#general

not rly .. i dont think so ... u can to so many diffrent thinks .... u can use docker and if u wonna u can handle with one rpi 4 or rpi 5 30 diffrent services

is use proxmox with docker since more then 3 years on my rpi 4

wireguard vpn , webservers , sql databases , dns blocker = pi-hole ... and many more services

It's fine for docker but not fine for proxmox if you're trying to do something other than running 2 VMs with Linux

u dont use vms very often on proxmox u use LXD

The arm architecture kinda sucks

And if i wanna play Mario kart on my promox servers running 2 Linux distros while VPN proxd all across the globe then what

I wanna play Mario kart but I can’t let the gov know

Then what

if u wonna gamining , u use a other sdcard with a spezial gaming software 🙂

ok then show me on a 4 core intel i3 3x00 u can run 8 vms 🙂 with vpn gaming and so on .. its not posible but its cost 400 dollars and not 50 dollars 🙂

I was kidding lol

I have a windows machine for gaming

ok , i dont undersdood that joke ( my fold) .. but u can emulate old games on the rpi as well ... with 60 fps ... 🙂 for example with the OS "retropi" u only has to chance the 10 dollar sdcard

Me and my dad built a rpi to emulate old snes and sega systems

When I was like 14

and for example my pc its in a other room then my big tv ... and i dont take my pc for fun games from room a to room B with all the cables and so on

thats cool

goddamn gobuster takes some time

not that mutch 🤔

enumerating for vhosts

ok 😄

For that I use ffuf with Host header

using top million wordlist

fuzz that

enumerating use time 😄

Hi

yuh im just going through the course as it comes havent got into fuzz yet

choice of wordlist can also make a diff

I always start with common stuff first, if not found, then larger wordlists

true firce-hostlist went quick but i forgot to put the stmp in my /etc/hosts

should combine all wordlists in seclits in each section into a monster mother of all lists

htb use allways the same list ? 🤔 🤔 🤔 🤔 🤔 🤔 🤔 🤔 u dont need a other

Sometimes even after a few wordlists you still don't find anything

it can be tedious

yep gotta take our time

i realized that once i was rushing and missing small steps

for some types they have combined lists

i think

for example the subdomain lists have a combined version that includes all of them

combined_subdomains

just did the enumerating for no response is crazy lol

they followed my digital footprint and fired me 🤦

did anyone use his gpu for cracking ? i have the problem ,i cant use my gpu in my parrot Vm ... maybe i have the wrong hypervisor ?!

GPU is in use by host system

you can't make the vm use it

you need to look up pci passthru and get another card for the vm

or just crack on your host machine

I just crack on my host machine

okay now idk why this wont show anything on screen

it its possible! i know that! u can share it

3d graphics acceleration cannot work?

Its usually an option in VMware

That's basic 3d software acceleration

afaik

Fair enough

i think its work only with nvidia , with amd u have to use spezial configs and driver ..

Hallo

good morning

Just crack on host. Easier and no need for extra hardware. Best thing(for a vm) would be a passthru but as Eggzy said that works better with a second GPU in the system

anyone able to assist or guide a quick tip.. i followed the tutorial for this one and still nothing not sure why no domains show up at all

2 gpus its not the big deal , but to connect one of them to the vms .. its the problem i have , there a many instructions /Tutorials online but no one works for me

That's why crack on host. Only difference between a linux and windows host is .exe. I use both john and hashcat easily on my windows system. without issue

i have 1x nvida gtx 1060 and one amd rx 6700xt

I had two gpu, nvidia, but my system put them both in the same iommu group. I couldn't do pci passthru for that reason

ok thats a point but i have seen many trustfull videos where u can make ur gpu happent for 95% of power in the vms .

Go for it if you want to learn, but for times sake and how intensive material can be (like in academy) it is it's better to take the path of least resistance.

the question is ... has anybody a hypervisior and can share his gpu ? and when what kind of gpu and what hypervisor ...

https://pve.proxmox.com/wiki/PCI_Passthrough

becourse we all know .. with cpu cracking u need 30 minutes for a PW and with gpu u need 30 sec 😄

i dont use proxmox on my main pc .. but thx for the link

this vhost enumeration aint working

gonna try again

my etchosts had 2 ip ithdomain and one with port might be messing it

just doesn't wanna list anything

well yeah, your hosts file shouldn't contain any ports

what time do u guys have ?

7:13pm

4.13 am 😄

your clock is way off

just a other time zone 😄

yea i fixed it still same issue

might have to reset

sometimes u have to reset the machine ..

thats rly a big diffrent bettween tryhackmy .. there u have allways a single target vm

im an idiot nvm

10:17pm

10:17

can't spell best without EST

i put the ip in the dirb instead of the cleartext..

if u found ur misstake u dont are an idiot

u da man

💪🏻

pm ? ?

pm

9/10/25

where u from ?

kba ?

kuba

NYC

ahh k make sense

yo soy idiota

jajaja

then its supernuts from the west site 😄

English only please

is olles englüsch 😄

damn today was a sad day

#rules

whats ur problem ? im not a native speaker ! i have some mistakes

any one listen to soad

Well, I told R4ST4B4J4 English only, then you replied to me without using English so I pointed you to the rules. What's the issue?

;_;

2 of 3 words was englich lol if u dont know ur own languare ..its ot my fould

where you from @plain basalt

is this dutch?

What you said is not English

looks german

becourse im not a native! ... 🙂

what yall think of npm supply chain attack?!

cringe

i could've done it better

womp womp

^

But ur a script kiddie

yikes

and ur a noob

wym

i don't do labs my man

bro brought up the rank

Sit down

Imma stand

aye i'm chill like that

i would like to see u written in spanish or frence or in a other language 🙂 and then we looking how many mistakes you make

You really should sit this one out. You have no idea what you are talking about

lmao what is going on

I follow the rules so no

im follow the rules too ..

What ur on about……

shhhh

WHY IT SO TOXIC RN

so pretty much cst are confirming if a websites legit or not

ight ima dip, back to talking to my hellotalk girls 😩

<--- ^^^^ nobody its toxic ^^^^ no worry

vinvicta put me on whats hellotalk

its all fine .. just a conversation

Why you getting heated over the rules then my man

Its just the rules

u can spot mitm by bad ct log?

i dont know what u meen ? i sad that i follow the rule

I don't have the brain capacity to decipher this any longer

good night gamers and non gamers

night brotha

gn8 and cya

chrome doesnt show certificates

chrome ? u use discord in a browser ?

nvm and yes i do

and rly chrome ? .. pls use firefox

usually use firefox but chrome i have on here for book marjks

ah ok 👍

browser best way for me

bevor u go sleep i have one quesation .. its ok ?

whats up

it its true that one beer in a Pub cost 20 dollars in nyc ?

depends where you go , could be an exxageration but honestly you could spend close to that on mixed drinks

i spent 15$ on a bay breeze

idk what a bay breeze is

buddies racked up my tab bc theyre so sugary you can just down it

its white girl malibu mixed with pineapple, cranberry juice

pls wrote in the hole form 😄 i dont know all ur shot forms at all ..

spend $20 at a store you can have that for like everyday of the week

which part

bc = because

im not intterested in mixed drinks .. im a beer guy .. but what u have in the US its not rly a Beer in my oppinion 🤣

yeah thats just one mixed drink, if im getting beer at the bar itll be a corona, or miller lite or an IPA (rarely)

i prefer jack n coke or just straight jose cuervo shots

but i wonna travel and visit nc next year and if i have to sell 20 dollars for " 1 us beer" and i know that taste its terrible .. then maybe i fligh i a other country -D

hahaha

japan had good prices and you can drink in public

japan its not rly foreigner friendly ..

thailand , vietnam are much more better

u can drink in the HOLE Europe the hole day 😄 with the best drinks u ever get 😄

hmm im not sure, i had nice public encounters in japan but i guess its subjective to the individuals there like anywhere

vietnam and thailand look sick

but im sure .. im from europe 😄

thats fire ive never been

thinking about amsterdam for my europe trip

and i allways visit thailand .... its a great country

*tips fedora

amsterdamm hasa higher reputation than in reality

its cool but its one of many big cities in europe ...

what i meen is , amsterdamm is not cooler then berlin or madrid or porta or helsinki or hamburg and so on

prag its very cool ... or budapest ...

london its boring ...

in my oppinion

budapest i wanna see and berlin

i wanna go to goth fest in germany

in Leipzig ???

yea'

the wave gothig ?

nice 😄 call me , im living in Leipzig 😄

if u wonna u can sleep her in my guest room for free 🙂

i love the "WGT"

but its amazing that u know it ...

Yes sir you already know im with it

i never been but my dad has when he was on tour with korn

korn its not rly the kind of music there are playing there ....

i like korn but that doesn't fit with the wgt

i think this was when they were scheduled to go but it got cancelled

been like 5 years

you like system of a down?

so anytime i work with vhosts i have to obviously know it first then put in hosts

hi guys

I am doing a good amount of HTB Academy each day now

I'm making more progress

I notice my focus on it getting better or worse depending on how I eat

so I guess diet is everything

and health is everything

gonna avoid a food tomorrow that I had today and yesterday

had this artificial dairy free cheese in my egg whites and it didn't help

dude thats facts

do you get lethargic

yes this is actually fact.

also a vegan impossible sandwich where I estimated calories for

it was small but I'm not having it again

gonna stick with homemade

as much as possible

ya

green machine naked smoothie got me right today

I don't even have smoothies

I did tell you a long time ago that diet really impacts your mental health and everything else, you quit keto tho I never recommend keto because Vegetables are literally toxic; instead i recommend the alternative which is carnivore

I'm not that extreme

but I've gotten death threats about it which is why i never suggest it

for some people it works

I don't think death threats are appropriate

those people giving you those threats are asshole

you have free speech

a lot isnt appropriate sadly lunatics are everywqhere

just look at today...

ya true

i dont wanna say too much but ifykyk

ya ok

I do know

today a political commentator was shot and killed

so you know people are bound to do anything crazy

ya someone tried to shoot the president then political commentators get killed. there's no much anger over political BS (from both parties)

like get over it

if you don't agree with someone that doesn't give you the right to commit violence upon them

so true.. so sad man and it was televised! all over tiktok kids are probably getting like scarred man

Well you know when people think that the entire world hates them, they begin to resort to those extremes.

I remember a guy in high school who was like that.

but that's mental illness

the world doesn't care about you or your shit

everyone is concerned with themselves

better for you to be the one to think about other people rather than expect people to be all about you

you get what I'm sayin?

schools don't teach this (at least mine didn't) but they should

instead, schools teach kids they get a free pass so long as they are appropriate for school or whatever

in fact, when I was in school they absolutely had policies the encouraged certain selfish behavior so long as it was appropriate for school

I do; though I think people don't seem to understand the idea behind understanding and acceptance. Like I have no problem understanding people, but it doesnt mean I accept everything. A lot of people think that understanding = acceptance, but that's never the case.

ok

so like I have thought that no one cares about me or whatever or that people don't like me

ok

so I change my behavior

which actually is something they teach in schools

now sometimes the world can be judgmental or mistreat certain people

but that's less common than you think

A lot of the people preaching tolerance only care about being accepted not the other way around

I mean also you shouldn't be too obsessed with what other people think

ya that's true I mean in some instances, there are people who are genuinely misjudged by majority of other people

I think

but that's not an excuse to commit violence

They are in fact very intolerant of others even amongst their own. I do not see the current cultural zeitgeist ending in anything other than violence

You know who really explores this topic in depth? There was a russian .....philosopher I think? his name was Dotoevsky was really popular who wrote his teachings/ideas in the form of novels

cool ok

I'll look that up

thank you sounds informative

he was fighting the proponent of Nihilism at the time (Nietzche)

that guy is great

nihilists in my view have a "idgaf" mentality that I don't agree with

to me its a loser mentality

I am no Christian, either. All these kind hearted white boomer christians are the buffer zone keeping back all the indignation building up

see, I am not a Christian I mean I'm Jewish but I'm not super religious

but see, I believe in actually caring

where ur jew tag at buddy

Yeah so you get it

I mean, I think me making that my tag is politicized and not something I want to have as a label

understandable

Nephesh chayyah

I mean its fine if people know I'm Jewish and I want it respectful

but I don't want a discord tag for it

append the -Pn flag

it'll treat the target as down

I think honestly, everything is way too politicized

I have a friend who I was able to help bounce back from that; I helped him by suggesting things that teach him that things in life do matter, and a good way to show that is with video games where choices matter like The walking dead series from telltale games

ya that's true

it's why i stopped using twitter

I don't know if video games owuld be my approach but I agree that this is a good direction to move in

Idk but i have a girlfriend now so i care less

I have an Anonymous twitter account but I never use it

super based

I should probably delete it

Kek

I have BlueSky and Twitter accounts in order to contact people who cannot be contacted otherwise

ugh my ex keeps reaching out i deicded to talk back

for meetups

my ex is gonna HEAR it if she ever contacts me

I have a twitter mostly for grok

I feel like official Discords are a better method of communication for a meetup tho

tbh

I dont post

and more people should use those

lmao i make her hear it and she keepos coming back idk why

@stone edge replace your ex with hellotalk girls

yes put me on what is hellotalk

i get hundreds of messages per day on it

it's a language exchange app

Its like chatroulette?

haven't used that so i'm not sure

you just set a native language and a target language

If you know personally that the target is up; then try all the scan methods. You also have to check if there's a WAF.

Thats a cool concept

and you'll talk with people who speak whatever language you set it to

Language: Hindi Target: Hebrew

oh god

let me try this

i will be testing since my tinder is banned

Lmaooo

it's better than tinder

way better

what difficulty

💖

if you're into meeting foreign women

oh yeah u know it

you got a passport?

#boxes

most likely no WAF.

yup

based

go get em chief

primed and loaded

im also meeting lots of cybersec people on it

yeah honestly i need to meet more cybersec people lmao

just put that you do cybersecurity in your bio

i wish there was a dope meetup around here or event soon

A mod would have to do it.

we're in the same timezone

what area are you in

You can DM me

but yeah the bottom line from before is when someone truly believes that the entire world hates them, they become dangerous.

some people remain solid

hmmm where have i seen this before

others just break down

nyc area the top 3

💪🏻

i'm in NC

ayy my buddy lives there

went to chapel hill

NYC people are moving here like crazy

good property prices?

yeah

Oh hell yes even I have thought about moving to NC

not for long though if yall keep pricing us out 😩

but aye take the chance while you got it

the coastal parts of the state have homes in the high 200's

i had plans to go down south for investing and moving but rn family situations i gotta take care of people and get this cert so i can get remote work first

i respect it

gotta do what you gotta do

If I get a remote job as a developer and get paid well I will move to a warmer place like NC and start a family over there with my GF

warmer?

this place is hell in the summer

yeah im from the bronx

invest in good air conditioning

oh that's alright im not stranger to hotzimola

my coworker is from brooklyn

ayeeeee

flatbush ave

thats where my fams from

where is that in crown heights?

close probably 12 min out from there

what language you picking for your profile @stone edge

probably japanese or polish

okay

based

for japanese you'll probably get asked if you're pretending to be a foreigner

be ready to prove you're actually american

oh i got just the thing to prove it

:)

ill show them my ford f150 and pack of zyns

https://tenor.com/view/monkey-skate-board-skate-orangutan-cool-gif-15021178819801542115

terracotta pie

i'm rocking a pack of velo 9mg

peppermint

i gotta quit smoking

im stuck on the geek bars

actually this one is raz

dude this hashish is amazing

we banned geek bars in NC

wtf lmao why

be ready to let that go

😩

SMH

we banned a shit ton of vapes

want me to mail you some? lmao

jkjk

nah i quit vaping last year

picked up smoking after my ex though

fuck bro how u feelin

my girl turned me into a heavy drinker so i havent drank over a month

oh i'm chillin

but now i'm stuck in the cycle of smoking

https://www.reddit.com/r/Unexpected/comments/1ndmha7/nothing_tastes_better_than_secure_login/

dui shit made it so difficult to get my tires changed they had to keep turning on the truck

only tobacco?

yeah

my work be like

why no green

dude i think i have adhd i have to force myself to reread these pages 3 times over because my eyes keepo jumping

have you ever experienced a heart rate of 200BPM

no thanks 😂😂

i've dabbled though

but won't do it again

tbh no my heartrate is always like 55/140

something in that range super low

my resting rate is around 70

but i have POTS so any activity can vary

thats inetesteing

is that a diet thing or just like random

it's more of a neurological thing

nothing wrong with the heart itself, but the body doesn't respond well to standing

lightheaded too?

sometimes

do you eat breakfast

yeah on occasion

damn well that ruled out what i thought

i never eat breakfast only tea and i get lightheaded from standing up quick at work

who saw the news about the yemen ufo

sometimes it goes away completely

then some days it's back again

could it be the nicotine too or na

i quit vaping last year because of it

definitely wasn't that

and actually, smoking helped the symptoms in my case

wow

or i just stopped noticing it that much, one of the two

i quit nic for 3 years after a nice pscilocybin retreat with the boys

oh yeah i'd be scared shitless

got back after a cute coworker pressured me

i also just quit vaping within the last 2 weeks but i've been nic free for over a year and a half

its really hard

but everybody can do it

ah man you fell for that 😩

big time

lmao

when i first quit i was super angry and agitated for like a week

i was agitated after the first 10 minutes

head felt like a loose screw

that's the worst part

yep thats when u get the pillow and punch it for 5 minutes

then take a shower clear the mind

got distracted and now i've got like 15 messages

go ahead and sign up for that app though, won't regret it

will do

gotta sleep soon work at 7am so imma bust out these modules and get da app

💪🏻

what path you doing bossman

CPTS

i went through the fundamentals first

which was a great choice

how far are you

17.58%

taking my time to absorb it all

i read through, copy paste, re read everythig while doing lessons

I want to be in DFIR.

I enjoy pentesting too

But I'm not that great at anything yet. I have the basics.

I don't know.

I do like forensics though.

hunting, detecting.

Based

keep grinding bossman

trying to fill in this resume to get atleast something a lil higher than helpdesk

not atm im in construction

i wouldnt mind helpdesk but i want something more advanced than pluggin in keyboards

idk i might be reaching

What's up zumi

Hello guys

admins is there any new challenges on AI red team CTF

good morning

https://tenor.com/view/ondrejbrousil-cat-catservice-service-cattires-gif-26300271

and thats when zumi found out taking out a production server was far better

https://labs.hackthebox.com/achievement/machine/2478998/394

https://labs.hackthebox.com/achievement/machine/2478998/394

meow

i think imma do 1 module and 1 box a day

i gotta remember to just try admin and root for logins lol

idk what that is

hmmm

not employed in it

but i have the htb academy for education

yep sadly

lmao

I am self employed

taxes eat my butt

thats how i feel

i gotta be up in 5 hours lol

2 jobs 6 days a week and studying

how do you mean give

hi zumi

oh yuh i only do after work

studying the cpts material

im so hapy

lmao

very neat

hey zumi been awhile

is it bad i followed the white sheet for the meow ...

😼

What entrance?

for medical degrees

Interesting title

lol

https://tenor.com/view/cat-kitty-feline-meme-funny-gif-7000720352064261872

https://tenor.com/view/sososos-golem-clash-royale-gif-26781963

https://tenor.com/view/smirk-smirk-cat-cat-cat-meme-cat-meme-face-gif-8184387017330024184

Pocket golem!

😩 COC used to be good

Clash of clans, yeah it used to be better back in those days

I guess, once you are rich in the game you no longer have to battle to upgrade anymore.

same goes for life

lmao true

Somehow, they included it in the game's theme

yes dirty mind

72?

I guess 180

3000 min

somewhere 1Million yrs ago?

ancient entity with unfixable backpain

nah you are just old

Not old enough for a Cybersecurity position, 2 millennium needed

lmao

LOL

this was hilarious, i'm stealing this

@scenic maple you want to say something?

no ping

https://tenor.com/view/australia-kangoroo-flipped-down-under-gif-8562677137303281559

i can finally use the zed editor

why is it dead

unfunny

cancelled

https://tenor.com/view/i-had-aura-i-joined-the-chat-the-aura-gif-4345668962617145079

demon slayer

Why is bro aura farming?

Dark souls 3

lol

those games are a treasure

The job must have a toxic workplace if they didn't get accepted 😕

Bloodborne is the last one I need to beat

nice

https://tenor.com/view/rotating-skull-gif-24524852

bro already spent 50% of his life

Try nine sols

https://tenor.com/view/british-cop-screaming-screaming-sad-gif-1879411192175791821

no not the aura

https://tenor.com/view/mindy-angry-mindy-mindy-walks-away-tony-hawk's-american-wasteland-skibidi-toilet-gif-7416617547914015403

At least you're 6'1, right?

why do you ask

Gives more rizz+aura

hello children, adults and inbetweens

hello sparkling

Had onsite today with whole security team

how are you Golam

Went really well may actually get a long term appsec/pentesting position

Am super excited

doing well learning react

hbu

hell yeah

CISO's doing career 1 on 1s.

And company is just winning

That’s awesome man

Hope it goes well

Well both my managers are really happy with me

Said I've driven a lot of impact in my short time there

because thats what future appsec engineers do

I am good 🙂 sorry checking some datalayer issue

I found XXE -> LFI -> Forging session tokens on monday

a sr engineer at production

In our auth controller

Which is Bad™

yeah we kind of figured

Manager's like you found that in [auth controller name]??

So.

Idk this close to long term well paying security job.

Super excited

Worth being excited iver

You’ll have to teach me your ways oh wise one

Am always down to teach

I taught programming for 8 years

I am kinda choosy with students at this point after being burned by people who were more interested in outcomes than actual learning.

YO! Is the support team UK-based? Wondering what their biz hours are

I def need help with getting good at programming. It’s a skill I really wanna improve

I can’t speak to myself as a student has I hated school, but I taught myself how to teach myself and have been pretty much self taught for a while now 🤷‍♂️

But that’s off topic

Super excited for you and the chance to have that opportunity

Yeah can ping me here

Like to be clear I just want people to take responsibility for their learning

Rather than trying to put it on me

Super valid

Soooo many people don't want to be responsible for their own learning.

And so like "student" vs "non student" doesn't matter to me

It's about action

What are you doing

💪🏻

this is based

Math/Programming

Taught both.

Loved it

And

I also wanted to put food on table

So now to security we go

Heck yeah

Yeah I’m studying asm and python rn

Struggling to find stuff to build so I’m gonna work outta some of these books and build some security tools I’ve got some ideas on

If you wanna do reverse engineering

That’s the goal

Then it's W tier

We’ll exploit dev

But both would be cool

Go study

Nightmare pwn

https://guyinatuxedo.github.io

This thing is S tier

Actually got my friends jobs

Yeah I just pulled up the page

I’ll look into it for sure

It's heavy

I haven't done it

Good

I need it to be heavy

I did pentesting and web stuff instead.

I'm the ctf web guy

Not the pwn guy but I've done a good amount of pwn independent of this guide

Took a friend of mine who's a cracked reverse engineer like

A year

To go through it

Good I’ll have something to keep me busy for a while

My recommendation is learn

• ASM
• GDB/GEF
• Ghidra

• Registers and what registers do.

I bought this super old book in x86 which came highly recommended

Then just go through some buffer overflow proof of concepts for some easy CTF problems

Write the exploit with the guide and understand why it works.

Also understand memory addresses

Compiled Binary security

Little vs big endian

And understand your various binary-level operations

Like xor and such.

Once you got all that then I think it makes some sense to start doing nightmare.

Oh and forgot

Learn C

If you don't know C you'll go nowhere

Bought an ANSI C book as wel

The classic

sounds like you live in germany

or Belgium

I’m 1099 so I’ll be getting taxed 20%

Highway robbery

my avg tax % is 30

Yeesh

I got like no write offs

I live at home and I am single with no kids

https://tenor.com/view/buzz-lightyear-gif-21327280

Okay that's a bit rambly learn the following first:

• C
• x86 ASM
• Registers
• Little vs Big Endian
• Binary level operations
• Stack functionality
• Heap functionality like Malloc and Free.
• Operating System Internals and Syscalls.
• Architecture if a compiled binary including the GOT and PLT tables, ELF file format.
• Usage of common tools for binary analysis: Checksec, Python, Pwntools, Ghidra, GDB/GEF, objdump, strings, hexdump.

Then do:

• Common binary protections including ASLR, Non-Executable Stacks, PIE, Stack Canaries.
• Stack-Based buffer overflows
• Stack Smashing
• Shellcode Injection
• Format String Exploits
• Info Leaks
• Gadgets
• Ropper, One_gadget
• Return Oriented Programming.
• Heap-Based Exploits like double-frees, use-after-frees, etc...

May have missed a few things.

Nightmare starts at the beginning of the 2nd category.

Oh. Oh

Boy

You'll want to be fluent in how all of the former work.

Perfect

I’ve added it to my list and I’ll start creating a map out for myself

I am pleasantly surprised that I actually understand some of what you sent Zard

Pwn challenges helped a bit ig

W

Yeah pwn makes you learn stuff

It’s been awhile since I’ve done any

I was having a hard time getting comfortable with mediums

NGL HTB pwns go crazzy, even just easies are insane to me.

go fundamental with pwn.college

anyway, is it just me or htb is kinda slow

it kept on buffering

When you start it looks like that, but with progress and in time, you get quality ones that really make you appreciate the "art"

Go mentioned!

I know the fundamentals but HTB's easy is: Canary Leak + R2libC + only 16 bytes to work with

I don't even wanna know what insanes hold if that's the case

Just Pivot

Any starting projects? Or your rec going over PoCs are trying to replicate em?

lol, well I guess htb standard is pretty high😂

Total chaos😅

Just 0 day the Linux Kernel, duh

Or worse: It's windows

Cant be

They need a windows docker image

Windows has "docker images" but it's just a container for a VM of windows

Write some substantial programs in C and ASM, learn to use GDB when debugging it.

They might... for CTFs maybe, probably not active challenges

Decompile binaries and read the code

And see if you can understand it

Do some reverse engineering decompilation challenges

See what happens when you decompile stripped binaries

The closest thing to a windows docker container is a windows kubernetes worker node

Go label all the functions in a stripped binary and figure out which are important and which aren't

Define substantial

Use ghidra and learn ghidra that way.

Volume or size

I wrote doorbell firmware.

In C

Heard that

They have K8, Im not sure why they dont release windows pwn

Just wanna get an idea yknow

Doorbells need firmware? 👀

Smart doorbells do

O, never really heard of a smart doorbell

https://nightowlsp.com/products/1080p-wi-fi-smart-video-doorbell-wired-black?variant=48649322922271&country=US&currency=USD&utm_medium=product_sync&utm_source=google&utm_content=sag_organic&utm_campaign=sag_organic&srsltid=AfmBOopzRk5O8BpIPa_oo7jyj0Xbn8QfuotQ-2tBmi1QkXl6ibOO2VHt3WU

Essentially it's a kind of doorbell that when someone pushes it, it rings, records sound and camera stuff, uploads it to a server where you can then look at who's at your door, and then some of them have a mic that lets you speak to whoever rang.

I wrote firmware for a non-mic doorbell

https://tenor.com/bfV2T.gif

Bro you couldn't solve it either,

It'd be impossible to release a windows docker image, you can't run windows specific software with helm on Linux because the kernel needs to be shared. It's like trying to use your house keys to unlock or start your car

Got a pi zero, camera, speaker, screen, etc:..

But I solved Terminal

And then wrote the firmware for it.

DarkCorp writeup, when?

Makes sense, one day Im sure a solution will be proposed

You can have a windows kubernetes worker node which isn't a windows container, it just handles the work load for windows specific helm charts or pods

Wrote socket connections to upload stuff to server

Want one?

One of the best machines Ive ever done

I wrote one, he's been procrastinating on one for forever

Probably but it'd only work on windows

As soon as I write something beyond Nmap scan output

Mate, tell me at least it's the second nmap scan

Nope, first one

Also I'm going to steal some of your screenshots. I'm NOT doing that whole thing again

Bruh... I better get attribution, heck also attribute the team

Who dat

I don't have daddy issues... cos my dad ain't in my life anymore, we just meet up occasionally

Mostly vader

No like, wdym attribution

Just like what already exists which is windows kubernetes worker nodes 😄

just a mention or something

As per google:
Attribution

the action of ascribing a work or remark to a particular author, artist, or person.

oh then, definitely vader lmao

I think it took us 9 days to solve it intended

When you have the worker node set up I believe you also need to install containerd. I'm not actually sure what windows uses for its windows containers tho.

A bit more cos ctrlzero did mention that one bit of the foothold was unintended, so I had to go back and do all that...

Dumbass clankers (chatgpt and whatever duck duck go uses) keep saying you don't need wsl for docker engine but you do

Shit I'm yapping about kubernetes again

chatgpt is a genuine schizo

i can feed it documentation and it will still suggest a nonexistent configuration option

Apparently you can use hyper v? But I think you still need wsl regardless

So idk how it runs windows containers

pretty sure hyperv requires WSL disabled

i've run into issues having the two before

i believe that was it

Nope

You need both

ah

gotcha, then that was the issue i ran into

it's been a while

https://github.com/MicrosoftDocs/WSL/issues/899

I think kubernetes still uses containerd even on windows.

Because you don't need docker for running kubernetes, you just need containerd

@warped plank take me away, to the land where oranges dance and frolic and the gcs remain active

Good morning vietnam

https://security.apple.com/blog/memory-integrity-enforcement/

Insane work by apple

Like actually

Meanwhile Rust...

How can u guys send stickers??

I'm not sure but probably you need embed permissions for that, read the pins

#general message

Damn, i guess this will take long

Don't give up though 💪

Ok, ill give my best

But the HTML is a little hard from the HTB website

WDYM? You're not supposed to try and exploit the website, and usually you're not going to be exploiting HTML itself.

html 0 day goes so hard

also if you think you are able

https://hackerone.com/hack_the_box

Imagine being able to disclose a critical vulnerability but still not being able to root an easy machine

I'm making fun of myself chat

Those are two very different things, a critical vulnerability can be just: sqli command while rooting an easy machine requires chaining exploits, some pivoting knowledge, some privilege escalation knowledge

You're right it might simple ones in production sometimes but it's so funny to think of it this way lol

https://tenor.com/view/chat-bed-goodnight-ateez-seonghwa-gif-10782478959648983495

Nuh uh

Still finding it would be a pain

sqlmap --risk 3 --level 5

--dump flags just to get all those flags too

Don't forget to load every tamper script and increase the threads to 10

just found a killer driver that is not on HVCI blocklist or loldrivers, Reversed it and wrote the POC and killed 7 EDRs without any problems
here is the POC and the article if anyone is interested:
https://www.linkedin.com/posts/jehadabudagga_cybersecurity-apt-byovd-activity-7371812528449982464-tENE

Why going for that when admin creds is just admin:admin

Because you get more money from something that looks complicated

Wait you guys get paid?

Hi, first time on this channel. I'm starting my journey

https://tenor.com/view/its-still-not-too-late-to-run-violet-plunkett-gregory-munchnik-david-krumholtz-mom-gif-19843660

it's a cold rainy day today, dang i wanna sleep

Make tomato soup and grilled cheese instead

In the past year

umm, how to use /feedback?

that's not a command in the bot

nor is it a channel

oh it is not dm feedback my bad, you have to open bot-commands

you can do it in any channel @fair tree 🙂 but yah, should be in server

👋

hello

how are ya?

good and you?

all good, thank you

welcome

bro said welcome

Hi i have a seminar on the topic of AI and Cybersecurity.
Can anyone gimme some ideas or point me to areas where i can find em?
I'm thinking about presenting the incapabilities of AI and the importance of Cybersecurity...

https://tenor.com/view/vikings-ac-vikings-ac-gif-3730341785245728387

I can recommend two things, listen to previous cubetalks because some questions get asked about AI and cybersec

Also check hackernews for any article related to AI (how it's being weponized etc)

Me?

Bro goes around assuming the worst out of humanity...

"Marked as duplicate"

just a lil bit of trolling here

Bro those sites are sent probably because you were being inefficient with asking your questions.

Hello, any expert java devs around?
^ this wastes time, this requires both parties to be active at the same time, and honestly just states :I'm too lazy to ask unless someone who thinks they're an expert can answer me

Rather than just:

In Java how do I add padding to my grid layout GUI using the Swing Library?
Simple, concise, contains all the information needed, and can be answered by someone who isn't asked whether or not they're an expert.

Ahm no hate or disrespect to anyone. I just came here to find some good resources for my seminar i have to give. Thats all.

Also, we're not gonna assume he's a beginner, he's the one talking in a seminar

Ahn im a highscooler

Its a competition 🙃

Ohh, how old are you?

https://www.netspi.com/blog/executive-blog/web-application-pentesting/vibe-coding-a-pentesters-dream/

here's a good blog to base your talk on

17

You're gonna need parental consent to stay here...

Bro 🙂

https://help.hackthebox.com/en/articles/9456556-parental-consent-and-approval-for-users-under-18#h_3cc38487f1

https://drive.google.com/file/d/1-nD561mEhb89ecqAW4_iSAT5qv-GZmoq/view?usp=sharing

Bro please 🙂

Ill be 18 in 2 month

This is no joke. Check out the ToS.

We're just volunteer mods mate, we don't make the decisions. We just gotta report and moderate when people break Rules/ToS

Tos?

Terms of Service

Terms of Service

ban him

Broo

Hiw do i show my parental consent

Grab the form, get it filled out

Fill in the form and then email them

Read the links I sent above

Form 🙂

Why so much work 🥲

Cos It's the law, not even just HTB

https://tenor.com/view/that's-the-law-roger-white-a-man-in-full-it's-the-rules-aml-ameen-gif-5133244891421477903

Of where?

the entirety of europe

EU, where HTB is registered as a company

Im from asia tho

🙂

HTB is a European company

it has to adhere to the laws, regardles of your location

Very good 👌

topkek

Man, imagine if just saying "Yo I am american" or similar made you immune to ToS, that would be awesome

I assure you, where you live has nothing to do with their compliance...

Soryy🏃

Ill mail the consent today

@subtle plover watch the alerts

If you can ask concise question with all the info, you can just google it 🤓

Yo did u guys know that if you upload a tiktok, they have your email, ur adress, number and more things

And if the NSA want, they can take all that information

Thank god im too lazy to manually insert those

only americans

not in EU

Take it all, profile me, conclude my persona from it

(Ineffective)

Did you know it's not only on tiktok?

It would just be a different letter organisation for you

nu uh, data is more protected hjere

Some eu mfs want to scan our msgs on msg apps before we send them

W1ld the tax evading man

It's not hard, just find a way to prove you need it for work

Youtubers do it all the time by filming everything they buy

Aren’t you on probation for mod because you evade taxes

I can't evade taxes that way, I have no j*b

@warped plank have you been to Hobbitton

Nope

why nooooooooot

Not really
EU is extremly inefficient as an org

If you don't enjoy learning you're doing it wrong

I’m trying to develop BOFS on my laptop but my vm keeps freezing when I start up Visual Studio

Real

No money

Imagine learning instead of being all-knowing

i wanna do the lotr tour in NZ in my life, cost around 5k

maybe in 2 years

But then you wouldn't have experienced the fun of learning

https://red-carpet-tours.rezdy.com/

Well learning can mean cool stuff or for me rn 3 weeks of 9h math a day for uni

nvm its 10k

I do not enjoy math.

You spend 9h learning or studying? There's a difference... studying =/= learning

Studying is pain and torture

https://tenor.com/view/tyler1-loltyler1-screaming-dead-wtf-gif-17500255

Yea studying and relearning old stuff

Out of curiositu, what kind of maths?

Like the ass stuff Like Terminology and rules and stuff its basically Year 1-12 in Germany in Math. It took me a week to shake the rust If but now i am once again decent at it

Wait so you're studying 12 years worth of math for university?

Like vectors fractions with a lot of Algebra, square roots and logarimic stuff

To get fluient in it since the basic are the most important thing

Ohh, oh damn, I hate vectors, not as much as I hate scalars though

No i am working i do it in my freetime. It's a dual system i do

I work 8:30h a day and then prepare for uni.

tbf 80% of learning maths is just practice

In a few years i will be a Professional programmer with a batchelors degree in Software and Systems engineering while i Work for a Software dev company

wait till you hear about tensors bruh