I ordered food thinking I’d get back in time but there’s a massive traffic jam… 😭

If it’s a school controlled computer it’s not your right

hey bro i'm nice

lovely you are

🙂

🤔

A personal computer?

ok, nice to meet nice

First person to describe ma1 as lovely

Lol. I'm all nano most of the time. Saw some emacs vs vim wars on company IRC last week.

my personal desktop at home

also my messages might send twice because of my terrible wifi

did you enroll it in the mdm?

there's a bug in it which they haven't fixed so I can't even use it

its just so deeply disturbing

I right click to correct a mistake

and i have to right click twice for it to register

I don’t think a school would do something illegal like that.

If so, good luck. Nearly impossible to get them out

rip

It's
A) probably legal and
B) unlikely to be intentional

i think its more likely something they didn't mean to do, ill show u

Chances are they clicked on "Allow organisation to manage my device" when signing into the school account

Oooh

Group policy strikes again

That would do it

Ayuuuuup

GP sucks.

I keep having to remove the Java 6 runtime they try to install at work

Oh FFS. It was credential cache @serene canyon

Do they just reinstall it lol

Definitely miss asados too. And the occasional yerba mate, but I could get that any time

If lsass pulls the hash values from memory while dumping, How can I get the information of the entered users before the computer is restarted? I performed the lsa dump with Crackmapexec and how did I obtain the hash value of the Administrator user that I logged into 20 days ago on the win10 computer in the AD environment?

What part of Argentina were you born? @blazing granite

loll

I don't drink mate, but I can easily get yerba in the supermarket 2 block from my apartment

Fair fair

Lomas de Zamora (Gran Buenos Aires), but I grew up in La Plata

Personally. I like a good shock from a transformer to wake me up for the day

also surely dompurify should also block that in its default config if it can run js code

Oh i see

There we go. We have player, file share, and backups all working. What am I missing here

Tempted to shove an NFS share in here too, just because?

sigh

sure why not?

Need to hire a pentester to check security

Where do you live in the UK, I lived in London

I'm just building this network from the ground up... trust me, it's literally got about the same level of security as a bank enterprise network

Up to and including a SIEM lmao

To answer your question pre-emptively Mal: because I can

SIEM, we're doing SoC and the lecturer is so annoying.

Shove in 2 for good measure.

Muiri how is your pfp spinning here and on ur profile when i click ur name but when i go furter in on ur profile its anotjer

Server profiles

I WANT

One of the perks of paying Discord extortionate sums of money each year

me poor

Probably the only benefit.

Oh and universal emoji

Literally the two reasons I keep paying for it

ima go rob my cat mby she has manay

Well, that and to keep the AbertayHackers server at level 2

I miss my animated pfp

But the transparent ones annoy people.

wp lvl 7 visualnew

yes

I got to 7

My Uni server is terrible.

does it

It's ran by two power hungry mods.

you're still involved in that I wonder if your opsec has improven

Nah, I'm a grad now 😆

I found a few things of Muiri, and he denied it.

How do i find a missing person (its my cat) 😭

But I know it's real 👀

let's see if I can track you down again

Won't be difficult tbh

👍

Oh goddamnit. Shot myself in the foot here

Haw Haw!

Forgot DLNA / upnp only work within a subnet

does THM have a BlueSky account?

What's Bluesky?

wish i could delete the bot command

the clone of Twitter, made by Jack Doresy

Probably not.

Let me also try track down i just need name age country last name social medias pic of ur garden and outside door and i'll proof how good i am:)

my brain likes to write some groundbreaking stuff at 2am

Do anyone here think they could track me down just by the information u got now?

yes

HUH

WAT

HOW

is dat posible

@pallid lotus found you again, it was same path I think

at this point I don't remember

Getting old

I turned 18 this Jan 😁

am offically adult

I think

HOW

I stg you were 13 when you first appeared around here

No, wait, 15

13.7ish

Wait, yes, 13

almost 14 when I joined

I was 13 when I joined

birthday is in Jan

What the hell. How have we all got so old

Actully probably 14

East midlands

👴

Rather odd question but is anyone well versed in using ffmpeg?

ask your question

#bot-commands message first message was like ~4years ago

15/02/2020

Is it possible to split an .mp3 file into multiple files based on a .txt timestamp file?

Congrats, I guess, now you get to look forward to joint pain and a thinning hair/receding hairlines 😄

yeah with a bit of code

speaking of ffmpeg, i learned about HandBrake, very cool

My old set-up at home I had FFMPEG channel open between laptop and PC.

• Barrier.

So I could have the sound I wanted pipe from laptop to desktop, and control both with keyboard/mouse from desktop.
It wasn't a bad way to work from home 🙂

very cool

ImageMagic and ffmpeg are honestly the best tools ever for media manipulation

I wonder if I have the scripts to turn it all on still saved somewhere x'D

And now yall are 50😎

Is it just me or do i randomly show up to say smth and go back to what i was doing before

I did try with ffmpeg but appear to keep getting the same error and ChatGPT doesn't appear to be able to give the answer 😛

ima go do more thm now peace

nc 10.11.99.1 16789 | lz4 -d | cat | ffplay -vcodec rawvideo -loglevel info -f rawvideo -pixel_format rgb565le -video_size "1404,1872" -window_title rm -i -

here's my lovley one using ffplay

huh

not quite sure why I have the cat in there but hey ho

what error?

The command I'm using is: ffmpeg -i input.mp3 -f concat -i list.txt -c copy output%d.mp3 and the error I receive is
[concat @ 000002cbd5525ac0] Line 1: unknown keyword '00:00:00'
[in#1 @ 000002cbd5525840] Error opening input: Invalid data found when processing input

https://www.tiraniddo.dev/2024/02/sudo-on-windows-quick-rundown.html
omg there's a sudo command on windows now?!

lmfao

Nice, mine was audio pass through only, but when I was linux to linux that looks pretty similar.
I think Windows side was a direct invoke of ffmpeg in powershell with some set of flags.

You are using -i for the .mp3 AND the list.txt

can I see list.txt for the timestamps?

k

You could use

ffmpeg -ss <start time secs> -t <duration secs> -i <input file> <output file>
``` and script it to do it for each timestamp within the file

Sure, do you want me to PM you it so I'm not putting it into the public room?

Up to you

I don't mind the DM

Sent over now.

Don't see it

Don't have any message requests

Computer is saying no. Seems to have an error when trying to send or even send a message.

you got DMs turned off Jayybot?

nope

I think I've been here since April 9, 2021

Please don't advertise here

Almost 3 years

I've changed so much..

2nd december 2023. I'm practically a newbie

Nah

I remember fawaz

and you

in a voice chat

must have been an imposter esqy

19/08/2020 was my 1st post 😄

I also remember you opening up your camera

@shut hawk I think it's because we're not friends 😛

Thats some top-level guilt tripping, right there.

Haha

Damn

Very well

I came 3 months after you!

Try now

I like tryhackme.

I've grown up with it

let's do it

19/08/2020...
What month is that exactly? 😉

Obviously.. 19th month

Non-freedom month

the right month

Hey hey, we have a dolphin here! 👋

I forgot I have to clean my apartment

how are you doing?

2020

I funnily enough get a technician out here on monday to fix an outlet for my ethernet

Well yeah, but I've never heard the name of it that I can recall 😄

Not too bad, what about you?

good to hear, same same 😄

Anyone other than me pulling and terminating cable in my home space feel wrong.

BrokenSyntaxary

same, this is a rented apartment though

and it's on monday

so I was too lazy to ask for me to do it myself

Yeah I assumed it was provided infrastructure... I've yet to live anywhere that data connections are provided infra.

it is provided, just need updating

so it's cable tv intertwined with fiber

Makes sense, IPTV is pretty common these days.

my level in website 12 and here 11 , is not update automatic?

not automatic

you can either run the verify command again or wait a bit

Dang mine was 6 months later xx

Xd

i hate bluetooth devices =/

they love you, though.

well... they can go f*** them self =/

😮

they are worst then god damn Greek tragedy

You playing around with bluesnarfing?

nah... my laser keeps disconnection from laptop. and i can only use bluetooth dongle from that device

Haha, aint heard that term in years

well... they suxx all the time so far 🙂

trying to use apt-get install seclists but its saying cannot locate package seclists

what is command exactly?

root@:~# apt-get install seclists
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Unable to locate package seclists
root@:~#

kali has many by default if you're on kali

try sudo apt search seclist and might show you as search result

also that

ahh okk thanks

Aaaaand my argocd isntance just shit the bed. All I did was sync after a commit to my k3s repo to update HomeAssistant.

Thiiiiis si going to be fun.

Yyyyup, everything's dead.

https://www.goody2.ai/

The pods are still running, though, weirdly enough...

Is that how you produce your young? in pods?

Lemme tell ya, it'd be easier than the standard!

Also stuff is now back. I don't know WTF happened.

It's a good feeling knowing no one else is in the house, fucking jamming rn

got wrongfully terminated from my day job

Sorry to hear that

gathering all my documentation an my screenshotted messages

i may have a case against them as they are sloppy

Well i'm not gonna comment on that

¯_(ツ)_/¯

o only act within the law

👀

plus my partime job is more better and relaxing. im a apprentice 3d printer technocian

already turned in my keys and left.

frack this... need a smoke

Which certification do you folks recommend when you have no experience and want to show that you have practical skills along with projects and is worth the money?

I think i can afford one of the entry level certifications out there

eh Giac certs are over priced

depend's skill or HR

👁️

I mean, I'll apply for SOC Analyst, System admin, Help desk tech or Network engineer

And then pivot to threat analyst

Hell of a spread with HDT thrown in there.

just get sec+

never save up to pay out of pocket for the oscp yoo

u dont need it

knowledge is all u need

although it had a price jump

I got it when it was nearly 150$

now itslike 400$

oh my bad i didnt see u were talking to someone else about it xdd

I have a guy for that, he's good.
But yeah, always record your hours in a time tracker/ledger/spreadsheet of some sort (preferably hardcopy ink), there will be discrepancies googlesearch[wage theft]

And then yeah, keep copies of all communications, because its easier than subpoenas for them later.
The only comm I ever ended up wanting, I couldn't find my copy of, and guarantee it wasn't found in discovery, but I did tell counsel what they were looking for with a high level of detail, and who's mail inboxes it had passed through.

i tought u were talking for urself lol

I was working in a keyboard factory, but they fired me because I wasn't putting enough shifts 😉

they would obviously require it as they have contract if offsec and for pormoting their name

'cept the cert (or a comparable one) makes you defacto employable in some roles/companies.

but its never a requirement to pay 1k to get a job

What's HDT?

it should not be

a multiple choise type exam .-.

helpdesktech

Oh yea

♪♫Dual Core - Here to Help♫♪

Requirement and massive increase in your odds, they're both different things

Ok, i guess i can also forget about certifications and go make more projects

One of my old managers encouraged me to get the OSCP when they were talking to me just before starting a new role... as a Penetration manager with <large corporation>
He all but told me "I have the ability to hire you coming up." Alas, I don't have it still.

Yeah it can be a really big deal

help desk OSED minimum

OSED might be beneficial for my career

As I'm planning to work with reverse eng stuff

lol nice one

so you really aren't planning that 😂

Nvm, it costs a grand

Welcome to next level tech support
Please press 01 to be connected to our help desk

Bruh why are some certs so expensive

Gate keeping

From who

to keep the education industry running

The people without the money for it

How? Wouldn’t it be making people know want to buy if

eh it makes people think of them like they are in a elite club

It works ngl

SIGH

Hydra

Check his bio lol

Nvm

https://tenor.com/view/asuras-wrath-asura-punch-strong-angry-gif-23200962

¯_(ツ)_/¯

probably just a bot anyways

Yeah seems like one of those instagram bots

don't

thats the devil whispering in your ear

} every two seconds

I believe thats one which is even more evil than the devil

St Peter at the pearly gates will remind you of this as he sends you down

I don't need another headache right now

I was fired for unprofessionallism . basically i lightly tossed a flatpak mailer and it made a loud sound due to physics

hr lady said i di d it aggressively

huh?

whoops wrong room lol

head hurts

@valid mauve 👀

Got an email from Kali today lol

learning metasploit currently

in the exploit room

😂

javascript can confirm

Javascript

Have no idea what that means but why did you get fired for it

placing down envelopes is highly unprofessional after all

Type coercion babyy

Also anybody got insights into why mitre is effective, like I usually go a different route for each room/ctf and I don't have any similar patterns

why would a APT have a similar pattern

TTPs describe what an attack do

hmm

so if someone did that it means they could be doing this

mitre patent are based on APT way how they did it

so pattern matching

also anybody know who is jaxafed

he does almost all rooms first

Hey all, is it possible to find the IP address of a number that texted me? I'm pretty sure it's not from a actual cell provider.

ha?

Are you asking me?

yes

Okay so here is the scenario!

I have a Google Vice number, a scammer texted me, I messed with them a little, then they got mad and started talking shit 😆
I wanna see if there is a way to track where are they texting from, I assume they are using one of those spoofing tools or maybe even a Google voice number.

@mossy river

can help u out probably

https://tenor.com/view/thriller-michael-jackson-eating-popcorn-watching-gif-5577709

best thing is not to interact in any way with them...

Also ralexander in ur collection of a lotta tech toys

which one is the most fun

But..But..Buttt.... It's funnnn 😂

ducky ill say... but wifi pineapple have lot's to learn

lemme try cooking up a revshell for lan with rubber ducky for win 11

just turn off firewalls and so... it might catch it

Is this for me AIO?

yea

Thanks, I'll message him 🙂

Gave +1 Rep to @buoyant tree (current: #167 - 36)

dont DM ppl. #rules

Nah, vigilatism is illegal

leave it to the police

It's next level tactics.

In general, the basic framework and methodology remain consistent.

Assuming you care about it.

It really depends on your end goal.

Given that you're asking questions like this, you clearly aren't experienced.
You may get yourself into more trouble than it's worth

I'm not trying to do anything crazy, just trying to see if I can do it!
I'm a cybersecurity engineer and have too much to lose, not interested in getting into trouble lol

Then you would know, it's a bad idea.

You may slide into my DMs and elaborate. OffSec poaching HTB??

So don’t touch it and move on

I’m sure there’s more people out there who is going to be rude to you

They want me to host a mirror

2nd distro I’ve had reach out asking me to host them lol

https://tenor.com/view/karma-fırıncı-gif-3620333979843647474

These days, most people are rude or forget to show basic respect/decent manners towards others.

It is a bad idea, IF I want to engage them, it has nothing to do with that person really, just thought it would be a cool project to work on and learn.

You're indirectly involved with it nonetheless.

You are going to far with that, it's pointless.

So you are saying it's not a skill worth learning?

You're literally giving value and attention to that person.

Not that way.

Because the real aim isn't to learn but to fulfill a sense of revenge and control, that's what you are chasing.

I am not a programmer, but I know that I know one of the biggest programmers in my country who I trust
I just told him that I use the Tor browser to watch YouTube, TikTok, and the like
Because I don't want to see what's happening in my country ( Example: If you are from America and open YouTube, you will see videos from American people ) and for some privacy
When I told him this he told me that just because i installed the Tor browser all the hackers would see me another meaning of his words as i understand is that Tor is not a safe browser at all
I didn't understand what did he mean but i didn't talk to him much about that dose anyone know anything about that ?

I think I gave a bad example, that's on me!
All I wanted to say is that this case gave me the idea to learn the skill to be able to find the IP of VoIP and Spoofed numbers.
I understand if it came across as a revenge case, and you wouldn't want to help me learn that.

You don’t need to know that skill

🤨

Being the biggest programmer in your country doesn’t really stand for much

Doesn’t necessarily mean what they say is accurate

why are they reaching out to you for that?

It's a very specific use case, primarily technical. If you have the background, you'd know where to look, but for the most part, there are very few legitimate cases. For the main part, it's simply shady.

I also had AlmaLinux reach out to me before lol

I just find it funny

I've been on the defense side my entire career, not familiar with the offensive side and which skills are most useful, so if you say it's not worth it then I trust you since you seem like someone who knows a thing or two about this.

but why? where? what for?? like unless they want some random blog to mirror things for them

ok

👍

also alma good

https://mirror.0xem.ma

It depends on your threat vector and your actual objectives. Unless you're operating within controlled (bad actors) nodes, Tor de-anonymization attacks are primarily technical and mostly targeted.

https://www.eff.org/pages/what-tor-relay

Ahhh EFF, love em

huh. how many people actually pull from there? how did they find it in the first place?

just surprised, lol

@vocal gale Didn't I buy you an EFF shirt, or was that @bronze osprey ?

also idk if dumb but why /kali AND /kali-images

They are a reputable organization.

I bought a hat and a shirt

Guess I bought the shirt for Alex, I know I got you the antenna for HackRF

I do a few TB of traffic a day

It’s a official mirror for all them, so

well shit

Some just pick closest to user automatically

how did you start with that tho

Setting up a http server and becoming arch and Ubuntu mirrors

You just make an account and register it

And boom

and you did enough traffic to be approached?

that's the part i'm still surprised about lol

https://tenor.com/view/arch-linux-arch-linux-gif-25380879

I’ve seen gov ranges connect to it lol

You can just ask to be an official mirror for most projects

Yah that one!

The only time I’ve ever been turned down was gentoo

Who took 3 years to respond to my request

that's a good one

And by then I had deleted bc they hadn’t responded

One of my favorite shirts

I like Gentoo.

My first distro when I was much younger.

Matt came in clutch with that shirt. Everything was sold out in my size lol

interesting.

Password is Invalid. Password must be a minimum of 8 characters and include at least one upper case, one lower case, a number and one special character from the following: !#$%&'*+-/=?^_`{|}~

I use tor browser in vmware with vpn in my main computer and all tor in safer mode ( Disables JavaScript and HTTPS sites only )
I use tor only for Youtube,Tiktok and sometimes i play chess online i don't have more things to do

first time seen a site not allow a @ in the password

hunter2@

works here

Using Tor for that specific use case might seem odd due to its inconveniences. Tor relays often face blocking measures, and combining VPN with Tor simultaneously can be counterintuitive and potentially worsen the situation, depending on your VPN provider.

What's your end goal by doing all of this?

hell, even tor recommends not using a vpn with tor

Yes it's not recommended at all.

I have a particular set of skills that is unmatched

Only in specific use cases, provided that the user is knowledgeable about what they are doing.

at which point, you know enough not to listen to their recommendation against it anyways

Exactly.

I hate how people think in my country i can't stand it all I want is to see people in different countries and if you go up there in the chat you will see i said ( Example: If you are from America and open YouTube, you will see videos from American people )

I'm pretty sure that person's threat model isn't that extreme, assuming they adopt proper browsing hygiene and don't require advanced VM segregation. In that case, there shouldn't be any issues.

In that case, it would be don't use Tor and instead rely on a VPN to achieve proper localization for that area.

IP's are much cleaner too depending on the provider.

mullvad used to be awesome in that context

never had a captcha

Nowadays mullvad it's crap.

Yes but when i do that i get out from all my emails

So much garbage traffic has overwhelmed it. People use it for all sorts of illegal activities, which is why it's blocked in a lot of places.

And not without tor?

When i use tor i never login with my emails

But cookies are only valid for a single session.

Same with tor identities, they refresh.

Definitely consider using a VPN and avoid relying on Tor for personal activities, as it can be counterintuitive.

Ok

eh Mullvad's stil good

upcomming on the cool linux stuffs:
distrobox
nix os

If you care about IP quality, it's borderline garbage.

its got good speed and anonymity

Assuming you're still pretty much the only mirror in the greater Canada area, that ain't half bad! Also, second? Who's the other, Parrot?

A friend of mine in ottawa also has a mirror for kali 😂

shadow has all the worlds stub the toe mirrors

Almalinux was the other one that reached out @valid mauve

as soon as any random person stubs their toe shadow does the same

it is not very healthy for shadows toes

It's good, but when you come to use it, you can be spammed with captchas or get blocked for having a suspicious IP.

hands you a pair of steetoe boots

ngl barely have any captchas with mullvad

compared to surfshark/nord/pia

Alma, great backup for when Centos went sh*t

Try using google for a bit using Mullvad.

Unless the region I am using is radioactive.

It get spammed captchas like hell.

i mainly use usa/uk

I mainly use USA.

It's actually bad how low quality some IP's are.

doesn't happen for me weirdly then

I am definitely not the only one experiencing that though.

Keep hopping around the IPs, and you'll see the difference.

just click this

keeps my life simple

I like to hop around to check for ping and more.

I've also learned through experience why some IPs are more reliable than others (regions/cities).

the ping doesn't bother me a lot unless i am gaming online which is something i don't even do now a days

I only have specific use cases where ping is important for me, but gaming isn't one of them.

I don't think I've ever played an online multiplayer game either.

yeah well no vpn will improve your ping

some might be close to 0 effect but it will definitely not lower it

It's relative since I still want to use a VPN; I simply opt for one closer to where I live, and I have a bunch of choices, hence my statement.

hmm i unpinned it a few months ago

haven't seen it pop up again

if it's not the whole plane you're ok 😂

To be fair, any situation where you're using a shared public IP, you will get captchas on popular sites, mainly due to the volume and variance of requests, not inherently "low quality" IPs, or a result of illegal activity. Case in point, reputable, premium, enterprise SASE/VPN products also have the same symptom unless you're using a reserved IP.

I tend to just exclude Google from any corporate tunnels to avoid that very thing.

Mullvad's solid

I generally avoid using overly public providers. Instead, I opt for residential IPs. I do encounter some captchas here and there, but it's much rarer.

I also have a whole system set up which makes my use case very unique.

It's not that expensive many do it.

It’s convenience that people strive for

It's not hard at all. Learning about VPNs can be a nice little, small project if someone wants to understand it quickly.

A couple things to consider, a VM from AWS/Azure is going to be more expensive than something like DigitalOcean, Vultr, Linode, etc. All of these services will also be directly linked to you, and any activity reported to your host will come back to you.

Only if you do anything shady.

So unless it's for something like IP whitelisting or jumpbox, not really a benefit, unless it's just for a fun exercise.

Setting it up?

It won't even work just to begin with.

Since the whole premise is flawed.

You will never go with AWS to hide your identity.

You will go with bulletproof providers ideally and so forth (but 99% of the time, it's for illegal activities).

what even ensures that bulletproof providers are anonymous and not just a big honeypot

like its only thier personal gurantee it seems

Word of mouth and vouching.

Never put your eggs in one basket.

Then you want privacy and not anonymity.

if you can do so comfortably also freeze your credit if you use it for anything

shadow also aims for privacy instead of anonymity

Encrypted traffic in transit and at rest is more than enough VPN-wise, no matter where you are.

AWS is more than reliable and trustworthy.

Assuming you properly secure the instance and know what you are doing, it's very fine.

It's a common security practice though, just ensure that if you ever commit it to GitHub, do so publicly (the api keys). This way, you can't forget the keys. After all, you need somewhere to store them, right?

It's not like anyone will find them either way.

just add them in one commit and remove them in the next

perfectly safe

./joke

It's bad that some actually do it seriously.

shadows younger brother had to go through the entire github removing of unwanted data from repo thingy

as he uploaded the input files for advent of code

who tells you to not uplolad the input files and only your code solutions

not exactly as bad as api keys or credentials

a

I keep everything offline.

I used CVS for a while.

github is the: please send kernel pull requests and patches to the kernel devs using the kernel email list instead of github issues thingy

Nothing better than using a mailing list.

It's much purer and straight to the core.

I used to be fascinated/still is by the Cypherpunk mailing list.

That charm has been lost.

Having to manually contact people to get something and learn.

Then have a proper interaction with someone highly technical.

the kernel is crazy in how its dev cycle works

still amazing project

No clue but probably very old school.

I was not even born when mailing lists were being used in the 90s, but even I miss them.

https://github.com/torvalds/linux/blob/master/MAINTAINERS have fun

remember this is just a mirror though

Oh nice I forgot about that.

I love mailing list, I remember Bugtraq

That's very old school.

APPARMOR SECURITY MODULE
M: John Johansen john.johansen@canonical.com
M: John Johansen john@apparmor.net
L: apparmor@lists.ubuntu.com (moderated for non-subscribers)
S: Supported
W: apparmor.net
B: https://gitlab.com/apparmor/apparmor-kernel
C: irc://irc.oftc.net/apparmor
T: git git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor
T: https://gitlab.com/apparmor/apparmor-kernel.git
F: Documentation/admin-guide/LSM/apparmor.rst
F: security/apparmor/
this block shadow finds decently relevant to how shadow uses their computer

I was subscribed to that mailing list 😂

He also shares the same opinion when it comes to operating systems and distributions. For me, they're simply tools. I just want to get up and running smoothly, focusing on my work, without having to troubleshoot why something like 'x' isn't functioning properly.

I wasn't even born at that time, but if I had found it, I probably would have.

If I'm not mistaken was operational until the end of 2020

and it is now shadows sleep sloops to the beep boops while the meep moops time

there must be an archive I believe but the mailing list is dead

it looks like this died 😂 so I must go too

I will check it out.

@sinful moon u here?

No I'm doing server maintenance while on-call

Possibly will be avaliable after if I'm not too tired

oh k, just shoot me a message when ur free

god damn it man, missed passing pentest exam by 2 points

I'm so disappointed.

It happens, review the course material again and try harder next time.

i passed by about 30

on the sec+

dw everybody gets to the near passing point and then its a matter of luck from what I have seen in comptia exams

just try a giving it a retry

I passed the rest of them easily, and then i cracked under pressure 😛

it was also after a full day of work, with a headache and I was also sick so I'm impressed I did that.

Then next time you will pass under the right circumstances.

Certs are certs.

it is true.

quick question

are these two the sasme

same

Because all the questions seem identical

Yes

25 days of cybersecurity is a clone of AoC 2 as part of an experiment iirc @brisk tree

ok i just needed to know for my internship. they gave both there is one slight dofference i noticed

Yeah, there might be a few changes, but I don’t have any insight to it I’m afraid 😅

anyone know why i cant find this cve in my msf4 module library?

The questions and answers were identical ahahaha just one last question at the end. Ahaha I went from too 20% to top 5% in 4 days 😂

did something happen to machines?

it suddenly went out

The timer on it stopped?

You used too much time?

nah i had plenty of time

over an hour

It’s been doing the same to me recently

Weird bug I think, also happens to me every now and then

It's the countdown

Refresh the page every 30 minutes with CTRL + F5

literally

i also had a headache, was sweating bullets and just felt like crap

@sand tapir Morning sir

can someone have i solution for screenshot , when i take screenshot my local room i cant share in discord to show membre to get solution in my error of my room?

!docs verify

I don't think thats right..

maybe that one?

Used to be that one yeah

ah, old habits die hard.

ello

Good Morning, and Happy saturday 🙂

Today: Making stuff in the garage, then learning python this evening.

hlo guyss
i got a problem , can anyone of u guys can help me?
i made a backdoor .exe file which i opened in my virtual window in my VM ware and after opening it in my virtual window i was able to get the remote access but the same .exe file i copied it to my other laptop and opened it , but this time there was no backdoor connection , can u guys please look forward to this topic ..?
anyone..?

Maybe your other laptop has better virus/firewall protection?

but i disabled all the windows security

hey do sending this .exe to someone wont let myself getting hacked ?

Well, sending a file like that to someone would by highly unethical.

You deserve to get hacked tbh

What does today look like for you Jabba?

no someone was asking me the file but i didnt send it

anyone ...?

Busy

Uni busy?

This isn’t a beginner question, if you want someone to help you, you’ll need to unlock the advanced channels

@cursive cave

Everything busy

I hope you get through it all

Or as much as reasonably possible.

Just remember to take breaks and don't overwhelm yourself.

^^ Agreed

so i have to get at level 13 at tryHackMe.com ?

That's the easiest way, yeah.

Or prove you have a certificate, like OSCP or ECPPT

ohh ok , i was not knowing about that

i am curently doing a course ...

Aye. We gotta be careful. Lots of folk are on here just just 'hax0r my sk00l', and we are not about that

Oh, if you are doing a course, can you ask your tutor?

https://www.udemy.com/share/101WaI3@5-C-bsZUdoPCJAJZXD0ifNabqtKhHJf2zPt6FvC02xDqmrHF21rTIjv0BEUc8-T7uw==/

this one

zsecurity

Aye. Well drop a message on there. Does zaid have a Discord?

by Zaid Sabih

i dont think soo.. but after completing this course will make me eligible ?

No

oo

alright then i have to go to level 13 , okk

James! Same question, What does today look like for you? More evil science?

Not today

What about you Ezqy?

Nothing's arrived which is abysmal

Can someone help me to solve why my screenshot is not working in discord

Woodwork and python.

You need to verify your profile.

You need to verify in order to post images here

@karmic furnace linked a guide for you

Finally working through the PNPT course. been putting it off for too long

Ah good stuff!

I need to share my error in my room that's walhy

Royail Mail?

Ok

What mean sir

Lots of different couriers, all failing

That's not good.

Is it the usual suspects. or not to usual?

Makes you miss Maplin all the more 😄

Evri, FedEx, I had a UPS parcel delayed, Royal Mail have likely lost one...

Sir I wait for your guide's help

My colleague wants to build one too now, from my design

Scroll up to the last time you asked this

You were linked a document that will help you verify the account.

I mean space is damn cool so I can't blame him

I mean, the excitement you are showing for building this thing is kindof infectious

Where is that document sir!?

#general message

Scroll down, you'll see a hash do /verify (your_hash_here)

And don't share it in here

g'morning Shei. happy saturday. Whats on your task-menu for the day?

Maybe hit 0x8?

😄

Good shout - School before THM.

Whats the exam?

I mean if maplin were still about, wouldn't it be cool to just decide one day "hey I'm going to talk to the International Space Station"?

Hehe, Yeah they are super important now. I remember when COVID hit, many schools used those results as a baseline for the final one

😮

Chilling, killing time. makin' sawdust

Not yet, still waking up 😄

Good morning

Hiya Luca

👋

Can someone plz help me

Yes. uninstall Arch, and get a real OS 😄

I edited the hosts file in /etc/hosts for vulnupload and then after completing it and resetting it using Sudo set -i etc I couldn't connect to bridge no longer

How can I fix it?

Can anyone help

How do I reset the /etc/hosts file

Gm

My VM still works with Nat

But just not with bridge

Don't put it on Bridged

Keep it on NAT.

Oof

At first my bridge was working fine

There's no real reason for you to use bridged on TryHackMe.

IF you used bridged, you're placing the VM on your network as a device.

So what did /etc/hosts did to it

I want to understand what happened

What does your hosts file look like?

Can I dm you

Ohh wait

Yes.

I can send text

127.0.0.1 localhost
127.0.1.1 kali

The following lines are desirable for IPv6 capable hosts

::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters

Looks fine.

So is it VMware problem

Does /etc/hosts affect bridge

No

Then I guess it's the VMware problem

Any pro hacker should dm

I need help with something

I will pay you $500 if you can deliver

What do you need help with?

I'm a pro hacker, emphasis on the professional

xdd

Have you set up Bridged to use your NIC card?

yes

i have done that

:hammer: diablo39.#0 has been banned.

There wasn't one.

Since /etc/hosts doesn't affect bridge and Nat still works therefore I guess it's VMware error I am now extracting the VM and going to run it on virtual box

I hope that will work

VMware have weird errors like freezing, crashing and the keyboard input stop working time to time and now bridge stopped working

Can I know why he was banned I don't see asking for a service written in the rules

Lolll 😆

It probably infers the service wasn't ethical, which then applies to the server's golden standard of no unethical hacking

Pentest requests are handled in a more formal manner and pay isn't the first thing you mention but rather the engagement details

Etc

Right

We don't do hacker for hire stuff here full stop

Seems like it's only you.

Vmware runs on my system flawless,

Do you have the version? 👀

hi

bye

Is this your post? this is the second time I've seen you put that here. You know that you shouldnt really advertise here, right?

@rapid merlin has been warned.

@glass nest Can I DM?

Of course

Hello everyone do you know a good room to learn steganography ?

Cicada

Actually kinda excited - I 3d printed some jigs to use in the garage, and gonna give them a test run today

thanks !

Gave +1 Rep to @chilly veldt (current: #7 - 804)

Discord will delete us if we break their ToS and part of that is breaking the law and unethical hacking

do I need any prerequisites ?

for the cicada room

I want to be able to build jigs and formers, would be super handy

I can, in theory, put a 3d printer on top of my server rack

The background, but not really

I am so tired this morning aaaaaa

Me too Jabba

okay thanks

You just reminded me I have a cup of tea in progress

once the server rack is solid. The machine wobbles a LOT 😄

I just ran 2km and walked up 400 steps on the Stairmaster

had stuff fall off the table before

As soon as I’m finished at the gym I’m getting a coffee from Greggs

Ooh, if you didn't mention 'gym' I would have recommended a chicken slice... mmmmm

It's thick sheet steel, none of that flatpack nonsense

Sweet.

on that note, I actually have 4 server cabinets I don't need. they are about 6.5ft tall

Chicken slice?

When we bought a store site that used to be a bank, they just left the racks there. No servers, but a bunch of switches

Yeah.. Chicken and mushroom, I think?

either way, lush.

From where?

Greggs

Are you meaning chicken bake?

Or is there something called a chicken slice

thats probably the one, yes.

They’re really tasty but my brain can’t get over the sauce

It just weirds me out

I have a freezer with loads of them in it 😄

When you got ADHD and can't remember what count you're on, so all your sets go until failure

Fortunately I workout with a friend, unfortunately we often both forget

Ahahahahahaha, I am sitting here doing hip abduction with 170lbs until failure with like 3 sets

8 reps, 3 sets

Strength training with a hint of muscle building

so a few years ago we bought a catering van (non-dominos) and set it up as a pasty/sausage roll place. Turns out the supplier for Greggs isnt far from here. So we called the van 'Mr Gregorys'.

For me it's weight loss

And we have a chest freezer full of pasties, ready for the festival season 😄

I honestly forget just because of the music

Me too, or texting here while working out

HAAHAH

get off your phone

2% battery!

https://tenor.com/view/matrix-neo-keanu-reeves-power-windy-gif-15235043

Texting between sets 💃

They have some funky music on in the gym today and I don’t appreciate it

Texting mid set cause you just work legs💅💅

Whats your Gym music like? (Bella, Jabba and Luca)

Focus on your form smh

Hardstyle techno rn

I am

Whatever Spotify shuffle puts on

Cool cool. I tend to listen to 90's throwback indie rock 😄

Really? I would have thought you'd have a carefully curated gym playlist?

I don’t really listen to music because of having a partner

But working out alone, I put on whatever vibe I’m listening to that month

This month it’s hardstyle popular songs but I do have a ton of rock workout playlists

I just follow the vibe tbh

I find a good song and listen to it on repeat till I’m fed up 😂

Hello hackers

I went with a partner once, but the guy - although roughly the same body-loko as me, did way more physical stuff than me in his youth. I was good that he was pushing me, until one session I was in pain for a solid 5 days after. Kinda put me off

Sup esqy

Hiya vent 🙂

How are u bud

Living the dream. You?

I'm not bad

My friend massively out lifts me but it’s nice to workout with someone who has more experience because he can correct me

It's good that you've found a decent gym buddy

He’s from Secondary School. He said he was going to Cov Uni and I knew he went to gym with my other friend so I asked him if he wanted to go gym with me while he’s in the area

A student from Warwick working out with a student from Cov? Is that an outreach program?

(don't tell him I said that. He sounds stronger than me)

Don’t worry he wouldn’t hurt a fly

Phew!

Okay ive added a module .json file to /root/user/.msf4/modules but it does not appear.

I don't have any friends in the area, so I just work out alone

So now I can make gym friends!

The problem is fixed turns out I just needed to uninstall and reinstall the network adapter in the VM settings

Hello, could I ask where I can get a penetesting and cybersecurity certificate ?

There's multiple from multiple companies providing such

oscp

Any plans of TryHackMe launching their own Pentest cert ? 🤔

No idea, may or may not be wrong but think it would be quite complex with NDAs and trying to invgilating the exam

Good workout today🏋️

What did you train?

Probably not soon, but I am not staff

Chest, shoulders, triceps

in terms of reports, and note taking, what is most common to takes note of. (Please don't say everything)

Reports as in pentest reports for work? For your own notes?

everything 😂

own notes.

Such a geek :p

Hiya Haluka 🙂

I will throw you into a river of fire.

For your own notes?

Things that you think you might forget

Own notes that I will use to refer back to when I'm writing up a pentest report.

I like to note down general overviews of what I am doing and focus less on specifics and more on general stuff that I can them use as a basis in specific situations.

I should probably do a journal.

Nevermind, I think I understood you wrong.

I'm on an active pentest atm.

For a pentest you should write down the what and how, similar to a writeup.

Stuff like CVSS can be calculated later.

Yah, I do th4e same, Bit. 2 notebooks - one on the computer for when I'm working through rooms, and a physical notebook where I write general commands and tools I learned

Also document everything you tested, regardless of the result. Some things may not go in the final report, but it will still help with getting good coverage.

I write everything that is a new technique or something new down in a sort of own wiki and then when doing CTFs i link the article to the technique

I only have digital notes.

With work and active pentests its different because of customer data, so i dont really take own notes

Very annoying to carry a paper notebook around when I can just check my phone instead. ;)

I find that physically writing it (Even in my terrible handwriting) helps me remember better'n typing.

yeah but Esqy and I are old.

's true

Hmm, maybe. I like to learn stuff by doing it 20 times over, so we got different approaches, I suppose.

For sure. We do what works for us

@naive violet All 3D printed jigs worked perfectly! Just need a couple of M8 bolts and nuts to put a drill vice together. Although it cost a bit, I do not regret the 3D printer as of yet

Bet you write down your password too!

I just use the same as my email address. never forget it then

and it has an @ in it, so more secure

there are multiple people in my company that legitmately write down their pws..

Bonk them? (Report them to your compliance officer.)

That‘s dangerous.

Somehow, we had a 'pentester' come through and that was not something that raised sussy levels.

Would insta fail any audit I did

It was an insta fail from me.

I has a ping..

I literally told them all, do not do it.

pong

Pong

i didn't show them what could happen but kindly explained what MAY happen.

You had to log into their emails and send one to the team promising croissants

Nah, the whole thing is a subdomain takeover.. with very little effort

mmm croissants

Mine was more fun

😂

Every-any-thing

Bet you loved that game in 90's.

Should probably find some lunch somewhere

not when it affects 600 customers. ;D

our support team was smashed..

(I being part of it, was smashed)

I mean that's a lot of croissants

mmm croissants...

with butter.

Of course

Ham n cheese

In Argentina we have mediaslunas it's a kind of croissant it's so good