atleast i have data structures and C++ subjects, i can pass them

I was doing the C# module

why do games feel so boring nowadays

im completely bored of even story based games

this is how life works

unfortunately

Play for the graphics

I can't play videogames anymore either

I just don't find enjoyment

like when I was a kid

Sometimes I play assassins creed but usually I just run my VMs

cause youre a linux user

you find joy in suffering

I don't

https://tenor.com/view/rage-bait-ragebait-unsuccessful-ragebait-unsuccessful-gif-15226495446096725932

hi guys what do think about tool name robin ?

dark web OSINT tool?

yes

hmmm wouldnt rely on it

idont know about the info that give

when ask about somthing

time to test this https://huggingface.co/DavidAU/Llama-3.2-8X3B-MOE-Dark-Champion-Instruct-uncensored-abliterated-18.4B

Ive been vibe coding for hte last 3 hours

i hate it

but sometimes it works

https://huggingface.co/perplexity-ai/r1-1776

you finally changed your banner

no my nitro expired

sad

that one looks decent, too

it's the new shit

does AI ml LLM red teaming has a future in Bug bounty ?

There was a recent discussion on that in #red-team

i hope AI has no future in cybersec at all

you have a unsloth

I think it has the same potential as applied to other fields.. it can assist and accelerate, but should not be fully trusted, and still regardless of how far models have come hallucinate, badly.

✅

I gave deepseek shell access and root, and then started to bully it

i meant like pentesting the actual LLM or ML model

did it hack for you?

Oh, so prompt injection, jailbreaking, etc?

exactly

Then yes, definitely

How long lived that future will be, I'm not sure, but I don't think this big "AI bubble" is popping any time soon.

Great then i'll for sure invest my time in that

"Electronic MAIL?! That'll never catch on"

who ever says AI bubble will be popping soon is clueless

maybe the LLM's yes

and chatbots

There are academy modules about AI

but AI ??? never

Perhaps from the investment rush standpoint, yes

But the actual field, nah

yes i'm studying it , i have a good background in AI

lm studio decided to ask the OS for 1.4 terabytes of memory

Download more

....

TB... for that 18b model?

Saudi arabia just invested a trillion dollars

more fields for cybersecurity huraaay

Hah 😄

I keep resisting the urge to hit up some of those new "affordable" AI focused small form factor machines

..but I think I've finally convinced myself I wouldn't use it enough to warrant the cost

the nvidia ones ?

Like that nvidia spark, or just building up a rig with one of those unified memory AMD chips

what's next quantum pentesting ?

HTB has a track on quantum exploitation

I don't know enough, but I know enough to be tempted.. besides, if I get the urge to do more than I am already elsewhere, I'll just ask to abuse our AI cluster instead I guess lol

so thats already there

qubit jail break

😭 bro

framework seems the best deal at this moment, but even it will cost you 2-3k depending on the memory amount

Welcome to 2025

yeah and the memory market isn't doing good ....

The problem is we are almost at 2026

Is that with the Ryzen 365/395 I assume?

😭 goddamn

is there an academy module ?

not sure

I do kinda like the idea of stacking two of those Sparks for 256gb to be more comforable with larger models, but again.. unless I go full in on that subject, would be a low efficiency heater in the server cupboard lol

Or remortgage and get some A40s?

I believe is better to understand linux before getting into quantum computing

🤣

ok

i think some companies are too focused on AI and they are forgetting energy and cooling

i have done linux fundamentals module

But honestly idk

so decent understanding

Still can't install a single distro

if they actually create new solutions for cooling and energy they will be making much more money than the AI companies

cause i hate linux as a daily driver

simple as that

spark has low memory bandwidth so it suffers with larger models

Aye I read that as frequent feedback while researching

Again, boys and toys

bro adds a hundred emojis to try and prove his point

I just add it for fun

i just dont wanna use linux for normal daily life purposes

for work its fine

Im not telling you to do anything

I use quantum btw

Im just pinching

Pinch punch, temple for a month

is quantum computing ever going to be practical though

The documentary is so sad re temple

Take in consideration that he is member of my team in htb

define practical. quantum computers run quantum algorithms only.

I just like to argue what way is up

I don't think we are speaking of the same temple

Oooog

Temple os

Yeah lol, mb

practical as being able to factor real world rsa keys with shor's algorithm

I have that one pending

Some day I will be able to say

I use templeOs btw

Hahahah

The documentary is enough tbh

I AM DEBUGGIN MY FUCKING COMPILER

lol, don't put yourself through it for reals

but they already do a lot of stuff, especially for medicine research

And then hang up to someone

Hello!

Yeah ive seen it

i kinda need some help. Im doing a packet tracer exercise and i dont know if the exercise is badly designed or am i missing something

using quantum annealing you mean?

not htb but

That's a phone call that Terry had while streaming @eternal mango

we need templeos with grok as the builtin oracle

get that VC money

would have been cool to get his take on generative ai

Lets see whats general lets see whats up

I play temple run

That is a despicable way to bastardize your free time

@supple plume how's void?

Bad

I didn't start with that I got overwhelmed with other stuff

I just stopped

Tomorrow is probably the day

But I also have holiday Monday

sorry im just now rolling out of bed

dawg we're cooking with burpc2

nice

@zealous charm have you tested in HTB labs?

thats what I would do if I had an experimental c2

C2C

Command and control

command 2 control

Anyone here work with Datto

I need to automatize everything

EVERYTHING

I wish I could automatize absolutely everything

If you get that script to work I will be happy to buy a sample

What would be on your list to automate first?

lets graduate it to C4ISR

Human interactions

The tedious ones

Just by that my life would be automatically worth to be lived

Albert Einstein

I can't even concentrate on one section those two weeks

When I go through academy I'll add a feature to my hacking tool to automate every specific attack vector

Only if I make it fun I can go through it

Otherwise academy is a prison sentence where I never come out with knowledge

Bro I can relate

BRO

THAT LOOKS like the best cookies

I have ever seen

Its tryly the little things in life

That we forget to enjoy

Sorry about that

Those are dog treats

Lucky dogs

Did someone say treats?

Best looking dogs

Thanks @supple plume

that looks like a wolf which i believe you need a permit to own in most states

You've never seen a wolf I'm afraid

That’s a border collie lol

I thought it was a bear

Here’s a camel

Nice scorpion

That’s a fish

My bad

Hm. Must be a new American wolf breed

regardless you perhaps should look into getting a permit for owning a pet above 5lb or 60 oz

It has to be a wolf I'm afraid

That’s not a camel that’s a wolf

I’m not American

Vro start requesting permits for your american fish

You are now I'm afraid

My bad sire

You certainly fooled me

I’m from the land of chocolates and taxes

is it normal here to mention THM or I can get band🥺

As long as it’s relevant and not just to trash THM, you’ll most likely be fine

Htb is not thm you can speak in the chat

nice

this is what I think about thm, but changing the windows logo by the thm one and the trash for a bigger trash

I never got pass creating an account I tried 3 times

why

3 times

It just kept telling me to pay for something I still don't know if it's good or not

wow is it because really hard?

Idk

hmm.. I just like the free lab you know

I think it is just bad design

Maybe there is something good about it but I don't care

Htb is good enough

For me

wait why this role still silver

Idk

Takes a bit to update I think

but holo

Idk Im pink

And I dont even like it

im jealous pink good

Pink bad

@thick forge

Neeeeeetrooo

@thick forge

Neeeeetro

🙂

guys does anyone know when will this coupon on 50% OFF annual VIP+ subscriptions on HTB Labs from neurogrid ctf will expire?

hello

I'd recommend hitting up support tbh, you're not generally going to find billing support in Discord, sorry

I'd help, but I do not have access in that system any more 😅

1 year is a standard time for expiration though in the past IIRC

i couldnt find the support mail, can you tell me what is it?

But don't hold me to that

https://help.hackthebox.com/en/articles/10060125-contacting-ctf-support

You'll likely need to raise a ticket, a response will probably come in the coming week

ok thanks

Hello everyone 🙋‍♂️. I just finished a lesson on organization in the setting up module of the Information Security path. I was abit confused with the notes on Logging at the latter part of the lesson. I'm I to make those changes in the VM instance. Also do I need to download some of the tools recommended seeing how I'm just starting the lessons as a beginner.

https://tenor.com/view/leonardo-dicaprio-leonardo-dicaprio-shutter-island-shutter-gif-3849938689344114841

What's your question?

How do we feel about the new UI

Ngl there are some aspects that are really nice and other things I dislike

Do I need to implement the command provided in the VM instance in the browser?

🙄🤨

@terse dirge answer this question please

Hi all, I don't see a channel for introductions so I am not sure if it's customary to introduce yourself here. I'm a seasoned lead platform architect with over 30 years of experience based in Finland. I have always been interested in cybersecurity, especially, web app hacking, and in January 2024 I started hinting on bug bounty programs, in particular self hosted ones. I have been inactive for a few months now due to lack of time, but I plan on resuming at some point in Q1 after finish some big porjects at the day job. But I also want to polish my hacking skills, and learn new stuff, so I joined HTB tonight. I have heard often good praises about this platform, so I am looking forward to explore it. Who is a bug bounty hunter here? 🙂

If the module says to do it in there then do it in there

We have top world best bounters here

Implement the command in the vm in the browser or not?

Hey everyone!

Nice, I am member in many hacking communities, so it's like I'll find other hunters here 🙂

Idk the module

It never stated. It just gave the commands and it's use case

Yes they are everywhere too, I found them also in portswigger server

Welcome to htb

Then that answers your question

Thanks!

Here is where we brainrot

Welcome.

https://academy.hackthebox.com/module/87/section/880

I am studying to be a bug bounty hunter 💪 next year

I gave myself a year

#modules

I seriously didn't understand anything from that part. The logging section to be precise

Nice! What's your background? I have a well paid job that I like, but my goal is to switch to full time hunting at some point.

I'm going to Colorado next month

Just a heads up, bug bounty isn't a sustainable income 😅

I've been making webapps for almost 6 years already

That channel is very quiet. I posted there and haven't gotten a reply

What is your job?

Patience young grasshoppa

Real

It is for people who are skilled enough to do it successfully. I made 80K in the first year, and that's part time. Some people I know have made millions from bug bounties.

🫡🙇

Lot of shady miscommunication and downplay of some vulnerabilities found to by the company or a reported duplicate find

@exotic pendant is really good at bug bounty

And we have @zealous charm

At the day job I am lead platform architect for an event management company. I am responsible for all the technical aspects, from coding to infrastructure, and manage a team of developers

One of the best

How does bro have every cert except net +

lmaoo

I literally have every cert

https://tenor.com/view/i-m-villain-gif-8105801559398118233

None in your bio ≠ no certs

Ggs

Nice, than by now you should already have a robust foundation. Too many people think that hunting is a "get rich quick" scheme and try to cut corners by skipping the learning phase of web development, then complain that they can't find anything in a year or more. You are already ahead of those people 🙂

Yup, I've been doing BB part time while working a full time job and this year will be the first time in 4 years I havent made more from BB than fulltime pentester role

Yes having experience in this field makes me feel like I can understand what is going on, but I still need to improve my skills to be able to do it professionally

https://www.youtube.com/watch?v=wFzWQ3xiemQ&list=RDMM

Cool. Are you planning on doing it full time at some point or you prefer keeping your day job?

Master Boot Record /ANSI.SYS

C:\GUITAR.EXE

🤘

I think the sweet spot (at least for the US) is full time cyber job + part time bug bounty, so I will continue with that

If you put in the hours, you can do it. It's just a matter of being consistent and always keen to learn new things since this area is constantly evolving.

Quick question do $100 bounties exist. Like the beginner level ones

Thats big if true

Gotcha. I thought about switching to a pentester role, but given my current role, it would likely be a downgrade in terms of salary since I don't have previous experience as a pentester, only as a hunter. But also, I prefer the total freedom that BB would give me compared to a regular job, so that's why I'd like to do it full time.

You must be really good at bug bounty

I dabbled a bit in systems engineering. I made an automated soc workflow at a cyber range and I've set up kubernetes clusters 😄 I'm really interested in malware development currently

Yes that is why I choose to study this for a full year, by the last quarter of 2026 I'll be trying bbh seriously

If you work all day tomorrow you can get a $100 bounty. Thats a single low/P4 bug. Things like rXSS pay more, generally $250+

Sure, even smaller if you work on some poor program. It also depends on the plaform. YesWeHack for example has the lowest average reward, much lower compared to HackerOne or Bugcrowd

It's the consistency that puts me off from doing bug bounty

https://www.youtube.com/watch?v=y7yGe-B1_Ck&list=RDMM 🤘

Ive found plenty of xss where i just get ignored

You also have to be fairly lucky

Yeah, to account for benefits/PTO (no paid time off for BB)/retirement matching I figure I would need to make 1.5x my full time salary to make full time BB worthwhile

Nice. I also work with Kubernetes A LOT (our largest cluster is made of 3600 nodes)

I tried that and I failed. Maybe you can do that but I cant

Yeah that's probably the hardest part, together with the self discipline with managing the not stable income

Noted 🫡

Ignored? What do you mean?

Wow. I've only had to manage around 3 worker nodes and 3 control nodes lol. I set it up for CTFs because the old infrastructure for it was a single machine with docker

Like i msg website owner explaining the bug and they dont care

I'm using k0s for it because k3s keeps breaking lmao

I don't believe in luck with these things. What pays off is hard work, consistency and A LOT of patience

That's nice. Thanks for the info I'll look it up

Well, it's a start 🙂 We have some quite large infrastructure, which I like

I even did an internal pentest once and got stiffed 3k

If you found XSS on random web apps and contacted the companies hoping for a reward, that's the wrong approach. Do not do that. Never ever test any apps owned by companies who haven't given you explicit permission to do so. Use a proper bug bounty platform like HackerOne or similar

Interesting. k3s is much better than k0s IMO when it comes to lightweight Kubernetes flavours

the end goal is 6 worker nodes which is overkill at the cyber range but it's the point so we don't run into scaling issues later on

Not everyone uses hackerone and its already very saturated with thirdies. I usually look for fortune 500 companies that have private programs

Is this for work or hobby?

@livid vine which platform do u think is optimum for a newbie in BBH

I'm unemployed, I volunteer at a cyber range and do sysadmin stuff there

Dang man this economy sucks

Keep in mind that the vast majority of people who sign up on HackerOne have nowhere near the skill level requrired to be successful with BB. So the competiion is not as big as you might think. Having said that, I have worked mostly on self hosted programs thanks to my large work network of connections

Well, it is reassuring to hear someone say that.

Plus dont limit yourself to just H1/BC, there are at least 8 active platforms to choose from

If you asked me some time ago, I would have probably suggested YesWeHack, but that's no longer the case. YesWeHack may have smaller perceived competition since it's a small platform, but the bounties are crap in most cases. I'd recommend going straight with the bigger platforms. They have more programs to chose from, and higher bounties in general.

Gotcha 🙂

@terse dirge if i remember youre in seattle right?

yeah don't make the mistake to think that the millions of people who are registered on those platforms are all skilled hackers 😄

Arizona

Dang the people at my local defcon meetup dont have jobs either

Oh okay thank you

I kind of want to start my own pentest company but i know i dont have enough engagement xp or a network to pull it off

So i volunteer doing ctf coaching at my uni

BTW I don't have direct experience with HackerOne yet, as I have mostly worked on self hosted programs. However I have many friends who work on H1 and to be honest it's a much better platform overall

Have you been employed as a pentester before?

I've considered this too, but its a bit daunting to consider you'd have to sell 15-20 $10k pentest per year just to get the same paycheck as a pentester salary

Good to know 🫡
What do you mean when you talk about "self hosted programs".

I used to do vuln research at a startup and we did a handful of pentests but it didnt really go anywhere

And we all know that the hacking is the easy part of starting a pentest company, it sales/legal/etc. that is difficult

As i mentioned before people stiffed us

It depends on the client. I do pentests occasionally, and the lowest amount I've charged was 8K, with the highest being 40K. It was not just me though, I collaborated with others who had more experience in some areas like mobile

Yeah, however you want to price the engagements, I was just using 150k as a full time salary equivalency

Often companies prefer running BB programs by themselves rather than using a platform like HackerOne. Often these are large companies. I have the fortune of having a large network of contacts so I have had the opportunity of being one of the first people to hunt on some of these programs when they started, which meant I found more bugs more easily compared to platforms. But it's not easy to find these programs or get access to them.

I don't think it makes much sense to start a pentesting company if you don't have extensive pentesting experience working for other companies.

You are right

Gotcha.
Pretty sure those kinds are for experts like yourself

I'm trying to get hired at a pentest company rn

Not necessarily. Also keep in mind that more experienced hackers tend to focus on higher severity bugs, so they often ignore low hanging fruit, leaving it to less experienced people who might be just starting out. 🙂

I have an oscp working through crto rn

That's the best thing to do if your goal is to set up your own pentesting company at some point in the future.

That's a solid cert. I did the OSWA and OSWE a few years ago because I am mostly interested in web apps.

Well, given that I have been building web based systems for 30 years 🙂

So it was a natural choice

I eventually want to do red teaming, i just feel like i have to do something to stand out because it seems like everyone i talk to is jobless and talking about how much everything sucks

Yeah exactly that is why I am looking for platforms with low hanging fruits so I can start there and get an overview of the field. Even if the payout is $50. Converting it to my currency is a lot of money

I talked to a rep from specter ops who told me that I should do crto2

So thats my goal rn. Will finish cdsa and other offsec certs when i have the means but im tired of doing all of this out of pocket

Just one thing: do NOT hunt on VDPs please. 1) you would be working for free, 2) VDPs accept any sort of garbage, even not real bugs, since they don't have to pay for them. This can give you wrong expectations on how real BB programs work and what they might accept and reward you for.

If you don't mind me asking.
What's VDPS

Vulnerability disclosure programs

Got it

Vulnerability Disclosure Programs. They expect you to find bugs to them respoinsibly but there is no monetary reward. Some companies might give you a gift or some swag and that's it. Ignore them. Don't waste your time on them.

You're saying that private programs are a bad idea?

Who said that? Sorry not sure who you're referring to

mornin fellas

Oh sorry, bad timing.I understand what you mean now

mhm tech job market is in a bad place at the moment and might get worse depending on nvidia bubble

How do u tell if it's a VDP

Private programs are awesome. VDPs are a different thing

BB platforms indicate quite clearly which programs are VDP and which ones are BB and offer monetary rewards

I should buy champaign and open it when the AI bubble pops

deadass would be one of the best days in tech history, fuck them clankers

Okay. Would make sure to note your advice for when I start BBH

👍

Organoid claws typed this post

Even when the dotcom bubble popped we didn’t get rid of .com domains. When the AI bubble pops those tools will still very much be part of our daily workflows

Thank you very much for your help. You've answered lots of questions I had concerning BBH 🫡🙇

Any time!

Goodnight fam 👋

well.. I get what you mean but it would not be good for getting a job because it could crash the economy for a while

'night

wsp guys im newww

like there's any tech jobs anyways other than clanker slop quality control

yeah sure AI will remain whatever happens but it won't be crazy overvalued like it is now, people will move on

At least with ai people will outsource code less

You can see whats happening now as a contraction of a massively overextended industry

At the end only gigabrains will remain

yall think ai will really get big? like a must in our lifes for the future?

Yes

https://nof1.ai/ this is really putting all that bs to test, last round all bots lost money

hmm, personally im not sure abt that like kinda 50/50 cause like I use it for some school stuff AHEM HOMEWORK but for the rest not really use it that much but ofc in the future new things will come so maybe ai is an must for that

mickchad

are there people here who's job isready with cybersecurity? l

already

me

i am the cto

Yee

Im the cso of canyouhackme but im not actually proud of that

i was just doing that 3 min ago!!

@native plume

Lol

why tf are u 2 shadow?

are u 2x better than me?

XD

Holy shit do people actually use my site

the shado shadow xD

I wanted to do the shadow but it was already taken so I just did the shadow's shadow

wanted to have the name from this dude:

oh

cant send a pic

https://www.google.com/url?sa=i&url=https%3A%2F%2Fwww.imdb.com%2Ftitle%2Ftt34610311%2Fmediaviewer%2Frm450018306%2F&psig=AOvVaw2ypUZxkvDnrUvFf_zLjkNK&ust=1765147103613000&source=images&cd=vfe&opi=89978449&ved=0CBIQjRxqFwoTCOCMvsKDqpEDFQAAAAAdAAAAABAK

https://tenor.com/view/epic-embed-fail-ryan-gosling-cereal-embed-failure-laugh-at-this-user-gif-20627924

YUP

https://tenor.com/view/cat-gif-12756433236776117962

https://tenor.com/view/discord-embed-failure-epic-embed-fail-double-embed-fail-gif-23538127

okay that made me laugh

i am not sure who is the true shadow now

nahh that dude is the real shadow

im just his shadow

can i priv dm you?

you too

me what

priv dm

why

i got doxed again

i have a question

why can't you ask your question here?

oh

or questionS

sthats also possible

i am thinking the same xD

so next year ima start my study: softwaredeveloper/cybersecurity and what are things i really need to know to be some stepsahead or already should learn for

Get Started with the HTB Beginners Bible: https://www.hackthebox.com/blog/learn-to-hack-beginners-bible

@rigid sphinx

ty

ceald your cat is aggresive with other people ?

cause my cat attacks today again my neighbor xD

no, he's a bit skittish around new people

ohh

make sense

my cat too

but i am thinking to castrate him

because is very agresive with new people

is territorial i think is called

literraly my cat think is the owner of my neighbord land xd

lol

i was thinking to buy some gps with some ultra sonic sounds or something like that

and draw a range of my lands

is he an outdoor cat or inside cat?

he lives some months in apartment but now we are living in lands

so the two choices

agression decreases when castrated?

but now is more outdoor

some days he dont come home

xD

in theory yes

I thought castration was just for yk

I would definitely get him fixed then.

what is yk

i mean what means "yk"

you know

so is time to castrate him

he also attack me 1 time

😳

cats tend to be jerks with other animals by trying to kill things like birds or small animals for the hell of it is my understanding.

and today he try to attack me again when i go to my neighbour house

my cat kill a lot of animals

Yes

did your cat ever brought a bird proudly to you?

is very crazy cat, is orange and some days ago he wanna start a fight with a horse

xD

i hope the castration works well

no because he's too fat and slow to get a bird and when he's outside he's supervised

because i dont wanna keep the cat in my home all the time

This means your cat thinks you are a bad cat, and thinks you can't fend for yourself

I want an mexican orange cat so I can dress him as puss in boots

el gato con botas

you can try to walk your cat if you want to keep him indoors but give him outside time

is orange
Ah, you may have bigger fry to fish

so my neighbours cat thinks im weak...

YEAHH

yes that is what i planned to do now

https://www.wikihow.pet/Take-a-Cat-for-a-Walk

I thought the meaning of a cat bringing a bird is that they love you and wants to give a gift since you care for them

but i just learned they think your weak and is nothing compared to them

cheeto caught a lizard inside once

Correct. Cats see us as weird large cats. Also fun fact, their meowing that you hear is actually specifically designed for humans

i not understand what do you mean xd

dang

They think you're deaf, so they vocalize in a way they think youll understand

Well well well

Orange cats is dumb

but what about our way of speech like we say words do they interpert (sorry idk how to type that) that as an meow we cant pronounce cause we are deaf?

can confirm, cheeto is not the brightest

i gonna try this, tomorrow i gonna buy some of that things, my sister buy one but dont works because maybe are for dogs xd

he's not a brigth crayon or a crayon because he ate all of the crayons

hi guys

Also sorry, I intentionally switched words in the idiom. Its usually "bigger fish to fry" meaning more problems than whats in front of you

a bird joined

ohh make sense

Well, specifically they think we're hard of hearing. This is why they can be so vocal when wanting attention, then quiet when going ambush mode

some time are funny xD

aaah

do yall love bald cats?

All cats are silly, sphinx cats are great

https://tenor.com/view/cat-kitty-kitten-money-rich-gif-26085286

Especially if you have an allergy to dander

I really wanna get a mainecoon

Listen guys

It's late at night

Fun fact, if you raise chickens and cats together you get eggs that help you not be allergic to cat dander

Who wants to talk about cloud security

"Late" maybe for you

whut, it 9am rn@@

Welp

*w me

Wow enjoy your coffee

Get double shotted iced cap

ill take a coldbrew btw:D

I had an energy drink

https://tenor.com/view/white-monster-wmster-monster-energy-monster-energy-drink-monkey-gif-15628061433413475006

monsterr

Bro I need a mini fridge

To put energy drinks in it

technically I had this Godzilla C4

300mg of caffeine to the brain

U better have completed 3 boxes

Wit hthat much caffiene

working on kubernetes right now

I heard the kubernetes certs are hard

I'm too broke for certs tbh

and I think certs are a bit overrated

2 nodes left to set up

Certs can help

U just have to find the path, certs or no certs

in the 99% of the cases the employer just need to get the job done, they dont care if someone have the cert or not

Can I just, like... Post my sketch of a my little pony here? Just because?

https://tenor.com/view/homer-brain-monkey-gif-11098413

How did you get a gif of the inside of my brain?!

ya but I'd rather invest my time into projects that demonstrate I can do independent research other than reading a book or doing a course to understand something

I think being able to be self taught or being able to be self sustainable in cyber is better than any sort of certifications because it shows you can hold your own better than someone who can read a book and pass a multiple choice test or do a course and be able to pass a test that goes over only what was in the course

also I enjoy figuring out topics/technologies on my own because its less boring than reading a book or doing a course

https://tenor.com/view/zyzzsoju-gif-25173856

In another thread, it was said that it does not expire

tldr: I enjoy the lack of structure and learning things on my own instead of reading a book or doing a course

If you start from scratch with no experience administering clusters, they can be indeed

Takes a special kind of stubborn learning that way sometimes, but the feeling of reward.. I learned the same way, out of lack of decent coverage of the subject at the time.. Hands on, research heavy, making mistakes and challenging yourself to persist to overcome them

Fun fun fun

can I pet your gopher

🥺

My Gopher?

yes

it look cute

I do not have a Gopher

But if it makes you happy, you can imagine I do

omg you are staff

@eternal mango i bought a new coffee machine

Not ANOTHER one!

🤣

i luv ur Capybara pfp frame man

i will sell the current one

wtf have I got a Capybara on my pfp 🤣

that's cute ngl

I don't remember setting that, but fair enough, I'll roll with it

mb @feral jackal, yes you may pet it

but it's a cappy 🤣

Seriously how long has that been there

why im still banana, it worst tbh

cat gang

When it arriving?

Monday 🙁

Ohhh it's from that discord checkpoint thing

Thats way too long a wait

yes

I wish we knew what the matched avatar border characters meant

if i would that earlier, i would paid 9 euro more fore express shipping

Istg if they were random and not based on the checkpoint

oh.. I was doing the server side attacks module they talked about ssrf also about gopher service.. I don't know what that means but when I searched online found pics of something like that pet

It looks like it has its head cut off.. but it just has a flat skull it seems

Is a go framework for web, think nodejs but go

golang mentioned

I can just imagine: sha1-hulud go version

The only language where code is guaranteed to have more lines for exception handling than features

/s

hhmmmmmm

*ehem* rust

Hah

Use a Result type once and everywhere needs to handle it

I've been playing a bit with contracts recently in Rust

right now i have 18 in and 45 out

It's a weird ass language, and a different concept to what I'm used to

but it's fun

ffs

I don't handle every error in my go code tbh

Contracts? Like crypto contracts?

rust has solidity support??

how some people has the HTB mod in the bio but they don't look like they are mods

Yeah, specifically SOL instruction sets

Never thought to use Rust for that but seems like a good way to remove half the issues of SOL

Real math library in SOL when?

I'm using Anchor for it as the framework

Ceald

Had to do some book research for Rust for someone, so it got me curious on the subject, as I've never touched Rust or contracts before

https://tenor.com/view/write-that-down-taking-notes-school-universities-university-gif-17937210

I like the uhh... I guess I'd describe it was "simplicity", but that's not the right word

because crypto dev is anything but

What I mean is that it restricts you to the very primitives when writing the instructions

Rust is interesting for sure, the hand holding naturally disappears as you learn to think like the compiler

I'm still crawling, but I have at least managed to deploy something basic on localnet lol

Time to bring back seadriscoin? (if only I hadn't burnt it all)

I've never really written servers on it, just simple cli tools

ah no by localnet I mean the local solana test environment, so a local version of the chain

Im still thinking about how async is weird in rust.

Ohhh

cat pwning the today box 😃

There's a bunch of test chains that should be easy to get into with just a couple faucets no?

devnet is recommended, as local can be troublesome due to confirmation delay, but then the faucet on devnet has quite the rate limit

Pros and Cons both sides, local you can print as much as you want, devnet you have a faster confirmation time but are rate limited on the faucet

Idk my only real experience with crypto is a bunch of crypto challenges one time. I forgot what the site was even called

Or I was just doing it all wrong 🤣

The memories of struggling to connect to a wallet using env files

Not really well documented back then

I used to mess about much more with blockchain when Bitcoin first hopped up, but mostly from a research perspective, especially when those vanity wallets started to appear. One fun project was hunting for wallets on the chain on a local copy of the corpus, using uhhh.. I think there was somewhere that let you generate a wallet purely with a single word or phrase at the time

I never found any wallets with active balances, but the process of optimising it, hooking up between a few different languages where one was more efficient for a specific part of the whole task was great fun

It got down to how loops were structured in order to get the most efficiency / lowest instruction count per check

When you're operating with such a large dataset, every instruction matters 🤣

Gotta abuse em bitwise operations

Screw words

Well yeah, this was some online wallet generator I think at the time that was popular because it was easy

..but that led to it being easy to search en-masse if people ACTUALLY USED a word or two for their seed

(which yes, they DID.. but others got to the wallets before I found them.. not that I would've raided them if I had gotten there first, this was all a "would this work?" exercise)

This was when it was like sub £50 per coin lol

This is why humans should never be given the freedom to secure their valuables with 1 word

I mean

You say that

but I'd prefer that my safe word be short

..if it's my valuables

..but if it's my SECRETS, that's another matter entirely

👀

https://tenor.com/view/monty-mp-nudge-nudge-python4life-gif-9708071

Ok, nn 🙂

Nn, meanwhile me in the morning just starting work

Good luck, may your day fly by

Thanks! I know it wont we got a lot of bookings

What’s up yall

The moon is up

Because I am playing a risky game with my sleep schedule

If I dont spam the chat tomorrow just know

My new sleep plan didnt work

Damn

top %1 of discord messages

*supernerd mode activated

Can check yours with that 😄

heree

The more complex the technology, the more satisfying it is to hack it

I wonder how good it feels to reverse engineer -- now thats gotta be the most complex

the more complex the system, the more room there is for vulnerabilities

and the more insecure it gets

Is 40$ dollars worth it for wifi monthly subscription and after 2 years I’ll start paying 60$ instead.

i pay 80 for stalink

or maybe no

Who uses starlink. It sucks

It’s very slow too

It’s like 30 mbps or smth

So is it worth it? That’s what you are saying

@thick forge

im back

i use starlink

works fine for my lands

in my case, yes

i can play, stream, all the basic things works fine

and only with the mini kit

i was thinking to buy the kit more bigger but i think is not neccesary for now

and also works every part where i move, including in the car

the only bad thing is they dont support portforwarding

but all the others things works great

Samba

its 500mbps

in most areas

which is wayyy faster than traditional satellite internet

It isn't even commercially available here yet

What are ur standards ?

That's the hackers ultimate question

And away we go! Weeeeeeeeee

i am top 0.23

https://tenor.com/view/breaking-bad-walter-white-yapping-i-am-the-one-who-knocks-gif-8421079325137241553

I have a feeling that you are AI.

https://tenor.com/view/bender-futurama-kill-all-humans-robot-gif-17343915

It scans without host discovery check.

So, you are looking for -T1-4 for speed.

https://tenor.com/view/cat-hidden-dont-tell-them-don't-tell-them-gif-4258270191420865980

Skipping the ping check just helps for hosts that don't have ICMP echo requests enabled

https://www.youtube.com/watch?v=gC7qeHLsuW8
that intro is way too good

rookie

https://tenor.com/view/car-fnf-gif-3801223415668524431

I can't see my yapping score because of privacy settings

@supple plume how's void Linux?

you're not alone

hihiii

Ceald, Gubarz 🤣 I fed in a load of datapoints from public Discord checkpoint images, and got this..

Using nearby datapoints and fitting a simple power-law curve (which accurately matches how message totals scale with user percentiles), we can estimate percentiles for the new message counts. Around the 22k–50k range, the curve shows that a user with 22,453 messages lands at roughly top 2.2% of all Discord users. In the lower range, using the datapoints around 3k–10k messages, the same method shows that a user with 4,289 messages sits at about top 8.3%. These results match the pattern of your real datapoints closely and fall cleanly within the expected distribution.

oof, i checked my most popular servers and i'm not even an amature yapper.

Oh, that was only based upon messages here, so nowhere near accurate I guess

Idiot

yeah i chat more in other servers

Oh I see

So the truth outs

https://tenor.com/view/life-of-brian-splitter-monty-python-gif-8439692206383233582

🙊

https://tenor.com/view/cat-cute-silly-gif-5561269159560133020

Today's goal for cybersecurity [07-12-2025]

1.Do 2-3 rooms from the exploitation basics section of Cyber security 101 Path
2.Start the Network foundation modules from the HTB and finish it
3.Complete the File permission section from the Linux course which I have been avoiding for too long.
4.Practice some linux commands which I have learned by doing 5-6 Levels in the OvertheWire bandit.

best skill for red teaming... is it :
a) programmer

b) IT dude

c) catfish

Lol

social skills for the most part

there's no one best skill for red teaming though

as each skill plays different roles in an engagement

Just daily drive Linux instead of bandit

Caeld be nice

And don’t promote your Twitter here

What twitter?

x

No one calls it that

am i crazy or is the answer not The Internet
What is the largest Wide Area Network (WAN) that connects millions of Local Area Networks (LANs) globally?

crazy?

No one says HEY LETS GO ON X

I was crazy once

they locked me in a room

I said it

a rubber room

Fuck off

a rubber room with rats

and the rats made me crazy

https://tenor.com/view/crazy-crazy-i-was-crazy-i-was-crazy-once-i-was-crazy-crazy-i-was-crazy-once-gif-4471500993328921192

lmao

Thanks for that,I do infact I use linux for all my studying cybersecurity like I do THM rooms on linux, watch course videos in linux most of the time I am in my VM rather than the host OS

https://tenor.com/view/gus-fring-breaking-bad-trolling-we-do-a-little-trolling-gif-24059670

The answer is internet

ooh

ty

Yeah

why not just install it on your host then instead of using a vm?

https://tenor.com/view/me-atrapaste-es-cine-its-cinema-cinema-esto-es-cine-gif-17729711691959966457

anytime buddy

@heady sage check out my new rice twin

I have to do some work on the microsoft products sometimes for my uni project, that's why the linux is in the VM but soon will be the main os

Exceptional work old chum

That's understandable.

Yeah

For stuff like Ms office I would just use whatever is in the web UI. I'm too lazy to get it working with wine tbh

"now let's see Gubarz's rice"

I has none :<

What's that application select thing

Rofi?

Fuzzel

Yeah I too sometimes use the web version of the products, also the thing is I don't know how to use the linux properly yet, that's why I have two linux one with the GUI one and one without it so I most of the time spend on the GUI One learning the linux and practice those commands on the CLI linux where I only have the terminal

we don't use arch btw

I just did a full day of synack

Sup @next venture haven't seen you in forever

What distros of Linux are you using?

Any reason for fizzel over rofi?

grinding for OSCP 😄

Hear that @terse dirge this is what a winner looks like?

I don't use arch btw

I use void

lie.

Real

It says so in my fastfetch

https://tenor.com/view/fpe-gif-12904436974720717983

Kali linux, I didn't use the mint or ubuntu one I always had in mind to not switch linux distro that's why I started with kali

Too cool and elite for arch now

Nice. Kali isn't a bad start, if you do plan on making Linux your host os then try something like Manjaro, you'll get the support of arch but a bit of stability and a more user friendly environment

With things like pamac

I also did Linux from scratch

Thanks for that buddy I will surely look Manjaro once, I am way too comfortable with the Debian based distro hhhhh

I mean the only real difference is the package managers.

Arch also has a more up to date kernel with rust hacking enabled

Yeah you are right the most difference is about the package managers and support which differentiate these distros

Some have a different init system entirely, void uses runit instead of systemd

Oh nice I didn't know that, I have seen many people who choose mostly between the kali or the arch both have the same amount of the users, I have tried installing arch with their installing package it was nice experience

don't know much about that only got to know these things from the LFS101 course on the linux foudation

Once you get a bit better with Linux, try installing it without the installer script.