Finding WEIRD Typosquatting Websites
Вставка
- Опубліковано 21 лис 2024
- jh.live/flare || You can track down shady sellers, hunt for cybercrime, or manage threat intelligence and your exposed attack surface with Flare! Try a free trial and see what info is out there: jh.live/flare
Tune into the Flare podcast: jh.live/flare-...
Free Cybersecurity Education and Ethical Hacking with John Hammond
📧JOIN MY NEWSLETTER ➡ jh.live/email
🙏SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎FOLLOW ME EVERYWHERE ➡ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/discord ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
🔥UA-cam ALGORITHM ➡ Like, Comment, & Subscribe!
Music sourced from Artlist.io
Alon Ohana - Parallel Room
Stanley Gurvich - Sunny Days
![WE EXPLORED THE DARK WEB [INSTANT REGRET]](/img/n.gif)
fun facts, most companies buy as much of those "typo domains" to make them redirect to the real site
Ah, I was wondering why they kept redirecting to the real site. Cool!!
yup, i know for sure google did that
'Most'
still check if you are on the real
site.. as the scammers can spoof the address bar and status bar to show the official url (and of course also the titlebar and all links when using inspector). just takes 3ms to replace what is shown the moment the page or hover is activated.
Cuz many type "goggle" when typing fast. lol
I know the guy who bought Google with 3 ooo's. He bought it in high-school because he was smart. He isn't a scammer.
Yeah very smart lol. Obvious WIPO violation, no legitimate interest, bad faith typosquatting
@@4rumanichill
Bro could prolly sell that for alot tho
@@4rumaniyou are a sad being
@@4rumani y so salty
Please do a video showing what’s inside that APK.
hearted - neat! Looking forward to seeing that!
Get APK tool and do it yourself, apks are really easy to re
Im going to do a vid showing the APK - ill post it when i can
The apk says failed to download something
Yes
"I think that is the real google", he says looking at google from 10 years ago
interesting
I believe that some devices will result in the old version loading, probably for compatibility
@@Yadobler I highly doubt that
@@Yadobler You're right, my Vita loads exactly this ver of google
"I highly doubt that" -🤡@@kyokazuto
Personally like "guthib"
Yap, also my favorite.
"You spelled it wrong."
1373x
Near the beginning I jokingly thought this was going to be an ad segment for Nord VPN but to my pleasant surprise it's an actually really useful FOSS tool. Love to see it.
I love the typos for regularly nsfw sites that redirect to sites that ask you to repent and fix your ways
How did you find out about such sites 🤨📸
@@fruitynyanko7316 twas simply a passing thought
@@fruitynyanko7316by being a normal human being and watching porn, if i had to take a total shot in the dark
@@spimblesthats not normal
@@dubplaterI guess cavemen drawing NSFW art back then are also not normal either, but then again, being black in America was considered not normal in the 19th century so the definition of "normal" is kinda relative.
14:34 google looks like this on certain user agents, it's their old design from 2011-2013
Just to let u know, when i went on the googie website, there was some illegal content, if i were you i would cut that part out. I went on that domain i wish i could unsee what i saw.
It’s really traumatizing.
@@jjprisma3d cant believe he actually let it slip into this video
@@kidnamedfingor Atleast he blurred it.
@@kidnamedfingor And also, whoever's chid was that. I feel bad for the parents. The person who did that shoud be ashamed.
@@jjprisma3d I translated the Chinese and it said that it was the dad who did it
The true video begins somewhere at 13:00
thanks I'm not smart enough to understand any of the programming stuff
Fun fact: my mom used to work in a kids magazine and their website domain looked like a corn site, and bc parents were angry that their kids saw corn by making typos, the mag had to give money to the other site so they would change the name 😂 thats so funny to me
It was funny seeing Goole as one of the screenshots 😂
Had some fun with pronouncing it when driving past signs for that place on the motorway a few months ago
Isn't a $32/Month virtual server absolutely overpriced and overkill for this? Maybe I just don't know enough about the program or droplets so I'd be curious if there was a genuine reason it had to be that expensive.
Probably could get by on a $5 vps
he could've probably done the same thing on oracle always free compute
Absolutely
please don’t go to the website at 19:40 i wish i wasn’t curious and went to it i think you should blur out that link or remove that part of the video it’s absolutely disgusting
yeah there’s CP on there 🤢
Bro whats in there?
this is one of those things where it's best not to check at all. there is a really messed up image there.
@@dan_loebman just describe it i dont want the fbi knocking on my door
@@tankman5783 the site has c.s.a.m. material and should not have made it in to the video period. If you don't know what that means it's often called cp. if you don't know what that means, I'm not going to describe it, as it violates yt policy and should be reported and avoided.
I like the raw realism of the Linux experience at 17:30
Trying this back on Windows 95-Windows XP days is a guaranteed PC destroyer.
Funnily enough, today it's probably safe to do this on the MS-DOS based Windows 9x versions of Windows, as they're too old to be a worthwhile target for malware. All the viruses that you might encounter naturally expect XP and later. At least, according to MattKC's video on the subject.
I have fallen for Agor,io. I wasn't scammed, but traumatised (TW: loud sound + flashing Jeff the Killer image)
Oh you just unlocked my childhood trauma
14:33 It's an old Google UI :)
Thx for the likes 😆
Its such a fun rabbit hole watching malicious domains as they are registered. Weird how many of them sre hosted behind cloud flare these days... 🤔
Why does cloudflare even support them?.. I recently got an sms scam of gettimg rich easily and upon scanning and tryim7to find vulnerabilities of those scammers.. I didn't get anything
cos cheap hosting is slow :)
or it could also be (for whatever reason) that, thats what they are using to manage their domains or smth
UA-cam actually owns the domain youtobe, apparently
you to be, is actually how its meant to bee. Monkey see monkey do. They decide what you see, and what you do
Oneshot
Pretty sure they dont, however, own youtub.
Please do reverse engineer that APK, we're bound to find something juicy there 😂
As an indonesian, im sure that's a site to auto download an online gambling app. Mimics play store, too.
This video really is the meme of "Linux users trying to install a web browser"
Please make a part two I wanna see more about that "live (ph)fishing game" and the Amazon typosquat hijinks
As someone not well versed in IT, coding and html, i just learned a bunch of new words here. Typosquatting just made me think of my poor-ass unaccomodated seasonal-worker (initially) eurotrip.
This was a great utility to learn about John! Def found some permutations of some domains I own and those for another creator that came up. ty!
I would love to see you doing this more, it's just really fun to watch you have fun with it :) Also looking forward to you looking through those files :)
There is a bank in the uk called first direct. My 80+ year old family went to fist direct, it was a fisting porn site.
Really enjoyed this video because it's a topic that's interesting and you let it be interesting on its own merits instead of overly sensationalizing it
Youtubs - for all your Jacuzzi needs!
Adversaries is a funny way of describing scammer. Like calling them enemies
Who knew typosquatting could be so bizarre? 😅
Loved this video, u should do more “unserious” funny videos, either here or on a secondary channel
Linux users typing the entirety of their computer’s code into the command line just to make a new folder: 🤬🤬🤬
^ this user knows nothing about computers
@@thesoftoneSalty linux user ^
@@spaghetti5914 ^ GIGA cope
@@thesoftone This user doesn't know I'm a linux user as well ^
Lain pfp hating on Linux…
Get off TikTok lol
i love the term typosquatting sm
the phishers are just squattin on that typo
This is genuinely amazing for Typosquat monitoring and intelligence gathering
This video made me remember the time in early elementary school that I typed male instead of hotmail while in computer class.
looking forward to THE video of the breakdown of the APK, maybe there was more to the "nothing" in the empty text file....
hey man, i'm going to repeat what a few other commenters said, you should edit this video to remove that one "weird" website because showing the link is technically distribution of cp. NOT visiting the website myself, just relaying what other commenters saw when they visited the site out of curiousity, maybe you didn't even realize what you were looking at because you laughed it off so easily in this video.
how do you know if it's cp or not
Why would you risk it?
lol I never noticed you owned a whole island of dinosaurs that's AWESOME!
Now I see the true meaning of the minor spelling mistake meme.
Crack open that APK next PLEASE!
F I S H I N G L I V E G A M E . A P K ( 2 0 )
16:59 that's master Rama isn't it? The cult
Edit: 19:41 amazing reaction
theres even illegal content on it, jail for at least 30 years for hosting it
Dnstwist it, bop it, pull it
WE WANT MOOORE OF MALWARE ANALYSIS VIDEOS PLEASE.
You just committed a federal crime by not blurring out the links to some of these websites
The site that redirects to aliexpress is likely a 3rd party that outputs their affiliate link so they earn a commission... even if you dint shop via that link directly, a refer cookie is likely stored such that if you end up shopping within X amount of time they get credit for the sale.
their affiliate WHAT??? ik u meant link but thats an unfortunate typo lol
Wait. Hang on. I noticed something about that slots game with the automatic download. On the section that says "The New One" it mentions Bob Slots, a youtube channel I watch, who has never promoted this app. That means they're scraping ultra specific small slots youtubers and saying they're promoting their game. Bob isn't a big channel. This is truly weird stuff.
That is such a cool tool, would love to see a video on what is inside that apk file. Great video keep up the great work that you do.
should do more dnstwist shenanigans, really fun to see what you find
I tried that one time and got a virus 😭
I have no idea what you're talking about, nice!
Same here
Same here but I love it
I WAS THINKING ABOUT THIS RANDOMLY THE OTHER WAY
i have no idea what you're talking about but i love this video
This was great. Would have loved to see some other websites too. And what was actually in that fish file....
Daily Dose of Internet is one of the best channels ever made. Thanks for your daily dose Mr. H.
I usually bookmark all the sites i visit daily, but obviously mistakes can happen.
I remembered back then if you type blogspot without the s, it'll redirect to a site showing a "secret new world order plan"
domain expansion: typo
16:50 Never seen this?!
Fishing - Live Game
WE NEED a continue of this series
This gave me "hacking in movies" vibes
holy shit it’s alex yiik
gotta hand it to the fishing "devs", they're kinda transparent when you think abt it 😂
Based on the one guy I met with that first name, its pronounced "Mar cheen" with the "mar" being the same as "mark" without the k, and "cheen" being the same as "cheese", with an n instead of the z sound.
that fishing live game is advertising as that one gambling game or application, it on Indonesian language
Ah, the eternal internet nemesis: people with the same full name as you.
a little help, the live fishing page is in Indonesian, prolly trying to steal info or malware due to how many people use gambling / slot sites and apps here. 1jt is 1 million, reffering to downloads
I wanted to go to the SpongeBob website as an 8 year old kid on my grandma's laptop and I found a site with a photo of some random man with a typo
I choose you John. Make me smart!!!
I hope you were running a VPN, your IP Address got dropped by one of those pages.
I'm pretty sure that was the digital ocean ip and not his host
@wombatpandaa9774 Okay, that's good then!
The 19:40 website is now safe to go to. It now redirects to a gambling site.
it 404's
Is there a program like that website detecting thing for people who use normal operating system like windows or Mac OS and not those hacker OSs like Linux. You know, normal software for normal people that actually exist in the real world.
Unrelated, but i really like your hair :)
alternative title: linux working as intended
There’s actually a really funny kinda(??) typosquatting website that’s literally videos of corn being cooked with weird names
CornHub?
ah yes, the corn hub
classic
Let's see if Jason will feature John Hammond in a clip compilation soon 😁
It seems to have a domain name size limit when using the web interface.
Please do a part 2
loved this thanks JOHN ;)
That Fishing Live Game is probably targeted and/or made by Indonesians. “1jt” means “1 million”. Just thought I’d share this
13:50 I would guess they are redirect domains. Google owns a lot of its homonyms.
14:57 for those wondering, this website has latinzed Arabic, as an arab it really caught me off guard!!!
"sudo" is short for "do as superuser" - "sue due", not "sue dough" - sudo is not a martial art.
He's doing the thing where he repeats synonyms over and over again 😂😂😂😂
Hilarious maaan daamn! nice video bro really thanks.
kinda makes me want to try live booting Kali maybe, cool vid
Excellent stuff but we are missing actually what you are explaining kindly explain your experience in slow motion I feel it something like something that computation is going here
Super useful tool
i feel like roblox is probably up there for the most.
i've seen roblox typosquatting websites before
the guy can't figure that google is one of the top searches without doing a google search
before browsers started to block physing sites, i bought shitton of domains that were typos of google and youtube, and for about a year, i gained a lot of money from ads 😅 but then on a single day, all my passive income stopped sadge
and then you had to make money through a real job?
@@giraffeparty0 sadly yes 🤣 had to go back to truck driving :P
14:33 is not really "strange" google its just the old design from like the late 2000s.
21:09 JT means "million" in Indonesian so that means 1 million people installed it lol
good video
Plesk is like Cpanel
Marcin is (roughly) pronounced as Martzin.
1jt+ means 1 million plus.
well moost of them showing old version and some just ads all over the page