#resources

Thank you!!

Gave +1 Rep to @fast wraith

https://exploitation.ashemery.com

Reverse malware first, develop second

hiya all. just starting the thm. running non-kali linux locally. recommendations on installing tooling locally or creating a dedicated kali instance to do all the things from?

Now why would you want to do a thing like that? 👀

learnin? am not gonna do anythin bad..

sus

:(

There are precisely no legitimate uses for malware if you're not a professional redteamer developing tooling, and even then that's a very specific class of malicious software developed by professionals for use in authorised situations.

It's something that can be discussed in #exploit-and-mal-studies, but nowhere else in here.

oh, i understand ur worry..sorry..just a interest for learnin. am never gonna do anything bad with it.. and for the channel, sure sorry again

So no one can write some malware to gain experience on actually implementing injection/hooking/evasion techniques, so if that person does land a red team job in the future, they can have experience in offensive tooling and be of more value? Plus, u can build more knowledge on actually using the msdn docs for various api functions used in different classes of malware. Their is more to just reading what the api functions does. If u can actually re implement a specific technique using the api docs, and some googling, then thats more valuable knowledge for yourself and a job in red team or security research down the line.

You can do whatever you like -- you just can't talk about it in here 🤷‍♂️

Be aware though: it's illegal to develop malicious software in many jurisdictions -- even without intent to distribute or deploy.

Sooooooo, you had better have a bloody good reason for it if anyone comes calling

Your best bet is to look into building offensive tooling rather than traditional malware -- then you have a plausible reason if you are a student, in industry, or looking to enter industry. Regardless though, if you're discussing it in this server, it goes into the specific channel that we have set up for it. There are way too many malicious skiddies around for us to have the liability of y'all discussing it publicly.

Correct. Nothing wrong with what you stated on the legal side of things. Just feel like when diving into a particular subject in cyber besides grc, if u aren’t actually doing any hands on and re implementing techniques for learning purposes, then how does one actually understand the subject matter come a real engagement

Their is a channel for this topic here?

#exploit-and-mal-studies -- it's restricted under a few different roles (0xD, Throwback, OSCP, eCPPT, and a few other of the entry level certs).

https://medium.com/@openmohan/dns-basics-and-building-simple-dns-server-in-go-6cb8e1cfe461

https://www.youtube.com/playlist?list=PLJQHPJLj_SQatUsJy3O4k-VQlllquDmDr

requesting if anyone has a sane and practical implementation of zettelkasten in Obsidian - I've read the top articles that come up in Google and watched Obsidian's video on the subject but it's still a bit confusing

Confused regarding? Zettelkasten or obsidian?

zettelkasten, obsidian is easy enough to understand

Zettelkasten is ez too, if you prefer book, i would suggest How to Take Smart Notes: One Simple Technique to Boost Writing, Learning and Thinking – for Students, Academics and Nonfiction Book Writers

Or just watch/read summary of it. It isn't specifically for obsidian, but it's core is zattelkasten method

I would recommend it

https://twitter.com/Flangvik/status/1434579985528934400

thanks!

lmao

omg the lols of that type of a failure

I wouldn't worry about it- organizing your notes in a tree structure is basically the same thing. Only more sane to manage.

true, its starting to get a little annoying having huge tree structures to scroll through, esp since some structures are like 5 folders deep

and now I'm in the process of centralizing all of my notes from various cherrytree DBs and multiple Obsidian vaults, figured I could try something different

I've had good luck using Trilium - as much as I loathe JS and Electron apps, it does have most of the features I want when taking notes

Could I get the OSCP role? I got mine about a week ago but I didn’t realize it would also give access to another channel, so I didn’t bother asking for the role. I’d be happy to DM proof 😊

I'll trust ya. Congrats 🙂

Thank you! 😄

Does anyone have good list of burpsuite (pro included) extensions used in CTF and bugbounty context?

#room-hints or #room-help are more likely to help you then here and also specifying what room and task you are on will help too

i don't think they're asking for help with a room, just in general to help them when doing any room/bb

maybe ask in #bug-bounty ? I think most people use burpsuite free or owasp zap

Alright!

Yup

@hushed estuary ⬆️ scam link

shouldn't it also be deleted? 🤔

the message I mean

¯_(ツ)_/¯

@prisma bison could you delete the message in here??? and the other places it is in???

https://www.eff.org/deeplinks/2021/09/introducing-apkeep-eff-threat-labs-new-apk-downloader

https://www.trustedsec.com/blog/obsidian-taming-a-collective-consciousness/?hss_channel=tw-403811306

Anyone knows about an academic paper about web hacking/security??

With a credible author

Is this for an assignment?

Yes

Are you sure it wouldn't be cheating if we gave you some?

Try searching with Google Scholar or asking for help at your school/college/university library

Wait is that cheating?

What about names of the authors

Would that be considered as cheating?

Also every time google scholar I get like pdf where I have to buy them

Some academic journals do require buy-in; if you connect to google scholar through your university wifi or vpn, you should have access to those.

Oh alright thank you

https://github.com/brimdata/brim

Hey guys. I threw together a small nmap tutorial/cheatsheet. It might be useful if you're going through the Furthernmap room. It covers basic switches, scripting and scanning types. Hope this helps

Thats very nice, thanks!

Gave +1 Rep to @boreal ermine

Thank you sm

Gave +1 Rep to @boreal ermine

https://cybersecuritynews.com/owasp-top-10-2021/

https://www.humblebundle.com/software/kubernetes-with-pluralsight-software

https://www.amazoncareerday.com/regions?share=true

https://owasp.org/Top10/ for a bit more context (Still in draft for now)

I like these changes

I didn't see that link earlier thank y0u

Gave +1 Rep to @hushed estuary

Bot too strong

haha

it tkes the word thank

https://www.researchrabbit.ai/

Any blog/article for note taking tips? I am kinda new to reports and notes so it would be helpful.
Tried finding but haven't caught something useful yet

https://twitter.com/cyberdefensemag/status/1436336235551809546?s=19

@odd quest ^

it takes trial and error to find a method that works for you, I recently integrated Zettelkasten into my note-taking which has been pretty handy

the biggest take-away for me is that you just need to write things down, have a daily note that you just always have open, end of the day pull out important bits you like and see how you can file and categorize those important bits

Yeah
Thats one hard part of it
Regularly updating them and categorizing them frequently and efficiently

@spiral zodiac Muir deleted it because "it's an n-day vuln -- we probably shouldn't be directly advertising code for it".
If something is deleted, probably best not to repost it?

Oh it was muir he could have told me smh, but okay I understand why it was deleted

Yeah, sorry, did it on mobile in a hurry ♥️

https://twitter.com/metasploit/status/1437439337931628555

https://github.com/brightio/penelope

I try this tool it require python 3.8 or later
Upgrade your shell automatically. It sounds interesting.

https://github.com/OWASP/Nettacker

https://www.thehacker.recipes/

AD Pentest Mindmap - by Mayfly

https://twitter.com/m4yfly/status/1437453135883157504

solid explanation of AXFR
https://cr.yp.to/djbdns/axfr-notes.html

Upgrade shell??

Found something interesting from a IT news website.
It's a leak of a Ransomware group affiliate who was let's say not very happy and fed up by them, so he leaked there total playbook.
It's kinda interesting to see how a group access and pivots through the network, exfiltrates data, and many more.
It's also interesting for understanding Attacks against AD, Kerberoasting, and many more.
The catch is, its purely on Russian, so a tool like Deepl can come in handy if needed.
//It's purely for educational purposes only//.
Link to the documents:
https://github.com/ForbiddenProgrammer/conti-pentester-guide-leak

I hope it's not against the Server rules, to link this resource.
-R1ot

I assume he means make it interactive and stable.

oh like an automatic python -c bin bash thing??

Time 2 update

https://www.bleepingcomputer.com/news/security/kali-linux-20213-released-with-new-pentest-tools-improvements/

I think so? Haven't tested it.

This is great read https://kerkour.com/blog/shellcode-in-rust/

AWSome Day Online Conference is a free, one-day cloud training delivered by AWS
https://aws.amazon.com/events/awsome-day/awsome-day-online/?trkCampaign=awsome-day-online&trk=
Register (before 30 Sep) to participate if you like 🙂

[Replying to the now deleted message] I believe this is a scam going around the cybersec discords recently

It's everywhere

I hope it's not another academic project gone wrong like that one uni injecting crafted fake vulnerabilities to the linux kernel github repo to test the effectiveness of open source code audit practices.

maybe you should be clear that AWS is not the scam 🙂

Oops 😂

no its ok, just wanted to make sure others knew the AWS is a valid link and not a scam

oh definitely

-.-

^

https://gist.github.com/TarlogicSecurity/2f221924fef8c14a1d8e29f3cb5c5c4a

https://www.freecodecamp.org/news/linux-essentials-for-hackers/

https://twitter.com/OscarAkaElvis/status/1435154925743378433

https://github.com/CyberSecurityUP/OSCE-Complete-Guide

👍

https://github.com/r0r0x-xx/OSEP-Pre

https://www.fireeye.com/blog/threat-research/2021/03/attacker-use-of-windows-background-intelligent-transfer-service.html
https://docs.microsoft.com/en-us/windows/win32/bits/background-intelligent-transfer-service-portal

https://www.sans.org/tools/ez-tools/

https://github.com/security-prince/PWK-OSCP-Preparation-Roadmap

Can I get any Networking related stuff here

https://github.com/Aksheet10/Cyber-security-resources/blob/main/README.md#networking check this out 😁

Hey any resources about Threat Intelligence infrastructure ?

great bash shell reference guide
https://github.com/jlevy/the-art-of-command-line

https://github.com/pentest-tools/shad0w

https://github.com/3ndG4me/torphantom

https://github.com/hephaest0s/usbkill

https://casvancooten.com/posts/2021/08/building-a-c2-implant-in-nim-considerations-and-lessons-learned/

^ good article, the author is one of my friends

damn

nice frands

https://www.makeuseof.com/how-to-learn-python-for-free/ has some useful links to free courses.

Also i found this pretty useful too https://danielmiessler.com/blog/build-successful-infosec-career/

a sane way to grep through code!
https://github.com/returntocorp/semgrep

What are your favorite SQL injection tools/scripts/etc. ?

https://casvancooten.com/posts/2020/11/windows-active-directory-exploitation-cheat-sheet-and-command-reference/

Should introduce me, I'm a fan 🙂

Hello

You are from Pakistan?

https://devopswithdocker.com/

https://www.tradepub.com/form/hunting-cyber-criminals-a-hackers-guide-to-online-intelligence-gathering-tools-and-techniques-24.00-value-free-for-a-limited-time/w_wile339/prgm.cgi?sr=hicat&_t=hicat:1091

Great read ^^^

Of note: Vinny is not afraid 😄

https://www.fortinet.com/training/cybersecurity-professionals#advanced-training

https://twitter.com/joehelle/status/1440422404799406090

Thanks a bunch for sharing, Freddie! I missed it last time.

Gave +1 Rep to @glacial gazelle

https://twitter.com/parsan26/status/1439535368173277185?s=20

https://www.rand.org/pubs/research_reports/RR2713.html

@odd quest ^

https://www.reddit.com/r/tryhackme/comments/pujd1c/heres_yours_weekly_cyber_news_recap/

I don't want to be rude but there isn't much of a guide in that blog post.

https://hackerstop.org/mobilepentesting

https://twitter.com/mubix/status/1441856493364580355

https://youtube.com/playlist?list=PLBf0hzazHTGOepimcP15eS6Y-aR4m6ql3

thnks

Ive written some random thing, If some kind soul reviews it Ill be grateful
https://hamzawinix.com/zathura_in_wsl/

yoh, I use it on linux, pog :v. Its the best pdf viewer imo

so what do u think I got right and what did I get wrong in the article ?
is there something you would change ?

its pretty straight forward, altho the assumption of VcXsrv being installed is bold its understandable, some people might be wondering about why you export DISPLAY on the zathurarc but I think people who want zathura on their linux are aware of why cuz they worked with zathura previously. another note is the set sandbox none, I would explain a bit better, for the rest it seems a cool walkthrough for a problem I didnt know there was an answer

Thx for the feedback @jagged haven

thank you for the article

Gave +1 Rep to @last wolf

https://www.youtube.com/watch?v=OigKnI68Sfo

@hushed estuary

hmm

Likely not around at 3 am

Hey guys, I've been enjoying writing while I study this PEH course, and thought my notes may be useful to others. I've written my own version of the teaching, not verbatim, in case that worries anyone!
Critiques and comments always welcome too 🙂
https://heavenly-nape-4b6.notion.site/Practical-Ethical-Hacking-The-Cyber-Mentor-Udemy-Course-02b07014b6eb4695bbcd3b423f7e5325

that is nice!

https://github.com/taielab/awesome-hacking-lists
Big archive of applications.. Uhh... nothing else to say, it takes like 1 minute to scroll all the way down

@cobalt lily
https://github.com/hasherezade/malware_training_vol1

👍

"The course is accessible for FREE right now on UDEMY with the code "LLS10K" as a part of the fundraiser I'm doing with them. If you have ever wanted to donate to me, buy me coffee/food, or just support me, please take the time to donate it to LLS instead! https://pages.lls.org/ltn/sac/sacr21/BSadeghipour"

https://www.udemy.com/course/intro-to-bug-bounty-by-nahamsec/?couponCode=LLS10K

Freddie coming in clutch.

At this point, I've never bought a course on Udemy but my library is packed.

https://jc01.ninja/pwdump/
Hate messing with meterpreter hashdumps or impacket secretsdump pwdump format? Try this
Spits out a hashdump that's ready for John to use immediately, or hashcat to use with the --user option

that's actually quite useful, bookmarked

I wonder if I can break it somehow

Bad.

It's all clientside but it's not very robust

https://infosecstreams.github.io/

wow dark is there 🤔

pls stream minecraft again dark kthnxbye

Hello Toaster

Can you also add the mode for JTR/Hashcat? Or the command itself so user can just copy paste?

No, I cannot

Because I don't want to add fields to enter wordlists and hashfile locations and stuff like that

https://csrc.nist.gov/publications/detail/sp/800-204c/draft

from where can i start?
i am new
to hacking
pls
help
(:

started on tryhackme.com

hey :) give #start-here a read through to help you get started

ESET's T2 Threat Report
https://www.welivesecurity.com/2021/09/30/eset-threat-report-t22021/

https://www.reddit.com/r/tryhackme/comments/pz7pqq/weekly_cybernews_recap_is_ready_to_be_read/

Hey, have any of you guys taken the Cisco course about networking? If so, is it worth it?

https://hackerstop.org/

@raw ice i have went through all of the old CCNA/CCNP/CCIE RS track and I can say that professionally it will open a ton of doors, however, for cyber security IMHO you will not get much value past the CCNP level certs. The OSCP and CISSP is going to get you past the HR gatekeepers at that point.

https://techvomit.net/web-application-penetration-testing-notes/

http://www.securityidiots.com/

can i dm @tepid patio ?

ok 🙂

How to configure burp suite with tor for better anonymity
https://youtu.be/uGyKfeJBDbw

@next marlin Hey Man 🙂 Not seen you here before 🙂

are you a ccie or did you just go through the training?

@night ether held CCIE RS until it changed to EI in 2020 working on getting my collaboration to re-up.

daaaamn huge brain gg

Nah huge brain would of reupped before covid hit and testing became a PITA

CCIE when?

my dumbass can't even do ccnp yet

CCNP big brain

I keep trying to do CCNA with Mike Andersons course but get bored after a video or 2

@night ether CCNP isn’t that bad, the TS exam is so so good at learning the material you need. If you can identify what’s broken and how to fix it you are we well on your way to passing the rest.

gotta use jeremy and keith

ah i'm gonna be doing security, not enterprise

don't do networking anymore so don't see the need of going any further than ccna r&s

Makes sense.

@night ether from what my colleagues have told me you will get a ton more mileage out of OSCP or CISSP unless you are trying to pigeon hole into Cisco security

yeah i'm doing oscp too (already failed once but will try again soon 🤪 ) - i just really like the cisco side of things

as well as the guys the write the official study guides for ccna/ccnp, the content and the way they phrase it is sooooo good

Nice! Good luck my friend!

I just started down the OSCP path been working on proving grounds and THM. PG was a bit too hard for me starting out, THM fit that middle e ground nicely.

who dey?

awesome :) are you planning on shifting into security? or do you just like it as a hobby? (also let's continue in #infosec-general to stop flooding the #resources channel)

from cbt nuggets; jeremy cioara and keith barker

hmm okay I look, thanks 😄

I have the CCNA R&S, yes this one adds a lot of value as it will give you a solid networking foundation

CCNP and CCIE are overkill unless you want to focus on network security

On a side note, the CCIE is currently free if you have the brains for that.

que

where did you see that?

Hold up. I'll link it.

Heard it first from David Bombal.
https://learningnetwork.cisco.com/s/article/byod-mobile-labs-overview

oo

that's cool

you still need the core exam though for it

ie. the core ccnp for that track

Mhm. Pretty sad otherwise I would've signed up. Never look a gift horse in the mouth.

https://hunter2.gitbook.io/darthsidious

Non-monetary self promo 👀 But PyWhat 4.1.0 Bug Bounty Edition™️ just released 🥳

Now with:

• 69 new regex for bug bounties 😏
• Supports UNIX pipes (curl abc.xyz | pywhat) 🍕
• New bug bounty mode designed to work with your flows 🔥

https://github.com/bee-san/pyWhat

Hello, does anyone have good recommendations for C? Crash course, practical, I'll take it 😄

freeCodeCamp got me through my Operating Systems course, but it definitely is intended for people just learning to program
https://youtu.be/KJgsSFOSQv0

Isn't this simmilar to CipHey?

Anyone that has given Security+ 601 can recommend which book to go with?

Thanks so much! That works for me 😄

Gave +1 Rep to @orchid basin

I'm doing very similar -- OS & embedded systems so 😳

I made the mistake of taking my OS class right after I had my Programming Fundamentals/Java course without knowing anything about architecture, memory, etc so a lot of it went over my head

https://2020.romhack.io/dl-2020/RH2020-slides-Cocomazzi.pdf

https://www.youtube.com/watch?v=tUVBW3e8P-s

pretty great opportunity to earn some free certifications and education (A+, Security+, Cisco CyberOps, plus others) if you qualify - program is supported by the NSA

https://www.pnw.edu/cybersecurity/cwct/

Certs as in vouchers? Awesome.

Does anyone know good ansible courses?

@zealous void I don’t know about courses, but this book is amazing and helped me learn Ansible.

The best book for 'intro to ansible' that I've found is the pearson IT cert guide for the RHCEv8

Thank you

Gave +1 Rep to @jagged tiger

Thank you

@calm ermine

nice typo squatting huh

l vs i

good try

heh

also uhh @hushed estuary

check another channel

hmm?

nitro scam spam

ah

Is it ever gonna end?

nope

did Esqy right-click ban?

probably

it was a good typo squatting attempt should have tried a homograph attack

HEHEHEHE

lets talk in #general instead instead of here 😛

how widely used is Ansible? Looks really useful Wondering if I should get across it.

It’s pretty popular. We use it it at work to set up firewalls, Selinux, nginx, and other stuff and it keeps things nice and consistent.

Ansible is very widespread. Especially since the only real prerequisite is that a managed server has python3 installed

Consistent is good. I'll add that book to my tbr.

https://www.youtube.com/watch?v=th_S0zXthrg

https://www.reddit.com/r/tryhackme/comments/q3xbto/weekly_cyber_news_recap/

Does anyone have recommendations for OSCP/real-world machines to practice on? I think I've done all the ones Tryhackme has to offer, and all I have left are the straight up CTF machines.

hmm

oscp and real world are totally different so which are you after

If I have to choose, then OSCP.

I just figured real-world would be closer to OSCP than CTF

Real world infra pentesting is mainly AD

There is no AD in the OSCP exam

Or SCADA/ICS/IOT for that matter

Which THM machines have you done?

A lot of them. I can go look and make a list. I even did a good amount of CTF machines before I got the feeling that it wasn't really helping me.

Good point on this

I did the Pentest and CompTia+ paths, so all the machines associated with those

https://tryhackme.com/room/yotjf

That's about as close to an OSCP exam machine as you get in terms of style -- although not in terms of content (for obvious reasons)

If you can do that in under 4 hours, you should be good to go

Right on, thank you very much.

I'm actually getting an error going to that link

I'll try manually searching

Weird, can't find it

Is it this https://tryhackme.com/room/yearofthejellyfish
@topaz gulch ?

... Yes

Please ignore my inability to remember room codes for my own boxes...

Lol

No worries, thanks for the suggestion.

https://www.poplabsec.com/attack-apache-and-php-5-3-metasploitable/

I don't know if the course is worth it but it's free so here it is :

https://www.udemy.com/course/learn-digital-forensics-beginner-to-advanced-2021/ with the code DIGITALFORENSICSFREE

Hey, I just published a list of resources I found/used in my cybersecurity journey, might be useful to some of you:

https://github.com/W3rni0/W3rni0-awesome-resources

Eol. Php

Thanks @shut ferry

Gave +1 Rep to @spare finch

PNG -> 89 50 4E 47 0D 0A 1A 0A

ZIP FILE -> 50 4B 03 04 or 50 4B 05 06

MAGIC BYTE

https://en.wikipedia.org/wiki/List_of_file_signatures

@light crystal 🤔

anytime

ah ty

Gave +1 Rep to @glacial gazelle

https://www.udemy.com/course/bug-bounty-hunting-with-burp-suite/?couponCode=TRYTSOMETHINGNEW

thanks @crystal slate

Gave +1 Rep to @crystal slate

oi, anyone have some UK based cyber sec online store they suggest for some cheap kit to dick around with?

https://0xrick.github.io/lists/stego/

https://github.com/vdjagilev/nmap2md

@mod

Nice resource @glacial gazelle btw, congrattzz

swan u already have things 🤣

https://developer.microsoft.com/en-us/windows/downloads/virtual-machines/
Grab a pre-built Windows VM for dev stuff. Comes with Visual Studio, WSL, etc.
Free, licensed for up to 30 days. Get an new VM after it expires.

Can someone link me up with some resources to create VMs

You can find some more from the internet but these two are also good if you want to create a box on THM.
https://www.youtube.com/watch?v=2qUWfrqAwdI
https://www.youtube.com/watch?v=XyEmZUpNVcI

Thanks a lot

Can anyone suggest how can i improve my scripting? Like any practice platform or something?

https://wrongbaud.github.io/posts/ghidra-training/

There are a good amount of websites pinned in the #programming channel for coding challenges. But, you could also always try and make autopwn scripts for boxes you've already completed. Or try and recreate challenges you've seen in the language you want to practice.

One of the things I do a lot is redo anything I'm doing in burpsuite repeater using Python. If I do it right, it's probably faster

Will sure do. Thanks for the info

Gave +1 Rep to @orchid basin

try solving challenges

https://rosettacode.org/wiki/Category:Programming_Tasks

Seems pretty interesting
Thanks

Gave +1 Rep to @light crystal

https://i.blackhat.com/us-18/Wed-August-8/us-18-Guri-AirGap.pdf
Attacks on airgapped infra

https://infinitelogins.com/2020/02/22/how-to-brute-force-websites-using-hydra/

Quick trick to safely use netcat on low ports without sudo.
Capabilities are like SUID but more granular, you can assign specific permissions like binding to low ports.

iirc kali did something so non root users can bind to ports less than 1024

Huh, that must be the version up from me

I believe it's a parameter when compiling the kernel

Initially I thought Kali used authbind for this purpose, but after a bit of research I found that they modified a file /usr/src/your-kernel/include/net/sock.h

They changed this line which pretty much takes care of everything from there:

#define PROT_SOCK   0

The default value of PROT_SOCK is 1024 which is the normal port bind limit.

You can also change that parameter at runtime using sysctl, sysctl -w net.ipv4.ip_unprivileged_port_start=0

Capabilities are also great though

Oh yeah for sure it's better to use caps over system-wide so you can have finer control

Also so you don't introduce security issues same thing goes for disabling aslr you should never disable it system wide and instead use setarch

https://www.sans.org/blog/the-ultimate-list-of-sans-cheat-sheets/

What is caps?

He means capabilities

https://github.com/SDToropov/PortScope

For scan open ports

!rule 11

Rule 11: No distribution of illegally obtained materials within the discord. Do not pirate books in #bookclub. This also applies to classified (or potentially classified) materials, which should also not be posted in the server.

@shut ferryWhich part of that was difficult to understand?

https://youtube.com/playlist?list=PLT98CRl2KxKHgBWIp7XBwVjGf6dmOCj98

Thanks a bunch.🙏

Gave +1 Rep to @night ether

@everyone Happy Cybersecurity Awareness Month!

To help generate more interest in the security field and hopefully help close the security job gap, we are giving away our best-selling Practical Ethical Hacking course. Expires at 3:00pm EST on 10/20/2021. See image for code.

https://academy.tcm-sec.com/p/practical-ethical-hacking-the-complete-course

^free PEH course

from TCMs server

Fortunately everyone ping is disabled

The site is under maintenance, I guess?

Yep haha. I copied the msg from their Disocrd server

https://academy.tcm-sec.com/p/practical-ethical-hacking-the-complete-course

Coupon code- SECURITYAWARENESS
Will work till 3PM EST on 20th October 2021
Image

Is anyone have this materials

Which one

all of them

https://tenor.com/view/elmo-burn-gif-5195241

https://owasp.org/www-project-web-security-testing-guide/stable/

Hi, I want to learn how to create/analyze Malware. I'm doing this course on tryhackme https://tryhackme.com/room/malmalintroductory. I'd be happy to know what other resources are

On the search page, https://tryhackme.com/hacktivities?tab=search, search for malware 🙂

newest phrack issue from a couple weeks ago
http://phrack.org/issues/70/1.html#article

How to Take Notes Like a 1337 Hecker

• It is important to note, haha note get it, that even with all of the solutions and new and flashy tools available for note taking, your own note taking should be very indiviualized and meet your needs.
• These resources should also be prefaced by saying that I am a heavily biased towards obsidian, therefore most of my resources are centered around Obsidian, but can be applied anywhere. I will attempt to keep this updated as I encounter and collect other useful links
• The first step to effective note taking is to identify what you need and why you need it,
• From the LYT PKM Kit,

You don't need any of this. Just make notes and start writing. Worry about structure later.

• Moving on from why and how to begin effectively taking notes lets talk about resources to get there.
• Note-Taking Platforms by Category
  • Mind-Style Platforms
    • Trillium
    • Obsidian
    • Evernote
    • Roam
  • Automated/Synced Platforms
    • Jupyter
    • Joplin
  • Straight to the Point/Node-based Platforms
    • Notion
    • One Note
    • Cherry Tree
  • Unique platforms
    • Compendium Cards
• Syntaxes and Languages to take notes
  • LaTeX
  • Markdown
  • HTML
  • MathJax
  • Mermaid
  • Just straight up notes dawg

Pandoc doesnt fit under this category but can be really helpful for converison

• Personal Knowledge Management Resources
  • Zettelkasten
  • LYT - Link Your Thinking
  • Evernote
  • PARA
  • IMF
• Research and Academia Resources
  • Zotero
  • Research Rabbit
• Random Helpful Links I Utilize
  • https://www.icl.utk.edu/~mgates3/docs/latex.pdf
  • http://thedocly.io/
  • https://math.meta.stackexchange.com/questions/5020/mathjax-basic-tutorial-and-quick-reference
  • https://mathpix.com/
  • https://www.youtube.com/channel/UCfhSB16X9MXhzSFe_H7XbHg
  • https://forum.obsidian.md/t/para-starter-kit/223/2
  • https://forum.obsidian.md/t/lyt-kit-now-downloadable/390
  • https://github.com/argenos/zotero-mdnotes
  • https://www.youtube.com/watch?v=XbGJH08ZfCs
  • https://docs.google.com/document/d/1Ti90jJG2b9cnKbOoGZyT6ve5P_iyhva6lLRrlL9sCek/edit#heading=h.jcidduny8pla
  • https://www.youtube.com/watch?v=ziE6UExsOrs
  • https://publish.obsidian.md/hub/00+-+Start+here
  • https://oasislab.pubpub.org/pub/54t0y9mk/release/2
  • https://www.youtube.com/watch?v=JoCjpTXCklw
  • https://chris-grieser.de/Comprehensive-Academic-Workflow-from-Reading-to-Writing-in-Markdown

Posting this here as well because why not

https://twitter.com/_nwodtuhs/status/1451510341041594377?s=20

https://www.thehacker.recipes/

https://hackingpassion.com/ Jolanda de Koff is really awesome!

@night plinth ^^

https://www.linkedin.com/posts/jose-praveen_freelearning-packtpub-freecourses-activity-6857323331826401282-is-9 came across this linkedin post about free packtpub library

https://subscription.packtpub.com/register without the sketchy linkedin post

new blog post going over how I implement Zettelkasten and take notes
https://droogy.tech/post/lazyzettelkasten/

Found this really interesting talk by SANS about making digital alert-traps, y'all should check it out if you have time https://www.youtube.com/watch?v=KgQoGIkozL8

@prisma bison ^might wanna remove that phishing post

or any other thm staff

they noticed

will be gone soon

oh. I hadn't noticed it was posting in every channel. MB!

Suggestion for improvements would be appreciated:
https://youtu.be/4of_6Q_wHzw

Is it desensitisation or deserialisation?

Oops, that's the reason I've posted here

Thanks for the correction

Fixing ...

https://youtu.be/G8lrwmsx8KA

a pin of this would be nice

Already pinged Muiri Sleepy

@hushed estuary @night plinth

RIP

Sorry, guys!

??

Scam

It's gone Muiri got it

Ok

@shut ferry Response.
Yes. You can checkout this course from edx. It is from Harvard University.

https://www.edx.org/course/introduction-computer-science-harvardx-cs50x

It covers some computer programming foundations (don't get overwhelmed). From this you can actually learn how computer understands us.
Do checkout their other courses.

@calm ermine lemme do a talk about note taking

Esqy, don't let him do a talk about note taking smh

Nono

Let him

And if it’s bad, I get to ban him

We require our speakers to be competent

C’mon Muirrrr

That’s not what you were saying in me dms ay bruv

You wish smh

isn't cry american

:|

ay bruv

He is, he's just very confused

Not an unusual state for him, I may add

poor guy

an identity crisis type of thing?

Thanks

Gave +1 Rep to @dull barn

IG those are pirated books?

@balmy sun

Mb

Not sure where else to ask for help, but I’m experiencing major burnout, can’t even sit down for 30 minutes now to complete a few rooms or tasks without feeling tired or my mind getting occupied

Was able to sit down for ages and manage to get a lot more done but no idea how to get out of this rut I’m in

It's easy to end up overworked and overtired, what with the state of the world and pressures of work and study. Are you getting enough rest, eating right and getting exercise? Those basics are important. Fresh air and sunshine - resting the brain and eyes.
Social media isn't helpful - make sure when you're having downtime, you're actually having downtime. Read a paper book, grow a potplant or something. I think it's important that our tech time is good quality - when you're working and playing in a screen-heavy environment, you need mental downtime, and save your screen+keyboard time for the important stuff.
... the other thing is, what's your motivation? Do you have a clear goal?

https://github.com/oversecured/ovia

The team Killer Queen is hosting their first CTF: Killer Queen CTF!

Killer Queen CTF will be primarily targeted at high school and college students featuring tons of challenges ranging from a beginner level of difficulty to ones that will test even the most seasoned competitors. It will feature all of our favorite categories including web, crypto, pwn, rev, and forensics with a variety of exciting topics such as quantum-safe cryptography that are not always covered by many other CTFs.

Killer Queen CTF will also be featuring a list of extensive prizes for both open and highschool division from top sponsors as well as a special prize for the top female competitors. Partnering with the WiCyS organization, we hope to increase the amount of participants and the diversity of our competitors so make sure to tell everyone you know to come participate!

Killer Queen will be providing a competition that is both great for new CTFers to learn and fun for more experienced players so regardless of your skill level, we'd love to see you come join :)

Max team size is 7 people.

Prizes:
High School Division:
1st Place - $500, Wolfram Award, and HTB VIP 1 year
2nd Place - $250, Wolfram Award, and HTB VIP 6 months
3rd Place - $130, Wolfram Award, and HTB VIP 1 month
4th Place - $20 and Wolfram Award
5th Place - $20 and Wolfram Award
6th Place - $20
7th Place - $20
8th Place - $20
9th Place - $20
10th Place - $20

Open Division:
1st Place - $500
2nd Place - $250
3rd Place - $130
4th Place - $20
5th Place - $20
6th Place - $20
7th Place - $20
8th Place - $20
9th Place - $20
10th Place - $20

Middle School Division:
1st Place - $50

CTF link: https://2021.killerqueenctf.org/
CTFtime link: https://ctftime.org/event/1482

We hope to see you all on October 29th for this exciting 3 day CTF!

For those of you more Junior Pentesters out there ^

Getting about 5-8 hours of rest per night
Out for quite a bit of the day, so defiantly getting fresh air
And my motivation is to just kinda learn the most I can I guess?

Thanks for taking your time to respond aswell

Gave +1 Rep to @worldly palm

The problem seems to be that you're overextending yourself in place of learning and honing one particular sub skill in cybersec

I've been there before.

I agree, likely overextended. Focus on just one pathway. And maybe take a break - perhaps do some related lighter reading - something like Mitnick's Art of Inivisibility - for inspiration. Get more sleep.

Rust is crazy fast 😮 https://twitter.com/bee_sec_san/status/1453317350258790405

You may wish to advertise that in the HTB server instead :)

https://github.com/swanandx/rustywitness Tool for taking screenshot of websites, like gowitness (more similar to webscreenshot.py) written in Rust!

currently, just slightly faster than gowitness, like around 5 seconds

for ~15 urls

I know what I'm learning after solidity.

Haha, if you like solidity check out Solana. It’s a cryptocurrency but with Rust 😊

or maybe THM can sponsor too :)

actually, do THM sponsor many ctfs?

I've seen it about and was gonna try it later. Learning sol for now to attempt some smart contract ctfs.

They do, yes, but that isn't a request for sponsorship -- it's an advertisement for an already-running CTF 😆

yeah I know

I was more just asking generally

I rarely see their name of prize sheets, when HTB seem to appear everywhere

Perhaps because HTB is seen as more of a practice ground and THM is more for learning. I think it's assumed that CTFers have the basic knowledge? Idk

THM tends to do things like Diana initiative, plus another few similar ones.
Remember HTB also got given what, 11 million, to distribute as sponsorships to CTFs?

make a flash loan attack 😉 they're rather fun and require economic undertanding to exploit, as well as code exploits 🙂

I will! It's on my list along with re-entrancy and a few others. The goal is to get all the common ones down. Thanks though!

Gave +1 Rep to @tepid patio

shit really?

was that government funded or something

I didn't hear about that

https://github.com/Zeyad-Azima/Offensive-Resources

They got 11 mil in series a funding. It wasn't for sponsorships, just a general investment in the company.

https://github.com/sootier/403bypass

Cool 403 bypasser with a big effort on UX

If anyone has any suggestions or opinions feel free to DM me or just tell me here

You're using a LOT of global variables. You should be passing those as parameters, especially URLs/ports etc.
Big ASCII banners have a lot of accessibility impact, damages UX horribly for screenreaders.
Variable names could be improved, and they're not PEP8 compliant.
You don't have a final else in your if elif block in banner() or main(). Also weird to use os.system() there when you could be using input(), makes it non-portable.

You could also swap to requests rather than urllib, it has a much more friendly interface for programmers

For this one I simply couldn’t in order to keep the script shorter since I’m brute forcing http methods and I can’t do it using requests without import the api which seemed like a headache

Thanks alot tho

Gave +1 Rep to @odd quest

You're brute forcing methods? requests has get and put and patch and stuff so where's the issue?

I’m using way more and I want it not to be like 15 lines of just the requests

Oh Jesus, yeah, if you're using globals like that, just go OOP...

Think about "designing to do one thing". Each function is meant to do 1 thing, each class is meant to do 1 thing, each file is meant to do 1 thing (even if those things grow "bigger" the higher up you go) 🙂

I'd sep it into files so it's easier to navigate

I would also pin your versions in https://github.com/sootier/403bypass/blob/master/requirements.txt. One day one of those may upgrade and break your program 🙂 By pinning them like requests=0.6.0 you ensure it will always work and won't break due to unexpected upgrades 😄

I changed it a bit if anyone wants to take a look again, I did leave two functions with quite some globals but I removed quite a bit aswell and I think it would look worse to have tons of parameters on a function that is being ran quite a bit of times {banner func)

Thanks so much for the feedback!

Gave +1 Rep to @tepid patio

@hushed estuary

https://leanpub.com/b/theindiepythonextravaganza/c/pytober

These guys are providing free Python ebooks until the 31st

https://dfirdiva.com/

Nice. Thank you. I’m just starting to learn Python, so this is timely.

Gave +1 Rep to @primal onyx

@odd quest another one kek

@topaz gulch totally new link

Yep so I see

-undelete -a

https://twitter.com/_nwodtuhs/status/1454049170243952640?t=zZP_H-H_DsSf5nWzPOl8Pg&s=19

https://www.youtube.com/watch?v=4d-qmWLt90E Would recommend this video if you are new 🙂

Sure thing!

https://www.learndmarc.com/ @fast wraith this site looks quite nice

You might also enjoy https://dmarcian.com/dmarc-tools/ 🥳

ooh that’s quite cool too thanks :D

Gave +1 Rep to @craggy onyx

ooh nice that is pretty spot on

The best thing you can do is forget about there being any sort of "pathway" or secret knowledge you're missing out on.
Learn everything you can about IT.

• metastable state

I'm looking for some good learning resources (books/courses/videos) related to IOT security. Does anyone have any recommendations?

Check out IoT Security: Advances in Authentication 🙂

Thanks @craggy onyx

Gave +1 Rep to @craggy onyx

looking for good resource about msfconsole, anyone have?

Metasploit Unleashed?

Good list of certs https://pauljerimy.com/security-certification-roadmap/

(interactive)

That's already in the pins I believe but it is pretty good

https://medium.com/@dpmcclurg/netcat-hyper-v-and-the-windows-subsystem-for-linux-3f9dc611b58e

Good afternoon !! Newbie, here::🍴

think I know what my next hardware project will be, always wanted to look into LoRa
https://makezine.com/projects/armachat-lora-communicator/

Anyone have a resource for scripting filling out job applications?

I know there's some for scraping sites like Indeed with BeautifulSoup but was wondering if theres something similar with maybe filling out applications with Selenium?

Why?

https://mikehudack.substack.com/p/a-product-management-reading-list also this is great for product managers

I think they want to spray and pray.

😦

Eh not really, it’s more like when you apply in like Indeed/LinkedIn, and you put in your resume and then it still asks you to put your entire work history into the job application

It’s mad annoying and mad time consuming

probably not worth the hassle of adapting the script to all the various job boards that could pop-up, it takes like 5 extra minutes max to fill out that information manually provided your resume is formatted properly

also, if every application you send in is via the company website - you are doing something wrong, you should ideally be passing off your resume directly to hiring managers first

sometimes they'll come back and tell you that you have to fill out the company application first, thats fine but at least you're on the radar at that point

Thank you very much for these tips

Gave +1 Rep to @fast wraith

^^^ That's why social networking is so key. It's really easy for a hiring mgr or recruiter to ignore things from people they don't know anything about

Would you connect with them via LinkedIn?

IMO LinkedIn is hot garbage. Local meetups, SIGs, conferences, school, and work are where I met my most valuable contacts. From CISO down to admins, devs and soc analysts.

gotcha, understood

SIGs?

Special Interest Group

gotcha, thanks for the insight @jagged tiger

Gave +1 Rep to @jagged tiger

https://www.varonis.com/free-security-training/

If any of you got some servers and want to selfhost something

https://github.com/awesome-selfhosted/awesome-selfhosted

https://tenor.com/view/gojo-gojo-satoru-jujutsu-kaisen-gojo-smile-jujutsu-gif-18819303

Hey

Hey

Anyone here knows a katoolin working repository

Most of the repos ...they use that key server that is gone down and other ones dont work with it

Please I'm currently on my ubuntu and want kali repos ...is there any other way than katoolin?

https://miloserdov.org/?p=3609

You could try that.

Otherwise just download the tools you need on Ubuntu

is there somebody who can tell me if its possible with amass to display the running service on a subdomain? struggling with it since yesterday...cant believe that there is no option for it :/

Subdomains resolve to an IP like a domain does

So scan the IP?

yes yes...i was just wondering about if amass is able to do that in one step right away...scan the domain for subdomains and give the subdomains back, INCLUDED the versions...i wrote a script to do it with python and nmap afterwards (nmap -v and so on). but if there is the possibility to do that within amass with a parameters seems more logic so i am searching if there is such a way to do it...

Scanning for subdomains is a pain
It's either brute force, zone transfer, or dorking

https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/

Zone transfer?

Zone transfer.

https://youtu.be/8I21RlpKWbc

is it useful for cyber security?

deviant ollam is so good

ty

https://twitter.com/kellthenoise/status/1457792337539600385?t=DaWNFet1-QAdub1Nc8n_Uw&s=19

Anyone have something about fully tearing out Defender on 21H1?

https://www.alphr.com/delete-windows-10-defender/ gonna give this a go

oh shhhhhisssh that's super damn awesome!

I am surprised at every minute of information in this video, it's just so so info-packed

@shut ferry thanks! didn't know I needed this, but it's pretty damn good

Gave +1 Rep to @rapid eagle

https://github.com/nomi-sec/PoC-in-GitHub

https://twitter.com/gynvael/status/1457647304127750145

If any1 of you want to practice their AD skills

https://github.com/WazeHell/vulnerable-AD

thek society

but i still het u

hi everyone

Just sharing

https://www.sans.org/cyber-security-training-events/pen-test-hackfest-2021-live-online/#agenda

it's free

Wait you guys threw it into this tab, after saying it was 'too much' information when I posted it 😆

Lau is not us and this list has been known by many prior to you posting it.

Bold claim. Gotcha

https://youtu.be/MGt-DpYf30g Tips for countering impostor syndrome (in French from Devoxx FR 2021)

Good website to make resumes for little effort

https://resumake.io

For those who are applying or have interviews coming up, I found these articles useful!

https://www.ukcybersecuritycouncil.org.uk/news-insights/blog-posts/competency-based-questioning-part-1/

https://www.ukcybersecuritycouncil.org.uk/news-insights/blog-posts/competency-based-questioning-part-2/

https://www.ukcybersecuritycouncil.org.uk/news-insights/articles/competency-based-questioning-part-3/

Ian Neil published his Security+ SY0-601 study materials for free.
https://securityplus.training/

Credits Certification Station
Free threat hunting training at 1100 EST (10 hours from now). Can partake live and get a certificate of completion, or register and watch the recorded session later and do the same training, just with no certificate.
https://www.activecountermeasures.com/cyber-threat-hunting-training-course/

This was yesterday, I took the class

Oh. Looks like I posted very late. How was the class?

Sorry I mistyped the question

sir

Looks like I missed your class :(

Very good, I've taken it twice before, this one in particular is the updated course which is why I wanted to check it out - used to be 4 hours

That was Great. I am very curious to learn from your course.

I am very glad that I was speaking to the instructor of that course 🙂

I'm not the instructor lol, sorry for the confusion

Np 🙂

https://github.com/sickcodes/Docker-OSX

Awesome! Thanks

Gave +1 Rep to @spare finch

Doesn't that break Apple TOS for the OS?

Anytime

Given its popularity I think Apple / GitHub would have take it down way before but I may be wrong, I don't exactly know their ToS

Better fork it just in case.

I starred it but yeah we never know :p

Hackerone
Calling all hackers! HACKtheMACHINE hosted by US Navy and powered by FATHOM5 and Booz Allen Hamilton, launches TOMORROW! With 3 tracks and up to $90k in prizes, the event offers bug bounty rewards and competitions to test your cyber skills. Register before it's too late! http://ow.ly/hO5C50GO0fi

Those categories are really exotic.👀

Except data science

Yup

It looks really awesome

for my k8s friendos https://www.cncf.io/announcements/2021/10/13/entry-level-kubernetes-certification-to-help-advance-cloud-careers/

https://twitter.com/freddie0x1/status/1460232332112240642

wow, really useful post from this random guy I found

definitely recommend following said person

DAMN i wonder who that mad lad is 🤔

You'll often be better encoding it before transfer, just fyi

It's usually fine, but if it happens to corrupt (and you don't bother taking a hashsum / don't have the tools to take a hashsum), you're gonna have a hell of a time figuring out why

This is literally the reason why base64 encoding exists

Also helps evade network monitoring, although you may need something stronger than base64 for that

I need to meet this genius and give him a thank you.

Gave +1 Rep to @glacial gazelle

@topaz gulch base32

@fringe spire dunno but you should definitely like and retweet this mad lads tweets 😏

Compress it

Type each letter manually 😄

I'm not us?

hello, any resources on how to approach benchmarking and implementing a security/pen testing strategy for a platforms + infrastructures ?

If you rename procdump.exe to dump64.exe and place it in the "C:\Program Files (x86)\Microsoft Visual Studio*" folder, you can bypass Defender and dump LSASS. https://t.co/Vk8vPYFTPC

Neat trick, although both writing to a Program Files (x86) subdirectory and dumping LSASS require SYSTEM/Admin rights anyway (i.e. making it easy to bypass defender in a dozen legitimate -- albeit potentially louder -- ways)

👍🏿

Immediate subdirectory, perhaps.
Steam installs games there, they don't need admin often

Not in this directory tree certainly

Read/Execute

BlackBerry released a book on cyber threat intel today. Completely for free. Deals mainly with Cobalt beacons from my scroll through.
https://blogs.blackberry.com/en/2021/11/all-your-beacon-are-belong-to-us-new-blackberry-book-cracks-code-of-cobalt-strike-threat-actors

Now you know why they stopped making phones. 😉

Yea, I already got a copy

Whenever you end up on Okta login, click on "Need help signing in" just to see if there is any link to their internal wiki or helpdesk. I ended up on an IT helpdesk which had "Sign Up" enabled and got access to internal docs, passwords & what not. #bugbountytips https://t.co/W6yMm1pJLc

https://twitter.com/freddie0x1/status/1461008772634234892

more self-promo

but for boot2root machines, so might be helpful here

You make me want to steal those tweets.😂

(this isn't anything new, capabilities have probably been around for longer than I've been alive)

just haven't seen many people here use them before

https://github.com/Yash114Bansal/PyIntruder

Guys what is Cloud storage bucket used for

You answered it yourself. Also sounds like a google question

Yeah

https://github.com/3CORESec/MAL-CL

https://portswigger.net/web-security/certification burp suite certification is 9 USD currently

Note: requires full license of burp pro

You can use the free trial.

nah, unfortunately you can't

I'll get the email real quick

It doesn't specifically state that anywhere. Hmmm...email? 👀

when I asked

Because from what I've seen, you could even attempt it without the license. You'd fail of course though. One of them even mentioned that they don't monitor it. You just need access to a valid license

Oh right, well by all means give it a go

the support email suggested otherwise

but it's only like 9 bucks, so is there any harm in trying?

worse that can happen is you pay the money, then you get to the exam and they decline you

which from what you said sounds unlikely

Mhm. It is 9 dollars so @sand parcel our guinea pig will do it and tell us how it goes lol

apparently it's rather hard...

I've heard that from two sources now, the 3 hours just isn't enough time

That email is vague and this whole thing is confusing because I've checked all the faqs, website info etc and it doesn't specifically state that you can't use the free trial

RIP. People have passed it though. Maybe the difficulty and the rep of Portswigger will make it valuable in time.

yeah, and it's very cheap now so I don't see the harm in attempting it

have you spoken to anyone who's passed?

Not yet but I could. Just need to go hunting lol

Easiest place to find them is LinkedIn

ah right, looks good cheers

Oh, that's easy if they don't monitor it then.
I have my own version of collaborator on a VPS, and Adam made one for THM too which is on his github and easy to deploy :kekw:

https://twitter.com/0dayctf/status/1461397727850512394?s=21

https://www.humblebundle.com/software/cyber-security-for-hackers-and-developers-software?hmb_source=humble_home&hmb_medium=product_tile&hmb_campaign=mosaic_section_6_layout_index_3_layout_type_twos_tile_index_1_c_cybersecurityforhackersanddevelopers_softwarebundle

https://github.com/0x90n/InfoSec-Black-Friday