0:02 / 49:08
Watch full video
Defcon 30: Tor - Darknet Opsec By a Veteran Darknet Vendor & the Hackers Mentality This version has the audio fixed, and the information regarding the informant in my case censored - per the request of the Assistant United States Attorney. First and foremost, this is MY talk at Defcon 30 - on Tor, and Darknet Opsec by a veteran Darknet Vendor & the Hackers Mentality War Story The hacking subculture's closest relative is that of the Darknet. Both have knowledgeable people, many of whom are highly proficient with technology and wish to remain somewhat anonymous. They are composed of many introverts and abide by the same first rule: “Don’t get caught." Both tend to love Sun Tzu quotes as well. What happens when the hacker mentality discussed in the Hackers Manifesto is applied to things like OpSec on the Darknet? Over the past decade, many DEF CON talks have discussed Tor and the Darknet. None have ever come from a Darknet vendor. The approach was more academic, as opposed to economical. Having a background in IT, Infosec, and hacking, the goal is to present a unique perspective from a hacker’s point of view, as we look at how the hacker mentality applied functions in various hostile environments such as a Darknet Vendor, a staff member of multiple Darknet Markets, and co-found of Dread, who then later would be a federal prisoner. Shortly after, he talks about how he got himself out of federal prison 3 years early. All of which was possible through the reconnaissance of various systems and methodologies. From the anticipated linguistical analysis that the feds were making of posts on Darknet forums to how to write a motion to a federal judge from a prison cell in order to make him understand what it was like there, we will take a journey through a variety of interesting places and times from a tour guide with unparalleled experience and access. By focusing less on the basics of Tor and more on how insiders operate within it, we will uncover what it takes to navigate this ever-evolving landscape with clever OpSec. In addition to seeing what happens if you get caught. All through the perspective of the hacker spirit that refuses to submit. Speaker Bio: Former admin and co-founder on Dread Forum (Darknet), staff on multiple Darknet sites, Darknet vendor: 2happytimes2, lockpicker, hacker, hak5 enthusiast, haxme.org admin (Clearnet), Sam Bent spends his days writing technical manuals and doing graphics (using all Adobe Products) for the company he works for, while also doing federal prison consulting on the side. He is a certificated paralegal. Runs his blog where he does federal prison consulting, is currently about to publish a book on compassionate release for federal prisoners, and runs multiple youtube channels. He is also a college student. He has been in the scene for almost 20 years. He has written multiple guides and published numerous whitepapers and how-to’s on hacking. Sam Bent’s former handles include killab, 2happytimes, 2happytimes2, and most recently, DoingFedTime. Facebook: https://www.facebook.com/doing.fedtime Twitter: https://twitter.com/DoingFedTime Reddit (my subreddit): https://www.reddit.com/r/theFeds/ Sites: https://www.doingfedtime.com , https://2happytimes2.com , https://haxme.org/ My website is: https://doingfedtime.com Facebook: https://www.facebook.com/doing.fedtime/ Twitter: https://twitter.com/DoingFedTime Linkedin: https://doingfedtime.com/www.linkedin... #darknet #defcon30 #defcon #opsec #federalprisonconsultant #tor #darknetvendor #hacker Big thanks goes out to cwade12c of Haxme.org for recording the live stream and sending it to me! 00:00 Defcon 30 00:07 Introduction 00:58 whoami 01:37 Dark Credentials/ My objective 02:11 Hacking Subculture vs Darknet Subculture 03:02 Education DNV vs Hacker 04:28 Know Thy Enemy 05:35 Postal Countermeasures for beginners 06:32 Drug Traffickers Moral Dilemma 08:17 I heart USPS 10:15 Drug sniffing dogs are misunderstood 10:50 Love Letters from feds 11:52 CDs - Controlled Deliveries 13:34 Branding on the Darknet 15:26 Past, Present, Future of intelligence gathering 16:49 Darknet busts = Law enforcement getting lucky 17:28 Hugbunter codes, I administer 18:24 Threat modeling 19:32 OpSec Mistakes you cannot afford 22:29 Building physical firewalls 23:17 Vulnerability Analysis 24:07 Illusion of security 26:12 Pulling the trigger 27:29 Ingress, Egress, Regress 28:51 Working for a Darknet Market 29:23 Bitcoin Tumblers are trash Use XMR 30:22 Post Exploitation 31:17 Operation Dark Gold 32:26 When the feds break the law, Franks Hearings 33:32 Censored image of my cousins statement against me 33:57 Incarceration in federal prison as a hacker 35:20 Fighting the system with it's own code - law 35:49 Shout out to Haxme.org and Reporting 37:08 Don't be a Darknet vendor 38:37 Q&A where I cannot hear anything
A short series of videos where I answer your questions regarding the Darknet, Deep web, Darknet Markets, and general OpSec/InfoSec questions.
Welcome to Darknet Demystified, a podcast hosted by Sam Bent, an ex-darknet vendor and market admin, author, paralegal, DefCon speaker, nerd, pirate, and agorist. With over a decade of experience in the Darknet under various aliases such as DoingFedTime, 12189082 (BOP ID), 2happytimes2, Killab, and many others, Sam brings a wealth of knowledge and insight to the world of hacking, cybersecurity, exploits, and the Darknet subculture. In this podcast, Sam will delve into the latest developments and trends in the Darknet, and provide expert analysis on the current state of the darkweb and its evolution. He will also share his experiences as a Darknet vendor and market admin, giving listeners an inside look into the workings of the Darknet, its culture and the people who inhabit it. Sam will also address the legal and ethical considerations of the Darknet, as well as the importance of understanding the laws and regulations in your country before using the Darknet or any anonymity tool. He will also provide tips and tricks for staying safe and secure while navigating the Darknet, as well as discuss the latest news and developments in the world of hacking and cybersecurity. In addition to the podcast, Sam runs the youtube channels Doingfedtime, all hacking cons, and 2happytimes2, where he shares information and tutorials on hacking, cybersecurity, and the Darknet. Whether you're a beginner or an experienced hacker, Darknet Demystified is the perfect podcast for anyone looking to gain a deeper understanding of the Darknet, stay informed on the latest developments, and learn how to stay safe and secure while navigating the digital world. Available on all major podcast platforms, Tune in to Darknet Demystified where the Darknet is demystified and the truth is uncovered. With Sam Bent's expert analysis and in-depth understanding of the Darknet, you'll gain valuable insights and knowledge to help you navigate the complex and ever-changing world of the dark web. ----☆-----☆-----☆ SOCIAL MEDIA ☆-----☆-----☆-----☆-----☆ PODCAST: https://rss.com/podcasts/darknet/ OFFICIAL WEBSITE: https://www.doingfedtime.com FACEBOOK: https://www.facebook.com/doing.fedtime/ TWITTER: https://twitter.com/DoingFedTime LINKEDIN: https://bit.ly/doingfedtimelinkedin EMAIL: ksllc27@gmail.com KEYBASE: https://keybase.io/doingfedtime AMAZON AUTHOR PAGE: https://bit.ly/DoingFedTimeAmazon TIKTOK: https://www.tiktok.com/@doingfedtime
Sam Bent
5 months ago
Just to confirm I am still alive. I've been busy building a independent video site for you guys and a store to fund it. Sign up for the video site uses privacy messangers and anon account numbers, no ads or tracking bs. I also am switching over from Premiere pro to Resolve, which has been a nightmare but I really hate adobe and it's way past time. I got really sick with the flu, then got over it then caught it again. This video is the first I've ever done in resolve, I hope it doesn't suck. Should be up in 20 minutes or so.
493
33
Sam Bent
5 months ago
OPSEC starts with observation. Do you see what she missed? The issue here has nothing to do with the USB. Observation is the foundation of every security discipline, threat detection, phishing identification, social engineering resistance, physical security. All of it depends on actually seeing what's in front of you. If you can't register basic environmental data, you're not going to catch the typosquatted domain, the slight URL mismatch, or the badge that doesn't look right.
128
32
Sam Bent
7 months ago
They robbed him basically. Then posted it on social media. What would happen if you stole 70k, and posted it?
525
130
Sam Bent
7 months ago
Uploading, etc 1 hour. It's not fancy but it's honest.
254
17
Sam Bent
7 months ago
Monero.
334
51
Sam Bent
10 months ago
Newspeak. Credit for me knowing this: @UNcommonSenseAUS
326
35