#voice-chat

or FTP

scp box@ip:/path/to/mp3 .

from the host

to download mp3 to ur pc

its scp not spc

ur typing wrong @plucky vault

u forgot colon after ip

@plucky vault

after the path give space type dot

u have to that on host to download files @plucky vault

u have use sonic visualizer

for the mp3 file

still working on it

scp box@ip:[remote file name] [ local host path]

got it !

I played it using the nvlc command

super cool ! lol

Which room is he doing?

linux challenges

@tawdry cypress u told him its 1 AM lol

Instead of PM

😂

🤣 oh did i 🤣

that's why he was surprised

🤣

XD

Think like some one working at 1 AM 😂

is there some sort of cake party?

nope

psst psst szy

mind if i dm

about a htb box

oh nvm 👀

👀

@plucky vault

@tame ether which mc server are yall in 👀

dark

send halp

i ran out of food in mc

https://www.twitch.tv/gamesdonequick\

ggs

imma die again

@marble cape Bought master chef collection the other day on steam for mega cheap. Has ODST in it :D

I had pocket.

Chewed through batteries like crazy.

https://gamesdonequick.com/schedule

I wanna do the backlight mod for the advanced.

You have to shave off some of the plastic to fit the new housing though.

https://godofgamingshop.com/products/game-boy-advance-shell

So, godofgaming has good stuff and is worth it?

Wasn't sure I should send them my monies.

Oh wow. <3

I wanted to get their glow in the dark buttons etc. Really make that old advanced look bomb.

:D!!! Your managers shirt?! :3

lmao

what is this

@manic canyon

@worldly ivy What cha buildin?

buhboi dorkesstorkes

o/

are yall in the modded server?

ye

or at least me and cak

e

pls whitelist

@tame ether

same username?

yep

done

thanks

should i download the mod pack to access?

ahh

👀

that with the latest valhelsia 3 modpack?

yea

lemme check the logs

[05:06:03] [Netty Epoll Server IO #1/INFO] [ne.mi.fm.se.ServerLifecycleHooks/SERVERHOOKS]: Disconnecting VANILLA connection attempt: This server has mods that require Forge to be installed on the client. Contact your server admin for more details.

oh

you suuure you're on the modpack?

let me redownload

ni ni cry

wait

thy is the general voice locked?

verify your account to get access

!docs verify

tnx @tame ether

watchu kids doin

imagine building stuff

just nerd things

Lol

@frigid temple ??

What happened

How can i join too?

I think u need to get verified first

its working fine now in general

just tap on genreal

He needs to verify first

How to do that?

!docs verify

Done

Thanks guys

Hi Guys, I'm trying to git clone Kerbrute tool
[2:48 PM]
But mo Internet on the Host... what can I do?
[2:54 PM]
??

get internet acces and try again

@worldly ivy This is 🔥 m8. You made this ?

Yea, just messing around with some synths

very nice

hi

Hi everybody

@nimble mason hi whats up

Ayyo I've been trying to find a way to communicate with you through the shell

haha whats up man

nothin much

How about you?

same here lol

we're bored so we hop onto some koth

yep lol exactly!

i havent slept at all lol its 6 am

oof it's 9pm for me

ooooo crazy how its night on your end and morning in my end

Yeah, never expected that we'd be playing at totally opposite time zones lol

And I can't really do anything now because the chattr binary is gone for some reason hmmm🤔

hahahaha its not me lol

It was literally there, then poof

Ive never actually used it before and i looked up how to use it exactly when the game started

i tried running it but i got permission denied even tho i was root

then i run it again with sudo and its not there anymore

Yep, it's one way to maintain king

Yeah that happened to me, I literally saw the binary but it suddenly disappeared

did the other guy leave or something?

he doesnt seem to be active at all

idk either stumped or forgot about it

oooo btw how did ya get in? you bruteforced shifu?

lolololol

yeahhhhhhhhhhhhhh

how did you message me earlier?

ahh its just echo "hey yeahacked" > /dev/pts/1 lol

i didnt drop into your shell

but later on i did xD

Lol I noticed

Ah ok I was trying to use write but we were the same user

ahhhhh lmaoooooo

i didnt think of that

do you know how to nuke a terminal with the /dev/urandom ?

Now that I'm reading the manpage, I can do "write <user> pty/0" to talk to your pty

I do remember seeing urandom in use from a video by John Hammond but I haven't fully explored that yet

haha yeah its awesome lol. it nukes your shell

I don't think it worked on me though, I saw the urandom text but no garboil

it worked...

hmm maybe i forgt the syntax

oh lmao

how do I stop ittt

you just killed my screen lol

ahhhhhh i forgot god damn it

What's the syntax?

it has a weird syntax lol

Literally had to spam Ctrl+C 😆

did ctrl c work in the end?

yeah

ahh thats good, at least you didnt lose your shell lol

I was about to give up on that shell lol

yo, turns out i gave yoy the wrong syntac

thats why it still didnt work on me i guess

ahhhhhhhh it worked

Wait it worked? lol

yep

lolol

Welp I lost gg

ooooh damn i didnt even notice

its been a good game tho

this is like my third time playing koth

and this is my first time actually talking to someone thats playing it live with ne

ayy glad to be the one talking with you (this is also my first time lol)

ohhh hahaha ayyyyy

but dont you feel like koth is a little stupid? like it wont be long until we do all these rooms, then itd be just like cheating

yeah that's true, it's only fun in the beginning. Then it becomes monotonous

I still haven't gone over all of them but I hope they add some more boxes

yep same, for now, ive gone thru michael jordan one, which was lame already because i had already watched a walkthru of it a couple of weeks ago

and then did another box

and now this one

I've done spacejam, tyler, shrek, and this one. But I haven't root all of them

this one was kinda ez

yep this was super easy lolll

even spacejam lol

Oh you will see lots of new things while fighting for king.

My previous match was not that fun mainly because once my opponents obtained root before me, they would just continuously kill my user shell

If you think these are easy, give fortune,offline,hackers or hogwarts a try 😁

ohhh i havent tried any of them yet

yeah that sucks. or somebody turning a service off like sshd

People tend to change port for ssh.

huh yeah maybe

that's pretty smart, but annoying

actually, a re nmap scan would probaby solve that

yep if they change the port, if they turn the service off then you need to go into the trouble of finding another way in

If you want some faster scans you can always install rustscan.

At that point we just request for a reboot of the machine and then it becomes a race to whoever gains root first

yep i use it

but double check anyways with nmap too

it sometimes has false positives

How much faster is it?

If you think someone is breaking any of the rules you can mail at koth@tryhackme.com with the game id and expected person's name. Also i would suggest with some sort of proof if possible.

veryyyyy fast

Waayy faster than nmap

we're talking about getting it in a matter of seconds for all ports not just top 1000

Setting persistence is the key to win 😁

yooo what!?

yess definitely !!

yep thats why you see it used in oscp

Just in case if you haven't already you can check out these docs and blog post for king of the hill.

!docs koth

Rustscan used in OSCP?

Is it?...

Hello everyone

yep you can use it. a lot use it actually

Something tells me Offsec would hate that, given they emphasise staying as stealthy as possible in the PWK materials

but if youre gonna use it, just add another terminal of an nmap scan just to cross-check.

That said, I'm sure @cursive herald will be happy to hear that

Mate, I already have OSCP -- I don't intend to use it in there anytime soon 😆

ohhh cooool

(and bee is the one who made rustscan)

Me: only having eJPT 😦

It's easy to get overwhelmed, certainly. In the end it depends on how good you are at working through things rationally and not panicking.

It's really easy to start panicking during the exam

If you do, you're screwed

yep thats exactly what i thought

Those 24 hours probably fly by

The boxes also vary wildly in their difficulty

Enjoy the role ☺️

Some are pretty easy. Some appear impossible. I know one of the boxes in there has taken out 7 people, me included, with none of us managing to root it. Another of them I went from user to root in quite literally 3 minutes.

Wait hol up thank you ❤️

The difficulty doesn't necessarily depend on the point values either. The easy one was a 25 pointer. The impossible one was a 20 pointer. If you're unlucky you get all impossible ones. If you're lucky you get all easy ones

Oi, that was me

have you tried bucket from HackTheBox? how would you say it is compared to htb. Im not trying to get anything out of you by the way. if you feel like youre not supposed to say, then dont lolol

Thank you @full sapphire ❤️

Wow that is a large margin

*rustscan btw

damn that would suck!

Muiri gives the roles

Don't get me wrong though, it's an awesome experience. Well worth doing

Yeah, not allowed to talk about hosts specifically, so I'd rather not compare them directly 😆

yeah yeah definitely. ill definitely try out the oscp

How would you compare the eCPPT with OSCP? because I'm currently studying for it

yeah no problems mate :)) just thought it might have been okay to compare them vaguely

i think eCPPT is harder since it has pivoting and active directory involved

I can't make that comparison, given I haven't done eCPPT yet. My understanding is that they're about equivalent. If you have OSCP then eCPPT will be a lot easier, and vice versa

oh ok, they are both really hard certs (at least for me) so I can see how they can compare/contrast in different ways

I actually didn't know they went over ad lol

PWK also does AD, for the record

And pivoting

They're just not actually in the exam

Offsec are also absolutely incredible at creating extremely convincing rabbit holes. Not sure what that says about realism, but I suspect their boxes are harder for it.

yep i found it in my pdf. for the pivoting, they just went over ssh tunneling but i felt it was useless

a youtube video explained it better lulz

I may or may not have a full network coming out teaching it by the end of the month too 👀

Do you have the 2020 or pre-2020 PDF?

and if i ever were to use tunneling, i'd use chisel

the 2020 pdf

Because the 2020 PDF covers a lot more than that in terms of pivoting

hmmmm you think i might've missed it?

probably

Quite possibly. I agree, it does miss some big things -- chisel, for example, but it definitely does more than SSH tunnelling

I rushed thru it because i know it wasnt coming for the exam

yep chisel is a beast

Oh I remember chisel vagely from ippsecs reddish video

I'm traditional -- I tend to use normal SSH proxies and socat 9 times out of 10 🤷‍♂️
That said, I do like chisel, and I'm about to go try out sshuttle which I hear is the best of the lot

ooooo ive never heard of sshuttle

Should see the socat content I have in this network though. It's a good 1300 words, cut down from 2000

I'm still such a noob. Thank you for mentioning these new tools like rustscan, chisel, sshuttle. I'll definitely take a look at them 🙂

anyways guys I'm off to bed now! its honestly 7am rn and i havent slept at all

it was nice meeting you guys

gn bro

gn guys

Beat by @rustic mica

vibinnn'

@shut vault long time u streaming good 🙂

yeah

how you doing

Im good more onto web app 🙂

yeah

im more pen-testing machines and webapps

but not great at XSS and stuff

for whatever reason the stream is locked

yeah

you have to be in the voice channel to view it

https://www.codingame.com/clashofcode/clash/1536548dd744f19a54a39066e522d04e9ee2af8

https://www.codingame.com/clashofcode/clash/1536559107713453a4928b174a5c60bd6fbb80f

list(string.ascii_lowercase) + list(range(10))

str(x) for x in list(range(10))

p = multiprocessing.Process(target=try_link, name="Trylink", args=(link))

so sad, the small study room is full :/

I would have liked to join you 0day Omega and Quirky

The point of the rooms is for that specific reason :p

🙂

https://tryhackme.com/room/networkservices

.

https://tryhackme.com/games/koth/join/df70855c1497d3af5fcd22e3

Zoom it bro...

@civic wedge

good luck all

3:30 for me

am

sudo nmap -p- 10.10.9.76 -v -T5

@plucky vault https://youtu.be/m7cHUNXB7j4

Sorry for bumping in KEKW

https://www.youtube.com/watch?v=_2qPWc32LS8

@urban cloud chess????????

Ok

5 sec

https://lichess.org/VkcGIO3D

Joining in a min :)

okay

@unkempt minnow I guess thats Delhi or manali but good one 🙂

@unkempt minnow Hey guys, I'm not talking because my microphone is not working, but i love geoguesser.

Hye mentats

@bright wyvern you are breathing too loud

https://stackoverflow.com/questions/7782411/is-there-a-foreach-loop-in-go

wow thats actually very cooll

Beeeeeeeeeeeeee

You're back!

not

not

wait

Could someone help me find the password of a friend of mine who on instagram is hacked?

no

your friend sould message instagram

i think what i dont have permisson

!docs verify

ok

ok

thx

@trim cloud

because she is shy

and she nude one guy so..

thx for help ^^

bot message

Your level has been updated!
You are now verified, you cannot unlink or relink any of your accounts for security reasons. Please contact the TryHackMe Admins or Mods if you need to change one of your accounts.

so, not

too

!vpnscript

wget https://raw.githubusercontent.com/tryhackme/openvpn-troubleshooting/master/thm-troubleshoot && chmod +x ./thm-troubleshoot && ./thm-troubleshoot

|

@tranquil turtle john should be installed by default on your kali machine. 😛 just saying. Its a fun program.

yeah, but i can't found gpg2john

😦

whereis gpg2john

https://i.imgur.com/3QX8n1L.png

yeah 🙂

thanks

https://nakkaya.com/2009/04/15/using-netcat-for-file-transfers/

No

I'm working lol

@rich hinge the People

?

!rank

Lol

'

#voice-chat

yo

how to get access to general voice chat?

!docs verify

Thx a lot!

a

a

Wow I want to be on that shcool

a

hey

https://www.geoguessr.com/

👀

there's a bunch of small christs in many cities in brazil aside from the main one in rio lol

https://www.artlebedev.com/optimus/

Guys i really need this
What challenge in THM that's based on nginx ?

yes

Saudi Arabia

🤣

Hello Electron

hi there

What's going on VC

can't you join

Ok

just some OGs streaming

Ok

Got a call. One sec

👍

electrical or electronic engineering?

so much noise in 0day camera

high iso

🤣

can you spell those words

silent

its vmware or VB?

https://www.twitch.tv/sup3rhero1

Starting now

@unkempt minnow what your opinion on this..
https://whimsical.com/getting-started-in-cybersecurity-shubham-khichi-PwocFGHv6YVjC8Z2fS6PzN

Hello @unkempt minnow

shady stuff sir

™️

From memory is that not the one that's a direct rip off of the free-path blog post, in mind-map form?

it's not mine btw i just find on the net

hey i can type

my microphone might be terrrible

🙂

i am

19

oh we have got a winner

yes

👀

aka lucifer and we are in the same timezione i guess

Gonna go sorry for leaving unfortunately

It was nice talking to all of you in stream

Byeee. Same here!

give it a sec

oi

U talking about me?

@plucky vault

@civic wedge

Yes

I dont have a mic

You have a Youtube ?

LOL

just a side hobby

I am trying a to do something but it will take time.. for a new video

like hosting a web server on an android phone

🤣 just for fun

for content..😂

https://www.samsung.com/us/explore/dex/

yeah yeah.. but I dont have a samsung note 8.. thats the requirement

I have a super old samsung s5

I can mirror my android screen to my pc with guiscrcpy anytime tho

yeah.. I mean technically you can run clean Arch on any android

but you will need a keyboard and mouse

yeah tru xD

I just know Ubuntu touch is available

for some phones

pinephone is for developers.. that is not that powerful tho

@quiet knot

yeah.. I saw a Chris titus 's vid on that.. He installed Ubuntu on Google nexus

see ya.. Imma try hit on some rooms

CDNetworks

'

https://www.youtube.com/watch?v=ZYlxZtgqt60

im elf

Hello I'm elf

Hello everyone

hey

Hello

https://hackerone.com/reports/867952

https://portswigger.net/web-security/request-smuggling

https://www.youtube.com/watch?v=3tpnuzFLU8g

I saw this one on nahamseccon and it's pretty good

but it's an inherently messy attack

yeah i know

defo have to be careful with that stuff on programs because it can easily break program guidelines if you're not careful. But you know this already

https://tryhackme.com/room/attackerkb

what @steady umbra

@scarlet sphinx https://www.timeanddate.com/time/dateline.html

@scarlet sphinx basically blackarch ships literally anything it possibly can

Kali ships sensible tools

Look at the install size for blackarch

I wouldn't touch blackarch

"registered distro"

wat

@scarlet sphinx "red hat hacker" is a troll

Red hat is a linux distro.

Black grey white that's all that matter

All the others are fake

Rainbow hat is chaotic neutral

@barren heart you play osu?

yeah but I'm kinda bad

6 digit

around 520k

pog, im only 4-5 digit

yeah idk, streams are just a big nono for me

https://github.com/guyinatuxedo/nightmare

https://guyinatuxedo.github.io

lmao forgot the class started

test

hello

Hello

Omg pfps

1710 not 1800

'

didn't worked out soo

hello

hey

Hey🙏

Hi

sorry forgot i was still connected

!docs verify

@jolly beacon if you are wondering why you cannot join the that vc ^

smh Dark never misses a chance to advertise his Discord and youtube.

Hi

Hi

@foggy shard that's wrong what are you are looking at.

/etc/ssh/sshd_config file is for ssh configuration

on the local machine, you wont get anything by editing that on your machine

@echo badge no stream sniping please

0-o

https://www.cyberseek.org/pathway.html

https://www.express.co.uk/news/world/1385597/Germany-Covid-angela-merkel-eu-news-coronavirus-lockdown-detention-centre-refugee-camp

awkward silence

https://www.twitch.tv/sup3rhero1

!dark

set lhost

if i start doing a room while in KOTH will it disconnect me?

just in case

no it wont

https://www.youtube.com/watch?v=uZI9ZnKRudg&t=893s

any idea which tool and wat he is using ? so that i can simulate in vm ?

any idea guys ?

I believe David has actual SIP phones with GNS3

it's not exactly easy to simulate what he's doing because you need actual Cisco metal to use GNS3

@deft hull Can you hear me ok?

umm . noe i am having connectivity issues miss

Ahh I see 😦

hmmm something wrong with my mike and everything else 🙂 just installed new kali so trying bit by bit

Do you play Tryhackme? @royal coral

Interesting first girl I know on Tryhackme

https://tenor.com/view/britain-england-cyrus-zimo-zimooof-gif-16918213

UK (England) 🙂

yes ^

Does that make a difference?

haha 🙂

It ain't no difference bro just that she's the first girl I know playing tryhackme

||Ohh I am from Ecuador||

Oh nice, I think you're the first person I've met from there.

Haha what sarcasm

🙂

bye

Bye

not gonna be able to fix it today unfortunately , soon will be 24 hours when i am up. Need a rest and tommorow need to fix microphone and connet with kali through vpn to THM

night all

Fellow uk brexit members 🙂

definitely time to get some sleep then!!

stand by over weekend also

😦

😦

i have to go into my mic settings on my pc

gimme a couple mins

@limpid badger

for sum reason my mic quit

so ima restart my pc

yo

wassup

Yo

Hey

I'm getting an error on my ovpn 2021-01-24 14:57:21 TLS Error: Unroutable control packet received from [AF_INET]34.253.19.14:1194 (si=3 op=P_CONTROL_V1)

#site-support

Hy there

Hey

hi?

im kina new...

Can't talk today... no mic

So you're safe

<-- me in actual portugal

😄

I'll be back in a bit

Love Portugal, whereabouts?

Ericeira 😄

and that should be enough to Doxx me if you ever wanted to lol

naw

my bf is Portuguese btw @fallow brook

I'm so sorry

that's where I live

Jabba can't understand Esqy saying peices of eight

near Foz

best surfing beach

Ribeira D'Ilhas?

yeh nearby

though you might be thinking about Peniche.. but we're small so everything is close 🤣

if you see this boy around, he's either with me or my wife, so yeah ez to spot 😛

The world is small, I am from Mafra

Rofl!

oooooooo cute doggoooo

is he doing better Omega

See.. now that's too close to comfort. Romano and I probably have seen eachother before 😄

Maybe

@royal knot yeah, better. stilll a little limp when he gets tired but getting better each day

I need to check out that hackerspace after we all get vaccines

Caracavelos @fallow brook

Where?

Mafra, supposedly. never visited it

Close.

https://wiki.hackerspaces.org/MafraLab_-_Makers_Community

Ohhh really? I have to check that out

seems like a small thingy, but curious about the people and if the space has anything else about it other than weekly meets

@royal coral It's ok I'm not looking 😛

@royal coral what you broadcasting?

wiii wiii

I'm super distracted today

@open ivy have a problem with OWASP room, Jabba is trying it now on his machine to see if its something im doing wrong

Ah

The secret to Esqy's social engineering's room is to get him to give you access to it by pretending you should already have it.

Or, if you get really close to that person who feels uncomfortable with proximity... they'll avoid eye contact and not engage and leave... great way to not get noticed

people are people are people

@unkempt minnow sooo.. he acts like a certain uncle? 😛

@unkempt minnow sooo.. he acts like a certain uncle? 😛

Haha

I think I figured it out @royal coral

give me a second

Jabba just did it

🙂 ty though

ahh okay

was it to do with the python versions?

no

oh, that's what got it to work for me

we had to click into feedback and then refresh

first thing i do when i get into a box is run linpeas lol

pickling is broken between python3 and python2

Scripts break all the time

Fundamentals are more important

scripts are much easier to spot ;)

The best thing about metasploit is to use it to learn how exploits work 😄

no no no.. You can't use mimikatz,

arguably the banners but sure

meterpreter 1x or metasploit. You can use any msfvenom that's not staged.

@manic canyon sure, there's a completely different mindset from a hacker, a developer or a regular user. The user is trying not to break it.... they want it not to break..

drip drip drop.. users go bai bai

I finally got Bofs down... what a relief..

But really web stuff ends up being more complex 90% of the time because there's so many ways things can be broken

Anyways I'm off to work on my own box. Nite

heh, nah I mean reverse all those exploits 😛

anyone here good at codeing and stuff that can give me a second of thair time to ask some questions

@plucky kayak what language

I feel like that's quite a general question

@limpid badger I am good sorry i cant speak right now

https://events.tessian.com/webinar-whenoooistmi?utm_medium=partner&utm_source=hackerone

looks like fun

cat /etc/crontab

who was speaking rn

I am new here

How can I join voice channel

Its locked for me

!docs verify

@meager hare ^^

!docs verify

Thanks a lot @hot snow

https://www.hacknos.com/rbash-escape-rbash-restricted-shell-escape/

what room is that?

Just because this hasn't really been formalised before

u missed a password

"foobar" in linpeas possible creds

Rules for Streaming in VC:
Stream what you like, as long as it is:
A) Appropriate. If it's not PG13, it ain't going in this server.
B) Not from a commercial CTF site that isn't THM. Vulnhub boxes are fine to stream. HTB, CSL, Proving Grounds, etc, are not.

Have fun!

@meager hare https://tryhackme.com/room/bufferoverflowprep

https://tryhackme.com/room/bufferoverflowprep

too slow

lol

@hidden marten you are too young to use that language 😄

😂

@hidden marten https://tryhackme.com/module/linux-fundamentals

lol

😂

@hidden marten that was @meager hare

@lofty moat i thought you are indian

cool

me too @lofty moat

how to be verified with the bot?

!docs verify

smh @hot snow is always faster than me 😄

docs summon me

.

👀

@hidden marten why dont u grep the thingi

@plucky vault what r trying

im tryna connect to SSH but in not able to

@formal garnet

yeah

dude

plz help

guy

how to hack

im new and idont know everything

:((

maybe a bit

vpn?

i did connect to openvpn

@formal garnet

could u ping the machine

yes he was

hello

do you guys really learn how to hack here

Yes.

oh ok

so how can i do it

Sign up to the site: https://tryhackme.com/

do i download a program

Then follow this beginner path

!docs path

!docs free-path

Do not download any programs unless you know what you are doing/ have been told to by the room you are completing.

ok

and does it cost money

Nope

ok

All services provided are free

so thanks

i wanna become a hacker for the national gaurd

Good luck :D

thanks and are you advace or beginer

Intermediate, I do not know loads nor do I know little.

ok well good luck to u too

hey

What's up @terse forge ?

where is the main room in the page

the one you can do the 27 day trail

the one for beginers

27 day trail? huh?

i am new

thats why

but where is the beginer page

Are you following the path Jabba gave you?

@plucky vault

not bad

it sounds like a mc soundtrack

That was the goal

if i buy a tryhackme 3 month voucher and redeem for my own account or only others account ??

plz help

You can redeem it on your account if that's what you're saying

ok

thnx dude

@gleaming fulcrum can i dm you ?

@earnest prism yes you can!

!rank

#bot-commands

thx for the sound trac

Calming

Nice fade out at the end

Jovnn said that first one sounded minecraft like so I just went with it

Sounds like one of those tracks you find on youtube titled "Relaxing ocean waves" and it's just the sun setting while someone is sitting at the beach

Funny you say that, coz I tried adding the waves in the background

haha

didnt find any good wave sounds tho

Haha

Yess

.

.

xD

👀

ParseResult(scheme='https', netloc='google.com', path='/', params='', query='hello=yes', fragment='')

https://google.com/?hello=yes

https://www.geeksforgeeks.org/python-check-url-string/

👀

Bad @cursive herald -- no swearing!

I SWEAR TO GOD IF I HEAR BUZZ BUZZ ONE MORE TIME MUIRI

Buzzzzzzzzz.....

Muir

Bbbbbbbbbbbbbbbbbb||eeeeeeeeeeed time||

varg swore

smh. Children, children, sort it out smh

Excuse me I'm not a child

Oh wait

https://www.etsy.com/au/listing/710432068/pokemon-shadowbox-pokeball-every-journey?ga_order=most_relevant&ga_search_type=all&ga_view_type=gallery&ga_search_query=pokemon+shadow+box&ref=sr_gallery-1-4&organic_search_click=1&cns=1

There are two mods in there, and two ex-mods. I'm sure you can handle this peacefully.

Let's fight it out

🤦‍♂️

https://www.etsy.com/au/listing/696742874/pokemon-eevee-vs-squirtle-battle-shadow?ga_order=most_relevant&ga_search_type=all&ga_view_type=gallery&ga_search_query=pokemon+shadow+box&ref=sr_gallery-1-50&organic_search_click=1&sca=1

curl http://10.10.10.10/whoami

!vpnscfript

!vpnscript

@shrewd quartz

Hello! You all helping fix something ?

@shrewd quartz can u try ssh -vvv ...@..

Internal

https://youtu.be/wpyNaifejf0

@hidden marten wat u doin

@plucky vault yup

do it

its a good machine

ok

mic prob not working

how to hack snapchat acount??

please

@unkempt minnow

Bye

what is happening ? :3 some kind of event ?

what do you think about sudo exploit 🙂

10 years and nobody find it

👀

https://virtualvacation.us/

.

hello guys

yellow

@glad radish can you tell me how do i learn burpsuite

I am not a subscriber

sudo apt-get install virtualbox-guest-additions-iso

apt-get update -y

apt-get upgrade -y

@plucky vault there is a room burp in try hack me, maybe it will help u

@stiff helm desktop settings

youcan change icon size

once you get your file this is the syntax you are going to use "openvpn {your config file}"

But i am not a subscriber

how can I enter in the vocal channel?

!docs verify

0. Set working dir for mona
   !mona config -set workingfolder c:\mona%p
1. fuzzing
   Find the length of string to crash the application
2. EIP Offset
   2.1 Use the command to generate a unique string to finf EIP offset
   /usr/share/metasploit-framework/tools/exploit/pattern_create.rb -l [$SIZE]
   2.2 python2 exploit.py with the Above generated string as payload
   2.3 Check the offset using the mona cmd and add it to exploit
   !mona findmsp -distance [$SIZE]
3. Finding Bad Characters
   3.1 Genrate byte array without "\x00"
   !mona bytearray -b "\x00"
   3.2 Add the generated byte code as string as payload in exploit and run it
   3.3 check the char present after ESP
   !mona compare -f C:\mona\oscp\bytearray.bin -a [$ESP ADDRESS]
   The chars show are possible bad chars
   3.4 Repeat step 3
   by adding the next char from mona's output till we get the same set
   of bad chars.
4. Finding a Jump Point
   4.1 !mona jmp -r esp -cpb "[$BAD CHARS]"
   4.2 Add the JMP ESP address to retn in exploit n reverse order(Little Endian)
   Eg :- \x0a\x0b -> \x0b\x0a
5. Genrate Payload
   5.1 msfvenom -p os/shell_type LHOST=$IP LPORT=$PORT EXITFUNC=thread -b "[$BAD CHARS]" -f output_type
   5.2 Add it to payload in exploit
6. Adding NOPs
   6.1 Add "\x90" to Padding in exploit
   padding = "\x90" * 16

How do you specify which shell is used when you login?

uname -a

cat /proc/version

https://www.twitch.tv/sup3rhero1

sorry, i thought it is free

want a hint?

10 points for anyone that can guess the name of the song

Just seeing what room is being done xD

Nice

maybe apt-get remove telnet --autoremove

nuvole bianche, something like that, but i forgot the name of the music

sorry this is the name of the music haha

Haha good job

How did u discover the /bin/python problem?

.

i dont know

No python 😭

Good Stream, bye

my discord crashed..

oh

How can i access

general?

!docs verify

You have to verify

Okey

https://tryhackme.com/games/koth/join/e458846d5e8caea144db3e06

what r u streaming btw?

@hidden marten

owasp top 10 thm room i think

oh

i swr he is always in general

@jaunty topaz montserrat bold

thank you <3

hi @plucky vault

hi

do you know sqli?

Yes

To an extent, why?

maybe you could help me solve this lab

It's asking you to use a UNION attack

google a UNION attack to retrieve login

yea that i know

let me show you

tried null many times not helping

Hold on\

brb

@acoustic nova do you know sqli?

ok

i tried the solution but nothing works

You using burpsuite?

no

Use burpsuite

i dont know how to use it

and use intruder

dont know how to use it

any reference?

what sould i do now?

It's telling you to use Burp

okay

Go to your proxy settings and configure your local host and port number

Under options

or maybe i could use the browser option in burp?

yeah

brb

@leaden arrow could you help me using burp?

My voice chat isn't working ????

I can't connect to voice chat anymore

wth

np

ill figure it out

@solemn galleon just go on Burpsuite Room and it will teach you everything you need to know ! And it's super freaking dope bro!!!!!!

I feel like super man and batman combined

whats good @plucky vault

https://tryhackme.com/games/koth/join/383867bba70d99edc1781c30

Well that was weird

https://tryhackme.com/games/koth/join/17ded2020282b6938cf6abef

supp

@viscid vortex India??

@dawn pond you have to change server and click regenerate

@dawn pond now try again

@dawn pond sudo oin starting

@dawn pond typr this command sudo openvpn yourfile

@dawn pond hiiiiii

I can hear

Hahahaha

@dawn pond open new terminal

or close

it

@dawn pond or closr earlier one

@dawn pond what you trying to do?

@dawn pond its a tool to search for open ports

@dawn pond find vulnerabilitirs

for that service

or port

hahahha many explantions

a open port is like a door haha, it was funny

that not

🙂

@dawn pond I suggest you to complete first linux fundamentals room on tryhackme