#thm-community-media

i dont want to use a vpn to access this site

https://www.zdnet.com/article/uk-police-distance-themselves-from-poster-warning-parents-to-report-kids-for-using-kali-linux/

oh and guess what

these guys took it too seriously i guess hehe

they blocked the ovpn connection as well

ripp

oh ik

i am thankful that my government allowed ovpn connection atleast, all other vpn services have been blocked

Oof

New Slayer task

100 Shades

See you in an hour

If your country is blocking VPN connections, I'm sure you can bypass it.

They're not

it was under the adult filter for some reason

this site isn't 18+

is it?

https://tenor.com/view/mary-santpere-omg-por-dios-gif-8861965

It should be lol

so its not

ok

i talked to three

no helpy

Talked to three ISP's?

no

three is my isp

Oh

lol

They are blocking the port?

no

redirecting it

to their filter

the ADULT FILTER

I'm talking about with a VPN.

no

not via DNS for the VPN

THM hardcodes the VPN server IP

oh you mean that vpn

no

But you should be using your own DNS servers anyway

Change your DNS servers

it wasn't working before

i didnt check now tho

https://1.1.1.1/

lol

1.1.1.1 as primary and 8.8.8.8 as backup or vice versa

Exactly^

Preferably that way around

well anyway

it three's fault

they need to fix it

this site is not 18+ , so it shouldn't be filtered

I am not familiar with how the restrictions work in other countries, how do they know your age?

To put restrictions on the site.

i dunno

i have no clue

thats the weird part

because when i curled the site in verbrose mode, it redirected me

So you can't use THM?

At all?

only on a vpn connection

but i dont want to use vpn

cos i need to be on the site when i'm doing rooms

Try to change your DNS

Can't hurt

yh

or https://1.1.1.1/dns/

does that mean my ip will be static tho?

cos no dhcp

uhhh

Wym

Is it time for 🍰 ?

@sterile harbor No, you can set them seperately

ok

Assuming you're on something other than android

Some versions of android don't let you

ok

im on windows

So you can follow the guide and set it

yh

DNS is separate from DHCP]

And setting a static IP would be local anyway so it wouldn't matter

doin it as we speak

omg

that looks exactly like my cat

Generic black cat

The hand of the James

wow, stalker

dns change did nothing

Yup I'll be saving that for my collection

Either way, it's better to have your own DNS.

ill keep it then

i cant take this tho

it just ruins everything

Now go to cmd and type ipconfig /flushdns

if you're on Windows.

cmder is the same

yeah

damnit, you're being too productive.

Did I hear productivity

Yes you did ^

Where can I get some

nada

i'll talk to my parents

we need a better router anyway

I don't think you have a router problem, in regards to this issue.

ik

I think you just need a reliable bypass for the filter.

but we'll change isp

and router

@forest rivet so it's gonna be like that is it

cos the ai cube freaks me out

yes, Pars. It really gonna.

it disconnected me when i shouted at it

you know

that's the stuff of horror movies

if you tell the coronavirus no it cannot legally enter you

You're really full of some interesting stories.

Not with that attitude, Nana ;)

@urban crescent That is a fact

so

i basically cant do thm anymore

Why?

Just use a VPN.

yh but there is an issue with that

SSL Tunneling

how so?

k

lemme explain

#site-support perhaps?

Make your own VPN with a VPS on Digital Ocean.

since i cant have more than one connection at a time, i will have to keep alternating between the vpns whenever i want to submit an answer

thats not practical

and it's time consuming

the VPN to THM doesn't route all of your traffic

ik

thats the problem

It's not a problem 🤣

It just adds it to the routing table

hahaha

kinda is

I am very confused.

so you can use your internet (public ip) whilst accessing THM instances

if all my traffic was routed through thm, im sure the servers wouldn't be in great shape

You can have multiple VPN connections, as long as it isn't two to TryHackMe

....

hmmm

i tried

but it disconnects thm

!dark

?

i use linux protonvpn

Yes

!dark

Not working

why are u summoning him?

Not summoning him

Trying to get you a tutorial.

It's built into the bot.

of what?

This will be on the docs very soon (I just need to fix issues with PR for it) @sterile harbor when I get a break / finish shift

2 wise words, that will change your life.

thank you m8

ok, heard that before

!dark is disabled for the time being

😦

so, i require assistance now

cos without thm, im stuck with htb

and i dont have vip

so whenever a new box comes out

Yes!

Two words that I've been hearing for years.

Made me the man I am today.

thats not new

its on htb all the time

Who said it was new?

And there's a reason for that

It works

Don't fix what ain't broke

We're all here because at one point, we had to figure things out. Eventually, it lead us to a Discord Server full of each other with the same hobby.

Don't fix what ain't broke
@cobalt thicket unless its DNS then it's DNS

tbh, im here cos i dont like htb that much

but yh

same thing

You don't think you have anything to learn?

of course i do

Of course, we all do.

tbh, im here cos i dont like htb that much
@sterile harbor don't blame ya

but i kinda split my learning in two parts

The point of the term "Try Harder" is about doing research and the process of trial & error.

It's not saying don't get help

im sick and tired of skids on htb trying to bruteforce login portals

It's saying try as hard as you can

Exactly^

Once you can't try any harder

Take a break, walk about

lol

walk about

think for 10 mins, explain your process out loud

THM is a completely different community than HTB.

Oh trust me, I've seen parts of that discord no person should ever see

yh

you see one difference is that i dont get bullied in htb

lol

You aren't being bullied!

Whose bullying you here?

i was joking

I can't speak for others, but I am trying to give you constructive criticism.

I think that's very the opposite here...

its a long story

dont matter

HTB is full of trolls and "bullies"

it is

No problem saying that

and if it is the case, it needs to be raised with staff who will deal with it very swiftly

anyway @nova lynx, where you satisfied with the BOFe?

No

It was auto generated lol

But w/e

We'll drop that

how can you auto generate exploits

....

I mean, you did

So

how?

the payload was generated

Shellcode generators ftw

i dont know how to manually make shellcode

And that's okay

how can you auto generate exploits
@sterile harbor ?

Nothing wrong with that, just be transparent.

the rest i worked on really hard

how do you manually make shellcode tho?

You read a book

learn some assembly

Make some syscalls, and get a shell

oh yh

I own a book called the shellcoder's handbook

assembly

i get it now

but not really

cos i still cant make my own shellcode

point is, not the whole exploit was auto generated

Then you should research into learning shellcode

🙂

there's methods out there that can generate it

(if you want to, it's quote fun learning x86 and reverse engineering)

Just don't pass off other people's work as your own

if it doesn't suit your needs, learn and adapt as deemed necessary

rn im trying to bribe offsec

i want to take pwk

but you need to be over 18

Nah you don't

for oscp

which id part of pwk

As long as your parents are okay with it, and you have a letter of recommendation, you should be good

bribes offsec I have one dollar

PWK is the training

ik

OSCP is the certifcation

ik

You can get OSCP at like 14

I know plenty of sub-18 y/o that have done PWK

You can get oscp as early as you want

I was nearly one of them

As long as your parents sign off on it and you've got a grand to drop

ooff

a grand

Nice cool 1k

I think the grand part is the barrier here

i only have £500 to spend

Yeah

That's why I didn't do it

1k USD, mind

then probs like 900 or 800 £

I think alot of us would have oscp right about now if we could drop the grand

£850

nice

ill save up then

£350 more

When you're ready to take it, email offsec

Explain your situation

but now am bored af and have nothing to do, probs gonna finish my course work and change my discord name (for reasons)

the pfp will never change, mark my words, pin them or quote them

🍰 🕙 ❔

@ancient osprey Please respect Rule 1

@pastel nymph just BTW, booted that person

They spammed me with DMs

kk

🍰 🕙 ❔
@forest rivet ❎

What >:'c

even on insane timing it takes 45 mins to scan a room

oooof

it hurts

I own a book called the shellcoder's handbook
@tropic lava i tried it few months ago and dude its amazinnnngg

.
🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮
🥮🍰🍰🍰🥮🍰🍰🍰🥮🍰🥮🍰🥮🍰🍰🍰🥮
🥮🍰🥮🥮🥮🍰🥮🍰🥮🍰🍰🥮🥮🍰🥮🥮🥮
🥮🍰🥮🥮🥮🍰🍰🍰🥮🍰🍰🥮🥮🍰🍰🥮🥮
🥮🍰🥮🥮🥮🍰🥮🍰🥮🍰🥮🍰🥮🍰🥮🥮🥮
🥮🍰🍰🍰🥮🍰🥮🍰🥮🍰🥮🍰🥮🍰🍰🍰🥮
🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮🥮

wow

My eyes

by happy I didn't invert the emoticons

Rip

@urban crescent send nana

Awwww

^

it's alive, right?

yes

good doggo

dawg

cute dawg

https://thumbs.gfycat.com/SorrowfulDimpledGhostshrimp-mobile.mp4

piggo

cute piggo

72 firemaking

Making moves

🎷🐛

🍕⏲️

no, I'm full

but not full of 🍰

73 firemaking

gainz

oh, that's run escape stats

angry noises

rune scape

run escape!

yeah, well, I wasn't very good at English back when run escape was big

Django is fun.

Django is a swear word

no it's not

Do you code @forest rivet ?

it's my job :3

uuuu

what languages?

C# with aspnetcore and a little dart with flutter

Django unchained!

i was just about to start dart

flutter seems nice

dart's pretty cool. It's a good fit for flutter

I'd still rather write c#, though.

Sublime Text is $80 😨

you can deal with the nag-screen

or just use codium

i use both

but i like sumblime more

I personally use Visual Studio and sublime

but then, VS is perfect for my primary work. A bit too heavy if that wasn't the case

sublime is also free

it gives you nag screens

i use sublime on a daily basis

and its so pogplant

once every x saves

it's.. whatnow?

i don't like autofilling suggestions in VS. like, you basically stop thinking about typos and stuff, while Sublime actually makes you watch out for that

Yeah. No. That didn't help

no plant boi

Ive just riced my bootloader

I think at a certain level that's true, but in the long term, you don't really care for types more as more than a reminder not to be an idiot

You want soysauce with that bootloader, Pars?

@forest rivet I do indeed

Here you go.

Also, pretty cool that you have QBert as one of your OSes, @graceful coral

1v1 me qbert

I never played it

I did play a variation of it called qbob, though

I have my laptop coming back from a repair center, do you think I should wipe it any backdoors?

Nah, they have too much to lose to install backdoors in random people's stuff

74 firemaking

Some people just wanna watch the world burn.

Like Dan over here.

hello there

hello

im new membere

Hiya

im trying to find som friends

how is everyone? still healthy?

@unreal mulch you can go to #689615473620287603

@graceful coral what abu

about here ?

Nah, they have too much to lose to install backdoors in random people's stuff
@forest rivet Won't be too sure about that mate

I mean, unless it's a Matebook

There are people on the darkweb, sysadmins of companies offering installing backdoors for money

but that's more corporate-wise

@unreal mulch Ill be your friend <3, but if you want to find a group to work with you can go to #689615473620287603

Aww cute

they use as as boot when you install that backdoor

better safe than sorry, unless it's a meaningles gaming station

@graceful coral im just new in @median palm but i know loot of stuf im usefull

ican exploit

any xss

That's great 😄

I hope you'll enjoy this community

@graceful coral thanx ❤️ im looking for some work to do

well we've got a lot of rooms for you! 🙂

is any one can tell me what is the project

are you looking for some starting rooms

@graceful coral yes pleas

you can start with the rp rooms

zthlinux, rpnmap

zthlinux first

https://tryhackme.com/room/rpnmap

and zthlinux https://tryhackme.com/room/zthlinux

@graceful coral great ,thankx evry body

❤️ we're here if you need us

i be back im sure lolol

Folding @ Home Team ID: 252682

That thing's still alive? Neat

🥮 ⏲️

Oh for frick's sake.

So I've convinced my company to get into security assessments. But now they want me to do it. Nevermind that I built much of the software -so I'll be completely blind to my own flaws- I'm not freaking qualified >:c

same happened to me

if you need a hand with what to do give me a dm

i don't mind spending some time with you and tell you how i've done it myself 😛 @forest rivet

That's a generous offer, @olive sundial. I'll see if I can get them to interested in an actual expert first, but if not I might take you up on it ;)

i was thinking about the same. but it's better for you to start it, even though you don't know what it's right. you have the possibility of investing time to get the knowledge

i am not qualified either but i am working towards a few

Nice :)

don't be scared of trying something new

I'm scared of breaking a production system and not catching a glaringly obvious error :p

as long as you are specific about that there might be a chance of breaking a system with a scan

that's the risk involved

and avoiding fragile devices

Yeah, definitely would need to be careful.

I'm gonna go buy 🍰.

+1 on my behalf pls ty xx

I'll get you 🥦

ewwie

Right, what's the dumbest thing people have done and knocked the network down at work?

Not at work but in my lab

I knocked over a server BMC with the basic nmap scan

You can't reboot those. You havw to pull power from the server at the wall.

routing loops

ethernet cable from socket in wall to the socket next to it

I ran a mass install on a cloud based anti virus without setting up a local distribution point. 400 PC all downloading the software from the internet at once. Fucked the bandwidth and knocked everything down for a bit. Turned the routers off and on and dropped all the traffic and was all fixed

Configuring WSUS wrong is a good one too

and totally haven't done

Luckily I was handed a working WSUS so I've never had to set it up outside of a lab enviroment

advice: keep it that way

Well will see what the new job entails when I get the offer through, hopefully no WSUS then. I've been told I'm getting a job offer but everything is up in the air with the dam virus they have said it's still going ahead though so fingers crossed. It'll be good to be working in Edinburgh/Glasgow instead of bumfuck nowhere

A month or two ago we had a broadcast storm at work that took down the hosted networks of all our clients. It was caused by something forwarding the broadcasts circularly

Someone's ears gotta have been red for that one. Glad it wasn't mine.

gives @formal iron v🍰

Wassup

Top of the day to you all

Bottom of the day to you too

cake ? )

I have 4 hours oh my hands, hope to finish a room

im going to start with this one RP: PS Empire, have you done it ?

Which room, though?

oh, you just said.

so have you finished it ?

Nope!

I thought that was a general you, not me specifically :p

damn English

installing powershell empire.. this should be fun, never used empire

I don't even know what it is :D

😄

I might be wrong, but its brother or sister of metasploit )

I find it hard to believe that could possibly exist and I haven't heard of it, but I'm not sure I'm the best source of information in this regard :p

thats why i said i might be wrong )

:D

green on black, huh? :p

When to Use PowerShell Empire
Some of the activities and goals that can be accomplished include privilege escalation (elevating privileges from a standard user account to an administrator), network and host reconnaissance (finding out what hosts and services are present), lateral movement between hosts, and the gathering of credentials. All of these are key components of a modern day penetration test.

PowerShell Empire accomplishes this via three main components: listeners, stagers, and agents.

green on black, huh? :p
@forest rivet I like it

looks bro or sis of metasploit, dont you think ?

anyways, will find out soon )

Sounds like the big brother of meterpreter, perhaps

@forest rivet

@formal iron 🥦

If i give wrong answer, and then the right one, does it have any effect on point given ?

Nope

Unless someone answers that question before you submit your correct answer, you'll get the same amount of points as if you never answered it before

good to know, often i do mis spell a word, so I always wondered fi that woud ahve an effect

nop

time for break i guess

I despise mongo.

Fixed now

thank you

Wasn't me

Thank Skidy

Blame mongo

I am, and I wasn't even affected

🥮

How's everyone doing this fine evening?

quarantied :/

Hey, at least you don't have to go outside, then :p

What exactly is outside

https://www.reddit.com/r/outside

but the temp is like 70 today, which gives stat boosts

you guys on the 'murican server and your insane temperature consts.

Freedom Units > *

you've done this before, pars.

that's a paradox

Freedom Units > Freedom Units and everything else

problem is they havent patched out the temperature irregularities from 40 one day to 70 the next

gotta be a bug

Was speaking to a mate last Tuesday and it felt unreal to both of us that all of this is happening, every single person you talk to knows about it, no matter where you go its all the talk

It's worse the other way around, really. High temps are the worst.

Crazy world we live in, hope you are all staying safe

Yes, Even I know about it, and I live under a damn rock

I'd rather a high temp then a low temp

No way

low temps and you can get cozy in bed

I made sure to stockpile only the self isolation essentials

Now I can procrastinate even harder in 3440x1440

Welcome back

And that's hot. @ripe drum

But that poor website in Ultrawide

My boss has one of those screens. A client ordered it and canceled the order. We couldn't get it refunded, soo..

I want, so bad.

beautiful display

@tropic lava thanks - uni is all a mess and I've now finished my presidency of the hacking society so now I have time to actually do THM again haha

The sesh is finally over

It was legendary

Wait was that you from Sesh?

3440x1440 daymn THM has wasted space

Yeah I founded SESH with another guy who's also graduating this year. Thankfully we have a whole new committee of people who are enthusiastic about continuing it

Yeet

has been my worry the entire year that it'd be a dead society

I'll still be contributing stuff from time-to-time but it'll be limited from what I can do from London

providing I actually ever am able to move down there 😹

If you're ever allowed outside again

No.

Once online deliveries are sorted, I'm set

Currently a couple weeks wait for deliveries of food

I've just been staying up till midnight on Amazon Prime and waiting for new slots to release

they have most of Morrisons stuff on ther

oh, interesting

Hey can you tell me the timezone of skidy please? @tropic lava

Huh?

+0

skidy is a Brit

But doesn't sleep

Oh aight

does anyone know what this is

An annoying font?

Apparently its a Sans challenge

@worldly lance pigpen cipher

oh yeah

Thank you

I'm assuming the underscores are spaces

Or underscores

My friends have been stressed out about this

I think it's come on on THM before, and I've had quite a few children's books that have it

Next there's gonna be that one from Dr. Who

tfw someone invokes Skyrim dragon speak in a CTF

or no. not dr. who. I can't remember where it's from

eerhh.. the one with the circles in circles and stuff. Quite pretty too. Happen to know what I'm talking about, @tropic lava ?

nah I think there's time lord language

Galifreyan or something?

https://adrian17.github.io/Gallifreyan/ @forest rivet

yes, that!

a visitor!

Cute!

Gex is here

🦎

i know i am, thsnks James <3

@tropic lava ctf 100 has it

@olive sundial Pigpen or gallifreyan?

Pigpen

Gallifreyan would just be sadistic

Challenge 5 transition to 6 i think

Plz don't give people ideas

Too late...

Gallifreyan is great because you can't put it into a program to decode it.. yet

Yeah, but it exists!

and unlike pigpen it takes a bit of time to understand

@torpid grove the picture you posted in #site-bugs reminds me of a certain.. presentation. https://www.destroyallsoftware.com/talks/wat

idk about anyone else - but not to get political, that clapping was very moving

I heard fireworks, what did I miss?

🍰

I've been wired into VMware all day, not had chance to read the news

basically people applauding NHS frontline at 8pm

#clapforNHS / #clapforCarers

spins up a couple instances of @cobalt thicket

HA Sherlock?

?

Failover configured too?

Oh

You've been wired into VMware :p

I see

oh that too

vMotion dan back to reality

no.

Dan is vSphere

I knew it!

JIRA for THM when???

isn't jira wicked expensive?

Swag shop when?

yeah but sub + swag shop money innit

Time fix when

They use JIRA internally iirc

fix when

sub + swag shop - room money > 0

We coded a command for the bot for them

THM already have JIRA ;)

More like

oh, neat

for real?

lol the poor souls

!jira

Oh

assign: sk0dy

Is that cog loaded?

Might not

lmao

Sub+swag-room-jira-aws+uni_funding=0

I really need to get the new version done

plz halp

So we can have a fixed bot..

you assume it can ever be in a state of fixed

Cake time 🍰🍰🍰🍰🍰🍰🍰🍰🍰

So I just did apt upgrade via mobile net on a new install. This tech definitely couldn't have existed 20 years ago. It took 5 hours to finish!

imagine doing that on a 56k

@forest rivet 20 years ago then

yeees?

I'm saying that it would've taken like a year to transfer it all if it was distributed the way it is now :p

you kinda take that for granted when your internet is so fast that you don't even notice it

@forest rivet reminds.me of the time I installed gentoo like 2 years ago

I was downloading packages in bytes

it should've flashed the bytes at the screen at you so you could manually check that they were right

oh hey, i didn't even notice that the ip sticks to the top of the browser window now. Nice!

@final herald Nah

Gotta be straight

alright so I'm comming here to talk about whisky instead

Which I could add a "Whisky tasting" channel

alcohol is just an ingredient for cake.

Nah. If you cook it, you lose the alcohol

true

Alcohol is just a garnish for cake!

not if you freeze it, though.

that wont work

granted, you gotta get some special stuff to get it that cold

solid alchohol cake

Can you just imagine though? A lovely glaze to waterproof the cake, then cover it with something strong

And set it on fire!

will look epic thats 4 sure

(or just eat it, to get the full alcohol flavour)

then dip your hair in the flames

Helps when you've got hair like Marilyn Manson in his early 20s...

So you keep telling me. I don't know what he looked like then

well, or now

or ever really. I don't think I could pick him out

Ask Pars
I've got no clue 😁

@formal sparrow Whiskey != whisky

wsky

@formal sparrow Whiskey != whisky
@tropic lava Exactly! Glad someone agrees!

wy

wsky is when you really distill it.

I drink both but scotch is different

so distilled that most of the letters are gone

nn

hh

tht wrng hh

This person again with the lack of vowels?

mhmn

oh, he just had too much wsky. That explains it

Thought he was banned on rule 9?

not a clue

rule 9: gotta use vowels

Nah, nothing illegal

that's what i said

Hey, James, is memorising the rules one of the prerequisites of being a green name?

oh yeah, that kinda makes sense

TFW you have to specify a rule that says use vowels

@formal sparrow Nah, just look at them when something seems sketch

And remember rule 1 is a thing at all times

Same as the feeling when you have to make a rule saying no viruses in the chat...

Lovely 😁

Behind every sign, there's a story

Kinda worrying how many of those stories I know at this point...

Time flies

Explain this sign, James.

boi

boii

@forest rivet GDPR got tight

Not as bad as this one...

oh.

They weren't allowed to have an empty sign pole, Muri.

Why would you need a sign pole?

i think seasonal signs

Why does that need a sign at all?

to put up a sign

this is getting weirder and weirder

There used to be a sign there, and there will be one later

this is a classic problem in coding

//TODO add sign

throw new NotImplementedException("sign not in use");

it gets worse when you can't just comment it out

Oh, I love temporary signs.
At home we've had one up for months saying "Careful, Ice" -- it's been there since last January, and stayed there all through the summer...

//TODO fix sign, whenever I remove it the code stops working even though nothing references it

we have signs saying that the water has poisonous algae

A broken wrist watch is going to be right twice a day, Muri ;)

👍

You... make a valid point there

But why wouldn't you fix it?

That's a waste of a wristwatch

why fix it? It works when it's relevent

Och Aye, very useful

Thing is right twice a day

What more do you need?

exactly :D

That's how a lot of state entities and coders think. Both drives me nuts.

@haughty meadow

Surely there are easier ways to keep tabs on the PC if you own it?

Rather than installing a RAT?

Thank you kind sir

No, im a noob, i got my way to the machine through the rat

Did you buy the machine?

Yep

Do you have an account on it?

Account as in what account

A user account

No

I'm guessing this is probably Windows we're talking about?

Yeah

If you're worried, why not ask your son to let you put an account on the computer?

Then you can just SSH or RDP into it

I have admin privileges by the way

If that can help in any way

I can execute any shell

What exactly have you done here? Broken into it via EB or something?

I don’t want him to be suspicious or change his behavior.

Nope

AsyncRAT is an open-source project

Im not on linux

I downloaded the complied release

Built a client

Ran it on his pc

Gave admin privileges

I just want to make sure that I’m still connected after a restart

salve

whats this about a RAT

Swag shop when?
@formal sparrow got samples ordered, just waiting to do quality review before releasing

Why does it matter if he gets suspicious if this is your son? Doesn't sound hugely healthy 😄
Ah, hang on. Lemme guess. You're worried that he's using the computer for something you don't want him to, and want to catch him doing it or monitor it?

COVID has taken its toll tho, delivery times taking longer

@formal sparrow got samples ordered, just waiting to do quality review before releasing
@restive tartan Beautiful!! ♥️

I'll bet it has... 😥

DAMN YOU CORONA

Not me:)

@formal sparrow Yes, that’s the case

Caligula sent people to the sea to stab it for revenge

We shall send people to stab the air!

Then it might refuse to lift the plane that brings your hoodie to you Pars...

Well now

lets not get hasty

American air isnt the same as british air

@haughty meadow Is this preventative, or do you think he's already done something wrong?

*Watch as the plane flies across the Atlantic and promptly crashes when it reaches American airspace*

Im just suspecting he’s doing some illegal stuff that id rather not mention here

You'll be better off confiscating the computer and analysing it physically @haughty meadow
If you bought it then there's nothing wrong with that, and it means you're not relying on malware to monitor it

I'm going to emphasise communication

It also stops him from doing anything else illegal

Also, yeah, talking to him might be a good idea too 😄

I dont think that ill be able to do that, I think he erases his tracks

Whether that communication is between you and your son or you and law enforcement is your choice

It's Windows. Everything leaves a trace.

as someone doing forensics chals rn

Oracle is right

No matter how smart he thinks he is at covering his tracks, the evidence will be there

btw if anyone can figure out something with this string ad d9 db 88 bd c8 ce 9b b7 c2 d0 cf bf c3 da cf bc cc dc 9a ad c5 d5 8e lemme know

Well im not capable enough of doing such a thing sadly

Does putting the client.exe in the startup folder solve my concern?

Well, you're right, your trojan likely won't survive a reboot unless it's added to the startup tasks. I would highly suggest speaking to him -- James is right there.

Got you

Thanks for the help

But then how does it work on linux

Is it different?

Yes, theoretically putting it in the startup folder should work. I'd be inclined to do it via the registry myself though

What do you mean?

Like doing something similar through kali linux tools that im not familiar with

Is it sustained better

Will it like survive a reboot?

The connection

Connection no

It'd die with the process

You'd need to set it as a startup process either way

Also Intel Management Engine

How do i do it through registry?

Or otherwise make it execute at a certain time

You're saying you've got access to the computer physically?

As in, logged in, got access, can do whatever you need to?

I used to, now no

Thats how i installed the malware through a usb and turned off windows defender and added an exception

So you've got shell access?

Sounds like you need to confiscate a PC though.

Yeah i got shell access

Mhm. You can change the registry keys through powershell (and probably CMD), but I would still recommend confiscating it if you think he's done something illegal

I tried searching for such powershell scripts but couldnt find any and didnt know where to look

I wouldnt know to do them myself

Sounds like you should talk to law enforcement though.

Ill consider it

But i dont want to do it when im not 100% sure

Yo

can anyone tell me what this error code is trying to run putty ? mac ios

Gtk-WARNING **: 20:59:14.683: cannot open display:

@near lark that means the GUI isn't working

is there a way to fix it ?? i switched from csh to zsh by prompted by terminal

Can you give me a screenshot of the problem?

yeah

Ah

@near lark Careful btw -- not sure how much you care about your opsec, but you just doxxed yourself

Might wanna delete that if you do care about it 😄

lol how do i delete it

im new obviously

ah okay thanks haha

Click on the three dots then "Delete" 😄

Or ask a mod 😆

i thought you meant in the terminal and something i messed up with putty lol

my b lol

Ah, fair enough 🙂

thanks bb ❤️

I think I might have solution tho I'm looking at this from a forum

okay thanks

Yeah your using Mac

indeed

I'm not sure if I'd risk random commands from forums

Why not install a virtual machine?

i have one just was trying to run putty to get the first lenox lesson done on the website 😆

didnt think about putting it on the machine cuz im stupid lol

Oh alright

Yeah, doing it in a VM makes life a lot easier

I think this might solve your issue but if shit hits the fan I don't know dude

export DISPLAY=:0.0

Nvm😂

You're almost certainly easier just throwing up a VM, ftr...

But like I said it might end up causing more trouble than its worth

I wouldn't worry if you were on Linux since things like time shift exists

Not sure bout Mac tho

@formal sparrow your a mentor at this point what room should I do next?

I did blue yesterday

That was fun

I'm a mod at this point 😁 (well, trial mod -- give it a week and my probation ends)

What kinda room are you after?

Windows, Linux, Challenge, Walkthrough, etc

I mean you've been helping for most of the way soo your kinda my mentor 😂

Any ctfs really

That's beginner level

Beginner... You're no fun 😛

Have you done Jack-of-All-Trades yet?

I'm biased 🤷‍♂️

Well I'm a beginner so I'm not really flexible 😂

But I'm guessing I'll do jack next

Thanks

Jack is fairly beginner friendly tbh

You should be alright with it

Just make sure you get the right one... "Jack" is a monster.
"Jack-of-All-Trades" barely deserves the medium ranking

If it even does

Thoughts @lethal egret?

I saw you created some kind of room on networking

What's that

Honestly the concepts in Joat I'd say easy but then again something one finds easy may not be easy for another

Fair

Yeah if you go for the room Jack, run

I haven't even attempted that yet I gave up

@graceful coral That's my Intro to Networking

Ah

It's exactly what it says on the tin: an introduction to networking theory

@lethal egret that makes me worry since your a x0god 😂

Hmm

Jack

Not Jack-of-All-Trades

Ahh

There are two rooms called Jack 😂

Lmao

(I didn't know that when I made it)

Alright

Joat was my very first box

oh yeah Jack of all trades I got bloods on

Oh you made it

Jack however, is a different beast that I am yet wanting to confront properly

I held it back for a conference, and by the time I was ready to release, Jack was out

Did you created wgel too?

Nope. Can't remember who did that

Oh alright

Seth

Not sure I know him

He's not particularly active these days

Ah alright

Thoughts on Richard stallman?

None..

You don't like him?

Nah, it's just really late and I can't be bothered searching him up 😁

I havent attempted jack yet

because im not subscribed

This is really surprising

as for richard stallman

Seems like no one knows him

I have no opinion of him

I asked you the same question but I think you didn't see my message

besides that I think his vision is insane

Oh nvm at least you know him

Do you think his retirement was a good thing for linux

oh shit he retired

I honestly thought Linux would die

Wtf

How does no one know about tho

I don't follow linux news

It was in the news

Everywhere

He didn't retire by choice granted

He said that haves s with children was OK if the child gave permission which the community wasn't cool with

So they kinda forced him

well

And Richard retired out of his own will for the better of linux

obviously 😁

you cant just say pedophilia is good and expect to get away with that

Some people said that Richard was weird but they think that he should have stayed

anyway this was like

months ago

what makes you bring it up

Me and other people were contemplating switching to BSD if Linux became like windows

I mean people tried to make it like windows after Richard left

Beauty of Linux is that it's a Kernel, not an operating system. Even if one distro became like Windows

Most

I think they still are not sure

Would not

I dont particularly care that much about FOSS

so it doesnt bother me

Haven't been following the news as of late

@formal sparrow yeah but microsoft is on the linux board of directors

so they have influence on what happens to the kernel

Ugh

BSD it is then

@formal sparrow the gnu licence is kinda what Linux strives on so

Lmao

Yeah, too late for license laws

Night all!

ni ni

Lmao

Peace out be safe

Imma go get breakfast

✌️

@graceful coral a little late to the party, but I think Stallman is a little out there on his views. However, his contributions to the world cannot go unnoticed. I also respect his privacy concerns.

is this a valid ip 31.10.590

no

Y

every digit in an ip address has to be between 1 and 255

there also has to be 4 digits

ping it once

that ip

@full vine agreed

That's what some people were saying

well that is interesting

They said sure he was weird

@graceful coral u get it right

But it was stallman

If it wasn't for him Linux wouldn't really be a thing

So respect to him even if I don't agree with his weird views

He's toxic he's weird but he's stallman

You kno

I didn't know you could use shorthand notation like this

explain?? @graceful coral

I got nothing

I've never seen this before

I'm hip

😂

did u ping it @graceful coral

i saw a post on twiiter...so i came here to discuss if anyone knows about this @graceful coral

it seems to do a mod 256 operation

How do you not know how ipv4 works but your level 9

520 mod 256 is 78

and 256 goes into 520 twice

hence the 2.78

How do you not know how ipv4 works but your level 9
@graceful coral no one knows everything..

mhm

you learn something new every day

agreed @graceful coral

i hope it's a fake, but it's funny

plausible given how many sites store passwords unsalted, but probably fake