Author Archives: Dancho Danchev

Everything that has to be found has already been found somewhere online.In this analysis I’ll profile FBI’s Most Wanted Ahmad Khatibi and offer an in-depth peek inside his Afkar System company.URL: hxxp://www.afkarsystem.com; hxxp//afkarsystem.ir Mobil… Continue reading Exposing FBI’s Most Wanted Iran’s Ahmad Khatibi’s Afkar System→

Since 2021 as a part of an in-house research and capability building project we’ve been collecting tons of publicly accessible only cybercrime forum information data where we aimed at building the actual volume for this project which currently amounts … Continue reading Exposing an IRC Botnet – An OSINT Analysis→

Since 2021 as a part of an in-house research and capability building project I’ve been collecting tons of publicly accessible only cybercrime forum information data where I aimed at building the actual volume for this project which currently amounts to… Continue reading Ex-Cybercrime Forum Community Member Runs a Profitable Penetration Testing Business – An Analysis→

This just in.Here’s the analysis.    hxxp://www.warzone.ws/Personal emails: solmyr@warzone.ws; ebase03@hotmail.comXMPP/Jabber ID: solmyr@xmpp.jpTelegram: solwz; sammysamwarzoneSkype: vuln.hfFacebook account: https://www.facebook.com… Continue reading Exposing the Warzone RAT (Remote Access Tool) Enterprise – An OSINT Analysis→

Writing dipshit “poetry” and singing it “all” constitutes illegal and dipshit activity. Guess what? You’re somehow supposed to be master of it. Continue reading The Troyan, Bulgaria Local Dipshit Leader Gipsy King That "Killed" Them All→

From the “we’ hate you. “We” don’t want to see you. You don’t exist and we don’t want to see or hear anything about you department.Cheers! Continue reading From the "Dipshitness is Cool But Is It Relevant" Department?→

My latest white paper for WhoisXML API.The popular cybercrime-friendly xDedic service was recently shut down and in this analysis we’ll take an in-depth look inside the Internet-connected infrastructure of the xDedic cybercrime-friendly enterprise and … Continue reading Profiling the xDedic Cybercrime Service Enterprise→

I recently came across to another image courtesy of Conti ransomware gang’s internal and publicly accessible leaked communication which I data mined with the idea to come up with a proper analysis and connect the dots which in this case appear that a m… Continue reading Conti Ransomware Gang’s Russia-Based Music Album Labels and Plastika Recording Studio – An OSINT Analysis→

What leads us to conclude while and when data mining publicly accessible forum communities used by cybercriminals?It’s their digital footprint which often comes invaluable when doing research such as for instance the following user IDs.Sample personall… Continue reading Dancho Danchev’s Law Enforcement and OSINT Operation "Uncle George" – A 2024 Update→

So here it goes.This is the second part. Check out part one here. If it’s going to be a cyber warfare doctrine make sure that China and Russian didn’t copy it acting as copycats basically positioning themselves over a decade ago in military and cybersp… Continue reading Assessing the Current State of Cyber and Cyber Military Deception Concepts Online – Part Two→