What is nGrok, can it harm me? | Bitcointalksearch.org

gweigster

full member

Activity: 572

Merit: 106

Quote from: samp123 on March 21, 2018, 06:40:57 AM

Quote from: gweigster on March 21, 2018, 06:23:07 AM

Quote from: samp123 on March 21, 2018, 03:37:03 AM

Ngrok creates a secure tunnel from one of Ngrok's web addresses (e.g. https://whatever.ngrok.com) to the developer's laptop. It's useful when developing software since we don't need to deploy code to external servers to test it with other people or third party providers. You can read more about it here: https://ngrok.com/

So in other words, no - ngrok alone can't harm you. Althought the developer could be running a malicious site on the other end of the tunnel. The risks are the same as with any other website.

Thanks that is already helping me! Since this person said that he will help me with my scam problem and is trying to find the scammer, would it make sense to send me this link? Can he gain any information from it that helps finding the scammer?

To be honest, it sounds a bit odd that he's sending you a link to his local dev environment. Regardless of whether the developer has malicious intent, it's a bit amateurish to send you that link unless he's in the process of developing software for you.

Whilst the probability is low, it is possible to catch a virus just by visiting a website so do be cautious: https://security.stackexchange.com/questions/3848/can-you-get-virus-just-by-visiting-a-website-in-chrome

Thank you again! I decide not to trust the guy, he is definetly not developing something for me. Really fucked up to contact someone who already got scammed, just to scam them again.

samp123

newbie

Activity: 14

Merit: 0

Quote from: gweigster on March 21, 2018, 06:23:07 AM

Quote from: samp123 on March 21, 2018, 03:37:03 AM

Ngrok creates a secure tunnel from one of Ngrok's web addresses (e.g. https://whatever.ngrok.com) to the developer's laptop. It's useful when developing software since we don't need to deploy code to external servers to test it with other people or third party providers. You can read more about it here: https://ngrok.com/

So in other words, no - ngrok alone can't harm you. Althought the developer could be running a malicious site on the other end of the tunnel. The risks are the same as with any other website.

Thanks that is already helping me! Since this person said that he will help me with my scam problem and is trying to find the scammer, would it make sense to send me this link? Can he gain any information from it that helps finding the scammer?

To be honest, it sounds a bit odd that he's sending you a link to his local dev environment. Regardless of whether the developer has malicious intent, it's a bit amateurish to send you that link unless he's in the process of developing software for you.

Whilst the probability is low, it is possible to catch a virus just by visiting a website so do be cautious: https://security.stackexchange.com/questions/3848/can-you-get-virus-just-by-visiting-a-website-in-chrome

adamlillian

member

Activity: 459

Merit: 10

Quote from: gweigster on March 20, 2018, 07:10:18 PM

Hey guys,

a few days ago I got scammed pretty bad (more about this here, but the content is not directly relevant: https://bitcointalksearch.org/topic/warning-of-a-scam-3123057 )

So there is this guy who contacted me and said he can help me, we wrote a lot and he seems nice so far, but of course I've gotten a bit distrustful.

So the guys send me a mail asking my to verify my address with a link, when i click it I get the following message: "Tunnel XXXXXXXX.ngrok.io not found".
I tried to find out more on ngrok, but I don't understand anything about it at all, I really don't know alot about this stuff, but I've read some things about getting access to localhosts etc (no idea, sorry if I get something wrong).

So my question is: Can this link be harmful to me? Can anyone gain access to wallets or passwords with it? Or ist it genuine?

I'd appreciate any help, it is a really important matter to me!

Thank you!

No, nGrok will help you a lot in this scam. If you do not understand what nGrok is, then I will simply tell you. nGrok is a reverse proxy that helps internet users outside of your network to access your localhost. Because it is in the middle of a connection, it can record parameters and support many other interference functions such as analysis, log, repeating request. We just need to understand this simple and know how to use this software will help you a lot. good luck.

gweigster

full member

Activity: 572

Merit: 106

Quote from: samp123 on March 21, 2018, 03:37:03 AM

Ngrok creates a secure tunnel from one of Ngrok's web addresses (e.g. https://whatever.ngrok.com) to the developer's laptop. It's useful when developing software since we don't need to deploy code to external servers to test it with other people or third party providers. You can read more about it here: https://ngrok.com/

So in other words, no - ngrok alone can't harm you. Althought the developer could be running a malicious site on the other end of the tunnel. The risks are the same as with any other website.

Thanks that is already helping me! Since this person said that he will help me with my scam problem and is trying to find the scammer, would it make sense to send me this link? Can he gain any information from it that helps finding the scammer?

samp123

newbie

Activity: 14

Merit: 0

Ngrok creates a secure tunnel from one of Ngrok's web addresses (e.g. https://whatever.ngrok.com) to the developer's laptop. It's useful when developing software since we don't need to deploy code to external servers to test it with other people or third party providers. You can read more about it here: https://ngrok.com/

So in other words, no - ngrok alone can't harm you. Althought the developer could be running a malicious site on the other end of the tunnel. The risks are the same as with any other website.

baobao2000

member

Activity: 462

Merit: 23

Oftentimes, hackers and malware distributors will try to conceal the destination of malware or phishing sites by using what is known as URL encoding.
Using encoding, hackers and malware distributors can mask destinations, commands, and other nasty stuff within a link so that you can't read it (unless you have a URL decoding tool or translation table handy). Bottom line: if you see a bunch of "%" symbols in the URL, beware.

Without your knowledge, click the ever-so-interesting attachment or link, a malicious JavaScript is injected into your browser. SURPRISE!! Every detail you type, including username and passwords, are recorded and sent to the hacker.

Solution:
1 Scan the Link with a Link Scanner, Norton SafeWeb, URLVoid, ScanURL, and others offer varying degrees of link safety checking.
2:Keep Your Antimalware/Antivirus Software up to Date

gweigster

full member

Activity: 572

Merit: 106

Hey guys,

a few days ago I got scammed pretty bad (more about this here, but the content is not directly relevant: https://bitcointalksearch.org/topic/warning-of-a-scam-3123057 )

So there is this guy who contacted me and said he can help me, we wrote a lot and he seems nice so far, but of course I've gotten a bit distrustful.

So the guys send me a mail asking my to verify my address with a link, when i click it I get the following message: "Tunnel XXXXXXXX.ngrok.io not found".
I tried to find out more on ngrok, but I don't understand anything about it at all, I really don't know alot about this stuff, but I've read some things about getting access to localhosts etc (no idea, sorry if I get something wrong).

So my question is: Can this link be harmful to me? Can anyone gain access to wallets or passwords with it? Or ist it genuine?

I'd appreciate any help, it is a really important matter to me!

Thank you!

Topic: What is nGrok, can it harm me? (Read 166 times)