Mike Dee 

@[email protected]
54 Followers
84 Following
199 Posts
Hacker and Poker Player
Mike Dee Apr 12, 2025
nixCraft 🐧Apr 12, 2025
Lmao. Exploits of mom 2025 edition
Mike Dee Apr 12, 2025
FUCK TRUMP.
https://www.whitehouse.gov/presidential-actions/2025/04/addressing-risks-from-chris-krebs-and-government-censorship/
Addressing Risks from Chris Krebs and Government Censorship

 MEMORANDUM FOR THE HEADS OF EXECUTIVE DEPARTMENTS AND AGENCIES The Federal Government has a constitutional duty and a moral responsibility to respect and

The White House
Mike Dee Nov 15, 2024

Not that I post much on here, but I have a bluesky account now.

https://bsky.app/profile/mikedee-hacker.bsky.social

Mike Dee (@mikedee-hacker.bsky.social)

Hacker, Poker Player

Bluesky Social
Mike Dee Nov 8, 2024

Holiday Hack Challenge 2024 just launched!

https://2024.holidayhackchallenge.com/

Mike Dee Oct 7, 2024
Royce WilliamsOct 6, 2024

Did you know that you can look up plaintexts of over a trillion MD5 hashes ... for free?

https://www.nitrxgen.net/md5db/

He's pre-exhausted and stored quite a few combinations as well:

https://www.nitrxgen.net/md5db_info/

And there's an API (but note the restrictions):

https://www.nitrxgen.net/md5db_info/#api

(Not affiliated, just a fan - though I have collaborated with the operator for a few years now on related projects / research)

MD5 Database - Nitrxgen

A free, instant MD5 lookup service with over 1 Trillion password candidates.

Mike Dee Aug 5, 2024

Defcon! #defcon #defcon32

https://defcon.org/images/defcon-32/dc-32-map-public.pdf

For my own reference too.

Mike Dee Jul 19, 2024
Show threadKevin BeaumontJul 19, 2024
Crowdstrike publishes updated CIA triad
Mike Dee Jul 15, 2024
BrianKrebsJul 15, 2024

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain.

From the story:

"...an analysis released by security experts at Metamask and Paradigm finds the most likely explanation for what happened is that Squarespace assumed all users migrating from Google Domains would select the social login options — such “Continue with Google” or “Continue with Apple” — as opposed to the “Continue with email” choice.

Taylor Monahan, lead product manager at Metamask, said Squarespace never accounted for the possibility that a threat actor might sign up for an account using an email associated with a recently-migrated domain before the legitimate email holder created the account themselves.

“Thus nothing actually stops them from trying to login with an email,” Monahan told KrebsOnSecurity. “And since there’s no password on the account, it just shoots them to the ‘create password for your new account’ flow. And since the account is half-initialized on the backend, they now have access to the domain in question.”

https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/

Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks – Krebs on Security

Mike Dee Jul 13, 2024

Trump gets shot, but not fatally.

https://www.cnn.com/2024/07/13/politics/video/trump-secret-service-butler-pennsylvania-digvid

Trump speech interrupted by Secret Service | CNN Politics

The Secret Service interrupted Donald Trump rally in Butler, Pennsylvania.

CNN
Mike Dee Jun 17, 2024
Kevin BeaumontJun 14, 2024

Pentagon ran secret anti-vax campaign on social media

https://www.reuters.com/investigates/special-report/usa-covid-propaganda/