MESO-Rx

Anabolic Steroids

MESO-Rx Sponsor Primal Pharma - US Domestic

Highlights Only (1)
trynagains said:
Hey there. I’m a cybersecurity engineer. I’m Not loved on this forum today but I’ll share some thoughts. You can embed JavaScript into websites to do things like alert you if your website has been cloned. That is useful in cases like phishing resistance. We do this at my company. But you can’t embed code in a url expecting it will be executed. In fact that’s an attack vector some use to attempt RCE: remote code execution. Also URL parameters, like everything after the ? In http://example.dev/whatever?param1=stuff&param2=things are sanitized on input. At least the should be. Meaning “code like things” are scrubbed to avoid things like sql injection and cross site scripting.

One possibility is using referrer headers in a request to block certain traffic but that could be both complex and unreliable.
Click to expand...
Everyone has done moved on from that. This is info that is part of harm reduction as well. Protecting our private info as much as possible is harm reduction as well.
 
Dial It In said:
Everyone has done moved on from that. This is info that is part of harm reduction as well. Protecting our private info as much as possible is harm reduction as well.
Click to expand...
Wonderful. So I did a bit of digging into newer firewall rules. I think my initial hunch was correct. I think referrer headers could help a lot. Here’s how it’s implemented in three different WAFs.

  1. Cloudflare: Create firewall rules, e.g., http.referer eq "unwanted-site.com" or http.referer contains "adsrvtrk.biz" and set the action to Block.
  2. AWS WAF: Set up a rule to inspect the Referer header for a specific string (like example.com) and block the request if it doesn't match.
  3. Apache (.htaccess): Use RewriteEngine Onand RewriteCond %{HTTP_REFERER} ^http(s)?://(www\.)?(unwanted-site\.com) [NC] followed by a RewriteRule to block access.
This would prevent hotlinking from unwanted sites.

Referrer headers can be spoofed but I don’t think tiktokers have the brain cells to spoof request headers. It’ll deal with 99% of the unwanted traffic from linking.
 
Last edited:
trynagains said:
qsc ripping people off, arail being unwilling to communicate about anything really, axel disappearing. idk yeah there are pleanty of good vendors. I'm definitlely not attacking vendors. My criticism was Old timers being general dicks to newcomers. It's something I'm not accustomed to when it comes to harm reduction. I came from a different world. perhaps I don't fit in here and that's okay.

I was referring to gatekeeping a culture. clearly my dissent was not encouraged. Not that I did it in a great way. Nobody has talked mean to me here and some have been super kind and helpful. but I see others who maybe aren't as well read being treated pretty unkindly. Just not something I expected.
Click to expand...
Arial communicates well enough. He dealt with a very minor issue I had and made a simple one time correction for me. He didn't have to and could have continued with business as normal.

Maybe the common denominator with all your source problems is you. You sound soft.

I've purchased from Primal, Arail and Bulko. All without any issues whatsoever.
 
justanoob said:
got my vote for going private. This new generation and their TikTok is going to ruin everything for everyone. Can we report their TikTok’s and get them taken down?
Click to expand...
I mean, I haven't worked on this use case before, but I could buy some TikTok accounts and proxies to use in a script that could spam report them. It’d just take some time to run A/B tests to see how their brigading detection, browser fingerprinting, etc., works.
Can someone DM me some examples of TikTokers doing this? I want to give it a shot.
 
flexi said:
I mean, I haven't worked on this use case before, but I could buy some TikTok accounts and proxies to use in a script that could spam report them. It’d just take some time to run A/B tests to see how their brigading detection, browser fingerprinting, etc., works.
Can someone DM me some examples of TikTokers doing this? I want to give it a shot.
Click to expand...
Wouldn’t this rely on scraping? I’m thinking heavy upkeep? I also imagine their bot detection would pick this up quickly. Most definitely would violate their tos. Always fun to build stuff though and see what happens!
 
trynagains said:
Wouldn’t this rely on scraping? I’m thinking heavy upkeep? I also imagine their bot detection would pick this up quickly. Most definitely would violate their tos. Always fun to build stuff though and see what happens!
Click to expand...
Yep, it relies on scraping, but I have researched how SMM panels work and tried to mimic their methods before, when I made a script similar to what redact.dev does not pay for their subscription. There are workarounds I learned while writing it, but the issue is using multiple accounts and praying they don't detect residential proxies.
Btw, TikTok's bot detection isn't good, you would be surprised how fast you can automate actions before they flag you.
 
flexi said:
Yep, it relies on scraping, but I have researched how SMM panels work and tried to mimic their methods before, when I made a script similar to what redact.dev does not pay for their subscription. There are workarounds I learned while writing it, but the issue is using multiple accounts and praying they don't detect residential proxies.
Click to expand...
Yeah the attention you’d get would be… unwanted. The place I work. We are a hot target for bots. We’re very large and popular. We usually just block and ban. But if something unintentional happens like you DoS the server and affect performance. Or you’re reported over and over. You better bet our secops team is coming for you. lol. I imagine TikTok is no different.
 
trynagains said:
Yeah the attention you’d get would be… unwanted. The place I work. We are a hot target for bots. We’re very large and popular. We usually just block and ban. But if something unintentional happens like you DoS the server and affect performance. Or you’re reported over and over. You better bet our secops team is coming for you. lol. I imagine TikTok is no different.
Click to expand...
I wouldn't be sending nearly enough traffic to DoS them. They have brigading detection, so it can't be a "spam". I was planning to try 12 accounts that would send one report, randomly spaced over 16 hours.
I mean, I haven't gotten any DM with examples yet, but I will try if I do.
 
Ateam2023 said:
Well, I don't know about the rest of you, but I can honestly say I have never accessed TikTok orr Reddit for that matter, some things are better left untouched.
Click to expand...
Understandable, just trying to get some tards banned who share info about the forum. Them doing that and too many eyes seeing it could be a real problem. I just got here and don't want to lose access to the forum because of some teen who watched Clavicular too many times.
Dial It In said:
Well someone sure as fuck is posting primal test results, pics of primal gear and a telegram addy. What a dumb fuck whoever it is.
Click to expand...
 
flexi said:
I wouldn't be sending nearly enough traffic to DoS them. They have brigading detection, so it can't be a "spam". I was planning to try 12 accounts that would send one report, randomly spaced over 16 hours.
I mean, I haven't gotten any DM with examples yet, but I will try if I do.
Click to expand...
Yeah I really meant unintentional red flags. I’ve accidentally spammed 12,000 email accounts due to a misconfigured migration. Things happen... I’m in no way against the idea. Just be safe! Unfortunately I don’t have any evidence or examples of leaked links on TikTok. But no doubt they exist. I definitely curious of the results if you do get some examples.
 
imthankful said:
Well. Thought I’d look on TT not expecting to find stuff easily. Searched PP and one of the first videos is a mast p100 jano. Guy is reselling -username is primalgearsupps
Click to expand...
His upload of the Primal Test I targeted didn't last long lol.
A few reports on some proxies, and it went from "under review" to off his channel pretty quickly.

Initial report ss on one of the accounts:

initial-report-acc1.webp
Aaaand it is gone from his channel now :)
fakeprimaltiktok.webp
 
You must log in or register to reply here.

Similar threads

CreateHGH
CreateHGH - EU domestic HGH, peptides, capsules
Replies
16
Views
2K
Jron
J
PharmaSolutions
*US RESTOCK* Pharma Solutions Labs - US,EU,AU DOMESTIC SHIPPING AVAILABLE.
Replies
15
Views
2K
Vanargandar
Vanargandar
PrimusAnabolics
PrimusAnabolics EU Domestic
14 15 16
Replies
301
Views
22K
PrimusAnabolics
PrimusAnabolics
Mandy Biotechnology
Mandy Biotechnology - Best services, international, HGH (97%+)
2 3 4
Replies
68
Views
9K
AlexDavis43
AlexDavis43
6
PUBLIC HEALTH & FRAUD ALERT PRIMAL PHARMA US DOMESTIC: A Stanford Chemist's Scientific Autopsy of Primal Pharma's Contaminated & Counterfeit Products
6 7 8
Replies
149
Views
11K
Tr3nbal0n3
Tr3nbal0n3

Sponsors

Latest posts

Back
Top