#thm-community-media

I'm getting jealous of excusemewtf @olive sundial

Or... wait wait wait, it's time to get into the game

yeah

i'm in already

Saw you got one flag

i'll share the stuff i got

Sure do

not yet

You played previous year?

or it wasn't me

no

first time no warm up

Ah

Same

Gonna boot my VM up now

@cobalt thicket add me so i can add you to the group

done

@restive tartan @strange axle plz can we get a channel for metasploit challenge for us?

Oh for like Metasploit's ctf?

@olive sundial

yes, please

It's currently @quaint elm @cobalt thicket @formal sparrow @young roost and me

I can make a general chat

Or I can just invite you to my ctf team discord lol

one of us...one of us...one of us

^

i haz access to the cool guys gang

dammit robin, he left he discord previously lol

loool

@ people from the uk go to Pret in the next 30 minutes to get a free croissant. Just say to the cashier: wam bam funky jam

It’s Croissant O’Clock! Enjoy a Very Berry Croissant on us when you quote the password ‘Wham Bam Thank You Jam’ to our lovely team members between 3-4pm on Friday 31st.

If I did that at the Pret in Portsmouth, I'd like get wam bammed in the mouth

hahahaha

Good luck on that ctf

o7

hi

Hello there

HELLO EVERY ONE I AM NEW HERE COULD YOU PLS WALK ME THROUGH THIS SITE

https://tryhackme.com/faq

Thanks @drowsy remnant

Woowee this jack room got me running down all kinds of rabbit holes, the lack of first blood to user is making me feel chill though

Time to grab some beers and get stuck in

What difficulty is it rated at?

I can get behind some bs

Red

Got that traffic light difficulty

Oooo pog

Hard box

I’m down

Welp, brexit happened

@tropic lava It's been a slow day, something was bound to happen 😛

Can't wait to find out what I'm currently doing for jack is a rabbit hole

I was doing a CTF in other platform, can I ask for help here?

@lethal egret I might raise the extra points for this

Jack hasn't been solved yet :)

@eternal anvil I guess.

Well, I was doing a OSINT CTF and they gave me this https://anonpaste.org/view/2kg9udwibx44w and password DDOSPast32020 to encode

in this web I have https://pastebin.com/170pkQY0 and I have to find the IP for the attacker

I’ve gone down enough rabbit holes to rename myself to Alice

ahaha

Wanna hint?

Has anyone got bloods yet?

woo wee

Got user on jack

About to get that root boi

https://www.ikea.com/us/en/p/markerad-rug-low-pile-white-black-00434753/

dark using offtopic as a notepad

oh nope, it's a receipt

Oh look at it

I'm posting it because it's hilarious

Fun fact

Ikea LACK tables have the exact leg spacing for 19" rack equipment

See: Lackrack

Yee, I'd build one of those but I'm getting a massive full rack in a few days

rack mount your wow server in a lack

@cobalt thicket The blade enclosure that'd you need is too high

Jack rooted

Yess SuitGuy!

That one was pretty spicy

Hohooooo

Is it Badge worthy?

Ye i'd say so

And not just because I want more badges...

Your profile is looking rather good 🙂

Oh hell yeah

You'll enjoy this cheeky little image:

Wait woott

What did you do on that day?

I think something is very wrong

No idea 😂

Unless you spammed "answer"

All those question attempts

But still 15k

cray, Ill look into that

Probarbly me doing something funky testing the site

Yeah aha

Which reminds me, are site vhosts in scope of bounty?

Sure

https://cdn.discordapp.com/attachments/261388784799711235/673386257337810962/20200201_223622.jpg

Book run from yesterday

@strange axle oof JQuery

https://twitter.com/simon_deliver/status/1223569659645112320

lmao

oof my hero

good anime

just dont look at the fanbase

or you'll see underaged Dekus on leashes being tortured by underage Himiko Togas

especially don't let tiktok know you like my hero too

Oh lord I'm not touching the fandom lol

https://twitter.com/XboxGamePass/status/1223667643317534721

@graceful coral

noots on @lethal egret

COME ON 49ERS

MY PHYSICS GRADE IS DEPENDENT ON UR SUCCESS

D:

@graceful coral but why tho

@tropic lava Our teacher said if we pick the winning team we get extra credit

I was legit the only person

Weird but ok

Who picked the 49ers

...bad decision?

Its 10-10 rn

So

Theres hope

SHIT

Aight this is fine

As a rams fan idc who wins this year 😂

Though I’m not a fan of 49ers so

I can never talk shit again

@lethal egret my physics grade is depressed

oh damn

I'm so glad I started watching in the 3rd

It was going so well

Then a dodgy touchdown was allowed

I texted my physics teacher and was like

Is it to late to change my bet

Not 10 seconds later she responded "yes"

Note to self, take better god damn notes

I just had a heart attack having to rehack my coursework vm because I didn't take notes to write my report 😂

@urban crescent thanks

@lethal egret ahaha LOL

Also lost my ascinema recording so not a clue what was ran

@urban crescent send nana

@graceful coral

yeeee

Thought it was a butt

people out here using cherry tree and im just like

• notes.txt noises *

🤔

you guys are using notes?

lol

Fr @meager compass

lol

Nah most of my DMs are my ctf team making like 10 chats a day to discuss the same thing as in all the other chats but this time it's a new name / picture of the chat

They made like 8 yesterday about lock picking lmao

And 2 more today I think

May or may not have forgotten to get back to them

Most people are courteous here

That was a fun one

This is taking a while

guys, could you give me some constructive feedback on my website : https://birgauanu.com/

I still need to sort the metadata and cookies etc

Sure @olive sundial

1. The absolute most important thing for not only search engine optimisation but also being an actually nice person is good alt text

alt="Initial"

not good alt text 🙂

if you can, instead of screenshots, maybe copy / paste the terminal stuff?

that way, a screenreader can easily read it (and so can Google)

Actually, heres a neat tip. Use Firefox?

Go into reader mode (it looks like a book) and then click on "text to speech", you'll see your blog exactly how Google or someone with a screen reader will see it 🙂

Your blog should have a favicon

oh, okay, gotcha

i'll try my best to do that

let me see what i can come up with

thanks a lot for looking over it @meager compass !!

in regards to terminal you mean format it as code?

I also think i missed redirecting to the custom 404

Damn I didn't feel like solving challenges for like a month I think my subscription is gone in a few days and I only used it 2 days

I guess planning isn't for me

we got ourselves a box lads

I think (knock on wood) that Pepega is releasing on Friday

@cobalt thicket

?

My latest room

o Pog

Currently under review

chall?

or walkthrough

Chall

sweet

question for anyone with knowledge, i got a yagi wifi antenna and some old cisco switches and routers, i would like to create a subnet with a hackable webcam... any suggestions?

@keen girder ...webcam or cctv?

i didn't consider cctv that would be very cool @tropic lava

Do you mean IP camera or like, pc connected webcam?

i think pc connect webcam require writing a virus so probably a ip cam

monkaS

@cobalt thicket hilarious i literally thought that was a brand and happly googled it ... my oof

@keen girder you can use msf for webcams

For PC webcams.

But they're hard to emulate with aws

IP cameras might be possible with some firmware emulation but it's a pain

It's also a little sketchy

i know eventually they were planning on making a physical section for networks and pivoting and such ... pretty please add a webcam to the plans @tropic lava

I don't get influence

And it's not physical

It's just connected aws machines

oh

i don't see this a sketchy, if you have plans to actually go after the whitehatting skillset it wouldn't be unreasonable to consider the closed system vulnerability, same as studying lockpicking for physical security

My pc parts arrive tomorrow, party time

you got a pcpartpicker?

@empty sorrel
https://uk.pcpartpicker.com/list/CbT44n

Sticking with my GTX 980

Different SSD actually but yep

Yea I just built a computer with that cpu

works really well

Although it really needs a good heat sync to squeeze out that performance

2600 words

1400 more to go

is eJPT worth doing? it's not too pricy, so I was thinking if it's going to be a good primer for my other certs I am going for? Any advice is welcomed

Depends how much knowledge you have

Norseblog.org does a nice look on to elearn stuff Vs oscp

hmm, not sure on my level of knowledge to be fair

i think i'm still a newbie

Tell me about yourself and experience and I'll tell you whether it's worth doing

4 years of IT including 5 months of InfoSec job, and 18 months on a CyberSecurity. Finished a few rooms on THM and a couple of @worldly lance 's boxes

@fast depot how did you find eJPT?

Oh, mwell, it was easy for me

Took me ~4 hours to complete. That was because i was ovethinking some stuff. Lol

Normally would have taken me ~2 hours

You had 2 networks. You were already in one of them and you had to exploit other machines that had access to the 2nd

eJPT is for beginners & for moral boost (my opinion)

eCPPT was pretty easy too(no idea why, but most certs i took seemed easy. Lol)

And i’m considering going for eWAPTX now

Guess that doin htb,thm, overthewire, ctfs, going to conferences&attending live ctfs(htb style) helped me a lot tackling those exams

Makes sense, any advice you can possibly give me? I'm quite new into pen testing

I’ve also started doing bug bounties. Started in january, learned a lot since on web app pentest tbh.

Hmm

Well, the first&most obvious. Be curios, break things, try to understand gow they work & also look for advice where you feel lost

i'm doing that, I just learned a lot on subdomain enumeration recently

2. Practice. A lot. And read stuff

Even though you might not understand it completely, after doing more practice you’ll get it

3. Try finding something you really like and do that until u’re like a god. Haha

I’ve been doing a lot of network attacks, but not many webapps. Then... mwell, i’ve started doing bug bounties. Has days when i’d study for like 6-7-8hrs to sort some things out and understand how they work

And i also started to like web apps more than i did before xD

hmm, makes sense, i am still getting my head around the different topics

and finding where the problems are, but i keep myself up to date and constantly reading new topics and trying new things

4. You’ll get to a point where u feel u’re burning out. Everyone has been there

Just step back. Relax, take some days off and do something else u enjoy

Thank you for taking your time giving me your advice @fast depot. I sure do need to start getting better at one topic

i'm mostly googling when i'm not sure and sometimes i'm able to put together my own stuff

Mwell, yeah, anyway, in the beginning try finding something you like and enjoy and get better at it. Experience all fields, see what you like, what you dislike, what you consider you understand better and then pick a topic

For example you go for web apps. There are a ton of vulns for web apps. Pick a few(sqli,xss, etc) and get better at those

Write me in private, i can detail more, but i don’t wanna “spam” the chan xD

Thank you for your time and answer ❤️ much appreciated

What are your favourite computer viruses?

MEMZ /s

DOS virus'

anything ransomware, there is no stopping that thing and unless very careful you will encrypt your recovery drive as well

ones that 12 year olds write

write

• plagurize

anyone know what the difference is between networking knowledge 101 and cisco networking ?

i got myself 3 cisco catalyist routers and 3 catalyst switches to play with

@meager compass there's one we were told about last week in a lecture, just in passing. I'll try to look it out. Nice easy piece of ransomware that cleverly hid the decryption key in plaintext on the file system. Might be good for this project.

Having said which, that just gave me a room idea of my own.

👀

@keen girder so cisco networking typically dives off the deep end into configuring devices and utilizing protocols like: lldp,cdp,vlans/inter vlan routing, rip, ospf, is-is, eigrp, bgp, stp, etherchannel, hsrp, vrrp, ACLs ACEs, switchport security, etc

eventually ill make a sort of cisco based networking series of rooms

nerd

non ccna peasent @cobalt thicket

@urban crescent is there a problem with focusing on one networking company when i worked for mcafee everything was all palto alto

you know I'd have it if I could afford it boi

Yes

you should learn what you work with

however:
A person with a CCNA will get a job working with Juniper equipment
A person with a JNCIA wont get a job working with Cisco equipment

dam life is hard stupid networking disciplines

Cisco certifications are a lot more marketable because they make up 70% of networking equipment

i always though reverse engineering would be the hardest subject but i was wrong

Networking isnt bad

relatively easy actually. its just when you do dive off the deepend and go into the concentrations

thats cool

realiving actually

basic routing and switching skills are pretty easy

I have a fake CCNA

which is really just an MTA in networking

kek

cisco cyber ops is what caught my eye

no need for the ccna first even just straight soc skills cisco style

got the two books but now i need to learn to how to open a offline book ... stupid offline tablet

Not sure if people have seen this

https://wiki.termux.com/wiki/Main_Page

But just discovered this today

AND GOT VERY EXCITED

Basically running a shell on your Android phone without rooting it

just wait until you find out about nethunter

https://www.kali.org/docs/nethunter/nethunter-rootless/

OH MY GOD

Yea I got termux on my google phone. Even though its rooted, it sure is helpful

@keen girder CyOps was really meh imo.

it might help get a job, but the tools they teach are incredibly common sense.
SECFND basically being a vocab test, SECOPS being more hands on practical work

i think most certs are theory, to be honest, but as someone with no certs and a generic B.S in Info tech... gotta start somewhere

offsec oscp would be a dream but i dont think that realistic

by itself anyways

@restive tartan also why are you the only admin with a blue nic, when ashu and darkstar are red ?

every group has its own color your is the only one separated out... this hurts my ocd

Owner colour is blue

nope ashu has the owner role as well

admin has priority over Owner has priority over Admin

what i'm trying to say is .... it buurrrrnnnss us

https://tenor.com/view/mad-argh-angry-rage-smeagol-gif-3556295

and now @cobalt thicket thanks to you, i need to understand the difference between the roles admin & Admin... that some linux naming scheme crap, if i ever saw it.

probably different perms

Admin admin = new Admin

@strange axle how many members in discord?

2,239

OH

the admin roles are because Skidy is the proper owner of the discord

tbh we need to get to just either the proper blue admin role or solely red/orange

I prefer the blue one

actually

I'll fix this

wait shit I need Skidy for things

ah I'll pester him later

thank you so much darkstar

I'll just have the color of this admin role changed to blue to match

i was going to suggest creating a role of "big cheese" but your idea works

Hmm maybe

I know Skidy prefers us all three with the same role

Technically we're all equal in power just as the three staff members in that way

OH lol that one was a joke

lmao

forgot the /s

The 3 Great Dictators, 1932 (Colourised)

Meme life

lmaooooooooooooooooooooooooooo

https://www.youtube.com/watch?v=pYdNEOAP9YQ

...i remember that

Wow

alright kids

since I've finished up all my cert goals

i uh

need some more to work on lmao

Did someone said memes

@olive sundial that is adorable

Tyyy

Holy crap driving in this weather is disgusting

Note to self. Never decide to drive 200 miles to visit family when they forecast the aftermath of a hurricane to hit

@lethal egret oh no

Literally just had to go down a motorway when you can’t see the lines and could only just make out the car in front

Time for a beer and some hacking I think

Don't die

Just got back home now

Currently being held hostage in my car as I had to park 5 minutes away

Got a New Router, to play... bet you can't guess which is mine!

also fully intend to rerouting all HTTP network traffic to RickRoll

Don't redirect

Inject content

don't know how but sounds fun

https://www.youtube.com/channel/UCwhAh3kIej3lz8u8rdVCoEA?view_as=subscriber - Guys, feel free to give me a follow

Library of babel but for computer programs

Just bruteforce exploit-dev work

question

I need to get a locatoin from a teamviewer session...

(Legit, have proof it is legal to do so)

but server 2019 doesn't have location services

his BSSID does not show on wigle

tried majority of the mac addresses on his network

he said if I can get his location he'd buy me a pint so

@echo marlin If the server is owned by a business, you could try looking up the address in whichever business registry the country in question keeps?
Maybe go the OSINT route, rather than the technical route.

Nope, personal server!

tried all web history too

no decent cached credentials

nothing interesting in credential manager

@echo marlin ...you know bssid isn't the mac address on the network

It's the access point MAC

I know

Tried each MAC of the different SSIDs

is it just me or this stupid vm is stuck for the last 2 hours on the same step:

deffo broke haha

still going strong lol

i'll just install a plain 2020.1 and add the beef afterwards

@olive sundial https://tryhackme.com/room/kali

@restive tartan i've been using that one, i just want one for my home labs 🙂

it works really well

no clunkyness

I just watched this tiktok of this guy trying to dox someone (obviously a skid), but what really interested me was he was trying to ARP poison a local address (instead of the players from Siege like he said, unless they were on the same LAN? Then why try to dox at all? Surely you know who's on your home wifi) and the comments were all like "did you just show your own IP address" but his address was 192.168.0.1 so its like........................................................................................ i'm so done with tiktok

Tiktok.

Dox or dos?

Doxxing Siege players that flamed him. Which, obviously requires ARP poisoning your local network

🤔

It's got 80k likes, and it's publicly viewable. I'll post it here for the memes

Using windows
Doesn't remove search bar, task view and cortana icons

Here are some of my favourite comments

"Just use Burpsuite and Traceroute"

Burpsuite.... for doxing?

I thought cain and abel was password cracking?

That says cain

"Did.... you just post your IP address? ☠️" - 107 likes

It is, but it has a feature where you can observe network traffic.... Like wireshark.....

Activating l33t hax0r mode on 0.0.0.0

"as one who majored in computer science lol even i stopped using cane & abel 15 years ago, use linux"

computer science major thinks cane & abel is an operating system ok.

"I shut down my school wifi with cane & abel once lololol"

"do you use wire shark?"

"use void botnet for real dox"

use a botnet.... to dox?

This wind, damn

Shaking my walls here

@meager compass

Hey look, it's me

It you

Fun fact, cain and abel is the only software I know that has a bsod button on Windows 10

Wait for real?

Yeah

Some of the features don't work anymore

BSODs the host

"Hahahah hacker but works with VM machines 😂😂😂 nice botnet tho"

i'm pretty sure..... most hackers work with vms.....

oh wow i've been doing this for 40 mins

imagine learning how to hack from tiktok

you've just gave me an idea

ez money 👏 /s

I just got sent this 'job' to apply for https://www.cv-library.co.uk/job/208606177/Trainee-Cyber-Security

Please note that this is a course and fees will be involved.

great job that

sees excellent earning potential

https://gyazo.com/20515f39a85176bdf87041d4053e9f83

:omegalul:

ngl I really need a course for Sec+

At least they don't recommend CEH as a first cert

The person that sent this is the same person that told me to apply to MI5 and MI6

Actually the first cert you should get is the eJPT

https://hackers.attacked.me/GNUkNj8mO4mO.png

It's also in pissing london

London aint bad

I also can't even apply for it

or talk about it

oops

pog

Have you signed an nda

if not

they can't really do shit

cant wait to apply for unis again in clearing

Did you not hear back from uop?

Not yet

also unis are gunna be rough as you're not quite 18

For one I will be

tbh I think I heard back from Ports around March

Because Nov start date

Nov start date? In uni

witchcraft

https://hackers.attacked.me/JpHgg09pl5oL.png

Hallam is half an offer

They gave me a place for next year

but I bet it'll need A levels

Most of them probably will

Ports are just money sluts, if they smell a chance to make money they'll accept anyone

perfect

I just need a money making scheme now

Don't we all

Need to find a hustle to fund oscp

Did I hear money making scheme

time to set up a tryhackme rival

@lethal egret we can call it hacktheme

😂

tryhackwire

Or tryhackbox

hacktheme

skidy can you help us fund our startup

you think they make profit?

They break even

They can go into the negatives to help us out :)

too many free users

the man himself said it

Hey skidy <3

yo yo

inb4 massive restructure q3 2020

Inb4 hackthebox buys thm

pls no

inb4 thm buys hackthebox

So, (as companies house will say in the future), we do profit

But almost all of it goes on content creation, stands at conferences, remote-work, hosting fees, god daymn AWS bills, prizes etc..

And we love you for it @restive tartan

Aha ❤️

Do you see a time in the future where the platform would move away from AWS?

Thanks

Oh gooooddd no

Thats our main advantage

Our fees are way way smaller than HTB & other platforms

Really?

Really

Hell yeah

Thats why OSCP are moving to AWS now too

Even with anyone just being able to spin up whenever they want

I just assumed because htb host their content on single ip rather than allowing each user their own instance would make it more cost efficient

HTB is instance based now too isn't it?

(I don't know their exact setup obvs) but they use ESXI, not cheap to scape or maintain

For their premium users

VIp are allowed their own instance unless one is already active

then they can take ownership of that instance

^^

It's a nice setup

Its aigh't

It feels fairly clunky tho

skidy whispers mine is better tho

aha, both are great.

We have some stuff this year that will make us different

HTB is also a multi million dollar entity

With their £1.3m investment

yup

They got some serious firing power

HTB buys THM

But also now has targets & investors to please

wouldn't surprise me but pls no

I thought I imagined that they went through an investment wave

clearly not

Immersive got $40m

Damn

Holy fuck what

You have to pay so much for Immersive tho

Their focused on enterprises

Makes sense

But to conclude, HTB is a good platform, and so is THM.

Both same vision - upskilling in Cybersec

Doing it at different levels, for different audiences.

Also going back, I was thinking of limiting free users

If someone is already in a room, they share (up to 5 ppl), if noone has a deployed instance, then they can be the first to deploy it

Obvs subs will get their own

Sounds similar to my suggestion but with a nice twist

could see it working

Yeah seems like so much effort for such a little payoff

Because cloud fees are not that bad, I may as well foot the bill for free users 🙂

Give yourself that outstanding user badge 😄

Awh aha, ty ty

Fremium works

also, whilst in convo, you know the networks that were being released as a course?

I was thinking of releasing a seperate network just for a challenge, no info at all, just flag submissions

Similar to Jet and endgame?

Sorta I guess

I really like that idea, would appeal to people advancing from the beginner content as well

would give users a challenge of enumerating an actual network

yeah for sure

I also wanted to make it so you can randomally pair with someone also wanting to do a challenge, and you're against each other to complete it

Like a "live wargames"

HOLY POG

I NEED THIS

THM ESPORTS

omg

Yeah

aha

MY CALLING

Just an idea

Do it

Dan I challenge you

bring it boi

I think I already lost

I'm just a scrub

nah

legit though

Can't wait for that

Attack Defense live head to heads would be pog too

Wont be planned out for a while tbh

Networks first.

Its awesome to see ppl excited about security stuff tho

Gamification on security is such a cool thing

Bruh it isn't security we're excited for

it's the development of this platform

Legit seeing how far it's come already and where it's going is miles more exciting

Oooo

Ey, amazing thanks Optional - appreciate it 🙂

you have got to be kidding me

I have so many ideas circulating my head for the head to head stuff

if any of em are for THM, let em our in #544951750801752079

i wonder the price of a 1.5TB Mac

probably like $5k

I don't think you can even get a base model for that much

$5k?

With how much apple inflate prices

more like $500k

https://hackers.attacked.me/UbB3clHlqrEz.png

:omegalul:

oh damn

hey mum can I get a new computer for school?

get a job

@pale cove, around £3.5k

https://eshop.macsales.com/shop/memory/owc/apple-mac-pro/2019

from: https://www.youtube.com/watch?v=ldDTgp5irKA

slow clap

Yea/Nay.

+1

Should I install BlackArch as my main OS?

I'd just go pure arch with Black Arch repos

loving the name change btw

@cobalt thicket it was prompted by

id buy it

My motherboard has rgb

I set it to a warm white and left it

My mobo RGB is just stupid

@cobalt thicket never installed arch before lmaooo lets go

my case supports rgb and has rgb fans, my mobo doesnt support rgb though

so i dont actually have rgb....

I have an RGB controller spare

Like a cheap one

Molex powered, has buttons

gl lmao

you're gonna need it

I want rid of it

I don't use it, it came with the case when I was given it

@cobalt thicket im gonna try to install it in a vm before i just overwrite windows and try lmao

Swap out your drive

Keep your windows install in case

ehhhh

i have almost nothing on windows

so not a major loss

take a backup of your 80 GB homework folder on your desktop

80gb

Not called the D drive for no reason

you think you got problems

new league acc

time to spam arurf for 8 levels

finally in my actual region

I live my life on the edge

I’ve never felt so unsettled before

Oh god

So far arch is going great. I can't ping anything with ethernet

@olive sundial, there are a few questions like that haha

@pseudo escarp I knowww, some of the older rooms might need to be reviewed 😛

Probably

Okay I've broken everything and now the only working technology I own is my phone

anyone who is good at LEX coding?

need a little help!

@meager compass D for Delete

did you follow the arch wiki

@cobalt thicket , that screenshot hurt my OCD so bad

did you follow the arch wiki
@cobalt thicket no I followed some shitty tutorial which was outdated and broke everything 😂😂😂😂😂

arch irl

I managed to kill explorer whilst playing league

like

Windows Explorer

the taskbar and stuff

desktop

all gone

I've been invited to amsterdam

Student trip with some friends

am livid

OSCP is more expensive now

https://hackers.attacked.me/HoEmldwWpfYG.png

there goes my hopes for saving for it within 2 months

anyone having experience with using Regular Expressions in C language?

@olive sundial ?

I'm shite at regex

@cobalt thicket actually crying now, thanks

You could use c++ regex @cerulean tusk

Me too

That's like an extra month of work

Djgstshmrslystsuaeylaeyla

Welp I'm going to Amsterdam

Let's go lads

I'm going to Brighton mate

may #Corona not be with me

Good luck

anyone around Brighton that is a little bit better informed than the news?

Are you a brit?

nah bruv, i'm a foreigner as you can get

can spit some proper dope puns and dad jokes

I can make Sahara seem wet

why you asking @tropic lava

Bunch of us are south coast

I'll be there from friday evening til sunday afternoon

so if anyone wants to meet up and share a pint or a coffee hit me up 😛

Haha

If it wasn't coronavirus infected and a decent bus/train journey away, I might

anyway, i'm not sure where about you leave, i assume portsmouth or however it's called

Bunch of us are here. My username leads to so much doxxing

^

If it wasn't for work and girlfriend I'd happily drive over to Brighton

Not that bad a drive tbh

#1LikePerMinute

@graceful coral

are you good with RegeX?

I need a little help!

This is lush

Just bought a can

@cerulean tusk I know perl regex

I may be able to help

yeah that punch one is pretty good

@echo marlin have you tried mango one?

not quite the mango loco one tho

it's so good

@lucid gate, what do you need help with specifically?

Feel free to DM, will try to help

yassss

I love MANGO LOCO

My fav one

and the pink one.. Can't remember the name

something punch

pipeline

that's it

I am still trying. I will master arch one way or another

Yesss, pink is also really good

but they are expensive tho

freeHL ><

It works

I have done it

@tropic lava I'll drop a message when I'm down in Portsmouth!

haha lol

If I'm around

Might be after it chills down with Corona ><

Heard something about a uni in Brighton being infected

A GP was

Also a uni student as far as I've heard

Someone at Sussex University was picked up this week

But I'm not 100% sure as i haven't seen it

Some say there may be a new box submitted today. But first, booze and food

I dont think there is a walkthrough for today? Friday challenge room yes

Unless @crude agate reviews a room?

We have a few lined up

@restive tartan what ya on about my guy? I just meant the submission of breached for review

Oh right, we originally said Tuesday's we would release a walkthrough box

Oooh

But stopped it as we have challenge rooms

Aha my b

I can always do a fajita walkthrough 😂

aha lol, I need cooking help

Chicken and Chips is killing me

I think that was my first year diet

It’s evolved to chicken and bread now

Look at mr fancy pants buying bread

Lmao

😂

I get yelled at by my friend whenever I don't cook, because I can actually cook decently
But.. you know.. efforts

I usually go grab fries and nuggets for lunch at uni

Chicken and bread? Expensive

Pork cheap

chicken expensive?!

Literally just buy a kilo bag frozen for like £3 at lidl

bread buy at the end of the day at a store when it's reduced

Lidl

Where I live, every Lidl has a bakery

And its like

Really cheap

oh god yeah same

the bakery literally gives me life

Its

Lidl bakery is ❤️

Amazing for breakfasts

Or quick lunch

They do salty stuff too

Like bread and cheese or whatever

Well now

if I drive into uni I'll usually hit the bakery when I finish

can make some hella good sandwiches with their baguettes

I wouldnt buy their baguettes

Bcs they are sacred to me

So I'd rather get bread from real bakeries

I mean when they hvae just been cooked

they are so good

But the donuts for 0.40€ is good

Oh well, im out, see ya guys! Good night :)

see ya

happy midnight

Thanks!

@lethal egret buy me sandwiches if im ever in portsmouth <3

Lol

I'd be worried if you were ever in Portsmouth

There's really nothing here

Will buy beer

THM Networks waiting room --->

Currently writing a multithreaded exploit for example code for my room

I love getting disconnected in the middle of a game

back to EUNE it is I guess

oh shit yeah

Wednesday cut off

big sad

Though they usually come back up around 5:30

I've never had that happen to me before

Weekly patch updates

always come through Wednesday at 4am

ish

is this gonna be the patch where soraka gets gutted

Maybe

massacre

Exploits written

The multithreaded version is much nicer

Except it kills the server when used on a VM...

So yeah, I DoS'd my own room with this scanner

I actually think it's a RAM limit then

Big sad. Just woke up

I am writing a "Getting startd in CyberSecurity" guide for complete n00bs

Am I missing anything?

Looks good

@restive tartan Security areas.

Not area's

Gotta get that grammar

Yea, not my strong point

As you've probably noticed around the platform rip

It looks interesting

Mans a quality developer, who needs grammar

So trwue

Ill get a few of you to read through and fully grill me once it have the first draft (if you're interested that is)

Sure why not

I can proofread

ty both of you

Need to finish off my box really. Hopefully by Friday evening

Ill send it to Savage too

Get him to grill read it

Oh lord that may will rip anything apart

I’m waiting for him to rip my dissertation proposal apart

@lethal egret, already have a disso proposal?

I have four main ideas that I wanna explore before a final proposal

Ah nice

But yeah kinda

Have to speak to Nick, Gareth and Tobi

I have just looked at the final year moodle page, seems decent and plenty of time to perfect ideas

For sure, quite a few people were left off the list too

Unless it’s been updated recently

Not too sure, hopefully Claudia updates it every so often with lecturers and project ideas

Best thing to do is find a topic area and approach lecturers who align with that. I found that they have a bunch of ideas ready to go

My final year project

Is

going to be shown in the

project day

at uni

You guys should come along and say hi

Hey, here’s tryhackme?

lol

ahaha

Nick legit said I could use TryHackMe

But I said nah

I’ll come along for sure. Always some really good content on show

So I did TryHackMe "networks" instead

Wait really? That gives me some really good feelings about my main idea

There are some seriously awesome projects this year

A few of my mates have smashed it outta the park

Still can't believe you're still at uni, @restive tartan
Which one is it? Might be worth a train ride south of the border

That are also showcasing

Kinda wanna create a cloud based malware analysis platform that’s entirely dockerised

But not entirely sure on any of the logistical aspects

@restive tartan, would be great to see what you're working on, when is the showcase? If I can, I'll pop down :)

March 18th (I think)

Y'all are too smort

I've just had a look at trains. Eight and a half hours with a fast one (if it even runs...) and £123 with a railcard. Amazing as it will no doubt be, I reckon I'm going to have to give it a miss 😢

@formal sparrow ouch

@lethal egret Literally something I'm working on with @meager compass I'm really really keen on bringing that topic onto THM

Yeah I was gonna say, sounds really similar to what we're working on

we're building a malware analysis room, but the VM used for analysis is what we hope to share with other creators who also want to do malware rooms 🙂

Yeah!

Oh snap that’s kinda creepy

At the moment I'm working Linux -> Windows all cloud based, and Bee I think you're doing the more theory side of it at the moment right?

Love a bit of malware analysis since I got into it a few months back and it feels there’s so much missing for people starting out

Yup exactly!

I've been studying it apart of a Module at Uni throughout the academic year, and it's a prevalent topic in my Dissertation + something I'm really keen on

Just bringing that onto the cloud? Bit of a challenge. Though learning through practical is really high-up on my todo list with this

Yeah for sure, that’s the hard part in my proposal is how I wanna approach the analysis part. Whether I allow manual analysis or whether I set it up to be automated

Absolutely. I want to tailor the content so that the User learns how to do it

Ah that’s gunna be challenging for sure

but with AWS being well ... AWS, doing all of the analysis stuff locally, and then just uploading the results of that to contents of the room for the User to apply their knowledge and use questions against

There's content on RE up on THM, but nothing quite specifically like Malware

Certainly a long-running project for me on here I think

Anyone know how to set kali to use a system wide proxy? Like its works when I set it within the browser but not when I set it in the configuration

bruh

What proxy are you trying to connect to?

Host

As in, localhost?

the proxy is running on the host os and the kali vm is on a bridged adaptor

so in the theory setting the proxy on the vm would work

but it would seem only on the browser

Ooh geez. Right, Ok.
On a bridged adapter you'll be aware that Kali is connected directly to the network, so you'll need to connect to the host through the router. When you say that you're running a proxy on your host, do you mean that the host is connected to a proxy, or that the host is running a proxy server

yea connected

like its a uni proxy

Ok, so the host is connected to the uni network via proxy.
Kali is on a bridged adapter, which means that it's connected directly to your home network (i.e. it should be bypassing the proxy completely). My guess would be that you'd be best switching to a NAT adapter, or connecting to the proxy directly with Kali. As for doing that I would suggest looking to proxychains, although I reckon there are other ways of doing it.

Well, I'm doing the basics. I don't know nearly enough as you @formal iron :p I was hoping to do some history, different types, c&c, dga, etc

maybe check the networks tab? You can set systemwide vpns, not so sure on systemwide proxies but sounds like it'll be in there

Not sure if anyone's put much thought into it yet but is anyone planning a trip to DefCon this year?

https://youtu.be/rVwaIe6CiHw

Or any other events of their preference...

The feds are after me

ohno

@cobalt thicket that's got to be fake

Nah

I've met those people begire

That's exactly what they would produce

where did you find this? 😯

Twitter

https://twitter.com/G_IW/status/1227700420178567170?s=19

daaamn

i didn’t know such think can be in uk

Wow

That slowthai shit is mad

why the hell is steel mountain so damn slow ;-;

Wow

That actually works

lol

why is that face so big lol

I can send gboard stickers here

loool

that is so awkward

second box i started

TT_TT

to myself

aaAAaa

the impact font

it hurts

looool

I'm still livid about the soraka nerfs

guess I've gotta learn other supports

@cobalt thicket you can always go for more mechanical ones like senna and thresh

depends on what you fancy really

Nautilus is my second, but I haven't got him on this acc yet

nautilus is average

not too strong in the meta against all the mobility based champs

brand is cool support, quite painful to play against

so is zyra

I like healing tho

sona is not for you then because she is outscaled after 15 min mark

senna? lulu (she has shield)

I like the look of Yuumi

she is quite strong currently

@urban crescent have you tried ebay for a gf?

you know

im not looking to buy one

that's how he found me

you can rent

there are "hot single ladies in your area"

just disable the Adblock

and get a girl

porgram one smh

you know

i tried one of those websites and they asked for my SSN

SSN was never designed to identify you

Other than for social security

someone have installed kali in raspberry pi 4, i have problems with the image :c?
NVM i got it, was the version of balenaEtcher

when setting up a VPN point-to-point tunnel with OpenVPN or Wire-Guard who do you test if it works outside the network?

am both

@outer vale mobile data

@tropic lava between two LAN's is there any good way to test if a point to point vpn works. Before going to x location. Just to discover that your are unable to connected to the other network.

Well.

It should go both ways right?

Networks A and B are connected. So if you're on A, open a bidirectional program with something on B

Ping works

@cobalt thicket Not sure how I get these teams sometimes

Lmao

Intparty

euw at 4am

I stopped playing it comp. I dont wanna tilt on brainlets xd

ah I just play pyke mid and laugh the entire time

Play csgo instead

Kappa

hell nah

I tilt myself so hard on that game

reached MGE and stopped as I just went crazy

Do u like mmorpgs? I mean some guild wars 2 :D

Not so much anymore, I used to be heavy into wow raiding but stopped doing it competitively after legion released, the poor game just kinda tanked from there