i should jump on for a round at some point
#general
molten sky
lavish shell
Got one in like two minuets about to start if you want to
lavish shell
Never mind, not enough people joined so it's over
desert shuttle
Ooouuu POC for?
molten sky
super special secret hackerman stuff
lavish shell
Wish there was a downloadable lab or something similar. Even a person vs bot type thing would be great
lavish shell
No, wasn't enough people unfortunately
unreal solar
Wish there was a downloadable lab or something similar. Even a person vs bot typ...
https://tryhackme.com/room/kothfoodctf
https://tryhackme.com/room/kothhackers
https://tryhackme.com/room/redisl33t
lavish shell
https://tryhackme.com/room/kothfoodctf
https://tryhackme.com/room/kothhackers
ht...
Oh damn, thanks man. Super helpful lol. Guess ifI learn to use my eyes I'd actually have known lol
twin ridgeBOT
Gave +1 Rep to @unreal solar (current: #122 - 51)
molten sky
π
lavish shell
So, are there tools preinstalled like recon-ng, snort, etc, or would I need to download my own?
chilly veldt
Morning
unreal solar
chilly veldt
It's quite good
desert shuttle
im no longer stuck
rapid merlin
Good morning everyone
molten sky
Good morning everyone
m
glossy mantle
yoo
rapid merlin
How are yall doing?
glossy mantle
fine how abt u
molten sky
both tired and wide tf awake at the same time
rapid merlin
Yeah I have the same mate
molten sky
just spent the last several hours doing powershell stuff so life is fun /s
rapid merlin
π
molten sky
~~ no ~~ yes
molten sky
on the one hand..
i need sleep
on the other.... i've got so much shit to do
and the other other... i don't want to do any of it
i've had this exacto knife on my desk for like 2 weeks now that i just keep playing with and i have no idea where tf i got it from
just appeared here
sharp forum
I planned to do keylogger as my final year project in python what kind of api shall i use i am so confused can anyone suggest me?
chilly veldt
I think I broke my switch setup
how else would you see a website?
you have to get access to the html before the website can load?
you can get access to the html even without inspect π
but you'll need access to the html no matter what, otherwise the website wont load, html is the thing that makes the website
fresh cobalt
It's quite good
π
finite basalt
Morning all π
sick lance
You can copy the html to "clone" the website, so you can browse without interaction with the main site.
naive violet
I planned to do keylogger as my final year project in python what kind of api sh...
We don't discuss these sorts of topics outside of #advanced-general
I doubt a key logger has the required complexity for a final year project also.
finite basalt
Guess what james
fresh cobalt
Trying capstone challenge, how is it ?
Done that was fun
unreal solar
Scams like that occurs often because it's (like you said) as easy as copying the HTML/CSS of a website. However, you cannot replicate the domain name of the website, which a end-user will most likely notice, even though these fake websites wil try to imitate the domain name as closely as possible.
naive violet
This is an "evil bit" solution
finite basalt
Off to Dundee today in about 4 hours
naive violet
And you keep asking this and you always get the same answers @rapid merlin
Do you know one definition of insanity?
finite basalt
π
glass nest
Trying to listen to alien broadcasts?
chilly veldt
Do you know one definition of insanity?
me when reading CCNP
glass nest
yes, CCNP. Not CCNA
chilly veldt
reading and reading but getting nowhere 
glass nest
Did you just skip CCNB through CCNO?
chilly veldt
yeah, and then skipping everything from CCNQ to CCID so I can take CCIE
glass nest
What bit of CCNP are you trying to understand?
chilly veldt
currently doing a lab on GLBP
glass nest
Ahh. that was the graphic you posted yesterday?
shell nova
you can get access to the html even without inspect π
don't tell them about view source
chilly veldt
don't tell them about view source
that too, or curl
lavish shell
I have a quick question
finite basalt
don't tell them about view source
I did that for my cicd pipeline status so I could feel better about it failing with no obvious reason
Changed the fail to a pass π
chilly veldt
I have a quick question
I have a quick answer
lavish shell
Does anyone here have experience with Software Defined Radio? Me an my team have been looking for people who are skilled at it
chilly veldt
for a ctf?
finite basalt
Definitely people here for that anything in particular? There's actually a thread where some radio discussions take place
lavish shell
for a ctf?
Yeah, we've been doing Ringzer0CTF and was never able to get that section done
finite basalt
We can't help with active ctfs unfortunately
lavish shell
I'm not asking for help, just looking to recruit for a team lol. Ringzer0CTF never shuts down, it's 24/7
finite basalt
Also https://nohello.net/en/ while it's a joke website, it is also good guidance for how to ask questions effectively, just helps you get a quicker answer and makes it easier
I don't want to come across as a twat but it's worth a look
chilly veldt
if it never stops, then it's a good way to learn SDR
finite basalt
Also https://nohello.net/en/ while it's a joke website, it is also good guidance...
Also I disagree with not saying hello, it's more the question asking part of it π always welcome to say hello and chat here
molten sky
Do you know one definition of insanity?
Insane? I was insane once
chilly veldt
Insane? I was insane once
they locked me in a room
molten sky
@finite basalt hello
finite basalt
ok someone tell me where this is from
What the crazy I was crazy once meme?
lavish shell
Alright guys you all take care, I got to finish this machine before my wife gets back and sees me hacking again π
finite basalt
<@436928124521938954> hello
Morning! How're you? π
molten sky
they locked me in a room
a rubber room
finite basalt
Alright guys you all take care, I got to finish this machine before my wife gets...
Gl mate
finite basalt
a rubber room
A rubber room with rats
molten sky
A rubber room with rats
rats? rats make me crazy
finite basalt
Crazy? I was crazy once
void valve
aaa
molten sky
human or it doesn't count here
void valve
i just believe i have one but cant prove
worn thorn
goose
naive violet
@lavish shell I'd personally start by trying out one of the public websdrs or one if the airspy server network boxes on SDR#
Look at the waterfall, poke around, use the SIGID wiki to look at what you're looking for and get your bearings
glossy mantle
what is sleep?
molten sky
it's what lazy people do
lavish shell
<@1044391938561945700> I'd personally start by trying out one of the public webs...
Alright, thanks for the heads up. I'll look into it
twin ridgeBOT
Gave +1 Rep to @naive violet (current: #1 - 2103)
modest axle
Hi, can someone help me ? I'm looking for Act of Kindness Badge, which room is contained? Thx
chilly veldt
the act of kindness badge is given out to members of the community who have done great acts of kindness and can only be obtained by an admin giving them it personally
modest axle
OK, thx for answer! I'm just looking for missing badges, sometimes I have finished room before badge is add.
And Webbed badge ? Where is possible earned?
modest axle
THX
brisk tree
hey
sick lance
Gm.
brisk tree
hows things
sick lance
Yeah, can't complain.
Yourself?
brisk tree
yeah good just looking at twitch overlays ahaha
sick lance
For your own channel?
brisk tree
yeah thinking about streaming again
sick lance
Hacking or gaming?
Gonna Collab with Ego?
sick lance
I know, lol.
shell nova
hax
amber quarry
h4Xx
sick lance
-T0 
brisk tree
im using -T5
shell nova
don't use -p- first?
uncut cove
me waiting for an nmap scan to finish
try rustscan, it's way faster
brisk tree
i just used the command i was told to use then cause it ran for 6 hours yesterday i just added -T5 to it or it would scan 16 million ips
π
sick lance
try rustscan, it's way faster
What if it's not a CTF?
shell nova
break all the things
unreal wadi
i just used the command i was told to use then cause it ran for 6 hours yesterda...
Jeez, not even going to ask why the whole /8 netblock. Just checking for alive hosts or going straight to ports?
brisk tree
it is. its intense in a good way they are preparing us for real life work. feel like ill get a years experience in these three months ahah
sick lance
They must cram it in, if they're condensing 12 month in to 3
There's somebody else in this server who's doing the same thing.
brisk tree
they arent im just saying with how intense it is
ahaha
got 53 nmap scans to perform this week
rapid merlin
Anyone here doing devsecops
unreal wadi
official now?
sick lance
Yeah.
sage knot
Hey
unreal wadi
Nice, finally able to see in more depth what I've been running for some time now 
Did a full upgrade some time ago, and found myself on 2024.1 before release
north badger
the temptation to run my own Cybersecurity competition for students in my part of the UK...
sick lance
Having to join a Discord server just to DM somebody
desert isle
hi, is it normal tohat ssh has no "up arrow" for seeing the previous command ?
north badger
Having to join a Discord server just to DM somebody <:kekw:658061932577816606>
bruhhh
shell nova
the temptation to run my own Cybersecurity competition for students in my part o...
do it
sick lance
hi, is it normal tohat ssh has no "up arrow" for seeing the previous command ?
It can be, yeah.
shell nova
hi, is it normal tohat ssh has no "up arrow" for seeing the previous command ?
depends on what shell it spawned
north badger
do it
I likely will, may reach out to thm (education) to see if they wanna partner or something on it LOL cause I think it'd be great (now to decide what challenges to do, wanna do a 50/50 of red and blue)
desert isle
i used ssh username@ip on the attackbox version SSH-2.0-OpenSSH_6.6.1p1
should i run ssh with other commands or upgrade the shell ?
desert isle
so is it possible to start ssh directly with bash ?
north badger
Screw it, I will. Okay time to start designing the CTF
unreal wadi
Screw it, I will. Okay time to start designing the CTF
Good luck on the journey 
north badger
Good luck on the journey <:upvote:638054507409965086>
Thanks dude! Time to see if any of the educational places in my area are interested or companies wanna work together on this π
twin ridgeBOT
Gave +1 Rep to @unreal wadi (current: #690 - 5)
shut hawk
Thanks dude! Time to see if any of the educational places in my area are interes...
N,E,S,W of UK?
sick lance
Yes.
sick lance
Hello, this IT...
gritty zephyr
Good luck British pounds?
sick lance
Have you tried swithing it off and on again?
gritty zephyr
Blow inside the cartridge, that helps me often times XD
shut hawk
IPv4 on top
gritty zephyr
How are you beside the tech troubles bella?
north badger
N,E,S,W of UK?
South West (Will DM a screenshot of rough area covered if youd like), however if I get national interest may run 4 area comps and then a final national one
gritty zephyr
I am doing alright
Good to hear, did any rallying in the offtime still, or have you ceased that!
?*
chilly veldt
Good to hear, did any rallying in the offtime still, or have you ceased that!
haven't done much with my car lately, actually going to sell it soon as I just found a massive amount of rust
chilly veldt
miata
chilly veldt
stock, engine swaps are illegal in denmark
spice adder
Good morn thm
gritty zephyr
Oh damn whats the reasoning behind that?
gritty zephyr
Good morn thm
Heya
glossy portal
Any of you know openAI Api key alternative? I'm working on a discord bot, and they want me to pay 20 bucks
spice adder
haven't done much with my car lately, actually going to sell it soon as I just f...
If it makes you feel any better I have a fist size hole in my boot well because of rust π
spice adder
Any of you know openAI Api key alternative? I'm working on a discord bot, and th...
You can get an api key for 3.5 for literal pennies
sick lance
If it makes you feel any better I have a fist size hole in my boot well because ...
"rust"
glossy portal
You can get an api key for 3.5 for literal pennies
Oh wasn't aware of this, checking out
spice adder
"rust" <:kekw:658061932577816606>
Ainβt no rust if there ainβt no metal there π
spare vapor
Good morning
gritty zephyr
Ainβt no rust if there ainβt no metal there π
Hahahaha
chilly veldt
Oh damn whats the reasoning behind that?
laws
spice adder
Oh wasn't aware of this, checking out
Np dude, Iβve been using 3.5 turbo 16k and the most itβs cost me in a month is just over $1 lmao
chilly veldt
making it "unsafe"
spice adder
Lots of requests to api as well
glossy portal
Np dude, Iβve been using 3.5 turbo 16k and the most itβs cost me in a month is j...
ain't no way
thanks man
spice adder
thanks man
Np np
gritty zephyr
making it "unsafe"
Ah right
spice adder
miata
Miatas are fantastic cars. A lot of the older ones have many rust issues tho but luckily the majority of their panels are replaceable, cheap to replace too
Can buy a whole sill for around Β£70-100 here in UK
spare vapor
the new path has so much information to absorb i feel stupid
halcyon wyvern
if parrot os freezes allocate more cpu or memory?
sick lance
Have you tried allocating more, instead of asking? π
What's the worst than can happen, you freeze it faster?
mossy river
if parrot os freezes allocate more cpu or memory?
Have you checked which one is being filled?
spice adder
@chilly veldt some lil shots of my friends mk1 mx5. I miss that car so much. If ur thinking of a new car, definitely a good choice
halcyon wyvern
Have you tried allocating more, instead of asking? π
oh no lol i asked first
spare vapor
Yo that yellow car is fire looking
spice adder
Yo that yellow car is fire looking
Danke 
chilly veldt
<@272707328455999488> some lil shots of my friends mk1 mx5. I miss that car so m...
I have driven NA's before, and got friends with Drifting/track versions of them π
spice adder
I have driven NA's before, and got friends with Drifting/track versions of them ...
Ah sick! The 1.6βs are fantastic engines and the whole chassis is an amazing platform to build on
The most fun Iβve ever had in something just over 100hp
halcyon wyvern
chilly veldt
Ah sick! The 1.6βs are fantastic engines and the whole chassis is an amazing pla...
1.8 π
spice adder
1.8 π
Naaahhh you want the 1.6 if you ever want to do anything with it modification wise. A lot more reliable to work with. Or just drop a mk2/2.5 engine in it and have a reliable turboβd lump in it π
chilly veldt
Naaahhh you want the 1.6 if you ever want to do anything with it modification wi...
no, I drove 1.8's
but I am going to get a 1..6
spice adder
but I am going to get a 1..6
Oh I see, great! good luck with the search
Theyβre pretty overpriced these days, as much of the old jap stuff. Worth experiencing tho
chilly veldt
Oh I see, great! good luck with the search
already got one in eyesight, though yeah, need to save up
steel aspen
With the THM ctf rooms can I exploit them to get more info within reason or do I have to follow the room properly? I wanna be able to practise what I learn fully but don't want to get in trouble either
mossy river
You are the master of your own learning
spare vapor
With the THM ctf rooms can I exploit them to get more info within reason or do I...
If you find other ways to exploit something, more power to ya! In fact that's how you know you're getting skilled.
steel aspen
Obviously not DDoS or getting into internal servers or anything like that just strictly to the machines themselves
I just wanna see what I can do with my skills I've learned via THM
In a legal setting
Is that allowed?
mossy river
As long as youβre not breaking our TOS then yes
steel aspen
Yeah I'm not gonna do anything stupid or anything that feels off.
It'd just be good to practise everything I've learned
spare vapor
You mean like taking a CTF room and exploiting in other ways than it wants you to right?
steel aspen
Yeah within reason
spare vapor
Oh yeah thats completely fine I've seen people do it before
steel aspen
THM has been great for learning
spare vapor
Real I been here since 2021 I believe
Never stopped paying for it once, its such a game changer.
steel aspen
Yeah roughly same here with next to no experience lol
Had never used Linux before not properly
Didn't know how to operate VMs or what the goes were with ISO files lol. Even something as simple as ports were new. I mean I knew about SSL/TLS but that's pretty much as far as my knowledge went.
Never heard of an FTP server lol
spare vapor
Didn't know how to operate VMs or what the goes were with ISO files lol. Even so...
I was the same way, I tried to extract their local VM env as the ISO file, I had to figure out later that I was supposed to get the bare metal for an ISO file.
steel aspen
Yeah and even getting started with openvpn to connect to theirs properly was a mission ππ€£
spare vapor
Im not gonna lie I struggle with that still sometimes, something to do with it saying its connected but not working on THM's machines even though I can connect to their test site.
But yeah I wish it were more user-friendly at first to get the hang of Kali
steel aspen
Yeah i remember having to change something in the ovpn file to get it working and it took a while lol
steel aspen
But yeah I wish it were more user-friendly at first to get the hang of Kali
Lots of Google and YouTube
spare vapor
Yeah I like to watch NetworkChuck
spare vapor
He's good at explaining things although I feel like he's for younger people
When do I not have coffee?
steel aspen
Yeah he's pretty good at explaining core concepts for newbies but idk how good he is at a professional level
Yeah he got one thing right professionally
Coffee
spare vapor
Yeah NetworkChuck I feel is for younger auidences, if I were 12 I'd be watching non-stop.
Ironically my passion for programming and then into hacking was because of roblox and C language I wish I knew about him back then
steel aspen
Never understood programming language. I'm trying to learn python and having a lot of trouble.
glossy portal
Ironically my passion for programming and then into hacking was because of roblo...
2010's hacker movies π
spare vapor
2010's hacker movies π
The only hacking "movie" I know is Mr. Robot
glossy portal
You remember that one hacker movie where they hack a whole group? Like frame them for something?
steel aspen
Does matrix count? π€£
glossy portal
The only hacking "movie" I know is Mr. Robot
Oh yeah that's really good too
glossy portal
Does matrix count? π€£
Badass.
spare vapor
MR. Robot inspired me to be better it is so cool how they integrated cybersecurity into a show so accurately
glossy portal
I only remember the first, was too young
steel aspen
That's lucky lol
glossy portal
MR. Robot inspired me to be better it is so cool how they integrated cybersecuri...
yeah I pretended to be him when I first started watching it, wouldn't recommend emulating his personality xD
steel aspen
Altho last parts of 3rd movie wasn't too bad. Ctrl C and Ctrl V of Agent Smith/Hugo Weaving
Haven't watched the 4th one.
sick lance
Looks like they put Snort back in Kali.
spare vapor
yeah I pretended to be him when I first started watching it, wouldn't recommend ...
He is def schizophrenia
steel aspen
Can't do it without laurence Fishburne
spice adder
MR. Robot inspired me to be better it is so cool how they integrated cybersecuri...
Fantastic show. Genuinely wish I could watch it for the first time again
glossy portal
He is def schizophrenia
yep DID, but it's just another way of coping with reality
steel aspen
Looks like they put Snort back in Kali.
That's another tool I've been having trouble with lol. Did the first 2 rooms. Snort and the basics. But I think it's live attacks I'm stuck on at the moment
glossy portal
doesn't help that he doesn't get serious help...reminds me of a certain someone in the programming community...
spare vapor
Which is sad but cool at the same time both psychologists and programmers / hackers can all get something out of it lmao
spice adder
Which is sad but cool at the same time both psychologists and programmers / hack...
The art of deception, who better to share thought with other than a psychologist, or another hacker π
steel aspen
Looks like they put Snort back in Kali.
FB and Reddit give Kali users a bit of stick lol
glossy portal
Therapist, if only he got therapy early man
spice adder
Also art of deception is a fantastic book
glossy portal
Also art of deception is a fantastic book
haven't read it, checking out
oh social engineering
spice adder
haven't read it, checking out
A classic for social engineering. Really worth the read
sick lance
FB and Reddit give Kali users a bit of stick lol
Reddit is a dumpster fire.
glossy portal
I'm usually careful around that stuff, "if you lie down with dogs don't be surprised when you wake up with fleas" but yeah it's a skill I could use, if acquired ethically
steel aspen
Reddit is a dumpster fire.
Yeah it's turned pretty badly but even most FB groups to do with cyber and Linux give Kali users stick
spare vapor
The Secrets of Reverse Engineering is a good one too
Thick book full of interesting material
spice adder
I'm usually careful around that stuff, "if you lie down with dogs don't be surpr...
Good thought. Itβs a skill in this industry. One that I donβt have a lot of direct practice with
sick lance
@lone thistle
Do you have any W7 images for VmWare? π
spice adder
The Secrets of Reverse Engineering is a good one too
Iβll check that out, thanks!
twin ridgeBOT
Gave +1 Rep to @spare vapor (current: #472 - 9)
spare vapor
np
spare vapor
Used to but I took a hiatus for my mental health and forgot pretty much everything
steel aspen
FB probably not much better
spare vapor
I plan on returning to it when I complete Cyber Defense path
spice adder
I must add, I still hate how complex typecasting can get. Skill issue for me tho
steel aspen
<@106094485129162752>
Do you have any W7 images for VmWare? π
Any reason in particular you think Kali users get stick aside from the stereotypical h4x0r?
spice adder
Used to but I took a hiatus for my mental health and forgot pretty much everythi...
Gotta look after yourself, you understand your own path. U got this 
spare vapor
I must add, I still hate how complex typecasting can get. Skill issue for me tho
Thats when you change one datatype and convert it to another right?
sick lance
Any reason in particular you think Kali users get stick aside from the stereotyp...
Because it's pretty much "plug n play"
spice adder
Thats when you change one datatype and convert it to another right?
Yeah, gets confusing for me when Iβm working with entities n fucking referencing a type casted relative address within an object of a module address
steel aspen
Ubuntu seems to be the same but Ubuntu doesn't get much stuck
spice adder
That is the skill issue part for me
steel aspen
Sticl
shut hawk
https://blackarch.org/
Honestly blackarch is worse, the website literally screams script kiddie vibes
steel aspen
Can't type tonight
Arch user's seem annoying af
Every FB post "I use arch BTW"
Is it ment to be a status thing in Linux? Lol
It's become a meme
uncut cove
Ubuntu seems to be the same but Ubuntu doesn't get much stuck
ubuntu has a bug that prevents terminal from opening, if the locale isn't en_US
spice adder
Thats when you change one datatype and convert it to another right?
Tbf the reverse engineering I donβt mind, itβs the development of projects to work with reverse engineering finds
I just gotta get better at C
steel aspen
ubuntu has a bug that prevents terminal from opening, if the locale isn't en_US
I can't remember what I set mine as but haven't used by Ubuntu vm for a while. That'd be fairly annoying though.
shut hawk
Is it ment to be a status thing in Linux? Lol
it's just a meme that they like to flex what distro they use
unreal wadi
https://blackarch.org/
Honestly blackarch is worse, the website literally scream...
I'm not sure why, but BA logo always reminds me of the Delta Force emblem and original CoD MW
steel aspen
it's just a meme that they like to flex what distro they use
I'm gonna assume arch can be a pain to set up from scratch or something
shut hawk
I'm gonna assume arch can be a pain to set up from scratch or something
It can be, but it's a lot easier now with the use of graphical installers like other linux distros
uncut cove
I can't remember what I set mine as but haven't used by Ubuntu vm for a while. T...
absolutely! stopped deploying my vms on ubuntu when even setting en_US didn't open the terminal
shut hawk
I'm not sure why, but BA logo always reminds me of the Delta Force emblem and or...
I can see that
steel aspen
absolutely! stopped deploying my vms on ubuntu when even setting en_US didn't op...
Sounds like Ubuntu just trolling lol
steel aspen
It can be, but it's a lot easier now with the use of graphical installers like o...
Oh makes sense. Graphical installation is a lot easier.
Somewhat ironic for me considering I find command line tools easier to use than graphical tools like Burp or Wireshark
sick lance
steel aspen
But with command line just have to remember the switch and syntax ig
Some of the graphical tools has stuff everywhere it feels like Windows
shut hawk
Graphical interfaces have their use, especially for showing large amounts of information in an accessible way
steel aspen
Yeah snort/tcpdump involves lots of scrolling. Not that Wireshark doesn't but it's not hard to find what ur looking for at least.
Well idk about tcpdump only used it a handful of times but I remember having to scroll a bit
gritty zephyr
Honk
unreal wadi
Somewhat ironic for me considering I find command line tools easier to use than ...
GUI and CLI both have their pros and cons in specific use cases
steel aspen
GUI and CLI both have their pros and cons in specific use cases
Yeah definitely depends.
But I'll always prefer command line I think
Can snort record live network traffic like Wireshark does?
unreal wadi
e.g., tshark (cli) is great for quick IP parsing from pcap, but fails to show extended data in nice readable format when you can get it quickly out with wireshark (gui)
steel aspen
Yeah Ive used tshark a few times too. It's really good.
loud marlin
my company simulate phishing attack, and 277 users fall for it. they enter username/pass π
lavish shell
Yeah Ive used tshark a few times too. It's really good.
You ever used snort? I heard it was pretty good too
steel aspen
I've just been learning it
I've done the first 2 THM rooms n halfway I think through the 3rd
uncut cove
my company simulate phishing attack, and 277 users fall for it. they enter usern...
also nobody knows how many of them have already entered their credentials in a non-simulated phishing π
if there was any, that is
steel aspen
You ever used snort? I heard it was pretty good too
It's definitely good to learn. It does a lot of different things
lavish shell
I didn't even know they had a room for it, I just started using it myself a few days ago
loud marlin
also nobody knows how many of them have already entered their credentials in a n...
we have 2fa for all logins. and for sure we have extra high security in general due to nature of work and so
but you are not wrong
steel aspen
my company simulate phishing attack, and 277 users fall for it. they enter usern...
277 people got called into office? π€£
lavish shell
It's definitely good to learn. It does a lot of different things
Yup, heard it was good for network intrusion prevention
loud marlin
277 people got called into office? π€£
i think they might do some education for sure
steel aspen
I didn't even know they had a room for it, I just started using it myself a few ...
There's 3 I think. Snort, snort the basics and snort live attscisb
Attacks
loud marlin
unreal wadi
ugh... was in the middle of final task in exploitingad as time ran out, and network shut off. Wouldn't be an issue, but even after restarting the network, no icmp or other packets go through anymore. Anyone want to chime in with a reset (currently 3/5)?
sick lance
ugh... was in the middle of final task in `exploitingad` as time ran out, and ne...
Which subnet?
simple valve
did you click the link π
unreal wadi
Which subnet?
10.200.83.0/24
loud marlin
did you click the link π
at home, outside the company network and did OSINT. i reported it at same day, just i enter eatshit@die.com Y0u5uX87
and i was THIS close to male some flood thing to automate enter/send
loud marlin
nah. hight power hold me nack. it is shade area to do. and i kinda think it was simulation due to some OSINT. was to easy to pass to us in first place
finite basalt
@sick lance did you get a ticket for the conference in the end?
sick lance
<@958383130102870026> did you get a ticket for the conference in the end?
Nah, I've got uni on a Friday π¦
pale smelt
Anyone is a hacker ?
uncut cove
nope
lavish shell
Anyone is a hacker ?
Hacker? What's that?
wraith fjord
uncut cove
Hacker? What's that?
a big knife that hacks instead of cutting, maybe?
lavish shell
I was thinking a cereal killer, but a spoon doesn't do very good at hacking lol
loud marlin
I was thinking a cereal killer, but a spoon doesn't do very good at hacking lol
death bt the spoon
sick lance
Anyone is a hacker ?
Yeah!
spare vapor
https://www.youtube.com/watch?v=9VDvgL58h_Y
Why does he kinda look like the owner of McAfee
loud marlin
lol
rapid merlin
I think I was trying to SSH into the wrong domain, there are multiple domains in those rooms like ZA\ or THMWRK1\ etc.
loud marlin
if you are born deaf... on what language you inner thoughts are ?
shut hawk
sign language
loud marlin
=/
worn thorn
vibrations in morse style code
rapid merlin
if you are born deaf... on what language you inner thoughts are ?
Pictures
And indeed sign language
loud marlin
might be
crude stump
if you are born deaf... on what language you inner thoughts are ?
Prolly what ever they grew up listening too
Wait lmao
Bruh
I didnβt read
mossy river
I wonder if deaf people have inner monologue, not everyone does
spice adder
I find it hard to comprehend what reading must be like without inner monologue
unreal wadi
I find it hard to comprehend what reading must be like without inner monologue
Imagine reading in braille
floral wing
Lol ive just seen weβll be exploring ctf websites in our ctf lab class & thm is one of them
THM bout to get more users lezgooo
rapid merlin
Is it possible to run Windows on my Mac Mini M2? (without a VM)
rapid merlin
Is it possible to run Windows on my Mac Mini M2? (without a VM)
Yeah
Mac has the option to dual boot using boot camp assistant
rapid merlin
Mac has the option to dual boot using boot camp assistant
not anymore unfortunately, only if you have an intel cpu
rapid merlin
Mac has the option to dual boot using boot camp assistant
I think it's only for Intel based chips
Sounds like a very Apple thing to do
M family chips have different architecture than Intel. So the only option is virtualization
I miss playing Valorant but I dont wanna buy an extra PC for it
I doubt that VMs use your GPU enough to run a game
rapid merlin
I miss playing Valorant but I dont wanna buy an extra PC for it
Check if you can use cloud gaming for it such as nvidias one
You can run it in chrome
rapid merlin
Check if you can use cloud gaming for it such as nvidias one
I think theres a input delay in shooting games
I never had issues
But Iβm also not a serious gamer
Did you try shooting games on it?
A few
were you able to hit some headshots?
Just need a direct rj45 ink
rapid merlin
were you able to hit some headshots?
In pvp Iβm usually the one getting shot
But I have in story mode
lol ill try it
spice adder
Just finished Jr Pen Tester. That was juicy
rapid merlin
Just finished Jr Pen Tester. That was juicy
Congrats π
silver sky
I wonder if deaf people have inner monologue, not everyone does
I wonder if it's the same statistics as everyone else or actually more common
sick lance
@shut hawk
Got your Arc E-mail yet?
I've had 3 now...
shut hawk
no, I even emailed them about my student email not working and they haven't gotten back to me βΉοΈ
upper bison
Why THM emails has been landing into my spam folder?
I use Proton Mail and it says that the THM email domain has failed the domain authentication check
sick lance
Your E-mail rules, perhaps.
upper bison
Rules?
In my email box, I just created a specific rule to forward THM emails into a specific box
That's it
boreal scarab
Be me:
-Wake up to hear a strange beeping sound. Panik
-Don't hear your server running. Major Panik
-Power is out Panik
-Remember your server is on an Eaton UPS Kalm
-Eaton UPS isn't supplying the server with enough power to power the PSU's Panik
-Power comes back on. Kalm
near hawk
Lets go Nvidia made me Β£7
sick lance
I doubt that VMs use your GPU enough to run a game
I don't think you passthrough for your GPU and VM, otherwise Hashcat would be good to go from a VM AFAIK.
shut hawk
I believe it's possible? But its certainly not recommended to do
Much better support on the actull host
bitter quiver
Did something change with the GPU market? Suddenly 30xx series laptops and PCs are reasonable
near hawk
Probably becasue the 50 series is coming out soon
golden timber
I connected with a senior security engineer at Rockstar games and it's taking every ounce of me to not ask about gta 6 leak π
near hawk
99 more members on the Reddit and will do a sub giveaway
finite basalt
Scrubz, just did the event for how many from our soc and alumni are going to the conference, we got about 30 π
We an army
brittle lynx
Hell ocan anyone help me I want to search for a value within any table of a database in mysql
bitter quiver
I connected with a senior security engineer at Rockstar games and it's taking ev...
I never care much about leaks of AAA games anymore
I get excited for indie devs making a new 16 bit platformer
chilly veldt
going for an enjoyment meal today π
shut hawk
gray sonnet
:/
near hawk
Always the leap years
naive violet
That's literally an "evil bit" solution...
gray sonnet
π€£
naive violet
You know that's solutions that don't work right?
sand trench
I wonder if deaf people have inner monologue, not everyone does
to simply answer your question: yes some do.... how does shadow know?? well had some deaf friends from school and asked them to explain things.... some kinda see the signing they do as abstract inner monologue and others more see text as their inner monologue
anyone see what is wrong in this image???
gray sonnet
what the...
sand trench
you spot the error vain???
golden timber
I get excited for indie devs making a new 16 bit platformer
with google genie?
π
bitter quiver
with google genie?
Huh? No all the sweet ones on Steam
gray sonnet
you spot the error vain???
set up ssh? or the developer mode part
sand trench
set up ssh? or the developer mode part
it is in the set up ssh part
gray sonnet
sudp apt install openssh-server
sand trench
hint: || look up what distro steamos on the steamdeck is based on||
sand trench
π
gray sonnet
it's pacman
sand trench
haha yeah it is based on arch so it would not be apt install
not to mention it is immutable
gray sonnet
yup
bitter quiver
Man I love these things. Actually gives detailed info
rapid merlin
So that file casually encrypted everything!
Good thing you didnt run on your own pc
bitter quiver
I mean it's the little report thing from one of the modules
sand trench
@mossy river you there??? got a question
bitter quiver
It's cool to read through and see what it did
mossy river
<@270975958511517697> you there??? got a question
Hm?
sand trench
see image above
and also how you are doing and if you found the information about deaf people having inner monologue interesting
bitter quiver
Is this a static report on tryhackme or is it an active thing it runs
sand trench
oooh it is from a tryhackme room
golden timber
Huh? No all the sweet ones on Steam
bitter quiver
oooh it is from a tryhackme room
? Yes
sand trench
thought you were messing with malware samples on your own computer for a bit
bitter quiver
Hell naw.
rapid merlin
Whats the name of the room btw?
bitter quiver
I just did a fresh wipe as I do like once every 2 years just to keep it fresh.
bitter quiver
Whats the name of the room btw?
Pyramid Of Pain
rapid merlin
ahh
sand trench
anyways time for shadow to head to the store and pick up some french fries
bitter quiver
But it takes forever to load when you click it so Iw as wondering is it a software snapshot that actually runs, or some static "info"
Vs the other questions using a simplified report you sift through to identify answers and info
bitter quiver
https://lifehacker.com/tech/googles-ai-can-now-create-video-games
Oh god. No the real deal
Like Panzer Paladin
lone thistle
But it takes forever to load when you click it so Iw as wondering is it a softwa...
the link is a static version of the analysis task. So an analysis isn't ran everytime, it's just a shareable link to the analysis that was done originally π
mossy river
see image above
Which?
desert shuttle
What a good day
viscid hill
what
finite basalt
@pallid lotus just arrived in your ends π
near hawk
when does the level update on discord lmao
Usually the next working day automatically or you can reverify and should update it
midnight hazel
Usually the next working day automatically or you can reverify and should update...
hmm k
mossy river
Usually the next working day automatically or you can reverify and should update...
Next working day? π€£
mossy river
Funky sentence, go sleep
near hawk
I'm forced to play Palworld
mossy river
By whom
near hawk
Girlfriend
mossy river
near hawk
Recenlty addicted to the game
mossy river
I hope youβre aware I already knew that entire conversation
sick lance
<@650476435269484549> just arrived in your ends π
Is Muiri still in Dundee?
I thought they left after graduating.
sick lance
Yeah, I think I asked the after they graduated if he moved closer home, and I can't remember the answer.
Even then, I can't remember if they're from Invernees, or near it.
chilly veldt
π
warm bear
Hii all. I need some advice on certs plez. Considering doing eJPT because people are doing it. But I don't have a clear idea of what I wna be doing π \
bronze osprey
Good morning all
glass nest
Hiya alex dot exe. Long time no see π
bronze osprey
Same to you! How are you?
glass nest
Living the dream. Unwidning after work to re-energise then into the workshop π
golden timber
sounds fun
I spoke with a recruiter at an agency this morning. Was pleasant
A little typical recruiter slang. I was gonna play corporate bingo
bronze osprey
Living the dream. Unwidning after work to re-energise then into the workshop π
What are you making???
graceful thistle
you need to add 'put a pin in it' and 'circle back'
sick lance
Hii all. I need some advice on certs plez. Considering doing eJPT because people...
You''re doing a cert because people are doing it?
I don't understand that logic...
golden timber
you need to add 'put a pin in it' and 'circle back'
thanks, I found this on wikipedia actually https://en.wikipedia.org/wiki/Buzzword_bingo
twin ridgeBOT
Gave +1 Rep to @graceful thistle (current: #22 - 350)
warm bear
I don't understand that logic...
gotta match others idk
glass nest
got a couple of jigs I need to put together, then a box, a reel for my air hose, gonna have a crack at a foldable chair - which I will template up so I can repeat it easier
and inbetween it all - organise the workshop a bit better
mint palm
gotta match others idk
Everyoneβs situation is different, the cert might be close to useless in your area
sick lance
gotta match others idk
Surely though, you'd do all certs, because people are doing them?
sick lance
Which area of the field do you want to move in to?
glass nest
Welcome to life, brodda π
warm bear
I can't decide for sure. I am between VaPT and GRC rn ( I am currently doing )
naive violet
you need to add 'put a pin in it' and 'circle back'
Let's take this offline
graceful thistle
ah yeah good one
sick lance
I can't decide for sure. I am between VaPT and GRC rn ( I am currently doing )
Then look for certs which specialise in that area?
bronze osprey
got a couple of jigs I need to put together, then a box, a reel for my air hose,...
Sounds awesome!
graceful thistle
glass nest
Alex - so much woodworking is making stuff to do woodworking π
warm bear
eJPT is related, but I only have 5 months experience so idk if I should buy it now or later π€
rn there is a sale for annual fundamentals on eJPT
bronze osprey
Custom tools for custom works!
mint palm
rn there is a sale for annual fundamentals on eJPT
You donβt really have to buy the INE course, everything (or most) can be found for free on THM
eJPT is not that much of an HR boost, but Iβd take it as a really expensive lab and a fun experience
warm bear
You donβt really have to buy the INE course, everything (or most) can be found f...
Yeah, I have most of the foundational knowledge and concepts grasped. It's just I have to find practice to the relevant subjects/techniques tested in eJPT.
tidal river
eJPT is related, but I only have 5 months experience so idk if I should buy it n...
I am doing ecppt with non IT background and with basic of cyber security knowleage Im doing a best
mint palm
Yeah, I have most of the foundational knowledge and concepts grasped. It's just ...
If you have a lot of spare money then Iβd say try it out, but otherwise there are better alternatives
tidal river
Guys i am facing a issue with the xfreerdp
warm bear
I am doing ecppt with non IT background and with basic of cyber security knowlea...
How long have you been preparing? and when are you planning to do it?
tidal river
can any one help with it
warm bear
If you have a lot of spare money then Iβd say try it out, but otherwise there ar...
Got it, thank you mate
twin ridgeBOT
Gave +1 Rep to @mint palm (current: #267 - 18)
tidal river
How long have you been preparing? and when are you planning to do it?
3 month
mint palm
Guys i am facing a issue with the xfreerdp
Whatβs the issue
warm bear
but i have lot to prepare
Wishing you success π
warm bear
btw, if you buy the voucher, does it expire after some time?
tidal river
now i have trying Buffer Overflow Prep
tidal river
btw, if you buy the voucher, does it expire after some time?
I have buyed totally 6 month valid to take test
now it is over 3 month
warm bear
Ah oki
tidal river
till have time to take test may month !
β$ xfreerdp /u:admin /p:password /cert:ignore /v:10.10.103.16 /workarea
[23:35:20:831] [28493:28494] [ERROR][com.freerdp.core] - transport_connect_tls:freerdp_set_last_error_ex ERRCONNECT_TLS_CONNECT_FAILED [0x00020008]
can any one help with it
I have google ed but i am not geting solution
finite basalt
Is Muiri still in Dundee?
Pmed
tidal river
Or please point me to a right channel
near hawk
btw, if you buy the voucher, does it expire after some time?
Vouchers don't expire
tidal river
Vouchers don't expire
it will expire after 6 month
near hawk
No they have no expiry date
tidal river
you speaking about INE !
near hawk
Ahh sorry, thought you was reffering to THM
near hawk
#room-help is better if you need help on the rooms
tidal river
thank you dude
stuck tangle
Are there any active discounts for THM subscription?
warm bear
Are there any active discounts for THM subscription?
There is 20% off if you are a student I think.
near hawk
Yep
warm bear
You're account would need to use a student email for the discount to be reflected in the pricing π
sick lance
Doesn't need to be.
pseudo sparrow
Good evening everyone, im new to these part of it. I have a little problem with my section. Can i ask here?
sick lance
You can E-mail support and prove you're a student that way.
silver sky
You can contact support and prove it that way
sick lance
Good evening everyone, im new to these part of it. I have a little problem with ...
Section of what?
stuck tangle
Not a student. I guess there aren't any active promotions?
pseudo sparrow
https://tryhackme.com/room/operatingsystemsecurity -> the password provided in the instructions is wrong. i try bruteforcing the password
stuck tangle
Not a problem if not.
sick lance
Not a student. I guess there aren't any active promotions?
there isn't, no.
sick lance
https://tryhackme.com/room/operatingsystemsecurity -> the password provided in t...
#room-help for this, it could get lost in here. π
pseudo sparrow
sorry, thank you
buoyant tree
Spent 40 min trying to debug why my code wasn't starting, realized I didn't call the function
buoyant tree
mustve been some pretty bad debugging π
yup although I probably made the function too big that it was almost all my code
so didn't even realize I was coding inside a function until later, (was continuing a few months old project)
sick lance
This only occurs every 4 years π
plush mesa
https://www.bleepingcomputer.com/news/software/citrix-sophos-software-impacted-b...
The leap year bugs, definitely not Citrix/Sophos vulnerabilities π
they've been having quite the run
shut hawk
https://www.bleepingcomputer.com/news/software/citrix-sophos-software-impacted-b...
So have EA π
shut hawk
naive violet
But the real risk was always leap years
Just wait for 2038
bitter quiver
It's weird to think about 2038
Firstly if I'll even be alive, since anything can happen and our health is never promised. And secondly, how wild will tech be
sick lance
I will get past this great firewall of Windows 7!
lavish shell
Was talking to a guy about bugs, he said that he hated them because they crawl on you when you sleep π
sick lance
They're not wrong.
bitter quiver
Technically wasn't the first ever computer bug literally a moth that got fried inside one of those old giant room size computers?
clear jackal
TIL Google warns you about password breaches even if your password isn't stored with them
shut hawk
Where? π
clear jackal
I am assuming anywhere chromium touches. It happened on my phone and using chrome on my pc
plush mesa
Were those password breaches for gmail addresses/email addresses you registered to google services with?
clear jackal
Yeah, Bitwarden has the feature. I just wasn't expecting it from google because I don't use any of their account management products
clear jackal
Were those password breaches for gmail addresses/email addresses you registered ...
No, work email and an account with an organization that is not google
plush mesa
hmm ok interesting
clear jackal
Yeah, it was a surprise. Though I suppose it shouldn't be considering how much google has their fingers in at varying levels
shut hawk
At least you know your password was breached
bitter quiver
After? When I see a breach I start swapping passwords right there, and generally any other accounts associated with it either via linkage or the email used.
I don't play that game.
In 2024 someone doing crap on your account can lead to a period of pain in the butt time fixing it all
shut hawk
After? When I see a breach I start swapping passwords right there, and generally...
Have you considered the fact that they might not be able to change their passwords while at work...?
near hawk
The only thing that was disappointing to me that got breached was my club penguin account
clear jackal
Have you considered the fact that they might not be able to change their passwor...
This
buoyant tree
The only thing that was disappointing to me that got breached was my club pengui...
club penguin was a old game right which got shutdown?
clear jackal
Am I that old?
near hawk
Yea, then they put it back up
buoyant tree
do people still play it
near hawk
Not sure been a long time, pretty sure Disney made their own one then that got shutdown
shut hawk
Not sure been a long time, pretty sure Disney made their own one then that got s...
I wasn't able to get my account on the remake version
near hawk
I couldn't either, although I just wanted to play it again to get to black belt
lavish shell
Anyone know when Deadface is happening this year? Maybe October 20th like last year perhaps??
near hawk
The past has been in October, so yea most likely then
mossy river
I think Duolingo is wrong here smh
As someone who goes through many thoughts at one time, this is sentence I would say
gritty zephyr
I mean eating a schnitzel at a waterpark is also possible
near hawk
The coffee is cold. Do you swim here?
mossy river
I donβt think you realise how many times Iβve pressed the coffee on that same question
gritty zephyr
Ok quick question, i need to simulate something on a phone(see it as a playbook) for my digital forensics semester, for that i want to inject stock photos with exif data to simulate it being taken at a certain place, anyone know a tool for this?
Like where i can add time/coords
wintry sluice
android emulator?
bitter quiver
Have you considered the fact that they might not be able to change their passwor...
True. I just tell my boss I need a few though. But not all bosses are flexible or care, I've had some that aren't.
mossy river
except that water != Kaffee ^^
Itβs a sentence you figure out by context but there is a lack of context and it can be subjective
lament tendon
Ok quick question, i need to simulate something on a phone(see it as a playbook)...
imagemagick or exiv2.
Alternatively I am sure that there is some way to do that with ffmpeg, if you have too much free time.
wheat crater
Itβs a sentence you figure out by context but there is a lack of context and it ...
Well, you swim in water, not coffee, so that's your context
lament tendon
Ok quick question, i need to simulate something on a phone(see it as a playbook)...
On IPhone you can also just click on the "Info" icon in your gallery and add a place there.
mossy river
Well, you swim in water, not coffee, so that's your context
It doesnβt imply that you have been in the water or swim.
Itβs actually a really odd sentence, it would make modern sense to be βDer Wasser ist kalt. MΓΆchtest du schwimmenβ
wheat crater
*Das
But I got your idea.
Used Duo for almost 3 years. It got worse by time π¦
shut hawk
Well, you swim in water, not coffee, so that's your context
Fun fact: there's actully a spa in Japan where you can swim in coffee
mossy river
Duo has gotten really good, but as someone who speaks German to my friends, it doesnβt really prepare you for actual conversations.
But the concept is very well made and it does work for casual learners who want something to do on the go.
People that actually want to learn a language should use Duolingo as well as watching TV shows/ movies, reading books, conversing with other Germans and researching grammar, sentence structure, etc.
My biggest problem with Duolingo is that it tells you how to do it, just not why.
There is a language app that tells you why but I forget itβs name and itβs a premium
mossy river
*Das
But I got your idea.
Used Duo for almost 3 years. It got worse by time π¦
Yes, correct, I get confused when switching between two languages lol, I was still thinking of coffee hence the wrong gender haha
clear jackal
Duo has gotten really good, but as someone who speaks German to my friends, it d...
As someone who also used to speak German and has been to Germany multiple times, I agree
plush mesa
"My biggest problem with Duolingo is that it tells you how to do it, just not why. " dont question german grammar, i don't understand it myself as native speaker
mossy river
I speak a mix of German, Turkish and English which is utterly useless in actual conversation because the words I donβt know in German, I never actually learn.
wheat crater
I'm speaking 4 languages, German as mother tongue. i still think Ger is the least intuitive π
clear jackal
Are you thinking about babble for the other service jabba?
mossy river
"My biggest problem with Duolingo is that it tells you how to do it, just not wh...
Not everyone can just blindly follow the rules. Especially me, I have to understand why something works before I apply it.
It also makes sense when you grow up in the language but English doesnβt heavily enforce cases which means people learning German from English can struggle with the word order and the forms of the words changing.
Iβm not saying you canβt just go ahead and remember all of the sentences, just means itβs really hard to create your own sentences and imo it creates more effort.
mossy river
Are you thinking about babble for the other service jabba?
I think it might be, yes
And! A perk of learning German at such a low level actually improved my English
plush mesa
One tip I can give you on your german journey
It's die Nutella in case you ever get asked
wheat crater
What? Never! It's DAS Nutella xD
plush mesa
DIE NUTELLA
clear jackal
are you basing that on the article Italians use for nutella?
mossy river
Krapfen or Berliner @plush mesa @wheat crater
clear jackal
iirc they use la
plush mesa
Berliner
clear jackal
I guess you could use any article in german
wheat crater
Krapfen! π
plush mesa
are you basing that on the article Italians use for nutella?
A. yeah it has a feminine ending
2. das Nutella is just wrong
oh god
its late
clear jackal
der nutella
plush mesa
cant even do numberings anymore
mossy river
Oh god my brain interpreted that as a 1 wtf π
plush mesa
der nutella is 100% wrong
clear jackal
das feels best, because you know, it's an inanimate object lol
plush mesa
but thats a bad logic
Every object would be das then
Wow, the duden says you can use any article
It's both feminine, masculine and neutrum. Even though the ending is feminine ;)
lament tendon
Der nutella actually feels right
Aahahahaha, I did not ever expect non-german people to argue about this. xD
Das Nutella here, der Nutella there.
Not even Germans agree.
wheat crater
You would be amazed how Austrians and German can argue over language π
mossy river
Aahahahaha, I did not ever expect non-german people to argue about this. xD
Iβve had my fair share of German disagreements π
twilit inlet
same argument with Marmite/Vegemite - in nz and AU - sorry but the brtitish stuff is gross
rapid merlin
Krapfen or Berliner <@235057917139746827> <@256817422223409152>
This reminds me of "Ich bin ein Berliner"
near hawk
Marmite is disgusting
mossy river
This reminds me of "Ich bin ein Berliner"
At least he got a laugh
near hawk
Should be burned from existence
mossy river
All the good speeches are funny
lament tendon
Krapfen or Berliner <@235057917139746827> <@256817422223409152>
You can literally leverage the answer to this questions as OSINT, because it's region dependent what people call it.
mossy river
Yup π
Itβs always fun to get to people from different areas in the call and ask the question
gritty zephyr
`imagemagick` or `exiv2`.
thanks π
twin ridgeBOT
Gave +1 Rep to @lament tendon (current: #35 - 208)
sand trench
wintry sluice
nutella π€€
cosmic pendant
They are different
if you're new, use Kali
if you're pro, Use Kali
If you're really really pro, use ubunutu and then turn it into Kali π
brittle flume
does anyone know if possible to change the cipher suites of a subdomain only?
on cloudflare
wintry sluice
If you're really really pro, use ubunutu and then turn it into Kali π
this sounds like a lengthy way to say "don't use parrot"
cosmic pendant
I don't use Parrot, I don't know anyone that does that I worked with, or have worked with. But I look at like this. OffSec, some of the best training, some of the best people, make and use.... Kali
The best tools are the one you use, you like and are comfortable with,
whole yew
Try both, in VMs. See which one you like more, and use that.
You can use any OS you want, it's a matter of building or locating tooling that matches what you want to do, and then platforming it in a way that's easy for YOU to deploy and manage.
At work, it literally doesn't matter what linux distro I use, because I use IaC to manage my tooling and tooling config. Every security assessment gets a 'fresh' VM and the playbook gets run from scratch.
keen walrus
The best tools are the one you use, you like and are comfortable with,
indeed
cosmic pendant
Since we're on the topic. Obligatory don't use Obsidan π
whole yew
kek
rapid merlin
To my experience, the actual difference between Parrot and Kali isnt that big. Just UI stuff
cosmic pendant
The Obsdian devs fight their user base enough, I'll defer to them π
whole yew
Parrot has been much more unstable for than kali, and comes with a lot fewer tools installed by default.
lavish shell
I, personally, wouldn't recommend Kali Linux, yeah it's great because it comes with all sorts of tools pre-installed but chances are you're either not going to like the tools, not use the tools, not know what they do, or are otherwise unfamiliar or uninterested in the ones provided.
cosmic pendant
Wait
Did you just argue to remain ignorant? Don't learn new tools. techniques and only stay with what you know?
lavish shell
Lol no, let me explain
sharp citrusBOT
whole yew
But some people like parrot more; my experience with parrot is that it made things more difficult (not less) and so I dumped it. Kali is a good enough platform for most of the security activities you'd expect to do, and it's oriented towards new-to-security but not necessarily new to IT.
cosmic pendant
@lavish shell you should verify first :0
rapid merlin
Parrot has been much more unstable for than kali, and comes with a lot fewer too...
Funny thing is, kali broke 2 times at my pc, and parrot didnt
It isnt down so
wintry sluice
Since we're on the topic. Obligatory don't use Obsidan π
but I like obsidian
whole yew
Funny thing is, kali broke 2 times at my pc, and parrot didnt
That is unique to you; Kali used to have a tendency to break on big version updates. Since they moved to a rolling release, it's been much more stable.
cosmic pendant
but I like obsidian
I did too, I really did.....
bitter quiver
I'm always going to just be a OneNote weirdo
rapid merlin
That is unique to you; Kali used to have a tendency to break on big version upda...
Yeah to make it better, older versions were more stable xd
I had the cannot-log-in issue
lavish shell
Point being, you can grab an OS crammed pack full of tools that take up a lot of space, or you can use an distro like Bodhi where you have the extra space and can install the tools you want and not have a ton of space used up by tools you don't like using
rapid merlin
the login loop
cosmic pendant
Point being, you can grab an OS crammed pack full of tools that take up a lot of...
Kali minimal is a thing...
wintry sluice
why not?
shut hawk
Just like Android is an OS
cosmic pendant
But also, Kali coming with most tools by default is great when you don't have internet access likea gov't facility
Cold server room in the middle of nowhere, you know what you have
rapid merlin
(Parrot has most tools Kali has too)
cosmic pendant
So, big advantage, and Juun is 1000% right since they started doing the rolling updates with regression testing
whole yew
Point being, you can grab an OS crammed pack full of tools that take up a lot of...
I understand what you're getting at; often, new linux users don't really get how to install all that tooling on their own if it's not in a compatible repo. That's fine, we shouldn't gatekeep people from exploring and learning security topics because of it. Kali is a 'good enough' solution for those kinds of introductions, and it does simplify tool management for many orgs who use it as the security distro of choice.
glass nest
And when you are learning. ok you might not use a lot of the tools, but there are some tools you'll use a lot π
wintry sluice
I did too, I really did.....
do you recommend something else instead?
glass nest
hiya Toaster π
cosmic pendant
do you recommend something else instead?
Joplin
Hey Esqy!
I tried every tool under the sun for notes, i think a few folks here know that π
Joplin is the best mix of ease, accessbility, sync, multi user.
glass nest
Currently giving Trilian the college try
glass nest
Obsidian just stopped working for me randomly
whole yew
Trillian has some very strong arguments for it; I like the note-locking capability the most. Joplin is a close second on that front, and does tagging better though
bitter quiver
Currently giving Trilian the college try
The old software that combined ICQ, AIM, MSN, etc?
lol
glass nest
you old
cosmic pendant
The old software that combined ICQ, AIM, MSN, etc?
Do you remember when it was called Gaim?
I do
bitter quiver
Pepperidge farm remembers
lavish shell
It really depends on what you prefer honestly, I prefer something that offers more customization. That's why I use Bodhi. To each their own, Kali is good, hell I don't think there's such a thing as a "bad linux distro". But Bodhi offers so much in terms of customization
cosmic pendant
It really depends on what you prefer honestly, I prefer something that offers mo...
Arch
π
shell nova
see, I prefer something that actually works π
leaden fiber
cosmic pendant
I sure do love compiling!
crude stump
Whatβs poppin
shut hawk
I love using heptabase
cosmic pendant
Does anyone know of any OS written in a mem-safe language?
bitter quiver
Does Tails have that?
lament tendon
Does anyone know of any OS written in a mem-safe language?
If you find one, ping me. I'd be interested in that.
shell nova
Does anyone know of any OS written in a mem-safe language?
wonder about NixOS or one of those immutable core
shell nova
they mean stop using C
bitter quiver
Did the whitehouse just realize risks of memory in 2024 or something?
Like it wasn't a thing in the 90s
lament tendon
do they just mean managed languages?
I don't think so, e.g. Rust is also considered memory safe to my knowledge.
shell nova
yup
wheat crater
C# is also considered as mem safe afaik
wheat crater
lament tendon
https://www.tomshardware.com/software/security-software/white-house-urges-develo...
Ok, thanks to the background code in this image I stumbled about an absolute comedic gold mine:
https://stackoverflow.com/questions/1642028/what-is-the-operator-in-c-c
twin ridgeBOT
Gave +1 Rep to @cosmic pendant (current: #37 - 191)
lament tendon
You just have to ignore all the normal answers. ;)
cosmic pendant
Sounds like a perfect fit for AI.... /s
wheat crater
reading the explaination ruins the joke tbh π
sand trench
wut???
lament tendon
Fun fact, this actually works.
sand trench
yeah it works but why the meeps
wintry sluice
meep?
sand trench
YAY the sixel branch of alacritty on the aur got updated
boo tmux not handling sixels well in alacritty
guess it is time to bring out zellij
bitter quiver
I can imagine the smell
wintry sluice
I can't π
lavish shell
I don't know wtf is going on with my VM, it's hating against the tryhackme site today. I used it for endless hours last night, now it's saying I have to use a desktop version.
wintry sluice
I often forget to turn off the proxy on my VM
lavish shell
Nah, that isn't the issue, it's reading my bowser as a mobile version rather than a desktop version
hybrid shale
i was told to use thm by cyber security police thingy (at school) and im only 13 lol
charred forum
i only use kali for burpsuite because ubuntus graphic are weird
charred forum
i was told to use thm by cyber security police thingy (at school) and im only 13...
good luck
lament tendon
Small update on my very important scientific work.
C++ is great.
hybrid shale
Small update on my very important scientific work.
C++ is great.
im experienced with lua coding (can do most stuff off by heart) but not other languages and cba to learn them
loud marlin
https://youtu.be/emJsHKINn-s?si=BlDmUeb2n82sF71B
shut hawk
i was told to use thm by cyber security police thingy (at school) and im only 13...
Welcome! Don't worry, you're not alone - a lot of the users here are quite young
hybrid shale
Ty
bold latch
Anyone from the homeserver squad around?
shut hawk
Ask your question
bold latch
Need some opinions on cloud backup options. What's y'alls provider, if you have any?
lavish shell
Got my issue fixed lol, someone thought it'd be funny to change the browser settings to where it would be initiated through a terminal session rather than starting regularly when clicked
spice adder
Hell yeah, still more efficient than Python
shut hawk
Need some opinions on cloud backup options. What's y'alls provider, if you have ...
Here's a comparison, I like using filen personally
bold latch
I've been thinking ideally of a Nextcloud instance, which'll be hooked up to an external cloud to ensure data integrity because as much as I can trust ZFS, well. 3-step backup ideology
Looking at Idrive, Blackblaze and whatever else's around for some 10TB plan
Filen looks decent, yeah
Idrive looks just a bit cheaper with its $300/year plan compared to the translated $431 filen's charging you
Or would be, if you're using 10TB that is
Which well. Quite a bulky amount
shut hawk
Filen had half prices on black Friday which is what I got
What are you using 10tb for?
hot cairn
Which well. Quite a bulky amount
10tb is alot?
glass nest
Barely an EmmaByte
loud marlin
for us, simple mortals, 10tb is nice π
hot cairn
@bold latch if you want cheap backups - backblaze personal
bold latch
Felt like a sweet spot for a "set up and forget" type homeserver plan i'm expecting to last for a lifetime
hot cairn
Idrive looks just a bit cheaper with its $300/year plan compared to the translat...
you can also just buy a 14tb HDD for like ~$130
and put it somewhere safe
as a backup
bold latch
with a physical 4x4TB NAS system
bold latch
you can also just buy a 14tb HDD for like ~$130
well, the whole point of an online cloud backup is if something happened to home, data's not lost
hot cairn
store it at a friends/family place
mb even throw it in a junker PC to do online backups
bold latch
and i'd need it sync'd regularly, yeah
right, that's a good point. why not just invest the Β£300 yearly into a second server to cluster and run an additional ZFS pool on
hot cairn
zfs send | zfs recv best
chilly veldt
ππ
bold latch
use that budget to replace faulty drives and ZFS redundancy backups to recover data
bold latch
ahh. imagine. 1 server with ZFS tier 1 redundancy and 4x4TB. another server with ZFS tier 3 and 4x8GB storage or somethin
molten sky
how do you abbreviate that when labeling
buoyant tree
https://youtu.be/emJsHKINn-s?si=BlDmUeb2n82sF71B
are you the one who created the video
shut hawk
no
wintry sluice
ckt?
bold latch
https://www.rsync.net/pricing.html
reasonable, but probably not. if it's a "pay what you use" case, i've seen backblaze seem reliable on that front
shut hawk
oh actully
molten sky
you were supposed to say CKT
shut hawk
$140 a year for 6TB
wintry sluice
yay, I won π₯³
molten sky
i just had the realization that depiste CKT being the norm around here.... why do we use a K???
everything's a lie
wintry sluice
pronounciation
buoyant tree
$140 a year for 6TB
or buy it physically for 80$
bold latch
$140 a year for 6TB
that'd be a great deal, yeah. looking for consistency though, rather than any potentially temporary deals
shut hawk
that'd be a great deal, yeah. looking for consistency though, rather than any po...
I think it locks you to the price
https://www.tarsnap.com/deduplication-examples.html
Finally theres this, now I have no clue how it manages to reduce backup size this much, but seems pretty good for power linux users
bitter quiver
Last time I used a cloud based server it stayed the same price since 2018
Still dropped it though
bold latch
just checked, its $240
molten sky
oh wow i misread the original msg
bold latch
ahhh, gotcha
rapid merlin
Hey red teamers