What are good blackhat methods of earning money online?

>redbud bless
>moneynaker
wew

my favorite kind of interface

where do i start why would chinks buy from me and not just share with eachother

Go big spread ransomware

Because public shit gets detected, is not updated, has few features, etc.. whenever the game updates theres a chance sigs or offsets break. As for how your shit isn't spread, do DRM and hardware locking, pretty much everyone does that.

As for getting started, you need skills and knowledge in C++, x64 assembly, reverse engineering and windows internals.
There are a few starter books like Practical Malware Analysis and Windows Internals 7th edition.
Another good reference you'll probably need is the Intel Software Developer's manual, you can also read it if you're a masochist.

You'll spend most your time reversing windows usermode, windows kernel, the anticheat and the game, little time is spent on developing features.

>where do i start why would chinks buy from me and not just share with eachother
Set up a database and store their hardware id's

Not sure if carding is necessarily blackhat, since any retard can do it. However, it's very profitable.

Isn't this impossibly difficult now?
AFAIK only the top guys have consistent ways to actually turn the fulls into cash without getting caught or shut down.
Unless you're willing to just make physical cards and use them IRL of course.

It was profitable in early 2000s and 1990s, not anymore, and stakes are much higher. Back then if you got busted it was basically a slap on the wrist, at most 5yrs for theft, now you get life sentences and need to live in a non-extradition country like Russia or Syria or something to do it successfully without getting busted. Tor, 'tumbling coins', all that shit is a joke to the glowinthedark FBI computer crime division who can still track you.

As others have stated, go on libgen and get the book 'Hacking Games' (no starch press) and just sell pubg hacks to chinyamen, advertising on the usual forums where such things are sold.

Bug bounties are OK, you need to live in a pajeet tier country though as the payouts are a joke, so working for a month to make $500-2k as they will always try and downgrade the bug to not pay you real money. Try your luck on Bug Crowd, Hacker One, ect.

>blackhat
>Bug bounties
Bug bounties are basically white hat my dude. If you are good at actual electronics you can sell ATM skimmers to morons online.

i make $300k pirating porn
would make much more if i wasn't lazy

The biggest money is in exploiting iOS, and selling the exploit to a nation state through TheGrugq or crowdstrike or some other shady outfit. This requires months of work though and assumes you can reverse engineer, run SAT solvers on control flow graphs, ect.
Another good income is of course robbing and stealing from pirate tv/movie/porn/game sites. Hacking them to insert your own income generating schemes or stealing all their content in real-time and mirroring it with your own income strategy.
You can also contract yourself as a hit man that porn and movie studios hire to destroy pirate sites by hacking the fuck out of them for money.
Hacking games is guaranteed money selling cheats.

You don't want to jack darkweb sites, all the transactions on those sites are being watched by a dozen different agencies and simply dumping into Monero/ZCash and thinking you can easily clean it won't work at that level of adversary, there are hundreds of gotchas to know about. You don't want to get set up where you take the fall and they accuse you of being the admin of one of these sites and force you to work for them or take a guilty plea with just enough circumstantial evidence you have no choice.

It depends on what you do and how you do it. For example, i know that a lot of G2A keys were carded, usually using a mix of a vpn and proxy services with residential ips such as vip72. It also depends on what are you carding, if you decide to card Ubisoft they'll revoke key immediately as they get notified a transaction was fraudulent, but if you card, say humble bundle which provides an Ubisoft key, probably nothing will happen.
Now to withdraw the money? that's another story. I'm sure there's a way to fraud PayPal and such banking entities but as said it's too risky.

>pirating porn
What? How???

Surprised no one mentioned botting. I guess it kind of falls under the category of game hacks but the difference is you don't necessarily have to sell the bot itself, just whatever it farms.

>Tor, 'tumbling coins', all that shit is a joke to the glowinthedark FBI computer crime division who can still track you.
Please elaborate.

>blackhad methods
Find zero day vulnerabilities
Sell them to ethically questionable people

indians are cheaper

make a porn rip site.

Again there's a million gotchas you need to know about. A good example are all the SEC reports done up for cryptocoin pyramid scammers arrested like pirateat40. Incredibly detailed machine learned statistics that show the movement of every coin with precision, creating a dependency chain identifying everybody involved even though they too used 'tumblers' (which often were run by illegal outfits, like the biggest one shut down that was BTC-E arrested guy).

Tor has numerous issues you need to know about if using it for highly illegal business on a regular basis. If you're a systems programmer, and have a kind of mobile system where you can isolate proxy your device with a 3rd party router pushing everything through Tor so some benign protocol you forgot about doesn't accidentally give up your identity establishing a direct connection outside Tor, and you follow perfect opsec, and you drive around the city randomly using access points, you could get away with it but nobody ever follows perfect opsec and the more you do this, the more you attract nation state levels of glowinthedark agents. "Who's this persistent threat moving in and out of our GCHQ relay farm laundering money through monero exchanges... oh it's a just a minor criminal.. hey lets pass this guy to our buddy at FBI crimelabs so he can get a promotion".

How do you even monetise that though? Just ad.fly and the occasional file sharing site premium affiliate referral? Don't they all ban for adult shit?

>Find 0 day
>Sell 0 day

Attached: 4L_2lvWs3z1.png (1024x682, 1.04M)

How do you avoid DMCA and domain takedowns?

This too I feel like you're more likely to get ass fucked in court over stolen porn than the guys ITT talking about hacking deepweb marketplaces

You buy 'bulletproof domains/hosting' which are expensive and in nations that don't give a fuck about DMCA. All of this shady hosting is advertised on the usual DDOS booter skiddy forums or FreeHacks a russian tor hidden service.

And where can I sell game hacks?

acquire porn somehow
upload it to a site like rapidgator
make a website
get traffic
people sign up to rapidgator to download your porn
you make money

>How do you avoid DMCA and domain takedowns?

you don't.

if something gets dmca'd reupload. your servers need to be behind a proxy that doesn't give a fuck about dmca + cloudflare, and use fake name/address to register domain AND use a privacy service so they can never get your real name unless you're retarded.

but if they dmca the file host and get your file deleted, just reupload.

they can't do more than that.

sent ;)

Porn itself is mafia-esque, and on their industry forums they've hired thugs to go after people in 3rd world countries that were pirating their shit. Lot's of threads about this on industry forums in the past like first hiring hackers to identify the owner(s), then using their network of biker run strip bars and global pimps to dispatch hired goons after the operators who are always some clueless idiots living it up in Thailand (which is filled with bikers). Anybody remember them going after the tube8 guys in the beginning

Make a site, advertise it on elitePVPers, get some chink resellers
They might get arrested sometimes but theres many of them anyways, I've only had one arrested so far.

not true Jarod

See this post
How is the mafia going to find you when all of your credentials are fake?

So how are all the DW criminals doing all their business?
Why does it take years for them to infiltrate cp rings just to close one website?
Couldn't they just track the coins to find each one of them?

Sauce on pic?
2cute

if you notice someone going after you in an autistic manner just stop pirating their shit.
most of them will just send dmca, and not do anything more.

Every 2 years or so there's a huge bust of some organized criminal forum or business. Clearly they find the weakest link through tracking, make them informants, slowly track the rest of the group and round them all up. You just have to make one mistake.

Of course you would avoid this by not targeting any western/US crime and exclusively doing crime elsewhere, like exploiting Bangladesh's banking system or something like those Russians did manipulating SWIFT network to rob banks there and have their cashiers in asian casinos worldwide cash out the money. btw all the cashiers got busted, and the Russians organizing the hack are known and identified despite their precautions, despite being in non cooperative country. These are highly professional and organized criminal groups with more experience than any of us will have, and they still can't hide themselves.

>buy stolen laptop with cash, remove hdd, and use exclusively with tails
>connect to tor through vpn, and only use random free wifi hptspots around your city
>block everything in the browser and never download anything
>everything that touches this laptop ONLY touches this laptop and nothing else.
>do your business on darknet markets with fake ids (perhaps bought in person)
>only get paid in monero
>cash out by using the monero to buy gold on the dark web and getting it mailed to a secure location where you can immediately see if there's a sting

How would they get someone doing this?

>cut + paste image link into google
>search by image
>discover deviantart page
deviantart.com/gurololi/gallery/

How would you explain your gold to Tax Office?

So they don't catch them using advanced tracking like you said earlier?
They just use social engineering or hope they use tracked systems like SWIFT?

Thanks I tried that in clover didn't return much

The same way anyone who does illegal activities does.
You have a dayjob and live within your means while you secretly make big money on the side for a short period of time before getting out and dealing with the money sowly over time.

Sorry I don't get it

Example scenerio:

I create a hack for a game, some chink want to buy it, then:
1. He sends the XMR first then I send him my hack (or disapear completely).
2. I send him my hack first and he is 99% likely to disapear without sending me XMR

How to avoid it? Escrow?

And how does chink resellers sell it later? They have some chink forums for game hacks or what?

Also, why are game hacks illegal?

Make a site, make a loader, tie accounts to hardware fingerprint, do DRM.
You just need a few initial people to send money "blindly", then reputation and trust will build up (thats why a site and a "brand" is needed)

As for chinks, they usually use it and exchange QQ (chink botnet facebook) numbers ingame, etc..

Illegality varies, but you wouldn't want to get arrested, would you?
Anyways, its explicitly illegal in china, has been fucked on copyright grounds in usa, however was proven on court not to be a crime in germany. Generally its better to not paint a big red mark on yourself when doing borderline shady stuff.

Also, have you used d3scene.com?

Nah

Selling 0day isn't even blackhat there's hundreds of VR people in the US that are contractors for the gov

Phishing and game hacks.

But you're probably a skiddie faggot anyway

Attached: IMG_20180902_141301.jpg (425x602, 80K)

how can they track it if you only accept monero? even if you accept bitcoin as well, you can use a dex like bitshares to convert to monero, then filter through a normal exchange like binance, convert to bitcoin and cash out.

Porn page with ads

Unironically hacking shit in the cryptocurrency space. In the past 4 years,

bitfinex was hacked for $75 million (worth like $500 million now) in bitcoin
dao smart contract hack would have netted the hacker a cool few hundred million $ in crypto if he didnt accidentally put a timelock on his contract
Mt Gox was hacked for what is now worth $450 million in bitcoin
Verge had a mining exploit that was left unfixed for days and allowed the hacker to mine basically infinite blocks on zero difficulty which netted him somewhere between $50-$200 million
There was a NEM hack on some nip exchange that was worth like $40 million i think (i cant remember the figures for this one)

These are just the high profile hacks. There are far more lower profile hacks worth just a few million that go unnoticed.

>How would you explain your gold to Tax Office?
that's the only mistake in the post? the fucking gold? not the running around the city while using mcdonald's wifi?

The catch: you are posting on Jow Forums, where the most technical competency anons can come up with at large is some premade kali portscanning scripts.

>>do your business on darknet markets with fake ids (perhaps bought in person)

and thats where you get to know the friendly undercover FBI guy whos willing to sell you fake IDs because you don't know any actual criminals.

What's wrong with that?
It's not like you'd be doing it full time.
You only connect to it for the actual transactions once or twice a week.
Sit in your car or in some place with no cameras and you're golden.

almost all of those hacks are just social engineering though. the only one in that list that isnt, is the DAO hack which exploited a recursion bug and let the hacker withdraw the entire balance from the contract.

oh and the verge hack used some kind of time warp exploit so that took some autist level technical skill as well i guess

>because you don't know any actual criminals.
>implying
First of all we're talking about a hypothetical scenario where someone wants protection from doing non-negligible amounts of criminal activities online. Someone like that is more likely to be connected to an organized crime network than to be some neckbeard from Jow Forums.
Second, if we're talking about me personally, I grew up in the hood (well, my country's equivalent), where I still live. I'd have no problem finding the necessary connections within a week.

using public wifi is the best way to stay anonymous, retard. anyone who uses a home network to commit crimes deserves to get caught.

No you actually need to connect every time you interact with the server. The network to your server often logs access and good luck if FBI finds your home IP in there when they raid your host

???
Where did I say you can keep the connection open and go home to continue my business?
That doesn't even make sense.
You connect to the public wifi for the risky shit that gets you caught, and for the rest you connect from a different computer (even from your home, as long as you don't do anything that's traceable to the stuff you do with the public wifi).

draw furry porn

Bumping a rare decent thread.

Attached: WhyWomenCantFixCars.jpg (600x340, 46K)

bump

That's enough larping for today, user.

I don't think it's criminal, but you can get sued for it.

>Sell 0day
How would one do this?

Not sure what makes you think that.
Also its not like i could prove it.