#general

Think it’s more hated than liked

Whys that

foxplus was another

no vscode in mint repos?

thats true, i don't like it as well but i don't hate it for sure

its that neutral feeling

Teacher had us use it, no idea why, but it was mandated

Or maybe it was actually Visual Studio, because I remember I had to create buttons and such

a bit of visualbasic too

I was just wondering because theres vs code for linux

Visual studio there isnt i think

Why can’t code be like ‘if car is on = drive’ 😂

If Car == On
Drive

Else break

You break ifs?

No the car breaks ahaha

You could install ie in Linux, that doesn't mean you should 😂

If it doesn’t start 😂

If BrakePedal == PushedIn
Stop

Oooh 😂

Car=drive

This is this code needs to be ahaha

Car==GoVroooooom

Youre a wise man

Car = police chance 😂

WAIT I HAVE AN IDEA

To ChatGPT I go!

car=crash

Visual studio code has a linux installer

vroom vrooom skreeeeeeee crash KABOOOM

Ahahaha I can’t wait to see what ever it is

I think matt meant visual studio

Ah

IDENTIFICATION DIVISION.
PROGRAM-ID. FibonacciCalculator.

DATA DIVISION.
WORKING-STORAGE SECTION.
    01  InputNumber             PIC 9(5).
    01  FibonacciTable          OCCURS 0 TO 100 TIMES
                                 DEPENDING ON FibonacciCount
                                 INDEXED BY FibIndex.
        05  FibonacciCount      PIC 99 VALUE 2.
        05  FibonacciValue      PIC 9(18) OCCURS 100 TIMES.

PROCEDURE DIVISION.
MAIN-LOGIC.
    DISPLAY "Enter the number of Fibonacci numbers to generate: ".
    ACCEPT InputNumber.

    IF InputNumber > 100
        DISPLAY "Sorry, maximum number of Fibonacci numbers that can be generated is 100."
        GOBACK
    END-IF

    MOVE 0 TO FibonacciValue(1)
    MOVE 1 TO FibonacciValue(2)

    PERFORM GENERATE-FIBONACCI UNTIL FibonacciCount > InputNumber

    DISPLAY "The Fibonacci sequence is: "
    PERFORM DISPLAY-FIBONACCI UNTIL FibIndex > InputNumber

    STOP RUN.

GENERATE-FIBONACCI.
    ADD 1 TO FibonacciCount
    COMPUTE FibIndex = FibonacciCount
    COMPUTE FibonacciValue(FibonacciCount) = FibonacciValue(FibonacciCount - 1) + FibonacciValue(FibonacciCount - 2).

DISPLAY-FIBONACCI.
    DISPLAY FibonacciValue(FibIndex).

evil

though if you want a permanent job being a cobol programmer is maybe one of the better options

Nothings more evil than hundreds of lines of code not working to just be one of those , missing

nothing is more evil then replacing a semicolon with a greek question mark in someones C# or java code

That's pretty evil ngl

I like Fibonacci, saw a problem and he tackled big way 🙂

think more of the most common programming environments nowadays convert between them but yeah for a while it did not

import os
import time

# Improved ASCII art for the car
car = '''
    ______
 __/  |  \_\_
|  _     _``-.
'-(_)---(_)--'
'''

# Initial position of the car
position = 0

def clear_screen():
    # Clear the console screen. Works on Windows and Unix systems.
    os.system('cls' if os.name == 'nt' else 'clear')

def print_car(position):
    clear_screen()
    print(' ' * position + car)  # Add spaces to move the car right

print("Press the right arrow key to move the car forward...")

while True:
    try:
        if keyboard.is_pressed('right'):  # If right arrow key is pressed
            position += 1  # Increase the position to move the car
            print_car(position)
            print(" " * position + "Vroooooom")
            time.sleep(0.1)  # Adjust for smoother animation
    except:
        break  # Exit the loop if there's a problem (like a KeyboardInterrupt)

# This is to handle any clean-up or reset you want to do at the end
print("Car has stopped.")```

Vrooooom

ahahahaha nice

The vroom moves, car doesn't, sadge, but you get the jist lol

my experience with ai is infurating aaha

I use GPT4, nor 3.5, that thing is a shit show

I use claude opus

thats even better

im meant copilot

won't this just move the top of the car?

It's Microsoft..... you expect more outta em?

i asked it once to ptu robert downey jrs head on captain jack sarrow then i said if you are having harful throught seek help

It moves Vroooooom, not even the car lol

Car=stop; PUSH Car

it moves the first line of car (which is just a newline char)

cls was used in DOS I guess window inherited from there

Dunno, chatGPT did it lol

I use pycharm

ChatGPT always gives me faulty code

Is visual studio good?

Yes although I prefer visual studio code

depends what you need it for.
if you just wanna edit a text file, perhaps think again

maybe it doesn't like you 😉 😂 😛

Ahahaha probably not. I’ve had so many arguments with copilot it can’t spell properly and I told it to do one one day then it shut down 😂

never trust a copilot that can crush things 😉 😂

Ahahahahahahahhahaha

Although do you want to see one thing it did make

So i did my research and made sure but it isnt illegal to dox someone as long as you dont threaten/harass them so how do i dox someone using their discord info

also a windows copilot enough said 😂

Co pilot made this it shocked me

how about just don't dox someone, period

It is illegal and unethical

Which means against the rules here also

Fine

😂

I disabled copilot on windows

you should also

you're walking a very thin line there, not a great place to stand

Why

its bing with gpt

I don't use it anyway.
disabling requires effort.
😴

bing what a big load of s.. is that 😂

yea

bing is not google 🧠

why use bing instead of google???
Because It's Not Google

I know, I still remember life before google

😮

I member ask jeeves

shadow remembers gopher sites

still a big piece of s..

Google started acting up for me so I use Firefox now

which game to play right now

Altavista, Yahoo, Hot bot, etc

but firefox is not a search engine...

gopher?

Dmc5

DEMOCRACY

Stray

https://en.wikipedia.org/wiki/Gopher_(protocol)

I remember gopher, and Archie too

Imma go with the first suggestion

http before http but for documents

There is a game rhay tou need to get that’s not on the list

which one

Remnant 2

eeh

divers of hell

watched video

😂

didn't see any point for me

It’s amazing

Fair

Then stray you should play heard good things about it

I like cats so that's why I picked Stray, plus you can complete the game in like 4-6hrs

plus its coop

lynx browser

What is

co-op

remenant 2

It’s single player and coop

also @graceful thistle ur right about dmc5 getting hard, dante with style switching gets hard

It's good, go watch

Have you played as Vergil yet? Imo the most fun to play

I keep having to switch to the sprint and then kick mode then super kick mode then punch mode

nop

Ah okay

is good but prefer w3m with sixel support

Heard DLC"s even better than the main game

Plenty of combos to learn but not too many like Dante. Very smooth gameplay, prob my favourite

eh I learnt the combos I have unlocked yet

mission 15 i think

Well its just the main game except as Vergil. 1 or 2 special cutscenes?

He never got his own story except in DmC but many people dont care about that one

lynx is probably dead by now, it was good for its time 🙂

You also have 4 styles huh with Dante. On top of all the weapons

https://github.com/ThomasDickey/lynx-snapshots @blazing granite does not look dead to shadow

yup

If you guys like survival horror you need to try sons of the forest

although loved the micheal jackson crossover with dante

Haha

Classic DMC sillyness.

the caps overpowered but I gotta save the red orbs for upgrades

Oh I never use that actually, although now I have some orbs to spare to play around a little

yea, experimented with it and didn't realize it was using my red orbs at first

so lost about 4000 orbs at a wall

Lol

wow, I didn't know, tough as nails good old lynx 😂

I dont think I had all the combos unlocked after 1 playthrough 🤔

yea i don't think anybody does

although one thing I hate about DMC5 is that my global shortcuts don't work

in game

neither did shadow when they played castlevania lords of shadow

like its using some different technique to capture the keystrokes which makes it impossible for any other application to intercept them when am in window

That sounds annoying yeah

I hate the many loading screens

So many loading screens. Slow

Restarting a mission.. uuugh. I had to restart many times in mission 19 whaha

Today I can feel Im gonna beat Bloody Palace 😎 I was so close a few times past few days. Today is the day 🔥

hmm

FML. Lognhorn VOlume fails, and my last backup was 3 months ago.

I should've switched to something other than an SD card months ago.

Aaand my kube master is currently either under load or dying.

I think it's a bit of both.

Pro tip: predicting the future has helped me avoid a lot of data loss over the next few years.

Jokes aside, that sucks.

Honestly for SD cards I'd just image the whole thing

... HomeAssistant is coming back up, but the Longhorn webui is dead. Fuuuuu..

I would, too, if I had backups.

Looks like my entire cluster is having a nervous breakdown. Good thing is services are coming back. I'll give it an hour or so, and then devise a better plan.

SIGH

Not tied to that funky little port scanning incident you had a bit ago?

Nope. TUrns out I had left rpcbind enabled which uses that port.

I see, I see. At least that.

That should read "somewhere around 2 Gi"

And "6 months ago" is the last back up. nvm, wrong col

Time to draft a backup plan while I spend the night rebuilding my HA deployment.

FFS. Yup, I'm gonna have to image the things. And auto-test my backups from now on.

... The backup from 3mo ago is faulting too. That's no fun.

that's the thing with backups, many people don't do it, the ones that do, don't usually check if the backup is viable.

it's not just make the backup and that's it, I learned that the hard way ☹️

Aye

I'm a big fan of considering levels of backups

Config backup, file backup, image backup

backup the backup plans as well

just for integrity

Progressive incremental backup? or just backup group of info

Anybody got suggestions for a network outage monitoring tool on linux which gets served via a webpage

anyone want to decode this "uggcf://jjj.lbhghor.pbz/jngpu?i=d-L0oak6Aqj"

You mean like uptime monitoring?

Or detecting if that pc loosss internet

.

https://gatus.io/ this might work for that lol

It’s what I use for uptime, but guess it could function like that too

Just have it call to 1.1.1.1 or smn

its paid so not for me probably

just self-host it?

Self host

That’s what I do

ah k

just saw it was a paid service

found the github

They’ll host it for you, if you pay them

Or run yourself for free

Man where’s esqy

ooooo, purple

It’s my new look

looks weird.
change it back

Demotes myself

Just upgraded my Storage boxes @ Hetzner. Now have 2 Storage boxes in Falkenstein, Germany, and 2 in Helsinki, FInland.

Ems, can you read minds? I was looking for precisely that after thinking about how to increase uptime visibility and such

Tf you doing

Backups.

Had my HomeAssistant longhorn vol fail today, am now re-planning my backups after I saw that they failed because I changed creds for the storage boxes.

Your going to reach my level of crazy eventually

I already have, it's just money that's an issue. If a kilowatthour costs more than double here compared to Finland, shit's gonna get expensive quick.

Snowball

Doubt you’ve hit my level yet lol

Well, and I'm documenting my infra

I got some stupid projects on the way

... AWS Glacier in small?

Oh god, do tell

German

Snowmobile?

Currently trying to buy 7 r720xd’s

And some token ring networking

Lawd

I had some, donated it to work

I’m going to do CEPH over token ring

Check about, gives you a decent list of my stuff

With 7 r720xd’s in a EC cluster

And that's listing tech, so even non-german isn't much of an issue

What’s your Montreal-1 node 👀

exucse me you're doing fucking wat

I know what each and every of those words mean, but in that order and context, my brain refuses to comprehend.

You.

That is exactly the emotions I want it to evoke.

Congratulations...

#rules

#start-here

Though, the token ring cluster and the prod CEPH cluster won’t be the same lol

I’m goin to do a real ceph erasure coded cluster with a 25gbps backbone properly

And a 3 node token ring one for memes

Nooooo

This is AUI stuff too, all odd connectors

Oh, and I'm debating moving from one "16 GB RAM, 180 GB Storage" server to three "8 GB RAM, 160 GB Storage" servers. One in Falkenstein, one in Nuremberg, one in Helsinki, and then round-robin the stuff

Going to try and find a 7200 VXR from Cisco to power it all

Mine was all Cisco

Suppose you can’t do gluster?

All my containers currently top at 4 GB RAM usage on the host either way, so scaling down from 16 to 8 should allow me to save some costs. Which I'll promptly reinvest into more hosts.

I wish hetzner had more US options avail

They only have VPS’s in the US with bandwidth caps

or 100ms latency dedicated server

Which sucks bc it’s cheap

I have fuck-all of an idea, I shall investigate.

Could do for backups, but I already have cheaper ways

US has bandwidth caps?? Oh, right, fek.

VPS does for heater

Hetzner

Or if you upgrade to a 10gbps link

Then it’s 20tb

All I remember is a 20TB ingress cap for VPS's, then again, that's in germany.

Which is about what I do in a day

On my mirror alone…

guddamn

I did 15TB a day of Kali ISOs alone during the last update

bandwidth cap
Sad

Was the #2 mirror lol

Only behind cloudflare

At somepoint I really wanna setup a CDN type thing

With geoip dns

So I could also have a cache in Europe for my mirror that gets served to EU folk

So I can dial up my stupid

Speaking of dialup

https://tenor.com/view/robot-homework-captcha-gif-7702297

Y’all ever gotta lock in when you get a captcha

Start sweating Incase I’m a robot

shadow don't start sweating in said case as they know they are not human

though they not robot either

worse ones are those where they just present a photo divided into squares and ask me to identify images containing something.

what does "zero to hero" mean?

https://www.youtube.com/watch?v=JQX9DJaDZkY

i struggle with understanding debsums - what is the point of verifying config files since the point of config files is to be modified?

Learn from no knowledge to a usable amount of knowledhe

James.. I was telling my coworker that every time I see you here I think of him. He's out of Blackburn. 😁

Gpt 4 or 3.5?

Blackburn, UK?

Yesp

Lawd that's all the way North

Loooong way away

We have an office out there. Used to be hq.

4hr by road from here

Oh gawd. That's a long way to go work. 🤣

Pretty much the other end of the country

I gotta get out there at some point.. gotta actually meet my coworkers.

I didn't meet THM people that I worked with until after I left THM

My old boss flew to the US to interview me.. lol

James is elusive.

I’ve met meggy

I've met Dark, Cry, and 0day

And CMN

Blackhat?

I'm seeing CMN again later this year

DC

(Defcon not Washington DC)

Ahah, yeah

I'll meet Muiri one day

We owe each other so many beverages that it'll be a messy evening

I owe Natic a few drinks

I've got a trip to Scotland on my TODO list

I've got a trip to the UK for my TODO list

Oh yeah? 👀

Yeah, Edinburgh way for sure and probably where Muir is

Or meet Muiri need Edinburgh

I can stalk you both. I know what you look lime😂

☹️

You're not a THM employee

Well, maybe.

I know I'm not.

ah I thought we were talking general

Muiri was, I was (although contractor)

I'm contractor

I suppose you may be now

I'm subscriber 😄

Although I'm no longer working for THM

I'm.. oh wait, can't say yet

Yeh

I've meet Gonzo at DefCon, was going to meet Dark, but he had to dip last second

Oh, and Juun too

Couldn't get close to Ryan at Red Team conference room, 1, you need a token, 2. Line was long

He keeps popping up for normal people, like my boss's wife's social media feed

My boss is like "oh James knows that guy, we met him"

Small world

I'm telling ya @hasty sand is hacking all our feeds and having his vids show up

You know it!

Which one did you see this time?

Haha yeah, wild stuff.

bored bored bored bored bored

Just a guy trying to get people into cyber security 🤷‍♂️

Recently, https://youtube.com/shorts/o4gk1Nnap1Y?si=gPLywqKLLUZIWTvN

I've never heard of shopping carts locking before

welp GG

Depends on how crazy your city is 😂

I've seen that. they have one wheel that locks up if it goes over a certain sensor, or too far from the store. designed to stop people stealing trolleys

"Quantum computer"

The quantum computer:

THANKFULLY not crazy at all. I can imagine Detroit, or Camden, even LA doing this

Oh they all do

I live in Florida, even in the nice neighborhoods you have Florida men.

Was that your Lamborghini? 👀

That's Florida for you

Can I spam X to doubt? 👀

no

no you should not spam x previously known as twitter

that is against their ToS

If you’re talking about the purple one, yes

Not now that you’ve taught me how to hack it 😔

I left one very important part out!!

I’m sure you know that 😂

Haha

consent?

This is a formal written notice that I do not consent to anyone stealing my car

really admire the slippers 😂

Done!

hI

There’s no way to hack a shopping cart without those slippers.

0day long time no see

Print that and post it on your car, it'll be sure to stop all criminals!

shhh don't let them know the secret!

That’s a good idea and I will

how i verify my thm acc in this server?

until someone steals the notice.
be sure to add another notice that you don't consent to anyone stealing the notice

Genius ^

Put the notice everywhere, steering wheel, drivers side door, windshield. It'll stop every single criminal in their tracks

"you wouldn't download a car"

😆

I have a question, I would appreciate an explanation if I tried to execute sqli of course on ctf but I encountered a 403. Does this mean that waf caught me?

Proceeds to 3d print a car

https://tenor.com/view/hacker-hackerman-kung-fury-gif-7953536

Potentially

Or there's something else that isn't happy with your request

Do you have any tips?

Btw if this is an active CTF we can't help with it, sorry

ok thanks anyway bro

Why does that image always break

mmhmm nice image

Download it

maybe discord doesn't recognise the format?

It’s not malware I promise

Sorry, I touched it.

587.51 MB image???

What about pwn2own?

KB

Kb. with a K

oh

groggy shadow eyes see bad

Yah. MB, the image is hacking you, ooga booga

https://tenor.com/view/server-for-server-server-for-ooga-booga-ooga-booga-gif-21556479

A question, I need to join two wp tables, one that imports and the native one, and I need to not overwrite, anyone has any idea how I can do? the tables are identical, primary keys, etc...
or with mysql from the cli of ubuntu
thanks ;P
the tables are wp_* and wpimp_*
i tried to add prefixes to the wpconfig but i fail

Also, I swear. Everytime I bring Ryan in @pallid lotus creeps in right behind 👀

The local shopping carts better watch out

🎵***They better not cry, they better not pout, I'm telling you why. Hacker Clause is coming to town!***🎵

Best image I could find lol

😮

Lol

Anonymous got Santa Locked up

Pretty sure it always says enter passphrase

It does

https://tenor.com/view/rod-serling-twilight-zone-weird-coincidence-gif-13478474

I love that show

nah, there is clearly something hidden in it

https://tenor.com/view/charlie-day-gif-18564553

Gotta be

Like a speakeasy

@hot cairn My HA k8s stuff is still fucked, but I got my status page up. 😄

Nice

you expose a lot of shitpublically lol

YEs I do, but idgaf

you say that for now

Macalac

Bellaaaa!

How you doin, lass?

no u 🥺

Busy but amazing, lots of shit has happened since last

Do tell if you got the time!

yes la. make sure to bring a DECT phone 😎

come to me and my colleagues worskhop

I've got power sorted

also come to dj set xx

I'm debating screwing around with event-driven ansible to restart docker containers if my monitoring tells me they're fucked.

how's audiobookshelf working out for you

Eh, as long as the Wazuh Listener is green, I'm gonna get notified. 😛

Absolutely wonderful!

if its setup correctly

if you're talking about what I think you are, all sold out 😭

Are you saying I make mistakes? How dare you imply that?

Currently on the train home so sure

yesyes. i should be getting a spare ticket soon but I can't guarantee. it might be for next year

Will you be dj?!

hello, i spent the past half an hour trying to fix the openvpn file, perhaps i am tired and there is an easy solution. Does anyone want to help me

Let's start with gotten my own apartment, living by myself fully now, got a new job where I am going to be helping building a SOC from the ground up, starting my motorcycle licence next month and have lost 8 kgs in a little over a month, almost getting done with my psychologist appointments for HRT and it's looking like I might get it.
I think that's all

Also like £200+ per person is crazy expensive

WTF, that's the price?!

Yes.

https://tenor.com/view/spider-gif-20948663

And you gotta bring along all your equipment too

Wonderful news all around! 😄 Hope living prices are affordable, at least? And do you still have the hours of travel time, or was that the old job? And 8kg less in a month is impressive too, and of course good luck with getting the HRT, I dunno how difficult it is up north, here it is dependent on the psych and docs involved, so it absolutely can be an ordeal.

fair enough...

Head over to #site-support

Yes that's rather how camping works

Yup, it's been a little over half a year with psyc stuff, and it's looking good now!
Living expenses are quite nice, got myself a 64m2 apartment with 2 rooms, kitchen and bathroom, cutting down an hour of travel time each way

Yay! 😄

Yeeees

And I might begin some talks and stuff around Denmark about inclusivity in cybersecurity

Niiiice

@shut hawk whats your thoughts on 1hr connections kekw

Why is quiet conversations on a cool down

To keep the flow less hectic than us nerds jumping from topic to topic like in here

Yeeeeee, contacted a friend of mine who already does it with women in cybersec and they were looking for expanding the inclusiveness

sounds like a nightmare

Good luck

Lawd some airports that's impossible

Goddamn, Event-Driven Ansible is fucking cool.

James! My coworker! 🤣🤣🤣
Jkjk

That's what makes it quiet

lol

I should've seen it coming, I knew it was gonna be some joke but curiosity got the better of me - admin.tryhackme.com

That's because you didn't go to https://admin.tryhackme.com/login

that goes to the same redirect I bet

Greetings and salutations to everyone! I’m trying to add cybersecurity projects to my github and I know one of the most common recommended projects is to set up your own virtual home lab, which I have done on my Chromebook. My question is what’s the best way to document and show this process? Do I just write a report in the README.md section with pictures detailing the steps, like a blog post of sorts? I’d like to show potential/future employers that I actually did something rather than just list on my resume “ virtualization experience with Qemu/KVM”. Thanks for any and all input y'all are amazing.

An easy to read "blog" would potentially be nice to have imo

What’s the best blog website

@polar spoke https://youtu.be/i9TJWsuzBLU?si=-FYJbOeuIKRQ2z3-

Anything but repay billet labs

meep meep moop moop time for beep boop sleep sloop to the beepity boopity beeps and boops for shadow whadow

Isn't linkedin technically a work blog

night night!

ORD

i get to choose 1h connection, or 11 hour

https://images.0xem.ma/u/iCkzR2.png

10/10 options

1 hour at ORD? Is that coming off international?

yes but no

Preclearance

arrive as domestic

I don't even think that's enough time for domestic

ORD is a nightmare

I saw lol

It’s just a sponsored video about cominos stupid hardware

yeah but 10h in denver lmao

i hate aircanada

What they did... could be accomplished with a normal laptop

Gotcha. I think that's what I'll do then.

Didn't even talk about actually doing it, or the van as in the thumbnail

Yeah, the options to Vancouver were rough

I ended up purchasing the flight through Turkish Airlines with points lol

this is montreal to kansas

I'm talking for the flight I had to book

star alliance pts redemptions have gotten alone worse lately imo

Yeah, three days after I made the award purchase Smiles and Miles changed their chart

which airline is that again

theres a few with similar names

I only "paid" 15000 points for a cross country flight

Turkish

iirc aegean has a similar name for theres

Yeah, I'm Air Canada on the way there, United on the way back

Kind of salty because the united flight was like $500

I prefer AC over united

Yeah, it was the only flight back

It was the only option lol

On tonight's episode of "What the fuck is Matt listening to:"

https://youtu.be/qXdRvVzcvbE?si=LIqB8o7CIS4s84_l

This is a classic

I always thought these were faces with large open mouth until I saw the emoji's name

Yeah it’s just a sponsored ad

how do i know when im ready to start bug bounty?

Confidence

And if you know how to do a bug bounty without accidentally getting into legal trouble

Not sure if i know

Usually the bug bounty has a scope you follow

where could i learn more?

about that

https://hackerone.com/bug-bounty-programs

thanks

im not sure if im good enough to bug hunt yet but i guess i could try 👀

Make sure to follow the rules really carefully

ok

im young so making money off of something i enjoy seems fun

Everyone starts somewhere

Also if your unsure what a rule in the scope means you can ask here. There’s plenty of bug bounty experts

for sure

been on call with isp for a few hours now

ahy

why

What'd they do?

tell them i said hi

Ello

Hello friends, what do you think the future of OSINT (Open Source Intelligence) and Cyber Threat Intelligence is in cybersecurity?

Should I steer my career towards this field? I enjoy intelligence and research, what do you think?

hai

I’d say its a good field, you’ll definitely learn a lot there

Plus theres no shortage of bad actors so you’ll always have a job

But look around your country, most of the time, threat intelligence is more on big companies (they can afford it), government positions (track down bad actors attacking the govt), or IT outsource companies (they offer this as a service)

You can also practice OSINT in journalism

i told u guys that i used some payloads ' or 1=1-- like this , so that website is working fine ,does that mean that no damage was done by me ?so i can relax now ?🥲

morning!!

What exactly do you mean?

Night!

150 points left to OMNI, let's see if I can nerd my way in today...

Is sleeping time for me..

how was your day?

My day was moo

moo

How was yours?

it's only moorning

so not sure yet, but I'm optimistic

Moo is a good place to start

but my Saturday was nice, I finally finished Jr Penetration Tester path!

Niiiice!!!

Moo indeed!

Sleeps for me now. Nite

sweet dreams!

Tyty

OSINT can be helpful in any sphere of life. It's always good to check even ethically who you're dealing with

Helped me not to fall for job scams multiple times already

' or 1=1--
' or 1=1#
' or 1=1/*
') or '1'='1--
') or ('1'='1-
admin' --
admin' #
admin'/* i used these payloads while working on bug bounty program,then i came to know that these can cause damage to website .🥲 .So I am asking that website is working fine , so does that mean that there was no damage done by me ?

funny question: how can I get my post liked on linkedin by TryHackMe?

Those query fragments don't write to db so you're probably alright, though if they don't do error handling properly then it might be more serious. You probably shouldn't be dropping random payloads on sites without knowing exactly what you are doing though

yeah i learned that hard way but i just learned these in course

so i tried to implement it

Assuming that what you're doing is within the program scope

but that website is working fine

You should probably develop a vulnerable application and test it on that, or use one of the many rooms on tryhackme about SQL injection

yeah thnks

what do u think?

Much safer

Probably alright, given the queries

i wont even touch any site unless i m confident 🥲

But next time maybe not

oh no

yeah i will take care

SQL injection is normally a mostly solved problem, and should be very very rare these days

yeah that means its very rare that i did something worng right

?

stopped internet for the entire area for a reason I can't determine

Eh?

Went to the office physically and they literally spent 2 minutes and internet was up then

DELETE from users where username='admin' OR 1=1-- -

explosion

why the last -

isn't that redundant since -- comments out everything afterwards

yeah don't do that

sometimes the engine won't take the comment directly, the extra - will ensure it

hmm

MySQL requires an extra space.

-- x is also or --%20 will also work AFAIK.

@wanton schooner @shell nova you asked this before and got the same answer no?

ah forgot about that

Yessirrr think i did well
Just finished physics
Thanks @timid prism n @shut hawk yall fking goat

Gave +1 Rep to @timid prism (current: #32 - 230)

And CS tmr

no i was asking that their website is working fine ,so that means there was no damage done ? this is what i was asking

its been almost 24 hr till i tried

Time based Blind SQLi == 💤 😴

?

https://tenor.com/view/theres-something-very-familiar-about-all-this-deja-vu-i-feel-like-ive-done-this-before-this-feels-familiar-i-feel-live-ive-been-here-before-gif-16489734

No problem

Glad to hear it

send paper pls

Should I unsubscribe? Idk if theres something useful from emails that I will miss by unsubscribing

Yo can someone plsss help me recover my gmail account

Cos the hacker reseted the pass plus put a 2fa

So I can’t recover via gmail recovery

So plss can someone help me

@warm turret it would be illegal for someone to hack the account

you can try contacting google support

Please contact google support

I think your security questions are still there and you can figure this out with them

oh wow where's Jabba

probably asleep

I just want to recover my hacked email plss

but I can't see them in the MOD section

thought maybe something happened

I rlly need it

It have all my info

I did contact the support but they didn’t respond

Please help you do something illegal?

Just give me how to do it and I do it myself plus I will assum all the consequences

Just plss help me

There is literally all my info there

I’m literally willing to pay

:hammer: redx2.0.#0 has been banned.

Sidebar only shows users set to online/away/dnd
I have mine set to invisible otherwise I get loads of people iny DMs with these sorts of requests

ohhh got it thanks!

Gave +1 Rep to @naive violet (current: #1 - 2107)

Did that guy just want to get into someone's account lol

They said it was their own account

Supposedly

Yes that was rather the implication

How's your sunday going?

Fine, thank you

How's everyone doing?

Pretty good, you?

Well, relatively well. I'm at a maldev workshop, but I don't really understand a thing

Guess, I'll just look things up at THM later

I'll also get my premium back perhaps

Still better than not going at all. Are you finding it interesting at least?

Yeah, we had to use the tool "msfvenom" and deliver a payload to our system to open calc.exe

Didn't really do it succesfully, but eh, well

Its part of BSides

Have you heard of BSides?

Ah yes very nice

It's something like those blackhat events and etc that are once a year

I haven't been to an event myself as they all seem to be in america

I would love to go to one though

I am not in America

Europe

There are Bsides all around the world

Now the BSides is in Bulgaria

Sofia

Oh nice, I'm surprised I haven't heard about it. Is it good?

https://securitybsides.bg/

Yeah

The presenters were some really experienced people

We have an Italian dude, who is like really advanced in maldev

He works for Scada

I think the company was called scada if im not mistaken

Basically he exploits PLC computers with the aim to secure them

PLC computers are all those simple electrical computers and devices that are used to operate Electrical plants, Power plants, Water plants and etc. , all kinds of industrial sectors

Right now on the workshop, one of the other presenters, some mathematician that worked for some federal agencies in the USA I think is teaching us to develop malware for registry

Honestly I just watch

I am a noob, and I dont really know what he does

I mean to some extent

I have a pretty good general technical culture

hello guys can someone help me please with my openvpn?

Sure, what's up? Ill help if I can

I wrote to you

does anyone have SQ 1 answer 1 ??

(trolled)

What's that?

Is "ISO 27001" some kinda framework?

its a standard for managing information security management systems

27002: details controls to protect systems
27701: privacy extension to 27001
31000: enterprise risk management

Google skills go a long way in this industry really

omni reached

I did Google man. Couldn't get the explanation. So I asked. Fyi I always Google first. 🙂

I mean my google of "what is iso 27001" came back with a digestible answer

https://tryhackme.com/r/room/iso27001

@rapid merlin Please be civil here or you will be muted

anyone know a bit of php able to help me?

Some, whether it's enough to help is a different question

i just realized it james, thanks for the offer thoughh

i was so stupid i overlooked it lmao

hey all

hello how is you

thx - good hope you are also. good to be here

Gave +1 Rep to @simple valve (current: #22 - 354)

nice nice, welcome here

thank you- learnign thru try hack me but still an infant

nice nice, always important is the first step

yea i am old skool stareted with DOS 1.0

and still cannot code 😄

Always the way, you think about how to explain it and you catch the mistake

There are BSides events all over the world. Here's a map someone made
https://www.google.com/maps/d/viewer?mid=1KBFOZ6eIptZgktZOy53ACycZ9AY&ll=19.096492810287874%2C-52.751742300000046&z=2

Would someone who is a beginner be welcomed to one of these events

https://tenor.com/view/good-morning-cute-coffee-gif-8173999760206959925

@devout pilot please don't advertise here

definitely

heya, is there a meterpreter command to check what vulnerabilities a windows machine has?

I thought vulns was a command but no succes

Local exploit suggester

Good morning hacking people!!! 🙂

Thanks for this, I see there is one in 3 days that I could attend. It looks very interesting, thank you!

Gave +1 Rep to @proven quartz (current: #21 - 363)

it has better performance on linux

If that makes a significant difference i cant say

Also depending on your interests check this out https://www.bleepingcomputer.com/news/security/hackers-abuse-qemu-to-covertly-tunnel-network-traffic-in-cyberattacks/

if you have a use case for vbox, you have a use case that qemu probably works better for - assuming you are comfortable with a linux desktop. the now-deprecated RH product RHEV was built on top of qemu, the upstream project was ovirt.

Hello!

virt-manager

you can also manage virt through cockpit.service

the main advantage to using virsh is that you write scripts to start/stop, set up port exposure and pass through mapping

which would otherwise take more time and pain to do in the virt-manager gui

i strongly reocmmend you learn virsh if you are going to be using it regularly

and really, it's less exposure and more mapping

like if you need a port map from host to guest

yes, it sets up a DHCP server for NAT by default

and you dont' really need to touch routing on the host, the virbr interface for each virtual network is managed by an XML config file in the virsh/virt-manager

You need to use a post-exploitaiton module

post/multi/recon/local_exploit_suggester this one is a local go to.

did not see James msg, carry on dont mind me

Hey that's a good amount more detail, useful

is there a way to link this discord to thm profile ?

Yes.

If you go to your THM profile settings, you can find a token.

If you run the command /verify <token> here, you will link your Discord account and your THM account.

nice, thanks

Happy to help. ^_^

Arch Better!

Hi, I've notices some strange behaviour of nmap.
When I do an nmap scan it works fine and ports show as closed but when I use the --data argument, it sends each packet twice once with sequence number 1 and a second time with a really high sequence number and all ports then show as open|filtered.
Has anyone encountered something similar?
For me it seams really strange

huh

yeah, exactly

Archinstall

Hello hackers, I have a question please that ChatGPT didn't really helped me out with, it's about Crypto is it possible to find somebody by having his Binance address ? If it's not the case why people track addresses in Honeypot and so on since we can't get to the guy who scammed us ?
Thank you.

No, this isn't what we do here...

Hacking back isn't the way forward, report to authorities, help them out and move on.

Get your point but I'm not asking to hack back someone, just global information If it's possible or not to find somebody with his Binance address technically 🙂

Wither it's possible or not, you won't find help here.

I'm not asking for help to do it that's the thing... I'm asking questions nothing more.
But thank you for your answer !

Gave +1 Rep to @sick lance (current: #2 - 2090)

Anytime! 😄

THIS is a real bagel

Looks like half a bagel to me.

The other half makes a sneak peak off to the left

Everything bagel with lox, cream cheese and capers

Damn that looks amazing

Well New Jersey and New York do make the best bagels in the world

https://tenor.com/view/smoked-salmon-bagel-food-gif-21680179

Hey anyone wanna team up/ share knowledge on cyber security

There’s actually a lot of people in #quiet-conversation that are teaming up and doing rooms together

step one: watch and read everything
step two: make your own documentation from said info
step three: share your info with others and try to teach to make it stick even better
step four ????
step five profit

Now ima be wondering what step 4 is

Make friends

Step four think about how to make profit
Step five make profit

How long you guys been solving machines?

I haven’t had one for ages

I've been on THM for 2 years.

Maybe 3?

wait we are supposed to keep track of that???

Oh, you need to come to NJ, I gotcha

since october 2021

since 950 days ago

Damn

according to shadows streak

Longest streak?

well shadow is a bit odd when it comes to streaks and keeping them

off and on for about a year

this is shadows first streak that they never lost

wow

4 months

Not long

What's your guys rank ?

7

The rest that are talking are gods

I think this is the level , im asking the global rank

Ooh

Not that I keep track.

Damn bruh

Last time I checked I was in the 17000

Im 84000 something 🥲

don't worry about the score.

no worries you will get into the high ranks soon

A lot of those are inactive accounts

also it goes pretty quick till a certain point

Yeah like once you level up to Ox2 you dropped down to like the 40,000

But it’s best to not worry about rank

I can’t really be talking tho

Any tips for me

Be curious, stay interested and never give up

Enjoy and learn as much as you can. plus take notes on everything.

Sure will

Notes notes notes

Number one thing

keep going even if it is just a single question a day

The cmds can be hella overwhelming so notes help a lot

also known as pace yourself to not burn out if you are not feeling like it

do rooms and dont waste too much time on discord, it's a rabbithole ;)

Sadly I fell down it

pffft

Oh I just joined

Discord

Oh nice

most of shadows knowledge in hacking has come from teaching others how to deal with their hacking problems

For talking to senior hackers

the word senior makes me feel old

It’s more in a experience sense

Mb , / experienced

also a nice welcome tip here

Hiya

@cursive creek