GreySec Rules

GreySec Rules


  • 1: 2015 – Foundation of GreySec.
  • 2: 2018 – Added rule 1.2.2 regarding advertising. And added amendment to allow Database-trading.
  • 3: 2021 – Rewrite of rules: More clear rules. Fixed grammar mistakes.
  • 4: 2021 - New rules regarding staff and reporting staff
  • Foreword: GreySec rules applies on every platform on which GreySec operates on: The forum, Discord and IRC (Coming soon).

Section 1 – General Rules

  • 1.0 - Flaming

    Conflicts and drama are bound to happen on a forum, to avoid that we will try to close these conflicts.

    We cannot force peace between two active participants in a flaming discussion, but we can ask you to take this somewhere else. Such as offsite or over private messaging.

    In case of flaming where at least two active participants are actively partaking in a thread, both will be asked to stop and to take it elsewhere. To avoid the derailment of the thread.

    If measures are ineffective, thread will be closed. Repeat offenders can get a moderator note or a warning. We do not forbid against profanity, but we ask you to keep your anger moderated and therefore keep the topic intact.

  • 1.1 – Harassment

    Harassment is not allowed against our members. For example: doxing members, leaking information about someone and that includes private messages. You may not show the content of a private message unless told so by staff.

    Racist/Fascist slurs are not allowed on the forum. Verbal abuse for the sake of attacking one’s personal character is counted as harassment and thus not allowed.

  • 1.2 – Transactions

    Economic transactions and activity are not allowed on GreySec. This includes:

    • Marketplace threads.
    • Buy/Sell activities.
    • Hire members.
    • Any type of monetary rewards for requests.
    • Trading.

    And more, none of it is allowed on GreySec. You may do trades and purchases offsite outside the forum. But we do not accept any time of scam reports, everything is on your own risk. These rules are not limited to money: For example, trading and other similar topics. (Database-trading is exempt to this rule)

    Advertising your products, mentioning your products or even hinting to your product is not allowed either. Only exception would be if its relevant to the topic at hand. But advertising for the sake of advertising; to increase your own profit margins is not allowed. GreySec is first and foremost a place for sharing information and mutual discussion on Hacking. In other words, a hacking forum. We are not and never will be an underground bazaar.

  • 1.2.2 - Regarding Free services and products

    Hit and run posts are not allowed. Even if your service is free of charge or nonprofit. If you are here for the sole purpose of advertising your website or product of any kind. Such content is subject to removal.

    These free services are only to be mentioned in an appropriate context of discussion in which the service is relevant to the discussion and the thread.

    In short words: Shill your stuff elsewhere. Unless your stuff is relevant to the topic. And that does not warrant its own dedicated thread for it.

    Exception can be made if you are: A contributor, active member of the forum etc. Contact the admin if you wish to be granted permission to advertise something.

    If your post/thread regarding your free product has been removed, you will be informed about it. You may appeal this claim by sending a private message to the administrator, administration has the final say in the matter regardless of context or rules. If we determine that you are not here to benefit the community but solely to benefit yourself, we may choose to deny you this despite your activity record.

  • 1.3 – Regarding reconnaissance and unlawful information gathering.

    Gathering private information on our members is not allowed through any means, this means that intentionally using tracking pixels, ip-grabbers and dynamical forum signatures is strictly forbidden.

    This also includes gathering passive information such as creating a stylometry corpus from threads/post, measuring statistics grouped by members through bots. (Common practice by threat intelligence). Bots are generally not allowed at all on GreySec.

    You may only operate a bot if you inform the administrator and ask for permission.

  • 1.4 – Quality

    Here at GreySec we advocate for quality and original content; Quality over quantity is our motto. Low quality content is forbidden: For examples spam, posts without content, threads/posts whose only purpose is to increase the post count of the author. And more.

    Further details on our quality standards below. Examples of low-quality content:

    • Bypassing our 35-character limit on posts or threads.
    • Posting leaked content (or plagiarism) without including credits from the old author. For instance, copy-pasta threads: Literal copy of old articles and threads from elsewhere.
    • Posting without any real content or context.
    • Quoting a whole thread.
    • Terrible grammar. We have a certain standard here. Please use proper English which we can understand. Perfect English is not required, just enough that we can understand each other.
    • Treating the forum like an IM-platform. Using stupid chat abbreviations like “yo guise im here t0 h4ck! brb just gonna ddos fbi!!” or just posting memes. If you want to do it like this; Sure but keep it on discord or IRC.
    • Non-descriptive thread titles such as: “lol”, “wtf” etc. Please use a thread title that accurately describes your topic.
    • Intentionally derailing thread topic.
    • Non-English content. We are an English-speaking forum. If you cannot speak English refrain from posting or use a translator.
    • Posting a question without doing your own research.

    Low quality content is not limited to these points. But this is a list of things you want to avoid if you want to post quality content.

  • 1.5 – Reputation Points

    Reputation system is a way for the community to encourage good content and discourage bad content. It serves as a history of our members.

    Abusing the reputation system is strictly not allowed. Examples of abuse:

    • Asking for reputation.
    • Giving reputation when asked (Refer to above, requests for reputation is not allowed).
    • Hinting for reputation, again asking for more reputation is not allowed.
    • Copying reputation reasons. Please figure out your own.
    • Organized reputation ratings. Positive or negative.
    • Doing favors in exchange for reputation.
    • Trading reputation.
    • Selling reputation.

    Repeat offenders will be rep-fucked: In other words, all your positive reputation points will be deleted.

  • 1.6 – Bumping

    Bumping your thread is only allowed if you are going to update your thread with new information or if your bump contains actual content.

    You may only bump your thread at least 4 hours after the last post had been made, you cannot bump over three times in a row. To bump your thread again, you need to wait for a new post.

    If you need to add additional content to a thread but cannot bump, please edit your original thread instead.

  • 1.7 – Advertising

    GreySec has specific policies regarding advertising: Both towards advertising us and advertising on our site.

    You are not allowed to advertise competing or similar sites/forums; The only exception to this is if we are working together as partners or affiliates. You may contact the administration if this is something you would like to discuss further.

    Otherwise refer to rule “1.2.2 - Regarding Free services and products” regarding advertising/shilling on the forum. This is not limited to services but also in general applies to any site or item you wish to advertise.

    As for advertising our site, on the behalf of GreySec:

    • Do not purchase ad-space for Greysec without our permission.
    • Do not spam or advertise in such a way that it violates the rules of third-party site you are advertising on.
    • Do not advertise Greysec on sites known for undesirables:
      • Spammers.
      • Low quality content.
      • Script kiddies
      • flaming/drama or otherwise content which would be considered toxic to the GreySec community.

    A concrete example of this would be “Hackforums a.k.a HF”. We are not biased against these sites, but we ask you to avoid mentioning our name on places known to attract bad user-behavior, mainly script-kiddies. If you do this, we will ask you to remove your advertisement.

  • 1.8 – Posting

    Referring to rule “1.4 – Quality” but I will reiterate it here again. Do not spam, do not post for the mere intention of post count, do not post without content.

    Please remember this is a forum, not an image board and not instant messaging platform, so don't treat it like such; this means no silly chat abbreviations like "yo im from hf, my m8 insider sent me h3r3. cya, im afk" or language like that; neither does the act of posting images without any grammatical content act as a post.

    We ask you to use understandable English on this forum, we know there might be some difficulties for some; so perfect English is not required. But please post so we can understand what you are saying, if you are incapable of doing this then don’t post or use an online translator.

  • 1.9 – Threads

    Please use a descriptive thread title, a title on your thread which explains what the thread is about. So short titles such as "lol" or "wtf" are forbidden.

    You are free to tell us about your threads over private messaging, IRC or discord, but please do not spam links with your threads. We will reply eventually if interest is there, if not the consider making a more interesting thread.

    Do not cross-post the same posts or threads in several sections. Do not cross-post several threads on the same topic, gather all discussion in one thread instead.

    Do not drift away on offtopic subjects in threads unless the thread itself is located within the offtopic sections.

  • 1.9.1 - Harmful content

    Harming our members is forbidden, linking to malware and viruses with the intention of harming or infecting our members is not allowed. This is not only limited to linking but also includes sending malware or dumping/linking a member dox onsite, IRC or discord.

    You are not allowed to send threats against members of GreySec. Explicit or implicit threats.

Section 2 – Content

  • 2.0 - Disallowed Blackhat content

    • All sorts of fraud, including carding and financial fraud such a Paypal-phising or individual topics against certain financial institutions; also includes theft of currencies, crypto currencies included. GreySec is not a safe haven for thieves.
    • Identity theft, including posting or social security numbers; or the discussion of fake IDs, fake passports et cetera.


    • Phising is only allowed as long as it doesn't involve financial theft.
    • Discussion on Identity theft is only allowed if its in the context of OSINT or Social Engineering.
    • Carding is only allowed if it strictly covers the technical aspects: Not how to steal money. But for instance: how does cards work? How can we hack ATMs and credit cards?
  • 2.1 - Other banned content

    • Spam

    • [Hacking/Cracking/Doxing.. etc] requests, we are not your personal army. Do not ask us to do your dirty work for us. Do not hire anyone, selling and buying things is disallowed. If you cannot do it yourself. It is very simple, get out or learn it yourself. We do not care if your girlfriend is cheating or if your facebook account has been hijacked by Somali pirates trying to extort your grandparents, do not ask us to do shit for you. However you may ask for advice and such, but please conduct your own research before asking a question.

    • Advertising, if you are here for the sole purpose of advertising then please move on and keep going. We do not want people go get in and out just to advertise something. Refer to rule “1.7 - Advertising” and “1.2.2 - Regarding Free services and products” for more details.

    • Ddos/Dos, frankly this is not really hacking. Talk about your booters and stressers somewhere else, we do not allow topics which condones script kiddies. These topics are forbidden, unless it contains some actual underlying technical details. Like something with actual content which you can learn something new from. For example: How a certain ddos/dos attack works. This is allowed. But posting your LOIC.exe is not.

    • Rats, Keyloggers, stealers and other tools used by script kiddies. This is not allowed, exception can be made if you are providing some technical context, such as a source code or a programming thread about the construction of these tools.

    • Leaked content, you cannot post content that does not belong to you, unless you provide a source or give credits to the original author. If you do not know the author or the source, find out or refrain from posting it.

    • Adult content, pornography this also includes to mere erotic content with no full nudity. This is not a porn site, do not post any kinds of adult material anywhere. That also includes child porn if I really must tell you that. Exception is granted if the context is out of Ewhoring or human manipulation / social engineering so to speak; however, it does not apply to embedded images or child pornography. Ewhore material may be located inside archived files on external file hosts.

    • Malware is not allowed, if you have the intention of infecting members then obviously, you are in the wrong place. This rule is only if you are sharing or spreading malware with an ill-minded intent. Exception is granted for malware analysis, reverse engineering and malware development, but please include a disclaimer if your thread contains malware. You may only link to malware, such as uploaded on a file-host; thus, not embedding it somehow.

    • Strong graphic content is forbidden, such as gore. This also includes links to such content.

    • Monetizing content such as URI-shorteners that brings revenue; like, Adfocus, Coinurl and other similar services. Only exception is allowed if you include both original links and shortened links, or if the content you have made is your own original work and not leaked content. Taking money for others' work is low, but if you wrote it yourself then these links are fine.

    • Referral or affiliate links; Do not link or include referral/affiliate links in your posts or profiles unless you also include an original link for those who want to refrain from using referral links.

    • Posting private content of our members (Private messages) is forbidden, unless told to do so by staff

Section 3 - Staff and administration

  • 3.0 – Complaints

    Public protests against staff actions is not allowed and you may receive a warning for doing so. Please use the proper channels: Private Inquiries

    Please forward staff complaints to the Administrator. The Administrator oversees the oversight of the staff. If you have a problem with a staff member take it to the Administrator: Private Inquiries

  • 3.1 – Authority

    Staff and administrators have full authority; our decisions are final. The rules may be interpreted differently by staff than the offender, in the end it is the staff who has the final words when doing their decisions. For complaints and appeals refer to rule “3.0 - Complaints” and contact Administration.

  • 3.3 – Asking for staff positions

    If you are interested in becoming a part of the staff team, send a private message to the Administrator. If possible be sure to include your time-zone in the staff-application. We will consider you next time we are looking to expand the team.

    I accept applications but we also invite high quality and active members. The importance is trust between me, you and the community.

    Do not ask to become administrator, do not ask for hosting access. Do not tell us who to ban or who to warn, we make those decisions and not you.

  • 3.4- Mini-moderation

    Mini-modding is not allowed, acting as a moderator trying to enforce rules on your own is forbidden. Please report posts and violations instead. In case of report function being non-functional, consider sending a private message to staff about it.

  • Staff Hierarchy

    • 1. Owner (Not implemented on GreySec ATM).
    • 2. Administrator.
    • 3. Supermoderator.
    • 4. Moderator (Not implemented on GreySec ATM).
    • 5. Section Moderator.

    Full list of staff-team: Here

    Guidelines and specific GreySec procedures

    • Leaking procedures

      If you decide to copy someone else’s work, follow the following steps. Otherwise, the thread will be removed. Violating this may result in a warning.

      • You are required to include credits to the author at the top of the thread. If you're incapable of doing this, use the following template: [color=red][b]Credits:[/b][/color][AuthorHere]
      • Under the credit disclaimer, include a link to where you found this material. (Optional)
      • Please review your thread before publishing to fix broken links, format it properly for readability. Otherwise, it may be removed.
    • Posting guidelines

      Note: These are guidelines, not rules.

      • Act maturely, even if you are not. We will all benefit. It is suggested that you at least have the maturity of a 16-year-old, even if you are younger try to act like one.
      • Try to not be an ass, we all know how easy it is to be one.
      • Be open-minded, arrogance and elitism are discouraged here.
      • When posting questions, try to follow “Asking questions the GreySec Way” guidelines: Here
    • How to report staff

      There might be a scenario where staff members can be corrupt, abuse their position, be unhelpful or whatever the case is.

      Whether your claims are true or not, we accept staff complaints or simply critique on how this forum is being administrated et cetera. But not just in any fashion at all. We want the moderators to be able to continue doing their job without public resistance for every action made. That will prevent them from doing their job.

      This is the procedures you should follow:

      • Send your complaint/report over private message to the Administrator: Private Inquiries
        • I will keep all complaints as documentation, whether your complaints are valid or not.
        • Action might or might not be taken depending on the case.
      • Reporting Vulnerabilities

        All vulnerabilities/exploits should be reported over private message to the Administrator. If possible, include a POC: Private Inquiries

        If you also help me fix or tell me how to patch the security-hole I will make sure to reward you somehow. I've yet to introduce a bug bounty, but it is a possibility for the future.