#general

How many bald eagles per gallon does a Harley Davidson get? 🤔🇺🇸

HD? bleh like 10 if it’s my dads lmao

In what use case would you need to know binary numbers

oh not necessary need vm can use physical machine to ssh as well ?

i mean if your doing low level programming i could see it

also i know it’s taught to us when we learned IP and IPv6

i dreaded that course in networking

Any nixos ppl around tonight?

i tried it and liked it

idk if i’ll go back

what ever helps you to complete the tasks, it recomend kali VM

oh why ?

Can’t mess up your main os

Wrong person

sorry * oh i see me silly lol *

idk the first thing about it, but the package manager seems weird. There is a guy that packages a project I maintain for NixOS, and I'm adding it to the docs. would nix-shell -p {pkgname} make sense or is there another NixOS way that should be used, do you think?

Kali is better in a VM to keep it isolated

Yeah prolly

seems that that method is only temporary but idk what the actual experience is

can I say if I use my physical machine and I do a dangerous lab it can be crash my machine ?

Yes

If it has some sort of malware

i’m not entirely sure i’m sorry, i only played with it a bit and liked how its declarative the pkgs
i switched to rhel and debian since

you can do whatever you like because it's your machine, VM is recommend

it's so much more consistent over on the deb and rpm side lol

That’s why thm advises you not to take malware samples from there labs

^

just use a vm it’s also nice to keep things neat

Fedora FTW!!! 🙂

ayyy yea

May I ask why you want to use your main os?

Just curious

i will say it’s a little to upstream for me
i’m switching to alma and rocky for my server vms but going to use debian as my base for my workstation

because I was thinking if I can use my physical machine not necessary to turn on my vm for it

how about non malware labs probably just soc labs ?

Tbh you can use whatever you want but there’s always a chance, remember that

I used Debian for a long time, but nowadays there is a lot of politics and very outdated software

Yeah you could download wireshark, snort etc.

politics ?
i must of been good avoiding that in the community lol

Sysinternals is very good for endpoint security

How long have been using Linux?

honestly 3-4 years here and there. i played with ubuntu when i was like 7 lol (jerk father did IT so bleed onto me) then again i been in and out of the hospital for most of 2 yrs for when i been using it frequently

so i mostly stuck to myself and a notebook when studying lol

Please who knows the answer to the tryhackme fakebank task.....mine won't allow me login to the admin to finish up the task

so not a lot, I've tried a lot of distros and a few Unixs too

#room-help

yea not much
i finally settled down on the distro hopping

i mostly stick with rhel, debian and proxmox (which is also debian)

Thanks

Gave +1 Rep to @blazing granite (current: #77 - 82)

i know windows and powershell more unfortunately ): which i mean that’s okay i guess
but im looking at rhel certs now

shiiii

lol

might need to take notes now

might watch breaking bad now

Helloworld

new here

I come in search of assistance in trhe room-help channel

#room-help

also hello

https://tenor.com/view/i-see-you-gif-16456842065466673219

Any chance you might be able to steer me in the right direction

of the room to ask or of the answer to your question?

perhaps both?

i can point you to #room-help but beyond that I'm actually mid task

actually haven't done many thm rooms in general recently, just here to annoy @boreal scarab with pings

haha "yes have posted in said room" ill let you get back to your mission at hand.

just glanced over-didn't even realize that thm had malware re rooms available

am intrigued

idk about dev but his question seems to imply there's rev eng

Hey guys sometimes when I start my Kali VM, it gets an error and doesnt start. When It locks cause I didnt do anything on it, it goes black when I sign back in. Any fix for this?

https://tenor.com/view/who-pinged-me-ping-discord-up-opening-door-gif-20065356

https://tenor.com/view/p-ong-gif-21099491

https://tenor.com/view/snoopy-table-tennis-ping-pong-gif-10337529

Please don't do this, be patient

Aye Good Morning Scrubz!

Today is Monday!

yo

hey

👋

help room pls

You know I just told another user not to do this.

It's impatient and everybody here are volunteers

so

i can type here

?

Yeah, but don't post in room help then post in here asking people to go to #room-help

damn it , i post it in the room-help

and i said to go to #room-help

sorry for that

You know, trolling like this will just get you muted. 🙂

i swear i'm not trolling

Please don't send dm's or friend requests without asking. 🙂

i'm sorry again , 🙂 this emoji is giving some scary vibes

Hello all,
I've got an issue with my openvpn installation on my VBox machine. Where i can ask my question? 🙂

#site-support

Thanks ! 😁

Gave +1 Rep to @sick lance (current: #1 - 2378)

Bro all of the sudden my pc cant connect to wifi? I put it in sleep mode then turning it back on It doesn't let me connect to my wifi anymore, it just says cant connect. I can still connect with my phone

Try to log out then log in

If that doesn't work, reboot

I'd hit airplane moce first.

Then back out

apparently it went in airplane mode on its own

Ah

Forgot that that's a thing on laptops these days

Yeah, I have my FN key swapped so I need to hold in FN to use the multimedia keys because it's too close to mute.

@chilly veldt 1 week without nic?

yuuup

gg

that so nice

How are you communicating without a NIC

sorry for my english x/

i talk about nicotine

I was being goofy

np dude 😭

https://tenor.com/view/goofy-goofy-movie-gif-1694070602111472634

Gah!

My phone wire is due to break in the car, need to swap it

rip you served your purpose phone wire

scrubz

is there any way to reuse my token on this account

i lost access to the discord account my thm is linked with

yo
i saw someone saying if a pc gets wet you should not plug it in or it will burn all the components
is it true?

@shell nova can you assist with that?

cuz in that case i will have to replace everything in that old pc
cuz water got on it while it was plugged

it can yes

if a computer gets wet in the first place from the inside its over

there are so many microscopic parts which have most definitely have been damaged already

idfk if it was from the inside

what happened:

it comes down technically to whether the water bridges components. Best bet would unplug it and let it sit for a while

boot it up later and see if it works

put it in rice

joke

so basically we forgot the water tap on
and pc was on the ground not on a table
a

I had a coworker spill a large bottle of water on his laptop and it was fine

so just unplug it and let it dry

and try again later

may sound suspicious but i just lost access to my phone number that i need for MFA on my disc account, i have full access to my THM account and the email linked with the lost discord acc

unplug?
idk when it happened but ofc years ago

oh? so is it running fine?

it has not been plugged years ago too

then you dont have anything to lose afaik

and i am scared to run it
it has no ram and hdd
idk if it even has cpu

plus it has cobwebs
that's how old it is

whats the value of the computer

any price tag

idk
i didin't even use it

it wasn't mine
+i didin't know shit about pcs

it has no ram or storage? I do not think it's going to run if that's the case...

it has storage
but hdd

SSD?

M2?

what's m2
no ssd

hey guys, when trying to install burp suite I get this error. Anyone know why and how to fix it?
sudo ./burpsuite_community_linux_v2024_4_5.sh
Unpacking JRE ...
Starting Installer ...
./burpsuite_community_linux_v2024_4_5.sh: 653: /home/kali/Downloads/burpsuite_community_linux_v2024_4_5.sh.503083.dir/jre/bin/java: Exec format error

uname -m

What is your system arch?

Where can I see that?

Hi people

Run that command tux posted

aarch64

then i assume you just installed the 32bit version

the output should be eitherx86_64 or i686

would it be easier to buy new things and use same case

I downloaded linux x64

then you accidentaly download burp suite 32bit

i don't think so but let me double check

exec format error usually occurs when theres a mismatch of 32vs64

i redownloaded the x64 version and I get the same error

Are you running a Kali VM?

yes

With what hyervisor?

UTM on a mac

Ah okay, you are on a mac?

Okay, that explains it

ok. So what can I do to make it work?

https://www.kali.org/docs/virtualization/install-utm-guest-vm/
Follow this guide

Is it intel or M1/M2

M1

M1 because aarch64

Yeah you need to find an arm64 version

Everything is explained here 🙂

ok, will read it 🙂

I personally used VMWare Fusion, and downloaded the kali arm64 iso

is that better than UTM?

Yeah, UTM is kinda slow

is VMWare free?

Aye

cool. Thanks!

Gave +1 Rep to @devout palm (current: #26 - 310)

Gave +1 Rep to @shut hawk (current: #14 - 528)

thanks!

nice, I was about to do the same heap

almost doubled it up lol

will VMWare fix my issue then too?

For personal use

You need to download the jar and install java on kali

ok

Yeah, just make sure you grab the personal use one.

I completely forgot how to change this, it's stopped working and I tried to add what it wanted but it still fails to connect to the openvpn

#site-support

https://tenor.com/view/boing-gif-6037249

Hello, can someone more experienced DM me. I'm having trouble solving some CTFs and would really like to know the answer to. Probably will take not more than 10 minutes

I had already installed it like this. It didn't fix the issue of installing burp suite though

LOL.. Very casual way to ask cheating in CTFs.. xD

lmao

Is it an active CTF?

Dude, how should I learn when I cannot find the solution?

has never seen a Linux user

Two tasks for decryption

ironically you need to find the solution to learn.

https://tenor.com/view/hackerman-gif-22344136

https://tenor.com/view/darth-vader-vader-star-wars-heart-love-gif-9324201176423421565

Which CTF?

https://tenor.com/view/pixelpro-pixelprophecy-programming-bsod-update-gif-5908433894633626331

https://tenor.com/view/hello-there-hi-there-greetings-gif-9442662

Arch users:

https://www.bleepingcomputer.com/news/microsoft/microsoft-deprecates-windows-ntlm-authentication-protocol/

Also to be killed: VBScript

Some time after 2027

https://tenor.com/view/pokemon-pikachu-clap-clapping-clapping-gif-gif-13465728489229726846

And WordPad 😕 childhood memories

Yeah...

We're not going to assist you with this as it's an interview you're doing.

If you get this position due to cheating that's not fair on other candidates.

Also dm'ing/friend request without asking is against our rules.

Okay, thank you. Just to say it in my defense, I'm not trying to achieve that. It will not be okay to get into a job that I am not qualified for. The interview is already over and I was searching for some explanation about specific cases or at least how to approach them. Just has no one to ask. I am also very sorry for breaking the rules.

In case you're curious. this fixed my issue. Had to install burp on my mac and then on kali linux https://www.youtube.com/watch?v=TTETvnyln_w

Oh interesting, glad you got it fixed! +1 on the research skills

thanks! 🙂

Gave +1 Rep to @shut hawk (current: #14 - 529)

Is it possible to install ubuntu dual boot on m1 mac as vm's dont work

I wouldn't recommend it

any problems on it?

If you can't get a VM to work, I can't imagine the problems you are going to have dual booting.

It's not as straight forward as it is normally

its cause of apple switching to arm chips and so all the vm apps dont work any more

any other way?

hi

VMs work fine, I didn't find any issues.

I tried Parallels and VMware fusion.

Hello

hy

Yeah i was leaning towards parallels. The only reason i want ubuntu on mac is cause of college

and battery life of m1 is good

Would you say Parallels is worth it ?

Gotta be careful which VS Code extensions to install https://www.bleepingcomputer.com/news/security/malicious-vscode-extensions-with-millions-of-installs-discovered/

be careful installing extensions for anything you use

hi, can anyone here teach me hacking

https://tryhackme.com/ Can

Obviously ethical and legal side of it

@sick lance

You've been banned!

Question, In Ring Toplogies what cable are the computers connected to each other by?

My new shoes have left bruises on my ankles 😔

Ethernet probably.

too tight?

No I think it’s because they’re a little loose

Alr that makes sense, Thanks

Gave +1 Rep to @sick lance (current: #1 - 2381)

opposite lol

It fits over time

If I grow yes lol

Oh lol

I thought tight

It actually hurts so much to walk rn but I can’t change the shoes because it’s part of the fit

all for the fit lol

It’s worth the pain

sometimes

Baby powder

sometimes its just pain

Double socks

Additional foam

crumpled gazette

what does that do?

Prevent friction

oh Alr

I could just buy smaller shoes but I’m not trying to go bankrupt

You can request refund, no?

I don’t think I can return them because they’re quite creased.

I was walking in them yesterday for around 7/8 hours

Ow

are they nike?

Yes

you could contact them for a new pair for the correct size

i almost did that to mine

The topology has nothing to do with the physical connection medium. You can have a ring topology with fiber

cause they were to tight

I’ll take a look at the return policy later

Too busy flexing huh :p

This is an older non-ethernet technology that even has the ring in its name: https://en.wikipedia.org/wiki/Token_Ring

so they dont need to physically connect to each computer?

I bought them for a fit and wore them out to a family event pretty much straight away

You do need to connect, but the choice of connection is independent from the topology. You can use any type of cable or even wireless link to build a ring topology network.

what does MAU mean?

The possibly meant the THM room with the ring topology section.

Oh Wireless works?

Since it's in general I assumed it was a general question.

yeah i could also use some of the general knowledge

Topology is an abstract concept. What technology you implement it with is irrelevant for that. You could absolutely connect hosts with point to point wireless links to form a ring topology. Directional wifi or even laser (that's a thing).

So it’s not always like the diagram in thm, Alr that’s easier and harder to understand at the same time lol

Wait what Laser?

yep

basically wireless fiber optic

so is it like a laser just pointed accross the room?

do homes use MAU or is it purely offices?

an emitter pointed to a a receiver which converts it back into ones and zeros

villain level of connectivity. Fricking lazors

Here's an example I found I a paper

Therefore, in these paper, we proposed a method which is approach to find a smallest cost in TSP modeling route, also with their implementation to create a ring topology for Wireless Sensor Network’s (WSN).
Ring Topology Optimization for Wireless Sensor
Network: A New Heuristic Method

So that's not only theoretical.

Neither homes nor offices use token ring these days. It's an old technology, I just gave it as an example.

cant understand this rn, hopefully soon i might get it

Regarding lasers: iirc there's banks in the NYC region connected by lasers on the roof. To minimize network latency.

ring is prone to failure if one device fails.

I find it weird that uk wiring is like that

Oh Damm This is next level stuff lol

`We build, own and operate the world’s only and lowest latency dual wireless spectrum network, purpose built for electronic trading. With the help of our patented product suite, we deliver ultra-low latency with near 100% availability. We also own and operate single spectrum long haul and metro wireless networks in both established and emerging markets, focusing on low latency, high availability connections between major financial data centers.

Depending on which solution is best suited to the path we’re building, Anova uses a variety of technology, including millimeter, microwave and our proprietary hybrid laser. `

https://anovanetworks.com/wireless/

Can I remove the thumbnail on mobile?

put the link in between <

and >

https://anovanetworks.com/wireless/

Thx

Gave +1 Rep to @bold dawn (current: #73 - 85)

Is there courses?

Amd trianin

Training?

This sounds Cool, ill have a read through after i finish topology

hello everyone

what note taking apps do you guys use?

whats up

hello

Notion rn

how yall doin

What the link of this group?

only that ?

NotePad

Great Wbu?

why?

im doin alg

Hell

because its a free note app

Hello?

Also crazy: a consortium of banks built a dedicated fiber cable between north America and Europe on the shortest possible route. Just to have a competitive advantage by having a few milliseconds less network latency than existing cables.

on your phone and computa

i see

obsidion

yeah i find it easier than other apps

build a nether portal

those milliseconds better be worth it lol

i wish

i lost my notes because of the obsidian's update

i needa change my pfp

any suggestions yall?

and i did not sync into cloud

patrick

bet

damn

boom

but i recovered some of them via data recovery stuff

ooo

patrick

da star

Is there courses and training program?

on Thm?

I been here since 3 years and i still haven't learned yet

Thm?

Try Hack Me

Yes

Do you do the lessons ?

Not yet

even i am really bad at learning

but its way eaiser here

What lesson?

Hi guys, what would you recommend if my meterpreter sessions are wonky and keeps disconnecting?

Should I rather upload a payload and shell into it ?

Mmmm

I dony know much

i reccomend https://tryhackme.com/path/outline/introtocyber

It explains the breif basics

then you can try Pre Security

Thank you

Gave +1 Rep to @errant fossil (current: #1390 - 2)

Yw and Happy Learning

And also taking notes has helped me a ton

I see

Thanks for yhe link you reccmended

yw and once you start it gets addicting to keep going onto the next task

and thats the best thing about it

How many Switches are used on average in schools and offices?

How big is the school and office?

Could be 2, could be 4. could be 10.

exactly 42

Anywhere between 1 and dozens

in my old school all devices on average could get 300mbps each device

That doesn't tell you about how many though.

the size could be like 2 kms

More switches != faster speed.

should it not be the opposite?

!= means not equal

ohhh good to know lol, Thanks

Gave +1 Rep to @wide marten (current: #72 - 86)

But yes, adding a switch will increase the time it takes to transfer a given file start to finish by the processing delay of the switch's electronics. That's not much but if we're precise...

I'm thinking about getting the burp suite certified practitioner. Would that help me with bug bounties?

Burp is a usefull tool, so it can't make it worse.

That explains it. Thanks again

Oh boy

I was looking at a website and wondering why most of it is in Swedish, then remembered my VPN 😂

Thanks Scrubz

Gave +1 Rep to @sick lance (current: #1 - 2382)

what vpn are you using?

Malware-Bytes.

when work be slow

does it have a good connection?

Yeah. it's pretty fast.

I keep it random and change daily.

Just checked it and it has a good price too, ill get it

Thanks

How much?

49.99 gbp per year

Is that just the VPN?

says security+Vpn

Yeah, Malware-Bytes premuim too

Are you a student?

yup

https://www.malwarebytes.com/student-discount

Half price for students.

Ohhhhhh Even Better

25 for 1.

32 for 2.

Can't buy more than 2.

Make sure you choose the Edu+

Thanks a ton

alr

is this new?

no

No, it's always been a thing.

ive never seen it before

interesting

Spamming problem in discord is getting worse nowadays.. especially with larger servers

I'm touching grass

Go swim.

that beautiful

where this 👀

Go fish.

where is it

Bradford, UK

New Jersey

brain eating amoeba

slay

Harriman State Park ?

Nope

Nice try

Welp. Got my foot wet. What a great start

Good job your waterproof.

Only in stagnent or dirty water.

Imagine using an output of a SHA256 hash function plus 321 rounds and use it as a password😂

N that lil SHA256 guy would be stored in a database and it will get through another hash function with salt😂

I've had a few messages bypass my requests and go straight to spam.

I mean it’s freakin mad to Remember 128 char

now go swim

ooh

woods

i ate woods

someone might actually go to Bradford thinking it looks like that lol

Haha, maybe

Can Anyone Give Me The Official Facebook Page Of TryHackMe?

https://www.facebook.com/p/Tryhackme-100069557747714/

https://tryhackme.com/games/koth/join/fb24c3629e3b94f87be41648

I Was A But Confused Between This Two!

https://www.facebook.com/tryhackme.co/

interesting

hi I need help I can’t get a vm Mac

someone can help me ?

Please don't spam over multiple channels, that's an excellent way to be muted.

#koth

Just found source code comments in the wild with api keys, ai prompts, also a freaking (This should be removed before prod)

@mossy river can possibly confirm which one is the "real" one,

This one seems real.

Last posted in March.

The other one last posted 2 hours ago

Hmm !

ai prompts made it weirder

so which one is real?

I assume the one I sent it correct, but not entirely sure. We can wait for Jabba

And I can spot some staff in the group photo from 2 day(s) ago.

@elder ravine https://www.facebook.com/people/Tryhackme/100069557747714/

Is the other a fake, or an old one?

Fake 🥸

Also does the bot have a facebook link?

It does not

I thought so, I tried looking.

I’ll add it as a feature request

Double checking I'm not blind 😎

apple chips or intel?

Amd ?

then Virtual box should work?

should yeah

but not

does it show any errors?

hi

i cand send screens here

add me on discord bro

.

the boot stops

You need to verify your THM account.

I need hep in the SOC setup lab for splunk

Splunk Installation

Splunk installation is as simple as running a command. You will need to uncompress Splunk by running the following command.

what command do I run

what is the next line of the paragraph?

screenshot

hey

Hello

Day 8 w/o coffee... I feel like death.

If this was for me I was able to move forward, thanks

Gave +1 Rep to @bold dawn (current: #72 - 86)

coffee ew

cutting out caffeine from my life as been tough.

👋 how are you?

could be better wbu

I want a nap and waffle fries.

i have caffene so i dont fall asleep studyinng at 3 pm

sound like death to me 😂

but its just once in 1 week or so

It was. Good to hear!

caffeine 😉 I know because of a song.. by babylon zoo.. caffeine

When caffeine++ kicks in

How's mama? Did they induce her?

caffeine+++!

nope, shes still trucking along

I'm still waiting for the first +....

my job is killing me, my wife is 8 months pregnant, and I am about to have a head full of stress induced gray hairs if things with work don't change

Almost the same 😂 plus I'm 🥶

aww not good. least you dont have food poisoning 😂

ego can't cook? /s

no i had the egg out the fridge in the heat

and thats a bad thing

and i ate alot of them

There is only two places where eggs are acceptable.

1. The fridge
2. Cakes.

i have them in the fridge now

...Have you always kept them elsewhere?

went to the doctor with no insuurance and my card declined so that was fun. i miss free healthcare ahaha

on the counter

and its nearly 50 degrees hgere

here

That's what happens when you move.

Lose free healthcare, chippies, buckfast, MD20/20 and your Scottish status.

Once you lose the accent, that's you.

No longer welcome back.

With the shell

someone has opened up a real chippie in dubai now

It won't be the same.

and i just need my visa so i can get insurance

apparently it is and by a british person

If they're not Scottish it doesn't count.

Scottish chippies > Anywhere else.

You won't get your battered mars bar over there.

tbh the food has more flavour here

you never lose your accent

Wrong wrong wrong

Mate, you guys don't fry your pizza, you're automatically excluded.

chippie chippie choppa choppa

Your cholesterol must be amazing

It is actually...

when i lived with my aunty she never wanted me to have an accent so i was called posh at school. moved to glasgow and it got thicker

I talked about this song.. and never posted it:
https://www.youtube.com/watch?v=ceHbsXb_P1w
you're welcome. 🙂

I keep on top of it.

I have high cholesterol.. and I'm 6' 160lbs.. lol

I come from the Black Country. I didn't like the accent so I changed it.

im not allowed to have coffee till im better its going to be rough

I hate online classes when there are 60 people and on YouTube live I prefer individual online

You should go to Naples there a great fried pizza there

Could be worse, you could be bitten by a dog...

..Thay would be ruff.

i grew up isolated from alot of people so never developed an accent

I want coffee... cri

oh shi.. you quit right Dex?

yeah but pain everyday all day and throwing up not fun

I've a different accent for different people ahahah

yeah thought you posted that to make me sad.

You can tell when I am angry because my original accent comes out

Nonono. Had I remembered I wouldn't have posted. 😭

google assistant doesnt understand me i told it to change my light to white and it gave me links to flights

When I'm exhausted, I let my accent slip. Then people make fun of me.

i souind more scottish the more angry i get

no worries, willpower!

until you reach a point where the other person cant understand you

i had an english lecturer in college and i had to translate for him

lol you're not englishing enough for a english professor.

ahahahahaha

You can't fool me, Scots are always Angry

he was also a jahovas witness who waas in to rock and heavy metal was funny

yeah my counsin lives in london and his boss is like why tou angry and hes like im not this is just my accent

That's just as bad as resting bitch face. lol

Which of the following best represents the process by which you simulate the actions of a hacker to find vulnerabilities in a system?
Offensive security
Defensive security

I don't understand either of the 2 options works

What confuses you?

Which of them acts like a hacker?

aaaaaaaaaaand 2fa reenabled on twitch as they kinda broke the system for a while so shadow was forced to turn it off as they did not wanna use authy

It means what is it called when you act like a hacker to find system weaknesses??

Is this for an exam? sounds like an exam question..

there are 2 proposition and none works

@mossy river

I remember that question

Might be the intro to offensive

no its in the leasson of tryhackme

sounds like one of the questions from one of the intro rooms indeed

ah.. ok.

Looked like a question I had on an exam/pretest.

No worries

Are you sure you are typing it correctly?

Number of *s give you the length of the answer

Ya spelling error maybe

I copied pasted

https://tenor.com/view/viva-pinata-fergy-fudgehog-big-problem-huge-problem-big-issue-gif-25642327

Which room is this for?

and why do all the w words go wh in english?? lol

because google trad is my friend

in the first

Im in the splunk room when I type splunk status I recieve the following

lunk: command not found
root@coffely:/opt/splunk/bin# splunk status
splunk: command not found
root@coffely:/opt/splunk/bin#

I am in the splunk directory and I type the instructions in the cli and it says command not found

why is that?

I type splunk search nothing happens

#room-help

ok

Will there be a room on Suricata?

Be me
Do internal Phishing campaigns
People get sent a fake-phishing-mail, it brings them to a fake-malicious website where they are asked to log in
Gather results
Check data that has been entered
See an employee tried to enter SELECT * FROM users WHERE username = 'administrator'--' AND password = ''

I smiled when I saw that. The spirit was there.

the IDS tool?

Posted Earlier, but look at it!

What are you talking about

Yup.

Touch grass especially poison ivy and drink the water.

What phishing framework do you use? If you don’t mind me asking.

Planning to use GoPhish for ours, but KnowBe4 is an option as well

Using GoPhish too, works very well. Can only recommend :)

#room-help

One of our own employees tried to hack the server hosting a landing page (malicious page that tries to make you enter your login credentials), using a bad SQL Inejction attack.
We run that page to train learn how to detect phishing.

I dunno, I found it funny :)

You waited a whole two min(s) before posting in here, please post in room help, and wait patiently, nobody here is required to assist you, we're all volunteers.

@wise cliff @sly lance can we keep phishing discussion to advanced chats, since we can't verify you're doing them legally and ethically, we won't discuss it in general, as it's illegal outside that scope.

Fair enough :)

For all the Brits, a nice history fact:

https://youtube.com/shorts/8DtSspkZEzk?si=DMeo0oZVy9nSmfln

It's not rude. you posted the same message across three seperate channels, this is considered as spam.

This is pretty common knowledge here...

Some of the fences are still standing.

Well, I'm not a Brit, and don't know the British school system, so not sure if they told you guys that.

@wild rose Let's not encourage people to touch poison ivy...

Tehehehe

..I don't see what is funny about it.

THM staff aren't paid to sit in Discord to help out members, the mods are community staff.

The discord isn't the official place to receive support

sorry Scrubs I'll grow up.

https://tenor.com/view/bender-futurama-laugh-sarcastic-fun-gif-12163274

Ironically you're not showing respect.

All I asked was you kept TryHackMe issues to the relevant channel.

And not post the same message accross multiple channels.

Hello hello, help is not always immediate, it depends on availability of volunteers. People in the community are in general very eager to help.

Sure, but give people time to reply.

To be fair, and I'm sorry to say that the attitude you're showing is a pretty poor one for Infosec in general. This is a field where you need to learn to research on your own, as things are changing faster than most can follow. It requires a certain degree of creativity, curiosity, and a willingness to learn, not simply "getting the task done"

That said we're here to help guide you, but due to time and other constraints, the volunteers here help when they can

Ooh @shell nova I have a Java revEng project

I'm sorry

I have source for most of it

Intellij uses a fantastic decompiler though

Apparently they're doing pi GPIO from Java which will be interesting

Jadx gui is nice tbf

I'll likely write up the journey if it's any good

That sounds like a terrible idea

Posting the same message over multiple channels like that becomes undesirable messages, spam.
It's good net etiquette to post in the correct places and be patient

You should probably wait more that 2 minutes before posting that you need help in general 😉

Right?
Whole thing should have been an ESP32

Probably

Instead there's a pi, an MSP430, and a CC1101

So pi talks to msp talks to cc1101 I reckon

Either spare parts, or they used what they knew

Yeah, pi was a weird choice

..I didn't threaten you

You are taking what I said completly out of context and proportion.

@summer carbon Hey, please take 10-20 minutes away from the keyboard to calm down.
This attitude isn't appropriate and if it continues, you will be temporarily muted

Hey, please stop

:mute: surtur42#0 has been muted.

Oh woops

Ignore that I asked

Drama

Not exactly

People seem to think they're entitled to volunteer's time

Is there any recommended course for mobile pentesting?

Testing apps or the underlying devices?

Apps for now, but wouldn't mind reading about pen-testing the devices themselves.

Opened a physical computer magazine for the first time in probably ten years. They still print listings like back in the day 🙂

The only "good" one for apps I've seen is SANS, super expensive

Do they still sell Linux magazine in the stores?

The norm

Any that's under 100$~, can't afford SANS right now.

I've been offered a coffee per DM to help somebody

I mean by that point you're no longer a volunteer 😉

Don't know of any good ones

I declined^^

Thanks anyway.

Gave +1 Rep to @naive violet (current: #2 - 2152)

hi guys i can't connect my open vpn to hack the box

i am using open vpn on windows and imported the file into open vpn and connected it but it's not connecting to tryhackme

gives me OpenSSL error for certificate fail

#site-support But to double check are you connecting to HTB or THM?

i should be connecting to THM

Ok #site-support please 🙂

#room-hints please

Thank you 😊🙏

You can't modify your own Rep... Silly

Cmon man

Chats dead 😵

Yeah, happens now and then.

#koth please

mb

the server doesnt respond

i can't even ping it

is it a porblem from my end or is it normal?

VPN connected? Some machines don't respond to ping.

no

how do i use a vpn with wsl

I use a VM. Don't know about WSL. I don't even use Windows.

same way you use it anywhere else, tbf

So just sudo openvpn <vpnfile>.ovpn?

should work

└─# openvpn Alzahrani.ovpn
2024-06-10 22:27:18 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-06-10 22:27:18 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-06-10 22:27:18 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-06-10 22:27:18 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-06-10 22:27:18 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-06-10 22:27:18 DCO version: N/A
2024-06-10 22:27:18 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-06-10 22:27:18 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-06-10 22:27:18 Cannot load inline certificate file
2024-06-10 22:27:18 Exiting due to fatal error```

might need to regenerate your config

or try another server.

also I wouldn't recommend running wsl as root

oh shit right

i just remembered 💀

I wouldn't recommend running wsl, period 😂

why not my laptop doesnt explode

Anyone seen firmware formats like this before?

I'd recommend using a VM fr.

never

what that? versions?

Different features etc

But it's lots of records with the same format, within each file

Looks almost like s record with extra

the comas throw me a bit

it reminds me on gcode

has tryhackme help you guys get a soc analyst job?

That's with wrapping off

It's so heavy

└─$ sudo openvpn Alzahrani.ovpn
2024-06-10 22:30:24 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-06-10 22:30:24 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-06-10 22:30:24 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-06-10 22:30:24 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-06-10 22:30:24 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-06-10 22:30:24 DCO version: N/A
2024-06-10 22:30:24 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-06-10 22:30:24 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-06-10 22:30:24 Cannot load inline certificate file
2024-06-10 22:30:24 Exiting due to fatal error```

for some reason it looks for me like stream of coordinates alike this

just im sure that i saw that before =/

looks almost like a list of hashes

It's definitely firmware, they're all different length like S-Record is

Plus I have versioning and comments

Trying to take a nap, and this kid just keeps screaming at the top of their lungs outside....

https://tenor.com/view/frustrated-upset-annoyed-stitch-ugh-gif-12794223972996305063

this reminds shadow of the 1948 beaver drop

Does someone have advice, Cause i learn things very good but also forget them quickly or just dont remember it very correctly

I have also been taking notes too it has helped

Take good notes and refer to them often.

Repetition is key.

but its hard to remember of my head

like do you forget about it after a certain amount of days

Be me, respond to an EDR alert at work. TestApp3910.exe hmm, that sounds awfully familiar. Look at the path and yep steamapps/common/Sid Meier's Civilization III Complete

lol someone really wanted to play Civ III on their work computer. Was detected just due to being an old game exe with some suspicioius indicators

Yeah.. I've seen Steam on a few machines in some orgs... lol

Don't worry I was sure to False Positive and unquarantine it c:

Yeah lol, this guy is the head of their firm and often plays Civ VI so didn't supirse me too much, just made me chuckle

yeah like i learn a topic and after a few days while im learning some new topic the old knowledge is less, its not like i forget everything but its just that i dont remember the details

i want to know how do yall reccomend learning

what I always do is just revise, I look over my notes about the topic to turn on that subject back in my head

not surprising

and do flash cards

pro tip

had this issue

As EZ mentioned taking notes and repition is indeed what works for me. Do nmap on every room until you got the flags basically memorized

after a bit of troubleshooting

i write notes, should i go over them everyday or weekly?

cd into the folder where you have the config file

I mean.. I used to play Dwarf Fortress at one org.. very slow days.. lol

and use sudo

sudo opnvpn name.ovpn

any website you use?