Kill List: Hacking an Assassination Site on the Dark Web

Name: Kill List: Hacking an Assassination Site on the Dark Web
Description: This talk is one of the most unusual presentations ever given at DEF CON: a meticulous account of how a darknet investigator (Chris Monteiro) and a think-tank researcher (Carl Miller) spent nearly a d

Carl Miller, Chris Monteiro

DEF CON 33 · Day 2 · Main Stage

This talk is one of the most unusual presentations ever given at DEF CON: a meticulous account of how a darknet investigator (Chris Monteiro) and a think-tank researcher (Carl Miller) spent nearly a d

AI review

Carl Miller and Chris Monteiro present a decade-long covert intelligence operation inside a network of darknet assassination marketplaces. Starting with an IDOR on sequential message IDs that exfiltrated the entire order database, escalating through an Apache directory listing, SQL injection to web shell, email pivot to full site ownership, and finally a covert cron-based data exfiltration engine that ran silently on the server for years — the pair intercepted 175 paid kill orders, warned targeted individuals worldwide, and contributed to 32 arrests, 28 convictions, and 180 years of prison…

Watch on YouTube