well, it's never too late.
#general
tender mountain
15 now
rapid merlin
really young age.
pallid lotus
Good shout
rapid merlin
And skibidi toilets
who let you cook
normal fable
bro trying hack his gold fish, bro trying spawn inf food for his fish
Teach a bro to fish... Lol
crude stump
Wait Emma what job let’s you do cyber at 16?? Feel like that would be kinda risky
normal fable
hot cairn
who let you cook
Huh
hot cairn
Wait Emma what job let’s you do cyber at 16?? Feel like that would be kinda risk...
The job I do now
rapid merlin
eat them
rapid merlin
Blame the iPads
well we are same age, and I never owned that thing.
normal fable
I won $250 last month
rapid merlin
I'm safe from them
tender mountain
not a dumb ddos attack
rapid merlin
The job I do now
htb?
crude stump
did my first hack a week ago when i got some real info
What do you mean “real info”
normal fable
not a dumb ddos attack
Don't ddos my fishies please
tender mountain
bank info
rapid merlin
^
hot cairn
Wait Emma what job let’s you do cyber at 16?? Feel like that would be kinda risk...
Though, honestly the best way to learn is by doing / failing
tender mountain
so he i hacked him
hot cairn
You learn more with your mistakes tbh
pallid lotus
@mossy river sweetie we need you back
rapid merlin
<@270975958511517697> sweetie we need you back
nah his crying right now, cuz we cyber bully him for being old
chilly veldt
I started at 17 and I am 20 now almost 21 😭
Actually hacked earlier than that, but actually pursuing it as a career
rapid merlin
<@270975958511517697> sweetie we need you back
at what age you started mr Hacker man.
crude stump
Junn read up ⬆️
hot cairn
Not going to discuss that here
grim sparrowBOT
:hammer: vas_72#0 has been banned.
whole yew
@rapid merlin Please don't spread baseless conspiracy nonsense. If you have valid research to back up your claim, cool, I'll be happy to take a look. Overwise keep it out.
pallid lotus
at what age you started mr Hacker man.
Started as in "first hack", started as in "got into the subject properly" or started as in "first job in cyber"?
crude stump
Aye
mossy river
Going back to bed (I’m lying I’m not sleeping)
rapid merlin
<@456226577798135808> Please don't spread baseless conspiracy nonsense. If you h...
spooky
rapid merlin
Started as in "first hack", started as in "got into the subject properly" or sta...
how you got into hacking?
first first
rapid merlin
Going back to bed (I’m lying I’m not sleeping)
should go bed long time ago, i feel unsafe
crude stump
Poking the bear
rapid merlin
in my dreams there's dude name jared and he offer me candy and he took me away. i never trusting jared name again
crude stump
how you got into hacking?
I’m curious too
grim sparrowBOT
:mute: lln6b#0 has been muted.
rapid merlin
I’m curious too
Muiri is typing....
pallid lotus
how you got into hacking?
Broke into something I shouldn't have in my early teens. Learnt why that was a bad idea (fortunately without any serious consequences), and decided to make a career out of doing it ethically so went to study it at uni.
Same as most people I suspect.
whole yew
My security path did not start the same way Muiri's did.
rapid merlin
Broke into something I shouldn't have in my early teens. Learnt why that was a b...
👏🏻
crude stump
My security path did not start the same way Muiri's did.
Why’s that juun
hot cairn
Broke into something I shouldn't have in my early teens. Learnt why that was a b...
For me is was the US Gov that got me into cybersec lol
crude stump
Oh so college
chilly veldt
Broke into something I shouldn't have in my early teens. Learnt why that was a b...
Sounds a little like mine, but I didn't get caught, I was just bored in school
pallid lotus
Was about to say, you came at it through comp sci right Juun?
crude stump
Or uni what ever the difference is
whole yew
Then started dating an alcholic, and did not complete my research thesis in time.... I was a private tutor (read: unemployed) for a year or so, then got a job as a senior infosec engineer.
hot cairn
Or uni what ever the difference is
College is like 2 year diploma’s gernally more hands on/trades, uni 4 year and theory
pallid lotus
Sounds a little like mine, but I didn't get caught, I was just bored in school
I mean, I basically ransomwared the thing... It wasn't pretty
hot cairn
Atleast around here
crude stump
~~I mean, I basically ransomwared the thing... It wasn't pretty~~
Ooo
Bro got a bad boy past 
whole yew
In the US, a university typically has multiple colleges which manage the associated degree programs
hot cairn
In the US, a university typically has multiple colleges which manage the associa...
Huh?
pallid lotus
Bro got a bad boy past <:kekw:658061932577816606>
Kids do stupid stuff 🤷♂️
Glad to say I grew up
hot cairn
That’s wack
chilly veldt
~~I mean, I basically ransomwared the thing... It wasn't pretty~~
Oooof, I just got domain admin on my primary school account cause I was bored in classes and had already finished free coding practise
rapid merlin
For me is was the US Gov that got me into cybersec lol
I have a frnds who got sponsored by US Gov and gov is paying for his certs.
and that's cool
hot cairn
Nice
whole yew
Huh?
At the universities I've seen (all 5 of them), there are multiple colleges that are governed by the university. They are more like groupings of departments that share budget. Like College of Engineering has the BS, M.SC, and PHD programs for the engineering departments and sometimes CompSci.
hot cairn
At the universities I've seen (all 5 of them), there are multiple colleges that ...
Interesting
That’s very different then here
hot cairn
in future he is going to work for big name. ||NSA||
If you say publicly your going to work for NSA, your not going to
rapid merlin
If you say publicly your going to work for NSA, your not going to
not me. and he never told that.
pallid lotus
At the universities I've seen (all 5 of them), there are multiple colleges that ...
That's based on the British system -- most of the Russel group unis still have multiple colleges.
Most modern unis just call them schools or departments.
whole yew
~~I mean, I basically ransomwared the thing... It wasn't pretty~~
first "hack" i did wasn't anything like that - as a pre-teen, some friends and I figured out that the macintosh lab had a program that enabled you to force every computer on the network to do text-to-speech without any kind of permissions required. You would just target the machine, include a message and it would say whatever you told it to
crude stump
Then started dating an alcholic, and did not complete my research thesis in time...
Wait so how does the whole senior work. I though the title senior is if you had a entry level job and then got a senior position
rapid merlin
I'm already retried.
whole yew
Wait so how does the whole senior work. I though the title senior is if you had ...
I skipped over the junior and mid-level associate roles. My first job was a senior role doing security implementation and compliance
hot cairn
That’s a skip and a half lol
crude stump
Damn did you ever feel like “everyone around me had way more experience”?
chilly veldt
Oh well, it's 04:23 am, so goodnight
whole yew
Yeah. I was also in my 30s, and had a ton of life experience and relevant background though
pallid lotus
Wait so how does the whole senior work. I though the title senior is if you had ...
You don't necessarily need to go through all the steps in between.
Senior roles tend to have more responsibility (and often management stuff) attached to them, but that's about it.
whole yew
They didn't have to play games to make me learn how to be useful, I already knew all that
buoyant tree
hulloo
chilly veldt
Oh yeah, fun lil update about my job, my manager just quit/got a new job, so now I am without a manager at the end of this month
whole yew
Typically, the first 2-3 years in any industry is just learning how to not be useless. After that, you're usually qualified for a mid-level role in that domain and can build from there.
does that mean you didn't have to do a quarterly review, bella?
hot cairn
Typically, the first 2-3 years in any industry is just learning how to not be us...
I’d say 1-2 personally
chilly veldt
does that mean you didn't have to do a quarterly review, bella?
I have to do a quarterly review next week🥲
hot cairn
But it depends on person
whole yew
I’d say 1-2 personally
Depends on where someone starts from; I'm thinking help desk with zero IT experience or knowledge
hot cairn
Fair
chilly veldt
Actually tomorrow (Monday)
hot cairn
Actually tomorrow (Monday)
How dare you remind us
whole yew
I have to do a quarterly review next week🥲
remind them that the quarter ended 2 weeks ago, and they are getting a 'please manage your time better' review from you
buoyant tree
Actually tomorrow (Monday)
pain
hot cairn
remind them that the quarter ended 2 weeks ago, and they are getting a 'please m...
Can’t you make FY Quarters whatever you want
Since FY != Calendar year
chilly veldt
remind them that the quarter ended 2 weeks ago, and they are getting a 'please m...
It was pushed from 2 weeks ago to last week to this week
crude stump
Oh yeah, fun lil update about my job, my manager just quit/got a new job, so now...
So your saying, if you have a question that only your manager can answer nobody is there to help you?
Crazy
whole yew
Can’t you make FY Quarters whatever you want
You can't; HR and the accountants can. Only place I've worked that didn't align FY to CY was Red Hat. Everywhere else has synced them because it made less work
hot cairn
You can't; HR and the accountants can. Only place I've worked that didn't align ...
I meant the company yeah
chilly veldt
So your saying, if you have a question that only your manager can answer nobody ...
My manager was HR so all my technical questions was thrown into Google anyway
hot cairn
Also ew redhat
crude stump
Oh
whole yew
It was pushed from 2 weeks ago to last week to this week
that's an even bigger failure. What kind of org has to delay a required meeting that has impact on your bonus schedule and pay rate like that 🙂
hot cairn
Not a fan of them after the OSS stuff
crude stump
Well googles always helpful
whole yew
Eh, there's some good reasons I left last october
chilly veldt
that's an even bigger failure. What kind of org has to delay a required meeting ...
Hah, bonus and pay rate 😭😭
whole yew
I still think RH treats it's employee's way better than some of them deserve
chilly veldt
I am state regulated because of my apprenticeship still
December 2025 I am done with my education
pallid lotus
Also ew redhat
First time I walked into our office I had to stifle a laugh at the red fedora some nutcase had brought in, complete with a hat stand.
It's still there two years later so lord knows who brought it in and when
whole yew
Not a fan of them after the OSS stuff
I get it; also realize that was mainly pushed by IBM business, and I could see the culture shift away from the open culture that whitehurst pioneered
whole yew
First time I walked into our office I had to stifle a laugh at the red fedora so...
I still have my new hire orientation fedora
hot cairn
I get it; also realize that was mainly pushed by IBM business, and I could see t...
Yeah fair
crude stump
First time I walked into our office I had to stifle a laugh at the red fedora so...
Gotta leave a black hoodie next to it
pallid lotus
For the record, it's not a red hat fedora, and this is global hq for a bank, not a server room 😆
whole yew
I'm not saying that RH is a bad place to work; if you can get in, you should. It's a huge boost to have that on your resume
hot cairn
For the record, it's not a red hat fedora, and this is global hq for a bank, not...
Checks out tbh
Finance bros be wild
chilly veldt
The only way I am boosting my resume right now is by working part time jobs on top of my apprenticeship (also how I can afford to live, but that's besides the point)
whole yew
A buddy of mine used to have to wear a suit to crawl around in the data center because the execs wanted every employee to dress for business
pallid lotus
I'm willing to bet it was some shadow war between RH fans and Debian fans decades ago
whole yew
(not at red hat, at an extremely large credit union)
hot cairn
A buddy of mine used to have to wear a suit to crawl around in the data center b...
Appropriate attire for InfoSec is just a black hoodie and sweatpants
crude stump
Tbh I wouldn’t mind that. Think it looks cool
whole yew
Appropriate attire for InfoSec is just a black hoodie and sweatpants
not if you want to convince the business monsters in charge to award you options and RSU's 🙂
hot cairn
Options 
chilly veldt
Appropriate attire for InfoSec is just a black hoodie and sweatpants
me who just bought a consulting suit
hot cairn
I don’t think I own anything formal
pallid lotus
(not at red hat, at an extremely large credit union)
Yeah, my uncle had to do that most of his career, also on the tech side of finsec. I was quite surprised to find out that t-shirt and shorts are absolutely fine for us 😆
whole yew
*me who just bought a consulting suit*
You want to dress one step nicer than the client
whole yew
Yeah, my uncle had to do that most of his career, also on the tech side of finse...
at red hat, t-shirts and shorts were pretty much the uniform for P&T; when I was a consultant, I wore slacks and a dress shirt.
chilly veldt
You want to dress one step nicer than the client
This is a nice sand/pink undertoned suit
pallid lotus
You want to dress one step nicer than the client
inb4 the client shows up in a 2k three-piece with a Rolex
chilly veldt
This is a nice sand/pink undertoned suit
Actually going to wear it for a gold wedding next weekend
hot cairn
Gold wedding?
pallid lotus
Anniversary I'd imagine
whole yew
inb4 the client shows up in a 2k three-piece with a Rolex
that never happens.
the reason you dress nicer than the client is that it's a respect thing. Dont' ask my why humans are wired this way, but they are. If you dress too nice, you are seen as being a pretentious dickhead. If you dress down, you are seen as incompetent regardless of how good you are.
pallid lotus
Gold is what, 30 years?
chilly veldt
50
hot cairn
Damn
pallid lotus
50
chilly veldt
Yeee
pallid lotus
Christ
chilly veldt
My grandparents
hot cairn
that never happens.
the reason you dress nicer than the client is that it's a ...
Solution: never turn on camera
Never get judged on how you dress
whole yew
Solution: never turn on camera
On site is different
pallid lotus
that never happens.
the reason you dress nicer than the client is that it's a ...
That'll depend on the industry, tbf.
Wonder how the wealth bankers do it.
whole yew
When I was consulting for openshift, we were 80% travel and always onsite until covid
chilly veldt
Solution: never turn on camera
Me who doesn't even have a picture for any outside facing communication
hot cairn
Me who doesn't even have a picture for any outside facing communication
I have like 2 nice photos of myself lol
whole yew
Me who doesn't even have a picture for any outside facing communication
I use a very famous history channel nutjob for all my profile pictures at work
hot cairn
When I was consulting for openshift, we were 80% travel and always onsite until ...
Oh god… open shift…
chilly veldt
I use a very famous history channel nutjob for all my profile pictures at work
We have a Mario at work
hot cairn
Bringing back some memories
chilly veldt
Slightly off-centre too
whole yew
https://tenor.com/view/it-was-the-aliens-im-not-saying-it-was-aliens-ancient-ali...
i use brad meltzer, but georgios is good too
chilly veldt
Me who doesn't even have a picture for any outside facing communication
This is actually because of me not looking feminine and using Bella as my name could cause discrimination of some kind 🙃
hot cairn
This is actually because of me not looking feminine and using Bella as my name c...
I can relate tbh
But I mean if people are dicks - HR exists for a reason
chilly veldt
Especially since I work in a field where many people are quite.... Old-school
pallid lotus
that never happens.
the reason you dress nicer than the client is that it's a ...
Honestly, I gave up caring about that ages ago. I like functional clothing, so I wear functional clothing. Perks of being on an internal testing team, tbf -- I couldn't care less if the clients think I'm incompetent for wearing informal clothing, it doesn't affect me in any way 🤷♂️
whole yew
Just remember, HR doesn't exist to protect you it exists to protect the company from lawsuits. Have to make it not your problem, but their problem.
pallid lotus
Helps that I've never seen the big boss in anything more formal than a hoodie
whole yew
Yeah, security tends to be a bit cloistered in that respect. Very few people can wear a hoodie when presenting to the board, though
hot cairn
Just remember, HR doesn't exist to protect _you_ it exists to protect the compan...
Good HR will protect the employees and the company tbf
whole yew
Good HR will protect the employees and the company tbf
"Good"
hot cairn
It does exist
whole yew
I trust most HR as far as I can throw them
chilly veldt
Just remember, HR doesn't exist to protect _you_ it exists to protect the compan...
It's their problem that the only internal IT employee would quit and they don't have any in training or with the knowledge/time to take over or train any new employee 
pallid lotus
Yeah, security tends to be a bit cloistered in that respect. Very few people can...
Yeah, her boss is the one who reports to the CISO -- never seen him out of a suit.
Actually, not true, seen him with an open necked shirt once.
whole yew
There have been exactly 2 HR people I trust to actually do what's best for everyone, and not throw individual contributors under the bus as appeasement
chilly veldt
Our whole Dev team, even the CISO is hoodies
whole yew
It's their problem that the only internal IT employee would quit and they don't ...
no matter who they are, everyone is a replacable cog in the money machine
chilly veldt
no matter who they are, everyone is a replacable cog in the money machine
Yup, just would cost them a lot to replace their whole knowledge centre
pallid lotus
Our whole Dev team, even the CISO is hoodies
That's the amusing thing... The CISO is frequently in significantly more casual clothing
chilly veldt
That's the amusing thing... The CISO is frequently in significantly more casual ...
Our CISO is also the head of development
He's also CTO
Welcome to startup
whole yew
Yup, just would cost them a lot to replace their whole knowledge centre
remember risk vs reward - if they can outsource a job to somewhere awful for 10% performance but 5% cost, it will happen
pallid lotus
Was about to say, that sounds like CTO
chilly veldt
remember risk vs reward - if they can outsource a job to somewhere awful for 10%...
me who is that 5% cost
I am one of the company walking knowledge centre
whole yew
I guarantee you that I can find a place who will do your job way worse and way cheaper 🙂 Company I worked for had 70 call centers on 6 continents, we had some really really really bad sites.
one site was so bad, compliance team made the company spend $5 million in firewalls to protect the rest of the company from it
chilly veldt
I guarantee you that I can find a place who will do your job way worse and way c...
I go for approx 2100$ a month and work the job of at least 5 people
whole yew
chilly veldt
I have a position in these departments, plus my own internal IT department: Operations, external customer support, development and administration
I quite literally have 4 different internal titles: Internal IT responsible, 3rd level customer support specialist, automation specialist, and product developer
Oh well, venting is now done lol, I'll go to sleep
simple kernel
Ehm ehm
excuse me
i got a question
i just studied a bit about networking and how it works. i am kinda satisfied with that, however i didn't get why are there different ports?
like
i understand that packets are segments of data while bandwidth are the capacity of transmitted data
But
how can i imagine Ports? like what are they?
i know that different information of data transfers over what we call "ports" different ports transfer different data
But
what is it?
physically speaking
are there like specifically made routes in the network infrastructure?
or are they imaginary ports?
blazing granite
You should do more reading
A port is a virtual point where network connections start and end
simple kernel
i am googling, but i don't know a good resource
simple kernel
A port is a virtual point where network connections start and end
sure, but i am not sure why do they have that?
why can't data just flow through the same port?
if the data have headers
blazing granite
david bombal on youtube has a lot of videos about networking
Jeremys IT Lab also good
simple valve
if the data have headers
Think back to the OSI model
blazing granite
why can't data just flow through the same port?
you should focus on learning more about protocols and get a look at OSI model
simple kernel
yeah, i have no knowledge of networking, but i am excited to learn
not much
those few days, i am gathering quiet good amount of info
blazing granite
I'm doing CCNA studies 🙂
simple kernel
what year are you in!
blazing granite
what year are you in!
it's a cert from Cisco 🙂
simple kernel
yes yes i got you!
i saw
but what year are you in
regardless!
i am a competitive being, i want to see where am i compared to people
sorry hahaha, i just want to know, i am new to cyber
so
i am just excited
blazing granite
try to write all on the same line, a word or two a line and a lot of lines, it's annoy AF
simple kernel
thank you for the advice :P
molten sky
simple kernel
@pallid lotus i got my hands on a channel on youtube called practical networking. I love it
chilly swan
hi
gritty fern
hello
simple kernel
yo!
timid prism
@gray sonnet whens ur shift
wild estuary
ok sory
simple kernel
Guys
for any beginner and wants to learn network fundamentals
this course is great.
for visuals and understanding exactly what is happening.
sick lance
that never happens.
the reason you dress nicer than the client is that it's a ...
Scrolling back,
I had a student peer wear 3 piece suits to Uni classes, and complained that the rest of us aren't, and thinks all University students should wear suits whilst studying at uni.
Then turns up one day in something that resembles a "onesie".
brisk tree
Morning
steel aspen
If I were to change my host to a debian based Linux distro what would people recommend? I'm running windows 10. I'd love to be able to play games and do THM with the tools/programs.
steel aspen
If I were to change my host to a debian based Linux distro what would people rec...
I'd love the convenience of Kalis preinstalled tools but it's not exactly a daily driver. And I love the look of Ubuntu. I was thinking Mint since it seems to be a mixture.
jaunty prairie
I'd love the convenience of Kalis preinstalled tools but it's not exactly a dail...
are you just looking for something fun to play with, or is it going to be a box you are strictly working with?
vast lagoon
H! all
brisk tree
hi
steel aspen
are you just looking for something fun to play with, or is it going to be a box ...
It's gonna be my daily mainly gaming but I'm also gonna use it for THM/HTB/other cyber n programming things
jaunty prairie
if you want to game, ubuntu/popOS is likely your best bet IMO, but would still keep a VM up with kali/parrot os for thm/htb and such
simple kernel
protocols are sets of rules that governs the communication between hosts. and so it's in a way programmed to facilitate communication between them and telling them ho wto react in case of issues, to provide security and so on
am i correct?
steel aspen
if you want to game, ubuntu/popOS is likely your best bet IMO, but would still k...
Don't think I want a VM for a while after what happened
vast lagoon
protocols are sets of rules that governs the communication between hosts. and so...
In a general sense, a protocol refers to a set of rules, conventions, or guidelines that define how communication or interactions should occur between different entities, such as devices, systems, or individuals. Protocols exist in various contexts, including communication networks, diplomatic relations, and social interactions. They serve to ensure orderly and efficient exchange of information, facilitate interoperability, and establish expectations for behavior
wild estuary
sakura room task 5 questions 2 hints link 404 study gives, normally it doesn't need to be given visually?
jaunty prairie
Don't think I want a VM for a while after what happened
uh oh.
steel aspen
Does parrot use Apt?
vast lagoon
Does parrot use Apt?
yes
simple kernel
In a general sense, a protocol refers to a set of rules, conventions, or guideli...
great this term was very hard for me to understand
hahahaha
not only here
but also in valorant for example
i am not an english first language
simple kernel
and so it wasn't inuitive to what it really refered to
jaunty prairie
Yeah lost 2 years worth of THM notes, files and bookmarks cos my VM died on me
oh thats right, i forgot that had happened to you.
vast lagoon
i am not an english first language
what is you first language akai?
simple kernel
Great, don't like pacman, yum or DNF
bro! what matters is the experience you got, having gotten far, you don't need to start from the beginning
vast lagoon
i am arabic!
ok
steel aspen
bro! what matters is the experience you got, having gotten far, you don't need t...
I need the notes though I rely on it. I've got the worst memory
simple kernel
I need the notes though I rely on it. I've got the worst memory
there are books actually that teaches you how to use your memory!
everything is just learning process you know!
vast lagoon
is it possible to use NIC to the WSL(Windows Subsystem Linux) kali?
does anyone know answer or solution for this?
steel aspen
Would parrot be good for gaming or is pop good for thm
simple kernel
you know those people who manages to memorize thousands of stuff at the same time couldn't do it in the beginning
they just used strategy
steel aspen
I know the other message said otherwise but I'm not gonna be using a VM for a while. I'll definitely get back into them but for right now I'm wanting to change my host.
steel aspen
you know those people who manages to memorize thousands of stuff at the same tim...
I'm only good with numbers
Hence I'm decent with the ports I've learned
simple kernel
then don't give up and strive for becoming better :>
there are very cool memorization tricks
AND
upload it on the cloud
mega is great
jaunty prairie
I'm only good with numbers
I would honestly keep my daily driver as windows and just learn from what happened with the VM. your host machine could have failed just as easily really
notes are all in a folder thats backed up to the cloud for me, but I have learned already from your current situation
steel aspen
Virtual box never allowed me to drag n drop to keep backups
Even after changing settings.
I don't like using the cloud I prefer proper copies to myself
simple kernel
u can have something like a real-time backing up software
where it backs up things for you automatically
jaunty prairie
also, sounds like you needed to install vbox guest addiditons
simple kernel
why tho?
why would i need it?
i just installed the VM for me
kali and i saw the guest addition
but i skipped it
why do you think a person should install it?
jaunty prairie
if your having trouble with things like drag and drop, shared clipboard, screen res and so on
simple kernel
ohh ohh i see i see
jaunty prairie
virtual box has gotten better over the years, and you may not need it. but sometimes that addional software helps alot
steel aspen
So if I was to keep upgrading Kali how would I transfer files to my new vm
2023 to 2024.1
jaunty prairie
do you have the horse power to keep them both running at the same time?
wintry sluice
So if I was to keep upgrading Kali how would I transfer files to my new vm
do you have a usb memory stick?
connect that to the old VM, copy files to the stick.
then connect it to the new vm, and copy files to the VM
steel aspen
do you have a usb memory stick?
connect that to the old VM, copy files to the st...
Oh yeah try it that way for next time
Shared folder might be ideal too
Might do it both ways that way I've got a 2 backups. Don't care about storage
I couldn't get shared folder to work properly last time tho
jaunty prairie
well, im sure we can help if you get stuck
near hawk
jaunty prairie
@near hawk i'm in the middle of other things, and to lazy to look it up...but if memory serves correctly this isn't the first time with dlink and backdoor access
near hawk
Yea there was one in 2013 and one in 2018 from what I can see
jaunty prairie
not a good time to be Dlink I guess heh
vital snow
oak river
https://www.bleepingcomputer.com/news/security/over-92-000-exposed-d-link-nas-de...
TP-Link ftw
vagrant kraken
i am kind of new 2 months old in cybersec- which is more recognized by companies? THM - HTB or letsdefend?
tropic lark
I doubt companies care :p
vagrant kraken
depends - i see they keep asking for COMPTIA
wintry sluice
comptia offer certifications
vagrant kraken
true- but to get to that level i need a guide and those 3 i mentioned are the best
sick lance
For thm and letsdefend.
Their certs aren't "recognised" because they're certificates of participation.
There is no proctored exams, so no way to prove you didn't just google.
vagrant kraken
yes indeed
sick lance
Not sure how htb run things, probably use their Discord.
sick lance
You can say I done x/y/z as learning, but that won't go in your certificate section or work experience.
Probably hobbies
vagrant kraken
id rather pay money for the certs then
sick lance
Catch 22 also.
If your employer needs certs, make them pay for it.
vagrant kraken
no one will hire me a newbie without certs
I just want the junior position SOC T1 - however i still cannot even create my own topology in packet tracer
tropic lark
That's not true, skills matter
vagrant kraken
skills matter- HR wont allow you to get to an interview
people in HR are sto static
*so
sick lance
I just want the junior position SOC T1 - however i still cannot even create my o...
Have you tried?
tropic lark
Certs are only icing on the cake
vagrant kraken
i tried packet tracer i dont understand it well enough
I can barely understand the OSI model 😛
sick lance
Then I wouldn't worry about certs right now.
vagrant kraken
Then I wouldn't worry about certs right now.
yea maybe its too early i am 2 months in
sick lance
yea maybe its too early i am 2 months in
Far too early to worry about certs.
vagrant kraken
However i did get an interview on GRC - even though i showed that i knew stuff the dude wants me to take a test next round
jaunty prairie
gotta walk before you can run
vagrant kraken
i have a background in info sec and GRC
but thats nothing compared to the stuff you need to know in cybersec
ISO 27001 is extremely high level info you need to know
sick lance
ISO 27001 is extremely high level info you need to know
Good job there is a thm room on it.
jaunty prairie
for GRC content. check out the simply cyber community over on youtube. Dr Auger is trying to make GRC cool lol.
im old school tho, if I was hiring someone today entry level. Net+, A+(maybe?) and if they are currently working on sec+ I would be happy
vagrant kraken
Good job there is a thm room on it.
i will def check it out- but I dont know, GrC was kind of boring getting your head stuck in paper work and evidence running around like a chicken
vagrant kraken
for GRC content. check out the simply cyber community over on youtube. Dr Auger ...
For the moment ill check it out thank you-however not sure if i want to go back to GrC
twin ridgeBOT
Gave +1 Rep to @jaunty prairie (current: #1358 - 2)
oak river
i am kind of new 2 months old in cybersec- which is more recognized by companies...
Both are
I have been in cybersecurity forums, CEO's personally reccomend both platforms
I pledge you my word that I am not lying
oak river
Recently I was at Bsides in Sofia Bulgaria
jaunty prairie
i have a letsdefend account I got work to pay for...i don't recommend.
oak river
Idk, one friend that works in cybersec reccomended it to me
But no Manager or CEO has reccomended me it
Generally, they approve platforms that give knowledge
jaunty prairie
the $14 account is cool if you only want to do SOC
oak river
THM and HTB both give tons of valuable knowledge
vagrant kraken
I am unexmployed BTW and trying to break into Cyber sec SOC T1 at 50 years old- too late?
nah ill stick with THM or HTB
oak river
the $14 account is cool if you only want to do SOC
Yeah, LetsDefend is a focus platform -SOC job
There is also CryptoHack
That is like a similar or the same platform but just for cryptographers
vagrant kraken
I can barely explain the OSI models imagine going deeper
oak river
I can barely explain the OSI models imagine going deeper
Let me give you a quick review
OSI - Open Systems Interconnection
vagrant kraken
Let me give you a quick review
i hope you have a YT channel seems you love this
oak river
Basically you can imagine it like the constitution that says how all computer manufacturers should make their machines, so they are able to communicate with other devices as well
From other brands, other types of devices
It has 7 layers
wintry sluice
I can barely explain the OSI models imagine going deeper
vagrant kraken
yes i have read all this on coursera and IBM cybersec etc-and THM
oak river
https://tryhackme.com/r/room/osimodelzi
Yeah that too
vagrant kraken
https://tryhackme.com/r/room/osimodelzi
thank you done that - i cannot create a topology on my own yet
steel aspen
Catch 22 also.
If your employer needs certs, make them pay for it.
How does one do that? Just say if you need the cert ur gonna have to pay me to get it?
sick lance
How does one do that? Just say if you need the cert ur gonna have to pay me to g...
Being polite normally helps.
steel aspen
Being polite normally helps.
Well I wouldn't use those words exactly 😂
vagrant kraken
like lets say the company wants me to build a topology of endpoints- firewalls- vpn tunnel and all that- i cannot do it- mind you i can hardly even give out IP's on a network (unless i use DHCP)
wintry sluice
demonstrate interest and independent learning
steel aspen
What would. You say tho
jaunty prairie
demonstrate interest and independent learning
Net+ stuff might be a good starting point. Dont go buy the cert, but study like your going to take it...then if you want to, take it
oak river
Application - Where we are right now
Presentation - Translates data so that it can be accessed by different applications and computers
Session - Defines the communication between the computers - Their sessions
Transport - Defines how data will travel - TCP/UDP protocols
Network - Defines Logical addressing - IP addresses
Data-Link - Defines hardware addressing - MAC/BIA(Media Access Control/Burned In addresses) addresses
Physical - Defines cables and all physical means by which computers connect
@vagrant kraken , tell me if this helped you
Also anyone can feel free to correct me
vagrant kraken
Application - Where we are right now
Presentation - Translates data so that it c...
thank you - its better explaination that others
twin ridgeBOT
Gave +1 Rep to @oak river (current: #1358 - 2)
jaunty prairie
@oak river I like that
oak river
L2 - Data Link - Addresses cannot be changed, they are like each electronical device's fingerprint
MAC - Fingeprint
IP address - Your house address
jaunty prairie
@vagrant kraken All(application) people(presentation) seem(session) to(transport) need(network) data(data link) processing(physical)
vagrant kraken
L2 - Data Link - Addresses cannot be changed, they are like each electronical de...
MAC address i know from iso 27001
oak river
You can change your house, but you cannot change your fingerprints or blood type
oak river
But I also try to get the CCNA and I am almost halfway to the course
If you try to watch the CCNA you will understand everything that you need essentially for networking
jaunty prairie
are you understanding the CCNA?
oak river
I do, theres a lot of material
vagrant kraken
so the base for everything is indeed Networks
oak river
Im almost halfway
wintry sluice
Application - Where we are right now
Presentation - Translates data so that it c...
would photons be considered part of the physical layer, as they enable communication wirelessly, as cables do for wired...
oak river
But I got stuck a bit, as I burned out
oak river
would photons be considered part of the physical layer, as they enable communica...
I mean optic cables are L1
And photons are part of light
vagrant kraken
But I got stuck a bit, as I burned out
i gained 40 Badges- free courses my brain is F@dk
oak river
i gained 40 Badges- free courses my brain is F@dk
Haha, I know what you mean. We should recap
My problem is I only want to learn new stuff and not do any recap
vagrant kraken
Haha, I know what you mean. We should recap
yea and i have an official exam on the 29th april for ISC2
oak river
However just like working out in fitness, you have to do the same stuff over and over again to get better
oak river
yea and i have an official exam on the 29th april for ISC2
Well good luck then!
vagrant kraken
My problem is I only want to learn new stuff and not do any recap
thats me- i got too deep down the rabbit hole - but i still cannot build a topology from scratch alone
oak river
Also if you are a network engineer or something related, you need to understand just the first 4 layers or maybe 5
vagrant kraken
Well good luck then!
thank you
oak river
Programmers and software engineers need the upper 3
Session, Presentation and Application
vagrant kraken
so a full stack dev is there
oak river
If you want to be a full stack or some sort of mixed engineer
Then you have to go doomguy mode
vagrant kraken
nah ill pass on full stacks- i just want to be a SOC t1
oak river
Well, if you can understand the whole OSI its the best
Since cybersec is a hybrid field
vagrant kraken
I have to understand it people will ask in interviews
oak river
Sure
vagrant kraken
but also built my own topology i am sure they will ask
oak river
Just remember one thing, after going through material, make sure you can explain it to someone on the street
If you can do that, you have succesfully understood the material
vagrant kraken
I am meeting a buddy now soon today to explain to him he wants to break into cyber sec ill try explain
vagrant kraken
I have even got my own home lab - with VB and server windows and also Kali linux
its just that i am burnt out a bit after 2 months of reading
oak river
its just that i am burnt out a bit after 2 months of reading
Party hard on weekends and go out
That fixes the problem
jaunty prairie
@vagrant kraken my advice to you if your buring out is to chill. take a second and have some fun
oak river
Later today there is play chess and drink in a bar
vagrant kraken
chill yea true - on my chill time i walk but i keep thinking how bad i need a -job lol unempoloyed
oak river
And I think about going
vagrant kraken
We going to the beach with my buddy
oak river
Chess is a good exercise to increase your mental capacity
And its fun
I mean to some
vagrant kraken
Party hard on weekends and go out
i cannot party too much at 50... ha ha
jaunty prairie
also, find some fun inthe practical world. build that network. get that active directory running....don't just read
vagrant kraken
been into computers though since 1984
oak river
i cannot party too much at 50... ha ha
Well, it's up to the person
oak river
i cannot party too much at 50... ha ha
Go on hikes in the mountains and forests then
Do some BBQ
vagrant kraken
my first OS was ms-dos 1.0
vagrant kraken
outside of the virtual world sure- the real world has plenty of things
oak river
I personally have a hobby that destresses me instantly
Riding a motorcycle
There is nothing like a motorcycle for me
vagrant kraken
dirt bikes?
vagrant kraken
i tried both when i was younger - both bring the sensation you are seeking
oak river
Yeah, I guess
But road bike can be ridden everywhere you need to go
Dirt bikes dont have plates here
vagrant kraken
for me computers were my friends since i first saw the 8086
oak river
Enduros do
vagrant kraken
enduro yea - off roads
oak river
for me computers were my friends since i first saw the 8086
Is that a movie
vagrant kraken
I tried the WR200 with plates
jaunty prairie
be mindful of burnout tho luc...always find time for fun...SOC could be highly intense at times, and burnout is common
vagrant kraken
not its a CPU running at 4.77mhz
vagrant kraken
be mindful of burnout tho luc...always find time for fun...SOC could be highly i...
yeap 100% burnout but then you go next level
my first CPU was 8086- running test drive and larry 1
from disks 5 1/4 big old huge disks (floppy)
jaunty prairie
haha Larry...i just found out they still make those games
oak river
I have to find our first PC
I must make it connect to a desktop
But its workin
It has Windows XP
It is like 18 years old
vagrant kraken
when they had CYRIX CPU
jaunty prairie
I know @vagrant kraken knows whats up...but I was just thinking the other day...its been 24 years since the world freaked out over Y2K and the death of all systems and where we are now lol
vagrant kraken
I know <@439388584907243522> knows whats up...but I was just thinking the other...
we were sh1t scared at my compnay things were going to blow up
i remember we backed up on those tapes the day before 😄
jaunty prairie
I was 12 years old, playing quake. My mom freaked out and unplugged the computer at like 10pm NYE. I was so mad the next day when the PC booted...I could have kept playing LOL
vagrant kraken
we all unplugged them i remember ha ha
steel aspen
If I use a USB as a backup, the VM should recognise it and I'll be able to drag files that way right?
Lvl 1 Soc doesn't seem too bad
There's tier 2 and 3 right?
vagrant kraken
If I use a USB as a backup, the VM should recognise it and I'll be able to drag ...
yea SoC 1 is okay - there are multiple levels
jaunty prairie
If I use a USB as a backup, the VM should recognise it and I'll be able to drag ...
as long as the VM recognized the peripheral device
steel aspen
2 and 3 would be very interesting ig
vagrant kraken
Soc 1 - identifies the threats and passes it over
steel aspen
as long as the VM recognized the peripheral device
If it's a standard USB from a tech shop, it should be good right?
jaunty prairie
the fun is in IR. IMO anyway. I'm biased
steel aspen
Soc 1 - identifies the threats and passes it over
Doesn't seem so bad
vagrant kraken
incident response?
vagrant kraken
Doesn't seem so bad
their are various types of soc 1- cyber theat hunters for example
jaunty prairie
If it's a standard USB from a tech shop, it should be good right?
give it a shot. Lets see what happens. I think it'll work. but I have seen VMs not read them
vagrant kraken
i just want to be the basic soc 1 analyst- and then move on after 1-2 years
vagrant kraken
i stopped learning at 30+ until now
steel aspen
And new stuff too
vagrant kraken
life was too much fun
i played games- boozing and too many women - they destroyed me
steel aspen
give it a shot. Lets see what happens. I think it'll work. but I have seen VMs n...
Hopefully does. Not a rubber ducky lol.
jaunty prairie
mine too even though i am 50 😄
don't look at it as being 50. Your just doing something new on your journey.
vagrant kraken
don't look at it as being 50. Your just doing something new on your journey.
sure- and my background- in GRC helps a bit
sick lance
Piracy chat isn't welcome FYI, keep that in mind please.
jaunty prairie
Piracy chat isn't welcome FYI, keep that in mind please.
is that about the sean parker software comment....not going to name it lol
sick lance
No, it was a different message I deleted.
jaunty prairie
kk
jaunty prairie
sure- and my background- in GRC helps a bit
you in a big city or looking for WFH jobs?
vagrant kraken
you in a big city or looking for WFH jobs?
Europe Athens- they dont have too many roles here on SOC 1
I dont mind moving to any city within Europe
I was also an SDM for 4 years on a SaaS project but i had done zero reading
last year my brain swithced and i just wanted to learn stuff - dont know what happenned
but the stuff i learnt in 2 months i never knew before even existed 😄
jaunty prairie
That is really cool. Have you considered other cyber roles? or just GRC and SOC?
vagrant kraken
like what other exist? Cryptographer? threat hunter? I think you must go thru soc 1 first
to become a manager you need to have hands on experience i am sure
jaunty prairie
I am in canada, and work in a medium-sized tech town. Coming up when I did IRC was huge and the tech folks all got to know each other that way...so here is 100% who you know when it comes to finding work.
vagrant kraken
MIRC was big here too
here its also about who you know- connections
thats how i got the job as an SDM -i had zero hands on skillz
ivory marsh
anyone know how to crack instagram password or how to do bruteforce attack
vagrant kraken
anyone know how to crack instagram password or how to do bruteforce attack
oh no...
jaunty prairie
anyone know how to crack instagram password or how to do bruteforce attack
probably a lot of us....but were an ethical group
ivory marsh
so can you teach me
i want to knows all these stuff
i'm having macbook air M1 how i can use hashcat on my mac
jaunty prairie
later dude!
vagrant kraken
later dude!
catch up soon
naive violet
anyone know how to crack instagram password or how to do bruteforce attack
Are you aware that it's illegal?
ivory marsh
Are you aware that it's illegal?
yes i'm aware but i want to try it on myself
for practise
naive violet
yes i'm aware but i want to try it on myself
That's still illegal
ivory marsh
i have some spam account
sick lance
i have some spam account
No, you don't own the account.
You just have permission to use it by meta.
ivory marsh
so in my lifetime i can hack
grim sparrowBOT
:hammer: rasesh_06#0 has been banned.
jaunty prairie
does that happen offten here?
naive violet
does that happen offten here?
Yes. People go om the discord server discovery and search "hack"
steel aspen
Do they realise how dodgy they sound?
steel aspen
:hammer: rasesh_06#0 has been banned.
Bro fr got moderated
jaunty prairie
Does anyone know who I am talking about when I say a female hacker that makes youtube content? I think it's mostly web sec. Trying to think of her name and i'm lost for it. I am trying to not make this sound racist, and apologize if it does...but she is muslim or of other religion that wears a hijab.
tawny widget
Does anyone know who I am talking about when I say a female hacker that makes yo...
Maybe you can find her in this thread https://www.reddit.com/r/cybersecurity/comments/11a5n0d/any_female_cybersecurity_youtuber/
jaunty prairie
@tawny widget Ty. second comment. Rana Khalil
tawny widget
<@687370365990731873> Ty. second comment. Rana Khalil
You´re welcome (:
rapid merlin
How’s everyone
tawny widget
How’s everyone
Doing fine, just working my way through the Pre-Security Course and gathering resources to start my journey haha
rapid merlin
I’m just trying to figure out where to go next
jaunty prairie
I’m just trying to figure out where to go next
well, what are your interests so far?
rapid merlin
Ethical hacking and cyber security for starting so I can build my skills before moving to penetration
tawny widget
Ethical hacking and cyber security for starting so I can build my skills before ...
Do you have any prior experience?
rapid merlin
Nope beginner but I did finish the introduction to cyber security modules
near hawk
@rapid merlin dod you sign up to tryhackme.com that is the website for this discord server
It will teach you ethical hacking
rapid merlin
<@456226577798135808> dod you sign up to tryhackme.com that is the website for t...
Yes and I finished the cyber security module after subscribing
jaunty prairie
if your end goal is to pentest, there is a path for that
delicate reef
yall
https://www.youtube.com/watch?v=i3FvsJ2evec
friend selling his old monitor for 200 ~ 250
worth it if i get it from him?
its kinda old ik but ultra wide it is 1080p sadly sooo its gonna be A LITTLE Pixelated but idk if i can find other good ultrawide monitors for that price
jaunty prairie
https://tryhackme.com/r/resources/blog/free-offensive-security-training
I just skimmed that...I think I might follow this path for something to do, and brush up on the ol windows. Thanks for that
twin ridgeBOT
Gave +1 Rep to @near hawk (current: #68 - 91)
rapid merlin
Thanks
i researched but i wanted to ask yall
any way to create multiple crypto adresses ?
pseudo scroll
I had these thoughts about our last conversation that could Graphene or similar privacy concerned Operating systems make ISPs more concerned and suspicious about those users?
I also like to have James's opinion about it & also other members too
simple valve
I had these thoughts about our last conversation that could Graphene or similar ...
ISPs afaik have limited visibility on what OS a user is running on
pseudo scroll
ISPs afaik have limited visibility on what OS a user is running on
for example when u update your linux distro it's clearly visible to them
and various Operating systems have different fingerprints like TTL & ...
simple valve
for example when u update your linux distro it's clearly visible to them
They would see you talking to a package manager repository but there’s not much indication if you’re visiting it or pulling info from it
pseudo scroll
They would see you talking to a package manager repository but there’s not much ...
I assume that's enough
simple valve
and various Operating systems have different fingerprints like TTL & ...
That is not reliable in the context of bigger networks
pseudo scroll
That is not reliable in the context of bigger networks
Would u please describe that
For example when user has Linux TTL in their sent & received packets it's completely clear that they use Linux
austere salmon
Hello, my dashboard shows a different level than my profile. Is it a bug?
sick lance
Hello, my dashboard shows a different level than my profile. Is it a bug?
Yeah, staff are aware, fixed hopefully soon.
austere salmon
Alright, thanks
simple valve
For example when user has Linux TTL in their sent & received packets it's comple...
If I give you a TTL of 48, without using other tools, is it Linux or Windows?
pseudo scroll
If I give you a TTL of 48, without using other tools, is it Linux or Windows?
I don't get that "without using other tools"
like changing network's parameters?
simple valve
I mean using other tools to fingerprint a user’s device
with just the TTL as a value
Anyway, while I think its possible, I don’t think it would be super accurate
pseudo scroll
That's more than TTL and repos
Operating systems network behaviours are complicated
Thanks for sharing your opinion 🙏🏻
rapid merlin
Has anyone landed a job bc of THM
sick lance
Has anyone landed a job bc of THM
Plenty of people.
boreal gull
Has anyone landed a job bc of THM
not only thm but i used it a lot
helped me
without thm i wouldnt have gotten annoyed at security tooling, and i wouldnt have made better, and i wouldnt have my job rn if i didnt do thart
sick lance
Has anyone landed a job bc of THM
Also a few THM employees got employed due to the content in rooms they created.
Also thanks to THM, I've picked up some contract work 🙂
And if I was willing to move, I had the opportunity of a job.
Huh, my journey in Cybersec is bigger than I thought in here.
naive violet
Has anyone landed a job bc of THM
Yes
rapid merlin
not only thm but i used it a lot
Whats your currrent job?
boreal gull
Whats your currrent job?
security 🙂
and i should mention my first job was also with tryhackme
abotu 4 years ago
rapid merlin
Also a few THM employees got employed due to the content in rooms they created.
Whats your current job title
sick lance
Whats your current job title
I'm still in University, so I'm currently a student, who does contract work for TryHackMe.
rapid merlin
security 🙂
Would you suggest thm over college courses and certs?
boreal gull
Would you suggest thm over college courses and certs?
depends
rapid merlin
I'm still in University, so I'm currently a student, who does contract work for ...
Oh. How are classes?
boreal gull
college in the uk? no way! do college
sick lance
Would you suggest thm over college courses and certs?
I wouldn't, I'd suggest THM alongside College, they compliment each other well.
rapid merlin
Well I have my bachelors but not doing anything with it and don’t make enough to apply to school
sick lance
Oh. How are classes?
I'm currently in year 3 of my BsC Digital Forensics and Cyber Security.
Classes are good, I've enjoyed my Digital Forensics and Malware Analysis and Exploit classes, not so much my AWS classes.
boreal gull
I'm currently in year 3 of my BsC Digital Forensics and Cyber Security.
Classes...
is ur AWS class "memorise pricing structure"
because mine was
it was terrible
i work with aws daily and idk how much anythign costs lol
once every few months we prune costs but when we're building we'd rather ship features than look at cost 😅
sick lance
is ur AWS class "memorise pricing structure"
It was pretty much everything about AWS and the cloud, the lecturer was good, the course was just awfull as we were using the AWs materials.
boreal gull
Ah terribly sorry @rapid merlin i dont do random friend requests, and I think it's against the rules of the server
No biggie, you're new here and its probably not a rule in other servers but I just dont like adding people personally 😅
i would love to double check but the rules have disspeared
probably need to select the channel or something weird
no the rules channel was removed?
oh cause its built itno the server now?
sick lance
Nah
boreal gull
🥴 discord is so confusing
sick lance
You need to show all channels now.
sharp citrusBOT
@rapid merlin
TryHackMe Rules
boreal gull
You need to show all channels now.
ugh
sick lance
ugh
It was Discord with their new stupid onboarding popups when you join a server I think.
boreal gull
It was Discord with their new stupid onboarding popups when you join a server I ...
i swear every few months discord just makes this app worse and worse to use
sick lance
i swear every few months discord just makes this app worse and worse to use
Especially their mobile app.
boreal gull
Especially their mobile app.
the search on mobile changing made me want to throw my phone#
rapid merlin
Understandable
tawny magnet
astral grove
hey guys just certified eCPPT, I am happy 😄
sick lance
hey all,
I can't connect openvpn
#site-support please
sick lance
hey guys just certified eCPPT, I am happy 😄
Congrats!
plucky pine
Hi
twin ridgeBOT
Gave +1 Rep to @sick lance (current: #1 - 2141)
simple valve
hey guys just certified eCPPT, I am happy 😄
time to get the thm discord role 👀
shell nova
Yarp
blazing granite
Good morning 👋
twin ridgeBOT
➕ Gave the role eCPPT to me_grizzy
shell nova
Grats
chilly veldt
Morning
midnight bobcat
Anyone have any voucher or idea regarding tryhack me monthly subscription.
So that I can get it at less prices
near hawk
Are you a student?
midnight bobcat
yes
near hawk
You have to purchase it with your student email
for the discount
If it doesn't apply you have to email support@tryhackme.com
midnight bobcat
I have student email but they are saying they don't recognise any student email .
they have domain
.edu and .ac.uk
mossy river
Anyone have any voucher or idea regarding tryhack me monthly subscription.
If you redeem unofficial vouchers, your account will be banned.
Please be aware of scams and fraud.
midnight bobcat
If you redeem unofficial vouchers, your account will be banned.
Please be aware...
Ok Thanks !
twin ridgeBOT
Gave +1 Rep to @mossy river (current: #6 - 1212)
sharp citrusBOT
@midnight bobcat
twin ridgeBOT
Gave +1 Rep to @shell nova (current: #11 - 563)
midnight bobcat
My institution id is .ac.in do they recognize this ?
mossy river
No
midnight bobcat
Ok
grim sparrowBOT
There are no URLs in that message.
tawny magnet
where do you go to verify certs you have btw.
astral grove
where do you go to verify certs you have btw.
MOD
mossy river
rapid merlin
good news I have finished pre-security path!
crude stump
good news I have finished pre-security path!
w
tawny widget
good news I have finished pre-security path!
w
crude stump
where do you go to verify certs you have btw.
usually you ask a mod i think
like jabba
rapid merlin
this weird number on certificate has to be private right?
crude stump
<#644263827742916628>
jabba the tryhackme bot is still in 2023
mossy river
jabba the tryhackme bot is still in 2023
It was created in 2023
devout palm
hey guys just certified eCPPT, I am happy 😄
Congratz!
rapid merlin
guys after finishing pre-security is there any practice you can use on that knowledge?
mossy river
so what bot did yall use before that?
A different one also called TryHackMe bot
mossy river
Anyone know about sim cloning?
Why?
misty quest
I just want confirm one thing
Is it possible to clone a sim without having original physical sim ?
misty quest
Yes bro i read multiple articles on this but someone did
crude stump
did what
misty quest
Cloned sim just with contact number
near hawk
Jabba, have you ever tried sneak?
vagrant kraken
hey gang- quick question - what monitor do you have for Cyber sec stuff at home while reading? my 24" is way too small
near hawk
I have a 32 inch curved screen with a 50 inchTV on the wall
vagrant kraken
32 inch monitor nice- what brand?
near hawk
MSI
vagrant kraken
ill check it out thank you
mossy river
Jabba, have you ever tried sneak?
the juice?
near hawk
Energy drink
mossy river
No, it gives off GFUEL vibes
shut hawk
@glass nest I'm quite close to Plymouth rn 😆
mossy river
<@192619849447505920> I'm quite close to Plymouth rn 😆
You poor soul ❤️
tropic stratus
on the subject of SIM cloning, didn't Kevin Mitnick use cloned phones or something?
I remembered reading he was charged with it when the FBI finally got him
rapid merlin
👋🏻
rapid merlin
Mark, NVT, how you doing?
jaunty prairie
on the subject of SIM cloning, didn't Kevin Mitnick use cloned phones or somethi...
Kinda the same thing, but I believe it was in the CDMA days before SIMs
outer rivet
Na just tired
tawny widget
Mark, NVT, how you doing?
Doing well, working through the Pre Security Path bit by bit and started with basic Python stuff, wbu?
rapid merlin
Doing well, working through the Pre Security Path bit by bit and started with ba...
I'm doing some basic rooms that I missed out and ranking up.
spice adder
Good day, THM
crude stump
Do y’all like English muffins
tawny widget
Do y’all like English muffins
What is the difference to normal muffins
young egret
taste worse
tawny widget
Ooooh, well. I just casually get them from McDonalds for breakfast lol
devout palm
Both look good
outer rivet
English Muffin
@rapid merlin first one look like rotie
rapid merlin
<@456226577798135808> first one look like rotie
🫠
crude stump
taste worse
English muffins are good
rapid merlin
Bro is 27tj right ?
yes, and I sent you something!
outer rivet
Bro send me nothin
hazy pivot
is there a better way than writing search -f secret.txt to find files in Metasploit room? it's not fun to just wait
rapid merlin
Bro send me nothin <:kekw:658061932577816606>
warm bear
is there a better way than writing `search -f secret.txt` to find files in Metas...
Find . -type f -iname secret.txt 2>/dev/null
mossy river
Find . -type f -iname secret.txt 2>/dev/null
find . ?
hazy pivot
Find . -type f -iname secret.txt 2>/dev/null
for meterpreter*
naive violet
is there a better way than writing `search -f secret.txt` to find files in Metas...
Flags are always going to be in the same place
sick lance
Did my message dissapear? o.O
spice adder
English Muffin
All I see is mcmuffin
sick lance
@dense tendon Please don't DM users without permission, as for your issue, can you seek help from your local authorities.
crude stump
Y’all Yk the software updater for the attack box. What password does it want me to use. My thm account pass?
sick lance
No
rapid merlin
Find . -type f -iname secret.txt 2>/dev/null
find / -type f -name secret.txt 2>/dev/null?
sick lance
Don't enter your Tryhackme password in the attackbox.
pallid lotus
English Muffin
Aaaaaaaaand, now I want to make muffins, you bastard lmfao
crude stump
Ok
sick lance
Y’all Yk the software updater for the attack box. What password does it want me ...
It will probably be root password.
crude stump
Then how do I update?
crude stump
It will probably be root password.
Oh
rapid merlin
👋🏻 Muiri.
crude stump
Tbh I don’t think the update matters. I can still use it
pallid lotus
Oh
It used to be possible to grab that from the my-machine page, but that's been removed now
I would be astounded if it wasn't still returned by the API though
sick lance
It used to be possible to grab that from the my-machine page, but that's been re...
Root password?
sick lance
It gives you the Password, private and public IP.
pallid lotus
Yeah, so that's used to be in the my-machine page 😆
crude stump
Good thing I didn’t put my actual thm password into it
rapid merlin
new UI is cool tho.
pallid lotus
Good thing I didn’t put my actual thm password into it
I mean, connection user agent -> novnc proxy == TLS. Connection proxy -> AB VNC Websocket server is unencrypted iirc, but you'd need to compromise some core infrastructure to intercept that
sick lance
Unless you stupidly give someone the attackbox URL.
pallid lotus
Putting your account password into a password prompt on the AB wouldn't be sensible but chances of being compromised from doing it accidentally once are minimal
naive violet
Good thing I didn’t put my actual thm password into it
Lots of people do
And into target machines...
sick lance
Either the terminal, or the keyring.
pallid lotus
Unless you stupidly give someone the attackbox URL.
I mean, even then it's a password prompt. Echo is disabled
Keyring or plaintext is a slightly different matter...
sick lance
I mean, even then it's a password prompt. Echo is disabled
Nah, I've asked a few people for their attackbox URL, done a task with them watching without needing to put a password in.
crude stump
Crazy
pallid lotus
Nah, I've asked a few people for their attackbox URL, done a task with them watc...
As in, even if you're shoulder surfing someone typing a password into sudo, you see jackshit -- it doesn't get echoed to the terminal
sick lance
As in, even if you're shoulder surfing someone typing a password into sudo, you ...
Oh, I was talking more about somewhere that plain texts it.
Terminal all is cool.
pallid lotus
In order to grab a password that way you'd need to have prepped the target AB with a keylogger
warm bear
`find / -type f -name secret.txt 2>/dev/null`?
I generally use -iname since it is case-insensitive
pallid lotus
Although, granted, that's not outwith the realm of possibility if they're already handing out the link...
sick lance
Thankfully I do ask them for it in DM's.
pallid lotus
Oh, I was talking more about somewhere that plain texts it.
Terminal all is coo...
And same here
Then again, trying to use the account password in the AB in the first place kinda falls into that category too...
rapid merlin
I generally use -iname since it is case-insensitive
help full.
sick lance
I prefer using find / -type f -perm -04000 -ls 2>/dev/null instead of trying to find flag files 😄
ancient zealot
dude why can i not join the Koth voice channel 😦
sick lance
dude why can i not join the Koth voice channel 😦
You need to verify your account.
docs verify
ancient zealot
i did... for the most part wait a sec
sick lance
You're not verified though. 🙂
blazing granite
i did... for the most part wait a sec
ancient zealot
phone number was verified rn wait lemme check the rest
sick lance
You need to verify your THM account with the THM bot in Discord.
ancient zealot
oh man
sharp citrusBOT
ancient zealot
thank you 🙂
dense tendon
<@787855768791023628> Please don't DM users without permission, as for your issu...
Okay, Sorry about that.
sick lance
Okay, Sorry about that.
No worries, thanks for understanding.
It's an unfortunate incident you're in, nobody could help you better than the police.
twin ridgeBOT
Gave +1 Rep to @dense tendon (current: #2052 - 1)
ancient zealot
aight that should be it
sick lance
Yup, you're verified.
ancient zealot
lol the one dude in the koth lobby wasnt even in the voice channel lmao
sick lance
Yeah, that happens 😅
jaunty prairie
is there a better way than writing `search -f secret.txt` to find files in Metas...
are the voice channels heavily moderated? I tend to cuss a lot in KoTH lol
sick lance
are the voice channels heavily moderated? I tend to cuss a lot in KoTH lol
They will be now 🙂
ancient zealot
XD homie snitched on himself
shut hawk
I rarely see mods in VC, but I'm sure they'll always be one on hand just in case
Actually scratch that, I rarely see anyone in VC
warm bear
I prefer using `find / -type f -perm -04000 -ls 2>/dev/null` instead of trying t...
Cheeky one
sick lance
Actually scratch that, I rarely see *anyone* in VC
Yeah, the VC used to be popular when I first started, but it was always the same 5-7 people.
shut hawk
Yep
sick lance
igbot, guitar dude, GhoP and Canadadian Mahai
warm bear
I never hopped into vc. No reason for it 🥲
sick lance
I joined once.
jaunty prairie
man, I thought Burp community would be a quick and dirty task for this fuzz....im falling asleep. Should have used a fuzzer or wrote something 🤣
warm bear
Rip 🙏
ancient zealot
first time doing koth with like 0 defensive knowledge and mid to bad offensive knowledge 🙂 nice knowing you have infinite amount of shi to learn
pseudo void
hi
sick lance
Hello
warm bear
Heylo
jaunty prairie
we've seen faster things lol
Its not even that, its just the rate limiting unless you pay for pro
shhhh^^
sick lance
@warm bear piracy isn't welcome here.
pseudo void
i have an 8 day steak... i need to take a break but it would die
hazy pivot
i have an 8 day steak... i need to take a break but it would die
Answer a quick question
ancient zealot
i have an 8 day steak... i need to take a break but it would die
just tick a conclusion box on a random path or some XD
warm bear
<@591219613661134848> piracy isn't welcome here.
Oh. Sorry. I fat fingered
ancient zealot
hahah Brodda are you german ?
pseudo void
that counts, i thought you had to pawn a box
sick lance
Oh. Sorry. I fat fingered
No you didn't, that was intentionally typed.
But marks for trying.
warm bear
Hehe. Ok mb fr
warm bear
hahah Brodda are you german ?
Nop
rapid merlin
Thank you.
crude stump
Anyone else feel like it starts off a little boring learning it, but once you get the hang of it and start putting in some work it’s so much fun
jaunty prairie
Anyone else feel like it starts off a little boring learning it, but once you ge...
it gets addicting.
ancient zealot
Anyone else feel like it starts off a little boring learning it, but once you ge...
sort of yeah but i find some things a bit tiresome like using burp for rev shells etc
tawny widget
Anyone else feel like it starts off a little boring learning it, but once you ge...
Absolutely. It feels kinda overwhelming but once you start to understand more its really addictive
warm bear
Ye like learning buffer overflow 🤮
jaunty prairie
you know nothing until you decide to use Burp for blind sql injection...with 19 character password 684 combinations to try.... 😫 LOL
I gues a B\O would take more....im just in pain at my own decision ATM
i'm going to go venture off into the IRL. need to destress and take a hike maybe.
have fun yall 😄
rapid merlin
😁
crude stump
i'm going to go venture off into the IRL. need to destress and take a hike maybe...
Have fun
rapid merlin
Malicious Code in XZ Utils for Linux Systems Enables Remote Code Execution — https://thehackernews.com/2024/04/malicious-code-in-xz-utils-for-linux.html?m=1
lament tendon
Yee, that backdoor is a couple days old already. Scary stuff.
chilly veldt
couple of weeks almost
mossy river
couple weeks? lol
chilly veldt
feels like it at least 
timid prism
My exam centre is in Goa <:kekw:658061932577816606>
LMAO
can u actually win a case against nta
if i file for them wasting my time during exam
or their systems wasting my time
sand trench
the beep boops are music shadow sleeps too..... the meep moops is a sound shadow loves to make as stimming... the sleep sloops is also a fun way to say sleep....
sand trench
I had these thoughts about our last conversation that could Graphene or similar ...
generally they can't see into a lot on what operating system you are using except by studing the domains you conncet to if you use your isp:s dns server
as after that step basically everything is encrypted due to https/tls/ssl....
of course you can sometimes setup encrypted dns on your android too which makes it even less likely your isp knows exactly what you are doing
and generally in most countries the isp:s don't look heavily on peoples data unless asked by law enforcement
tropic stratus
Is it possible changing my username and hostname on my Kali Linux VM will mess anything up? I'll make a snapshot first just in case. I don't want to be Kali@Kali, heh.
sick lance
Is it possible changing my username and hostname on my Kali Linux VM will mess a...
You can do It, it's a quick Google search
tropic stratus
Not that there's anything wrong with that but I've been using the same VM for quite a while instead of re-setting it each boot and it's sorta grown on me, so I'd like to change the username and hostname
But will it mess with my folders? Since I know each user has their own home folder, does it automatically change the folders as needed?
whole yew
It's pretty easy to do. man usermod and pay attention to the options.
sand trench
think /etc/passwd tells you where the home folder for a user is located
sand trench
kinda meh
rapid merlin
Meh is very fair for a sunday lol
warm bear
Tired
sick lance
#site-support please
sour sand
Will do sorry
boreal scarab
"The researchers managed to achieve a data transfer rate of up to 301 terabits per second through standard fibre optic cables"
rapid merlin
Jesus
do you not find it insane how far we've gotten just over the last 40 years
like for example in 2002, the average residential internet connection download speed was 127kbps
20 years later its now 97.8mbps
storm garden
hey chat
is there a job in cybersec field where i dont have to do much but get paid a lot 😈
maybe i could monitor silly network packets all day and get paid a lot
sick lance
You want to be lazy?
storm garden
thats not called lazy ☝️ you now, not everyone has patience to sit all day and look at network packets
i do tho
and that must be respectable
finite basalt
Brother, work is about working, no work is as simple as "just looking at network packets all day"
storm garden
thats working though
finite basalt
Monitoring network packets is more than that, it could involve writing rules to pick things up automatically but can also involve flagging things up and elevating to the appropriate team
sick lance
So SoC work.
storm garden
sounds rather simple job
storm garden
thats fine
boreal scarab
https://www.pcgamer.com/hardware/internet-speeds-12-million-times-faster-than-th...
@hot cairn so, where's your 1.2 million times faster internet?
polar spoke
I like how they made that seem so much bigger by comparing it to the "US national average"
which is like 60Mbps or something insanely slow
finite basalt
not sweden 🤣
sick lance
I would love 60Mbps
polar spoke
The average broadband speed in the UK as of last year was said to be 69.4 Mbps, or megabits per second, whereas the median speed in the US was quoted as 242.38 Mbps in February of this year. The touted 301 terabits per second equates to a staggering 301,000,000 Mbps, which means this new speed would be around 4.5 million times faster than an average UK connection, and 1.2 million times faster than a US connection.
sick lance
I can barely get 38 on a 45 line.
finite basalt
I'm getting gigabit to the house this year
finite basalt
it's gonna be amazing, paid a little extra between the housemates but no complaints, I didn't select the package anyway
sick lance
I live near farms, I can't get that until I move I have no idea when that will happen, and I can only hope it's to an area with decent internet,
hopefully Virgin.
I'm fed up with my current ISP.
finite basalt
I've been on 100Mbps for 3 years and 300Mbps at my parents, going up to 1000Mbps now and 500Mbps at my parents
Virgin's been good for us but my parents switched when price went up to vodafone fiber
polar spoke
these days, last mile bandwidth isnt nearly as important as peering
boreal scarab
which is like 60Mbps or something insanely slow
200 MBPS, way faster than UK actually
polar spoke
careful
finite basalt
Used to be on VDSL and it was awful
polar spoke
they mixed values in that paragraph intentionally
they quoted the AVERAGE for UK speeds
but the MEDIAN for US speeds
which are very different numbers
sick lance
200 MBPS, way faster than UK actually
Uh, I used to get over 900 before I moved...
finite basalt
I'd say average uk speed is fucked because of VDSL
polar spoke
per usual, journalists being journalists
finite basalt
So many places still waiting on fiber so VDSL is the only option
boreal scarab
Uh, I used to get over 900 before I moved...
Uh, I still do 
sick lance
Uh, I still do <a:congaparrot:595602722561064960> <a:rooRave:948757379695116378>
Helps when you don't live in the country side.