#general

Trueee

I think places in the US even still use dial up.

The countryside in the UK and Ireland is truly countryside, no phone signal or proper internet depending on the area

I've been in places in the country side with phone signal in one corner of the house 🤣 that signal was the only access you had to the internet

Just cut my finger so badly 😭🤣🤣🤣🤣

Oof what'd you cut it on?

looking at Speedtest.net, the UK MEDIAN is 101

not 69

A tin

anyone know btw what the best way is to practice for koth in thm ? like for the defensive stuff, if i am not mistaken it is different from SOC knowledge

hhhhhh

hello

https://tenor.com/view/orb-orb-pondering-wizard-horse-plinko-plinko-gif-24381668

almost died eating an apple cuz it was too juicy gahdayum

that would be a stupid reason to die

unfortunately it didnt so here i am

maybe next time

ye

There is 3 rooms you can practice.

yaaay scrubz

Go to search and type "koth"

aahhh i saw them but thought it was something else cuz there were like cola and burgers on the pic so XD didnt know how that correlates to koth

thx scrubz u the man or woman or idk i dont wanna judge (or get cancelled)

I use he/him.

But thank you for being polite about it.

Gave +1 Rep to @ancient zealot (current: #2052 - 1)

what happened here 😦

You a useless Internet point when somebody says thank you, thanks etc.

You get a*

Wow so rude scrubz

a useless internet point (what is that) ? for saying thank you ?

Yeah, it just shows mods who is helpful.

I think its being removed soon

sorry i am confused so is that a bad thing (which is what i would guess)

It’s not

No, its a good thing

It's a REPutation point.

yaaay

yo

whats this server about

It's an ethical hacking derver to partner their website.

The try hack me free account has provide a certificate or not ??

am i going to learn how to hack?

Ethically yes.

No, you'll need a sub to finish paths

Yeah that right 👍🏻 Thanks bro

There is any paths that totally freely available bro ??

77% of the information is free

start with basics and if you like what are you doing buy a sub 🙂

Pretty sure only certificate you get for free from learning path is pre security

You can use the search feature and see every single free room on TryHackMe (:

You can also follow the paths, but skip the paid ones

have you guys accoplished anything since learning this?

I mean, they have solid information. They made me improve a lot of skills.

I'll try to do, complete the path!

if you do dont forget to invite me on ur path to start washing money

im kidding

Honestly, paid ones are worth it. But I do suggest completing the free ones until you are satisfied, then purchasing a subscription.

For sure, I'm bagging you to washing my money 🤑💰 (BCS I don't have a piece of panny , for now 😂😂😂)

aight bet

Sure , sir/mem !!

There are no URLs in that message.

There are no URLs in that message.

Why @exotic path is silent bro

mb bro

Whoa, we do not use that word here.

which

The R word 🙂

throwback

regardless?

i love that word tho

You know which word.

ok mb i was kidding

Ohhh

btw whats ur fav song?

is that Deskel?

Respect

😄

It’s not really funny is it?

whats ur fav song

u like music dont you

i can smell it

nah

i dont think so

idk who it was

what was Deskel's acc?

😄

10/10 dodge

myfriend went afk?

Lmao

this one Ig.

yo u went to picture from 2020??

Right now it’s https://open.spotify.com/track/45FCt12lQyBdxUrLtM4Uor?si=_GdfNb9_SySrduGGkSRIlQ

respectfully my friend

😄

looks comfy!!! (bro is sufficating)

his thinking position

this guy's me

or girl

ok guy is gender neutral

male cat

I want one of those

I'd ask for more pics of the cat, but I also don't wanna look like I'm building an OSINT file on you...

what a dilemma...

his honest reaction.

scary and cute

demon eye

one of his hobbies, munching on Straws.

@exotic path has been warned.

looks less demon-ey here

what??

very cute, very nice 10/10

hes prob one of the sweetest cats ive had, really friendly.

I wanna pet so bad

The Void is looking extra friendly today

and treats, so many treats

I'd go broke from buying treats

hey everyone! does anyone know what it means when a room says it has x days of access left? what happens in x days?

it's just a regular room in the devsecops path

It makes you leave the room, in order to keep the network stable.

you get removed from the room to save resources. you can rejoin afterwards though

You can re-join afterwards

oh okay then

thanks

Hi everyone, I am quite new not only to cybersecurity but THM and Discord. I'm sorry for the noob question and apologize in advance if this is the wrong location. I am having issues subscribing to THM both debit cards I'm attempting to use wont allow an international charge? Do I need to contact the card issuer?

Yeah I'd contact them

Awesome. Thank you for your response. Has anyone else had these types of issues?

Gave +1 Rep to @naive violet (current: #2 - 2119)

International payments or the word "hack" in the name often upsets stuff

Ahh got it. That makes sense. Thank you again!

THM is a UK company but I'm not sure who they're using for payments now

support@tryhackme.com is the email

I tried using a walmart money card and they were like nope! Then tried my actual debit card and same thing. I will have to contact them on Monday.

Oh those prepaid cards are used too often for fraud

Always used to be turned off

I looked at my bank site and they were saying that I most likely can just notify them of an international charge before I make it and it wont get declined. Any suggestions where to start since I cant finish the pre security learning path until I get this sorted out?

What do you want to achieve/what is your goal and what is your prior experience?

Im mostly a beginner, Im really trying to get just the fundamentals down. Networking, Linux maybe some Python. Im interested in both network security and possibly some pentesting.

Ive done a few beginner online courses for Linux and Python and recently started some networking courses like CCNA prep courses

Thats neat! I just started my journey a week ago as well and getting started. You should be able to do alot of the free courses as well if I am not mistaking for alot of the fundamentals. I started doing research as well on what books to get, which certs you will eventually need and started with Python, alot of it via youtube tutorials or the CS50 Course on youtube

Nice! I started just about 2-3 weeks ago and I absolutely love it! What are you focusing on Nvt?

Take notes

Well, in the far future I´d like to switch careers and get a job in Cybersecurity, especially pentesting. Right now I just know that I know nothing and thats fine haha, gathering resources and gaining basic knowledge so I can start studying it next year in university.

you should verify too @muted cairn 😄

I absolutely am taking notes...for the first time in my life lol

I thought I had, I got the email and verified with my phone number

on disc, it's a different thing

ahh ok. Thank you! Ill brb lol

Gave +1 Rep to @cosmic pendant (current: #37 - 197)

So that's verifying with the discord platform
We're talking about linking your tryhackme account to your discord account for your levels etc

Ok I think I got it

You did

Ayy, congratulations

Thank you for showing me!

Gave +1 Rep to @naive violet (current: #2 - 2120)

Means we (the mods) know you're a THM user too

Oh that wasn't me but I'll take the rep

Thank you again everyone. Im glad to have joined both THM and the Discord channel. My coworkers are sick of hearing about my journey lol

Haha, yeah my friends and coworkers are too. Its nice to find like minded people and newbs here, makes everything seem less overwhelming

Unless you know the room creator, you cannot. @frank iron

oh, is there no way to find out?

No there isn't 🙂

😢

🧃

Hi

yo

hullo

hey

The place I am living at for university the next three months straight up has no Wifi. :)

Yeay.

amazing, you got ethernet right?

No.

I got my phones mobile data. :3

£%^%#$^#$

Question, could you somehow make your phone's hotspot on and relay it to a router to repeat a signal

There is no router.

don't you have your own/

There is no connector to connect the router to either.

Will prolly buy one of those fancy 4/5G mobile routers.

hmm

probably your best solution

I should probably be doing something smarter than waiting for a service to restart other than to do it while typing out sudo docker ps

good afternoon people

How's your day going

Meh, 😂

well that was fun...

my cat wants to teach me to hunt apparently

Who's winning?

I won with a shoebox and a bit of cardboard. the field mouse is back outside

@buoyant tree what about you?

It's the day I upgrade or recheck all my software choices down to the services I use

so terrible

trying out a couple new music players

trying out virtualbox

trying out other note taking apps

other browserse

I have never heard of patch Sunday 😉 😂

eh its once every month usually

It's to counter the feeling of me not using something better

which one?

trying out brave right now

That's my second browser

currently my taskbar

FF default and Brave for things that goes well with chomium based browser

eh, brave doesn't work with local banks

neither does firefox

only chrome

they did something utterly forbidden

Blocked all ua's except chrome

and I could spoof my UA but thats too much effort

I only used chrome on my work laptop, because it was installed and made default

Oh did they update the obsidian icon?

hasn't that been that always

on Linux is thinner and upside down, I believe

hmm

vlc logo also different

Since I remember the icon is like that

I usually use mpv media much more than vlc I just using vlc right now because of subtitles, the subtitles were in a format that mpv didn't pick up automatically, so I used vlc 🙂

Good evening wonderful server

I like mpv media because has no borders

not as detailed

still afternoon here 🙂

23:47 here

Or 11:47 PM I think?

your's has less contrast

you're 6 hours behind, the same time zone as where I live, now I'm in Argentina visiting my family

the same 😂

nop, your's is also more curved

Are you calling me curvaceous? 😉 😂 😛

nop, just your VLC logo

pihole seems to be doing its job, although the total domains blocked amount always changes between 10-11k

it never goes up

even if I count it manually for the last 24h

that's a trouble name, just go figure if you need to shut it down and say I'm going to shutdown my pihole 😂

eh it does block the domains

I also blocked windows checking if the internet is up

so it always shows that I don't have internet

Poor windows

arghh I give up on navidrome

can't install it

https://tenor.com/view/never-give-up-never-surrender-resistance-never-quit-believe-in-yourself-gif-25633509

eh gonna try feishin with jellyfin

UI looks good

Hello everyone
Anyone woked with Seccomp before?

..is that a company name?

no, its a sandboxing API in linux

Ahhhhhh

well that answers it for me lol

(secure computing)

Niice

Must be nice in Argentina

if you come with dollars/euros and for a few weeks it's OK, but if you live here is hell 😂

Question, how's the tech flea market there

i got a dumb question

is hacking similar to doxxing

i wanna learn to dox but idk where to go

did you google it?

@sick lance

@shell nova knows best

No you don't

Doxxing is stupid and generally illegal

Yes, I have.

also it doesn't run well on usb, I learned that the hard way too 😂

framework?

if you have the cash to spear go for it, because to run it easily that laptop won't be cheap 😂

never trust minimal requirements, if the laptop boot that's consider minimal, if it's usable that another story 😂

@normal verge no unsolicited dm please.

Damn, the NMAP room is big, but worth it

Now I noticed that actually the flags could be connected in terms of syntax to what they do

^ nmap room is a good room

very valuable

I bet i7 at least to run qubes

@normal verge mate... friendrequest will not help. Ye broke the same rule twice.

@normal verge everything OK there?

soory i just joined the discord group minutes ago.i just wanted to get to the the environment more and get help on this ethicall hacking issue.soory you to bother you mate

it's alright.

I'm ok mr Scrubz

Temple OS 🙏🏻 .

https://tenor.com/view/kto-lbow-hi-hello-hi-there-gif-25347432

Have a read over the #rules please.

👋

glorious templeos

Gonna get into thm again before I fall back into the "just watch videos and game" phase

though voices of the void is a great game to just steal your time

Wait, gime a sec

@buoyant tree are you prepare for Eid al-Fitr 🙂

So Nmap can basically also launch scripts on targets?

And not just check for ports and scan for info?

Through the NSE?

yep.

Of course, with games like World of Haiku, you can get your gaming in as well as training on your hacking skills

That's interesting. And here I thought NMAP was only a recon tool

yup

nse is a powerful engine that can assist you if used right.

never heard of that

I'll take note of that

Wish there was an NMAP cert

Got movies, games, tv shows, food all planned out

Although some of you may not respect certs, a cert is like a medal of finishing a marathon

You could already do it, but it brings great joy and ensures your confidence when you get it

It's a game on Steam, it provides certifications after completing different things that can be used on resumes

Might not be available in my region.

The food is amazing! I've been blessed and had the privilege to be invited to a few Eid meals 🙂

Notice: World of Haiku is no longer available on the Steam store.

nice

desi style iftari or arabic style

not to mention their subscripiton module being ludicrious in price for basic tier compared to full tier

Arabic style I live in Israel and I have some Arab friends and coworkers.

Who mentioned a subscription?

Here in Argentina, where I'm visiting my family I don't know any families to go for Eid

oh k

Yeah but if you search for it, there's a collection called Robot Infested Metroidvanias that looks kinda fun

their website to where they moved the game after steam

fair

https://youtube.com/shorts/cXZw6pJMpZM?si=4ABMaqGInfP6UL3h

To the Brits, is this real, or he playing?

I am really curious

It's (one of) the basis technologies for containers.

hello gys, does tryhackme have more walkthrough contents than htb? anybodies opinions

It's like the different neighbourhoods of NY 😂

Xmas is a pretty smexy name for a type of nmap scan

sounds Legit.

any LoL nerds here
don't know shit about fuck and need a clarification about a website

I’m a laugh out loud nerd

🤨

Was thinking about League of Legends

Btw, if I have a blog that is not really secure and is hosted on a wordpress server, what is the worst that could happen? Someone defacing my webpage?

Its on a free plan

are you familiar with ewu/op[.]gg

Op.gg yes

I have used that

depends on what insecure means
could dump some malicious stuff on there as well

No idea

Are you planning to have people visit your blog ox

What is it though?

Yeah, but in the distant future

patching some sherlock bugs rn and Euw/op is being a pain. What's the difference? Euw seems to redirect to op.gg but not sure if that was a name change or an acquisition or what

Its online right now, but almost no visitors if none at all

99% none visitors

Only know about op, haven't heard about euw

agh

You should be fine then. I would worry about it more if people are actually going to it

Like productivity said they could inject malicious code and stuff in it and the people that go to it then get infected

I see

By the way

I used to use terminator to work with multiple tabs through the CLI

Now I just saw that the normal QTerminal also has that on kali

So basically terminator isn't really useful anymore?

all just preference

Or maybe terminator has a bit more tweaks I think

Anyways, enough THM for today, it's 2:30 AM

Gotta go to bed

Good night everyone

Later today again

https://tenor.com/view/tyrminator-tyr-bot-redeye-gif-22046800

https://tenor.com/view/abell46s-reface-terminator-arnold-hasta-la-vista-beby-gif-18770669

https://tenor.com/view/exterminador-do-futuro-gif-20118743

Work of art

Never seen such good cable management

That's nice, but one of the cables in the middle just died. You need to replace it lol

Hm

That’s gonna be a little tough

DAAAMN

Here’s another picture

Only problem

If one of the wires break you gotta cut all those zip ties off

Then what

All that for nothing

Well not all of them

Ooo never thought about it like that lmao

https://tenor.com/view/rip-coffin-black-ghana-celebrating-gif-16743302

Done like 3 easy and 2 medium challenge rooms today

I'm gonna grind to get 0xD

https://tenor.com/view/hot-wheels-hot-wheels-loop-real-life-hot-wheels-hot-wheel-irl-irl-hot-wheels-gif-13143660

meep moop shadow is now quickly go for the sleep sloops to the beep boops

Hey.

Hello

Blind xss is very hard

Tbh

https://youtube.com/shorts/UqePw7jp0no?si=5E__JcVzPOAxFn6i

I have a voucher, but I'm already subbed (through voucher before).

How can I redeem this one?

You need to wait for your subscription to expire before you can apply a voucher

my sub is going to end @ 14th of this month, is voucher gonna expire by then?

No :)

I thought it expires in 48hrs?

😄

well, I'm happy today.

Saw that, it’s literally so crazy

There definitely should be proper precautions banks and other stuff should have when there dealing with information over phone calls

I believe you can't publish the link until it has been tested and approved by THM stuff

Last I heard, it was against the THM policy to allow creators to distribute private room codes like this - my understanding is that all rooms have to go through QA before being released, and advertisting this way defeats the purpose of having QA for community rooms.

Please verify your THM account with the bot, and we can give you a room-creator role so you can have a communication channel with the appropriate THM staff on discord

woah when did you get admin?

I've verified my THM account using a bot, What now?

hey guys, excuse me, is there any service similar to THM that teaches AI instead?

wouldnt that be programming basically

you wanna make your own ai?

woohoo just finished both of the zeek rooms

that was fun

yes i want to

sure it would be programming, but there are some kind of a hidden layer or something as i haven't make any AI before

so i don't understand much about it

hit the mother load https://pll.harvard.edu/subject/artificial-intelligence

by harvard too

oh wait

hm

ahh i mean next year, i would take 3 uni courses

hahahaha

so i am not really looking much into a uni course

rather than a

an online course

i saw some courses on UDEMY

thats online

hit learn more

right right, well, i haven't tried any harvard course before

but i will see

worth a shot. might be really good especially because its harvard

right, probably

oh

udemy

hm

but it seems like

a non premade course

it's a course that you have to attend day by day

https://www.coursera.org/learn/ai-for-everyone?utm_medium=sem&utm_source=gg&utm_campaign=B2C_NAMER_ai-for-everyone_deeplearning-ai_FTCOF_learn_country-US-country-CA&campaignid=20534215333&adgroupid=150087459981&device=c&keyword=&matchtype=&network=g&devicemodel=&adposition=&creativeid=673250035910&hide_mobile_promo&gad_source=1&gclid=Cj0KCQjwiMmwBhDmARIsABeQ7xSwmLMRV-qeJvw5-MFL3PnvYP3GYw6uwEhtcwPQEuiDFnXWZ0yYgdIaAlT7EALw_wcB

theres a coursera one for free

this one looks actually really good

i will absolutely look into it

thank you very much

for now, i awill just wait until i finish the uni year

No problem

then i can have all my time for AI

and cyber

have you played a game called

screeps?

Never heard of it

Is it good

i didn't invest much time into it but it's seems pretty pretty cool

a strategy game on

steam

where all your units are programmed

by you

using java script

:P

i really wanted to get into it but i didn't

yet at least

hi anyone main in forensics?

SUIIIIII

fake sui i mean

hahahaha

Well @sick lance is a forensics student

defenders police and attacker police

and me who before i tried cyber thought that cyber security is the path of the people who wants to work in CIA-like organizations

hahahaha

thanks
@sick lancei wanna ask couple of questions for my assignment is it okay?

Gave +1 Rep to @crude stump (current: #141 - 48)

What type of assignment wis

university. its like a research based one in cyber forensics

Hello people

greetings

Gonna bother my companies "IT" again why they don't allow the usage of security keys.

Why IT in quotes

probably just Brenda

because they behave like monkeys

she's in accounting

also valid

Lmao

I mean thats pretty common i feel like

The company is working for does

Hai

They prefer SMS and microsoft auth over everything else.

Microsoft is just annoying, also maybe just me but i dont like the random auth numbers in my phone all the time

It is indeed annoying.

ms? sure

sms? preferred? fire them

Maybe they dislike me because I used tor once to access outlook and after three years decided to block my 2FA method (Aegis Authenticator). I couldn't even remove it from my company issued Microsoft account before talking to them.

That would be nice.

Send your pfp duck after them

heh

It's a goose but I'll let it slide.

oh you said that

Oopsie doopsie

https://tenor.com/view/goose-honk-inhale-inhales-untitled-gif-16237480

Silly geese

anyone main in forensics?

Actually speaking of what is forensics? Ive seen it on THM before but idk what it is

actually ill just google it lol

Oh thats cool

We don't help with coursework/homework

➕ Gave the role Creators-Lounge to mrmrmrmrr

its not a direct help

i want an opinion

Then what is it?

what?

if u cant its fine

ill find someone else

@naive violet https://youtube.com/shorts/G5q0VvTCYEI?si=vA1XwbX6E0ljRDk6 check this out, this is cool as hell

Okay, if that's how you feel.

And I mean "cant" as in, it could be cheating which is against the server rules. 🙂

i dont think asking someones opinion is "cheating" also we are allowed to interview an actual forensic investigator but yeah fine

rules are rules i guess

Well if it's an interview you need, we don't allow them as protection of our members, you'd need to ask our Admin team for permission.

no need thanks

Great. Microsoft experiences high demand right now... Can't even properly contact my IT department to bother them

Got a couple of meetings today, will be fun

for bug bounty we should study which bugs

Web related ones I guess

Good luck

Hey Guys, i have a question for you all. Is the monthly or the annual supscription more worth it? Like is there content for a whole year?

Morning

there's more than enough content

why not start with a month, and check it out? Content seems to be in the boatloads...so I think you will have enough for a year and then some lol

I am curious what the average turn around time is from zero-day to room content? guess it would depend how long before a public PoC is released or created

depends on if it's room worthy

Nah. All sub content is open regardless of month/annual

I think they mean if they get a year sub, will they run out of content before the end of the year.

I had that issue with letsdefend, paid for a year and havn't touched it in 6 months.

There's more than enough content.

There's over 800 public rooms.

Even if you do one a day.

And they're always releasing atleast 2 a week.

the plaintext password in memory keepass 2 was also turned down but that was because they didn't accepted walkthrough rooms at that time.

afaik

Is there a Voucher for the anual subsription?

Only student.

Even then, AFAIK if you buy the yearly sub, you only pay for 9 months, so you get 3 free.

hmmm vouchers....maybe I can slip a request to one in the bosses inbox 🙂

good morning

good morning scrubz

Hi......
I am trying to reproduce this Moniker Link (CVE-2024-21413) without TryHackMe room
I have kali linux running in my VMWare locally in my windows laptop and outlook with vulnerable version in same windows laptop

I am trying to capture NTLM hash but not able to do it... can someone help me

Are you doing this on your host?

just got notice im in the siemens hall of thanks as of this morning :D

spot the stuub (doxxed myself)

Yes..... And i am following this py file to send mail. I can succesfully able to send mail to test outlook account. But when i try to listen to responder and click the link, I am not seeing any hash getting captured
https://github.com/Mdusmandasthaheer/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability/blob/main/outlook-exploit.py

And in that py file, I am mentioning my Kali linux ip in moniker link and sending it......

Perhaps something on your host can be blocking it, it's not good practice anyway to experiment with your host device.

I suggest using a Windows VM, you could break your host.

This is just my opinion though.

getting a live project today for my pen testing internship so excited

You are saying my windows laptop blocking something....ok
I have rollbacked my outlook with previous vulnerable version...... even though its not working
I am a student and my assignment involves using my own machine and not allowed to use outside machines.... not sure if my professor accepts when i use TryHackMe room to demonstrate

Ah, so this is school work..

Sorry, we can't help with this.

Do you know what on?

👍

➕ Gave the role CCNA R&S to me_grizzy

@astral grove done congrats.

Thanks 😁

Gave +1 Rep to @sick lance (current: #1 - 2144)

not yet. I was told by the main guy who runs it hes impressed with me and i had a perfect pen test report. made me so happy

Did Ego help you? 👀

no

i dont get help from anyon

if i cant do something myself i dont do it at all

im not one of those girls 😂

I just had to go to a customer

https://tenor.com/view/terminator-im-back-gif-19144173

Good day everyone!

quick question I haven't been in THM in a long time I see the view change but I don't see questions for the room, why?

do I have to click somewhere?

#site-support please, but not usually, it should be there.

about what

some tech stuff and produc thingy, turned out to be just a 30 minute small talk

damn

what modern pentest report generator you can suggest?

le brain with some guides.

So that's how easy it is to intercept HTTP traffic

We have to remember the S at the end

it is indeed really easy to listen.

I imagine how vulnerable are people on public wifi using http websites

the best way is to find/make a template, and use to to craft it manually

you're being paid for the report, not a machine generated response

Actually, report generation is fine in the sense that it's just using a template. You're not just blindly copying down pre-generated findings, it's usually just a tool that speeds up the process

Open source ones that I know of are writehat, pwndoc, sysraptor

hello guys im a new dummy here

any idea how to get started?

Sign up https://tryhackme.com/

dont working in linux!
gobuster -u http://fakebank.com -w wordlist.txt dir

Error: error on parsing arguments: wordlist file "wordlist.txt" does not exist: stat wordlist.txt: no such file or directory

thnx

#room-help please 🙂

That’s why all the homies love https

very

coffee shops are usually a common place for these attacks

Or VPN's

Aside from looking through the arp replies in wireshark, is there some filter that filters only reply requests?

Trying to google something for a while, but fail to find anything

There is opcode reply and opcode request, but I cant figure how do you set a filter for that

Found out

arp.opcode==2

heh

https://tenor.com/view/the-penguins-of-madagascar-madagascar-movies-animation-cartoons-gif-16596826

I once captured my ftp traffic that I use to sync files between my phone and pc to see if it was really was sftp or not. It wasn't. After a while I noticed I was using the wrong port...

1337 and 7331 looks almost identical in some fonts

maybe its time for specs

I already have some and well I'm still blind.

try getting the specs a pair of specs

thick glasses

I'm still sad that my eyes are so bad that VR is blurry even after getting optics.

Yeah, we have to protect our eyes

say that to my younger me. I somehow got through most of school being blind.

I’m looking straight at the sun

Jk

Sun always stares back

Problem is you can never outstare it

Until your blind

also not outpace it in the setting direction

Hi all. Best method to study without getting burned?

Pomodoro method

Perhaps

What I do is take it slow until I get tired, then I just finish whatever I do if there is little to do until the end

Get up, eat walk around the room

Think about something else

Lie in bed for 10-15 mins

But also use OneNote or just take notes

So how long do you study for continuous

Sometimes 1 hour sometimes a bit more, depends on the material that I study

If you review stuff

Usually it takes longer to burnout

If you learn something new, burnout is faster

Yea me too after an hour I go nuts

I am burnt and have already gained 30-+ new badges

But now reading nist 2.0 and dizzy

heh

Plus I have to give exams on the 29/4 for isc2

Well, good luck then

Consistency is the main key

Thank you I think I'll focus more on isc2

Btw, if I want to browse the deep web for fun. Do you advice setting up a device that I dont really need to use on a DMZ on my home network?

Tails usb and Kali Linux

I know

Tails honestly

Why would I use Kali

Also parrot is good too

Has anon mode

Yea why true

Disable saving

trying to log into my banking app on my new phone and it asked me to take a selfie to verify its me and i have no makeup on and it doesnt recognise me ahahaha

Deep web has good articles I hear

Oh lord 🤣🤣🤣

I don't have issues with my make up 😔😔😔

This isn't the channel for this chat.

It's for advanced chat

its too funny

Ah, okay. Sorry

Thank for the guidance

Where is advanced chat btw?

I cant see it

https://help.tryhackme.com/en/articles/8671900-discord-what-are-the-advanced-channels

New Kali doesn't have a dock panel down below, only small ones in the task bar thing up top where the clock is, can I install a proper dock for it?

Oh, I see

Have to level up a bit or in this case have to get my level updated

Thanks

Yep have to get to 0XD or if you have OSCP/eCPPT you get it also

He's 0xm 😝

Are you using Plasma?

Xfce

Kali default

Xfce did in the older versions but this 2024 one doesn't

I haven't upgraded yet tbh.

And I really don't want to be pressing buttons that small up top lol

I didn't have much of a choice 🤣

Nah I just wanna find out how to add a dock panel like the old version, similar to Mac

Settings > tweaks?

Yeah I'm in the process of reinstalling. I wanted to install a previous version but computer kept freezing. I know this one works so will wait and see and check out settings properly

Could add a 2nd panel but it was just as small

N I want the proper dock/dash thing

First successful time for grub not being a grub and doing the funny screen.

Veracrypt does work dualbooted on the same drive and even on different ones.

For once I tested it before committing to yet another reinstall of Windows.

Now to figure out If I want to use Garuda, Parrot or some other distro as my future main.

Header easter eggs?? Wordpress W

Hello Folks,

My friend's pc has got into a ransomware with .UAZQ file extension. However, all the file are encrypted.

Please tell me how to recover his pc?

Unless you can decrypt the files, there's not much you can do.

https://www.crowdstrike.com/cybersecurity-101/ransomware/ransomware-recovery/
https://www.rubrik.com/insights/how-to-recover-from-ransomware
https://www.techtarget.com/searchsecurity/tip/How-to-recover-from-a-ransomware-attack

You have this site that has decrypted tools for certain ransomware created by the crime unit in netherlands https://www.nomoreransom.org

Alright. Thanks buddies for responding let me check out

From the file extension it’s part of the djvu ransom family, they have a decryptor on it but carefully read through the guide before doing anything and make sure you understand everything

As much as I enjoy other people learning new things, this is like malware, if you have no idea what you're doing, I'd leave it alone and get a professional.

How do I get the dash like in Kali 2023.2a? I'm stuck with a tiny panel and it sucks

I have a silly question, but couldnt you make a simple password and hash it, and then use the hash as the password (or a certain length of it)
that way its easier to remember

or do dictionary attacks already take hashes into consideration

You can, yes.

What do you mean by that?

like, the md5 hash of password123

Yeah but are you sure a hash is easier to remember?

no, the protocol you hashed it in

the source string is

you are the only one who knows the password is a hash of something

Wdym?

I don't understand the comment about taking hashes into consideration.

40b4fcf08c5aa55de46384513b21f0888aafeefcd73eb7cba1bcc5a84e97117a this is a hash

Doesn't seem easy to remember to me

yes

the thing you turned into a hash is easy to remember

yep

ah okay I get you now

lepizloca means, like you have a simple password, like just password. Then you hash it with md5 and use the hash as a password.

Thats easier to remember

Yep, got you

If you want a predictable, complex string, then yes doing that is fine.
But, you might as well just use a password manager with a password generation function

i dont like the idea of my passwords being in one place like that

hmm

Password managers are recommended for a good reason

Bitwarden, Keypass or One Pass.

use one of them imo.

Bitwarden is my fav

keypass or Keepass?

KeepassXC

my bad, english is not my first lang lol.

Nah its just the "brand" name

Are you self hosting?

Nope

But i wanna do that

and maybe

port forward

I'm testing it right now, which works good,... unless you lose internet

Noway

But maybe i wanna do that in future

For my family

mhh

keepass sync with google drive

the poor man's password manager

keepass is nice

I'm testing XC because of the passkey support

But it isn't on mobile yet 😦

wait i think my dad has a Bitwarden organization license

i havent made the jump to bitwarden yet

i am stuck with lastpass

but i want to

Yeah my main manager is lastpass too xd

But i should migrate

To Bitwarden

get out of there!

lol

??? There's a keepassXC for android at least

and self host it 😄 .

Yeah, but keepassDX doesn't support passkeys yet, they were just added in XC

Is it okay to have 2 ovpn files as long as only ones connected?

Yup

I still somewhere have a Yubikey

But i lost it

ah found it

hehe

Keepass2Android does have TOTP

Yeah, you can have them all but you can only run one.

Ah, I see. Passkey isn't what I thought it was, I don't think I will ever use that functionality. Browser extensions make me shudder.

no it doesn't. TOTP is an addon for Keepass

But Keepass Android doesn't support it

(That's why i'm looking at changing)

Unless something is seriously broken in the implementation, I'm looking at it

on android?

yeah

it claims RFC6238 is supported out of the box

Oh

They did add it

Yeah, it doesn't load the OTP values from The addon on WIndows though

Interesting

so I wonder if it has it native now, but then I have to migrate everyhthing, and still don't have passkey (on windows)

https://keepass.info/plugins.html look at how many addons for just OTP

because it wasn't supported to begin with

It was added in 2.51 it seems, which is alittle back, but after I needed it

that's a lot of plugins

Does anyone vet them?

Another reason I want to move to XC 😄

Sweet as

@shut hawk https://www.cnet.com/tech/discord-is-adding-ads-but-with-a-gamer-twist-what-we-know-so-far/

"Will I see advertising if I don't stream?"

If a newbie/learning the ropes hacker is a greenhat, does that mean new whitehats are LimeHats and new blackhats are AvacadoHats?

hello everyone hope you guys are doing great well yesterday i tried to download a game illegaly in "fit girl" using "utorrent" it was my first time and then immediately deleted evreything cuz i got scared , and today i opened my pc and got notification im not what it is but it has somthing saying about security and dark web thing idk didnt read it tbh i deleted it . so the question is im i getting hacked or its normal and how do i verfiy if i am getting hacked

The “hats” are confusing

Don’t think anyone even uses hat terminology

Scan with malwarebytes

Run a virus scan without internet

Malwarebytes is the best.

Best thing is don’t download cracked software

okay thank you

I remember over on BleepingComputer (PC/Techie support forum) they always reccomended MBAM.

(Malwarebytes Anti Malware)

back when I first had to reach out to them in the early 2000's one of my PC's was infected with some sort of rootkit Mcafee couldn't remove, and they reccomended malwarebytes

whats windows powershell do tho

terminal

whats that

google

command line you type things into.

okay

Think like command prompt/cmd

I used to be overwhelmed and hate using command lines, now I've started to tolerate them but I still prefer a GUI. I grew up on windows.

Yeah I've been offered a quest to stream the finals

Skill issue

This will teach you for trying out piracy.

Yep, that can happen when you download pirated games

bad idea

Discord Advertisements, imagine half way through writing a message you have to watch a 30 second advertisement

I'd cry if they did it.

I'd actually forget what I was writing

I'm not opposed to some ads but some sites are so bad with it I use an adblocker

The powershell is the terminal of your computer. Basically it’s where you can manage your computer

i see

God damn ads.

They're everywhere.

Just wait, smart microwave, you can heat your food after this 45 second ad.

I can't wait until my neck chip has ads xoxo

and one thing that really grinds my gears is when a site has BOTH a paywall and an anti-adblocker, like a news site or something, "Please disable your adblocker" (I disable my adblocker and refresh the page) "You need to subscribe to read this article" like FFS, have either one or the other, not both.

"Why were you late to work", "Had to stop mid walk to watch an advertisment"

Would be as bad as prime

ngl, I'm okay with prime ads

the worse offender is twitch

I'm paying for the delivery service, music and the shows is free

NowTV.

girl math type beat

I pay for prime as it is. Why do I have to watch x3 3-4 minutes ads everytime I look to a new stream

You need to buy a sub to watch, then a different sub for no ads.

I don't watch anything live on twitch. It's incredibly unbareable. It's all vods

What ads are y’all talking about

like spending 6/7 mins watching ads to see if you like the streamer. Cause you can't see or hear the stream in the little preview they give

Also, I find it odd that there's so many meh AV programs out there like McAfee and Norton

I don't watch twitch because I can't touble tap on the right hand side to skip to the funny parts

AVG, Avast, etc. why does Malwarebytes obliterate them in terms of detection and computer resource usage?

Speculation but malware bytes probably has less active scanning

I fully despise AVG since it comes pre installed in windows now

Like Mbam afaik is some small time project some people made, but Mcafee is like this giant corporation

That sounds like some Altered Carbon stuff haha

an AV is only as good as its signatures and detection engine bestie

if it doesn't know what a malware is, it won't detect

yep

at least in most AVs

but yee I used to have Mcafee

Malware-Bytes hasn't let me down.

Comcast gave it to you for free

or whatever

IIRC malwarebytes has a sandboxing engine which is pretty good, but I imagine they just have strong signatures

I think they do.

and I remember my PC getting fucked up by viruses from drive-by-downloads etc

and Mcafee was like "this is fine"

"your pc is clean"

that's when bleepingcomputer said to use malwarebytes

If they do that, tryhackme Slack?

So many clown borders

what's the discord alternative called

guilded

TryHackme Guilded

lore: before the Discord here, we had a Slack community

oh lol

True^^ I wasn't cool enough to be here back then

but @boreal gull was

Bee is part of the woodwork

I just caught the tail end of being in the slack community lol

I came with the John Hammond wave rofl

https://www.cisa.gov/news-events/alerts/2010/04/21/mcafee-dat-5958-issues there was also this incident where Macafee would brick the pc

Slack?

Lol that looks exactly the same

Like discord, a messaging app

Oh

it would false positive and delete a critical system file

Guilded has some better QoL features Discord doesn't

Never heard of it

Guilded even has a page "Why Guilded is just better"

Thats a bit silly

Yep

it would delete svchost.exe or something and then reboot which would trap the computer in a reboot loop

Like, is there anything good to say about Mcafee antivirus?

Ngl even the name is kinda bad

yesbhahaha

they said in malware bytes that my pc is 90% clean

i was in slack for so long

i loved that thing

💀

im not cooked

Lol, i just did an nmap scan on my own network. Now it seems like we shared our Wifi password to our neighbor when her modem broke. She is still on our wifi 😮

i was here before Dark was

hi

👵

back in my day u used to be able to chat with skidy in real time on discord while he procrastinated making the website

What’s the 10 percent

Also try to scan with windows defender too

idk wait

guys i want to start learning cyber security but my pc is kind of weak 4 gb of ram it is an i3-8130 cpu is it enouph

okay now its 100%

thank a lot guys

have a wonderfull day

You shouldn’t really need a super cpu, most should be fine

Hi guys, does anyone know if there is a way to add myself to hyper-v group without admin rights

8130 sounds great