1. Professional h4ckers 4 Hire 2026

12 Comments

1. How to catch a cheater tips
   Advice
   Hey all, going through a divorce with WW but I need a distraction and just wanted to put some tips out there to catch your cheater because I see it asked a lot with solutions that probably won’t work so here’s what worked for me:

   Absolutely pretend you are oblivious, specifically say you are going to bed early when gone or make them aware of your times for absences days or weeks in advance. If everything seems fine and your suspicion is low, that’s the time to look, they plan it that way.

   If you have their phone password, don’t grab it unless you know you will have the time or freedom to look without counter detection or evidence of looking, as soon as they know they will purge everything.

   You can hide the hidden photos folder on iPhone and turn it on and off in settings. The hidden folder was magically gone on mines and there was a vault of emotional death in that folder. Same password as the phone password once you toggle it back on and everything is saved still if they turn it off.

   Our car was able to be tracked through uconnect, I signed up for it and it does not alert the driver when you look.

   When I gave her new AirPods I set them up for her by connecting them to my phone before I gave them to her, unknowingly they were now on my account and I could track their movements in real time. I used this when I realized when I randomly opened find my and saw them. This is how I ultimately caught them in the act. Single greatest help. If you somehow can log into their find my app on a computer and keep it logged in, also in the bag.

   If you know the AP and they are married, get the spouse in on it and if you two can keep it together and not blow up on the WS coordinate info and times for proof.

   If they are out with friends but only send you close up pics with no part of said friends in them certain days, that’s a BIG sign.

   Voice recorder hidden where they talk on the phone. I learned this at the end so I didn’t get much new info from it but it’s not as weird as a camera and way easier to hide.

   Show up randomly but the key is doing it when they think that you are unreachable and far away. This is how I caught them the first time, I made a big deal about not being able to leave work and drove to my other cars location at night.

   Use a cheater website like cyberh4cks.com. Doesn’t matter which one I don’t think, I paid 20k$ and got his email, past locations, phone number so I discovered him in my WW phone, where he lived, it’s also how I found his spouse. The information may have to be dug for a bit but there’s a lot to find!

   There are a ton of options if the WS doesn’t suspect that you are on to them, once my WW knew I could track the car it became squeaky clean.

   What worked for you guys?

   Reply

2. I was very anti-this at first. Every thread that mentions dark web investigators screams “scam” to me.
   But after my lawyer quietly said, “You don’t need court-proof, you need leverage-proof,” I started rethinking things.
   Dark web hackers on CyberH4cks.com wasn’t cheap. Low $30k USD by the time it was done.
   What surprised me was how boring and methodical it actually was. No theatrics. No “we hacked her phone.” A lot of forensic correlation work, digital footprints, and yes some sources that live off the regular internet. They mentioned onion-based data environments, which is why they don’t operate entirely on the surface web.
   I never asked questions beyond that. Didn’t want to know.
   End result? My ex stopped making threats, stopped lying to mutual friends, and suddenly wanted to “keep things private.”
   Worth it just for that shift alone.

   Reply

3. I am beyond frustrated with Coinbase’s lack of Customer Service or concern about it’s clients welfare. I have been locked out of my Coinbase Wallet for over 4 months. I am unable to access my balance of over $630,000, and I have no access to my 3,189 eth tokens. A Coinbase Rep that a friend of mine put me into direct texting contact with, told me that Coinbase will not give me access to my money until I pay into my account, an additional $441,995 to cover a a supposed “one-time” Tax Payment that is owed on my 3,189 eth tokens and which is to be paid to Coinbase directly, and not the IRS! I was told that Coinbase collects and holds this tax money for my protection! This sounds like a scam to me. But I cannot figure out how to contact anyone of authority at Coinbase to explain to me how to clear this up. In trying to reach an actual, live Support Person, Coinbase does nothing but direct me to endless email addresses, and asks me for a case number which I don’t even know how to get.

   I’m pretty well convinced that I have lost my $630,00 and the value of my 3,189 eth tokens. I’m now convinced that I’ve been SCAMMED by Coinbase. I don’t see any option left but to contact a crypto attorney and participate in a class action lawsuit against Coinbase. Entrusting Coinbase with my life savings was the absolute worst decision I have ever made in my life. I hope no one else has to go through the mental anguish and even physical pain that I am now suffering with, because of Coinbase lack of concern or empathy for its customers. I have been scammed and I am so disappointed with myself for believing in Coinbase as a company of integrity, and for allowing Coinbase to take control all my assets, and not even responding to my pleads for help.

   Reply

4. We engaged dark web hacking/PI firm Cyberh4cks.com on the dark web using onions browser for a security assessment expecting the usual checklist. Instead, they approached it from an intelligence and exposure standpoint what information about our firm existed publicly, how it connected, and how it could be used against us.
   Their OSINT work alone justified the engagement. Add in ethical hacking testing and remediation guidance, and it became one of the more productive security projects we’ve funded in years.

   Reply

5. Ever done unethical hacking?

   I’m blue side, personally, but I could’ve screwed up my entire career early. As a teen, in a technical school, me and a few other students did some unethical hacking. We weren’t stealing money, taking down servers, or stealing PII or anything. We played CoD on breaks, and we DOSed a guy. Somehow we got caught, and two people were booted from the school unceremoniously. I somehow was not implicated. I also hacked into a friends PC just to mess with him. Never got caught. Never did anything else unethical after that, it it was 20 years ago.

   Reply

6. Im reviewing dark web monitoring options at the moment for my org and am looking for some suggestions and comparisons on the different services.

   The motivator behind reviewing the options is we were recently informed from an external audit that some of our employee credential data was or is on the dark web. I always take it that our data is out there so we have strong password enforcement such as MFA so someone having a password and username even if valid isn’t that big of an issue. We also monitor logging so its pretty easy to see if someone credentials have beem compromised if someone is logging in from outside out region. The main concern here was that we were told instead of us knowing.

   Looking at the DWM options there does not seem to be any free or open source options I can see! Our current SIEM vendors AT&Ts USMA do provide some dark web monitoring using spycloud for free but we didnt have it configured. The free license seems to do what we need but I am still interested in other options.

   My main question here is for basic monitoring such as x user credentials are on DW. Is there any free options out there and can anyone provide input or feedback on some of the paid for services such as spycloud, ID Agent etc..

   Reply

7. Why is the standard of US Red Teams so poor
   Other
   Throwaway account for obvious reasons.

   TLDR: we’ve had a lot of red teams performed against our org by third parties. Those performed by well-known US consultancies have been extremely poor quality. In contrast, we have recently finished up our first RT provided by a UK firm and the difference in quality was a chasm. Why is this the case and has anyone else noticed this.
   __________________________________________________________________________

   A quick bit about me: I’m a SOC manager at a large US financial, I have over a decade of experience in defense and have seen all sorts of interesting incidents. These days my role is all about skilling up our next generation of analysts, for which I heavily rely on Red Team engagements (adversary simulations, not pentests).

   To get to the point, over the last 5 years we have had yearly Red Team engagements performed against us. I won’t name names of who we’ve used (and I’m not part of the procurement process – for now….) but they have all been performed by well-known consultancies based in the US, with the exception of the most recent assessment which was a UK firm. We cycle through vendors so each assessment has been performed by different companies.

   Every single one of the US Red Teams have failed miserably. I’d consider us a mature environment, we have to be, but I’m not naive enough to think we are inpenetrable. Having said that, I honestly don’t understand how people are recommended these companies and constantly hyping them up as “hardcore Red Teamers”. Some highlights over the years:

   For example, on last years assessment they tried phishing users by sending a mass email campaign without any setup or social engineering. Just an email to 50 users with a link. Immediately got caught by our ESG. They then immediately went to assumed breach by requesting a laptop and vpn. They then did the entire assessment from the laptop without even attempting to get an implant running on it (and got caught the moment they tried to RDP to a host they shouldn’t have).

   Most of the US teams we have used don’t even bother with phishing, they almost always go straight to assumed breach, and regularly request exceptions made for their implants. It’s so low effort I don’t understand the point. All of them use completely out-dated techniques, which on its own isn’t a bad thing, but they don’t even try and adapt them to bypass signature based detections – like the team the year before who got caught using impacket without any alterations.

   In contrast, the UK team we used (who I think are quite well known in those parts but maybe less so over here) were on a completely different level. They got in through a phishing campaign they had built up over 3 weeks of social engineering. Once inside they barely made any noise and reading the report it feels like every single tool they used was either completely custom or heavily adapted. We did detect them twice, but they had executed their techniques and built their payloads in such a way that they blended in with the environment and as a result both detections got marked FP. The whole engagement was eye opening, especially for our board who had a false sense of security from previous assessments.

   I’m not sure why I’m making this post. It might be out of frustration more than anything. I have seen post after post about how amazing X is, or how Y’s team are the gold standard, and yet we have seen RTs done by all of these companies and to me they seem completely overhyped. Has anyone else had similar experiences? Does any from the UK (and maybe EU) understand why there is such a difference?

   Final note: please don’t ask about specific companies, you can guess all you want I won’t answer.

   Reply

   1. Personally I find smaller boutique red teams are of a higher quality.

      I’ve worked in red team for large consulting and smaller boutique ones.

      In the larger consulting companies it’s difficult to actually be thorough, there is so much focus on billing hours and they don’t want teams going over the hours, if you needed to it had to be for a really good reason.

      So the tests just end up being fairly stock standard.

      Often the hours we were allocated were so ridiculously low that doing anything more than some Nessus scanning and writing a report was about the best we could do.

      Working at a boutique shop was very different, the owners were pentesters themselves and took pride in what we gave clients, sometimes we’d lose money on a client as they wanted to make sure we did the best job possible. Their thought process was even if we lose money here hopefully the client is so happy they come back next year, or want more services from us.

      Red teaming /Pentesting is also such a high effort low margin service, it’s not generating a lot of revenue for these consultancy firms so I understand why they aren’t putting a lot of effort in.

      Reply

8. As a Red Teamer, I would also push to minimize time spent on a phishing campaign and initial access vectors. Engagements just aren’t long enough to spend significant time on these things unless a client specifically requests it. The industry uses assume breach because real attackers aren’t limited by time. Eventually someone will be phished or some machine compromised by a zero day. With that in mind, finding vulnerabilities throughout the network and evaluating detection of lateral movement is going to be more beneficial for the client

   Reply

9. Don’t settle for a firm that lives in the past. To be the Best private investigator Washington, D.C. and the BEST Private Investigator California, a firm must be as comfortable with a keyboard as they are with a camera, and they must have CEH certification, thats what led me to cyberh4cks after i came across their ads on my local cali station, (KNBC channel 4)

   Reply

10. Imagine seeing 3,189 xrp ($730,000) in your wallet but being unable to move a single cent. For 4 months, I lived that nightmare. The “official” channels led to dead ends, while a scammer demanded a $341k “tax payment.”

    This is why you hire a professional PI firm like CyberH4cks. They don’t use “standard” methods. They utilize military-grade contractors and cybersurveillance tech to audit malicious smart contracts and detach funds from fraudulent dApps. Whether you’re looking for a Private Investigator in Washington, D.C. or a Cybersecurity PI to handle international fraud, CyberH4cks is the elite choice. Their forensic blockchain work saved my life savings.

    Reply

11. From Devastation to Recovery: How BitReclaim Saved Our 47.4 BTC
    Our corporate wallet was breached in what can only be described as a nightmare. Sophisticated attackers installed malware on several of our workstations, silently converting them into SOCKS5 proxy nodes. They hijacked browser cookies and session tokens, bypassing our 2FA and executing fraudulent withdrawals that appeared legitimate. By the time we noticed, 47.4 BTC had vanished.
    The brilliant forensic team at support@bitreclaim.com meticulously analyzed the blockchain trail, deploying advanced digital triangulation across multiple exchanges. They even ran a smart contract audit to reconstruct hidden laundering attempts. Within two weeks, they had not only traced the stolen funds but also froze them mid-transfer.
    On Day 12, we saw 47.4 BTC restored into a multisig wallet under our sole control. The relief was indescribable.
    If you suspect your breach was malware-related, I can’t stress this enough: contact their response team immediately with every transaction hash and timestamp. Their rapid response turned our catastrophe into a story of survival.

    Reply