#general

Alright

Im sorry

Everything all good?

btw, what are you actually meant to do in a scenario like that? @mossy river
just report the domain?

Yes

Wait-

To who?

I assume the registrar

I doubt LE cares

https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en

thanks

I'm confused what did I do? 😦

Thanks

Gave +1 Rep to @mossy river (current: #6 - 1156)

guys difference between public and private ip?

You can also contact the owner of the server if you know who it is and they have a report process, e.g. Cloudflare, Digital Ocean etc.

If someone asks if something is illegal, I'm going to answer them. The message was already dealt with by the time I responded.

You can google this..

isnt cloudfare the anti ddos thing

Yes, and a lot more

They provide many services, including DNS resolution (so they would be able to suspend the account and remove the site if they want afaik - though name servers can still be changed I think)

I feel there is no need for mod involvement when speaking about the legal scope of public testing, when being asked questions about it. We advised on having permission to scan, and staying within the legal scope. As far as I'm concerned this was handled in a professional manner

If someone is admitting to a crime in the discord server, you need to ping a moderator.

Failure to do so will result in you being muted.

It is purely to protect the Discord server. We are already on the radar for being a hacking server, the rules and policies are there to protect both the community members and the Discord server.

Lead by example; if you respond, others will think it’s okay.

They didn’t ask for legal help, they admitted to committing a crime.

If you don’t agree, report it via the steps found in the rules.

I didn't realize that's the response you were referring to

Now I understand why its so super strict. This server is under a scope by discord?

all I did there was say "it's illegal". Not sure how that's bad. Again, it was already dealt with by the time I even saw it

hello people

It was dealt with because an employee reported it.

It was dealt with before I even finished reading it

so again

not sure how that puts me at fault for anything

This conversation is over

If you have a problem, report it via the steps in the rules

hmm weird

@mossy river You looking for a placement this year?

Course doesn’t do placements

Oh

And I’ve already signed my house for next year

Ah

ok

I haven't had much luck but still looking

hey guys, what

We can delay our fourth year and get a placement.

I'd rather get a job tbh.

hey guys, what to do if u get tone of scam calls

yup better

My phone automatically declines them.

i should probably start doing THM and shit again

Wait does it update instant?

Im at 0x9 for a few days now lol

you'll have to verify w bot

Reverify?

Ignore them, they’ll add you to a list if you pickup

yup

Pain

indeed

Anyway, this color isnt that bad

Does that bot still do daily sweeps?

Do the numbers show up as spam when you receive the call? If so, on Android at least there's an option for automatically blocking those, same if there's no caller ID iirc

it says its coming from the uk

so no

Which bot?

THM.

They route through Scotland because it makes people more likely to pick up

For verification

Yuh

It might be getting rate limited though so I’ll look to sorting that out

i see

because they keep calling me everyday and i dont even pick up

Have you considered it might not be a scam caller

its different numbers everytime

for monhs

months

Call your provider and ask for a new number

ok

Why has the THM bot a role with 2023 in the name?

Updated bot.

ah

its 2024

from people yes

thats what nordvpn says anyway

they say it keep ur ip private online

What do you mean by secure?

I've had calls from England which still show up as spam, I think it might involve other people reporting the number too

Get into what exactly, your PC?

wym hard enough to get into

I'm not sure I fully understand

the vpn can be hacked yes

@rapid merlin Idk if calling them is a good idea xd

what

they cant hack ur pc

unless u download

perhaps if they had access to the VPN server they could monitor and manipulate traffic

All a VPN does is just shift the trust from your ISP to the VPN provider

i dont think people realise vpn companies work with the fbi

authorities in general

and because mostly everything is HTTPS/SSL nobody can snoop on it anyway (assuming it's setup correctly)

i use tor because people say its the safest browser

i still find the Signal subpoena funny

https://tenor.com/view/thumbs-up-conspiracy-tin-foil-hat-gif-20017163

wym a vpn can be hacked

Do you run it on full screen?

the hacker can breach the server

What server?

such an inconvenience honestly

really not worth it for typical day to day browsing

nordvpn got hacked and they steal the data and hack you

Source?

wym "hack you"

Eh?

This conversation doesn't make ense

bing

Bing pot!

thats a nice feature

https://tenor.com/view/bingpot-raymond-holt-brooklyn-nine-nine-bingo-got-it-gif-23124403

Yeah everyone knows bing is not safe /j

i use bing too yes

because it has ai

NordVPN claims not to have been notified about the breach until April 13th, 2019, more than a year after it happened. It took down the server the same day, and began an immediate audit of its 5,000 servers.
😬

legit the only person i've heard say they use bing

unironically

This has to be bait or something.

i heard the AI is pretty good tbf

Just ride it out. You don't completely know if you like the field yet

@mossy river wanna be my valentine?

https://tenor.com/view/thebachelorette-abc-chris-desiree-proposal-gif-3462443

omg really!?!?

Embed fail.

Would I lie to you?

https://tenor.com/view/suit-slideshow-man-in-suit-sitting-man-wearing-suit-sitting-slideshow-man-wearing-suit-meme-gif-25275395

oh mine worked

https://tenor.com/view/lee-mack-innuendo-rimshot-sneaky-would-i-lie-to-you-gif-27318003

I'll be your valentine !

Cause I haven’t linked my account to discord yet

Love this show

Gid innit?

Hilarious

Bob Mortimer is the best character on it

Bob is so good at lying.

I've probably butchered that spelling

I do beg your pardon..but we are in your garden

It's not all black and white homie

You do you boo

Don't be motivated by money.

Be motivated by passion.

but

my passion is money too

tf 😭 i gotta stop skipping uni

You gotta work on your shapes first.

😂

https://tenor.com/view/shape-sorting-lol-gif-5209222

It was always a lie

Yeah... But it's Roblox so...

I'm not in this field for the money tbf

Knowledge

Fun

Passion

I'm in the field because I enjoy it

my friend knew a guy who was a php developer for the hub 😂

Ignore them

Nah, I rarely tell people what I do/ am involved in

It's not a great self introduction and not that many people care

I care about the person themselves, not the work they do or who they work for

I’d rather tell them something interesting about myself

Like I play guitar or I am the world’s best Fortnite player

Or that I speak a minimum of 1 languages

You forgot kiwi 😦

ello dolph

long time

Everyone forgets about the kiwis

Hello 😄 how are you

Yeah but what somebody's occupation is can tell you what they like doing as a person, and is a great starting point for a conversation

been good, my internship dates keep shuffling back and forth. You got any interesting hikes/trekks yet?

Omg hi dolphin

Long time no see

How are you

Ow, hope you can get started soon! Are you excited?

Not really, our van is out of order and will be for a while, no trips or camping 😔 but its alright

Heya Jester, long time indeed! How are you? Doing good here 😄

Im good except for ns being ns

Yeah.. haha

But what qre you gonna do lmao, other than that great

Doing a semester on digital forensics, very interesting

Oh that sounds fun

Ooh that's bad. what happened to your van?

and yeah I'm excited and kinda anxious cuz I'll be moving out for the first time and relocating 1000+ km away from my home town. I've only ever got to be as far as 80km from my home town so kinda nervous

Oooh yeah that is a big deal

Mhm, and im coupled with a nice girl i vibe with, so who knows

But you'll be fine and it will be super fun

good thing I can cook/clean though

serious doubts on the Aussie, eh?

You can do this!!

guys is a ring topology basically when devices are connected together?

Haha I mean I already know basic survival skills + woodwork + electricity stuff, couldn't be that hard

but thanks

You'll work it out

in a ring, yeah

it's mostly what it says on the tin: A -> B -> C -> D -> A

Bear Grylls would be jealous

this is not used very much anymore outside very specific applications

Bear Grylls cheats

Eating maggots is cheating? Ill stick to the rules then thanks very much

Imma bring bug repellent

Hydra meant he gets normal food and stuff off-cam

Ah fair enough

fly

what is osi models

🙏

im too poor to afford looking at it

that sounds like a good research question 🙂

ye

google is cost money bro]

they always make u pay

That was a bit of a mean comment, sorry

what? who?

the websites

you're joking, right?

Straight out of your notes i take it

in any case, there's a THM room on the OSI model

No i just googled OSI Model

How much did you have to pay?

XD

At least 1

about 30 seconds of their life, apparently

at most..more than 1

You should've just asked someone in this server, much more efficient

God i love this community

clearly

Real #timeizmoney #hustler2hustler #grindordie #nogrindnolyfe

Werent you the one advocating rest, phony

i grinded for a month just to fall sick on the exam 😄

/sarcasm here

Oof

I may advocate for rest however the real ones work 25 hours a day 8 days a week

You couldve made it better with #joke

#iamcompletelyserious

This now feels like 2000's twitter

grinding is fun but the next time is just exhausted

yes it's a road to fatigue

im completely exhausted rn and havnt touched my books in 3 days

Be kind to yourself, your mind and your body

🙂

cant expect the exam to be kind

And theres absolutely nothing wrong with that, youre human, not a machine

well i have to get back in action i cant take break for so long 💀

go watch a movie or something

I have faith in you passing 🙂

go to the park and feed birds

Mr robot, passive learning xD

i have faith ill pass but that with a good grade no

99.7+ is purely luck

Ehh maybe

nah, we dont allow that, they poop all over. also no park around where id go

but we do have a cat which meows all the day to my house

aww :(

But I thought those weren't real

😉

Petting a cat is much like touching grass

it rubs itself to me

Esp when they activate that purr

it meows

i was doing a photography session with it

Cute

parks or birds?

cute little guy!

the latter

knock knock

t minus 5 days

;-; why time gotta move so slow

Heyho, I want to play KoTH but I'm really bad at the moment and scared that I could do something against the rules might get banned because I dont really know what I'm doing. 🙂

it'll speed up when you least want it to

correct, birds are not real

Does anybody have some experience on KoTH?

-6 kid

-6

Didn't receive any team Snapchat message about valentine @mossy river 😔

Neither did i

but my gf did

Snapchat trying to rizz my gf up

I don't have snapchat :>

Why did I think you did 🤔

Wow, keep on the lookout!

Can't believe it :(

Cute cat

It's wrong.

#room-help if you need help.

Gave +1 Rep to @sick lance (current: #2 - 1962)

meeping meep moop noodles

@hollow turret Please don't post answers though

You did

Hullo

beep bop boopp

good comedy on reddit

hah

they are slightly right

considering linux runs the majority of the servers on the internet finding vulns that affect linux tends to have better pay off

not for malware atleast

for active exploits yes

but for malware, if they try and run the malware

there's bound to be a error

and then i gotta debug how to fix the error

Linux Malware threats is around 2 million...

Rce means crypto mining malware usually

what about windows

Small payoff

95% of malware.

heck i could go on github and search minecraft hax and get a good load of malware samples

data exfil, proxying deeper into the network as well

and none of them have instructions for linux sadly

may be a question of quality over quantity

I may have to switch over to linux by dual booting

Any suggestions for a full on linux OS?

linux mint

pop os

endeavour os

Don't do bug bounty for the money

Nah if you want reliable income get a job

eh last few reports were all duplicates

so am tired

how's ur experience atm

hmm which one for a lil bit of hacking but still general usage

isn't mint just a windows alternative

well if you want everything to be easy to install endeavour os is shadows go to

as the arch user repository covers a ton of software

eh got out of scope also

though it is decently focused on using the terminal to install stuffs

gonna start looking for CVE's next month

no worries about that

I was using sudo in windows cmd prompt

thats the main reason I am making the switch

well linux mint has look alike to windows yeah but it is still linux... though it might have some problems with not being bleeding edge if that is something you care about

endeavour os is arch based and mint and pop os are ubuntu based which is debian based

so slightly different in what package manager you get

and what is available in default repos

other then that it is mostly the same under the hood

yes desktop enviroments that are installed by default or comes with a distro can change the feel a lot but generally you can change that

Sounds like you're afraid of work

Both are going to lead to situations where you do work for no reward

But that's life so you know, you just have to do it...

Make a good CV once and then tailor it each time. Shouldn't take long.

hey guys any recommendation for a good computer forensics book?

Speaking of, I need to update my CV

same but not a lot to put on it

who actually inverts controls on games

Australians

I sometimes do. depends on how the controls are set up.
inverting pitch is about it though

I usually invert pitch and vertical camera

https://tenor.com/view/throw-up-dry-heave-vomit-gross-eww-gif-23254765

Didnt you ask earlier?

twice for goodluck

It's a pet peeve of mine, (only when I already answered)

It's rude 😛

indeed

Can a NDA contain a clause thet prevents you from saying you signed an NDA?

8 days until payday, amen

oh I apologize it didn’t see you answered

my bad

@rapid merlin ⬆️

yeah

So.. how would they know you signed it?

who is "they"?

if its the people that gave you the nda, then they'd have it on records lol

generally the exception clauses so the person you signed the nda for/company can tell

Gave +1 Rep to @sand trench (current: #4 - 1629)

unless they too, signed an NDA NDA

no problem

So they couldnt ask to check

what are you trying to set up esqy

an nda that prevents you from asking others if they indeed also signed an nda that stated they cannot tell others

the nda cycle

not setting anything up, Just an idle thought

Enumerate.

have you tried:
Username: Username
Password: Password
😉

It's a THM discord, but generally I recommend using /usr/share/wordlists/rockyou.txt

just run it in the background, who knows

always check the standard few, it's gotten me stuck way too many times

if only 😊

Use your hacking skills, and enumerate

you can always set up Hydra in the background :)

But be careful - this community doesnt like helping with active CTFs

and enumeration is always the best option

Rockyou is a password list

so definitely the login

Enumerate the whole thing, and use the tecniques youe've learned to solve it.

For the URL, use gobuster

HackerOne is a platform that enables people to engage in bug bounty programs, where you need a reasonably high level of skill. You should spend more time on THM learning all about web pentesting and the related tools and techniques

Ahhh howaya, subtltey

(That was the irishest accent I could type)

i was expecting a Leprechaun to jump out of my monitor

You seem to be doing well, keep up the effort

Was that directed to me aswell? 😄

Gave +1 Rep to @proven quartz (current: #22 - 348)

Fortnite time

Leprechauns are still hibernating. They normally poke their head out to sell breakfast cereal to kids and Guinness to tourists in the middle of March

When they do pop their heads out to look for any danger they always do it twice. To be sure to be sure.

Anyone here finished OSCP?

a few people yeah

Tough?

shadow is not one of those people ¯_(ツ)_/¯

bee boop that no good

most of the oscp people on here that chat have the oscp role

If you have specific questions about the OSCP, there's frequent discussions about it in #cyber-and-careers, #infosec-general and here in #general. Ask your question and plenty of people would be willing to help if they can

You can use the Search feature in the top-right to see all the mentions of OSCP, it's discussed regularly

I have a quick question, how are you able to hack into devices that are around us, every device is different. I would like to learn more about it, lets say a traffic light or a billboard. Is this called "IoT Devices"?

Scrubz

How do i hack a Android 13 m littlebrother cant get his old brawl stars acc back where he pro ah so im trying to hack his phone with PERMISSION!!

you want to hack the phone or the account?

The thing thats needed for me to get the acc for him back

https://tenor.com/view/ablivya-weee-cat-catfastomgsofast-wtfisthistag-gif-26273699

Can anyone help me with this?

😄

Hang on a moment. 🙂

@sick lance any fun RE lately?

Hii

Pegusus

I can't say anymore

Which is understandable. But that's cool as hell!

okay

hehe ||sus||

@sick lance (sorry for the tag)

RFID hacking, but be careful the learning resources are mostly blackhat based

Thanks!
Another question, lets say if you have a smart LED that is connected to WiFi, how would you get inside it and control it?

Gave +1 Rep to @glossy portal (current: #687 - 5)

I'm not experienced much in RFID, so I can't answer that question, but I have an idea, you'd have to use something like flipper0 or similar to pretend to be the wifi, take this with a grain of salt

Okay, thank you!

Sorry, I am not that good at explaning what I know or what I would like to know 😅

I’m not sure why you’d want to “hack” into a traffic light or a billboard lmao

No, I don't want that, it was only the best examples I could find.

Does not sound legal.

Yeah thm is for white hat stuff, that’s stepping into areas you shouldn’t step into

hi , is VPN faster then attackbox for a normal user ?

We can only help with targets that are provided on the THM platform.

How should I protect a device, if I don't know how to hack into?

you can protect a device while still not knowing how to hack into it lol

I would patch the ways I have got into the system, if I am able to hack into it, just like CTFs (I think)

You practice on a target on the THM platform.

I asked that question because, there are just a lot of devices around us once your outside walking around. Each device can be hacked into. I just wanted to know what the name of these devices are.

AttackBox sits within the THM infrastructure but the speed difference between that and the VPN connection are generally not something to be concerned about. The AttackBox disappears when you've finished using it so you can't store info on it, such as your writeups or notes

Yes, ofcourse I do, but I needed a name for the topic I am interested in.

We can't help with those targets.

Yea but whats that topic called, so I can search it on tryhackme.

IoT Devices?

https://tryhackme.com/room/iotintro

?

that is what they're called, yes.

Why would it be sus?

Traffic lights aren't IOT though

what would they be classified as then

dumb tech

or just micro controllers hooked up to lights

They are not connected to the internet?

they are, no?

most aren't in my experience

Some are iirc

I hate NJ drivers @molten sky
I'm in a parking lot, driving through, and this girl is pulling out, but I'm too close to stop. I honk, she continues to move out of the spot, I lay on my horn and have to swerve.

Mind you, she's not backing up, she's pulling out forward, and can EASILY see me. She deadass stairs at me like I'm in the wrong

BREH

Some traffic lights are.

I would classify them as OT

As it's operational technology, and not internet of things

OT can still be connected to the internet

Not the old ones, It think only the smart ones.

tbh now i think of it, not a lot of traffic lights are even connected to the internet

just the smart ones that scrubz just mentioned

Modern traffic lights are managed centrally by a controller in a room similar to a NOC. They can be interacted with by emergency vehicles on the move in many cases, or these emergency vehicles can coordinate with the controller

Can I just call it "Of Things"?

Op things*

they use sensors really unless its a busy city

they just use timers on those

got it thx

Gave +1 Rep to @proven quartz (current: #22 - 349)

OP?! Should we nerf it?!

I see

Or people will just hear the sirens and stay out of the way

Traffic lights aren't controlled with timers

Unless they're at a red light behind traffic.

is it necessary though?

They turn their siren off and leave the lights on.

major ones are

If you run a red light to let emergency services through, you still risk a traffic violation.

yeah, they only usually let you off if you are inching past the red light to make room

Nope.

Oh well, imma go back to my back workout

well here it is anyway

The only defence would be the officer claiming they allowed you

You could still cause a crash.

if i cause a crash by inching past a red light and turning, id be surprised

Can i see what acc my discord is linked to?

You never know...

An oncoming car could mistake you for coming out, slam on it's brakes and get rear ended.

You could ask a mod nicely.

Please

I'm not a mod. 🙂

I think you can just run /rank in #bot-commands ?

Okay

Asks for a user name now.

Sad

Yeah

Can u see

I think Jabba is going to implement you can do your discord handle.

@rapid merlin "HugoN"

Thanks

Gave +1 Rep to @naive violet (current: #1 - 2097)

to make it look less boring

Whats the max level a normal user can have?

13

0xD 13

That's rank.

Max level is 1337

special event.

but isn't it temporary?

And there should be a rank for bug hunter

which 0day has i guess

Lvl 999 - Bug hunter
lvl 998 - Contributer
lvl 997 Staff

😄

Still obtainable.

yes

because it's 1337

A 2 hour back workout just hit nicely, I'll walk like a grandpa tomorrow

Good going 🙂 Zimmer frame on order 😛

I worked my back for 2 hours

YATTA:

I meant like exercise wise

that was a hard challenge in dragonfable

Ah, single dumbbell rows, t-row, back extensions, lat raises, and overhead pulls, and sitting rows

bella is more fit then shadow

Yup, 5 sets of 10 reps each

With inclining weight

I'll be as wide as Mr. @silver sky

Impossible

Wide boi!

Yeah, I actually don't want to, I want a slimmer body 🤣

Long time no see

I've been busy!

what about a toned/muscular body???

Yeah, slimmer and toned

Here's a question for everyone what are your thoughts on the Coursera Cybersecurity program from Google?

Got a question about how hash's work, like if the text is bigger than the hash length then what happens?
Like I know it generates a signature for it but isn't there more things that can be random in a bigger file that the signature is not unique then hash collision happens

The hash will always be the same length. If could be 1 character or a complete compendium of shakespeares work

Chick3man must be asleep

Fair

Hope you've been happy though

Chickenman is normally passwords, but i suppose hashes are related to them

They are one of the devs on hashcat 😛

the point of the hash length is that it can be unique for basically everything... think like how many ipv6 addresses there are... nowadays with sha512 and newer the hash length is big enough to cover basically any input data

lol

hashes of fixed length output and without input limit will, of course, have a risk of collisions for any inputs longer than their output

the risk is low enough, however, that it's rarely considered

this is the "pigeonhole principle"

sooo when we getting yescrypt support in hashcat???

yes know that will be painfully slow

soon, with hashcat 7

it won't be that slow

oh neat

"Universal hashing algorithm" should be your lookup. When you understand what one of these algorithms does and how the transformation works, your question will be self-evident.

What size would the input have to be to guarantee a hash collision? 🤔

doesn't work that way

assuming your hashing function is psuedo random and that 1 input will always map to 1 output, where input <= output size, which assumes a normal distribution of mappings

then you can also assume that any input > output size will produce a collision with an input that is <= output size

finding those, however, is usually as much work as a first preimage iirc

hence why it doesn't really matter

I don't think you can make the assumption that it's a guarantee that exactly 1 input maps to exactly 1 output - just that the likelihood of a collision is m/n where m is the number of recorded inputs and n is the size of the key space

also, importantly, hashes are often constructed in such a way that there is always compression from input -> output

in the "real world" you probably can't

but for an ideal hashing algorithm, normal/even distribution of the mappings is often assumed

yeah, i'm not trying to contradict what you said, just clarify for those that do not understand how one way functions are intended to work

right, i understood

one way functions are like how food goes in mouth and come out as poop

well, that's one way to put it

uh. that's a gross reduction of it, shadow

I prefer the blender and smoothie tho

yeah probably quite gross explaination but it should be useable for basically any age group

i've always had it explained to me mathmatically with respect to set theory and notation

id prefer shadows explanation

the smoothie idea is more palatable, if you will, but i still prefer the notions of one-to-one and onto

I think the concept of trapdoor functions or one way functions in general can be tough to understand

even simple ops like modulus

But if hash collisions exist then it's a many to one no?

hash collisions do exist

the point of the hash algorithm is to distribute potential inputs across such a sparsely populated keyspace that hte likelihood is extremely low

^^

the likelihood of collision for 2 distinct inputs is 1/n where n is the size of the keyspace

and to do so deterministically but with psuedo random outputs

https://tenor.com/view/jim-carrey-liar-liar-funny-gibberish-blah-gif-12443056

You could have a hashing function that didn't have collisions, if the input was a finite amount

hash collision is like how an orange and a blood orange both create orange juice

yes

thank god you didnt make another poop example

Gave +1 Rep to @sand trench (current: #4 - 1630)

if you have a keyspace of 2^512 bits, then it's a 1/2^512 for any 2 inputs to have a collision

how does this contribute to the conversation?

does it need to??

sorry if shadow grossed you out.....

I mean, if you want to be a part of the conversation instead of trolling, you can ask an honest question.

if you consider that trolling, i cant help you, i was implying what i was reading is gibberish to me

Then that's a you problem. You can always ask about things you don't understand instead.

right

Hmmm okay so hash collisions are so rare it isn't really a risk anyway

normally yes

but sometimes they do happen

and sometimes algorithms are weak

It's not so much that it isn't a risk

Why not just make the possible output length bigger than

It's a known and quantified risk, and it's accepted that there is some risk, because hashing is only guaranteed to be imperfect

this is a thing

but output length is not everything

the actual construction of a hash can be weak

usually you don't do that because it wastes space

MD5, for example

or SHA1

or etc.

the point of the hash is usually to store a signature, not the original item

Is it that the algorithm is weak, you are able to "force" a collision?

or generate a key as with KDFs or similar

so you can verify the authenticity of a claim submitted as the original data

yeah basically

MD5 has quite a few known weaknesses

some allow you to craft inputs for specific outputs

let you cheat your way into collisions

yeah, those weaknesses are why MD5 is almost always fine for file verification but not for passwords

well no

different risk and different security requirements

not anymore

when did that change?

idk, 2004?

thought so too

unless you mean single file, in place

IIRC as recently as last year most distros were still using MD5 as signatures for repo files

that md5 should not be used for file checks anymore either

oh yeah

they shouldnt be

they shouldnt have been for like, 20 years

hmm

MD5 checksums aren't worthless but they certainly aren't secure

sha256 is okay for file checks right???

the point i think isn't to be secure - just that you can verify authenticity from a known file size and a published signature. Say, for a net-installer or DVD ISO

yes, for now

MD5 isn't usable for that

i know i've been seeing gpg keys being published for more and more repo files, but i still see a lot of MD5 checksum files as well

because altering a file and having it's MD5 stay the same is within reach of adversaries

barely, but it's possible

that would change the original file size though

not necessarily

MD5 is like, weak weak

hmmm

I presume hashing algorithms are constantly evolving, how long do you think it would be before something like SHA256 is considered unsafe - or no way to tell until somebody finds a weakness in it?

we already don't use SHA2

do you have a case study on it? not doubting, but i need to see the math why

in favor of SHA3

nice that archlinux generally uses gpg to check file integrity after downloading it form repos... and paccheck has sha256 support

for MD5 being weak enough to generate collisions?

Oh, never even heard of SHA3

as far as free start and chosen prefix goes, Marc Stevens seems to have the most work in that area

MD5 weakness specifically with respect to distributed file checksums

to be clear, changing a file with the MD5 staying the same is barely within reach

but changing 2 files to have them collide on MD5 is seconds at most on a modern CPU

so someone with control of a benign and a malicious file could alter both to make them have the same MD5 Very easily

but altering a file to have a Specific MD5 is much much harder

when I say barely in reach, I mean nation states might have the time/resources

ok, that makes much more sense

that's still, imo, a complete break in its security

if anyone can do it, it shouldn't be used

considering how many nation state APT:s there are yeah

i thought you were saying that the second claim (alter to specific md5) is easy enough to make the algorithm roughly as bad as ROT13

no no

that's still ~ first preimage levels of hard

but that's so easy with MD5 that nation states are within reach

which is far far too easy

when it comes to crypto, "i think i can in 10 years" means "we should have stopped using it 5 years ago"

lol, i thought the bounds were a bit tighter

like "i think we can break in 5 years" means we should stop using it next year

damn 😔

depends on what it is

especially in regards to who your adversary is

re: NSA scooping up encrypted data now, to eventually decrypt it later when they have the resources

You think RSA2048 will be cracked any time soon?

I am not at liberty to say 🙂

👀 lol, well thanks for ye time

but to a certain limit

hmm, going to read about pigeonhole principlec

Hashes are commonly used for passwords and to show file integrity

as well as to derive fixed length signatures

and fixed length keys

Hashes can't be "decoded"

hmm pigeonhole principle made some sense

those fixed length keys are derived for things like diffe-hellman, right?

or AES

or basically every encryption you can think of that isnt based on two primes or a curve point

If you're referring to something like crack station, it doesn't decode them

guys how to counter a ddos attack

Also chick3nman what's ur suggestion if I wanna learn everything about cryptography, like where to start and what to learn. Did THM's room's on them

That's tough

Increase your resources, block the IP addresses

Not everything per say but atleast enough to make me knowledgeable

Mhm

https://www.schneier.com/books/applied-cryptography/

how would you do that though

schneiers book is really good

touches on lots of stuff

might give you the info and vocab to look more things up

It uses a database, it says at the bottom it's a lookup service

FYI on hashes being "decoded": https://www.techsolvency.com/passwords/dehashing-reversing-decrypting/

youre better off setting up precautionary systems

will finish the book in less than a month

but is there a more updated version of the book

with modern examples

honestly, not sure

I know the theory doesn't change

crypto doesn't exactly move very fast

but like its 1996

AES is, for the most part, still AES

and most crypto builds on previous stuff

so now, for example, we have AES GCM or XTS, which are based on previous cipher modes but with added features/concepts

Crypto and Malware are probably two of the more common themes of the old theory is dated but still pretty relevant

yeah, crypto is very "learn all the stuff from way back first" imo

I don't understand

jumping straight into salsa20 based stream ciphers mixed with poly1305 without some understanding of the principles/concepts isnt going to get you anywhere

Probably put you off learning it tbh

yuuup

hmm found a edition which is 2 generations newer
https://www.schneier.com/books/cryptography-engineering/

yeah, most anything from schneier is worth reading

Agreed

His books also show up on humble bundle cybersec bundles fairly often

IIRC the no starch security bundles have his books regularly

Yeah, I think that's where I got them.

in theory, yes

however, that doesn't reduce the security of the hashing algorithm

just tells you that that password/value is weak

I'm not sure I understand what you mean

time to stop reading harry dresden and start reading studying books

yes, that's correct

if you find a hash like 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8 and look it up, you will quickly find that it's the SHA1 of "password"

and there are many tools that do that

but that doesn't really mean anything other than that hash is known

if you lookup ddb32829d067a05fb0c644e84ef7ac493ab7baf4 you will NOT find the corresponding plaintext anywhere

and in fact, you likely couldn't break it even if you tried

so really, when you lookup a hash, you are sorta looking up known passwords more than you are looking up known hashes

of course, this all relies on the password creating the same hash

but modern hashing doesn't really allow that to happen because of the inclusions of salts and varied rounds and peppers and keys and etc.

well, i say modern, but really I mean "purpose built" hashing, since bcrypt is from like 1996

and what other books would u recommend chick3nman

There's another applied crypto book around that has a similar name that I liked

really, "applied cryptography" is the right search term

Gave +1 Rep to @polar spoke (current: #164 - 37)

that's the kind of stuff you will want to learn

Thanks for that, useful article

Gave +1 Rep to @polar spoke (current: #158 - 38)

🙂

k

and you got any insights into encryption

the author is also on team hashcat, we get asked this stuff enough that at some point we just write it out and link people haha

elaborate maybe?

Fighting the good fight

like just to learn about encryption in general also

the above books cover encryption in general

in fact, i think more time is spent on encryption than anything else

This comes up on Humble and I quite liked the crypto sections in that

added that in

Don't pay full price for it of course, just grab it if there's another Wiley bundle

usually grab my books of orielly

I got thier subscription

great value for education

also btw there's a 3rd edition

I just grabbed the cover off google

oh k

That smoothie analogy is perfect!

agreed 🙂

Everyone new to hashing should read this article, really clear and simple.

How many years of experience do you have?

uh, depends on in what

in industry, maye 5 or 6 now working a job

like in cybersecurity in general

outside of paid work? going on 10 or so?

hmm

also does developing hashcat pay?

it's hard for me to quantify how long ive been doing this stuff

nope

hashcat is a free open source project that doesn't take payment or donations of any kind

that said, my experience with hashcat has certainly gotten me paid jobs doing custom development work or security work

Makes sense, hashcat is like known by everyone in the cybersec space

indeed

although why is hashcat defined as a password recovery tool exactly

Not speaking for Chick3nman, but asking someone how much they get paid is kind of a faux pas

And of course now the rest of the conversation loads

eh was just asking if developing hashcat pays or not

not the exact amount

since like projectdiscovery the guys that made subfinder, nuclei seem to have jobs to make those things

because that's what it's for

Isn't it to crack hashes but hashes can contain any different amount of things but usually they do contain passwords

well, we don't just crack hashes

in fact, i'd say the majority of our modes aren't hashes at this point

they may involve hashes

but they are keys and encryption schemes and such

it seems like a few encryption algorithms also

also any plans about recoding hashcat in rust

haha

hashcat will not be written in rust

but future components are already potentially going to include rust, though not for any particular reason other than because some people wanted to

t minus 4 days

hmm although isn't rust theoretically faster than C

not that i'm aware of

not faster, but much safer

Rust is compiled to machine code, so it'll be pretty quick in any case.

I mean the interop shouldn't be too hard

yeah, though overall we aren't super worried about memory safe operation, it's not like this is an internet facing appliance app

abitrary file load and execution is a feature we ship as a "plugin interface" lol

The smoothie volume can change based on the amount of fruit input. The poop analogy deals kinda better with the even size of hashes after transformation

lol

some hashes have variable output sizes

as does... poop

👀

Spotify's DJ is on one istg

Keeps saying "You have been listening to this artist/ song a lot" then plays something I have not heard

You should take a look on Raibow Tables

True, forgot about those weird kids

since it came up

rainbowtables are essentially dead

and have been for a while now, at least for common use

Yeah, i guessed, but don't know exactly why

Too much keyspace?

just not effective

Compute got cheaper?

compute is cheaper but also salts kill rainbow tables

Oh, yeah, true

and generating rainbow tables is exepnsive compared to just running the computation

searching them can be fast

but only for single hashes

multiple hashes, not so much

you can still buy hdd:s with rainbowtables

freerainbowtables.org

why you would want one is question shadow don't wanna think aobut

yeah, not very useful

only a few scattered use cases that could be useful these days

I got 2 at defcon, helped me a little with my "pet project" dataleak

I'm striving to reach at least 80%

gotta love windows saying i don't have internet but am using it still

...

and they are expensive daymn

For GSM I think it's still useful

Honestly, for me the drives were cheaper than a new GPU, haha

did u actually buy them

But really an odd case

Kinda, I bought the drives and had them filled at the Data Duplication Village at defcon

And two 8TB drives were fair easier to pass through customs when coming back than a new GPU would have been

never heard of the data duplication village

should have smuggled in a rubber ducky

Already did a bash bunny and a shark jack

Sadly, flippers were unavailable

although at the time they were still not-illegal here in Brazil

nice

Now it's very hard to find and you will most definitely pay the "smuggle + dollarization tax"

Uuuh, got a Proxmark3 RDV4 too, I forgot that

Just so I could read and recover an implant in my hand using the special "human implant lf antenna"

Didn't work, still to deep and hard to read >.<

eh I actually know about that tax, I live in Pakistan

So now I have a NeXT that is basically a xNT

don't nknow about that

RFID hacking tool

what is your implant for

Before the flipper came around

The NFC (13.56MHz) side of it has a vCard with my contacts, the RFID (125KHz) is stuck in a (broken) indala mode

you used it practically yet

or still as a cool gimmick

On the other hand I have a Spark2, that was supposed to be used with a new 2FA platform that never really took off

I use the NFC capabilities as a keycard at work and at home

No, this is the magnet, hahahaha

nice

do you have scars from the implants

I think I probably could use the RFID side of the NeXT if was in EM mode, but I cannot get a reliable read, let alone a write 😥

Barely, they are all very small

But they were all "syringe" implants. The flexM1 I need courage to pretend to implant is a little harder to do

oh k