zlacker

[parent] [thread] 2 comments
1. patric+(OP)[view] [source] 2025-12-04 22:18:20
I run playit.gg. Abuse is a big problem on our free tier. I’d get https://github.com/projectdiscovery/nuclei setup to scan your online endpoints and autoban detections of c2 servers.
replies(1): >>jborak+7b2
2. jborak+7b2[view] [source] 2025-12-05 15:09:42
>>patric+(OP)
Thanks for sharing this. I run packetriot.com, another tunneling service and I ended up writing my own scanner for endpoints using keyword lists I gathered from various infosec resources.

I had done some account filtering for origins coming out of Tor, VPN networks, data centers, etc. but I recently dropped those and added an portal page for free accounts, similar to what ngrok does.

It was very effective at preventing abuse. I also added mechanism for reporting abuse on the safety page that's presented.

replies(1): >>patric+pG2
◧◩
3. patric+pG2[view] [source] [discussion] 2025-12-05 17:17:05
>>jborak+7b2
Have you found a way to detect xworm c2c servers?
[go to top]