and the string that i have given u is altered

i am not that stupid buddy

I'm not your buddy

i am just asking if anyone have experience in the pii disclosure so that i can confirm the vuln.

If you think you have found something to disclose, report it through the appropriate channels according to the bounty

Let's keep it civil and not disclose potential sensitive information. 🙂

I am not sure that it is a vuln. as i dont know even if i am look at it right. As i have no experience with such PII disclosure so that why i need to confirm if it is there or not.

Report it. It's likely not in scope for you to determine whether the data is legitimate or not.

I know buddy and have not told u anything related to the organisation and the original string that is involved

There is no harm in reporting something that turns out to be a false flag.

If you are not sure the safest is to disclose nothing and report it properly.

ok

Thanks for the help

I just have to look more into it and see if i can get it.

Sometimes they have a history of reports, I know hacker one does, you may be able to see if someone has already submitted something similar

Then you know if it's bounty worthy or not, been a while since I had time to get on the site tho

Thanks for the help @flint wolf now that is some kind of help i would like to get if i am asking , reporting too early might be a loss on my end but not for them. I am not saying that i won't but reporting too early would do me no good.

Gave +1 Rep to @flint wolf (current: #1421 - 2)

Good luck! I hope to get more into myself soon

Thanks

Hello guys,
I need a hand. I am trying to retrieve a file from website by suing telnet (room --> Protocols and Servers) . but I don't get access. have look with the attached picture

please only use #room-help for this questions

Morning

moring bro

Hello.

General debate question: when do you think it's okay to call yourself a "hacker"?

i find it a bit cringe nowadays cause everyone calls themselves that even when they just learned inspect element

The question is not about what everyone calls themselves, but when you find it okay for you to call yourself that.

It's an inwards-directed question, not an outwardly one.

Oh Alr, Mb (to answer that question- probably when you can hack things, devices, etc.)

I found a Google Dork of a CCTV camera of a factory within the arctic circle at age 6. Was I a hacker then?

I just recently learned that what I did was... indeed "something" in the community, but I find it too much for too little.

Was it gaining unauthorised access to data, if yes then its hacking

I still don't call myself that and have worked with intl' intelligence agencies and started an investigation recently alongside them.

I don't think I will ever call myself a hacker. I have been pondering this because of the title I recently got from reaching level 8 on THM.

A weird one, yeah.

I like loosing up the terms that are looked upon so highly or are taboo-ish. This is a great perception of this.

yo

breaking stuff is fun

https://x.com/am_not_NSA/status/1814172242462621702?t=UhHylQhIZkVQjcXyleP1hg&s=19

what kind of stuff

it's important...

bones

bones are one of them

I believe one thing that differentiates a hacker from someone else is a drive to learn about anything and everything, a curiosity that doesn't need to have its hand held. If you're reading RFCs and NIST publications for fun you're probably more "there" in my estimation.

One of the major signs that you know subject matter inside and out in life, and this holds true for any field of study not just anything IT related, is when you can successfully explain what you're doing to a lay person in words they'll understand.

As an example, using a "three little pigs" analogy with a 50+ year old television and film producer to communicate the protection a virtual machine might offer.

Hacking is a mindset IMO
I design, build, and fix electronics as well as being a pentester for my day job
I really enjoy understanding how things work and how complicated systems fit together. Electronic, mechanical, software, or even human systems (like people and processes)

This yes. I only focus on software and networking though

The field is like 100 miles wide and you can go super deep into any topic, which I also really like

I've picked up a lot of hardware hacking, some ICS/SCADA stuff, infra, webapp

So many different areas

its awesome the amount of stuff to learn and the depth you can go to

what do you do with hardware hacking?

Hi, I just completed the Jr. Penetration Tester path. I'm wondering whether I should now pursue the Offensive Penetration Testing path or the Red Teaming path. Which one should I start with?

crowdstrike massive bsod

this is why EDRs are bad /s

I think offensive pentesting

ok thanks

Good morning btw

How yall doin

also windows servers?

that would be a disaster where I work

Yep

Dayum yeah

I know several orgs where most of their estate is currently on fire

Everything, they even dont boot anymore

It's... Gonna be interesting

Just gotta hope that it checks for updates before hitting whichever condition triggers the BSOD

Im afraid not

oh lol they found a workaround

Has that been confirmed?

nope

If it's the one I'm thinking of then it's not scalable

Nope, the safe mode one

Indeed not scalable

Will work for one or two systems but afaik you can't automate the safe mode one

Aye

You can, but that will not be easy. You have to have a working system to automate a safe mode boot

There is software who can do it, but you have to install that first

It's not been confirmed that the update checks occur before the BSOD?

... Exactly

But idk how long it lasts between startup and the bsod?

There is a high chance it doesn't check for updates first... Right?

Afaik BSOD happens during boot, which is why systems are getting stuck in boot loops

There are already airports that are down... No traffic allowed

At least, no departs

I'm assuming this will be to do with a driver running in kernel space, given the symptoms. So, uh, yeah, I wouldn't be surprised if the drivers get loaded in long before any automatic update checks occur

Probably

That's also assuming that people have auto updates enabled in the first place

A lot of orgs won't to, uh, prevent exactly this from happening

It is related to some "Falcon sensor"

Yeah, that's the thing that runs on the endpoints to send metrics back to the EDR...

Ahh yeah

That's the whole thing lmfao

Seems like some people cant even boot in safe mode

In orgs, or something

Crowdstrike Falcon Sensor putting hosts into deathloop

Yup

How could this even happen

Update not tested or something?

or the "it works on my pc"

Don’t believe it’s affecting Mac users from my understanding

Whole world is going crazy in the down detector

Banks, airlines…..everyone

Which one btw?

Windows? Or something

ok you guys, which one of you is messing with the planets Internet?

what all seems to be down?

all, is correct

lmfao

My Internet is fine.

Moved house too, so it's even better

all seems to be fine 🤷‍♂️

Nothing wrong

Mainly windows 10 users

I mean

Where on downdetector

Which page

I don’t have perms to post image but look up literally anything

Ms 365, aws, foxtel

Ahhh yeah I see

Like look up banks, airports, software services that are customers of crowdstrike

Rip the economy

🪦 --> economy

Stocks can’t trade on LSE

Rip crowdstrike stock

is crowdstrike public?

Can’t use automatic boarding pass in airport too

Yes

if it is, imma buy it tomorrow

nvm, I just googled it

Best time to step in now

Crwd usually beats earnings and recently got added to spy

But overnight trading their stock down 10%

Rest of the world stock market is down

Falcon Sensor is an agent that CrowdStrike claims "blocks attacks on your systems while capturing and recording activity as it happens to detect threats fast."

At least you cant get attacked in a bluescreen loop

So it does the job

Interesting thread of it unfolding
https://x.com/troyhunt/status/1814174010202345761

Hmmmmmm

FAA telling all flight to land

Due to computer problems

I'm not sure how crowdstrike would put your computer into recovery

Because its in C:\Windows\System32\drivers

And some driver crashes

does anyone here have a copy of the sys file in question?

Nope

It’s Joever

I think not much people on the world have that

Because you cant get it now

Good thing I don't use crowdstrike then

https://tenor.com/view/kek-cat-kek-cat-laugh-laughing-gif-25202548

adversaries only wish they could do what Crowdstrike did by accident

Plot twist, crowdstrike has crowdstrike on their own servers

And can't fix it

Oh they released a fix

that was fast

It's gonna be sooo hot riding to the car meet then

prob just rolled it back

guys internet outage

what is it abiout?

crowdstrike failed update

ahh they say microsoft too?

its crowdstrike affecting windows machines

Oh its nothing

Just an EDR a lot of big corps use

And it just gives an BSOD boot loop

Shouldn't of pushed on a Friday. Now they've got the whole weekend to fix now 🤣

All seriousness tho, what a interesting situation

how ? can you explian more?

True

Alright, they pushed an update, and now every Windows device with it, is in a BSOD boot loop

Simple as that

ohhh

so can't they roll back?

true man...

so the situation is that windows server using Crowdstrike, are in BSOD boot loop?

correct

?

@rapid merlin @candid niche

True

Correct

okayy

Also Windows 10 and 11 btw

Not only windows server

ohh ookayy

so can it be hackers doing something?

Could be, probably not

Looks like its just a "bad" update

yepp let's hope so

..

Idk

We'll see

ahh okayy

Hey Guys, I bought an old Kindle yesterday and wanted to ask you if anyone had any good books about hacking? Any recommendations?

thanks for makinng me understand the situation @rapid merlin

Gave +1 Rep to @icy epoch (current: #115 - 60)

No problem :)

Msft team working on mitigation right now for 365, apps, etc

https://www.amazon.in/Hacking-Art-Exploitation-Jon-Erickson/dp/1593271441/ref=sr_1_2?crid=3A8J03EBBDYM8&dib=eyJ2IjoiMSJ9.m2LLlcE06pna35wriZ6F8V8L8aM_uc2f3tpPsYPVcDbqXzXR4u7-gMGdadzM8PczTcC7pZtnOsqqB5SnFbs0KwojV6bXGkCPtWQHFDzT4tWf_Kisq_nEgwfGO_QB87gbzHIBHeYOl-GtegrTIQOoim0mr3mkPCzIlP6bITDZeA1_PkpwFHkHHmxCK2O0FrtAey0Or1VQT08easLBuRW7ufdqu8hpKuIG6-5rAWh_4oY.KuauhTXc1TR5mtD90CN5zhj6l_KF2X_XTiq5GmzPiw8&dib_tag=se&keywords=art+of+exploitation&qid=1721375846&sprefix=art+of+exploi%2Caps%2C704&sr=8-2

https://www.amazon.in/Black-Hat-Python-2nd-Programming/dp/1718501129/ref=sr_1_34?crid=MJORBLLQSCOZ&dib=eyJ2IjoiMSJ9.Bom8FkaijenOReeATKRJKTTF4lCltklthfw81xQighWsx4vTvANJy9FqrELt-_-vq1SVkqTTL7Lwu7l8X43Vzi1WKMldUe-CKCwDtPxSwSNF1M4wY48uQjMPOjYOkUUFFqv_y7w_GESVTXsIVhZUsksy849iKYNwJsb8T76EVmisOfqWWC60HpsjFkMMwEX1.RMb-AXLD6E-vQ6VQyKUVK3au-W846IJp1xT-bN0apBo&dib_tag=se&keywords=hacking+books&qid=1721375898&sprefix=hackinng+book%2Caps%2C324&sr=8-34

correct me if i am wrong or guiding wrong

ohh i see, then this update will be having their weekend....😂

CrowdStrike is now in the process of rolling back that update globally

Hopefully no poor intern, if any, gets blamed for it

Check out #bookclub

Some good recommendations through the channel and pinned posts.

Who's affected by cloudsrike?

Fix if you're affected by the rolling blue screens...

1. Boot Windows into Safe Mode or the Windows Recovery Environment
2. Navigate to the C:\Windows\System32\drivers\CrowdStrike directory
3. Locate the file matching “C-00000291*.sys”, and delete it.
4. Boot the host normally.

Here now because our infra guy just shared the news on office chat on Friday night x) cant be good news

Oh nice

Good thing companies don't vendor lock into Microsoft by default right?

...right? 👀

You are joking... Right?

Companies love Microsoft

Nobody ever got fired for recommending Microsoft

Exceptions may be Apple and Linux Foundation, but that's probably it

Maybe not even apple

Would be the same as crowdstrike running crowdstrike on their own servers

I don’t have the crowd strike so I’m good yes?

Anyone know what's causing this worldwide network Internet outage thing?

Definitely striking the crowd with the update

I smell Windows

I wonder if there we two hiccups at the same time, or if one is related to the other

Did y2k38 come early? 😎😎

on a mac?

Yep!

looks like an iMac I think

something like that

Windows xp/7 I think?

2014

Is it to do with crowd strike?

Why is this friday so quiet

Apart from the cs shit

I got sent code and they included a 500+mb node modules folder 🥲

Ralph is back at it, breaking the Internet

https://x.com/samwhyte/status/1814206619997118620?s=61&t=qmaE9BTjagP4p4kimJH_qw

https://www.indiatvnews.com/telangana/hyderabad-microsoft-outage-passengers-get-hand-written-boarding-passes-as-services-hit-at-hyderabad-airport-see-pic-2024-07-19-942623

LOL

What is the possibility that this is a global cyber attack and not a “faulty software issue”

Very small

I saw that too haha

Doesn't sound like an attack

Just something messing up in the background

"have you tried turning it off and on?"

They could do a lot more if they had access to a driver update lol

Yeah, there is no profit for the attacker

Pretty low

Also just annoys the world so yeah

That's why I don't get DDoS attacks

It's just a troll thing

They done fracked up good and proper

What has actually happened though? Can someone explain?

Basically screwed global transportation

Especially airlines

And transactions

Bad driver is causing infinite bsod/reboot loops

But what about the flights being grounded and bad transactions?

Well, in terms of what is happening. Crowdstrike is actively causing companies to lose money : )

Workaround is to boot safe mode, nuke the driver and reboot

Lot of computers use crowd strike

And supermarkets not going through

They can’t use computers

Oh true

Their computers are down, sooo

Yeah I'm dumb

(/servers)

911 emergency services are also down in some states in the US

I always forget what crowd strike is lol

I feel sorry for the it folks in the trenches having to manually fix everything

It's an edr iirc

That's another problem, 911 should not rely on windows

True

yes

Well they do so unfortunately

Windows is fine

a good one even AFAIK

well, when it doesn't cause world-wide breaking

My sister works for delta and she’s saying it’s hell for the airlines

And airports

Yeah but if windows has a problem (or software for windows), they must have a backup

Until they muck up updates twice in a row

XD

They have to do departures and updates on a whiteboard with an eraser

To be fair, this is precisely why enterprises tend to hold back updates for a few months

Dunno if crowd strike has an option to delay though

So something is happening on crowd strikes end causing it

Yes

mmm, you'd think there would be less companies affected if they did

And bad drivers are being affected

Or is it theirs I'm confusrd with it

I mean, that's the catch-22 isn't it? that when companies don't update their stuff, they get EnternalBlue'd and when they do, they get CrowdStrike'd

Probably

The fact so many people rely on crowdstrike is astounding

ffs John

That made it made sense

it's a good product

I know it is

It's a cyber solution for companies basically

But just in general dependency on one company

Not surprised

so obviously many companies use it xD

But it's affecting computer drivers

Consolidation to one company for security services is a huge bottleneck

Is that it generalised?

So do antiviruses and other solutions

Yeah

Vendor lock-in to one company is a huge bottleneck

"The Cloud" is no exception

This is true

How can something like this even happen? Did they forget to test their updates or something?

Probably ||=waarschijnlijk||

Could be that their test environment does not reflect the reality too well

Possibly

Or the Jr. Dev just finished it and pushed

Works on my pc!

Always blame the intern

Today is hell on earth

Please kill me

no sir

Please

you must survive to witness the chaos

I have had enough

Why that

Enjoy the show

https://tenor.com/view/spark-dont-care-glass-chaos-shattering-gif-3538180

me on vacation ^

Yours?

Rip

Did you check the news?

like any news site?

Every machine in the office. Including all my CCTV monitors

🙃

I am aware 😂

right right

I guess you guys are the lucky winners of using CrowdStrike EDR then

You know the fix, huh?

I am currently in a control room full of blue recovery screens

Make sure to buy crowdstrike holdings in the morning

Yeah but fr

it's only down like 3.5%

They are like -14 or something

nah

Blame the IT department.

I told my boss not to allow IT to touch my equipment did they listen? No

send link pls

Markets will overreact like they always do

they see something like this and it’s instant sell off

https://www.tradingview.com/chart/?symbol=NASDAQ%3ACRWD

Ah sorry I was looking at yesterdays prices

on robinhood’s ass 24/7 trading it’s down 15%

for a moment I thought CS was a UK thing

📉

yeah down by 15% I see now

KEK'd

-16%, will be even lower when the market opens

I'm ready

London stock exchange is having problems

So sucks for them they can’t buy what we can

Hehehe

Everyone is having issues 😂

To buy, yeah?

I just wanna see the US markets open and see what happens

It’s gonna be a bloodbath

1000%

east coast is just starting to wake up on this

This problem is affecting the whole world. Nearly the infrastructure at Mercedes is facing this issue

Yeah it's a problem

Morning, does anyone know of a decent tool to search ALL of github for keywords? Appreciate anything will be rate limited etc

Hotels are gone can’t book those anymore

Did you fix yours already?

Have you tried the search bar?

Pre-market value is at -17% now

Otherwise google might be your friend

jesus

god damn it’s sinking

NASDAQ gonna have a field day

not in the good way either

Imagine your clicking to buy and it says “error has occurred”

oh no xD

yes I wanted a tool to automate it and look for secrets for example

Github warns people when it detects passwords in their files right?

yeah

it didn't warn me about a discord bot token

Oops

What’s this big IT outage going on?

Crowdstrike rolled out an update and its not working

Affecting millions of systems

Yikes

finance, transportation, telecommunications

Causes bsod loop

Airlines hit extremely hard

Needs safe mode boot to fix

Yes

With bitlocker it’s a mess

Yeah I’ve seen Microsoft workstations were shown the blue screen

Manually at that

The world is waking up to it

Bitlocker makes extra spicy

So it’s only gonna get worse

buckle up for fun!

I mean it’s fixed now

Ish

Well

Workaround is known, update isn’t being pushed

more coffee

Not getting worse ig

In theory, they rolled back the update

Yeah I was gonna say

Nothing new getting hit yeah

Hope 401ks aren’t planning on being cashed out today though

Bad stock market day

But the fixing will take a while

Everything existing needs unfucked

millions stranded because of the airline grounding

Getting close to we're past -19%

xD

Damn

Buy that shit tomorrow

Easy buy low sell high

Crowdstrike screwed up bad

Someone’s getting fired

We know 😉

bet it was dns

Their stock hasn't dipped much

Am I completely dumb or what's happening? Why doesn't Google understand "from EST to CEST" and gives me CEST to EST?

only -20%

Yeahhh not much

Birb you going to DEFCON?

Can’t imagine crowdstrikes contract will stay strong 😂😂

My brother has been on call since 3am due to the tech issues lol

one letter diff moment

nop

That’s because the US markets haven’t opened yet

Wait till black rock hears about this

that's rough

Oh yeah

I'm not too. It's very costy for me

yea same

I'd have to pay out of own pocket 😦

Hey birb

Hi

Mmm what does he do then?

System admin?

Honestly he’s been through so many jobs I’ve lost track

He’s a high level technician for a company so when their clients have issues he’s the one called to fix them

Is it a Microsoft issue or a crowdstrike issue ?

Sister having a field day at the airport for delta

Crowdstrike mostly

A bit of both

microsoft has always issues

But mostly crowdstrike yeah

Unfortunate

Isn’t it pay day too for a lot of people

It’s Friday

mid month yes

@shadow loom -20 already

yeah

That stock is gone

READY YOUR WALLETS: <t:1721395800:R>

Bro

Once Dow jones opens its selling off

Yayyy

You already know investment banks and institutions are selling that

High risk high reward

somebody help me its urgent i have described my problem in #site-support

gambling™

They control the markets

They make the risk

Unless your GameStop during its meme rally

Partly. It's a big corp, crowdstrike

Is it a crowd strike or Microsoft issue, when can I find more details place

Anywhere on the internet

Its a matter of time till the stocks will higher in price

Crowd strike.

Average annual return of 7% on the S&P 500

The stock will recover after like 3 days

Prob

Institutions will buy it back and fuck everyone over

Greedy greedy humans

Another subject,

https://cybernews.com/news/fbi-unlocks-trump-shooter-phone-cellebrite/

I connect the name crowdstrike to a c2 so it do be gamba.

INteresting

oh well, quick shower, some food, a nice roadtrip outside in the beautiful weather (for once it's sunny outside) and I'll be back and ready for more mayhem

with some outside help from an Israeli cyber intel firm
ah yes... those guys are pretty wild

How is crowdstrike responding ?

By fixing it

This

And they'll say, oh sorry wasn't intended, hope you all are not angry on us

Has there been any communication or link that back this up ?

Well prevent it from happening again

Not much

But yeah

Lemmie search

Most are saying auto push? Not sure what admin controls available. Usually protective software they don’t want delays

matt has gone mad with power

https://cyberplace.social/@GossiTheDog/112812460186281882

This ss. cant find the source

hi

Cellebrite is an amazing bit of kit.

Israel have some great cyber firms

40 minutes woo

I have a cellebrite tablet and XRY.

I checked my computer for the bad sys file :< I no has it

I’m disappointed… I wanted the thingy just to squish it

https://infosec.exchange/@0xabad1dea/112811901322200025

how much did it cost?

Both pre-owned, so not much. 🙂

Free 99

my free scam :o noo

So many people still falling for the free 50 dollar steam code.

true that.

Probably, but testing an isolated lab machine would have prevented the chaos

That is a possible vector. I agree

Previous job I had, they didn’t have a test environment and I mentioned possible issues but it was largely ignored dangerous

I think they didn’t want to spend resources on a test environment

Testing in prod works until shit hits the fan

Yep

Gym started out as such a chore today

So much muscle soreness

I've only been to the gym once in the last 2 weeks 😦

I haven’t been to the gym in years ;_; but I do other things

Soon ™️

Just dropped £2k worth of stocks in CrowdStrike

Hmm? Did you sell it?

Honestly, I still believe in crowdstrike

Yeah me too

Imma buy it when the market opens I think

Companies are going to explore other options 100%. But until then… it’s a big thing to change it up

The US market will open in 2.5 hours.

No, right?

in 4,5

Yes 15:30 cet

It’s 6am on the east coast

3.5 hours

mmm

So 3.5 hours 😀

Hehehe

Middle

I think it’ll fall and then rise and end up slightly low at the end of the day

Birb you going to buy?

I've bought

maybe

Ahhh

I'd wait, I think its going to be lower when the market opens

Maybe it will fall 10% more

But now its -20 right?

yeah it will i guess or hope it should 🙂

going up to -15 now

Oh its rising again

When the market opens, it will fall again

Yeah

https://www.bbc.com/news/live/cnk4jdwp49et

😬

does they enclosed how the issue generated?

Bad update from crowdstrike

It’s been rolled back but anyone who updated during the time of bad update is affected

yeah but which part, like i am following Marcus Hutchins to see if he makes an update but nothing so far

Basicly what we already knew

Easy fix. Safemode, rename folder, reboot and new falcon will be downloaded

I've only just woken up so I didn't

Ah fair

And it provides context to anyone else reading the convo

Yep. But my system didn’t have it ;_; am sad… I booted just fine

I meant, the director said what we already knew

His official statement

He told what we already knew

they have to say something

It’s less about how easy it is.. it’s more the sheer number of systems and workstations affected

"team is fully mobilized"

ye no kidding

I sent the article to my cousin who works in cyber and he immediately sent me this back LMFAO

Wait I better be able to go shopping today 😭

Amazon day is over

A good reason to be able to pay cash.

True

Sad cause many places here went cashless due to vandalism during burglaries

@shut hawk :)

Yeah yeah I saw, I didn't feel a need to reply

Alr

Why didn’t Copilot stop this from happening ;_;

Lol

Guess the manual checkouts workers have something to do now

Pals, I started working at the cybersecurity firm Crowdstrike. Today is my first day. Eight hours ago, I pushed major code to production. I am so proud of myself. I am going now home. I feel something really good is coming my way tomorrow morning at work 🥰🧑🏻‍💻

https://tenor.com/view/cat-annoyed-stare-side-eye-gif-3352035419166581197

Nice you got a job there! Time for a vacation after such good work!

Lmao

@devout palm you did a fantastic job

Indeed

Heap im proud of you

#1 new hire of the year

so, how's everyone today at IT Desk support

https://tenor.com/view/ron-swanson-nick-offerman-gif-7139434320643956148

https://tenor.com/view/i-dont-know-what-youre-talking-about-donald-winthrop-the-oval-what-do-you-mean-im-clueless-gif-23483532

Really good, everyone is on vacation, and we dont use crowdstrike

I know I feel like shit taking care of everyone's BSOD

Soooo

we are too poor to use it

We use another EDR

can't relate, my whole manufacturing site is offline as of now

Thank you all for the support! I'll continue updating the infrastructure with my passion!

I feel for anybody working in a SOC who uses Cloudstrike

I’m gonna go in early and see if I can help the team. Not my department but I’ll try anyway

someone should kindly help with voucher. thank you

atleast theyre going back up now with the temporary workaround crowdstrike provided few hours ago

Email support for that

Cloudstrike o_o

You want help to redeem a voucher?

Or you want somebody to gift you a voucher?

https://tenor.com/view/cloud-ff7-gif-26108545

Gift

The whattt

This isn't the sort of thing we do here, there is giveaways now and then, you just missed one.

Oh man… the workaround supposedly doesn’t work for systems with bitlocker

Uh and every system basicly has bitlocker

At least

Should have

hi guys

hru all

hi

o/

hi scrubby

The Crowdstrike issue is giving blue screen of death, so will we be able to access the SAFE MODE

Yooo they made memes?

hahaha i get it

Ah! I seen this on twitter this morning

Hi Mauve.

if youre lucky, some production machines got caught into bootup and shutdown loop, so there's no accessing the filesystems

Aaah I’m dying

yeah for that i guess we have to work with the disk directly

Dam they'll be shut down right? What happens with the clients if they get attacked and the SOC got affected?

hru buddy

Im OK, you?

I honestly have no clue what will happen, but it probably won't be pleasant to work with

Okay, thank you @Scrubz

Gave +1 Rep to @sick lance (current: #1 - 2512)

Looks fake but I love it

Hey Boss do you mind if I push the update today and take the day off tomorrow. We never had issues with my code so far.

who tf capitalizes OK

bad

...Me?

Waking up as linux user:

only person itw

Makes me more special and unique I guess.

OK

😎

@boreal scarab Did you do it 🫢

do u think youre edgy

Matt is the problem

Not at all.

Ralph broke the internet

Gawd I should go to sleep

Do you think you're edgy?

no im cool

are you

Alright last one

Evening

I'm not sure about that... 😎

do you even edge?

why not

do u think ur cool

if so u arent

…. 😎

I don't even think I'm cool.

But-

You are

I shut down the Internet server that holds windows devices. My bad.

I'm wearing sunglasses because it's 🌞

:(

https://tenor.com/view/it-crowd-jen-internet-richard-ayoade-katherine-parkinson-gif-7396929

First day on Kali Linux I'm a haxxor

its cold in scotland

larper

https://tenor.com/view/fortnite-banana-kali-kali-linux-linux-computer-gif-20207141

oh god dammit. They specifically wrote that you should not hack other systems 😄

gasp

Who really reads the terms and conditions

true that

this is how you become human centipede

It's currently 19°C and very sunny.

i am eleet

who will take bets when the first looting will start?

tell me in fahrenheit

https://en.m.wikipedia.org/wiki/July_2024_global_cyber_outages

https://www.google.com

I don't deal in F.

do u know how to program

Only C.

Heheheh

Yes.

what languages

Scrubz only knows C

English

Scrubz uses C and C++

hehehe

can you program a discord bot that automatically converts f to c

Python, Visual Basic, Pascal, C, C++

vice versa

Oh and assembly.

i do ruby

😎

o_o

Wooooowwww

Brutal

That’s sly

How good is kaspersky

you wouldn't get this with any other guy

You'd only see putin

No that's sky 😎

why cant people hack the people who hacked crowdstrike

I used to love it in the early 2000s

Legality and ethical issues.

funny

I'm being serious?

No one hacked crowdstrike.

But also no one hacked them?

I mean it's not at all confirmed that crowd strike were hacked

Just entirely rumoured

They confirmed it wasn't

Crowdsrike ceo

Best not to spread unfounded rumors.

i dont know the news im using context clues

sorry

yea i saw crowdstrike down and assumed

yea im saying its funny

Yeah someone messed up some code

No one hacked crowdstrike, it was a driver update that went wrong and their driver didn't get to be a valid windows driver and therefore causing bsod because it's one of the first things that loads

why dont people just hack the people who hacked them if theyre also a hacker

ya i get it

Because noone hacked them, and that would also be illegal

Legal and ethical issue just as stated above

That's why if you safe boot into windows you can fix it with a work around

It's like scamming scammers.

this is gonna be an interesting friday

Same ordeal.

yea im saying funny

i shouldve put an “always wondered why”

Best practise is to teach people to not be scammed.

Or help people with security to stop them being hacked

the crowdstrike stocks are acutally recovering already

Everyone who sold is buying back

they were at -20 and are now at -11

They responded well to the incident

Help the victims, don't waste time going after the perpetrators. That's what police and other agencies are for

can i get hacked if someone sends me friend request on discord

Bring awareness

depends on what happens then

Um no not specifically that

Unless you do something stupid like copy paste code, probably not

Unless they send you a malicious link you click

if you accept files that are beeing send to you yes

what if they do sum like “if friend = true, hack mav”

Doesn't work like that

this would be way to easy

can i get hacked if i click on a server invite

I think you would benefit from signing up to the platform and studying how to be safer through learning cybersecurity 🙂

https://tryhackme.com

no i think i know

Depends on link ig. Not strictly discord

If its one directly from discord no

If its a short url that's done up to look like a discord server invite then yes

yea i always see people in servers posting the nsfw server invites and im always like how do u get hacked u must be dumb

a legit server invite discord link? heck no

like you know when u click on those server invites they ask u to scan a qr code or something

uh, that's about discord tokens i guess, if ya don't have a 2FA authentication, they somehow (probably with bruteforcing) can get random tokens and with these tokens ; random accounts

They usually have bad links in them

no way people that desperate to actually scan it

and im always like is it that easy

or maybe they got hacked a different way

and then the links are just a biproduct

Well I don't know from experience 🤣🤣 just guessing

well I never klick on random links

If its a discord.gg link it's fine

i never click links

But if it's like a tinyurl or goog.le then probably not

Alright.. bed time. Gnight THM ❤️ stay safe and legal

Still gotta verify the target, links can be spoofed

this account has been disabled like 3 times

good night. Sleep well

never again

But then there's also subdomains to make it look like that

Can you use + for discord.gg?

Similar to tinyurl

Where it shows the page before

But you dint directly access it

I usually do a quick check with curl.

Good idea

lucky i use mac

I love Linux but dislike mac a lot. I'm kinda weird.

aka the average arch linux connoisseur

Banned in the US

How come?

Maaaaaaaaybe

russia

World's first: I don't use arch btw

Russian owned company

nix os

I never got into mac for some reason

Oh that'd do it

I do THM on Kali cos made it easy but I generally use Ubuntu.

Idk if parrot is really used as a daily but I wanna try it

https://www.bis.gov/press-release/commerce-department-prohibits-russian-kaspersky-software-us-customers

Come break and enter with Hexxington

Mmmm Iced Coffee

I used parrot for a while the HTB flavour was pretty good but mostly use WSL

Wsl is cool

Still learning and wanted a desktop enrivoment but couldn't work out how with wsl so just did vm instead

WSL Desktop experience was a little wonky last time I tried it

It works... but not amazingly (back then - might have improved)

I need to pull the trigger and at least dual boot I wanted to try hyrpland for ages but doesn't really work well in a VM because I couldn't figure out the PCiE passthrough and it really needs graphics to work well

I think unless you wanna remote desktop to it, passing through GPU isn't a good idea

Why not?

Which machine do you get display output of?

Hm?

If you pass-through the GPU to the VM

and plug in a cable

which machine do you get display output of

and if it's the VM, then you also need to pass through USB to use mouse and keyboard

https://tenor.com/view/i-just-work-here-idk-idk-about-that-i-don't-know-gif-3168423486813006711

and then you can't manage the host itself

Signal is so bad here holy cow

well you'd need at least 2 GPUs/iGPU so I assume when I boot the VM it should switch windows to using the CPUs iGPU and give the VM the main GPU

i dunno, never tried it myself (GPU passthrough) but I just imagine it's not something you wanna do on your main PC

maybe

or I've seen some people who have an AMD card and NVIDIA card then use the amd on linux and have a windows VM where they pass the nvidia card which I am kinda enticed by but then I'd have to upgrade my PSU if I wanted 2 GPUs