#general

okonmah im obliterated

Why?

シ

Miaw

Guess good news

Now win 11 comes with a spyware which takes screenshot of everything u do every few sec is obvious a great idea right so win thought why not make it built in.

(not actually a spyware or WHAT THEY ARE SAYING ATLEAST AFTER COLLECTING THE FUCKING DATA)

i thought they decided they werent gonna do that

Lucky this idea faced a lot of backslashes so they HAD to make it opt in

Who's this they?

yeah who is they?

what kind of animal makes this noise

it sounds something like a mix of a cat and a donkey

A German Cat

When a company reaches a certain power it's no longer their choice completely to say like hey let's make **** and shit purely. When they reach a certain power now they and gov have to work pretty much together cuz a change in the company can literally affect the entire nation

Why do u think big companies do give much of a shit abt GDPR ? And the gov suddenly turned blind until a mass no of people bring this issue up

Bcz if the ppl did not bring the privacy concerns Abt the recall in win 11 , u want me to believe that they would have kept the 'opt in' options already?

Windows 11 privacy concerns are overrated

Compared to what china collects

Sure

And you really believe using linux is more private? 😂

Using Linux give me more power over my own system

And yes WE can make it more secure and private if we want to

Do u disagree?

https://youtube.com/shorts/Bv1IuWddphQ?si=CAJaj5JvStWpR52i

If you use the internet then nothing matters

That's why I recommend to say ' fuck u internet' and throw this crappy junk of metal out and buy a small house in a countryside and live peacefully with ur family

If you use Google, YouTube, Instagram, and X, you can make your OS as secure as you like, but these companies already have a very detailed profile of youe personality, your PII, and your face

You don't really have to be worried if you don't do anything wrong

It's not Abt doing something wrong

The government is to take care of you and they will

I can't just come in when u are bathing just bcz u are fine with it can I?

An example ofc

I am straight

Af

If I am fine with it, why can't you?

a stranger coming into ur bathroom when u are showering sure doesn't sound appealing

Ye wait wait

I dug my own grvae

I'd lowkey be okay with the government doing that. Strangers, no

Wht i meant is me entering ur bathroom without permission

Cuz most of the time we do t actually have an option to fully exempt from them collecting our data

Don't talk as if the government is ur relative and not a stranger

Stop hating on the government lol

Shit I shall punish u with 100 cats punching in ur face

I gotta go exam in 2hrs

Okay gl

I don't hate anybody or anything

I was just debating

Good

Did u see the cat

https://youtube.com/shorts/Bv1IuWddphQ?si=F0PuIEUCt0X1Wkr2

I shall do another box because I am too dumb to hack real shit

BASICS CALL U

I know basic

Guys, I should become a botanist. Cyber is cooked rn

If you're leaving behind an open position, could you be kind enough to refer me to your job before you quit?

sup fam

I'm j*bless

me2

me2 movement for jobs

me5Million

rip

anyone played Metal: Hellsinger?

I just did the demo and it's fun

I bought the full game

it's like $9 on steam

negator

Censored lol

FYI if you display your HTB rank in your socials, hoping for job opportunities, you'll get 100s of random people DMs asking to hack Instagram and discord instead.

nice

I get it without puting the rank

Mick helps me ban then from this server cuz most of the DM's are from here

I get Instagram DMs mostly

LMAO

Why would u share ur insta handle anywhere in the first place?

Except me who does that shit

Why would u

exactly... why be a victim of being doxed?!

I see a new face here

Exactly

Skill issue in my opinion

😆

U really don't have to pay 3k

ok brb gonna sleepp

people offer this for around 1-3k, not trying to criminalize anything just some insane stuff i saw

Ok we are so close to sliding to the gray zone now

Let's stop

i've seen it myself

Let's stop

Well it's not that deep. I post shit

yeah ik

The reality is, even if I do manage to compromise every single one of Instagrams servers, the chances of me actually getting your girlfriends Instagram account is very low

anything for "lemme hack my ex pls"

had a kid dm me a bit ago

to hack his ex's facebook i just laughed

im so sleepy bro im preparing for a cyber world competition

next month

The only possibility of doing this is through targeted phishing

Create a fake login page that looks like Instagram, and email your ex a believable email impersonating insta and link your hosted page there. If they're dumb, they'll enter their credentials

How to open Ticket

https://letmegooglethat.com/?q=How to open Ticket

Yk when I was 12 or 13 I used to use my smartphone while it was hacked

just want to thank hackthebox for being the goat of cyber

dude when i was 13 i'd load up termux on my device and act like some hacker with github skidded tools

baa 🐐

People used to turn on and off my screen, take screenshots randomly and turn on / off the flashlight etc.

🔥

i remember prank calling the police and they fully

shut my phone off

when i was 12

My account is banned 🙂

I knew I was hacked but I kept using it anyway till they got board of trolling and stopped eventually

LOL

when i got hacked first i panicked and rung my cousin about it

and he was like we need to tell ur dad to move houses u will be kidnapped

but i've been irl stalked online on social media

before it was so weird he sent a pic of my home outside during the skype days

I literally had nothing on my phone to lose. It was already so beat up that the screen would fall off if you didn't handle it gently

LMAO

im probablty going to sleep now my eyes r tired

🥹

hello

I NEED HELP

any mod?>

?

You don't need to ask permission to DM a mod for mod related issues.

umm hey

My friend recently got banned

from htb

and for unban appeal he needs to contact a mod of server

Discord mods have nothing to do with platform bans, they need to reach out to the email provided in the ban email.

um you know the hackster?

Hackster is a bot

ohh

but that bot sends a msg

that

for unban appeal you need to contact a mod

Then they can contact a mod

but he is banned from server

how can he contact a mod

He can DM one

please help him for his unban appeal he even tried to send his appeal on email of htb

Job of a Mod is hectic :" ()

which is made for unban appeals

ok could you tell him which mod?

He probably got banned for a reason, we don't ban for nothing

yes yes

He can DM any mod

or admin

but now he regrets

for his mistake

ok but tell me how he can dm a mod when he is banned from server how would he know whom to msg

there is no mod in his dm

that's why I am here

You can tell them whatever mod then

it isn't that complicated

will you help?

you are also a mod

Yes as I just said he can DM any mod

ok

wait

let me tell him

your username

um supernuts

Why'd he get banned

he said that

that u don't accept friends request

when he tried to send you friend request

Yeah I don't accept friend requests. Friend requests aren't messages.

It's really not complicated, you can tell me their username but I'm not going to unban them if they broke the rules

@alpine pumice iirc, doing sudo rm -rf /* on HTB boxes is against TOS right?

and he also tried to dm you but this message pops up

our message could not be delivered.

You can see the full list of reasons here: https://support.discord.com/hc/en-us/articles/360060145013

um his username is

fire_clashing\

idk

sry no slash

fire_clashing

his username

he promise that he don't repeat the mistake

Nope I'm not unbanning him, he can contact an admin for that.

what is the username of admin?

look at the user list...

Chap

umm please could you contact them for me cause they are not gonna look at my msg

I'm hungry for something sweet but there is only lemon pound cake

but if you tell them they probably will

only like 3 slices left

I ate almost the whole cake

I'mg onna get fat

🙁

No, I have zero tolerance for what your friend did. He can DM an admin.

super nut he tried to send you msg but msg is not sending

you can talk to him

please

No

He can DM an admin

can I mention admin ?

n this chat

in*

Just DM them, or have him DM them

I wonder what he said that got him banned

but he said that without someones permission you can't dm anyone

"my friend"

he also got a 1 warning of this this so

Other admin dm's may be open. As I already said multiple times to you, you can DM the mod too. I'm done with this. You have been told like 100x now.

sry bro

he said that supernuts knows me

he helped me alot

You should just go eat some papaya

how do you know papita = papaya?

@balmy basalt

I need a help

https://www.youtube.com/watch?v=jkdWrx2Ta_A

As I said, this is not the place. DM them directly.

I did but no response

like let me tell u what the sitatuion he is in

at the 20 march he got banned

he though whatever I was just cracking some jokes

just got banned from the discord server

but today he thought that he should buy some cubes

and upgrade hi plan from free to

primium

Then you wait

Everyone wants to crack jokes like theyr'e a fucking stand up comedian

What was the joke

Comedy is hard

Comedy is really fucking hard

LOOOL

please don

This is funny as fuck

let me tell

what was the joke

please don

Yeah tell the joke

https://tenor.com/view/please-tell-us-more-gif-10221233

please don't band me for that

We wanna hear it

Have you tried Mott's Clamato Caesar Extra Spicy ?
Good stuff

I'll do as little as I can to stop you being banned for it

like he suposed to say a double meaning joke

Okay enough ABOUT the joke. Tell the joke

and he was tryna tell me real meaning in the second sentence

but before typing the second sentence

Oh Vege, ya doing it again hahaha. I know you 2 fucking well

He's not gonna tell the joke is he

If he does it'll instantly get deleted and get him banned

Don't give it away

he got banned

LMAO

WOAH

WOAH

WTF

that was the meaing

What a fucking cracker of a joke

but before he can type cyber punk

he got banned

He needs to fill out the parental consent form and he can DM an admin if he wants, we aren't gonna unban him.

he is 18 +

So you brothers with him?

then why parental consent

I think he still needs a guardian

Not everyone was born to be a stand up comic

Not everyone should try to crack jokes

It's as simple as that

yes he regrets it now

for doing that

Life is a bitch

but non of mod repling

And then you get high

He should probably message an admin???

Idk

we are waiting for that

I had Dm all the admins

Hiii

LOL

This kid

Hahahahaha

Idk if they'll come back again...

Ahhh boy

Oh they're gone

Thankfully no more jokes

hello ive been stuck on a target spawning for 20minutes rn it just keeps loading what should i do pls

"friend" joined the same day they got banned hmm

https://tenor.com/bJQcp.gif

Swap VPN regions

Sometimes refreshes the page helps. Otherwise try switching VPN

@alpine pumice I'll do my checks and have a giggle if it is true

okayy ty for help

Hey guys

Just wanted to say

I love you folks

Fix my door, fix my door
Stop stealing my dough, stop stealing my dough.
Stop disconnecting my video

Thanks, here's a picture of a pillow fighting champion

i know that guy has horrendous allegations

If the pillows were filled with rocks that would be respectable

LMAO

In this house Stan Bateman is a champion

They would get up on a big wooden horse and smack each other until one fell off. For some reason they don't do it anymore and our best guess is injury and or death

So what happened to the dude asking about his friend

he abruptly stopped his quest for his friend

Probably hitting up an open mic

Oh thats kinda cool

they stopped being friends

Safer and more interesting than 60 iq brutes charging at each other full stop

For those of you here who would want to learn drone pentesting, would you be interesting in a free gitpage with everything youd need to know?

didnt work 🙁

Sure (yes pls)

@iron galleon is your pfp timothie shilomang?

Im considering making a gitpage that goes along with my talk so people can just go get started instead of spending 7 hours post talk helping people

it's an old picture of me one of the only pictures i have of myself before a period of time

i recreated it with ai

it's sentimental and autistic

thats cool

i did not mean any shade, you look like that guy

thought it was a dune promo photo

nah no offense taken lol

i would hope not, hes this generations hottie.com with the bogged bunch

welp time to ride my bike home

😄

why not have your drones fly you instead

sup my guys

and gals

sup life forms

#magical-tunes

k, thanks

i like how your name has 3 or more meanings

snack, other, and crazy

lol

magical

i was nuts in cs

way cool. cracked even?

lol

cracked nuts

lol

puns afloat

a plenty

You, me, dd. 20 minutes

i want the name "Cracked Nuts" but don't want to steal your thunder.

You would get smoked

lol

dungeon master

https://tenor.com/view/fps-doug-boom-headshot-headshot-pure-pwnage-gif-4455343198282149618

i played mtg, that's about it

had friends into d&d and shadowrun

i miss that guy

"i can dance all day i can dance all day!"

i was winning tournaments back in the day

young man's game now

yeah, for sure

So you're old now

yeah

i was pro in source

So not much getting smoked more like two dudes falling asleep on their keyboards

https://tenor.com/view/cs-counter-strike-cs-go-cs2-fard-gif-15917503615725617416

Mr fancy pants. I too was CAL... O....

Ah hah

eureka?

Yeah

nice. secret?

No I think I found out the reason for the sudden unexplained abdominal cramps: snake bite

oh wow. damn bro. gnarly.

poisonous?

Idk just an assumption

for sure. camping or something?

There are a lot of snakes in my area lol

gotcha.

yeah. my area is pretty tame. i live in the city, so yeah.

gotta worry about humans instead lol

Lol

humans and disease. that's about it.

poor water quality too maybe, lol

you up to anything interesting rn Candy?

or just kicking it?

I am sleeping

hi

Hi

Hello

be safe, thats no joke

heyo

Thanks

ellow

hello
ellow
elbow

H..

Guys, I need some advice. I'm going to a boarding school, and I need a laptop for my cybersecurity stuff (VMs, solving machines on different platforms, Kali, Ubuntu, etc.). I'm thinking of buying a thinkpad, but alternatives are welcome! I also want to the price range to be maximum $1.5K, but I might buy one more expensive. I don't need a crazy strong laptop, just a decent one that will be usuable and reliable for at least 4 years and powerful ENOUGH to hold up on cybersecurity and VM stuff. Any laptops you recommend (please be specific, like if its a ThinkPad, which series and generation?)? Thanks!

thinkpad a fat one ☝️

4 years is a rough timeframe tbh

Framework, or M-series mac though

the school gives a macbook air lol

M4 probably

its a really good option

battery life is in a class of its own

but I don't think it will be able to handle it

the storage is one problem

my MBP M4 runs it all fine

how many RAM and CPU cores does your MBP ahve?

dont remember tbh

lol
just wanted to see how high it is, cuz I'm sure the macbook air they give doesn't have a lot of cores and RAM

there is like

I fell like probably 16 GB and idk about the cores

2 options on the MBA lol

there isnt really a horrid config

I also hear it's good to have two laptops there tbh

one laptop for school, the other for other stuff

competitive programming will also be easier on a windows computer imo

System76 has great laptops. Personally I just use containers for HTB now because VMs are too heavy on resources and I've been using mine for 3+ years with the only issue being having to replace a battery

are they windows or linux?

The purpose of using VMs and such for CTFs I think is old and outdated unless you're dealing with malware but most malware is windows and if you're on Linux you don't really need to worry too much about accidentally infecting yourself

Linux ofc but you can install windows

ahhhhhh
I need windows lol

That's kinda cringe, why?

cybersecurity is the main, but I do want to do other things on there

Wine, proton, and mingw exist btw

ik, but like
I'm used to windows lol

I also need competitive programming, and it'll be very simple for me to install things I need and work on it

Quite the opposite actually

.................... no

Linux isn't too bad to daily drive it's much easier

I've installed it many times lol

sudo apt install -y python3.

I need c++ lol

Clang llvm? https://clang.llvm.org/

can I just....... use windows

like, I understand what your saying

but........... can I just use windows lol

https://learn.microsoft.com/en-us/cpp/build/clang-support-msbuild?view=msvc-170

Who still uses C++ anyways? Just use go if you want performance and safety

almost everyone in competitive programming

Tf is competitive programming?

Why not use go instead? Much faster and easier

You just won't have oop which is a good thing

Competitive stands for competition

https://klipy.com/gifs/stop-it-get-some-help-5

Golang gang!! 🔥🔥🔥

good luck creating li chao trees in go

Calc is also short for calculator btw

Binary trees have already been done https://www.tutorialspoint.com/article/golang-program-to-implement-binary-tree-data-structure

li chao tree is not binary trees

its probably not that difficult

but its simpler to use C++

goland is used less than python in competative prpgramming just so u know

It is NOT lol

I'll make one and post it

Skill issue tbh.

good luck

I run games and stuff and even natively supported games sometimes break in Linux after a update

eeew geometry

well, good luck proving your point lol

Bc Linux has like zero backwards compatibility. The distro I was using randomly decided Wayland is the way to go and pushed Wayland and removed the option to even use x11, breaking a ton of my games in the process

you can also just use windows with WSL and then it’s whatever

wow thats a bad distro

whats the name of it

Fedora

shitty distro

@rose onyx fight back

you would have no problem with ARCH LINUX

Exactly

I have a life

I have arch linux

And a life btw

Where I use arch linux

ahaha

i have a distro that doesnt break my shit

I don't get the point behind arch like what do you mean you have to install your desktop environment, set it up with EVERYTHING you need and then start using the computer. I just wanna set something up, leave it alone and use it.

seems like u dont have a working distro

Like you have to install and set up the wifi and Bluetooth widgets for god's sake

your point is contradicting when they selected wayland for you
you were against it and you want everything pre installed
arch comes with a script that has a TUI to install whatever u may need if u use that it will be like fedora in 5 mins

your fault for using trash tbh

using that TUI would install and automatically start services like wifi bluetooth and widgets

My point was Linux should learn from Windows and make an actual usable OS

this might be more your pace https://fedoraproject.org/atomic-desktops/silverblue/

windows is not a usable os

working on it rn

You can install a Desktop environment

I don't get the point behind buying an empty house like what do you mean you get to pick the furniture and have space in it for your own posessions. I just want to buy the house, move in, and have some old dead person's stuff in there cluttering up the place already

I can but should I have to? No

seriously imo arch have an excellent compatibility with almost all games/hardware because of the rolling release, some heroes just sacrifying their lives to make my games work

If you want to stay in windows you don't have to

First of all, I don't wanna be a computer nerd, so I just want something that works out the get go with zero effort

like i dont get "u have to setup everything"

then use something like ubuntu

Yeah for now imma stay on windows and hopefully switch In the future

perhaps other people like to have more control and configure the system exactly to their own specifications rather than relying on a preconfigured set of opinions with loads of shit they don't need

better late than never

As long as it works, I don't really care lol

and that's fine!

(btw distro is just a tool you choose whatever you want bro xd)

Also I need MS office 365

but you said you don't get the point of arch, so i tried to tell you the point of it

not to tell you to use it

Yeah I get that

Yeah

windows does give you more flexibility when gaming

unless you play valorant/LoL

you can play almost all games on linux

matter of habit

yeah you literally just install steam and then steam takes care of the rest

(with options for using modified versions of proton in niche scenarios if you really need to)

nope

Yes. If you do It the official way sure most games work. But most my games don't come the official way. Plus my laptop GPU isn't very powerful. On windows, I can use frame generation and scaling software to counter this with very little loss of quality, allowing me to play very demanding games that would otherwise be unplayable.

On Linux you can't do any of that.

that was true 15 years ago

actually all that is possible on linux :)

https://www.linux.org/threads/amd-fidelityfx-super-resolution.35648/

for example

if you mean you can't run them in steam for whatever reason, then you can use bottles instead (or lutris, but I don't like lutris)
And there's plenty of frame generation/scaling stuff for linux now (and in-game support where games offer it too, because the proton layer just works)

Lutris and Proton make playing non-native games easy

@cerulean bloom I have made an attempt, I'm very certain it's wrong lol

warning wall of text

package main

import "math"



type Line struct {
    M float64
    B float64
}

func (l Line) call(x float64) float64 {
    return l.M * x + l.B 
}


func insert(l float64, r float64, segment *Line, a *[]Line, idx int){
    if r-l <= 1 {
        if (segment.call(l) > (*a)[idx].call(l)) {
            (*a)[idx] = *segment
            return
        }
    }
    mid := (l + r) / 2

    leftson := idx * 2 + 1
    rightson := idx * 2 + 2

    if (*a)[idx].M > segment.M {
        (*a)[idx], segment = *segment, &(*a)[idx]
        insert(l, mid, segment, a,leftson)
    }else{
        insert(mid, r, segment, a,rightson)
    }
}



func query(l float64, r float64, x float64,a *[]Line, idx int) (float64) {
    if r-l <= 1 {
        return (*a)[idx].call(x)
    }
    var mid float64 = (l + r) / 2
    var leftson float64 = float64(idx) * 2 + 1
    var rightson float64 = float64(idx) * 2 + 2
    if (x < mid) {
        return math.Max((*a)[idx].call(x), query(l, mid, x, a, int(leftson)))
    }else{
        return math.Max((*a)[idx].call(x), query(mid, r, x, a, int(rightson)))
    }
}

can't believe @terse dirge built the wall

What's the *[]Line syntax about? noun after the brackets

pointer to an array of that structure

it's to have some sort of OOP so I don't need to deal with global vars

is this c#

golang

o ok not super familiar with go syntax yet, never really touched it (or c#)

What does the () do in the (float64) in what I'm assuming is the return type for the query function?

idea wise seems fine

U guys use golang?

Why?

not sure what it returns but it seems safe to return it as a float. Go is a bitch about type safety

Ceald uses it

idk

Ye he has been using it for years now

Do u?

no

it's fast and my monkey brain understands it better than something that's object oriented

K

Lol

does it pass the tests tho? 👀

idk

I mean

I can try testing it later

U can test it rn with goplayground

package main

import (
    "compress/gzip"
    "encoding/base64"
    "io"
    "os"
    "strings"
)

func decodeThis(r io.Reader) io.Reader {

    lol, _ := gzip.NewReader(base64.NewDecoder(base64.StdEncoding, r))

    return lol

}

func main() {
    throw := "H4sIABaqgVoA/1WPvW7FIAyFd57ibHmOTlWWrlVHenFIGrCvwCTi7a9Dq0rZ0Pn5OP6kqRBYULV4jlQqVJDkIPclDTvLCV0JpSWq8BxQBUEwuzcsLSU8JOdNM7FOFefqFfOUrbLxvnGELINzSkuBJ0UkvcyKpUg2XocYviC27tyMn1YVp2f2UDJ6t+5qEy7mQpQM6d5F1SP7nYbdONhqtWnOfdBxseTqx+34CzxverIFlxzk5JtRGsMXMd64M1ClMqK31P+/j9JvRvXdXhK+O930cYd9u9HAru0X+gIEKbNKeQEAAA=="
    io.Copy(os.Stdout, decodeThis(strings.NewReader(throw)))

}

https://go.dev/play/p/kN3Bqc6K18l

go has restrictions on array length btw

which is why
c++ is superior

but is docker, kubernetes, and containerd writtin in C++?

Is htb labs season discount code applies to pro labs?

Yep

You'll see it at the very last step btw

https://harmful.cat-v.org/software/c++/

Like you'll have to go pay got 50$ and at final step it will say credits applied of xx$

I meant in competitive programming
if docker is involved, I don't know what ur doing

Woah, you made a typo there. You meant to type C.

I see

So u know c++
Just learn go too
You'll be able to feel superior in both

I like C for kernel modules and eBPFs

eBPFs are kinda shitty tho since it is less batteries included if you use C instead of the nonbased rust

hey guys

best AD track after ad exploitation?

Honestly, I think you should solve Zeyphr and also solve TJ Null AD Machines.

everything should be a container 🔥 even my toaster and washing machine

tj null?

I love how compact it is and how easy to compile it is lol

And cross compile

gotta cite my sources https://www.geeksforgeeks.org/dsa/introduction-to-li-chao-tree/

Li chao tree

@native plume @scenic maple Typescript 6 has been released

[redacted due to ties with politics]

is the compiler fully in go now?

No, the 6th version is the last one made with TS

typescript W

Yeah

Then my js will be made with go 🥀

https://klipy.com/gifs/evil-laugh-127

Windows Active Directory Boxes: https://docs.google.com/spreadsheets/u/1/d/1dwSMIAPIam0PuRBkCiDI88pU3yzrqqHkDtBngUHNCw8/htmlview

Is anyone from Synack here right now? Can they contact me privately?

I used to be, if you just want to know how it is.

Can I message you privately?

Yeah

Hi

Crackton

Hi

Can you send me a friend request? I can't send you a DM.

How is it going

Oh, yeah that nonsense. Uhh... I mean, if it's just about the platform, you can ask here. Others will be able to benefit from seeing the information.

Just returned from college, will check work email rn

Then study HTB

Ok

Planning to do a module and then Kobold machine

I’d like to ask: What kind of resources did you have when you applied? (certificates, etc.)

Ping me of you want I also have it pending

@supple plume you did Kobold?

Sure

Im stuck on its priv esc

So Im gonna do linux priv esc from HTB academy

Synack has a 'pathways', which I used to get in with CPTS. https://www.synack.com/red-team/pathways/

It lets you avoid the testing, and get priority.

Same

But I didn't spent enough time tbh

I spent some time

I know that. Did you apply only through CPTS, or do you have a bug bounty career from other platforms, for example?

If you don't have a cert to bypass the priority line, you'll have to do testing. They accidentally sent me the test, even though I bypassed it, and I did it for fun anyway. It is beyond easy - easier than the easiest active easy box on HTB.

No prior experience.

I think I can figure it out if I lock in for some hours but I am going to be working on my box mostly

So, did you have any work experience listed on your resume?

Yeah, I have extensive IT background, including FAANG, but I think I've only ever seen one time where someone with a cert (and no experience) didn't get in.

I’m really curious about this part. A close friend of mine was rejected outright even though they have a CWES. Yet Pathways says it’s on the same level as the CWES CPTS.

Yeah, it's really odd how they handle that. Synack is 100% just web stuff, so CPTS isn't even super relevant. For the longest time, CPTS was the only HTB cert in the pathways.

I can only say that I found to it be an awful experience all around, and that it's not a great way to start out.

interested to hear more. bumped into a synack stand at a conference a while back and thought they sounded interesting but obviously no perspective from the testers, just sales engineers

I have confidence in my own abilities; I don’t consider myself a complete beginner. The fact that Synack is a closed platform appeals to me.

The fact that it's closed also works against it. The veterans will steal all the missions, so you'll never get any of those. The veterans are also acutely experienced with the customers that use the platform, and have pre-made reports/scanners attuned to the exact software/hardware they'll need to check, every time a contract pops up.

iirc don't they make you work from dedicated synack VMs?

Yeah, they give you a VM that you have to connect into, which is either a windows or ubuntu VM.

You can technically do contracts with your own VM, as long as they allow it, but like... no contract will allow it lol

i see the appeal of that from the customer perspective tbh

That may be true, but as the old saying goes: “If you can’t stand the heat, get out of the kitchen.” 🙂

from rat's description, it sounds like a similar business model to how courier companies work. You get paid for the work you do, but guys show up at 5am with a massive van and take all the good work

Yeah, but I just think it's somewhat of a high competition environment, where you're starting on the back foot. There are plenty of other places to get your feet wet.

They do occasionally set contracts up to be newbie only, where only people who have never gotten a bounty on the platform can participate.

I know that’s true, but the situation isn’t much different on other platforms, is it?

But it doesn't happen often, since they want to keep veterans happy

how's the $$$

You have to be prepared to not care about money, for at least the first year or so.

Otherwise, you likely won't be salary competitive with a fry cook

are you expected to commit to them like a full time job

Synack does ask you how much time you plan to commit, but I don't know if there's a 'wrong' answer.

If you are inactive for 1 year, they kick you out.

What if I only find one bug every year? 😂

Probably will still be okay. I abandoned the platform after about 2-3 months, and it still took them forever before they booted me lol

The fact that they remove people leads me to believe that they probably want to keep the user count at a certain level, so that might also be why they reject some people.

Maybe they're just at capacity.

Or they want to maintain an active tester base so that their org still runs with good credibility

The veterans on the platform will never leave lol

that's true lol

How do I join it though?

I wanna apply the things I learnt on HTB irl

Grab a cert and apply

or I won't understand shit

that easy?

once i complete the cjca path, im plaanin to do the isc2's cc cert

Well, it usually is. It was a while ago when I was in, and it might be harder now.

oooh noice

but for just starting out, using any of the public bug bounty platforms is a better way to go

thanks for that

even without certs, I imagine anyone who uses HTB and can even do most any easy box would be able to pass their skill tests.

apply on deez

oh daym that's nice

what's that?

not really
i had an interview where a guy asked me
if i have this webserver running in internal network, how can u "hack" it from outside of network, and "getting into network first" isnt the correct way according to him

ask echoes

ask and see

i think i get it

istg

You had an in-person interview for synack?

They did a one-way for me, and multiple boxes for the test.

is that some niche joke

wat

idk u mentioned synack

i had random interview at my work place

That's what we were talking about.

ah

i came ans saw last 5 messages or something

Yeah, just meant that their tests are stupid easy.

yeah plus my experiece (saw only 1 VAPT ever) was soooo dumb
anyone here with starting point experience can do it

3 day VAPT

the guy spent 2 days on pinging the IP

just pings

3rd day Nessus

https://tenor.com/view/you-what-wtf-disgusted-repulsed-reaction-gif-9521897686579036997

and then whatever nessus suggested, he took it nmap -p XX ip and screenshot

i got pissed even tho i wasnt paying

i asked him if he always does that, and he said yeah

Top 1% THM

yo wassup anyone up?

be mto
google thm mto
first google result is about Microsoft Defender multitenant management

Not top 1% so I'm a failure

I agree

🗿

me?

htb marketing team thought gavel was court stuff

not their fault tbh

fuck im failure too

dont even remember the last time i opened thm

I think i have done like 3 or 4 rooms there

no you ain't

MTO....cringe

https://tryhackme.com/p/0xMind

same

not gonna click

nice

why lol?

HTB doesnt have OG

bro is illuminaty

Hello everybody

Hey, can someone tell me where I can contact support- im experiencing a bug on the platform where I am unable to start a PWNBox even after months of being off this platform.

https://help.hackthebox.com/en/articles/5986762-contacting-htb-support

<3

Golam ur thm? @scenic maple

hi

goot add another ghoul in that pfp for u

I want to buy a notebook just for pentesting, do you guys have any reccomandations? Budget around 400/800$

a notebook?

Don't handwrite your notes vro

Obsidian is free

Markdown is great

a notebook for 400 dollars?!

I just openend thm discord server to see what they're doing and I see this

wha

typical day in thm general

whts tht key logo on top?

Idk

Oh on my phone

It means I'm connected to the proton vpn

sekur1ty

weird

mine shows a diff logo

maybe it changes from devices to device

¯_(ツ)_/¯

Tired

supp

Dont have any activity

Hardcore htb user fr

Halllo, im new

hi new

Ola

its ironic to think hackthebox was founded in my home town before i moved

any hacking today?

hello

Soooo apparently Claude found 500 0day vulnerabilities in a day...

Are we cooked

i am solving 2million room today

i can ping the ip address and also can ping the hostname after adding it to the /etc/hosts

but when i try to open url it just keep loading and nting opens

only 500 that they chose to blog about lol, that doesnt include all the BB hunters and vuln researchers

This one is better

Are you sure it's running a web server lol

They're just going to keep getting better

80/tcp open http syn-ack ttl 63
|_http-title: Did not follow redirect to http://2million.htb/

Does the browser just keep loading and doing nothing?

If so try resetting the box

Idk it struggled a bit to write tests for my La Chao Tree code

Yes you need to add it into your /etc/hosts file

already did

Isn't that a data structure to classify like data over time or something like that?

Idk, data science is for nerds tbh

@terse dirge

I still kinda wanna become a botanist and abandon cyber

Ok?

hello chat

still not loading

Like I said, reset the box

And try again

Too many old heads that won't listen to the amazingness of kubernetes and say "trust me it's overcomplicated and not worth it" like bro I'm the one who installed the shit and messed with it ofc ik how it is

Different one. My account was deleted ages ago lol

Kubevirt is peak btw chat

still not woking and i am facing this issue in all the box

did you download the vpn file?

and connect to vpn

yes

re-download it and make sure you ran the correct one 🙂

To what /etc/hosts file have you added the hostname to? You need to add it to whatever VM your connected to the VPN to

Get rid of the http:// part of the host if you haven't in your hosts file

i love my little kubernetes cluster which is barely breathing on a total of 8 cores and 16GB of ram

@green kite able to ping the hostname but its not loading

Curl it?

connection time out

The cluster I set up has 1.4 terabytes of ram and 104 cores

gimme .4 tb of ram

so u can round it up

have you tried to change from TCP to UDP or other way around?

can curl with ip address but not with the hostname

We don't talk about the state of the root filesystem tho, the disks weren't partitioned properly

🤤🤤🤤🤤

What browser are you using and have you flushed DNS?

If this happens in all the boxes then it's something wrong with your end. Try using a completely different browser

rammmm

Bros rich

It's great but it's all on hardware that's 10 years old lmao and DDR 3 ram

Wait, ayoo

That much ram

No it's the cyber range's stuff

Also hi.

hi

lol 1tb of ram on DDR3 is crazy work

You skid been away for a long or it was just me being unactivated

Blaaz

ey if it works it works

I'm also on gigabit network in there so storage on ceph is shit

too long sadly..

if you're asking me

tried escaping it with a kobold machine, got stuck harder in it than in skid rank 💀

Try entering the IP address in the browser directly

what limits you from getting a bigger bandwidth the networking devices or the ISP or perhaps the cables ?

Hardware and cables

All the servers only have gigabit nics and all of the switches are gigabit

Cables aren't fiber is all I can tell you I'm not a network guy tbh

The switches are cisco

used TCP VPN file now its woking

We have a mix of Cisco and other stuff I think

@dusky smelt thanks

Cisco lol

can anyone tell me that MTU smting smting command

Huh

The gateway and DNS server is made from scratch which annoys the crap out of me because it breaks frequently

yeah you're welcome, I had the same problem few months ago and when I changed it from udp to tcp (or other way around) it worked fine everytime after that

All because we need this schizo Mac address filtering even though it doesn't really work

You have a DNS server?

Yes we love dns. And only use DNS

someone post the DNS fancam brainrot video

You can use Google s DNS server

not for internal hosts you can't

How many hosts do they have to need DNS internally

🏖️

All of them

The model is a hybrid cloud but its mostly fairly self hosted

Running a DNS server at home is crazy lol

Well the cyber range isn't a home lab lol it's a place you can go to to learn cyber

Mostly Linux because of the amount of invisible hurdles in the place to actually set stuff up or want to do something in there

Oh okay

Jumbo Frames make packets heavier just spins around in my brain all day

We have 2 proxmox nodes in a cluster that use a Network share that's over NFS and it runs backup jobs every Sunday to another network share or in other words the entire network is nearly unusable for 32 hours

https://tenor.com/view/yes-monkey-gif-17161736773310556283

why is it not working I forgot

what do I need to have for this

For some reason it locks up the whole network but that's probably because we don't have any vlans and it's completely flat

well vlans are institutionalised discrimination anyway

Vlans are fake!

They're virtual meaning they're not real guys, it's all Cisco and mikrotik propaganda

aww

that sucks ngl

We also don't have a VPN server instead we just passing through public IPs gotta have tls on absolutely everything for security

pi-hole is a DNS server and you set it up quite easily

😄

can’t you make a VPN on the end router ?

or maybe the router doesn’t support it

No issues here bor, on Fedora 43, I play all my games just fine. Probably pebkac.

or it has 8 million CVEEs

Well yes but actually no. I'm not allowed to touch the gateway

oh alright

But you could technically set up wireguard on it

Also the person who made the gateway would say how VPNs are bad and how wireguard is actually a liability

fedora is what happens when you let IBM into your house

yeah if it supports it you probaly could or just forward a port to a VPN server on like idk Ubuntu Server

yeah i don’t know if that’s true😔

Can't port forward either because I don't have access to the gateway. I do have a wireguard server but it's locked down heavily and you still have to go through their shitty system to access it

It's as close as I can get

oh well

seems like you can’t do anything really then

sounds like you're havinga great time @terse dirge

blissful, flourishing etc

i heard someone using claudfare tunnels for a workaround if they don’t have the access to the gateway and then make a VPN there or something idk

I never researched that 😅

It's unpaid work. 🥀

I'm looking for work now tho and have been getting rejected

maybe HTB will hire you

how do you feel about spending a few months fixing the wifi labs

My old job was making content for cyber outreach for a college and the cyber range but the whole content engineering thing isn't for me

how about picking strawberries

good honest work in the sun