of these sites, I couldn’t resist. The person in question is DrBundy, who runs a crowdfunded assassination site called DrBundy’s network. What I found a bit different about his site (as opposed to its competitors) is that they claim to target pedophiles, who, even on the dark web, are at the low end of the totem pole. Also, the profile pic he sometimes uses looks similar to this:

dry_bones

I say that gets him cool points. Anyhow, I chatted with DrBundy recently, and got a few insights into running such a site.

Secrets of the Dark: Do you have an official website for your business? If so, what’s the onion link?

DrBundy: Yes, it is here, http://drbundyscn6tebow.onion/

SotD: What are some methods you might use to knock someone off?

DB: Preferably a gun. almost always a gun.

SotD: Are you a legitimate assassin? Many of the “hitman” sites on Tor have turned out to be fake.

DB: I have never been an assassin, or a hitman. These days I’m just the go-between and escrow for the clients and hitmen/women who are looking for work.

SotD: In relation to that, what is your opinion of other hitman sites on Tor, like Dark Mamba?

DB: In general, if they offer dumb things like torture and assault, it’s probably a scam.

SotD: Do you offer other services besides hits? For example, could you have someone beaten up, but not killed?

DB: No, “Dead men tell no tales”. I don’t want any of my hitmen compromised or caught because they went to “beat someone up” for a few dollars. We are not thugs.

SotD: What form of payment would you accept for transactions? For instance, bitcoin has sometimes been traced back to the person who did the transaction. Is there another one you might use?

DB: No, Our money guy takes care of the tracking issues. His job is solely to play with bitcoins and do whatever it is a money guy does before it’s split up and sent out to the respective parties (I.E. the hitman) when the job is completed.

SotD: Operating a service like this would require some technical knowledge as well. Do you manage it all yourself, or do you have a partner who handles the technical side?

DB: I have partners who handle almost every aspect of the service. Its designed so even if one of us goes down, we can continue the service with little to no interuption like when our tech guy went down and our site was down for awhile. We still contiued on, but we had no site for about a month while we rebuilt it.

SotD: I have heard through the grapevine that your service is very active. Without naming names, has it been successful so far?

DB: Yes, [but] we’ve been struggling to keep up lately.

SotD: How long have you been in this business, and when did you start using the dark web for it?

DB: The business side is a recent thing; it came around about the same time I became active on the dark [web]. In the past, I simply hunted pedos out of hate and disgust. This simply funds that.

SotD: Because part of your business has to operate offline, how do you maintain your anonymity?

DB: My side of the business operates solely online.

SotD: Where did you learn the skills that you need for this job? (For example, the military or a street gang.)

DB: Trial and error. Nothing says failure like a broken jaw and a gunshot wound from your own gun.

SotD: How can you guarantee that you would go through with a hit? For example, do you take a down payment, and then the customer pays the rest after it’s been carried out?

DB: I don’t carry out the hits. We are simply a network, if one man fails for whatever reason, we simply send another. If for some reason, we are just failing to complete the job, we will issue a refund. We have a reputation to build and maintain.

SotD: Are you the best assassin on the dark web? It looks like you have a lot of competition.

DB: Who knows?  But I do know that most are fake.

SotD: I like the idea that you have a “Save-a-Child Foundation” on your site (i.e. stopping pedophiles). Has this been a successful point of business for you?

DB: The business is based around the Save-a-Child Foundation. It was the reason I got into it. I could care less if people hire us to kill their ex-husband or wife; my main purpose in life is to kill pedophiles.

SotD: What else would you be willing to tell people about yourself?

DB: My name is not really Dr. Bundy.

Hidden Top-Level Domains? (Ooooohhhh!)

A reader asked me about one of my posts from 2016 regarding “hidden TLDs,” i.e. top-level domain names. I think this may have been the post he was referring to: No, That Doesn’t Exist (Really!)

If you haven’t read it, I was referencing a now-deleted post on the site Ghostbin, which had a list of supposed “.clos” and “.loky” links, which I’m certain are fictitious. The original post isn’t there anymore, but there’s a similar one here: https://pastebin.com/ijzDHLwQ

Whoever’s doing these posts is either a troll or a scammer, because there are no “.clos” or “.loky” links.

clos_and_loky_edited

I’m not sure how they came up with the “.loky” thing (a reference to Loki, I suppose?), but the “.clos” domain is a reference to the whole “closed shell system” idea from that stupid ocean levels infographic.

Never fear, though – there are some newer TLDs that you may not know about! In an earlier post I briefly mentioned the decentralized DNS called the OpenNIC Project. If you’re curious about checking that out, it does have some unusual domain names, like .bbs, .chan, .dyn, .fur, .gopher, .libre, .neo, .parody, and .pirate!

One of the cool sites on this DNS is a search engine called grep.geek, which is like their version of Google, more or less.

grep_geek_edited

Pretty simple, right? I’ve done some exploring with it, but as with Tor, many of its sites are down. In fact, I’d venture to say that OpenNIC has more sites that are down that Tor does. The way I access it is through a browser extension called Blockchain DNS, which you can download from blockchain-dns.info.

On that same site is an “explorer,” which lists many (or perhaps all) of the BDNS sites. These use unofficial TLDs through Namecoin, Emercoin, and OpenNIC.

blockchain-dns_edited

Good luck finding some that are online, though! Often, I would get this:

onlinefzx_bit_edited

It reminded me of going through the list of sites on All Onion Services; there are countless sites, but very few of them are online. Either that, or they’re only accessible with the proper authorization. Here and there, I found some that were online, and they included forums, personal sites, and chans (similar to 4chan).

endchan_edited

Of course, you can access endchan without OpenNIC, too – this is just the mirror site on that network. As for any other little-known TLDs, I’m not sure if there are any. On the site shadowlife.bit they mention that they have their own darknet called the Cryptogroup Darknet (CG Darknet for short). The same site is also available on Tor and I2P.

The domain name they use is .cryptogroup, although the only site I know of on it is their official one, anarplex.cryptogroup. This one, unfortunately, I don’t have access to, and from what I gather, you have to get a (paid) membership with their crypto-anarchist group in order to use the related software. Oh well…

Other than that, you also have networks like Freenet, whose sites have names like this:

127.0.0.1:8888/freenet/USK@UUwHs81dv-HsJR9oETUz8xEhcZu5GMRCzbmchFATmx8,lo9v6O3xGhMHX-dh5UZFGd92Rsvv~fIFRYxGZ1VeKpQ,AQACAAE/minecraft-freenet-portal/7/

Anyhow, readers, I hope you get the chance to check out Blockchain DNS, OpenNIC, or some of these other alternative networks I’ve mentioned.

Maybe I’ll even make a secretsofthedark.pirate soon!

Red Triangle Part 3: Toughest So Far!

Someone commented on my previous post that Mutahar, a.k.a. SomeOrdinaryGamers, had mentioned one of the Red Triangle sites on his episode THE EDGIEST CONFESSIONS!?! – Deep Web Browsing 149.

Nevertheless, I don’t think he made the connection between the puzzle and that particular onion site. (Heck, I only did it recently.) So here it is again:

Text1

“Increase your common thought process, become anything, anything if not all, mankind is the only individual that currently stands in your way. Reach out, reach inwards, connect to yourself, connect to you become apart of the universe.

“The reasons for hate will go unanswered; Progress onwards with only the idea of individualism; The fundamental ideas of individualism are the answer. Progression -Individualism – Logical Thinking”

As to what all that means, I don’t know, but it’s fun to speculate, right?

Anyhow, I haven’t explored Red Triangle Chapter 3 in much detail yet, but it contains several different ciphers and symbols.

red_triangle_chapter_3

I have a confession to make, guys and gals; I’m not always so good at deciphering these types of things without “technological assistance.” Nonetheless, this chapter, as well, has already been solved by its related Discord group, and if you want the answers, just go to the wiki and cheat! Ɛ‾ɹǝʇdɐɥƆ/ᴉʞᴉʍ/ɯoɔ˙ɐᴉʞᴉʍ˙ǝlƃuɐᴉɹʇ-pǝɹ//:sdʇʇɥ (Taking a cue from the newspaper, I wrote the text upside-down for fun!)

There’s also an audio clip which sounds a lot like cicadas chirping, but is most likely a sound cipher. At present, I don’t have the equipment on me to decode it; have a listen for yourself. (Actually, the answer to this one is also on the wiki, but again, I hate to give away the answer to you puzzle solvers!!)

Of note: if you click on the red triangle symbol on this particular page, it downloads an image called Pointers.png, which is a clue to solving this part of the puzzle:

Pointers

Have you made the connection yet? There is, of course, more to this, but again, I didn’t want to give away all of the answers. In fact, maybe I should go to some unsolved pieces of the puzzle and see if I can discover anything!

If I do, I’ll write an update.