that's a cool domain name you got for your bluesky handle. you mind if i scan it with nmap to see what else you're using it for? - ThreadSky

jtp.bsky.social • 75 days ago

that's a cool domain name you got for your bluesky handle. you mind if i scan it with nmap to see what else you're using it for?

Comments

v4lw4r3-security.services•75 days ago

Sure, i just wanna see the result out of curiosity

I don't got a lot going on with it yet since im still working on stuff

jtp.bsky.social•75 days ago

uhh uhhhh...
cloudflare

v4lw4r3-security.services•75 days ago

Ok i figured, neat

I didnt remember if i had them proxied or not on cloudflare or if i just had dns

triplesteakguy.bsky.social•75 days ago

making a "is this you bro" type of post but it's a screenshot from shodan

jtp.bsky.social•75 days ago

making fun of them for having an FTP server with anonymous login and then scanning my next target using FTP bounce thru their server as a dunk

bungus.one•75 days ago

i don't even remember anymore

mouski.individualthought.org.uk•75 days ago

this made me check!
whew! 😇

jtp.bsky.social•75 days ago

wdym how do you not know where your own domain points to? 😭

mouski.individualthought.org.uk•75 days ago

haha well https i know! it's just been around a bit and i have definitely been sloppy at closing things off

connieh.com•75 days ago

Mine just leads to the github pages IP, but some of my subdomains lead to cloudflare tunnels :)

tyto.cc•75 days ago

no i don't mind. i use subdomains liberally.

nikomo.fi•75 days ago

go ahead (it's a very boring attack surface intentionally)

leftyjellyfish.bsky.social•75 days ago

i don't know what those words mean so i'm sure it doesn't matter

edoyl.bsky.social•75 days ago

Apparently you're on some kind of social media website

leftyjellyfish.bsky.social•75 days ago

Wtf no way

jtp.bsky.social•75 days ago

you don't even have a domain name so yeah there's nothing of yours for me to scan

leftyjellyfish.bsky.social•75 days ago

sweet 👍

leftyjellyfish.bsky.social•75 days ago

i'm also using incognito mode in my browser so i'm actually completely untracable

raptorshadow.org•75 days ago

a just a forward to my itch page where you can buy nerdy shit i wrote

assf.art•75 days ago

I should make a plugin that automatically runs ‘shodan domain -D -H ’ when you load a post by somebody with a custom domain as their handle

jtp.bsky.social•75 days ago

hahahaha that's such a good idea

assf.art•75 days ago

Here's a rudimentary implementation that works using Tampermonkey, it just prints the unformatted output to your browser's console for now. Needs a Shodan API key of course

https://gist.github.com/kylefmohr/b3c223ec6acb5f8f5332239dce34d76b

jtp.bsky.social•75 days ago

i'll find a key later. ty!

assf.art•75 days ago

If you have access to an .edu email at all, that's how I got mine - it was years ago and it still works https://help.shodan.io/the-basics/academic-upgrade

atomly.com•75 days ago

you can at least buy me a drink first

idealvoid.dev•75 days ago

you won't find much because i still can't figure out how to host my minecraft server

bigballsbird.com•75 days ago

Open port 25565 on ur firewall, point DNS, run the server jar 💯

idealvoid.dev•75 days ago

i opened the firewall port, pointed my domain's DNS to the server's IP, and ran the jar
yet for whatever reason, nobody outside my LAN could connect
never could get port forwarding to work on the router

bigballsbird.com•75 days ago

If you’re hosting within your home network it might make sense to use something like ngrok or another similar service, you won’t open your network up publicly and you won’t have to repoint DNS every time your home network gets a new IP

xan.lol•75 days ago

thank you for reminding me about ngrok, I just went on an adventure and learned about https://boringproxy.io and https://cockpit-project.org

tauon.dev•75 days ago

firewall

jtp.bsky.social•75 days ago

just stick your machine in your router's DMZ what could go wrong :^)

yari.dog•75 days ago

i have a Bsc in cyber security and it's terrifying to see that people aren't putting their computers in the dmz ! it stands for destroy malware zone and is a critical bit of protection from modern day ransomware!

moll.dev•75 days ago

please use tailscale and just connect your friends to your tailnet

waffles.host•72 days ago

You can always use a Minecraft Server from https://www.waffle.host

gawdz0rz.bsky.social•75 days ago

thank goodness i’m using bsky dot social and have never used gawdz0rz anywhere before

girldyke.bsky.social•75 days ago

Joke's on you, my domains already get hammered 24/7 by every botnet in existence.

cheembs.termani.co•75 days ago

have fun
check out our projects while you're at it! we love rhythm games :D

sabertoothedpie.bsky.social•75 days ago

Can you explain this in terms someone who is really stupid could handle I’m asking for a friend

aceofbens.com•75 days ago

thank you for asking because I looked up nmap and I was like This somehow doesn't answer any of my questions 😭

jtp.bsky.social•75 days ago

domain names point to a computer. i would like to knock on all the computer's doors and see which programs are home

sabertoothedpie.bsky.social•75 days ago

sick you even wrote it in a whimsical way 💖

befh.bsky.social•75 days ago

My domain name points at my home network, which is NAT'd. I've only got 4 ports forwarded and one is HTTP for upgrading connections. Most services are behind a reverse proxy