good night

I'm thinking we just keep old shit just for the novelty tbh

running what? COBOL apps? Lol

they don't run anything lol

its 10am here

https://tenor.com/view/hungry-jerry-tom-e-jerry-mouse-gnam-gif-15123486425933471953

let me run elasticsearch on them

cobol and x.25

already got an elastishit cluster

I'm moving that out of my stack soon

Dunno when though

Who is new to HTB

janne808 uses arch btw

I use arch btw and void linux

I use Mint btw

I do use arch btw

whats arch

is it some kind of text editor

It's a religion

linux distro

of an architectural variety I presume?

try out void linux vro

have you heard about our savior arch linux

now THIS is proselytizing I could get behind

"let me take a second to tell you that pacman is the superior package manager"

But I love my SystemD

they're implementing age verification in it tho

void linux and the other fork of debian without systemd don't have it

https://github.com/systemd/systemd/pull/40954

They just implemented a way to set date of birth, not age verification though ...

"Stores the user's birth date for age verification, as required by recent laws"

It would be impressive if you had an arch pfp and then use windows or some shit

that would be me

i love pacman! but i use windows

well yeah it's amazing people are still using windows in 2026 isn't it

window manager bolted on top of msdos

Honestly I am not that concerned with this. Imo some stuff in Linux gets too much hate and unnecessary drama

running 70s pocket calculator processor code

i use windows im a normie

wish it was more customisable tho

install a linux distro

I mean hmm

ive seen using linux on virtual machines for years

I know the basics and such

best way to learn linux is to force yourself to use it

but im just too attached to windows since ive used my whole life

stay away from static systems like mint

that's what I use on vm 😭

its that or debian

they're great if you don't want to maintain your system or ever have to up date it

ah I see

ive been using arch too

and kali linux but that's maybe once a month lol

real arch or cachy?

real

vm arch

what do u use?

arch on my gaming rig and void linux on my laptop

arch for.. gaming?

never heard of void linux

well tbf i guess steam is on linux

yeah, I get up to date stuff and as much control as possible of my system

I used to use manjaro then got sick of the repos being trashy and not being able to do certain things on it

hm, yeah that's true but the problem sometimes is incompatible anti cheat software and such. also devs don't support it that much

have you not heard of steam deck

it wasn't that I'm just a control freak when it comes to linux lmao

majaro is the arch based one, right? heard of it before

yeah

it's arch made easy

steam deck is arch btw

well no

it is?

it's arch based but it's not arch linux

yeah what I was thinking

it's steam's immutable version of arch

with a bunch of stuff preinstalled

steam deck and linux in general also can't do multiplayer games like valorant and cod

but ig a workaround is cloud gaming

but that's a bit slow

if it runs pacman it's arch brother

it's arch based not real arch 😉

Just like Ubuntu is Debian based but not the same as Debian

janne808 uses arch btw

sup

My bad I fell asleep lol yes it is basically an older visual studio 😂

Before I was grep’ing manually on Linux I was using AstroGrep on windows years and years ago now I know where the name comes from

what do you mean?

It does more than just wrap API calls, such as dealing with api limits and has some (what i will call helpful) built-ins like regexing any machine that has an info section for asusmed breaches to conver to un/pw.

Now that's cool

Team stats are gone vro

Also the whole ranking handle thing doesn't really make sense, what's it for?

Like if I run HTBClient.Rankings.Team(1234) what's the handle for that it returns?

Like what does it do lol because I don't think it has any methods or variables that are exposed from the type

🤔 you might be right that there's nothing left for it

To be fair, most of those ranking endpoints are no longer on the website which is why i removed them. I assume they will delete them soon, or bring them back later.

But with the whole new ranking system, I'd lean on those being removed

there is a new ranking system? do u mean XP?

I mean it's not really a big deal tbh. It was just with a specific endpoint being able to see all the bloods was nice but again it's not a big deal

yes the xp thing

ah, I thought that wouldn’t be part of the rankings

it's snot. they are two different things. but arguably it's still a method of ranking which is why i called it such

ahh, gotcha

Should I add tracks to the tui?

Or fix the yaml automation?

whats the best method to study the theoretical stuff ? , i understand the modules itself but lots of times its hard for me to retain all the theory information

When learning all of this stuff, you're not expected to remember every single thing. Think about doctors and how many dozens of books they go through while learning. Nobody can remember everything.

But if you do pay attention, the strengths you build will be in knowing where to go, when you can't remember something.

Interesting pizza

looks pretty good

Its actually amazing

$20 which isnt expensive either

Including delivery

thank you , now ill just read and understand stuff carefully without the anxiety of writing everything down and try to remember it , ill now focus more on grasping the information which will save more time and make it more efficient for me

Nono, you should still be writing everything down. Notes are incredibly important. Even just the act of writing the notes (in your own words - not copy/paste) helps you retain information.

Just don't worry if you can't remember it - as long as you know where to go in your notes to recall.

researching more when you don't get something is part of doing research and it teaches you more than using AI tbh

AI isn't terrible but I think you should use it as a last resort imo

true agreed

You mean all those people saying you are behind the curve if you don’t use AI to study are wrong?! /s

Hey dear, I am nowbie and have been i HTB academy for a while. I need someone to guiding, showing and teaching me, How to works. I so eager to learn about those all the staff to be better all of it.

AI is a tool, not all tools are able to be used at some jobs

I'd get used to not being able to use all tools

or not relying too much on a tool

That's what academy does.

nowbie

I need some kind of help, It's just bit difficult in the acadmey

If you don't understand the topics, you are probably either doing the wrong modules first or you are missing basic knowledge in general. What Modules did you try to do?

looks like a lot of calories

enough for a day perhaps

cyber isn't entry level.

bro is playing hyprland

Others are playing VS Code

2 hours of hyprland? Must be a good game.

💀

I’ve been playing this game “VMware” for 6 hours yesterday.

who is playing hyprland

oh yeah i knew it

.... How do you have 44 hours?? ... Are you ok??

I'm not okay, it's really different

I just take notes

gday chat

sometimes I get sad to my laptop

Hey

https://tenor.com/view/blinking-eyes-white-guy-blinking-meme-what-huh-gif-26334323

henlo

The longest running server at work has much lower uptime than this wth

lemme show u a screenshot

Bro’s uptime funked up

I think there might be a specific case for you

it is a server lol

Yeah

or say a vpc at work

They're working hard for us

henlo

What are you all doing that you a) can keep such an uptime. Are you never updating or live patching kernels??? b) how do you not have any weird problems??

Okay server I am fine with. Although, even then, sometimes even the nicest server needs a reboot

I deffo asked my manager

https://youtu.be/SYRlTISvjww

he didn't reply

so it means no rest for it.

it is going to be punished until we migrate the service to another place

https://cdn.discordapp.com/attachments/1481097048559194164/1481823931626291373/togif.gif

just bunch of different researchs and kernels going on back there and I don't want to open them up again because it is sorted and in the correct place right now

Everything is in the correct place, that's why I can't power off

A few weeks ago a MariaDB with 360 days uptime started to act weird and having random usage spikes with 90% CPU despite not doing anything. Guess what, restarting the Database helped somehow. Just the service, not even the whole system. I was like 🤔😐

scheduler? logs

MariaDB has a few default schedules right

I don't know what was the conf but

Idk, I am definitely not that good in DB administration. I also suspect that is has something to do with a task or something. Maybe because it is a large unoptimized DB and taking up idk 30 or 60 GB or RAM and wanted to shupple around memory?

But I don't care this database should really just die in a few months because it is too old and brittle

If it is unoptimized

Memory + InnoDB is going crazy

InnoDB's buffer pool can bloat if you haven't tuned the innodb_buffer_pool_size correctly I guess

Yeah its InnoDB and has 2 or 3 large tables. One of them CMS contents and another one a ... editing history. With 120 million records ...

woah

how is that thing keeps living

whats up everyone

Idk. I hope we can clean up the same history table if we fully migrated to our new CMS version. Because I definitely don't want the 2nd database also to pile up 120m records because people save their pages after every character they type and want to have a history for 15+ years xD

It was indeed

• dipping sauce

oh okay thank you ill keep on doing that then

can someone help me with a bug bounty problem

i am a little bit stuck

Ask your actual question.

ok so i have tryed every basic vulnerability check, also checked for html injection ,sqlp, etc but i am now stuck as in what to do now

also tried port scanning, finding subdomains

mind you i am just staring my bug bounty journy

You port scanned a bug bounty program? Is that even allowed in your engagement

Most automatic scanning tools are banned from bug bounty

yes only DOS,DDOS etc attacks are not allowed

Interesting

they dont mind as long as i dont distupt the sevice they offer

Well check out Owasp top 10

There is a loooooot more possible vulnerabilities you probably didn't check

No. The scope tells you what you're allowed to touch. If it's domains then you're stuck on web

i am sure there are thats why i am asking my brain is a little full

it is web but also network sub domains

A bug bounty program's scope already tells you what to test, no need to port scan lmfao

That’s what I’m saying am I crazy or what

just in case 🙂

Doesn't matter, you're not going to magically find sub domains with a port scanner lol. The scope normally tells you the sub domains you're allowed to touch if it's all of them and they're not explicitly listed then do something like Google dorking

As mentioned, OWASP Top 10 is good. There could also be logic bugs which might be interesting for example a web shop allowing entering unlimited coupon codes or something like that

thanks thats helpfull ill investegate

That's bad practice and you won't find anything other than 80 and 443 depending on your scan you already violated their program rules

report to the nearest police station

To play devils advocate, some are very widely scoped and could be useful. I.e. DoD’s bug bounty scope is “anything we own” or something

But yeah generally rare to need it

Yeah that's definitely an exception but normal programs won't do that lol

hahaha i really didnt know

If you listen to some bug bounty "influencers" they will tell you scope is negotiable

put i got nothing usefull

Like that one dude who threatened a hospital?

Maybe if you already had like 10k points lmao

OWASP it is

not sure about that guy, but jhaddix teaches that in his $1000 course

rather learn on my own

Like that one company who said the hospital wouldn’t have been ransomed if they used their solution

I found it

I would also advise you to listen to the other advise though. You also honestly sound a bit inexperienced in cyber and I would advise you train on private targets first. Like hack the box machines. Also even if you don't get legal consequences admins still might be not happy with you if you randomly poke around too much even if they have a bug bounty. Tools etc. sometimes can cause a DoS by accident

Ahaha, as a Website admin I hate this 😂 I would be so annoyed seeing his IP in logs. But eh scrapers are doing shit, too, so nothing you really have control of

Considering the person doing it is doing so with their full name attached

thanks and yes i am a little new still experimeting daily and yes i also tried ctf in htb and other free boxes, but now i am looking for a real challange with' ''trowing'' myself into bigger projects, because for me personaly i learn more with hands on learing learning as you go and i do listen to others, but not to arrogant ones

They can actually do something this time

Like pressing charges lmao

cute

"hi I'm purposely fucking with your org so you pay me"

"hi that's called extortion and is a crime"

dont really care about the pay, but i care about learning new stuff

Paying the mob for protection or else they'll break your store

I'm referring to the LinkedIn post I shared and the idiocy it implies

oh my bad 🙂

I wonder if he's been arrested or at least sued for that yet

I hope so lol

No cloud, you don't

Dude his bio is like this subtle threat against any employer

I hate when they say: this trick made me half a mill.
And then there is no trick

At one stage it was a threat of a mass shooting

Dude

Yes lmao

That's crazy lmao

The trick: just grind for years and/or get lucky

Excuse me, what?

Yeah very briefly

Against some company for advertising remote jobs that weren't remote

https://tenor.com/view/the-secret-ingredient-is-crime-jbone666-mouthful-building-walking-the-street-gif-16400025

Thats not even just crime, that sounds kinda mental ...

Johnny Silverhand irl ...

That’s when you cut their phone lines so they can’t call the police

Work smarter not harder.

😄

Chips ahoy ice cream with cocoa pebbles today3

Then I would advise you to start with hack the box first :) There is explicit permission to hack the whole machine you spawn and it also is probably more mentally rewarding than bug bounty where you might find nothing

Careful, you’re gonna get sued for “defamation”

That's only if it's not true 🙂

I can SHOOT you a juicer one if you want

lmao

😄

I am finally a l33t haxor

https://tenor.com/view/haxor-gif-9997760

only disagree with the middle 2 tbh

Some people need more school honestly

Hello, sometimes I feel lonely when I start a CTF and I'd like to solve it in a duo or trio.

However, family life means I don't have a specific and regular time to play (it could be a weekday evening or a weekend morning).

Do you know if there's a kind of room where you can watch other players in a CTF with the goal of joining them and playing with them?

As you can see, my playing time is irregular, and even though I'd like to, I can't join a team for that reason. The idea is to play with the "current player."
Thanks! 🙂

@grok is this true?

Hello everybody new member here hope ya guys have a good day!

Guys, is there any software engineer here that also got CWES or CPTS?

I'm currently graduating at software engineer but I'm uncertain about which cert would help me the most (cjca, cwes, cpts).

Last year I tried CPTS and I couldn't get a single flag 😮‍💨 but now I understand more about web and all, and that got me more confident about trying CWES.

Anyone had the same experience or similar?

Hi

Is there someone who is good in name creation? :D

I christen thee "Toiletwaterdrinker"

:D

no legit we need to make a name for a cybersec community for financing from some org for startups/student projects but we are not creative enough to make something without buzzwords or something yk

I am lowkey considering switching to windows 11

Hello is there any hackers here ? Im looking to create a clan and work together for a project, dm me

no hackers here, only yappers

@terse dirge need some help

pls

so don't ask to ask

janne808 uses arch btw

bassochiave?

GUYS, IS THERE ANY WAY I CAN TRACK MY MOTHER'S LAPTOP? IT JUST GOT STOLEN, BUT THE THIEF PUTS IN MY MOTHER'S EMAIL ON HIS 2 PHONES. I HAD SIGNED OUT OF THOSE 2 PHONES AND MY MOTHER'S LAPTOP.

Dm @mortal forge for recovery

All your mom's passwords need changed

greetings people

I had only changed the only email she puts in that laptop

There's no point in tracking it, chasing thieves is a great way to get hurt

All of them need changed

You have to assume everything is compromised if you can't confirm what specifically was compromised

I can give it to the police

Does season 11 start on Saturday or is there an intermission period?

Submitted the feedback form

Unfortunately retrieving stolen property is a low priority

You have to take measures now to protect the data you have

Thankfully my mother said that email is the only one there but I think the thief was running and then he tried signing in while I was checking the email

Are you by any chance from the Balkans?

So he literally right after he signed it, I instantly signed it out

Nope

Sorry to hear that man that sucks. But remember better a stolen laptop than a stab wound

Do you know how to revoke active logon sessions and check MFA devices?

Attackers when they steal accounts will often make their own cellphone the MFA device for the account

I only know how to sign it out, I'm still learning how to hack, I'm literally a very very beginner guy

Das okie I was gonna offer

After I find that location, I can give it to the police

Sorry to hear about your mothers laptop! And sorry to ask this out of topic: but is this the right place to ask for hints for HTB academy exercises?

It depends on the email server you were using

#modules

It's ok

Does your mom's account have MFA?

Ahh thanks! Sorry about that, its was not on my channel list

If not, it might be time to add it

She has a thing where you need to put a passkey to verify that, that is your account

A lot of things use passkey

But her email was still able to be logged in from another guy's phone

But I changed the password and signed it out in like 2-10 minutes

Maybe install "Aegis" for Multi Factor Authentication and add it right now for your mothers account ( You can choose or take one the more experienced people here recommend )

Microsoft's MFA is fine too

So is googles

Wait, I really need you guys to answer this question, is my mother's Gmail account ok?

No

That's why I'm telling you to cover all accounts lol

But I changed it to a very long password and signed it out from all devices except my mother's phone

Remediating compromised accounts is part of my day to day job lol

Does not matter

But! I'm glad you did this second step 🙂

The thief won't be able to sign in again after I changed the password and signed it out all of the devices

When you "sign out of all devices" you're revoking any active logon session tokens to ensure the attackers session is nullified.

Right?

I signed it out one by one

Typically the order is "password reset, revoke logon sessions"

Literally when the phone says just now

But those are the correct steps to remediate a compromised account yes

Then how is my mother's account not safe?

Accounts plural

What's that?

Plural means more than one haha

I'm concerned about all accounts except Gmail get me?

The thief only knows my mother's email, how can he even access the email now

Like banking shit?

You can see all active / inactive sessions in the google security portal kill them all

and remove all devices wipe the whole thing

The thief has the computer so you have to assume everything the computer was used for

Is toast

And needs fixed

So thats Gmail, banking, and everything else that had a username and password

@gaunt hinge C1oud is right bro

Ok, that laptop is new, every Microsoft application was pirated, and the only email that was there is my mother's email. (My mother didn't log in to her Microsoft's email at all)

Woof lmao

And that email was only for work communication

Her work computer was stolen?

So, now, is it safe?

Her laptop used for work is stolen

Was it a BYOD thing

Bring your own device

No, she just needs a laptop for work because she doesn't have one

Sry bro, your mom is hacked now. Time to get a new one.

She literally bought it like 1 month ago

I'm asking if her laptop is owned by her or her workplace lol

Okay so it's hers?

Owned by her

Word

Word is not even signed it

I am saying "word" as in "word, I heard that"

Lmao

Ouh

But she had used LinkedIn on that email though

Anything that used that email needs to be reset

The odds that your mom reuses passwords is high

Yep

Compromises are very, very annoying to completely fix

Make a coffe bro, password manager, and get to work site by site

I will use a very different password

Not even different passwords, use MFA

Having a secondary layer of authentication skips you over a lot of headache

Your mom just has to be aware that "hey, only click accept on this notification if YOU are the one signing in and you recognize what you're signing in to"

Phishing is the number one initial access vector

Phishing isnt always bad. One time my spotify got hijacked, when I logged back in the dude had made some banger russian rap playlists

I feel like one could do this without losing their account access to a Russian dude lmao

So is my mother's email currently safe?

Also, if we know the laptop's serial number, can we track that?

The email address itself and inbox? Probably fine. What she used that email for? Still needs work

No

I would abandon hope of attempting to track the device

You need tracking software installed before it's stolen.

So it's not something you can fix "after it's too late"

She literally uses it for LinkedIn only, I had changed her LinkedIn password too

Then just stay vigilant for a while and monitor banking closely

Because the first thing they will go for is the money

All its ever about :/

true, you can setup with the bank that you get a notification for every transaction you need to approve it with fingerprint

There is no bank password in that laptop or email at all

I don't care

check with the bank and enable that option

Monitor your banking shit closely after an incident occurs lol

I was replying for this

It's one of those "better safe than sorry" type things

Ohh

I can't buy 1$ worth without approving it with the app

so they can f themselfs

Yep there's a lot of options available for fraud protection

when did the academy ranks happen

Very good advice ! @molten bobcat

A week or so ago

new pfp is cool

thanks wolo xD

I do this for a living

oh ok

was wondering wth the prodigy thing was

I can see you are skilled af ( Don't get it the wrong way I am just a noob )

i just spent 5 hours in a truck today because the guy let me join him on a sidequest whilst moving my stuff

it was glorious

country roads are so pretty

I feel like a nerd

check for sneaky email forwarding rules

I've just been doing this for a few years and try to help where I can

it just means you're accomplished 🔥

@molten bobcat Awesome that is also the reason I wanna get good at sysec

It just takes practice

because irl I can handle thieves but online you know

and htb found my no life spot haha

An unfortunate reality is that I show up when the damage is done and just prove how it was possible

sigh-ber security

Sigh bear

Cus all the dumb stuff you see will make you sigh

Good morning, folks. How's it going? What's everyone up to

academy was my excuse to not do boxes right now lol

i had sm fun

now ppl are going to be like - ah bc you're a study nerd

hru

Hello my friend ah what happens happens it's all part of some process

nah it means you're not stupid

😤

I'm stupid fr

oooh I definitely don't know about that one hahaha

YOU OF ALL PEOPLE DON'T GET TO SAY THAT ONE

Just waking up. Starting my own company today. I met someone yesterday who also has a bachelors in cybersecurity but can't find work. So we're going to team up. He's going to get clients and I'll do the work.

book smart and life stupid is like the worse combo

I go take shower

🧼

ooh good luck

Brainstorming what services we'll offer to start with

shhhh you're great don't worry

stinker :3

I'm not such a great pentester yet, so I might need to contract that out to someone capable.

i dont wanna hear you say you're life stupid after how you finished those rooms up @minor heart

aye kk

sir plz halp me recover my gf's instagram account

the irony in this statement

dms

I just never have free time and when I do, it's either study or um try some diy to fix broken things that ultimately fails

I would say handle all the legal stuff first

It is exceptionally important to have your own outlines and sows and all that and if there are certain constraints - should be in there

so maybe a lawyer if you're going to outsource anything

council is usually free

insurance i think is the other big one

I never started a business though

I'm so glad I rarely get these

Are the servers dying?

yes, all the servers

It says 100000 ms on all the regions for the vpn💀

Ok

Nice, best of luck! I'm curious to hear how it goes

@austere sinew

@austere sinew

WOLO

Ohh ok

Hey guys I'm a bit confused with pricing and access works, does the silver academy plan unlock the Pentester path for CPTS? Or do I need cubes to unlock that path?

It does yes

The silver annual, yes

Hey guys

How to unpack a memory dump on linux

you’re alive?!??!?

Unpack?

I've never seen a dump file that was compressed

I mean how to convert a memory dump i.e. lsass so I can see creds

Oh

Well dump files are gonna be .dmp files

You just need a tool that can read it

There is like some tool for it but I cant remember the name

I thought mimikatz had the capacity to pull creds from lsass memory?

Thanks! @jagged storm

I thought that was it's whole point

Yep

Yeah but mimikatz is not always evasive and sometimes u cant use it

Be advised that choke slamming the lsass process for a dump file is always noisy lmao

And if you can get a dump, you can likely just run mimikatz anyway

I was gonna say if you have the .dmp file surely there's a way to process it offline off the host

But .dmp files are large

What evasive way are you dumping lsass

Yeah forreal we have detections for anything getting a handle to LSASS

I'm just dumping it now but maybe later I will do more evasive methods

Unplug the disk ig

Im dead

oh

my condolences

Oh man, you're toast?

https://giphy.com/gifs/RespectiveCollective-funny-meme-bread-F8TEhwhmBZqWt9NJ02

Nah, that's @blazing bloom

Sup

Wait, don't we have a toasted toaster too?

https://giphy.com/gifs/toaster-the-brave-little-toasted-fXI281waabdCg

@limber arch

Holy heck. We have so many carb based people now.

https://tenor.com/view/carbs-carbohydrate-hydrate-hydration-hydrating-gif-19135234

https://giphy.com/gifs/movie-food-michael-cera-DbuwoWpHqN5F6

I just remembed this clip for no reason lol

https://giphy.com/gifs/cat-learns-intolerance-hXafx5jj9HVBe

Epic!!!

https://www.kkinstagram.com/reel/DV6wZKLDCT-/

Holy sh**, your website is wild as fuck. How long did it take you to develop it? Little dizzying but the layout and effects are out of the box and is a cool way to scroll through the website

1.5-2 weeks approx
Yoinked some open source/free elements and stuff ofcourse but ya

fuck

The "rotation" of the characters within the headers are super cool and the achievement scroll over effects kind of remind me of the Killer7 angels when they die

Would you consider linux-exploit-suggester better than linpeas regarding flagging kernel exploits? Have times where either of these tools is flagging stuff the other isnt

Both are last ditch effort tools, that are more likely to give you false positives than anything useful

the damn "congratulations"

"congratulations there is no reward for your hard work"

ye

i know that

informal/duplicate

Better luck next time

I have one critical pending

in another program

valid bug

I've been waiting for almost a month

:(( hopefully u get it

it can't be a dupe that time

it's too bad to be just there hanging in the wild

hopefully

otherwise I'll have to look for a job serving tables or something

Guys I am so sick of modules

I just want to hack something

Just been reading walls of text for the past week

nobody is stopping you

https://tenor.com/bUAOI.gif

Computer trash

Mossad red teamer

https://tenor.com/9cGp.gif

https://tenor.com/view/okay-then-gif-26630246

https://tenor.com/view/toast-gif-23358366

how do you "rankup" is it just machines or challenges and machines

Active machines and challenges

Active machines and challenges * for now

htb academy gives exp no ?

They're replacing this system soon.tm with the exp system

Yes, for the new system, not the old one, which is still in use

soon-actuallysoon-(reallysoon)-final-v4

there is +10 xp under the section im studying rn

Yeah both systems exist at once right now

We're talking about 2 different things lol

oh i see

mb

Chat, HR invited me to a “employee experience” meeting

Repeat the funny joke to hr

https://tenor.com/view/cry-sad-toy-story-woody-so-long-partner-gif-9797730

how do i answer

fuck

slide

https://giphy.com/gifs/onegreatforce-kid-slide-drift-dgZSywPxSlNeUc3BjG

good evening general

good morning

Night

anyone cannot spawn target on academy?

I cannot

Working now

Yeah mine just working too, thanks man

Heyy

I had a question for the better ones here

So i've been doing boxes for quite some time

and I realized that simply doing boxes and boxes again and again, reading writeups and leaving might not be the best way to learn

i have the same problem but i now focus on bounty hunting

its more challenging that boxes

I'm really eager to learn and climb my way up the difficulties but I'm facing trouble even at easy boxes. Sometimes it happens I simply don't take good notes or am lazy but sometimes I don't find the way. In those cases I was wondering how to get better. I found (someone gave me the link to) a blog post talking about taking the most from a box. The main idea I kept from it which applies to my case a lot is the post-root phase. Usually I just leave after root but the author was suggesting staying and

• study the exploit used to understand what was vulnerable
• search for more vulnerabilites and find other ways to get root if possible

I'm having trouble understanding how one would use their root access to find other exploits? Would you try simple recon to see what you could have missed from the root persepective (crons, user commands, services' configs and maybe user files or such)? Do you run every scan you can think of/run a linpeas and study the details of the answer?

I'm really wondering, that would be huge help if I could understand how to find other ways/ how you continue once root accessed

Ok

also from a note taking point of view i started taking global throwaway notes when doing a box: i write everything in separate files in obsidian that i then merge into one when done to note what was important in the writeup. What I was wondering is: sometimes I go back and forth between services when testing those for example, how do you handle that, take proper notes? What's your notes system?

https://tenor.com/view/patrick-spongebob-spongebob-meme-patrick-meme-dumb-patrick-gif-9974665538168463324

thank you

does that help you get better or force you organizing better?

I’ve witnessed so many kinda mad at that

I think it's normal to still not be comfortable resolving machines completely independently. Practice a lot and if you make mistakes, don't take it as a reason to give up, but to learn from them. I can assure you that anyone in this field, even the most experienced, learns new things every day and constantly improves 💪

WOLO

Hai hai

Hru donut

sleepy

I’m going to sleep

WHAT THE FUCK DO YOU WANT MATTHEW

Awh, sleep tight donut

MATTHEW

thx

🛌

Honk shoo

sleep timeee

honk?

https://tenor.com/view/di-goose-honk-honk-angry-honk-honk-gif-17648939470482040238

NO DONUT

sleep time

SHOO BEGONE TO SLEEP

gngngngngn

SWEET DREAMS

STAY AWAY FROM MY SANDWITCH

https://tenor.com/view/aditi-mittal-to-the-kitchen-order-instruction-command-gif-11840569

Sand witch eating sandwich

https://tenor.com/view/tf2-heavy-my-honest-reaction-gif-8870827506935116922

thanks for the encouraging message, i'm really wondering how to enumerate once root has been acquired but i appreciate the message

Post-exploitation is mostly only a thing in prolabs/certs

well... I was doing this box (kobold) and I don't want to spoil it to others but let's say I found more than one way to get in

what i was wondering is once you are root, maybe there is a faster way to enumerate all the possibilities to get there more easily

you are root after all

Yeah

you can look at all the configs

yeah ok so config files, just for the websites?

or config files for the box?

all

sorry im not trying to be rude just really understand

so you have website configs

there has to be a config file for the box you're trying to get, right?

like for the box dog a dog.conf or something?

It really depends, and that isn't necessarily going to get you the answer. From your question above, academy is the best place to get the knowledge you're looking for.

yeah i get website is not the only place to get ingo

yeah thx ill keep in mind the academy

The summary of all the pieces is what makes the "box", not the one specific individual config

If you don't understand an exploit, you're not going to be able to spot it, even with root.

ok i think i kind of get it

but then you really have to enumerate everything you can (config files for websites, crons, groups, users, services, ports, ...)?

Yessir

It's called an Audit

https://tenor.com/view/thanos-infinity-war-everything-avengers-gif-14066494

Some of the same stuff applies. Linpeas like you mention can be good. If you want some more fun, you could also look at installing an agent for log collection and finding the tracks from your exploit and or what other players are doing on a shared instance. Just be careful not to hamstring the intended path.

Knowledge is power

guys is it normal that i forget alot of things from modules ? at least modules that i dont like use

ohhh yes that's a good idea too, thx

Are you taking detailed notes

Think about it this way, every single one of these exploit checks is checking something by asking the system a question. Based on how the system responds we can make a determination.

Since this takes a while to ask a single question at a time

People often script

To have buttloads of questions asked

So determinations can be made

This is the logic behind winpeas and stuff

Linpeas

i am but like what i am forgetting is like the commands and such not the concept it self

I guess you could say that's the logic behind every script

Lol

Automation 🪄

sorry who are you answering?

i think you

That's fine. As long as you know where to go in your notes, that's what is important. Knowing where to get the information you need is more important than just memorizing commands.

You

I'm explaining how we get around the fact that.. boy howdy there's a lot of things to check

no its ok i get it haha, thanks

what i thought is: when i enumerated the box i found a few things, noted those and tested a few exploits. Then with some tests I got a way in but maybe i missed another way in, a quick way in or something. So maybe using linpeas as i did for the first way in will not solve it and maybe ill just find the same i found before really, i might think the same way i did before

The fun part is tricking the systems, decieving and cheating and breaking the system and bend it to your will 😉

Sometimes boxes will have more than one answer

^ That. I definitely can't keep everything in my head and look into my notes all the time.

Unintended paths exist

so maybe there's a way to look at the box differently once you're in to get all the answers

i think ill test config files, it seems like a good idea

After the box retires a public writeup is released you can compare to!

That way you can know for a fact "did I do this right?"

though this way if you did it the right way you don't really find the wrong way, do you?

Also, be realistic with yourself. It takes awhile to find unintended paths in something that is suppose to only have one path in

There may be, but it really depends on the method that was set up. If you don't know the method, you probably aren't even going to be able to spot a misconfiguration.

Depends if you keep looking

that's good to know

Just an option for boxes you can't solve and stuff

yeah ok that makes a lot of sense

Eventually the answer comes out and you can see what or why you missed it

that's the question looking for what, but i have a better idea now thx

It's best to put a lot of time into studying in academy, so you at least know the basic flow, and what you might need to research, if you don't know.

some of my friends they dont enjoy a machine anymore once they have beat it, got the root and now thats past. So in their case they probably wont be looking for alternative paths other than the one they took

There's a rhythm to it all

Find yo beat

yeah i get that it's not as fun but i think it's a good way to improve

yeah ok. That works, thx

https://tenor.com/view/dance-monkey-dddd-gif-16453062350115083247

Meanwhile some of us psychopaths like to dissect the attack path into the smallest details

Anyone here likes astrology?

and realy go deep

https://tenor.com/view/no-officespace-disgust-nope-noman-gif-4702588

you mean study why it works and what made it possible?

Yes, go even depper than that!

The zelda stories of old go hard man

Like that shit is straight dark

yeah that helps a lot. For the first time i took a lot of notes for kobold, found 2 unintended ways and tried understanding the exploits, i find myself understanding the box a lot more, it's quite nice

as if i really mastered the box

almost

what you mean almost, you spent a lot of work on it, your allowed to brag

you did master kobold

be proud

Yeah i would never think about even downplaying anyone who spent time working on a challenge

Those shits are hard bruv

lmao yeah good summary

thanks, i am

Sometimes i even have trouble following ippsec on his solutions

theres not necessarily always alternative paths either. Usually theyre unintended if so

suppose i finished a box that is not released yet, is it allowed to discuss it with other people who finished it too?

Privately

You can do whatever you want if you dont snitch on yourself

Gotta confirm they did it, too

Usually what happends is, someone finds an unintended way thats way easier then the intended path, gets root and never looks at the machine again. So they will never know the intended way. thats what im saying

that has happened to me before

Subdomains subdomains give me your subdomains

so like you ask for their profile you give yours and if both have solved it its fine, if someone snitches on you you won't have problems?

Dont think too hard about it the world is free and the only rule is there are no rules!

lmao

You can search anyone on htb lol

you're the rock from eveything, everywhere, all at once?

im really trying to not get banned from htb

i like the platform and it would be a shame

Eat a pikachu for dinner.

Cheating is so easy that if someone is going to great lengths to fake completeing a box just to tease an answer out of you then fuck it they can have the answer

Real

Nah, report always. Reduce the trash.

I promise you the cheaters arent out here trying to scam box completers into slipping them answers

@pure terrace You can search players profiles on the website, so you check if they completed it already if you dont wanna leak anything unintentionally

Theres no point in cheating in HTB. Even if you get a job from your rank, you wont be able to cheat in your job.

im just saying if someone gives you the profile of someone else then can you be blamed for leaking answers, if you didn't know?

Nobody is getting a job from rank lol

You never know

lmao yeah

How would they do that, you can verify your profile on discored

Maybe not people on discord but there are job listing looking for ranks

No. It's far too easy to fake rank. Absolutely no place worth a damn cares lol

Like theyll ask for hacker and up

@pure terrace if you click my name here, and u see "verified" on roles, that means my discord is connected to my profile

so then you know, its me

That's just through the platform, to stop spammers

ohhhhh i forgot about that

Imagine getting 10k applications from skids

Too easy? Really? You think people are just going through the motions to fake a rank? You know how much dedication that takes?

thanks a lot, that solves it

hey im not verified

damn

None at all? lol

i had vip for more than 2 months and am still not verified haha

Must be something you missed

yep

There's usually a writeup for active boxes in a dozen different places, within the first few hours.

https://tenor.com/view/rat-mouse-hamster-cheese-munch-gif-3597455348738038110

How many people are on the platform active solving challenges

Isnt it like 2000

At best.

bruh I see it all the time

Yeah, challenges are not nearly as popular. Maybe more will be with the new rank system.

theres people in this chat now I know faked rank

POLICE THEY BE WATCHING ME. EVERYDAY THEY CLOCKING ME.

Not me i didnt fake rank that shit took me actual days

No not days

I didnt say you

dont self report lmao

A whole fucking week just for one box

https://tenor.com/view/tf2spy-he-could-be-any-one-of-us-gif-22141763

An easy one 😂

whats fake rank

Mods asleep post coelacanth

cheaters

Dumpers

cheating is more common the higher up in ranks you go

One one occasion i did see a writeup on how to solve one challenge but i didnt even understand it. I went straight to here just to even ask wtf was going on.

how tasty when fried with some lemon juice on top?

are you supposed to link discord to htb from #social-profiles in settings?

You fighting an armed robbery, shawty, that's what they offering.

I worry about choosing the wrong box and it goes inactive after so long

I spent a weekend in a cheater discord server where Id just go down the user list, see them joined to htb with the same discord account. screenshot their activity supporting cheating and then report them.

A LOT of the cheaters I reported were top 100 leaderboard peeps

What?!!

bruh

God whyy would people do that

That's why I trust hacker rank more than higher ranks. A cheater won't stop at hacker lol

cheating like the season or the machines in general?

You get literally fuck all out of the HTB rank

while I believe you, it baffles me why you care

ngl it's not that astonnishing, someone i know is cheating for a fact is top 40 undisturbed and his profile is veeery weird

I was bored and trying to prove a point to someone at the time

like he started cysec without knowing how to connect a vpn but climbed to top 100 in less than 6 months

epeen, just the same as people cheat in video games

hey, i need some advice
been learning cyber security and so far i have a good grasp on the fundamentals, but i haven't really learned any coding language very well. i've coded since i was young but im kind of wondering if i should go learn C or Python.

Depends on what you're learning, and what you want to do. For starting out with pentesting, you really only need bash/powershell

You would also see people with super high rank get stuck on really easy modules for certs lol

just become a cop bro

perfect job for policing

lmao

WHY would peolle pay on a platform to cheat on it

that's just a shame relaly

but a bit fun too

i am just wanting to do pentesting and CTFs. rn im just refreshing my memory on a few key topics since i switched to hackthebox from a competitor and need to regain my footing within cyber.

I remember when an elite hacker rank came into #cpts for help with the metasploit module

Flex fake internet points.

tbf I dont think anybody is paying to cheat on htb

if they are theyre extra stupid and I have a bridge to sell

Hehe. I remember a higher rank than that at one point that couldn't troubleshoot openVPN connection issues.

Fuckkk that's brutal

Lmaooo

You don't need to do much/any programming. Some lite python.

so just for the record dont learn coding rn because you want to (unless you have the time to spare beside learning pentesting) learn when you need to , like when you reach the point where you exploit websites you will start to learn java and html and such
when you reach the point where you want to build your own tools and automate things you will start learning pyhton for that i think you already learning bash or powershell as these are like the basics

Okay i can see someone asking for help on how to attach a process to another in metasploit, i mean that i could see happening bevause i forgot how to do that myself

Like I mean the supper basic, "Do you have more than one instance running? Are you on the right lab? etc."

Its a relatively advanced technique

alrighty tysm

But if its genrating some payload like you should be a greay name

ahhh i see, thank you!
i've done a litle bit of XSS and thereby learnt a tiny bit of javascript, but im sure down the line it'll come back 😁