Archive for the ‘Spamouflage’ Category

How to Build Link Pyramids

Yesterday, we discussed two of ways you can use bursts of spammy links to help you make money. But just because you have the ability to spam thousands of links a day to a single page doesn’t mean it’s the most effective use of the tool.

What if I told you there is a way to launder those spammy links; a way to sift out the negative Google Karma to leave you with pure Link juice that Google uses to rank. Would you be Interested?

If so, then you’re gonna want to know about:

Link Pyramids

Among of The Great Wonders of the Web are Link Pyramids. These majestic towers of ranking excellence are built on the backs of spammy links just like the Ancient Pyramids were built by slaves. Today we’re going to define what Link Pyramids are, why they work so well and what they look like. Later this month we’ll get into the nitty gritty on building them.

The Idea behind the Link Pyramid is that while link juice can pass from one site to the next, ranking penalties generally stop after one hop. It works on the premise that the lowest quality sites link upwards to the next higher quality sites in your network. Sites can link laterally and upwards but not downwards.

So here’s what the pyramid looks like . . .

[I started making a graphic of a Pyramid, but honesty, I just can’t be bothered. You know what a fucking pyramid graphic looks like – right? Great! Moving on . . .]

The Bottom

At the bottom of the Pyramid sits a network of sites you created on free blog host or Squido, or anywhere you can get web space for free. These sites should not have ads on them. These sites will link to random other quality sites on the web and to your 2nd level sites. You will experiment with how few links you can spam to these sites to get them to acquire link juice vs. how many you can spam to them before they get banned. If you are not selling anything on these sites there is more leeway. The only type of links you are sending to these sites are those free spammy links from link software.

2nd Level of Pyramid

Then we have your 2nd level of the Link Pyramid. This is where you put your domain portfolio to work. This network of sites is distributed across cheep shared hosting accounts. The more shared hosting accounts you have for this purpose, the smaller your footprint will be. Hosting is really cheep these days, and you’ll probably be spending more each year on domain renewals than you will be on shared hosting.

This 2nd level of sites will get links from the bottom level of sites, but never link back down to them. These sites can still receive spammy links but tread lighter: you don’t want your account getting banned with the shared host. Buying cheap links to these sites also helps the network grow. Directory submission and press release type links are good to go at this level, as is moderate monitization. The Primary purpose of these sites is to build a link farm to link to the Golden Crest of your link Pyramid.

The Golden Crest

Here we have the sites that are ready for prime time. They have fantastic designs and flow. They are your niche authority sites. Their links come from Level 2 of the pyramid, link buys, link bait, and manual, targeted Link spamming. The Golden crest can make money, but the real purpose of these sites is to link to the Top of your pyramid.

The Top

At the Top of the Pyramid is the Target site: That’s the pristine white hat looking site that you want to present to your customers and to rank in the search engines. This site has the bulk of your editorial content: you’re link bait. This site is an e-commerce site that is designed to make money. This is the site you’re paying bloggers and reviewers to link to. You’re only purchasing the highest quality links to this site and your link Ninjas are securing only the best quality links. This is the site that is optimized for the keywords you know make money. This is your money site.

Make sure to have every level of your site link to sites outside of your network and for fuck’s sake:


If you’re gonna do that, you might as well fill out a spam report on yourself with a list of all your sites and submit it to Google. Along similar lines, don’t use any of Google Products for these sites (like analytics, or Adsense, or Adwords . . . or even surfing to them with a Google Toolbar installed or Google Chrome) with the possible exception of the site at the top of your Pyramid.

I’m sure some of you have some questions. Fire away if you do: this way I have more shit to blog about.

Buy Viagra

Nice spot by Dave Naylor, Yahoo is tells UK Searchers to buy Viagra from Google:

Buy Viagra in Yahoo

Look at all those Yahoo results for buy Viagra! How could anyone look at something like that and not realize that Black Hat SEO is outright dominating the competitive SERPs?

If you’re wondering why Google is ranking for “Buy Viagra” in Yahoo, it is likely do to link spamming of Google Docs and Google redirects.

I wish I had a screenshot from last week when Google was showing the Yahoo Homepage at number 5 for “Online Poker” . . . that was due to a mention of online poker on the homepage and the domain trust + on page factors that Google uses.

Wired Splogs

Some of the factors for spotting splogs according to wired:

“If we see 10,000 pings within 60 seconds, and all the blogs point to the same Web site, it’s really easy to recognize that as a link farm,” Sifry says.

1. Ping Frequency: Not too often nor too regularly.

Like most blogs, Some Title consists of a number of 50- to 100-word posts (incoherent ones, in this case), all with hyperlinks to other Web sites. In real blogs, the hyperlinks’ anchor text – the word or phrase users click on – is generally something innocuous like “previous post” or “interesting discussion.”

2. Sure, Real blogs don’t usually link to “buy viagra online”. . .

The links in ordinary blogs usually take users to well-known sites like Flickr and YouTube or prominent blogs like Talking Points Memo and Boing Boing. By contrast, each link in Some Title takes the user to a spam Web page or another splog.

3. Link to authority sites.

These sites, moreover, often have odd-looking, superlong URLs that are packed with keywords, because search engines tend to award high ranks to Web sites with keywords in their title, and sploggers are constantly looking for ways to increase their visibility in search engines. One LiveJournal splog that mentioned me, for example, was called New-york-agency-direct-mail-insurance-marketing. The grave-robbing Web site had the absurd address
grave-robbing-in-ventura-california-1985.html. “If it’s a Blogspot blog with more than two dashes, it’s spam,” Mullenweg says. Simply checking for dashes and search terms in links, in other words, will eliminate many splogs.

4. Too many keywords in URL

Another giveaway: Both Some Title and the grave-robbing page it links to had Web addresses in the .info domain. Spammers flock to .info, which was created as an alternative to the crowded .com, because its domain names are cheaper – registrars often let people use them gratis for the first year – which is helpful for those, like sploggers, who buy Internet addresses in bulk. Splogs so commonly have .info addresses that many experts simply assume all blogs from that domain are fake.

5. Is anyone still buying dot info domains? If I were a search engine I would simply not index any content from that TLD. Problem solved.

By looking for multiple dashes, .info domains, and other trip wires, says Technorati software architect Ian Kallen, his company can deconstruct the links and content in every new blog post, as well as all the other elements of the page. In essence, he says, “you’re going after the money – what they have to do to get money. And you can use this to spot the abusers.”

Ask yourself, if “I wanted to eliminate spam from My search engine, what would I look for?” Then make sure you’re not setting off any of those red flags.

The Most Cutting Edge SEO Exploits No One is Publishing

You know that the best SEO Black Hats are doing something more than scraping, using a site generator, comment spamming, and pinging to be raking in more than $100k per month.

But what is it?

Right now, there is way too much good stuff that I simply can’t publish on the SEO Black Hat blog. If I posted these tactics and exploits they would immediately get all the wrong kind of attention. The detailed conversations about how exactly to abuse search engine algorithms, generate massive traffic, and what other Black Hats are doing must remain underground to retain their effectiveness.

But what if I told you that you could discuss these exploits with me without paying my $500 an hour consulting fee? What if I told you there was a way to join in on the private, cutting edge discussions with some of the best Black Hats and web entrepreneurs in the world?

Would you be interested?

Because now you can . . .

Today is the official launch of the resource you’ve looked everywhere for but never found:

The Private SEO Black Hat Forum

Normally what you get on forums are people who don’t know anything talking with people who don’t want to say anything. You can occasionally find amazing tips on some forums: but you have to dig through 400 crappy posts just to find one post that is useful. That becomes a huge time sink.

How are the SEO Black Hat forums different?

Quality: We’re not going to have any contests to see who can make the most posts. That just creates tons of crap that no one wants to read. Our focus is on quality over quantity. Our primary concern is with succinctly answering one question: “What works?”

Sophisticated: Many of the topics we discuss are very advanced and require a high level of technical or business acumen to appreciate.

Expert Discussions: The SEO Black Hat forums are not for everyone and they may not be right for you. If you are relatively new to SEO or building websites, then do not join the SEO Black Hat Forums: you will be in way over your head. There are plenty of newbie forums out there for you – this is not one of them. Our forums are for successful web entrepreneurs to develop strategies that drive more traffic and generate more revenues.

Forum Membership Benefits

Access to Expert Advice and Discussions
We have both White Hat and Black Hat Experts that are already benefiting from new tool development, techniques, scripts and the sharing of ideas.
Some members you may already be familiar with include:

* CountZero from (Black Hat)

* RSnake from (Web Security Expert)

* Dan Kramer from Kloakit (Cloaking Expert)

* Jaimie Sirovich from (Token White Hat / SEO Geek)

There are several other members that you are certainly familiar with who are using handles for anonymity. We have others who are more focused on security, vulnerabilities, and coding. There are still more that you are likely unfamiliar with but are nevertheless web millionaires.

Databases – Large Datasets
If you want your sites to have massive amounts of unique content you need large data sets. The trading, discussion and posting of large data sets is going on right now on our forums.

Expired / Deleted Domain Tools
Want to use to use the same domain Tool that I used to get a Page Rank 6 site in the Gambling Space for just $8? This domain tool is available for members to use for free.

50% off on Kloakit – The Professional Cloaking Software

Scripts – Several useful scripts have already been posted – interesting thing you may not have thought of before are being discussed and developed.

Exploits and Case Studies: The really good stuff I can’t talk about on the SEO Blackhat Blog is being discussed on the SEO Black Hat Forums. Right now, some of the conversations include beating captchas, domain kiting, data mining, hoax marketing, XSS vulnerabilities as they relate to SEO, and much more.

Pricing: $100 per month.

The price will soon be rising significantly as more databases, hosted tools, scripts and exploits are added. However, once you lock in a membership rate it will never go up and you will continue to have access to everything.

So, if you think you’re ready for the most intense Black Hat SEO discussions anywhere, then here’s what you need to do:

1. Register at the SEO Black Hat Forums.

2. Go to the User CP and select Paid Subscription.

I’ll see you on the inside!

XSS – Cross Site Scripting flaw at Google

Via Slashdot, Web Security posted a message about a cross site scripting vulnerability at Google:

Two XSS vulnerabilities were identified in the website, which allow an attacker to impersonate legitimate members of Google’s services or to mount a phishing attack. Although Google uses common XSS countermeasures, a successful attack is possible, when using UTF-7 encoded payloads.

One of the links in the slashdot submission is described by Phosphor3k as:

Someone [who] is trying to get their Pagerank up by submitting the story with a name of “Security Test” and linking to their shoddy website. The site has only a few links, no content, and it says the page is for sale. Will slashdot ever get their shit together and stop posting submissions with blatant pagerank-whoring links like this?

We covered spam sites getting slashdotted earlier . . . so it must not be that difficult. If you have a compelling and timely story, you can often include a link to one of your sites and get it passed the mods if the destination page looks legitimate. To me, this is the ultimate in link dumping.

Social Engineering in Comment Spam

I went over to pascal vanhecke’s weblog to read Social Engineering in Comment Spam:

“I Googled for something completely different, but found your page… and have to say thanks. nice read.”

Wouldn’t you immediately hit the “approve” button?

Looks like pretty good Spamouflage to me.

He even included some social engineering in the footnote of his post:

Seo BlackHat is an interesting (and entertaining!) resource on all kinds of web spam – he hasn’t written on this yet, so maybe it was his? 🙂

It wasn’t mine – but I like the way they were thinking. That’s probably one of the better mass comments I’ve seen. I may have seen better: but if it were really that good, we wouldn’t even recognize it being comment spam. Right?

Comment spam has a couple of penalty pitfalls associated with it: the unvaried anchor text can trigger a spam flag in the engines. But when part of a healthy diet of other spamming and link dumping can help a bit in the SERPs – especially when used in moderation.

Here’s the challenge: Pick a Niche – (technorati tags work well) then create the comment spam most likely to get approved by a blog in that niche. For off topic comment spam, you have to tell me the Niche / technorati tag of blogs to be spammed.

If it doesn’t suck, I’ll approve it.



Spamouflage: The method or result of concealing or disguising search engine spam to make it appear to be legitimate. Derived from spam + camouflage.

An example of Spamouflage:

Marco of pivot blacklist sent me an e-mail today about a blog spamming issue.

As a departure from conventional comment spamming, some SEO Black Hats have begun including links to non spam sites in their comment spam bots.

Someone (or more than one) is currently spamming with links to my site. At first I thought this might be some malicious SEO blackhat who hates me for writing rather effective anti blogspam software but later on I found out this isn’t the case. The fact that my site is affected seems to be a matter of bad luck and unrelated to my activities in the field of blogspam prevention. Several other bloggers who have nothing to do with spam on both the sending and the receiving end have been affected by it.

An article about it has been posted on

My question to you is:

Do you have any idea why this new kind of spam is happening?

Is this an attempt to disturb the already highly ineffective centralized blacklists? (they don’t work at all since spam domains tend to be created faster than anyone can maintain such a list).

While I do think that degrading the effectiveness of a blacklist may be the goal of some search engine spammers, our more important focus is the search engines.

Often, we comment spam on blogs that have been abandoned. When a blog is abandoned, the comment sections frequently has 10-20 links to pharmacies, adult sites, poker . . . etc.

Dropping in a few links to legitimate site is like planting pretty flowers in a “bad neighborhood.” I don’t want my backlinks nestled between 8 links to other spam sites. On a linear model, I would prefer my back-links to be between two trusted authorities – sites with impeccable reputations. It would be even better if these sites added contextual relevance, but that’s not as necessary.

We don’t know exactly how Google or Yahoo’s algorithms read. We can only make informed guesses about what they are and where we think they are going.

If I were Google, and I saw a site’s URL listed with 8 other known spam sites, the temptation would be to count that as a mark against the site.

This tactic, a form of Spamouflage, preempts the effectiveness of such a countermeasure; it’s like thinking several moves ahead in chess and makes it more difficult to categorize a URL as spam.

While there are clearly benefits to adding spamouflage to comment spamming, it’s always possible that someone just thought it would be funny to comment spam links to an anti-spam-site . Any serious search engine spammer could do much more to get your site penalized or sandboxed than link dumping in blog comment fields.

The SEO Black Hat Illusionist: Making the Dark Seem Light.

Most people are not hard core SEO black hats. On the other hand, no SEO worth his salt has never had a site banned. If you’re not a full-on SEO Black Hat Search Engine Spammer, but just wanted to remain competitive, you have probably engaged in some less than white hat tactics: Buying a few links, a little Keyword stuffing here, maybe some manual comment spam there.

If you want to run a legit site, like, you can’t use blatant black hat tactics without getting banned. On the other hand, if you do no use at least some shady Search Engine Optimization tactics, it’s gonna take you a long time to get noticed.

So the SEO question becomes, for legit sites, how dark can I go? Well, take this picture for example:

Black Hat vs. White Hat: Gray Illusion

Obviously, you want your legit site to be more like “Square B” than “Square A”.

A site that is “Square A’s” shade of gray will probably get banned, while a site that is “Square B’s” shade of gray will probably excel.

But hold on a minute! Square A and Square B are both EXACTLY THE SAME COLOR. They are both hex #6B6B6B. if you don’t believe me, download it and see for yourself.

The lessons here are:

Perception is reality. If you are GOOD at Blackhat Search Engine Optimization then the Search Engines will perceive your sites to be exactly what they are looking for.

The standards by which your are judged are relative to your surroundings: Just as your color perception is affected by surrounding colors – Practices that could seem benign become more high-risk when you are in a bad neighborhood.

You want to be as shady as possible when it comes to your SEO tactics, while seeming as light and innocent as possible. It’s all a question of how to manipulate and game search engine’s perception.

The above illusion was taken from this site.