This is a talk where I talk about how I used python to fight off online scammers and shut down the websites of hackers who were involved in phishing attacks, in the process shutting down their entire operation. In this session, I will talk about how others can stay safe on the internet, detect malicious websites and also talk about how we can take action to shut down these websites.
Technical details :
I used the requests library to send a multiple bogus requests to these websites containing bogus information. For example, the website that was being circulated was a bogus Instagram page where the attacker has already hacked a account and uses that account to get others to login. However the page is not real and the login information ends in a database owned by the attackers. I first figure out the RequestURL, then use that RequestURL to send bogus login information on loop till the attackers shut down the website.
What I did is completely legal and within the laws. All I did was find the requestURL and exploit that to send information to the website.