#general

its KDE

but its not the HTB edition

also idk why but when im using parrot in vbox, the clipboard doesnt work

I know, I was just curious if it was the same as 6

its very annoying

i would have stuck with parrot if the clipboard worked

It doesn't?

not for me

Guest additions installed right?

atleast

yea

I can't recall if it did for me or not , I used it wayy back

weird, not sure why it wouldn't work then tbh

wayyyyyyyyyyy.....

We pray to Lorenzo faletra?

Wayyyyyyyyyyy..,..

@eternal mango what all should i check once to make sure the clipboard works?

Do it in VMware it works for me

Maybe Virtual box issue

Either via the ISO as usual, or the packages as here https://parrotsec.org/docs/virtualization/virtualbox-guest-additions/

But they are the same thing AFAIK

i downloaded the prebuilt image from their website

I don't know then tbh

sudo /usr/sbin/VBoxService -V shows additions running?

@maiden anvil sup big dawg

@zealous charm so i dug deeper, its actually caused by windows

so windows bug and maybe i can report the secondary to google since it hits that also

Nice, would be neat to stumble across an accidental windows bug

One day I'll be able to find stuff like that too

But for now it's tummy aches and sadness

about to get lunch and then smooth sailing for the rest of the week

hbu @zealous charm what you up to today playa

also greetz to the channel

just working on a web test this week, running some src code review on the side for bug bounty

hi

any shortcuts to find particular variable when doing reverse engineering apart from searching whole application because i dont know the exact name of variable

Depends, are you running the target, or purely doing reverse engineering in a static fashion?

Assuming it's a binary application, not a web applianace

hi

There's a channel for that anyway 🙂 #binex-rev If the query is related to an Academy module, there's also #modules

https://tenor.com/view/crab-lara-waving-hi-hello-gif-10815615172503534079

@maiden anvil

hello all! is HTB coming out with an AI cert? the content is really nice & structured, feels like the wifi one before it came out

There is a Red Team cert coming, yes

ahh I'll save my voucher for that then 😄 thanks!

https://www.hackthebox.com/blog/htb-ai-range-launch

HTB AI Red Teamer Certification Coming in Q1 2026

hI guys, I'm doing Wi-Fi Penetration Testing Basics, where do I have to ask for help?

#modules

that's for me?

yes 🙂

th

thx

😮 looking forward to it!

anyone else had AI take away the coding power from them

?

I used to script in python but i've fallen into the chatgpt generate trap

and now I don't remember shit i decided to take the beginner's python course on academy to refresh 😭

I wouldn't say take away, I've had little time for coding personal projects in the past while, and so working with AI and then improving what it's created has helped me to be creative.. ish..

I mean I didn't code much before due to work, now I code a bit more, and get to explore stupid ideas with help

..but I still get my hands dirty

static fashion, its an apk

Certainly I'm rusty, but that's down to my current position in work / life I think

i am using apktool and jdx

hmm you have a point

the most important part is just being able to verify the results.

as long as youre not shipping code you dont understand its all good

This probably belongs in #binex-rev unless it's Academy related then #modules , if you want to move to either channel

Lately Ive been having fun using it to generate targetted semgrep rules

nah its personal

But the TLDR would be.. either you can switch to active reversing instrumenting with things like Frida, or explore the codebase and walk back to where the variables are utilised based upon what you are observing in the app itself

There's no real shortcut I don't think if the source is obfuscated, apart from knowing where it's used, in what UI / resource, connecting the dots from the strings and walking backwards

idk if frida or ghidra works with android packages

Not with packages no

but with devices

as in running the package, and instrumenting it with Frida

frida is the #1 active reverse engineering tool for android apps

frida is omnomnom

i have apk, does frida accept it

No

most of the frida content I see is in fact mobile related lol

You run the app on a device

and you instrument it WITH frida

You can then hoook on to specific classes/methods/etc

I made a wrapper for a PDU with python only with chat gpt because i didn't know what I was doing tbh, but now I've decided its enough, and If i want to get into the industry i need to go back and regain my knowledge

thats sounds too complicated from what i am planning

frida also very useful for active binary work too, like hooking methods etc

it feels good to write code again by hand to be honest

Well, it's a good skill to learn, but ok

then my first recommendation stands I think

frida sounds too complicated until you learn it and realize it makes life easier

Yeah, it's not that hard honestly, and has a lot of useful tools that would help you in this situation

eg with discovery of your variable and the methods that use it

But if not then aye, you're gonna have to do some reading and understand how the app accesses and uses that variable you're interested in if it's all obfuscated

yeah watchdogging a variable is one of the best use cases for frida

...oooorr

i mean, idk if any tool can spoonfeed me with the variable or functions i am looking for

Working with LLMs for reversing and "humanising" source is a thing

So long as you control the temperature so it doesn't imagine TOO much

I like that as well but its trickier if you dont have a foundation

OK reported bug

nice

Aye, a foundation in the language you're reversing is still needed, but using LLMs to humanise a program from decompiled binary or extracted obfuscated Java, it then allows you to query that codebase

can i install wine on parrot if im on arm64

The prompts for it aren't that hard to come up with, nor are they massive

ike literally a couple of paragraphs, repetition and patience

Damn now I've forgotten what I was actually doing

explain this:
[copy paste snippet here]

has done wonders for me

I think people overcomplicate prompts

Certainly can do aye

Lemme see if I can find a prompt as example from my workflows which have worked well for me

Might be on my laptop though, which is upstairs

Too far away.. wi ll check on this machine anyway

yikes, i dislike java

me too, the application Im bug hunting in right now is Java and I want to barf

its not even using any dangerous java functions which means I need to actually hunt for java based logic bugs if I want to find anything useful

😄

Anybody’s help me? 🤯

Had to read a bunch of perl the other day

eyes are still bleeding

I need help with module

#modules

Ok yeah.. can be as simple as Your role is to analyse the obfuscated project source code in this directory, and create a deobfuscated and human readable version of it.

or more targetted if you've already reverse it to a degree in Binary Ninja or whatever

..but of course you can now do so much more using skills and formatted prompts etc

It does work surpisingly well anyway.. now, I gotta figure out what I was working on before I got distracted..

lasers. and rockets.

Oh right haha that's what

https://asciinema.org/a/jhadBK7S2SfeZPa1 🤣

Proper camera projection and movement around the space..

Gday!

This should totally turn in to some janky game jam horror puke of a thing

bro it keeps saying unable to llocate package wine32:i386

path maybe?

You're on arm @brittle quail ?

yes

is it possible

What do you want to do with wine?

winders bug?

Run Windows x86/x64 programs?

install something that works on windows

yes

That won't work

You need more than just wine for that

Don't you have a windows host?

Didn't we go over this yesterday?

why

Google it

I need more than just wine for this conversation I'll tell you that much

Sorry

but you didn't even try

i did

it told m

"it told you"

What is it

Right one sec.

Who is this great creature that makes you do things

u need wine to run windows applications

didnt say i needed anything else

That's not true at all

That took two seconds

https://tenor.com/view/ape-dance-hyped-gif-21698509

For one, you're running parrot in a VM on a windows host. Why are you trying to run Windows applications within your Linux host when you're literally using a fucking windows machine?

uh

See that's

Called critical thinking

It's an important skill!

i dont want it on my windows

What is "it"

That you need to run so badly

yar

all my microsoft bugs

Beast

I see the word heap twice

both memory issues but differen areas

One of those is definitely stored xss

open redirect -> XSS for the opens

Ok nevermind, not gonna try that joke

How do they pay for memory corruption compared to chrome?

I'll get told off

Hehee

I need to start doing stuff like this..

got $50k for one for notepad but that serves as a hyper-v escape

other ones are like $5k

DoS ones paid $0

I want a thank you letter

you have some nutty workflows

from finding a bug??

I have small goals lmao

gib email i'll email "Thanks"

hyper-v escape is big biscuits

Nice, I've got some OOB writes in chrome I am waiting to see how they turn out

Yooooo

Don't you have me on LinkedIn?

don't report them if they don't pay. sell them on tor

I haven't used LinkedIn in like, a year and a half lol

FPS gamers, what's a "comfortable" fov? I've NFI

Oh wait

I'll Google it

Oh!

I don't know if you're interested at all goblin

Always

Time for bed. Goodnight.Is your icon Fallout series?

I love that game.

But kingdom come deliverence got

An update

Oh yeah?

kcd is rad

It plays at 4k 60fps on PS5 now!

I finished the first one not long ago

Not started the second one yet

If you owned the PS4 version they let you upgrade for free yay

Noice

Can't remember the last console I owned tbh

It looks very pretty I got my shit kicked out of me by a guy who stole my dad's tools

probably PS1 or N64?

I'm playing mostly Arena Breakout Infinite. As long as you don't stress about the PVP it's actually pretty fun.

I like to roleplay as a serial killer in kcd

https://giphy.com/gifs/grandad-grampa-gampa-pP88YOmpaQ2LlHFcLU

JFC

What the HELL was that

Hey hon

Why's there a uh

Demon turtle..?

Man that's horrific

I'm leaving it

Yep! It's the perk Four Eyes

Mostly I'm getting my ass kicked in ABI, but I'm taking it chill and doing some missions

I only have Fallout Las Vegas, which I think is the best one, besides Fallout 3 and Fallout 4

I don't own fallout 4, but I had fallout 3

Fallout New Vegas*

It's new!

I really wanna play that London mod

I heard about that

It's bloody impressive

For a moment, I thought you meant the game was new

I've played a bit, but it really dislikes wide monitors, even with tweaking it just shits the bed

But yes, you are correct.

It takes a lot of memory space too

Nope haha it's an old game

Oh yeah, so many mods and such bundled for it

Curved monitors are the best for your eyes from what i've experienced and heard.

They're okay

my monitors are like a decade old. Itd be nice to upgrade but on the other hand... they still work

I dislike ultrawides though

I can't go back from super-ultrawide 32:9

Too much info across too much space

..but it does make some games angry

This isn't minority report

Games are all right, but I don't play them as much now.

https://tenor.com/view/minority-report-looking-searching-looking-up-stalking-gif-9548432812386765873

afterplace was a fun game though

No, I mean some games literally are not compatible

You can try to convince them, and some times succeed

I like this 🙂

But some REALLY fight you

Which movie is it from?

Minority Report

Tom Cruise movie

Good film

I see

The glove hand hologram thing is referenced a lot haha

I like this.

https://tenor.com/view/rewind-futurama-dance-seriousface-funny-gif-5354932

me scrolling reels

nice pfp cloud

looks like sm from a perk

It is

It's the four eyes perk

It's me irl

Hm.

I'm looking at something that has to do with HackTheBox

same

How long has everyone been on this platform?

We only keep our real pfp's

A while

I've been here since 2020

how do you define 'on'

DELETE THISSSS

This platform is referring to HTB? or dc? Or htb dc

Sharing is caring

Won't you gentlemen

Have a Pepsi?

I don't like pepsi

I'm quoting movies again

OH REALLY!? LET ME SHOW YOU HOW MUCH I CARE THEN

You'll have to forgive me I didn't have internet growing up, it was movies and TV.

https://giphy.com/gifs/latelateshow-come-here-bring-it-on-ron-burgundy-LoCDk7fecj2dwCtSB3

closes Discord

Me and Dad like watching movies together. Ever since I was little

ruhrow

Oh damn mb

when I was 12 I caught a frog with a friend. he nailed the frog to a tree. I think about that frog sometimes

Check dms

Hey mad what the fuck

I did

You check yours

My dad doesn't know English that well so I used to watch Hollywood alone

Ahh

I only know how to read really well because of final fantasy

I thought sharing was caring

did I care too much 😭

Share too much

Also can my boss quit putting me on the damn priority queue

Every other case I pick up I have to call the damn client and none of them ever answer

So I'm just in hold music hell

Throw a file at his face and make a mass exit with cinematic music.

Nah lol I just helped him out in a client call

Get this month's salary and throw the file then

Dude is mad we're not creating cases for unsuccessful bruteforcing activity

Chair will also do

You guys are over performing it seems like

tbf thatd be an excellent way to boost case numbers

line go up

About as effective as opening a window on an airplane for some fresh air.

HTB

https://tenor.com/view/happy-death-gif-23959999

2 yrs

I see.

Are u new?

🐸

EVERYONE @static pasture @zealous charm @molten bobcat @sturdy thistle IM TOO SCARED TO PING MORE PEOPLE IN CASE I GET THINGIED BUT GOBLIN OVER HERE NEVER KNEW THAT YOU COULD FAVOURITE GIFS IN DISCORD.

My post wasnt about frogs

Fake news

LIAR

I just wanted to ask u something. I see the GOS tag so I'm guessing you are using grapheneOS. What are the down sides of using graphene over google android ⁨@vital heron⁩

Don't believe the lies

DONT FAKE NEWS THIS

I HAVE THE EVIDENCE

I HAVE

Haaaaahahahahaha

THE

EVIDENCE

Do it

SHAME THE MAN

Fork found in kitchen, yawn

Oh you really

WHAT

YOURE REALLY TAKING ADVANTAGE OF THE FACT THAT THIS ACCOUNT CANT SEND IMAGES HUH

WELL THEN

YOU THINK GROWN ASS MEN KNOW HOW DISCORD WORKS?

fork you

ILL GET SOMEONE ELSE TO SEND IT FOR ME

HELLO?

HE HAS BEEN HERE SINCE 2015

And???

Shut the fuck up yumi

It's fine

I deserve it

We'll just ban her it's fine

WDYM AND

Silence the haters

HOW MANY GIFS HAVE BEEN USED

Never

I am immune

I am basically

https://tenor.com/view/shibecord-mod-abuse-domain-expansion-gojo-bigshibe-gif-1252041892102611504

The server mascot at this point

the screams of haters fuel me

My presence is required

This is my job

He is in in his early 20s

Without me

There would be a hole

In this server

Ayo?

Always 21

The server would even risk becoming

More productive

And less toxic

True

That cannot do

Only toxic cuz I'm here

this server has never been productive or non-toxic

I AMPLIFIED THINGS

LET ME PRETEND MY LIFE HAS PURPOSE FOX

nah lol

Look man, some people genuinely eat glue

This channel to be more specific

server is more tame nowadays

Oh right

Hallicon

Man I had an image for that somewhere

Wtf is it

https://tenor.com/view/glue-gluea-eating-paste-eat-glue-gif-8579890

You would have jt

It*

If

You used

THE FAVOURITES

BUTTON

HOW DID YOU NEVER USE IT

I'm fully convinced most folks here are just ralphie with internet access

I sometimes love this channel

I'm a hackers!

Are we included?

This channel always loves you mick

https://tenor.com/view/lisa-ralphie-gif-18800083

idk how to hack

Heck

im just here to yap

Ez

That’s fact

Fake hacker over here

Pfft

Sudo

Loic

You dont even know web hacking

Like

127.0.0.1

That guy a few months ago knows so much more web hacking than you

I know how to ping tho

Professional hacker here

No not you

Some guy tried to mansplain web hacking to homebrewer

Which I found to be hilarious

me when I want to read s text file

Real

I’m dreading turning 22

Like

What even happens

I think that’s what they call middle aged

How do people even live

Where is my mortgage

this is the funniest joke I've made all week and not enough people are laughing. Truly I empathize with van gogh

https://tenor.com/view/good-morning-gif-6172052806702782738

no mortgage at 22? kinda slacking tbh, try cutting out the avocado toast

I love meetings

Offsec's motto looms in the back of my mind...

Anyone else wanna put a teams meeting on the books?

Teams...

TEAMS!!!

NO

https://giphy.com/gifs/page-shaft-crimson-dOl2LFw0RbTMc

nO

let's hop on a quick call to discuss

Huddle?

Teams only

Sorry im already in a meeting

Quick Zoom right

Slack anyone?

The only slack I know is slacking on my oscp

😄

Slacka lackin

there we go in review now

JFC I'm learning so many terms regarding rendering techniques with this stupid ascii thing

So awesome

hell ye

share

aye

i felt @ocean marsh 's disappointment from here i'm gonna go study now...

Is there a role selector place

Your role is equal to that on HTB Labs, or any others gained via achievements through Seasons, or certifications via Academy

Htb blanket when

hah, duvet and pillow cover set

Exaaasctly

Hack the bed

😄

Another April 1st contender

I hope someone is writing these down

No I mean how I have red team

Idk how to change they

That

nice

Uhhh.. honestly, I don't know.

Are you kidding me? Just don't make costly mistakes.

Maybe a legacy role or something?

Maybe

Mystery!

It's a role assignment

For channels #red-team and #blue-team

That's all it does

Well yeah, but I don't see where it's assigned anywhere

😄

Bot command for it

Former, bot command I assume

Right

so legacy role

Yes yes

😄

I felt this

uh

see there's a problem

i do that a lot

Aunt wolo

NO

I have been pinged

https://tenor.com/tHmYIzjTg4c.gif

Goblin didnt know what the favourites gif section id

Is*

He has had discord since 2015.

Shame the man.

Not everyone knows the ins and outs of Discord. No need to shame someone for it

SHAME HIMMM

@eternal mango you are immune to being shamed

How is this even possible

https://tenor.com/view/austin-powers-dr-evil-how-gif-19601238

Experience

teach me your ways

Thats the neat part, he doesnt

Not something I thought I'd ever say

Poly poly

I mean it did do what I asked, repeating the initial tree model

...which was a triangle... on a stick..

So you asked for hot water and got hot water

And you complain about the BURN

I've never been accused of being a designer

well then I'll gladly take the honors, dear designer

Tut tut

I did win 2nd place in a CSS hackathon competition at a HTB meetup a couple of years ago mind

but I think that was my stubborn nature over talent

Css….

Ew

this is my 1st time hearing of a CSS hackathon

We had to draw various scenes using only CSS

and get them as close as we could

show

accuracy mattered, as did speed

I'm sure it was some platform, but I don't recall the name

very interesting

https://cssbattle.dev/

Ooh it has daily challenges

Based

it looks fun

kat

KITTEH

I signed him up for a vet appointment and he's clueless hehe

Does anyone know, why the latest cube talk uploaded to spotify is from the 23.1.?

Mean

It's just an annual checkup

Forrrrest https://asciinema.org/a/ZznZsp1LfgiFvxfc

the true definition of a randomforest

ok jokes aside it is impressive work

https://tenor.com/view/star-wars-bossnass-head-snake-gif-10683586

It's pretty mad right

Like the rendering engine is pretty simple, as is the camera and projection math

So cool to see it represented in such a simple way

Ok so we gotta have something hunting us in this forest. What should it be

Open Redirect intensifies

A wild Seadris

...how would I represent a seadris... 🤣

Hmm..

Keep it simple.. chop trees, run from ents, die horribly

I didn't intend for this to go this far.. it was supposed to just be a test of a model..

Oh well shit happens

Ent moot

Oh my god.. what if I'm gay for Tolkien?

https://tenor.com/view/archer-vomit-gross-wtf-mind-gif-26842790

lol

hi

😄

https://tenor.com/view/humor-gif-6169314

yo what it do famalam

hi m0rph

https://tenor.com/view/power-rangers-morphin-time-ready-change-transform-gif-8085109

https://giphy.com/gifs/drugs-comment-der-FHBCwkY0UuBZm

https://tenor.com/view/flute-power-ranger-green-ranger-dragonzord-gif-16538656

\

gandalf

you summoned me?

green ranger was so dope

bro LMAO

it's crazy you know the lore

https://www.youtube.com/watch?v=ty62YzGryU4

that was before your time 😭

Malk.

https://tenor.com/view/julian-smith-jstv-malk-milk-gif-20176229

Malk it out
HTB now Malk it out

@zealous charm side step now Malk it out

https://tenor.com/view/crazy-walking-gif-5982973787961681137

i can only 2 step

https://tenor.com/view/hardcore-hxc-hardcore-punk-two-step-2step-gif-7581617270258117067

https://www.youtube.com/watch?v=Mz26Qvi7TyE

now get jiggy with it

https://tenor.com/view/julian-smith-jstv-malk-milk-gif-20176229

https://giphy.com/gifs/mrw-mods-bethesda-vX9WcCiWwUF7G

https://open.spotify.com/playlist/7F2PYRLkHLzcd4Wc7NAIAr

How's it going b4ndit

That was not intentional.

Is going, today was a different day actually, had to go early to the hospital, to finally get a full radiography of my back and hips

Good to get it done, you get results the same day, or does that all go off somewhere else?

So the results are there for the get got, now i need to go tomorrow to ask for an appointment with my Doctor so they give me a proper diagnosis

Which is nice to finally get done, bcs It have been years since I have pain on my left leg and back

Ah gotcha, well I hope for the best.

Wait

You have a left back AND a right back?

I started 3 months ago doing exercises and is getting quite better

Urgh nvm

That sounded funnier in my head

🐝 good

NOT THE BEEEES

muahaha

Well yeah fingers crossed.

nah more like a tight plank

Some answer finally will be good

Im flying the 21 of march

new life

Just so you can at least focus on the right path, or whatever else if needed

Im going to the beach

Tenerife

Can you take the rain from the UK with you please?

Like, just arrange for it to meet you at the airport

☝️

Ive never been on a beach yet

Im 21

I left the UK exactly a year ago

I know as soon as the sun and warmth comes back, I'll be moaning again

but at least I will be moaning with air con this year

I feel you

Well, enjoy Tenerife!

Come to jordan its 20° here

Thanks!

20c is a good temp

Last summer it hit 45° for some days

Hottest ever been

my next holiday location is gonna be Iceland with the daughter though

We been going on about it for years

?

Go to greenland

Iceland first, but greenland did look mindblowing from the air

Last time i went out was 4 years ago

To egypt

Did you saw the pyramids?

I saw it from the plane

But never been to it

Its massive tho

insert joke about pyramids and blocks having already been sawn

must be so cool to see them

It is a lot bigger than it looks in the photo

you?

have you been inside?

Ok that went down about as well as if I'd even tried to write a joke

So I'm glad I put a placeholder

guys i have a dumb question

A question is never dump

I have a dumb answer

CONGRATS ON THE RANK UP RAVEN AHHHH

LOOK AT EM HES NOT NOOB ANYMORE

RAISE HIM UP

💪

poggers

Welcome to script kiddie

I promise ill be a pro hacker in 1 month after i finish cpts

Looks like the same color

Forgot how freakin funny this Norsemen series is

now the passwords supposed to be stored on company servers as hashes , but i suppose when you put a new password it have a host side function to see if the password meet the way the password supposed to be if the password is getting thro server does it go to the logs as well?

also thanks guys

If you configure it to do so

But you shouldn't

This.. turned into a stroke halfway through..?

That's called compppliaaaance

I'm having trouble understanding the question

As a host, you never want to log passwords in plaintext, and never should you need to

no like the reason we store password as hashes so even if it get leaked it still hard to get it right ?

You do the checks in memory, and then move on

https://tenor.com/view/bobsburgers-bob-teddy-menruin-gif-7391251

Why would one output passwords to logs

so does that function store them as plain text?

No

Nope

They're stored as hashes 🙂

I mean, you COULD

But you shouldn't

That leads to things like RockYou

Maybe if the authorization header was logged ?

One of the largest password breaches of all time

Again, they COUL be

but shouldn't

Helllo good morninggg 😄

One layer of security is better than zero layers

no no not when they are finally stored but when you create them and the function confirm like the password have small and capital and special digits and such

Thought u will say rickroll

A and a are different characters that are represented in ascii different

I think the default log format is for username only from that header

so if , if i am the man in the middle during an account creation can i see the password ?

But yes, the hashing algorithm turns the passphrase into a hash and the hash is what is checked against and saved

Well in theory sure?

Good evening everyone

i think i will go to HTTP site and test it with burp and see what i get during creation

In theory you could encrypt client side with a public key before it's sent to the server

https://giphy.com/gifs/scarymovie-zoemysd-just-chilling-killing-hFGMJ5feWELbAOBFzY

How you doing man?

During account creation? My brotha haha windows says hello with their ntlm hash for a ton of protocols

If you got MITM on a target, they got much bigger problems

...or you got much bigger connections

There's a whole world of easier lower hanging fruit than waiting for an account to be created haha

The regex matching function returns the sanitized password to another function but will never print them to console, except, if you told it to do it like goblin said

finally got some downtime so Im about to chill, hbu?

i mean not really like waiting for it but taking in mind any possibility that could work

https://tenor.com/view/green-mile-im-tired-boss-michael-clarke-duncan-gif-2375696290766999196

Coming off work and about to work on some portswigger. Maybe a little code

Get Started with the HTB Beginners Bible: https://www.hackthebox.com/blog/learn-to-hack-beginners-bible

It's easier to sit and man in the middle more common traffic like SMB

As if you have the ntlm hash, it's effectively the password.

You don't need to know what it says when cracked

That's called Passing The Hash

Or, PTH

😄

https://giphy.com/gifs/weed-420-joint-qAZqlUrjbJDMxGHxFs

Real

What a film

Is ntlm still being used in the wild ?

ok now another question , i have only 50 cubes left should i take the payloads and shells module or password cracking ?

I'm sorry why is that thing in a toilet paper roll lmao

At least in hybrid configs ?

AS THE DAY IS LONG BROTHA

https://tenor.com/view/пенчев-gif-18218568

I guess its something like ipv4

Raaaalph

Temporary solution that will stay forever

Pretty much if its a windows env its still using ntlm. Its an absolute massive undertaking for most networks to disable it completely

Ipv4 was not a temporary solution lmao

though some orgs do manage to do it

Let it slide bro 🥀

https://tenor.com/view/tommy-chong-stoned-huh-what-gif-20575200

No!

Don't be wrong!

How else are you gonna be correct in the future if no one catches you on it?

https://klipy.com/gifs/uh-uhh

Heard about a whole collapse could happen if an org purges ntlm and purley used kerberos

testing something

Uhhh

What

Def possible depending on what theyre running

Then cotinue on it

can you teach me to be a subject matter expert

usually its vendor limitations that prevent disabling ntlm completely

or legacy shit

I saw military computers running windows 7 and connected to internet

Used for comms

Welcome to the world

Ive seen telnet running on humvees in the military

It sure is wild out here

Just because something is "not good" doesn't mean you ain't gonna see it

Good news this day

Finally

I almost said why I saw it but realized that might actually be against the law for me to say 😂

All of the world's technology is still here it didn't go anywhere

+1

We live in dark times

im like 90% sure the cause is decomissioned now but...

If you have to question it

The one i saw is less than a month old

I hate when they put a phone number down and it's their reception auto phone number.

Bro be like "how did they knew our plan

🥀

This call will be recorded for quality control purposes 🗣️ 🗣️

"cloudflare be down for maintainence" ahh moment

Hey guys, curiosity, what's the difference between chatgpt and openclaw?

That's a good question.

ChatGPT isn't run by AI components like OpenClaw is.

I'm hearing OpenClaw is very exploitable and I would be against using the technology with your home-labs

Ye, i was reading now that openclaw was already under attack

ChatGPT is a provider of services, models, etc. OpenClaw is a piece of software you apparently trust implicitly, and then wonder how you got owned

Exactly what they said.

I wouldn't trust that software for anything, its a major cybersecurity flaws all in it.

https://x.com/i/status/2024583239331991830

OpenClaw is an agentic framework which performs tasks, either prompted by the operator or by itself.

And yeah, wouldn't touch it with a barge pole imho

It's interesting, but damn just read the articles out there on the risks.

Funny thing is Kirtaner created something like OpenClaw, a framework that had access to machines, accounts, data, history and was let loose to act as it wanted, like a year or so ago?

Scary thing now is people are trusting this thing with their personal data, their computer, their details

Hey guys quick question, when do you think it is the "good" moment even if there is no one to start to do some machines? My problem is I always do a lot of academic htb but never machines, is there a certain rule that you follow or had followed in the past (for the good ones of you)?

Ive considered playing with openclaw in like maybe a vm but I wouldnt let it touch anything important

This isn't cloudflare

Imo, ai start to be a problem, but maybe i'm paranoic

The picture I sent is malware btw

tonight

Ohh, that's why calc popped up with 80085

It's the Clickfix malware campaign using a Cloudflare Turnstile

yeah but I need some training to sometimes no?

It tricks users into opening the windows run key dialog and copy pasting clipboard contents that the web page filled with malicious powershell

Try -> fail -> study the points where you got stuck -> repeat

Sneaky, null byte hiding the tailed script?

It's annoying as shit and has a damn near 45% success rate.

or whatever escape char it is

Just start, you have walktroughs too, start with easy machines and you'll learn machine after machine

A lot of campaigns are using it. Its such an easy and effective setup

All they have the non tech savvy user do is open powershell and copy paste content into it

Okej will try it, also what if I'm stuck? I always think that I'm noob and abbandon the thing ^^

They barely obfuscate it and tack on a dumb message at the end of the powershell block that echos "verification complete ✅" back to the terminal.

Right but the malicious script is hidden between a couple of control chars in the seemingly safe text

Works every time

Right?

Wherever you get stuck is what you need to study.

Say you do a box, do basic recon and only see a website. You get stuck on where to proceed. Time to study enumerating websites

No

It just states "this is what the box will output"

Okej ty will try it to night thanks

Ohh nevermind yeah

I should probably read it properly first.

But when you click "copy to clipboard" to copy the thing it'll fill the clipboard with straight up powershell commands

Then they paste and you're off to the races.

But that is another technique, hiding malicious scripts in a seemingly safe string using a couple of characters in HTML, gotta find what those are now

But ok got it

Sounds familiar

id also recommend starting with boxes that have public walkthroughs. That way you have something to reference to get a feel of things.

eventually youll learn how to learn without having a good guided direction but the walkthroughs are nice till then

Haha a client set up a firewall rule backwards

Blocked a bruteforcing IP by placing a block on traffic destined for the malicious IP?

Honey..

I pointed it out and he felt so silly lmao

gotta be careful even doing it the right way.

Oops I just ip spoofed my 'bruteforce' attempt to be google 😉

Lul

dude it appear that HTB is really the platform to learn was watching a playlist to learn website pentesting from 2017 just for HTB to be mentioned as one of the places to practice what you learned

Nah past two days, same bruteforce ip

Ok maybe not a control char, but simple hidden span in between text

An IP block is appropriate here

can I have your attention, cloud?

just for a moment

Not at all

What's up

thanks

I'm sure there was a technique using a control char to hide appended text from a copied string though

for sure, its mostly a concern when people do automated ip blocks without a sensible whitelist

Oh gosh no this was manual for sure

Me when dojng web proxy module paid off in the first box i touched after it

theres unicode whitespace encoding but im not actually sure how terminals parse that

Though I have faced a problem alrdy

i have question guys , proxy chaim come with linux right ? but i never saw a mention use for it so far only once , why ?

https://www.irongeek.com/i.php?page=security/unicode-steganography-homoglyph-encoder

Right but that's Right but that'sencoding, requires decoding after

Maybe I'm just being dumb and mis-remembering that invisible span trick

its for forcing applications that dont natively support a proxy to use a proxy.

span with font-size:0 was one I found in my notes

cant it be used for things like nmap and such ?

yeah

https://jsfiddle.net/n5me8wbt/

Yep

Used it during my OSCP exam to proxy my traffic through a compromised host

I prefer other tools that dont rely on proxychains personally but thats preference

ligolo-ng my beloved

I used proxy chains lol

it hurt my head like when you would know your IP got blocked

hello

also what IP get blocked yours or the router ?

WAN IP of router sir

I think there was a control char in the hidden span that was interpreted in a terminal that kept it hidden too

but I can't find a source and wanna get back to my show 😄

The outside world has no knowledge of what IP is in any given private network

Unless yknow, it's leaked

Various other exceptions

so in case you get your router IP blocked is it permanant if yes is there a solution for that beside buying a new router?

tfw testing nasa and they block you 😭

Hey guys can i have some help with a command?

test from a vps instead

Or maybe a prefix, like move cursor to start of line, and clear current line before the "legit" script snippet pastes

You IP address is not guaranteed to be static 🙂

--help

setup a cheap aws ec2 instance with wireguard, connect through that for your testing

Damn it that's gonna piss me off now, I know there's SOMETHING like that

Getting banned from every site on the internet using Akamai is a rite of passage for bug bounty hunting

yeah Ive never heard of it. Would love to see a source if you find it

I ain't about to scroll all my likes to find it though 😅

what would be the easiest way to transfer a set of tools lets say to the pwnbox

i will put that in mind

You lease 1 IP address from the ISP. You don't get to choose what it is at any given moment.

Hello, someone know how I can prepare me for the CPTS exam after the Academy path ? I read about the Ippsec YT playlist but some people sayed it is outdated. There is the CPTS preparation path in Labs but most people are not talking about it. Is the path better or the Ippsec YT playlist

what you mean

Ozonator how is your injury

Will do, either it's out there, or I imagined it in a feverdream