I'm good
#general
molten sky
wannacry only impacted about a quarter million machines. I'd like to see how many crowdstrike impacted.
steel aspen
A lot
clever shard
wannacry only impacted about a quarter million machines. I'd like to see how man...
10k I think
steel aspen
More than 5
molten sky
10k I think
that's it? that would be like 3 computers per customer average, if all Windows
clever shard
I love seeing IT guys suffering doing that manually xD
clever shard
that's it? that would be like 3 computers per customer average, if all Windows
Yeah maybe I've read that I think 2-3 hours ago stats aren't that clear
molten sky
also that probably doesn't account for "customers" who are MSPs/MSSPs who have many of their own
clever shard
why trust something with kernel access in first place lmao?
clever shard
I trust linux kernel cz it is open source
molten sky
cause the benefits outweight the risks normally
clever shard
I dont use closed source stuff
steel aspen
And how often really has something like this happened
molten sky
"don't use" and "this is untrustworthy" are two different things tho
i don't use windows for my own eps either
steel aspen
It's usually just eftpos going down world wide
molten sky
but it's trustworthy in the context of business
the main issue here is all these companies implementing it without any proper fallback (admittedly difficult with a level 1 item)
clever shard
I mean I'm not giving some company kernel access to my PC no matter what reputation it have
clever shard
ring 0 π
molten sky
I mean I'm not giving some company kernel access to my PC no matter what reputa...
so you're, as a business, not going to use Windows? or Mac? you're going to use Linux across your entire enterprise?
that's just dumb
steel aspen
Surely companies had a backup in case of an event. Emergency management lol
molten sky
ring 0 π
ring 0, that's it, thank you lol
twin ridgeBOT
Gave +1 Rep to @clever shard (current: #351 - 14)
clever shard
so you're, as a business, not going to use Windows? or Mac? you're going to use ...
Kinda maybe Ubuntu have AD now lmao?
molten sky
Surely companies had a backup in case of an event. Emergency management lol
"backup"? I don't know this word
but actually, it's less of an issue with backups and more of an issue of "how tf do we even restore??", because many of these users don't even have proper console access unless at the workstation
clever shard
I don't hate on any of that software but in fact I just don't like using since I don't know what does it
maybe my data is getting sold to 3rd parties?
steel aspen
Too true limited access
molten sky
yeah but as a business it's about risk
it's less risk to do it this way than otherwise
steel aspen
Biba and lapadula
molten sky
would i want it personally? probably not, no
would i use it on business devices that dumb employees use? absolutely.
steel aspen
Forgot the actual terms
molten sky
also that's why you have proper contracts in place, because if they are selling your data, and that data is protected, now you have a massive lawsuit against the company and their reputation is pretty irepperably damaged and would be hard to use in trusted envs going forward
steel aspen
Did they say what driver or was it just to do with the software that uses the kernel driver
clever shard
also that's why you have proper contracts in place, because if they _are_ sellin...
By accepting the Terms of services you give them access to sell your data to 3rd compagnies lmao?
molten sky
By accepting the Terms of services you give them access to sell your data to 3rd...
no, a contract
you sign a contract with your vendor outlining all the terms of contention you have, including your billing, volumes, what you receive from the provider, what they can do with things, etc
businesses don't just accept ToC at that volume
you have SLAs, reliability, data sensitivity, ....
steel aspen
Did they say what driver or was it just to do with the software that uses the ke...
They just said a kernel driver
clever shard
you sign a _contract_ with your vendor outlining all the terms of contention you...
Yeah 100% but they only give a fuck about billing and features not something else.
clever shard
Did they say what driver or was it just to do with the software that uses the ke...
C-00000291*.sys
molten sky
Yeah 100% but they only give a fuck about billing and features not something els...
the vendor or the customer? the customer doesn't have to sign if the terms are disagreeable, and the customer, especially with counsel, does review a whole lot more than billing in sensitive environments
just because the mom and pop shop with 7 employees doesn't, doesn't mean that skipping that step is the rule π€·ββοΈ
again, at that volume --- it's a large contract, so counsel will almost certainly at least glance at it
rapid merlin
Hey you guys know a good site that explain what the hell happen today ?
molten sky
crowdstrike go boom
rapid merlin
I know but like I donβt wanna read dumb media that donβt know anything about it talking about it
uneven swallow
rapid merlin
Thanks
molten sky
I know but like I donβt wanna read dumb media that donβt know anything about it ...
inadvertently just described linkedin today
well, most days
steel aspen
What types of user privilege permissions are Windows? Guest, standard, admin, system?
User account
Been a bit
rapid merlin
yall i own a website and i was doing port checks using nmap and it came up that there was so many ports open and then i did it to my friends website with permission and the same amount of ports came up
idk if it has something to do with nmap
Itβs so funny bro
With this crash everybody is gonna use Linux now
tired peak
With this crash everybody is gonna use Linux now
doubt it
mossy river
It was crowdstrike, not windows
blazing granite
I know but like I donβt wanna read dumb media that donβt know anything about it ...
welcome to most of the internet π
tired peak
crowdstrike could've screwed up Linux too
steel aspen
Can we all collectively blame Microsoft for no apparent reason
steel aspen
Just joking
molten sky
#microsoftdidcrowdstrike
tired peak
after wannacry, people didn't stop using Windows
steel aspen
Could make it a meme
normal fable
No hate on MS.. I have friends there.. jeez guys.. All the MS hate needs to go.
mossy river
after wannacry, people didn't stop using Windows
or updated them
steel aspen
Make windows the nickleback of the OS
rapid merlin
wait does anyone know anything about what is happening with nmap
clear jackal
People do like Nickleback
tired peak
we can hate Microsoft but due to this, it isn't a reason to
steel aspen
Yeah I know I don't know why people don't like them
blazing granite
crowdstrike could've screwed up Linux too
hashtag crowdstrike again π π
clear jackal
I don't want to say people that touch grass like knickleback, that might be a little to direct
steel aspen
Make windows the nickleback of the OS
I'd truly do that to Mac/iOS
tired peak
that'd be funny "oh Monday's update is for Linux"
chilly veldt
@mossy river I am pink haired again
boreal scarab
<@270975958511517697> I am pink haired again
chilly veldt
https://tenor.com/view/stephanie-lazytown-gif-8451199
quite literally looking like that right now 
mossy river
<@270975958511517697> I am pink haired again
oh I thought you already were
supple tangle
i dont hate ms but i hate that i had to download something to let me put my taskbar on right side of screen in win 11. why would they get rid of that feature...
shadow loom
I asked ChatGPT to generate a logo for me of "Ansible" featuring "scalability" and "automation". I was very elaborate in my prompt. This is what I got...
tired peak
your lucky they didn't have a subscription fee to change the taskbar
chilly veldt
lmao
steel aspen
It automated the scalability
tired peak
chatgpt can only regurtitate/modify things its seen before
shadow loom
yeah..
steel aspen
your lucky they didn't have a subscription fee to change the taskbar
Microsoft EA
shadow loom
I was hoping they had adopted DALLe or something
clever shard
#stopmicrosofthate
Don't hate on something you can't recreate/build lmao many people would hate on microsoft xD
tired peak
thats a silly criteria
clever shard
Let be honest microsoft have good shit and made life alot easier with creating some stuff why hate on it lmao?
molten sky
regarding crowdstrike:
Guy from Blackpoint (MSSP) indicating that it was due to a null ptr deref
tired peak
people can hate on Microsoft if they want, go for it, knock yourself out π€£
clever shard
Alot of people hate on Microsoft it self and it products if you dont like it there is plenty other stuff that well suit you lmao.
weary sleet
some1 explain the Microsoft thing to me pls
tired peak
there are certainly valid criticism of Microsoft for a variety of reason
clever shard
some1 explain the Microsoft thing to me pls
Kernel goes brrrrrrrr
tired peak
some1 explain the Microsoft thing to me pls
did you google? what don't you understand?
weary sleet
I just know it just stuff down
weary sleet
did you google? what don't you understand?
Busy
I have 225k on YouTube
My other channel
molten sky
I just know it just stuff down
#general message null ptr deref in an update pushed by crowdstrike (not microsoft/windows) caused the world to implode
weary sleet
Itβs YouTube, there all kids to since Iβm a gaming channel
clever shard
I have 225k on YouTube
ay shootout to ma homie π
molten sky
I have 225k on YouTube
what kinda reasoning is that π
weary sleet
https://discord.com/channels/521382216299839518/680459914828972076/1264010687311...
someone made an error in code I see?
tired peak
so it takes 1 second to google
molten sky
tired peak
what you think we gonna do? provide brain osmosis?
weary sleet
Thomas Matthew Crooks
molten sky
someone made an error in code I see?
not 100% on if it was a bug or corruption but it seems to possibly be a corrupted file (missing the tail end?)
weary sleet
not 100% on if it was a bug or corruption but it _seems_ to possibly be a corrup...
dam seems bad
clever shard
Let put it this way some devs pushed bad code for update and since it have kernel access pc goes brrr, and also as @tired peak said google stuff for yourself not everyone would be willing to spoon feed you informations @weary sleet
molten sky
what you think we gonna do? provide brain osmosis?
what no that means we lose some
molten sky
I have 225k on YouTube
wait if you have 225k why would you link the channel with 9k to your discord instead
weary sleet
wait if you have 225k why would you link the channel with 9k to your discord ins...
my separate discord account I donβt like promoting it bc then I get DMβs so I have a different discord account with this channel as a fake more
like I have an account with over 525 DMs
molten sky
ah i see
weary sleet
but I still use this one, but itβs dead so idc
molten sky
https://tenor.com/view/cat-kitty-kitten-zoom-persuit-gif-17646381782073725526
makes me wanna find nfs hp
hearty sail
have you tried "sudo apt update" first
molten sky
you need to install openvpn? isn't it just included with the kernel now?
i thought it was at least π€·ββοΈ
boreal scarab
sounds about right
Yeeeeh
clever shard
can u do sudo dpkg -l | grep openvpn
tired peak
also, what OS are you on? kali?
hearty sail
ohhhh snap
tired peak
then its installed, you have to give it the file
hearty sail
fedora
molten sky
how did you get pkg not find but you're on fedora
like yeah it's installed
but now i'm confused about that
fedora doesn't have apt
hearty sail
yum?? isnt it
tired peak
if you run a command on linux without the arguments, it'll give you the help (generally)
molten sky
dnf
hearty sail
ahh dnf
blazing granite
do a sudo update before that, like sudo update && sudo apt install openvpn
molten sky
(yum would work as well but that's just for legacy support --- yum is actually just an alias of dnf nowadays)
tired peak
do a sudo update before that, like sudo update && sudo apt install openvpn
they are on fedora
blazing granite
they are on fedora
why they are using apt if they are on fedora π
molten sky
how is nobody else questioning this error message? apt shouldn't even be present on fedora πΆ
tired peak
so type "openvpn <name of your vpn file>" or "sudo openvpn <name of your vpn file>" if you aren't like me and don't run as root
clever shard
I'm a say the gamer Word
this is the only nmap scan i do in a production environment
nmap -A --min-rate=100000 -sV -sC -p- `--script=vuln*
blazing granite
how is nobody else questioning this error message? apt shouldn't even be present...
my point exactly
hearty sail
how is nobody else questioning this error message? apt shouldn't even be present...
is it just alias'd on their system?
tired peak
might be
hearty sail
I guess we will never know lol
tired peak
maybe they went and found it, compiled it and installed it π€£
buoyant tree
@molten sky i hate you
tired peak
which is totally a move I'd do
hearty sail
all my homies use wireguard 
buoyant tree
why this time π
Unrelated but I'm losing in a game by 0.98 seconds so it's your fault
molten sky
ehm
0.98?
idk how you mathed or in what direction but that doesn't add up in any way
buoyant tree
idk how you mathed or in what direction but that doesn't add up in any way
0.88*
blazing granite
`dnf install apt` anyone?
wow that's weird π I would never thought of doing dnf install apt
hearty sail
wow that's weird π I would never thought of doing dnf install apt
same, just tried with pacman. Most cursed shit someone could ever do to a system
buoyant tree
skill issue
finnaly beat it
molten sky
often breaks shit too tbh
buoyant tree
Oi btw anyone got a way I can recreate the crowdstrike BSOD on a personal machine
hearty sail
often breaks shit too tbh
your system becomes a battleground for fighting package managers
molten sky
Oi btw anyone got a way I can recreate the crowdstrike BSOD on a personal machin...
get someone to send you the corrupted driver and just drop it in place is probably the easiest
buoyant tree
get someone to send you the corrupted driver and just drop it in place is probab...
By any chance do you have a copy of the corrupted driver
blazing granite
@molten sky I google it. APT-RPM, basically mapped normal apt commands so that they worked with Fedora's RPM package management system.
molten sky
By any chance do you have a copy of the corrupted driver
lol if you asked me a few hours ago i would
buoyant tree
lol if you asked me a few hours ago i would
How
molten sky
<@270629973906161665> I google it. APT-RPM, basically mapped normal apt command...
apt rpm or apt-rpm rpm
buoyant tree
cause crowdstrike gave it to us π€·ββοΈ
Aren't you unemployed
molten sky
I have no further comments
buoyant tree
I have no further comments
That makes me even more curious
molten sky
spit it out! @blazing granite
blazing granite
`apt` rpm or `apt-rpm` rpm
from a quick google reading is APT-RPM, but I have to dig deeper, because I find this weird, disturbing and interesting all at the same time π
hearty sail
I have no further comments
damn, how could you not see he was offering you a job!!?!?!?!
buoyant tree
damn, how could you not see he was offering you a job!!?!?!?!
He's the reason behind CrowdStrike's BSOD
him and his partner, Matt
blazing granite
I have no further comments
blazing granite
him and his partner, Matt
I didn't know Matt was working for crowdstrike π
buoyant tree
I didn't know Matt was working for crowdstrike π
He was undercover
blazing granite
*He was undercover*
hazy jay
bruh, I broke mint π€£
steel aspen
regarding crowdstrike:
Guy from Blackpoint (MSSP) indicating that it was due to ...
So that's basically a null value pointing to a "proper value"?
As far as I could understand from Internet
molten sky
you're trying to dereferance a pointer whose value itself is null
rather than a memory addr
steel aspen
Oh yeah
solar echo
Thinking of giving up THM. :<
molten sky
why
blazing granite
bruh, I broke mint π€£
you didn't brake anything kernel panic or GTFO π
molten sky
I think it's more important for me to get a job now than to do fun tasks online.
then sure take a break
but "give up" is a bit drastic for that
steel aspen
Those "fun tasks" will help tho?
molten sky
just come back when able
solar echo
Those "fun tasks" will help tho?
Uh, not really. I mean, at least not where I am from/at.
steel aspen
How
solar echo
just come back when able
Yeah, that's probably going to be the case and then I'll try to grind to 1% again.
steel aspen
solar echo
How
My country values certifications over certificates and university degrees above both.
molten sky
so rude lol
tired peak
My country values certifications over certificates and university degrees above ...
thats not much different than other countries
steel aspen
Surely having both helps better
solar echo
thats not much different than other countries
I can only speak for mine.
tired peak
you can learn skills through various learning sites, but getting a job is a mix of degrees + work experience + certifications
solar echo
Surely having both helps better
It's a bit counterintuitive to try to work on one thing that's more valuable alongside something that's less valuable when you can be completely focusing on the most valuable one.
solar echo
you can learn skills through various learning sites, but getting a job is a mix ...
Yeah, I learned enough on THM. The rest is basically just for fun.
DevSecOps room doesn't really work so I won't engage on that.
tired peak
so whats your problem?
blazing granite
My country values certifications over certificates and university degrees above ...
usually certs and degrees will get you an interview, hands on experience and showing what you know will get you the job π
clever shard
you can learn skills through various learning sites, but getting a job is a mix ...
Hey I have a question how would I be able to get experience? take notes that all jobs wants work experience even if it is entry lvl how would I be able to get a job in the first place?*
solar echo
so whats your problem?
None? I never mentioned having one.
tired peak
Hey I have a question how would I be able to get experience? take notes that all...
you go for even a more junior role
solar echo
usually certs and degrees will get you an interview, hands on experience and sho...
This is true but my country is backwards enough to... not even test your "hands on experience" prior to seeing the certs and degrees.
tired peak
apply to jobs asking for 1-2 years experience, utilize experience in related fields
lots of people get jobs as IT help desk to start in IT, also if you have opportunities to get internships, thats another way
solar echo
Would working in a IT store would good enough?
Yes.
tired peak
depends on the employer
solar echo
depends on the employer
That's not very helpful since absolutely every decision in that regard would depend on the employer regardless of everything else.
hazy jay
you didn't brake anything kernel panic or GTFO π
I tried booting into it, got a black screen of sadness, had to resort to windows π’
solar echo
I had less than that as experience when I landed as an IT Analyst, could work for you too.
blazing granite
That's not very helpful since absolutely every decision in that regard would dep...
that's the job market and suks π
tired peak
That's not very helpful since absolutely every decision in that regard would dep...
but it does. If you are trying to get a job as a pentester for instance, an employer may not consider doing PC repair as a valid IT experience, also you are competing against other people
clever shard
That's not very helpful since absolutely every decision in that regard would dep...
but still as Azure said depends on the employee. yeah I know it is kinda similiar but concepts doesn't match
solar echo
but it does. If you are trying to get a job as a pentester for instance, an emp...
They mentioned entry level jobs.
Pentesting is not entry level.
tired peak
I'm assuming they are looking for entry level cyber jobs, but maybe not
blazing granite
Jr pentester is a thing
Jr is not entry level π
solar echo
Jr pentester is a thing
It's not because it's "junior" that it is entry level.
Junior just mean you just recently started in that role.
molten sky
"entry level pentester" is also not "entry level" -- it's entry level for that category
tired peak
but the truth is, for the job market you are working on finding a job which qualifications you meet 50% or more of and you can compete against the rest of the competition
molten sky
but the truth is, for the job market you are working on finding a job which qual...
this market sucks too lmao
tired peak
this market sucks too lmao
yes definitely
molten sky
entry level is gonna have it worse probably
clever shard
So let put it this way Jr != entry lvl?
solar echo
I'm assuming they are looking for entry level cyber jobs, but maybe not
Yeah, and assuming that, working as an IT repairsperson would suffice if you prove practical knowledge in the role your are seeking.
solar echo
So let put it this way Jr != entry lvl?
Jr. just means you are new to to the role.
clever shard
damn the job market is fu34ked
clever shard
but isn't junior is a title for someone that just started?
blazing granite
"entry level pentester" is also not "entry level" -- it's entry level for that c...
entry level pentester, that sounds something like an hr person with 0 tech knowledge would write π
buoyant tree
Btw Verum, how did it go with reGex
solar echo
Entry level means that you don't need too much experience, too much education, too much of anything to attempt it, however you have to have at least something that is related to it.
molten sky
"entry level python developer" and you'll read the JD to see "must have 7 years of experience in C#, wildland firefighting, and sorcery"
solar echo
but isn't junior is a title for someone that just started?
Yes, my friend.
But entry level is a level, not a timeframe.
solar echo
but isn't junior is a title for someone that just started?
For someone who just started X role.
tired peak
there are certainly people who have 0 IT experience and go into pentesting as a first IT job but its rarer
blazing granite
"entry level python developer" and you'll read the JD to see "must have 7 years ...
once I read a job search for more 15 year experience of "X tech" ( I don't remember exactly which) but funny thing is that "X tech" was created 10 years ago π
solar echo
there are certainly people who have 0 IT experience and go into pentesting as a ...
Can you cite a recognizable example?
tired peak
Can you cite a recognizable example?
sure, our friend TheMayor is one (he has created a few THM rooms)
molten sky
once I read a job search for more 15 year experience of "X tech" ( I don't remem...
"15 years? I invented X tech only 7 years ago" -- "we've decided to go with a candidate who better fit our goals"
solar echo
once I read a job search for more 15 year experience of "X tech" ( I don't remem...
I honestly believe some real negative things about HR's cognitive abilities.
I have never had a single decent experience with them, ever, in any company, at all.
molten sky
makes sense considering HR isn't your friend and isn't meant to be
tired peak
I can't find the article but there is also a guy who was a pool guy, whose switched careers to pentesting. I know him from a different discord
molten sky
HR exists to protect the company from you
clever shard
sure, our friend TheMayor is one (he has created a few THM rooms)
coming to thinking my reporting skills sucks if I get it right tryhackme doesn't have yet reporting rooms?
solar echo
sure, our friend TheMayor is one (he has created a few THM rooms)
Interesting, it's a very weird case, I'm pretty sure they live in a developed country, right?
tired peak
coming to thinking my reporting skills sucks if I get it right tryhackme doesn't...
its a bit of practice, practice, practice... try doing writeups
solar echo
With the kind of tech culture of "show us you can do it, not that a piece of paper says you can do it"
tired peak
Interesting, it's a very weird case, I'm pretty sure they live in a developed co...
both are in the US
solar echo
coming to thinking my reporting skills sucks if I get it right tryhackme doesn't...
It depends on what you mean by reporting?
tired peak
also I think our very own NinjaJames first job was as a pentester, maybe Muiri too
both of them live in the UK
solar echo
Those are things that you learn during your experience on the job for the most part.
Learn Microsoft 365 and try to refine your vocabulary and mimick the professional language of your peers, that's pretty much all of "soft skills" necessary for jobs.
blazing granite
makes sense considering HR isn't your friend and isn't meant to be
Once HR told me your resume is very impressive, but we went with another candidate. I told them, it was impressive, but not impressive enough to get me an interview π and they hung up on me π
tired peak
if it wasn't probably 2am in UK, I'd probably tag them to validate
clever shard
its a bit of practice, practice, practice... try doing writeups
I mean writeups for ctfs are very different no? I saw some real world pentesting reports and they are very different from writeups
solar echo
HR exists to protect the company _from you_
That's an interesting perspective.
tired peak
I mean writeups for ctfs are very different no? I saw some real world pentesting...
yes but its practice, you can show your methodology, its not an executive briefing by any means
clever shard
It depends on what you mean by reporting?
After conducting a pentest you need to write a report to the company. after all they buy your report
clever shard
yes but its practice, you can show your methodology, its not an executive briefi...
I think it is more of learning yourself kinda thing by looking other people reports and getting someone to review them.
and still as you said it would be a good practice for methodology
ty
+rep @tired peak
twin ridgeBOT
Gave +1 Rep to @tired peak (current: #15 - 498)
solar echo
Once HR told me your resume is very impressive, but we went with another candida...
I have a worse story which is absolutely insane. I got INVITED to be a Network Analyst by the Director of the Board of Networking in a company, he basically told HR to give me the job. I got into the interview and there was another guy with me (?) and the HR asked "so, tell me more about yourself" without specifying who, then the guy started talking nonstop and HR gave me literally 10% of his time to talk about me, I was only able to say that I was invited by the director to be on the spot. THEY. STILL. DENIED. ME.
solar echo
After conducting a pentest you need to write a report to the company. after all ...
Oh, that's pretty easy, really, but what do you mean exactly? You don't know how to write reports in general or those kinds of reports?
clever shard
Oh, that's pretty easy, really, but what do you mean exactly? You don't know how...
I see many people fail some certs due to their lack of skills in reporting so thought before taking a certs or something why not practice reporting xD
solar echo
I see many people fail some certs due to their lack of skills in reporting so th...
You have GPT 4.5 at your disposal, prompt it to give you an example of a report that you'd see yourself doing in the future as a pentester.
candid niche
You have GPT 4.5 at your disposal, prompt it to give you an example of a report ...
v good suggestion, having a layout to follow
clever shard
You have GPT 4.5 at your disposal, prompt it to give you an example of a report ...
Why ask GPT when you can look up other people's reports?
- correct me if I'm wrong but GPT isn't trained on pentesting reports?
solar echo
You just answered yourself twice.
weary sleet
Can anyone send me a picture of there pc setup in my DMs
I wanna get a pc and see what ur setups look like, and if I copy it Iβll give you nitro
And send you a photo of mine
warm pelican
Hello guys, I have a quick question about the ejptv2. I am willing to join this course and take the certificate. Well I saw that the certificate has 3 year date expiration. I am now 17 If I take it now would the expiration effect me when I apply for cyber jobs?
blazing granite
https://open.spotify.com/track/02kqNEFXbcFg22pyvUyjmI?si=27c44b4449724fbb
I'm never gonna dance again
Guilty feet have got no rhythm π
pallid lotus
You have GPT 4.5 at your disposal, prompt it to give you an example of a report ...
Please don't
molten sky
Hello guys, I have a quick question about the ejptv2. I am willing to join this ...
would the expiration effect me when I apply for cyber jobs?
expiration is 3 years from the date of issuance
if you wait 7 years to start working, it'll be expired (provided you don't do or they don't accept CPEs)
pallid lotus
I see many people fail some certs due to their lack of skills in reporting so th...
I've yet to see a cert with reporting requirements which accurately reflect a pentest report. I hear PNPT might, and possibly the HTB one, but no personal experience there π€·ββοΈ
pallid lotus
Although yes, it's perfectly possible to fail something like an Offsec exam based on your report
blazing granite
Please don't <:kekw:658061932577816606>
People see chat gpt like their saviour, I see it like a plague π
molten sky
chatgpt can barely figure out how to write a functional hello world
warm pelican
if you wait 7 years to start working, it'll be expired (provided you don't do or...
Will the companies care about it? I mean its expired but I still got the knowledge right?
molten sky
Will the companies care about it? I mean its expired but I still got the knowled...
my security+ lapsed idk how many years ago, it's still on my linkedin just as expired
only time it matters for me is 8570.01
pallid lotus
People see chat gpt like their saviour, I see it like a plague π
If you want it to summarise or reword something it's okay, but when I see people asking it for a definitive answer to an unfamiliar topic...
tired peak
ChatGPT or similar GenAi models are good to use IF you know what you are doing and know how to recognize good and bad of what you are trying to generate
clever shard
I've yet to see a cert with reporting requirements which accurately reflect a pe...
I mean idc about the report in the certs but the client buys your report not for you to get flags lmao?
warm pelican
Thanks alot
tired peak
if you have no idea what a good pentest report looks like, then its a bad idea to use ChatGPT to generate a pentest report and rely on that
pallid lotus
I mean idc about the report in the certs but the client buys your report not for...
Flags? In a pentest..?
clever shard
Flags? In a pentest..?
U missed the joke
pallid lotus
But yes, you're right to say that the product of a pentest is the report, not the work.
They tend to follow very strict style guides for that reason. You need to be good at technical writing.
Have a look at the RFC style guide, as a good example.
Generally speaking a pentest report is formed largely of issues taken from a KB (ideally), following a standardised format. The custom parts need to fit in with the overall style of the report, as well as the style of the team.
i.e., if you're on a team of 10, it shouldn't be possible to tell which person wrote the report based purely on the content.
clever shard
Noted
pallid lotus
Oh good, you're taking notes now?
clever shard
Let put it this way I only take stuff that I well need and wont find out
blazing granite
If you want it to summarise or reword something it's okay, but when I see people...
that's my point you can use it to save time, to do something that you know to do, and you can check afterwards, but people use it as an "assistant" that make the job for them and/or that do something they have no idea, that's the issue, gpt has a lot I mean a lot of issues, some field more than other but is not something that you can trust without checking
clever shard
+thanks for remembering me β€οΈ
pallid lotus
that's my point you can use it to save time, to do something that you know to do...
Absolutely this
pallid lotus
+thanks for remembering me β€οΈ
Some ex-moderation habits never die π€£
pallid lotus
Muiri was the community manager
molten sky
muiri ! your color !
molten sky
Muiri was the community manager <:kekw:658061932577816606>
( re: )
pallid lotus
muiri ! your color !
What's happened to it now...
boreal scarab
The most ironic thing ever...... https://www.marshall.edu/library/bannedbooks/fahrenheit-451/
molten sky
The most ironic thing ever...... https://www.marshall.edu/library/bannedbooks/fa...
literally 1984
boreal scarab
literally 1984
Exactly!
boreal scarab
you clearly aren't a fan of the Il vaticano
I don't know chess!
molten sky
I don't know chess!
holy hell
blazing granite
Muiri was the community manager <:kekw:658061932577816606>
now is community Legend π
boreal scarab
Everytime I hear the song: Your Love by The Outfield.... I can't unsee this vid: https://www.youtube.com/watch?v=tu_2xfhsrz8#ddg-play
blazing granite
time to go to sleep I'm falling sleep on my keyboard π Bye people have a good one!!!
umbral bay
time to go to sleep I'm falling sleep on my keyboard π Bye people have a good o...
π₯³
molten sky
oh no
buoyant tree
Not another CrowdStrike disaster
umbral bay
Tim! I dids a thing!
Installed AIX on your coffee robot?
pearl raven
Other than the horseshit from today??
boreal scarab
Installed AIX on your coffee robot?
Soonβ’
boreal scarab
Got some coffee gear for my new baby!
umbral bay
Coffee bot modding? π
chilly veldt
Coffee bot modding? π
already done 
that's why I am awake right now and have to be at work in 3 hours
boreal scarab
already done <:StarlightSippyCoffee:816851598495580170>
I THINK I can program it to brew me a cup in the morning... dunno lol
royal dragon
@boreal scarab β β β β β
chilly veldt
I THINK I can program it to brew me a cup in the morning... dunno lol
otherwise send me make model and firmware and I'll find a way π
love IoT hacking
graceful thistle
Bella, sleep?
chilly veldt
no
boreal scarab
chilly veldt
I have morning shift
graceful thistle
Gl
boreal scarab
<@214547132231843840> β β β β β
chilly veldt
and on a 72 hour fast π
chilly veldt
yeah π
boreal scarab
love IoT hacking
Shall I expose it fully to the internet too?
cosmic pendant
,..
chilly veldt
Shall I expose it fully to the internet too?
not needed maybe
again, depends on make and model
molten sky
What? There's no harm in exposing IOT devices to the internet........ right?
hard to tell
send me your ip address and i'll check for ya
boreal scarab
send me your ip address and i'll check for ya
Alright!
||127.0.0.1|| Remember, it's secret! Don't give thise out to anyone else!
boreal scarab
molten sky
oh hey we have the same username
crude stump
oh hey we have the same username
boreal scarab
@sand trench https://youtube.com/shorts/zflp86hvByM?si=431zWLcaKCsKGWrG
Found you
rapid merlin
what is a wildcard certificate?
neon river
you guys should check out the crowdstrike job postings
"Sr. Software Engineer - Windows Kernel, Core Platform (Remote, CAN)"
sleek sleet
guys anyone know why he didnt work ?
no its some thing about
024-07-19 23:38:43 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-07-19 23:38:43 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-07-19 23:38:43 Cannot load inline certificate file
2024-07-19 23:38:43 Exiting due to fatal error
stuck otter
well i am not having fun with git and obsidan lately
I changed the name of the repo which caused it to be unable to push to it
I tried to fix it and failed each time to which i finally decided to just delete the entire repo and make a new one
molten sky
I changed the name of the repo which caused it to be unable to push to it
that shouldn't happen
when you change the repo name on github, the old name redirects to it (as long as you don't reuse the old name for something else)
try it in your browser and it should still work.
molten sky
I tried to fix it and failed each time to which i finally decided to just delete...
delete the entire repo
in that case maybe don't try it
stuck otter
But then... on trying to clone a new repo it is saying i cannot do it due not being able to connect to port 443....
molten sky
that um
well first of all, https and not ssh?
second, if it can't even hit that port, that sounds like an unrelated issue of some kind
molten sky
genuinely don't remember the last time i've used https with git --- trying to remember
but yeah i'm using an old remote right now for instance --- push pull clone works fine
orgname/originalname redirects to orgname/newname on any request
stuck otter
in any case im kinda just troubleshooting while fixing up my notes from a ctf
stuck otter
Well i was gonna just copy it all to google drive and transfer it to my windows computer then use github desktop there.
Maybe it will be different
molten sky
aside --- can't even remember how git over https authenticates....does it ask for your account password or something? what about 2fa?
stuck otter
Well it did ask for my password which didnt work. Then i figued out i needed to use the access token
molten sky
ahhh PATs...
at that point why even use PATs just use ssh
more steps for a less convenient method, no?
stuck otter
I guess ill have to setup ssh
molten sky
I also have my ssh config set up so that i can just do git clone gh:org/repo rather than git clone git@github.com/org/repo or whatever long nonsense you need
so much shorter and easier
buoyant tree
Heard good conspiracy theories about the crowdstrike BSOD's today, It's because of microsoft taking over the world and needed a excuse for something
candid light
I also think this is just a great example of how widespread the concept of a single point of failure is. If companies built their systems with resiliency in mind, redundant measures would've been in place and this wouldn't have happened on the scale that it did
candid niche
Heard good conspiracy theories about the crowdstrike BSOD's today, It's because ...
I've been reading some absolute nonsense on social media also. People who had no idea who Crowdstrike was until today haha. It must be exhausting living every day like everyone is out to get you.
clear jackal
I also think this is just a great example of how widespread the concept of a sin...
While it seems simple, there are a lot of moving parts and factors that make it extremely difficult.
tbh, I'm going to hold judgment on this whole thing until the whitepaper comes out. Obviously colossal screw up, but where was the breakdown, what was the fix, what are the lessons learned, and what's in place to stop it from happening again.
I don't know that you can manage that change though
On the downstream, I should clarify. CrowdStrike needs to look at their change management procedures.
candid light
tbh, I'm going to hold judgment on this whole thing until the whitepaper comes o...
Yeah, that's a great idea. More information would definitely be nice.
It's also important to note that system resilience isn't the only factor at play here. For one, like you just mentioned, it seems like they rolled out the update to everyone all at once without prior testing in a safe environment, and without rolling basis
clear jackal
On the downstream, I should clarify. CrowdStrike needs to look at their change ...
The Falcon Sensor is a kernel level item, afaik, and this was a driver/instruction update that went sideways
candid light
idk if you saw the john hammond video yet but two of the fixes were to rename the driver file to a .bandaid extension and the other one is to delete all driver files with a certain name
clear jackal
Yeah, it was a single .sys file
Bitlocker is what turned this in to a nightmare for most, but you can't throw that out.
candid light
yeah, cuz you can't enter safe mode with bitlocker on, is that right ?
clear jackal
Yeah, that's a great idea. More information would definitely be nice.
It's als...
tbh, they could have tested this update and had not adverse effects in their environment. That's entirely plausible. We just don't know yet and we'll have to wait for their debrief.
clear jackal
yeah, cuz you can't enter safe mode with bitlocker on, is that right ?
Yes and no
candid niche
I see people calling for more redundancies, but how far is enough? Should each supermarket run a different OS, software, and internet connection on each device in the store?
clear jackal
You're correct in saying that you can't run in Safe Mode with Bitlocker, but the remedy is to enter your recovery key, which allows you to enter Safe Mode.
So it's not entirely unavailable
candid light
Oh yeah, I remember that was mentioned in the video now
clear jackal
My experience was a little different today, ended up requiring about two hours of troubleshooting, before we got my machine back to operational.
candid light
I see people calling for more redundancies, but how far is enough? Should each s...
My idea of it wasn't every device running a different OS, but that there could be a backup system ready to be used in the case of the primary one going down.
Kinda like how RAID storage works is what I'm thinking
Not sure how practical that is in reality though
clear jackal
My idea of it wasn't every device running a different OS, but that there could b...
Hot/Warm/Cold spares are a thing, but the issue is cost
Most places don't even have the budget for their primary computing infrastructure needs
candid light
That brings up a good point about the nature of a cybersecurity department. It's a cost center. Unlike the sales team or the marketing team, a cybersec department doesn't bring in profits but still costs the company money to operate it
overall though, sad what happened today. Especially when thinking about ppl who missed their flights and hotel reservations
candid niche
free money <:HYPERS:568016866082160640>
hell yee
candid niche
even better π
chilly veldt
cause that means 30% extra pay 
harsh sedge
hi
split compass
You got crowd struck did you?
karmic sun
Hey is there any resource on finding challenge rooms in TryHackMe other than using the search option?
looking for some guidance - at start i just wrote "malware analysis" and tried searching for challenge rooms that way, But it feels not good enough.
rapid merlin
Goodmorning
brazen cedar
This is literally a day off for IT workers whoβs cloud computers got bricked from crowdstrike
simple valve
This is literally a day off for IT workers whoβs cloud computers got bricked fr...
you mean an additional work day
brazen cedar
you mean an additional work day <:kekw:658061932577816606>
For people who work in person yes
simple valve
For people who work in person yes
youβd be surprised π
cedar swan
hey babies
stuck otter
So obsidian with git plugin is proving to be a bit of a pain
When pushing to github any images with spaces in the names are broken because it doesnt add the %20 to them
So im having to go through and fix each one.
sick lance
free money <:HYPERS:568016866082160640>
Is it free though?
You're essentially being paid to be ready to take a call...
chilly veldt
Is it free though?
You're essentially being paid to be ready to take a call...
I get paid to watch netflix and have a response time of <20 minutes if there's an alarm on the system
grave crane
Apparently if nano has the SUID bit set and you go to edit a file in a directory you wouldn't otherwise have permission to write to it still says something like '/ is not writable' even if it actually is writable
I opened the file in nano, saw it, then moved on to other attempts lmao. It was within reach for the past two hours RIP
pine matrix
damn
hazy pivot
Unix supremacy
karmic geyser
thorn jungle
dont say thatπ
gray sonnet
why...those are the rules
thorn jungle
isnt ngrok a beginner thing
rapid merlin
yall how do i start learning how to "ethically hack" because youtube is just not doing it for me
gray sonnet
isnt ngrok a beginner thing
it's rarely used for non-phishing things, so again, only for advanced channels so we know you're actually interested in cyber
pallid lotus
ngrok is only for the advanced channels
Is it?
pallid lotus
it's rarely used for non-phishing things, so again, only for advanced channels s...
Is it?
gray sonnet
according to @sick lance
rapid merlin
my friend asked me to check if his website is vulnerable to sql injections and dont ask me why hes asking me lol
gray sonnet
or Jabba
it's one of them, they said the exact same thing to the same person yesterday
sick lance
Would have been Jabba.
gray sonnet
yeah, it was jabba, sorry for waking you up scrubz
sick lance
I was awake, lol.
pallid lotus
A curious choice. It's a useful development tool
quick basin
hello !
i'm looking for a vocal channel to chill but found nothing
someone saw one of them ?
sick lance
A curious choice. It's a useful development tool
Yeah, but we both know how the majority of new users choose to try and use it
sick lance
hello !
i'm looking for a vocal channel to chill but found nothing
someone saw o...
You need to be verified to access our VC.
gray sonnet
A curious choice. It's a useful development tool
again, not my words
pallid lotus
Yeah, but we both know how the majority of new users choose to try and use it
To expose parts of their home network to the internet. Yeah, that sounds very unsafe for the rest of the world...
gray sonnet
but yes, I agree
quick basin
You need to be verified to access our VC.
cannot found either the channel to start the verification process, can you ping it please ?
sharp citrus
pallid lotus
patent hinge
Now you two should kiss
quick basin
my account is verified but not linked to discord π’
sick lance
my account is verified but not linked to discord π’
You're not verified with THM - Discord.
sick lance
To expose parts of their home network to the internet. Yeah, that sounds very un...
Perhaps that's why it's for advanced also
The majority of users who request help do so with phishing in mind.
gray sonnet
we should just ask the person why they want help π€·ββοΈ
patent hinge
Make them write an essay on why
gray sonnet
sick lance
we should just ask the person why they want help π€·ββοΈ <:kekw:658061932577816606...
Then you'd get x people trying to help.
pallid lotus
Perhaps that's why it's for advanced also
The majority of users who request he...
Then that's the conversation to have with them. Automatically restricting a tunnelling tool designed for development projects is just daft.
Hell, there's at least one THM room where it's actually a really good option.
gray sonnet
Then you'd get x people trying to help.
makes sense
pallid lotus
I'd point out y'all also have (officially developed) content on phishing. Can't put a blanket ban on the topic π€·ββοΈ
sick lance
I wasn't around for the conversation yesterday, so not sure why they want it
Not been in my laptop for a week π
gray sonnet
they didn't say, jabba just said the things I said and they just didn't say anything after that...
rapid merlin
i did a nikto scan on my friends website and something came back saying /site/'%20UNION%20ALL%20SELECT%20FileToClob('/etc/passwd','server')::html,0%20FROM%20sysusers%20WHERE%20username%20=%20USER%20--/.html: Web DataBlade 4.12/Informix is vulnerable to SQL injection. what does this mean?
sick lance
i did a nikto scan on my friends website and something came back saying /site/'%...
Where does your friend host the website?
rapid merlin
Where does your friend host the website?
openresty im pretty sure
torpid furnace
@sick lance can h help me plz
patent hinge
Gotdamn
torpid furnace
When I try link my thm token to my discord it says itβs been used
sick lance
openresty im pretty sure
Probably not a good idea to do anything to it then without permission from them.
sick lance
<@958383130102870026> can h help me plz
Do you have a second discord account?
patent hinge
Probably not a good idea to do anything to it then without permission from them.
Openresty is an app server kinda like NGINX
Its not a hosting platform
torpid furnace
Do you have a second discord account?
Lost it
patent hinge
Happens to the best of us
rapid merlin
Probably not a good idea to do anything to it then without permission from them.
im not gonna do anything with im just trying to understand what it means so i can tell him about it
torpid furnace
How can you lose an account?
Miss place it?
No I stopped sec 2 yrs ago and itβs in my broken laptop and Iβm just starting again
sick lance
No I stopped sec 2 yrs ago and itβs in my broken laptop and Iβm just starting ag...
You'll need to dm me the token + account.
neon river
it's rarely used for non-phishing things, so again, only for advanced channels s...
its also used as a reverse proxy like cloudflare to protect yourself if you are self-hosting with your home ip or smth
gray sonnet
If you had the technical know-how of that you wouldn't come to a "hacking" discord and ask for help, WITHOUT elaborating on what you're trying to do
you as in not YOU, but that person
patent hinge
is ngrok rlly that popular for phishing? Never seen it used
sullen hearth
is ngrok rlly that popular for phishing? Never seen it used
I would say nice beginner tool.
gray sonnet
is ngrok rlly that popular for phishing? Never seen it used
most phishing frameworks use it
like blackeye, set...etc.
pallid lotus
is ngrok rlly that popular for phishing? Never seen it used
I mean, considering the same functionality is built into VS Code...
chilly veldt
π
shut hawk
rapid merlin
Ironic
I just canβt grasp how all of that could happen after massive QA trials on the update
gray sonnet
maybe everyone was using a mac /s
shadow loom
Maybe they saw the tests passing consistently in linux and macos environments but on windows "an unrelated system error caused a bluescreen during testing" and then decided to just write it off as a passing test in the release process
gray sonnet
lmfao
shadow loom
it happens
if you're confident that the update works because you see it pass in other environments, and your "experts" tell you that it's "most likely an unrelated issue" and that "this update can't possibly cause these issues" then... chances are it can be written off as a test that was performed manually or whatever
I hope it's not the case because that would be outright stupid on an astronomical scale
xD
pine matrix
@thorn jungle don't DM without consent, thank you π
twin ridgeBOT
Gave +1 Rep to @thorn jungle (current: #2142 - 1)
gray sonnet
lmfao
twin ridgeBOT
Took away 1 Rep from medal88 (current: #5030 - 0)
shadow loom
rip rep
mossy river
Problem solved
mossy river
I donβt think so, pretty sure itβs just one at a time
shadow loom
aww
clever shard
+rep @shadow loom
twin ridgeBOT
Gave +1 Rep to @shadow loom (current: #216 - 26)
shadow loom
torpid furnace
+rep @shadow loom
twin ridgeBOT
Gave +1 Rep to @shadow loom (current: #213 - 27)
mossy river
Floor boards must be vibrating right about now. Bass goes hard
mossy river
If you abuse the rep system you will be blacklisted
shadow loom
oof
gray sonnet
mossy river
So my speaker is dead and it takes a USB-c
Problem is that itβs provided cable is USB-c to USB-a and I have no adapters π
I only have usb-c adapters
mossy river
Nope
mossy river
I have every single type of usb-c cable except usbc-usbc
gray sonnet
borrow it from someone?
leaden pagoda
Singularity XDR > Falcon confirmed?
gray sonnet
no
leaden pagoda
mossy river
borrow it from someone?
Iβm in the house alone for about a month or two
Which is why Iβm blasting music π
gray sonnet
ohh, I thought you were at uni...
mossy river
Iβll need to order one but Iβm not here over the weekend
gray sonnet
Ah, I see
mossy river
They all went home for summer
gray sonnet
makes sense
shadow loom
why not you? π
gray sonnet
beatmetoit
mossy river
Iβd rather stay out here :)
slender scaffold
Sometimes not going home is yay
mossy river
Iβm paying for the house, might as well live here
slender scaffold
But⦠I like visiting my folks
mossy river
Iβm going to a party in my hometown tonight so I am visiting needed a sofa to crash on
slender scaffold
slender scaffold
I spent the night out with drunk friends
shadow loom
Iβm going to a party in my hometown tonight so I am visiting ~~needed a sofa to ...
noice
gray sonnet
I spent the night out with drunk friends
were you also drunk or was it just friends
gray sonnet
I got drunk ONCE in my entire life and that's it never touched alcohol after that
shadow loom
@mossy river here's some summer vibes for your speakers, btw: https://open.spotify.com/track/5qHYXcVvc9xsFB2uH7GpMN?si=b031d681cf6e4afe
mossy river
I bit the bullet
shadow loom
massive banger
mossy river
<@270975958511517697> here's some summer vibes for your speakers, btw: https://o...
Just rubbing it in that i canβt use it right now huh ππ
gray sonnet
I bit the bullet
gonna get it replaced?
mossy river
Nah Apple says it doesnβt need to be
shadow loom
N- no 
slender scaffold
I got drunk ONCE in my entire life and that's it <:kekw:658061932577816606> neve...
Tbh I donβt know of a time that being drunk is necessary
gray sonnet
it's never
mossy river
<@270975958511517697> here's some summer vibes for your speakers, btw: https://o...
Certified old man
@shadow loom https://open.spotify.com/track/27XMmSWSOXJ7eVb40tH93T?si=rTrQgK8JTLyK5WLAt-LTCg&context=spotify%3Asearch
gray sonnet
isn't birb like? a million years old?
shadow loom
bro
this stuff is what Deadpool could be blasting on a killing spree
and you know it
shut hawk
@mossy river π
slender scaffold
Birb is old?
mossy river
<@270975958511517697> π
gray sonnet
Birb is old?
yeah, he's like a million years old
shadow loom
gray sonnet
right @shadow loom ?
mossy river
this stuff is what Deadpool could be blasting on a killing spree
Deadpool isnβt exactly young π
slender scaffold
<@270975958511517697> π
shadow loom
Deadpool isnβt exactly young π
but he's cool 
shut hawk
slender scaffold
Fourth wall breaker
shut hawk
This concept looks interesting, but I just went on the website and the base keyboard is $500 π
mossy river
but he's cool <:cryge:1179040491132694588>
He can be both
slender scaffold
This concept looks interesting, but I just went on the website and the base keyb...
Eww
mossy river
This concept looks interesting, but I just went on the website and the base keyb...
Whereβs the razer logo smh
Bad keyboard
slender scaffold
So did everyone fix the crowdstrike? Is the circus over?
We all back to normal?
gray sonnet
https://youtu.be/N7OVagiblPo
yeah but it's not a mechanical keyboard...
gray sonnet
We all back to normal?
looks like it
shut hawk
It's a tactile feeling
gray sonnet
their stock is till down 11% but yeah, that's about it haha
gray sonnet
It's a tactile feeling
yeah, I've used it and I DO NOT like it, it's weird and very mushy tbh
it's not a bad keyboard, but it's very very expensive haha
gray sonnet
not THIS keyboard, tactile feeling keyboards
shut hawk
oh
shut hawk
npnp
gray sonnet
fully decked out, this thing costs 580
expensive asf lol
and with shipping 610...nope, not for me
pulsar spoke
Is there anyone here who's done mobile app development using Flutter + Firebase?
shut hawk
and with shipping 610...nope, not for me
yuh its expensive
boreal scarab
I think I just lost braincells.... "When you buy a vacuum cleaner, you get a vacuum cleaner"
karmic geyser
I think I just lost braincells.... "When you buy a vacuum cleaner, you get a vac...
system is rigged bro
stable loom
Hey guys I need to set up a new work station, can any one recommend set up machine and gadget that are cost friendly and Linux compactible for hacking and coding ....
naive violet
Would recommend getting second hand if you're after cost friendly stuff
Lots of decently big vendors on ebay etc that refurb ex business stuff
sick lance
I'd only buy new if it was costing somebodh else
naive violet
Linux friendliness, most things are A-OK now. Laptops can be a bit quirky
sick lance
Somebody *
stable loom
Thanks guys still thinking about it
thorn jungle
<@887278624875614238> don't DM without consent, thank you π
sry i was in a hurry
mossy river
I flexed my massive brain and solved my speaker problem π
shadow loom
I flexed my massive brain and solved my speaker problem π
Yoooo
Summer vibes song time
mossy river
Iβm not listening to beach boys π
gray sonnet
I flexed my massive brain and solved my speaker problem π
how π
mossy river
I remembered I have a linux thinkpad.
Charger -> think pad -> speaker
karmic geyser
karmic geyser
CrowdStruck.
boreal scarab
Well, what's funny about the CS outage... you know what companies use it. And what companies don't 
naive violet
Well, what's funny about the CS outage... you know what companies use it. And wh...
Or how quickly they push CS updates
boreal scarab
Watching the news talking about BSoD's everywhere.... I'm so proud π₯Ή
loud marlin
not so bad =/
boreal scarab
And now they're talking about having the federal government watch over "critical infrastructure" .... and that was a question about "How to avoid this in the future"......
loud marlin
its Hyprland that is pre configured
i can DM the video of how to. and just you need change script to fit latest kali
cos there is some errors that bonk installation
if left default
shut hawk
sure
loud marlin
one min
mossy river
Aaaa so tired
loud marlin
How you get the rainbow borders?
this is script that is for rainbow
#!/bin/bash
function random_hex() {
random_hex=("0xff$(openssl rand -hex 3)")
echo $random_hex
}
hyprctl keyword general:col.active_border $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) 270deg
hyprctl keyword general:col.inactive_border $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) $(random_hex) 270deg
boreal scarab
gray sonnet
not so bad =/
for a second I thought you were using dwm or i3 lol
loud marlin
it looks alike
gray sonnet
very alike haha, then I saw the - and x
loud marlin
i spend night of fixing bugs that didnt fit to install on kali. and finaly works
gray sonnet
wow, thankfully it looks like it worked haha
loud marlin
now ill reinstall again to make it all fit as i wish
i newer work in gui like that so all is weird
trim field
hey guys why cant i cd into a directory on linux?
sick lance
#room-help please
naive violet
The directory needs execute permissions for you to CD into it
naive violet
<#522158539129618453> please
Eh that's more of a general linux q
lone hornet
yo
loud marlin
try ls -alh
trim field
The directory needs execute permissions for you to CD into it
oh okay, yeah it seems it doesn't have those
trim field
try `ls -alh`
just did, it has no execute permissions so ig that's it
loud marlin
yea. ninja was step in front of me π
trim field
was just surprised because ive only encountered permission denied so far, not just "cant cd"
thanks guys
naive violet
was just surprised because ive only encountered permission denied so far, not ju...
It might be that sh is less verbose about it than bash
trim field
It might be that sh is less verbose about it than bash
oh I see
loud marlin
try run bash might be there on system so bas can spawn
loud marlin
but you can to ubuntu
trim field
wym?
loud marlin
i think you can cd into ubuntu folder
trim field
Yes yes, that works, I am just trying to understand why things work the way they work
loud marlin
well root:root says that only root can into backup. and permissions are quite tight
and others prem are just set to r-- for rest and groud
you might try ls -alh backup
wooden totem
Isn't that how you get caffeine withdrawals
mossy river
Yes
rapid merlin
I got ntro yay
mossy river
But my friend said I get pizza at 30 days so itβs worth it
rapid merlin
blazing granite
Isn't that how you get caffeine withdrawals
No caffeine withdrawals for me. I could never quit coffee π
loud marlin
try it
mossy river
Iβm sleeping much better now that I am off caffeine
loud marlin
every 4-6 months i do the same. for 30-45 days
patent hinge
funny how addictions work.. change coffee to something else in that sentence and then it's not okay anymore π€
wooden totem
But my friend said I get pizza at 30 days so itβs worth it
why aren't you gradually reducing it, seems like that would be easier
loud marlin
funny thing is that only organ in our body that we can control is brain, and we even fail in that
mossy river
funny how addictions work.. change coffee to something else in that sentence and...
Addiction to caffeine still isnβt okay. Addiction of any forms is bad
loud marlin
to much of anything is addiction
patent hinge
Addiction to caffeine still isnβt okay. Addiction of any forms is bad
It stil is more "socially accepted" than something like alcohol which is more accepted than something like weed
mossy river
why aren't you gradually reducing it, seems like that would be easier
It doesnβt work with me.
wooden totem
interesting
blazing granite
Addiction to caffeine still isnβt okay. Addiction of any forms is bad
Says the person who change coffee for pizza πππ
torpid furnace
Yo
loud marlin
when you quit all together is much harder, but brain gets much stronger in makind decisions
mossy river
Says the person who change coffee for pizza πππ
Whoa whoa whoa, I quit caffeine before I was promised pizza. But now I have a goal π
And itβs not the pizza I want, itβs the thought that counts
torpid furnace
mossy river
It stil is more "socially accepted" than something like alcohol which is more ac...
Addiction isnβt accepted, itβs just more easily identified with Alcohol and other substances because they have adverse effects
wooden totem
Saving money by not drinking anything else than water
loud marlin
@mossy river iirc you say to like rammstein...
https://izismile.com/2024/06/28/rammstein_concert_in_dublin_from_an_airplane_window_video.html check vid
mossy river
I donβt like rammstein
loud marlin
hmm... who dheck then told me that
just look that it have 8-16 gb ram and ssd
if new one
if you wish some old laptop is also ok to start with
mossy river
IT is fine
loud marlin
idk for mac but ppl do it
mossy river
Cybersecurity, itβs a bit difficult
loud marlin
windows can do job, kinda. but ppl go with kali linux or some like that
old wave
Just a question, anyone else have a hard time with any other distribution other than debian based ones within Virtualbox? I strongly believe that it is not the hypervisor's fault within windows11 since i have disabled it and gone through that rabbit hole, I however do run this system with a i7-1400K, for a long time i was thinking that maybe the E / P cores would be messing with the virtual machines, however prior to installing the guest additions, the VM runs perfectly fine, it is only after i install the VirtualBox Guest additions that i get major visual glitches and hanging terminal windows (On every distribution apart from Debian) which is extremely weird.
loud marlin
it must be enabled
old wave
Hypervisor?
old wave
Yeah i have the VM on Default which does mean it will use hypervisor by itself, i meant i disabled it in the windows features, i read that the WSL functionality could cause issues with Virtualbox aswell
So i disabled WSL entirely aswell
loud marlin
enable hyperv
old wave
In bios or windows features?
loud marlin
bios
old wave
Alright i'll try that π
loud marlin
for in windows idk tbh
old wave
Yeah its weird, all Debian vm's are running perfectly
It might be the Virtualbox Guest Additions, not being able to work with the i7 1400k
Or maybe any of the cpu's with the E and P core technology
loud marlin
guest dont have nothing with cpu... iirc
mossy river
Did you install the parallels tool to the guest os
tired peak
so your text is blurry for your Linux VM? did you check the resolution?
did you check the display settings/resolution?
simple epoch
Is there a discount i get get for the monthly subscription
tired peak
parallels app
any desktop virtualization software will allow you to modify the display/resolution of the VM
tired peak
what happens if you select scaled? is there no option for something where it shows 800x600 (which sounds like what you may be at)
loud marlin
btw is it VMw or VBox?
tired peak
its parallels
loud marlin
ah
tired peak
did you google something like "virtual machine text is blurry in parallels"?
usually the reason is actually due to the high resolution of the macs, so you have to configure it somehow. On VMware, I have something that says "use full resolution for retina display". It's been a few years since I've used Parallels
something higher than that.
try double that
or as high as you can go
so now thats a different issue... again there should be a setting for that
boreal scarab
@umbral bay π
tired peak
yes normal, should be a directory named .john or similar. try ls -a to see what directories are there
shut hawk
Zojja, what did you think of "The beekeeper"? I thought the plot was absolutely atrocious lol
tired peak
oh it was atrocious, thats why I said it is a B movie...
but its hard not to watch Statham
shut hawk
I can't take the deep voice seriously
Disappointed tbh, I'm normally fine with most movies but that one was awful
Didn't even make sense
harsh sedge
hi
loud marlin
Zojja, what did you think of "The beekeeper"? I thought the plot was absolutely ...
the movie had potentional but for me is kinda crap =/ the story can be made better
tired peak
I mean it almost seems like they made it a crappy movie on purpose
I'd love a MST3K of it
shut hawk
Loved how the other beekeeper was an absolute maniac who lasted 5 minutes and then they were like "ok byeee" π
tired peak
and then the FBI agent "did you know..."
no, no one cares
that book she had is a real book
shut hawk
i tried to see if the scam domain was actually registered
tired peak
what does google say?
tired peak
https://who.is/whois/friendlyfriendly.net
go for it
does it now? thats interesting
and I'm dubious you googled
tired peak
shame that brave gave you reddit. But if you find a page that talks about it, png is usually considered higher quality but for a high quality jpeg and png, difference won't matter. Now you can make lower quality jpegs as well
naive violet
Boooo
outer rivet
Papa new guinea
Do not try hack me
vast zephyr
hi world. i need apy keys to theHarvester. someone have it? or someone to know where find it. message private please
dull portal
I don't own the place....
what enb u use that looks nice af
boreal scarab
what enb u use that looks nice af
Bjorn Dark Ages
boreal scarab
what enb u use that looks nice af
Look at the night sky!
karmic geyser
brisk tree
i swear go pilot likes to troll people
loud marlin
the who ?
gray sonnet
you mean copilot?
chilly veldt
I should go make some electrolytes
boreal scarab
ignoring the guy
Guys... there's 2, just hanging around 
loud marlin
hehe
gray sonnet
craggy wing
dull portal
hey
drifting mural
Look at the night sky!
red sun
gray sonnet
what game is it π
drifting mural
ACTIVATE YOUR DAMN WINDOWS
nah
boreal scarab
In a call with @gray sonnet
I started playing https://open.spotify.com/track/02kqNEFXbcFg22pyvUyjmI?si=01442da838d245ef
He said: "What the hell?"
gray sonnet
again with the cursed emoji!
boreal scarab
drifting mural
what game is it π
dull portal
:smilecat: :smilecat: :smilecat: :smilecat: :smilecat: :smilecat: :smilecat: :smilecat: :smilecat: :smilecat: :smilecat:
lol
drifting mural
<:smilecat:829507518702944286> <:smilecat:829507518702944286> <:smilecat:8295075...
the army of cats
finite basalt
My house smells like roast potatoes and sesame oil, it's beautiful
loud marlin
i meant copilot. microsifts ai
oooh...
brisk tree
yeah
dull portal
Hey, you can check you are connected by pinging the ip: 10.10.10.10 if the pings are going through then you should be connected!
loud marlin
yeah
well... microsoft is known to have some bad troll tbh... at last they are good at it π
vast zephyr
perhaps ... curl ifconfig,me then see IP
boreal scarab
@sand trench Mind if I DM?
sick lance
brisk tree
well... microsoft is known to have some bad troll tbh... at last they are good a...
copilot never does what it says and cant spell either
loud marlin
yep... that sounds like microsoft
naive violet
perhaps ... curl ifconfig,me then see IP
That won't work as the VPN does not touch your internet traffic
supple tangle
cats are the best
drifting mural
I just made the best fries ever
devout palm
boreal scarab
Still in a call with @gray sonnet :
Talks about a story
Says: No, OK, Yah And I didn't say ANYTHING....
gray sonnet
steel aspen
Do not try hack me
Pls don't π
terse edge
The email contained a link to an attacker-controlled domain (attacker.mybank.thm) with a password update form similar to a bank one. The form also has a CSRF token already set as a hidden parameter.
What I don't get is this, how can the attacker create a sub domain for a domain he doesn't control?
buoyant tree
Still in a call with <@976398366823039026> :
*Talks about a story*
Says: **No, O...
Vain's daily roast delivered by Matt
terse edge
How can attacker create attacker.mybank.thm and mybank.thm belongs to the bank.
Can someone explain this please?
boreal scarab
Vain's daily roast delivered by Matt
buoyant tree
https://tenor.com/view/dancing-boy-cowboy-gif-10408395884591820047
Also what's your involvement in the Crowdstrike situation
mossy river
> The email contained a link to an attacker-controlled domain (attacker.myban...
Room link?
buoyant tree
@mossy riverDid it arrive?
mossy river
Did who
mossy river
*The Holy Grail* (your PC)
No, they said the repairs they apples failed