daniel @hackermondev, Twitter Profile

daniel @hackermondev

8 months ago

Research into a unique 0-click deanonymization exploit targeting Signal, Discord and hundreds of platform 🧵

109 503 4K 411K 2K

Download Image

daniel @hackermondev

8 months ago

gist.github.com/hackermondev/4…

16 119 865 69K 461

@hackermondev Nice work! One critique: Your “How to protect yourself” section really doesn’t contain any such info. I would have expected at least a mention of Tor & VPN, especially deployed via gateway devices. Similar to the advice that Signal had suggested.

0 0 25 2K 3

b33f | 🇺🇦✊ @FuzzySec

8 months ago

@hackermondev Very interesting work!

0 0 5 1K 0

‏Jordan‏𐨨d̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉̉ @0xsee4

8 months ago

@hackermondev This technically applies to any URL provided through Cloud flare transmitted via any means/platform to any anonymous target. Low resolution but useful enough for LE to figure out which government to connect with to further investigate, assuming the target doesn't tunnel/use VPN

1 0 12 2K 0

Voidwalker @JustWantToQ1

8 months ago

@hackermondev Very interesting..

1 0 2 1K 0

Melo @enigmelo

8 months ago

@hackermondev Very interesting research!

0 0 2 701 0

Ed Khil @0megalvl3vent

8 months ago

@hackermondev Let there be mass d0xings.

0 0 1 410 0

Download Gif

✧˖°. fini ♡ @hhhhertz

8 months ago

@hackermondev this is really cool

0 0 1 416 0

slonser @slonser_

8 months ago

@hackermondev So cool research! Thanks for sharing

0 0 0 941 0

@prtertiary @prTertiary

8 months ago

@hackermondev Another reason why VPN/Tor is good! Regardless leaking cache data location is bad, but how do you know the Signal's cache URL? Does it get send back to the uploader? That would be unnecessary right?