|
finding the IP address of an onion site
by candyman1983 - Sunday January 12, 2025 at 12:12 AM
|
|
01-12-2025, 12:12 AM
(This post was last modified: 01-12-2025, 12:14 AM by candyman1983.)
I am hosting an onion site at the moment and was wondering if any of the hackers here have any insight in just how easy/hard it is to find the actual real ip of the host?
is this the place where maybe i could offer a $ amount if someone can find the real IP?
01-12-2025, 08:30 PM
Sorry but is impossible, this is the principe of tor
01-12-2025, 11:05 PM
Sometimes default http servers (apache, ...) are sharing the onion link in the response headers when it's misconfigured. You can use shodan to find thoses.
You could also try to scan the whole internet to find machine with tor related services. Or scan the ips connecting to Tor by running a lots of nodes by yourself. If the website have a clearnet version (like breachforums) there is some other secret ways of doing it, and it's way easier.
01-13-2025, 05:00 AM
(01-12-2025, 11:05 PM)decauye Wrote: Sometimes default http servers (apache, ...) are sharing the onion link in the response headers when it's misconfigured. You can use shodan to find thoses. no clearnet version, but there are TOR proxy sites that you can view the site on the normal web, but no, it has no domain linked to it would the apache server share anything other than the onion link?
01-13-2025, 03:43 PM
(01-13-2025, 05:00 AM)candyman1983 Wrote:(01-12-2025, 11:05 PM)decauye Wrote: Sometimes default http servers (apache, ...) are sharing the onion link in the response headers when it's misconfigured. You can use shodan to find thoses. The Apache server could share the onion page if misconfigured and called correctly. Check this https://owasp.org/www-project-web-securi..._Injection And if you understand check dis https://github.com/tbiehn/CURRYFINGER
01-13-2025, 04:10 PM
I think you'll have a hard time getting hacked on a Tor platform
"Universal appeal is poison masquerading as medicine. Horror is not meant to be universal. It's meant to be personal, private, animal"
01-13-2025, 07:11 PM
(01-13-2025, 03:43 PM)decauye Wrote:(01-13-2025, 05:00 AM)candyman1983 Wrote:(01-12-2025, 11:05 PM)decauye Wrote: Sometimes default http servers (apache, ...) are sharing the onion link in the response headers when it's misconfigured. You can use shodan to find thoses. thanks (01-13-2025, 04:10 PM)DredgenSun Wrote: I think you'll have a hard time getting hacked on a Tor platform in a way not hacked. Just want to know if the Main IP can be found.
01-14-2025, 09:51 AM
If you want to be fully secure apache shouldn't respond to any exposed port. You have the real ip address you can just try to connect a socket to port 80 (and 443) (and your port tor if any) and if you got no response from any port you're good to go.
For more related informations check ufw and network segmentation.
01-14-2025, 11:08 AM
should not be possible right? only with weaknesses in the protocol or tor software
01-14-2025, 11:12 AM
It's very possible but very hard. I can admit that the shop I own with some people was leaking the backend from onion because we were using the "Onion-Location" header and it got indexed on of those search engines.
DISCLAIMER: I AM NOT SELLING AND WILL NEVER BE SELLING ANYTHING ON HERE UNDER ThIS USERNAME/PROFILE.
|
|
« Next Oldest | Next Newest »
|
| Possibly Related Threads… | |||||
| Thread | Author | Replies | Views | Last Post | |
| Found a site named Digsecret. | 6 | 288 |
08-05-2025, 03:41 PM Last Post: |
||
| Onion share an easy way to share files | 0 | 79 |
08-03-2025, 05:53 PM Last Post: |
||
| Why do I keep getting THREAT notices from this fucking site ? | 7 | 530 |
04-14-2025, 09:05 PM Last Post: |
||
| Is there any intelligent life left on this fucking site ? | 8 | 543 |
03-18-2025, 04:35 PM Last Post: |
||
| Hacker Group KittyCloud Attacked Infraguard – Site Down for 3 Hours | 0 | 200 |
03-18-2025, 05:37 AM Last Post: |
||
