Don't you worry. I always joke about my age π
#general
blazing granite
brittle grove
been having hell with shells the past couple days and just now was the first time i finished a shell task without using any part of a walkthrough or even the hints. man the feeling when u see ur self improve in hacking is so nice.
half badge
Don't you worry. I always joke about my age π
It's okay. It's just that our humour is not compatible it seems! Take care
drifting mural
been having hell with shells the past couple days and just now was the first tim...
Good for you, good for you...
blazing granite
been having hell with shells the past couple days and just now was the first tim...
it think the shell hell the port is 666 π π
brittle grove
it think the shell hell the port is 666 π π
looool
i just had to put the achievment here bcoz none of my friends are into hacking so they wouldnt understand
glass nest
Good work Ym!
blazing granite
i just had to put the achievment here bcoz none of my friends are into hacking s...
be proud of your achievements otherwise nobody else would π
grizzled void
been having hell with shells the past couple days and just now was the first tim...
congrats!
twin ridgeBOT
Gave +1 Rep to @grizzled void (current: #366 - 15)
blazing granite
i just had to put the achievment here bcoz none of my friends are into hacking s...
none of my friends are into tech, for that is the internet π I share wine/food/travelling and language knowledge with friends but not tech. Actually I'm the one that friends and family call when something tech doesn't work
languid pecan
Hmm
blazing granite
mmm cookiee π
snow path
Kinda cooking, this is gonna load up whenever you start the game
rapid merlin
Afternoon THM, hope y'all doing well
blazing granite
sup const
blazing granite
I feel overwhelmed
step back a bit and breath
wild zealot
How am i supposed to memorize aal this
blazing granite
How am i supposed to memorize aal this
it's called study π
wild zealot
I just doing the rooms on the learning path
blazing granite
take note, review them, etc
rapid merlin
Take notes, review them, even have others test your knowledge-base
rapid merlin
do rooms, watch channels like LiveOverflow, ippsec, JH
wild zealot
I still dont understand how does pur browser know how to frame the http request automatically
wild zealot
Like how does the browser know what to draft in the http request
blazing granite
space repetition helps, you can google Feynman Technique too
wild zealot
Damn one concept just clicked for me
Thanks guys
How does the browser know what to request for just from the url to search for
Like assets and stuff
rapid merlin
it looks up the ip on a dns server
then based on the things you search for on the website
it sends https get request
to that specific resource
naive violet
Like assets and stuff
Assets are based on the response
It will get the HTML, the HTML will tell it what further assets to get
blazing granite
and James save the day π Good morning James
rapid merlin
^
wild zealot
At my job the saas is running on aws
Right now im just monitoring the security hub which just tracks the checks for configuration(cis, pci etc)
What security assessment can i do as a practice project here
That way i can submit sometthing to my boss
And not come across as dumb
And also upskill myself
blazing granite
AWS is big on business. When I worked as tech support in a platform for adult webcaming we used a lot AWS, because it was easier to upscale as the users went up
wild zealot
Can dev sec ops be remote?
blazing granite
What security assessment can i do as a practice project here
I believe AWS path is available to premium users now, you maybe want to check that if your interested in AWS
blazing granite
alr time to study
go get them π
rapid merlin
Need to read about Feynman Technique later
blazing granite
Need to read about Feynman Technique later
I love the Feynman Technique, also I'm a big fan of Mr Feynman, he had an amazing life
rapid merlin
I love the Feynman Technique, also I'm a big fan of Mr Feynman, he had an amazin...
His name is familiar, but I've never actually looked into any of his works or anything
wheat pecan
Hey everybody π
rapid merlin
o/
blazing granite
His name is familiar, but I've never actually looked into any of his works or an...
He wrote an autobiography that it's called "Surely You're Joking, Mr. Feynman" he also was part of the Manhattan Project
rapid merlin
He wrote an autobiography that it's called "Surely You're Joking, Mr. Feynman" h...
Ahhhh, I've watched Oppenheimer so there's a chance he was in mentioned it
blazing granite
sup ryumen
rapid merlin
it explains why his name is familiar
blazing granite
Ahhhh, I've watched Oppenheimer so there's a chance he was in mentioned it
Him, Oppenheimer and Fermi where all in the Manhattan project. If you want to read a good biography about Fermi, it's called "The Pope of Physics"
chilly veldt
lmao, someone made die hard v2
new action christmas movie dropped this year
called Carry-On
bold nova
I am not able to connect the openvpn of "Enumerating Active Directory", getting this error can someone help me please
i know that fatal error comes if we are running without sudo commmand but over here i am still getting after using sudo
i tried downloading other AD vpn files from thm but getting this error only in "Enumerating Active Directory" room
split ore
I'm doing day 13 with websocket traffic interception, and I wonder if this is called MITM attack.. I'm pretty new to this stuff, so go easy on me. At first I was sure this is like MITM, but then I started thinking, that we aren't actually intercepting traffic between server and another user, but rather modifying data that's sent to and from our machine. Is this how it works?
btw hey @blazing granite π
silver sky
@rapid merlin all done!
oblique loom
Morning 
wicked gazelle
Morning <:coffeecup4:1000933032682852496>
its 7:35pm π
cloud quiver
I'm doing day 13 with websocket traffic interception, and I wonder if this is ca...
This isn't MITM attack π
wicked gazelle
Are you in the future or past? lol
idk for me present 
oblique loom
I gonna try and dig in on hackerone and see if I can get comfortable with it.
But tbh still don't really feel like I can tackle a bug bounty to the same professional degree as a professional hacker.
I can give it a try lol
split ore
This isn't MITM attack π
thanks for the explanation. After what I wrote I really hoped somebody would pick up the conversation, but your response is so self-explanatory there is nothing more to talk about
twin ridgeBOT
Gave +1 Rep to @cloud quiver (current: #7 - 1260)
oblique loom
Actually, I remember (although was years ago) someone in here mentioned bug bounties in the US was useless cause the payout is way too low for the work or something
cloud quiver
thanks for the explanation. After what I wrote I really hoped somebody would pic...
MITM often refers when somebody is intercepting communication between the two parties and tampering with it π . For example , threat actor intercepting communication from a victim using rogue Wi-Fi AP and modifying/dropping traffic . In the case of Day 13 example , we're just intercepting our own request , we're not a middleman between two parties π .
split ore
MITM often refers when somebody is intercepting communication between the two pa...
Absolutely! MITM usually involves an attacker intercepting and altering communication between two parties. In the Day 13 example, we're merely monitoring our own request, not acting as an intermediary between two different parties. π
cloud quiver
Absolutely! MITM usually involves an attacker intercepting and altering communic...
Yup , exactly π
blazing granite
I'm doing day 13 with websocket traffic interception, and I wonder if this is ca...
blazing granite
btw hey <@708804982425780295> π
π how are you?
split ore
π how are you?
Fine, thanks for asking. There's a video rendering in the background, while I'm doing THM :D
twin ridgeBOT
Gave +1 Rep to @blazing granite (current: #65 - 128)
split ore
<#1305926862114914325>
Aight, forgor about this one
rapid merlin
<@456226577798135808> all done!
Nice, looks good
silver sky
Nice, looks good
Over ran the walls tho
rose tusk
Have an easy day peeps
oblique loom
We getting there πͺ
weak birch
Hi
oblique loom
I need more coffee
loud marlin
for frack sake... 3min and 45 sec commercial on YT before song... fracking internet
daring jackal
for frack sake... 3min and 45 sec commercial on YT before song... fracking inter...
There was no "Skip Ad" option?
rapid merlin
Over ran the walls tho
What do you mean
silver sky
What do you mean
loud marlin
There was no "Skip Ad" option?
for soem reason nop
rapid merlin
Oh this is why I bought masking tape for my mirror
silver sky
Oh this is why I bought masking tape for my mirror
I missed that area when masking π
rapid merlin
Clean up is effort
I still have to paint a cabinet and then I need to paint my daughter chest of drawers white
Will hope that mirror is dry when I get back so I can put it up
Slowly getting everything done
glass nest
Stealth - need gift ideas. Nieces - 11, 4 and 3. Nephews 7 and 8.
glass nest
honeslty, most of them would be stoked with that
they are getting vouchers for their games as one of their gifts. vbucks, roblox etc.
daring jackal
Oh cool, i got my niece a toy computer. Already introducing her to the tech worldπͺ
She likes to mess with her parent's laptop
glass nest
Hehe Nice. Next year will be a THM subscription :p
daring jackal
Lmao, imagine hacking at the age of 3 that would be insane
glass nest
oh, cos you ranked up on THM π
daring jackal
Oh dam, nice
glass nest
I know, Right!
daring jackal
Im fixing to pay for thm premium too so i can do the other penetration testing rooms and other stuff
glass nest
Ok.. 1 gift done π
daring jackal
Those are cool
glass nest
Faulty - can I DM you real quick?
daring jackal
Yeah sure
glass nest
done π
rapid merlin
Iβm back
glass nest
Probably
rapid merlin
Thereβs these new things you can get
Theyβre like Minecraft blocks but magnetic
And you can build Minecraft irl
Theyβre pretty cool
Also thereβs these cars you can get that you can drive around walls.
4 year old can get a baby doll
glass nest
Does that mean I'll be getting requests for 3d printing copyrighted material?
rapid merlin
Yeah π€£
glass nest
It'll get you out of the house
chilly veldt
yeah, and hang out with friends
glass nest
reckon it'll do you good?
loud marlin
was at frineds house for 5 min and i end up with lenovo thinkpad t450. looks new cos stil have stickers =/
chilly veldt
guessing it will, though not part of plans cause fuel limit
glass nest
Shame your bike is still in bits π¦
chilly veldt
I do still have a couple of liters in my bikes tank I can put in my car
helps with not watering my fuel lines on my bike over the next couple of months due to vapor
chilly veldt
Shame your bike is still in bits π¦
it's also too cold and dark to ride a bike now
glass nest
I dunno, Bella. I find that once I layer up, a dry winter dark afternoon is a really nice relaxing ride.
glass nest
Ahh. ok
chilly veldt
ends up with like 3C 8m/s
pine stratus
it's also too cold and dark to ride a bike now
hi
glass nest
but if you pop a wheelie, that will block some of the direct wind π
chilly veldt
pop a wheelie on a summer tire with 200kg bike? 
glass nest
I'm just putting off my xmas shopping. I'm about halfway done π
glass nest
Well, I figured anything I order online should really get done this weekend, so if it doesnt arrive for any reason, I'll have wiggle room
chilly veldt
I just have to go to 2 stores, but haven't felt like it yet
fair lava
I'm doing day 13 with websocket traffic interception, and I wonder if this is ca...
Not a full fledged one at least, what you're describing falls under a subset of traffic manipulation/local interception or proxying
True MITM should alter traffic between parties without their knowledge
loud marlin
ubuntu .iso almost 6gb... =/
silver sky
it's also too cold and dark to ride a bike now
Lies
chilly veldt
with the people here it is
glass nest
Yeah, People are the worst.
chilly veldt
mostly due to my appearance as well, as I don't have winter attire for bike riding
loud marlin
take lanter toi have more light π
chilly veldt
I have to go to the store to get wide elastics π
to get the last screw off my carb
glass nest
Or a drill bit
boreal scarab
π΅ ***Dashing through the snow,
In my rusty Chevrolet,
Down the road I go,
Sliding all the way!
I need new piston rings,
I need some new snow tires,
My car is held together by a piece of chicken wire!
Oh, Rust n' Smoke,
The heater's broke,
The door just flew away,
I light a match to see the dash,
And then I start to pray-ay,
The frame is bent,
The muffler went,
The radio it's ok,
Oh what fun it is to drive,
This rusty Chevrolet!***π΅
rapid merlin
Nice
loud marlin
π΅ ***Dashing through the snow,
In my rusty Chevrolet,
Down the road I go,
Slid...
how hight you are ?
boreal scarab
how hight you are ?
Hi, how are you?
loud marlin
so you push door when says pull ?
glass nest
loud marlin
new laptop thinkpad t450. i5 5300U, 8gb ram, intel hd graph, 256ssd...
glass nest
tims typing... but theres 5 mins to go....
loud marlin
i think ill put kali on it...
pine belfry
website running slow for anyone else?
crystal mauve
Ahhhhh I just figured out the alien thing guys
crystal mauve
So they are going to use this clear deception to introduce tech that scans wave patterns
umbral bay
π π₯³ 
Advent of Cyber 2024 DAY 14 Let's Go! π₯³ π
glass nest
There we go π
loud marlin
Ahhhhh I just figured out the alien thing guys
alien movie?
loud marlin
The drones in nj
@boreal scarab dheck you do ?
crystal mauve
There's currently not enough law on the transmission of information through airspace
manic blade
hi i need help to learn bufferoverflow attack can any one send my website that i can learn form it plz
loud marlin
might try you faworite search engine ?
boreal scarab
<@214547132231843840> dheck you do ?
Nooooooooooooooooooooooooothing π
Ngl... I was thinking about wardroning
cloud quiver
hi i need help to learn bufferoverflow attack can any one send my website that i...
Check out this article π
loud marlin
Nooooooooooooooooooooooooothing π
no one believe you
boreal scarab
π π₯³ <:thm:635113348756799518> Advent of Cyber 2024 **DAY 14** Let's Go! <:thm:...
I swear, you have a script to post that, and it just changes the day in your post 
boreal scarab
no one believe you
chilly veldt
my hands smell like fuel now
boreal scarab
my hands smell like fuel now <:kek:1128065648728227910>
Drone talk
AOC talk
Bella: "My hands smell like fuel now"
wintry edge
hi
worn thorn
typical general talk
worn thorn
only missing someone asking sus questions for learning purposes
boreal scarab
only missing someone asking sus questions for learning purposes
Wait for it
Moosic
true urchin
only missing someone asking sus questions for learning purposes
How to get bank credentials for ethical reasons
just kidding
boreal scarab
worn thorn
https://open.spotify.com/track/2QAs9Ubp2AtmTno1pxFAVB
actually listening to nightcore rn 
chilly veldt
*Drone talk*
*AOC talk*
Bella: "My hands smell like fuel now"
hey hey, I said I was going to work on my carburetor
boreal scarab
hey hey, I said I was going to work on my carburetor
Oh, I didn't see that lol
chilly veldt
it was right next to the "idk if I am going to a car meet tonight"
boreal scarab
I joined to sing my little song lol
boreal scarab
https://tenor.com/view/lantern-gif-23982460
SKYRIM!
chilly veldt
oh well, imma ciphen some fuel from my bike to my car so I got a bit more to run on
hackers am i right
umbral bay
I swear, you have a script to post that, and it just changes the day in your pos...
4th year in a row tradition. π
Also still using the π as an upvote (you can not unsee that)
umbral bay
THM Magic happening daily. πͺ
wispy sparrow
Is it me or are some "Easy" CTFs hard
true urchin
Is it me or are some "Easy" CTFs hard
It's not just you
loud marlin
Is it me or are some "Easy" CTFs hard
depend how you define easy. if how easy is to execute and get root fast and easy. then it might be that easy. if you need 100 or so steps that you need to know what you do, then might not be easy
chilly veldt
Time to do some hillbilly stuff
formal ermine
is this a moment when most vm are in use?
random sequoia
Guys do you think ai will replace cyber security jobs?
wispy sparrow
hell no
loud marlin
no
finite tulip
no
loud marlin
ai is dumb π
mossy river
I think AI will be added to tools
For example ghidra with AI would be interesting
You can actually see AI analysis of Malware on sites like Virus total
worn thorn
gonna be an arms race between competing entities
loud marlin
For example ghidra with AI would be interesting
burpsuite might be also nice
i might learn it eventually
wispy sparrow
depend how you define easy. if how easy is to execute and get root fast and easy...
I mean the easy rooms some of them are hard to do
random sequoia
I get afraid when I see news about ai and Stop learning then watch motivation videos to start again
loud marlin
I mean the easy rooms some of them are hard to do
like i say. how you define easy. number 10 does not sound big. 10e is not much, 10 parking tickets are a lot
finite tulip
We already have a bunch of tools to help us, even though they may not be AI per say, they help automate some processes, AI may expand on this.
mossy river
AI will only take over if you let it
worn thorn
which might be on its way based on all the implementations
polar holly
People of the Cord... I'm on a bus... Wheee... Feel like a kid again. Wheels o nthe bus goes bump bump bump all day long... π€£π€£
worn thorn
ye are losing it
finite tulip
Is it me or are some "Easy" CTFs hard
It can depend on what you learn as "easy" but some rooms you may find are harder than you would expect as easy rooms
viscid hill
silver sky
AI will only take over if you let it
finite tulip
It can depend on what you learn as "easy" but some rooms you may find are harder...
An example I'll give is that there was an easy CTF room (can't remember which) that needed privilege escalation, it was not part of the learning path but it was an easy type of privilege escalation.
boreal scarab
AI will only take over if you let it
hushed heath
Guys do you think ai will replace cyber security jobs?
Maybe
boreal scarab
"It's all arguably top-level trolling on Artisan's part, and it's certainly helped the startup get plenty of attention. It could backfire, of course, especially if potential customers fear reputational damage from being associated with a company that's riled so many people."
worn thorn
welp gonna adapt to the crazy people
random sequoia
@hushed heath π’π’π’
hushed heath
<@1303147177404661783> π’π’π’
But still they need cyber guys
hushed heath
<@1303147177404661783> π’π’π’
Maybe means like they can do some job not completely
mossy river
If anti people measures exist to stop humans from figuring out how cyber attacks happened, there will also be anti AI measures. Humans will always be needed in one way or another
random sequoia
@hushed heath means it can reduce the demand
boreal scarab
welp gonna adapt to the crazy people
hushed heath
<@1303147177404661783> means it can reduce the demand
We can say that but still people are needed to train models
wary root
Website slow for y'all also?
whole yew
Guys do you think ai will replace cyber security jobs?
There will always be a need for humans to review and correct the hallucinations in AI outputs.
rapid merlin
^
whole yew
I will always be fine, as I'm an actual domain expert, but entry level will be affected because business people will deliberately not understand that people like me aren't replaceable by AI, and they will not want to hire junior roles so they can be trained to replace me.
rapid merlin
when doing a room about a tool on thm are we supposed to know how to use the tool afterwards or is it more like: i get what the tool is used for?
whole yew
Most of the tool introduction rooms I've seen on THM aren't intended to make you an expert in the tool; it's an introduction so the next time you encounter a problem that tool can be used for, you will remember "oh yeah, i remember something like this.... [tool] is what I should use for this kind of problem"
random sequoia
@whole yew can we hack the ai system
rapid merlin
Most of the tool introduction rooms I've seen on THM aren't intended to make you...
ok thank god I thought i was dumb
twin ridgeBOT
Gave +1 Rep to @whole yew (current: #11 - 792)
random sequoia
@whole yew ai
whole yew
ML-based systems are notoriously "easy" to poison with malicious data, for a given value of "easy"
rich cosmos
hi in today's challenge in AoC , do I need to run an AttackBox to see the content of route-elf-traffic.sh ? I want to keep working on my local machine
sick lance
hi in today's challenge in AoC , do I need to run an AttackBox to see the conten...
#1305926862114914325 please π
rich cosmos
ok thanks
chilly veldt
@glass nest the elastics trick doesn't work π
glass nest
Aye. Works better on things like hex bolts. Was worth a try though
chilly veldt
yeee, guess I'll give it a wait for when meeting with my grandpa
glass nest
Grandpas always know all the tricks
rapid merlin
evening bella, how ya feeling?
chilly veldt
Grandpas always know all the tricks
he has the tools at least, he was my go to for when working on my car living at my parents
rapid merlin
evening esqy aswell
chilly veldt
cause my grandparents lived 5 minutes away from them
chilly veldt
evening bella, how ya feeling?
feeling chill, might be a little high from random fumes in my apartment, but that happens
glass nest
Yeeeaaahh, but you can't beat Grandpa knowledge. Legends say it's better than Uncle knowledge
polar holly
Uncle Esqy... Guess what mode of transport I'm currently using?
rapid merlin
feeling chill, might be a little high from random fumes in my apartment, but tha...
That's good, hope you continue to feel better
polar holly
No a bus... I thought these things are myths
chilly veldt
That's good, hope you continue to feel better
my apartment might be a lil illegal π
polar holly
It's like a long haul bus. Has got 4 wheels and a trailer to boot. Also on my way to Cape Town for holiday
glass nest
Ooh Cape Town. thats one of the two places in SA I could name off the top of my head :p
polar holly
The other one?
glass nest
Johannesburg :p
polar holly
Voetsek...
glass nest
You have home-turf advantage π
polar holly
Mean that's a place and all, but I hate Johannesburg. I'm in pretoria. They're our rivals.
I mean yeah, I do. I don't know all the places in England. The only ones I know are Brighton and London. Then I mess up.
loud marlin
capital of s africa
polar holly
No... LMAO it's where the Union Buildings are. Basically the white house of South Africa
And yeah it's a capital of South Africa. Can't remember if it's judicial or administrative. But one of the two.
glass nest
Ahh. Like the ACT in Oz
polar holly
Yeah... And I just checked it up, it's the administrative.
But yeah. countries man. You might not like it all of the time, but when you leave it, your heart yearns to return to see those blue mountains and brown skies... Oh wait it's the other way around.
polar holly
LMAO
Anyways, need to go. Laptop battery not as good as I once thought. Barely on and it's already at 25% mind you I used it to do the AoC today too.
quaint sleet
guys is tryhackme server is down?
glass nest
Peace out Arjay
little linden
anyone here know about arm64ec integration on windows
glass nest
HAMD - Might just be overloaded.
quaint sleet
HAMD - Might just be overloaded.
nvm its fine thankyou:)
sweet sentinel
bro i got timed out from the owlsec server for singing the sigma sigma boy song π
sand trench
YAY it is dragonfable warring time
ashen marsh
hi
loud marlin
hi hi
shadow chasm
I have a question about installing kali linux on virtual box?
What partition option should I use for Kali Linux for VMware? entire disk or entire disk with LVM.
modest burrow
Entire Disk(in my case)
boreal scarab
I hate ISP routers with a burning passion
forest comet
Hi its a pleasure stay here i need help somebody help me please i need Know where its the password of the fisrt machine in the operation tiny frostsite and know if the machine can be dangerous? im sorru im a begginer but i wanna try
boreal scarab
Was working, then boom.. nothing
loud marlin
What partition option should I use for Kali Linux for VMware? entire disk or ent...
in vm you can go just default all data on one partition
modest burrow
Hi its a pleasure stay here i need help somebody help me please i need Know wher...
Yo,chill a little,what you want?
Explain more detailed
forest comet
Yo,chill a little,what you want?
mmm?
modest burrow
Nah,its just that i didnt understood what you asking
forest comet
Explain more detailed
i wanna use the first machine of the SOC advent 2024
modest burrow
Or maybe just bcs im high..
midnight coral
Hey I am new at thm , can someone help me through this
modest burrow
i wanna use the first machine of the SOC advent 2024
YOOO,ON THM,sorry,i thought im on other server lol,idk how to help you
grim sparrowBOT
modest burrow
Aint no way you actually checked a tenor URL
shadow chasm
in vm you can go just default all data on one partition
Thanks, I was reading up and some say entire disk is best for beginners but I found another one saying LVM is better for not losing data.
twin ridgeBOT
Gave +1 Rep to @loud marlin (current: #26 - 371)
forest comet
YOOO,ON THM,sorry,i thought im on other server lol,idk how to help you
ok but thanks
twin ridgeBOT
Gave +1 Rep to @modest burrow (current: #1645 - 2)
loud marlin
Thanks, I was reading up and some say entire disk is best for beginners but I fo...
lvm is other thing. just do you backup/snapshot of vm when you think is smart and will be ok
modest burrow
ok but thanks
Yeah im really sorry,im just a lil tired
shadow chasm
I don't mind if the vm enviroment gets wrecked as long as my system is not affected.
modest burrow
Whats your setup btw?
shadow chasm
lvm is other thing. just do you backup/snapshot of vm when you think is smart an...
Thank you
shadow chasm
Whats your setup btw?
My physical hardware? Asus and I have an AMD ryzen 5 5500
shadow chasm
No tower
modest burrow
Aaaahhh
Tower
Cool,i thought its a laptop since you didnt say anything about GPU or ram
Btw
shadow chasm
I need more disk space . I have 16 gb of ram and 500 gb storage currently. I have a 1tb drive I need to install.
modest burrow
If you getting started with Kali Linux i would recommend dual booting instead of using a VM
1.It can use the entire resource your PC has
2.On VM you have limited device compatibility and failures can occurs more often(in my experience)
3.Its more performant, less laggy,works 60+hz instead of 30hz that its capped by VM
modest burrow
I need more disk space . I have 16 gb of ram and 500 gb storage currently. I hav...
Woow,indeed,500gb can fill pretty quick,especially if you're a gamer
Or,in your case,if you have multiple VMs
daring jackal
just completed walking an application on the jr. penetration tester learning path, it was a lot to digest but once i figured it out it wasn't that hard
modest burrow
<a:BRUH:685675914142810138>
Yo,i mean,its my opinion
silver sky
No one said you wasn't entitled to one?
modest burrow
?
You can correct me if you think VM is better
VM has its benefits,like dynamic storage
Portability
silver sky
Given Kali is designed not to be an everyday OS as well as it's a pain to update (easier to just install a new image on a VM) it's better to run it on a VM
modest burrow
Indeed..
modest burrow
Ah lol
Did not even took that in consideration
Im personally running it in dual boot mode...it works better than in a VM,but mybe its my fault,probably misconfigured the VM
modest burrow
π
silver sky
everyone behave
loud marlin
well.. i bonked kali
modest burrow
Anyway,do you think im doing wrong by dual booting?
silver sky
well.. i bonked kali
loud marlin
Anyway,do you think im doing wrong by dual booting?
not smart idea. if you know what you do exactly. them is ok i guess
silver sky
Anyway,do you think im doing wrong by dual booting?
You do you, but I personally wouldn't recommend it to newbies
mossy river
If you getting started with Kali Linux i would recommend dual booting instead of...
Kail Linux is a pentesting OS.
You're more than welcome to run it on bare metal but here is something to keep in mind:
- If you are a security professional, you should not be performing any of your actions on your host. It's bad practice.
- Security-wise, you should expect that you are interacting with malicious actors and software, it would be incredibly insecure to do so on your host
- Furthermore, if someone does infect your OS, using a VM you can immediately stop them
- It is a pentesting OS, it's meant to be setup on the go. I can understand not wanting to setup Ubuntu every time with all your tools but Kali is intended to avoid all of the setup and just immediately get into work
- If you mess with something on your host machine, there's no snapshotting, you lose your entire host. A beginner should experiment on a VM because Linux isn't as protected as Windows or Chrome OS, you will mess up something sooner or later
modest burrow
You do you, but I personally wouldn't recommend it to newbies
Well,i cant say im an expert,but im pretty sure i did not fucked up my windows
rapid merlin
Kail Linux is a pentesting OS.
You're more than welcome to run it on bare metal ...
This should be pinned tbh
grizzled wing
the burp suite related tasks are so much fun
rapid merlin
can just reference it every time someone asks whether they should run kali on a host
modest burrow
Kail Linux is a pentesting OS.
You're more than welcome to run it on bare metal ...
Now that's made me understand π
When installing,i saw multiple opstions: bare metal,vm,air-gapped,etc
exotic maple
Not sure if anyone has experience with metasploit but Iβm new to the program and Iβm in the process of installation and when I try to run the console .bat file I get an error βcannot load such file - - rex/powershell/psh_methods (LoadError)β if anyone has some insight Iβd appreciate it, Iβve allowed the files through windows defender and Iβve already uninstalled and reinstalled metasploit
modest burrow
I chose bare metal,but maybe ill change to a vm aswell after this advice
boreal scarab
Fuck ISP routers, fuck ISP routers, fuck ISP router!
π
errant fossil
Fuck ISP routers, fuck ISP routers, fuck ISP router!
<:AMkannamiddlefinger:9327...
Looks like murder has happened
boreal scarab
loud marlin
<:oof:689626579512721447>
new laptop is weird. dumb intel gpu integrated shit...
shrewd escarp
Fuck ISP routers, fuck ISP routers, fuck ISP router!
<:AMkannamiddlefinger:9327...
I agree. My cable modem is in bridge mode, Everything goes through pfSense....
rapid merlin
Back to studying
loud marlin
garbage π
daring jackal
π
modest burrow
what should i eat
more ram
loud marlin
silver sky
what should i eat
"Shit with sugar on" - my mums favourite saying
daring jackal
https://downloadmoreram.com/
lmao
hexed kestrel
What are all the certifications I can get through THM?
wary root
Stupid question perhaps, but how come sometimes you need to add an domain to /etc/hosts but sometimes not? How can you know when you need to do it or not?
loud marlin
"Shit with sugar on" - my mums favourite saying
You will eat what i made today... if you do not like it, then starve -- my mom
rapid merlin
Anybody know whether it's possible to force certain file extensions (.PNG, .JPG) to go to a specific folder in obsidian?
whole gazelle
π !!!
loud marlin
Anybody know whether it's possible to force certain file extensions (.PNG, .JPG)...
you can define that all pic goes in same folder in where is you document located. so all what you put in that text as pic will be saved in that folder
boreal scarab
I should get a new SSD for my laptop, put Qubes on it, running whonix. Why? Because......... Yes
loud marlin
Anybody know whether it's possible to force certain file extensions (.PNG, .JPG)...
check here
polar shale
Anybody know whether it's possible to force certain file extensions (.PNG, .JPG)...
πππ i fuxking feel you on this shit be so organized then boom 2024-screenshot.png just right under everything
polar shale
Stupid question perhaps, but how come sometimes you need to add an domain to /et...
Mainly for practical purpose i believe so that you can preform domain enumeration usually is what i have seen but ive seen its outside thoses cases as well
wintry edge
does anyone here have a degree in cybersec/ or a job in cyber? can i talk to them
broken rampart
Hi, nice Advent of Cyber 2024 π€
rapid merlin
does anyone here have a degree in cybersec/ or a job in cyber? can i talk to the...
Ask your question, people will get around to it eventually
polar shale
Fuck ISP routers, fuck ISP routers, fuck ISP router!
<:AMkannamiddlefinger:9327...
@shrewd escarp swap and keep for IoT research is what i do everytime lol
polar shale
does anyone here have a degree in cybersec/ or a job in cyber? can i talk to the...
Yes
polar shale
I should get a new SSD for my laptop, put Qubes on it, running whonix. Why? Beca...
You just watched the newst mental outlaw video... didn't you π dont lie now
rapid merlin
mental outlaw the goat
blazing granite
I should get a new SSD for my laptop, put Qubes on it, running whonix. Why? Beca...
I like qubes
polar shale
mental outlaw the goat
Yup
polar shale
I like qubes
Is good what are you running on tho? And do you daily drive?
rapid merlin
daily driving Qubes is overkill for most people
you're more than welcome too if you want
boreal scarab
You just watched the newst mental outlaw video... didn't you π dont lie now
Yah, but also knew of qubes waaaaaaaay before his vid. He just sparked it up again for me to try
polar shale
daily driving Qubes is overkill for most people
Well i mean its best to install on hardware over vm
polar shale
Yah, but also knew of qubes waaaaaaaay before his vid. He just sparked it up aga...
Lol i figured so π€£
rapid merlin
Qubes is way too complex for any VM lmao
blazing granite
Is good what are you running on tho? And do you daily drive?
I daily drive Kubuntu
polar shale
Qubes is way too complex for any VM lmao
Hence i was asking about daily driving
blazing granite
Isnt that the like chinese flavor of ubuntu?
Itβs the KDE one
steep mountain
Anyway,do you think im doing wrong by dual booting?
Why would you do that?
polar shale
Itβs the KDE one
I wss thinking of Ubuntu Kylin
I dont like kali linux. Just import the repos on any literally any other debian based distro. I think kali is best for exposure or if you just dont ahve time for some reason
blazing granite
I wss thinking of Ubuntu Kylin
Thatβs what I use in my dell. Iβm planning to built a desktop pc and Iβm going to use Fedora in it
polar shale
Thatβs what I use in my dell. Iβm planning to built a desktop pc and Iβm going t...
You run Kylin lol? Are you in states of you dont mind i ask?
I thought kylin discontinued
Daily Driving Red Star OS π
cloud quiver
Daily Driving Red Star OS π
Glad to hear I'm not the only one
polar shale
Glad to hear I'm not the only one
π great minds think alike right?
cloud quiver
π great minds think alike right?
π€£
polar shale
Im not a big discord person but i actually enjoy coming here
Just thought discord was some gamer stuff for a while so i just left it alone
Need connect my thm tho
cloud quiver
Need connect my thm tho
You can verify to connect your THM account and Discord profile π
loud marlin
@glass nest @boreal scarab middle part print =/
rapid merlin
what you printing
loud marlin
atlantis ship/town
loud marlin
there is lots thing to do
rapid merlin
true that
loud marlin
i did tbh print few movie props like guns. for some friends
loud marlin
not sure how good. i just press print lol
rapid merlin
nice
loud marlin
bonked kali 2nd time in row...
sand matrix
Do we get private vpn configuration file, after subscription??
silver sky
You get access to premium servers
sand matrix
The configuration file the is used is downloaded form /access page, in case of subscription also.
loud marlin
which means better speeds
and iirc you get unlimited attach machine/kali. and slightli better vpn speed
- all the content
sand matrix
which means better speeds
But the vpn configuration file is same as everyone use.
lethal fog
What makes more sense: encrypting a zip file or encrypting all the files in a zip file? π€
little siren
No intro, dumps spam, thinks it will help, 
rapid merlin
@mossy river idk if you got the first ping, mb if you did
I edited the msg to include him so I don't think he did
loud marlin
@whole yew might ?
sand matrix
Is EU-VIP vpn servers are different from regular one? I am asking VIP is mentioned in the name.
rapid merlin
No intro, dumps spam, thinks it will help, <:snorlax:723899614675337216>
probably got phished
rapid merlin
Is EU-VIP vpn servers are different from regular one? I am asking VIP is mention...
What
mossy river
Can you DM me with more details, please
rapid merlin
Yes, they have better speeds & better reliability, as with most things that are paid
@sand matrix 
sand matrix
Can I use any vpn server configuration file to connect?
rapid merlin
unlimited attackbox aswell I think
rapid merlin
Can I use any vpn server configuration file to connect?
what do you mean
sand matrix
what do you mean
I mean when we download configuration file, we have multiple option, so how to choose which one to download and use
rapid merlin
...
blazing granite
...
wanton ingot
Is there any detailed documentaiton for what I have to do to upload rooms to thm?
opal perch
aaa
sick lance
Is there any detailed documentaiton for what I have to do to upload rooms to thm...
Like what you're allowed and what not?
wanton ingot
Like what you're allowed and what not?
Well, yes. Also more just how I need to actually create the room, docker, VM?
sick lance
Well, yes. Also more just how I need to actually create the room, docker, VM?
It will be a VM in an ova format
wanton ingot
Yep, those articles is exactly what I was looking for - I knew there must be some somewhere haha
thanks
Oh wow, interesting:
Brute force actions performed using the AttackBox should be completed within five minutes or less, considering that each user may have a unique VM configuration. Ensure that any hashes intended to be cracked do so within the specified timeframe using either Hashcat or John with the rockyou.txt wordlist; if an alternative method is used, provide hints accordingly.
Knowing this might save me some time when completing rooms in the future π
Actually @sick lance is it ok if I DM you quick?
fair lava
Well, yes. Also more just how I need to actually create the room, docker, VM?
Server-based ISOs are better over desktop ones for ubuntu because of conversion process
sick lance
Actually <@958383130102870026> is it ok if I DM you quick?
Ya
opaque ember
Oh wow, interesting:
```
Brute force actions performed using the AttackBox shoul...
5 minutes or less? Damn I once bruteforced a room and it took me like 30 minutes lol
twin ridgeBOT
β Gave the role Creators-Lounge to squeezed.lemon
sick lance
#creators-lounge will be a better channel for your questions @wanton ingot
loud marlin
No access =/
wanton ingot
π Thanks. Don't want to too give too much away about it though lol, incase it ends up on ther
frail tundra
little siren
Did anyone manage to do todays AoC task on their own device (not on the attackbox)?
sick lance
No, as the script won't work, and THM don't advise you to take materials off the attackbox to use.
little siren
I see
That makes sense I was a bit mad that there was no download button as usual
A warning about this would be cool
sick lance
There may be something in the THM's ToS.
little siren
I meant as in the day instructions
Im reading them again and it doesn't look like it says u must use the Attackbox anywhere
sick lance
little siren
I might be wrong but that doesn't mean Attackbox is a must
granite narwhal
Is that normal
loud marlin
fresh kali install...
boreal scarab
@rapid merlin Think we raided your house
wary root
is it possible to find someones finished rice for kali, and download it as an "finished product"? and if it is possible, are there any "well known ones"
rapid merlin
ricing kali is pointless, it's inevitably gonna go boom eventually
no point wasting your time finding or creating one
rapid merlin
<@456226577798135808> Think we raided your house
I was hiding in the ceiling plants with the spooders :3
rapid merlin
Still not worth it
plus then there's learning the keybinds
and everything else accompanied with ricing
wary root
aight
rapid merlin
If you wanna just change terminals or wtv, fair enough
wary root
honestly, I don't know. Just seen some pictures and it looks nice, so got interested. But won't bother with it myself, I'm too new to unix
rapid merlin
yeah, ricing is more advanced things and honestly, usually just causes complete headaches
And taking about plants I saved some at B&Qs death sale
The plants that barely made it
rapid merlin
And taking about plants I saved some at B&Qs death sale
death sale, sounds like something out of a mission impossible movie icl
love how wacky and stupid those films are icl
rapid merlin
death sale, sounds like something out of a mission impossible movie icl
They put all the dying plants in the sale in the depressy rack
And I come along and buy them all
rapid merlin
They put all the dying plants in the sale in the depressy rack
ah LO
Β£2
π
idk, I need to stop being lazy and get a job so I can start getting certs done LOL
rapid merlin
idk, I need to stop being lazy and get a job so I can start getting certs done L...
I would love a job
wary root
just get one
rapid merlin
I would love a job
Not necessarily in cyber, just any job that I can get too and start getting certs done lmao
rapid merlin
Not necessarily in cyber, just any job that I can get too and start getting cert...
A lot of the certs are expensive
wary root
rapid merlin
I'm extremely antisocial and barely spend any money anyway
But I suppose in the long run the pay makes up for it
rapid merlin
I'm extremely antisocial and barely spend any money anyway
I donβt drink, smoke or do anything but I am wasting money on plants
rapid merlin
I donβt drink, smoke or do anything but I am wasting money on plants
Yeah fair enough
I mean is it a waste though
π
valid ig if you enjoy it
rapid merlin
valid ig if you enjoy it
Itβs an addiction
can think of worse addictions to have
Everyday
π
wary root
i own a total of 0 plants
best so, they would live for like three weeks until they would be dead
rapid merlin
I know a lot of people wont keep them because they just kill them
rapid merlin
https://tenor.com/view/lion-king-murderer-murdered-murder-scar-gif-17695981
I love scar he was so sassy
βBe preparedβ was a banger
yeah he was so funny
hades was sassy asf too iirc
boreal scarab
I was hiding in the ceiling plants with the spooders :3
wary root
the thm services today has been fucked
daring jackal
almost done completing content discoveryπ
loud marlin
big amount of users
silver sky
are they being perma DDOSed or smth
No, just will be a lot of users
plus THM machines are hosted on AWS not THM
rapid merlin
downsides of running free ATKBox
I'd recommend just doing it on your VM(s) anyway
probably better
loud marlin
hmm... weirdly i got logged out of thm for some reason =/
rapid merlin
session timeout?
loud marlin
no. off the site. but ok
rapid merlin
ah
daring jackal
i was trying to answer this question after following the steps in the Subdomain Enumeration room and i even looked up videos to help without trying to cheat to make sure i wasn't tripping but the answer would not pop up no matter what i did
i got it now but damn
sand trench
hmm... weirdly i got logged out of thm for some reason =/
happened kinda often for shadow a few weeks back where every week shadow had to relog
loud marlin
why mi kali screen is weirdly bright =/
loud marlin
so thinkpad have external and internal battery... how that works? are they active in same time or ?
loud marlin
ello
rapid merlin
Gawd I am tired
sand trench
loud marlin
you wished to start at that time or mistake ?
boreal scarab
sand trench
you wished to start at that time or mistake ?
that was a mistake
welpies time for meeplies mlooplies to the beep boops for the sleep sloops
sand trench
you wished to start at that time or mistake ?
the entire video is good... just if you can't watch it all so be it
each point is kinda self contained
loud marlin
will watch it
rapid merlin
is DFIR, Threat Hunting or Malware analysis part of L1 / Tier 1 SOC analyst job?
or is it just log analysis and event triage?
clear jackal
More than likely not, it really depends on the org. I wouldn't bet on it though
crude stump
is DFIR, Threat Hunting or Malware analysis part of L1 / Tier 1 SOC analyst job?
I think malware analysis and threat hunting tier 3
But titles to begin with make no sense because each company has you do different stuff
rapid merlin
it wouldn't make sense since tier 1 are the ones who escalate the events though
like how will they have time to do DFIR and Threat Hunting
modest mica
whats the best free vm for windows?
rapid merlin
probably virtual box
crude stump
it wouldn't make sense since tier 1 are the ones who escalate the events though
Which is right
rapid merlin
me i use wsl
bcs for linux i just do basic terminal usage
but if u want full vm virtual box is the best free one
crude stump
Thatβs why tier 3 and tier two are the ones that usually dive deeper
rapid merlin
and then vmware best paid one
crude stump
whats the best free vm for windows?
Thereβs two virtual box and VMware
VMware came out with a free version
crude stump
Really depends. I agree with virtual box tho
rugged kayak
vmware workstation pro is now free for personal use
rapid merlin
vmware is better if u pay
crude stump
So pretty much anything that has a paywall
rapid merlin
vmware workstation pro is now free for personal use
huh
i don't think i tried pro
yeah might be better than virtual box then
rugged kayak
rapid merlin
i think i tried it before they made pro free
queen halo
I'd recommend trying both :b
It was a bit of a hassle to set up the account for VMWare Workstation Pro though
remote jewel
anybody got a link to DL kali on UTM? only finding virtual box links
rugged kayak
opaque flax
anybody got a link to DL kali on UTM? only finding virtual box links
Cant you download the iso and just install it?
shell peak
vmware workstation pro is now free for personal use
Ipak je vb tata
crude stump
shadow chasm
Kail Linux is a pentesting OS.
You're more than welcome to run it on bare metal ...
Thank you, this is my first time installing Kali, I have installed other versions of linux like unbuntu. I'm definitely a beginner at this.
twin ridgeBOT
Gave +1 Rep to @mossy river (current: #5 - 1384)
cyan sapphire
Hey π college student cybersecurity major here!
wet rivet
is there a way to have the website into a dark mode?
wet rivet
is there a preference section just wondering
wet rivet
https://discord.com/channels/521382216299839518/546650767495397376/1317300905221...
thank you so its coming dec 23rd
twin ridgeBOT
Gave +1 Rep to @glass nest (current: #17 - 506)
glass nest
Looks that way. I just use the Dark Reader extension on Chrome, so.. It's always been dark mode for me
wet rivet
Looks that way. I just use the Dark Reader extension on Chrome, so.. It's always...
thank you
rapid merlin
whats the best free vm for windows?
I use Virtual box
rapid merlin
Hey π college student cybersecurity major here!
Are you majoring in IT/cyber or are they two different things at your college?
cyan sapphire
Are you majoring in IT/cyber or are they two different things at your college?
It's Cybersecurity and Information Assurance that's what they call it at my college
wet rivet
whats the best free vm for windows?
i use hyper v manager
rapid merlin
It's Cybersecurity and Information Assurance that's what they call it at my coll...
Never heard of that, Is IT a separate thing?
How are you liking it so far?
uncut pewter
Hi
rapid merlin
hi
brittle lynx
zealous basalt
Hey
I need a platform to master linux
Suggest me some
knotty pendant
How do i make linux my default os
I want ubuntu
I tried usb and it doesnβt work
rapid merlin
How do i make linux my default os
you should install it on a partition and modify the booting options order
knotty pendant
you should install it on a partition and modify the booting options order
How can i do that
cloud quiver
How do i make linux my default os
rapid merlin
I tried usb and it doesnβt work
it does work, i suggest you provide more info on what is failing
so we can actually help you
cloud quiver
How do i make linux my default os
If you're on Windows π
rapid merlin
cause usb installing is a pretty much well stablished op
you are probably making one mistake along the process but we dont know if you dont show us
knotty pendant
it does work, i suggest you provide more info on what is failing
I try to go into bios and boot off a usb but i looked everywhere for a usb and couldnβt find one except the boot order
knotty pendant
It has a linux option?
cloud quiver
It has a linux option?
If you have Linux installed on hard-drive/SSD , yes π
knotty pendant
Ok i will try that
I already have unetbootin but when i try that it says itβs missing a file
And i put ubuntu on it
loud marlin
@boreal scarab @glass nest it start to look alike ship... and thi is 30cm ruler to compare size =/
rapid merlin
I want to start in cybersecurity, and I would like to know if there is any roadmap you can recommend.
knotty pendant
I want to start in cybersecurity, and I would like to know if there is any roadm...
Start with IT fundamentals
cloud quiver
I want to start in cybersecurity, and I would like to know if there is any roadm...
You have a learning roadmap in the link above π
rapid merlin
thanks π«°π»
knotty pendant
@cloud quiver is there any other way to install linux?
cloud quiver
<@719261261665402921> is there any other way to install linux?
Try to install it on VM
loud marlin
there is multipla way to install any linux
knotty pendant
Try to install it on VM
Like i want it as my main os
Before windows 10 is unsupported
loud marlin
then you need find one you wish. download, get it on usb and install. depend what linux you go with there is one or two thing different from others
loud marlin
dual boot is not so smart to go with. it can brake stuffs
knotty pendant
dual boot is not so smart to go with. it can brake stuffs
What should i do
loud marlin
if you need windows the go with dual boot. but first read of possible issues. brake grub, bootloader things and so
knotty pendant
if you need windows the go with dual boot. but first read of possible issues. br...
I dont need windows
loud marlin
then you put linux of choice on usb with rufus or some windows tools and then boot that linux from usb and go from there
knotty pendant
Ok
knotty pendant
then you put linux of choice on usb with rufus or some windows tools and then bo...
When i use rufus it says access to the device is denied
loud marlin
format that usb before
wooden totem
https://www.freecodecamp.org/news/how-to-dual-boot-windows-10-and-ubuntu-linux-d...
and then Windows one day says "wait a minute, this space is supposed to be mine"
inland cave
I try to go into bios and boot off a usb but i looked everywhere for a usb and c...
Corrupted
knotty pendant
Im actually going to change to kali
@loud marlin should i use the kali installer or a different one
Like live boot
loud marlin
kali is not smart to use for main os. it is unstable
knotty pendant
Oh
loud marlin
kali is best for VM
knotty pendant
Welp
loud marlin
try ubuntu linux
knotty pendant
Can i still use a vm in ubuntu
knotty pendant
π€
inland cave
kali is not smart to use for main os. it is unstable
Said who?
Never once had any problems with kali
knotty pendant
Never once had any problems with kali
You use kali as your main os?
loud marlin
it is also hacking os. you never know what can cause issue. and have way big amount things that updated all the time. that can cause issues...
inland cave
What?
loud marlin
after updates can cause issues. long story short... not so smart idea to have it as main is or dual boot
inland cave
Just run it in vm whatβs the need to run it through bios boot
wooden totem
blackarch as main os π΄
knotty pendant
blackarch as main os π΄
You have black arch?
wooden totem
Just run it in vm whatβs the need to run it through bios boot
bios run tends to be generally faster
pen distros should still be on vm tho
wooden totem
You have black arch?
I could never install arch
knotty pendant
My usb is now called Ubuntuπ€
wooden totem
parrot is the best kali alt
knotty pendant
Yes
dark frost
my mother called my linux vm , a video game π
twin ridgeBOT
Gave +1 Rep to @loud marlin (current: #26 - 372)
knotty pendant
wooden totem
I have full metal USB sticks and if I accidentally leave one plugged in for too long it gets too hot to touch
loud marlin
i have same issue with usbC hub thngy
inland cave
I have full metal USB sticks and if I accidentally leave one plugged in for too ...
Thatβs on your computer
opaque flax
I have full metal USB sticks and if I accidentally leave one plugged in for too ...
I have the same. Iβve noticed it doesnβt sleep my laptop either. Probably just need to change the settings tho
inland cave
What are you running it on?
wooden totem
I just realized I forgot to turn on the heating 7 hours ago and now my room is at 7Β°C
idk how I didnt realize its cold af
opaque flax
What are you running it on?
Bootable usb with persistence
wheat mesa
Hi guys, I'm having a problem in my lap, the internet has been slow for the last week while browsing, but the other devices connected to the same wifi has better speeds, what could be a fix
inland cave
Bootable usb with persistence
Yes but whatβs your system you run it on
opaque flax
Yes but whatβs your system you run it on
Just an old dell laptop from when I went to college
late stag
Yes but whatβs your system you run it on
I run Kali on a random Dell laptop
inland cave
Itβs running hot because your processor
opaque flax
Ok
cyan sapphire
Hi guys, I'm having a problem in my lap, the internet has been slow for the last...
Same issue for me sometimes π
split plover
I run Kali on a random Dell laptop
What model is it? Tbh, never heard of random dell.
rapid merlin
I try to go into bios and boot off a usb but i looked everywhere for a usb and c...
send a pic
crystal mauve
I love those old dell keyboards
knotty pendant
what was the problem?
I think i just booted into it wrong
pliant cairn
is it just me or google search results kinda look rigged
acoustic obsidian
guys what's the most practical ctf categories?
cloud quiver
guys what's the most practical ctf categories?
Networks
acoustic obsidian
ones which can help you find real world vulns
late stag
guys what's the most practical ctf categories?
Practical for what?
acoustic obsidian
ones which can help you find real world vulns
feel like pwn isnt really that useful anymore as there are more and more memory safe langs
and the skill needed to find real world binary exploits is probably super high
acoustic obsidian
Networks
within everything in ctf101.org
web
pwn
rev
crypto
forens
cloud quiver
within everything in ctf101.org
web
pwn
rev
crypto
forens
Web
acoustic obsidian
Web
yup ik web already
thinking which to do next
dont want to be a one trick pony
late stag
feel like pwn isnt really that useful anymore as there are more and more memory ...
There are tons of things written in C and CPP (starting from Linux and Windows kernels). Those to stay for a very long time.
The barrier to binary exploitation is higher now, itβs not nineties anymore when one could just AAAAAAA everywhere and get a core dump. But itβs the same with Web, you cannot hope to find a SQLi when modern framework is in use.
However, both have values because not every app is written in Rust or uses a framework.
acoustic obsidian
There are tons of things written in C and CPP (starting from Linux and Windows k...
yeah i agree, and the real life scenarios of binary exploit that i know of, are all kernel exploits. but like you said, barrier for entry is super high for pwn, and the number of systems(?) with binary vulnerabilities feels super low, thus i dont think it will really be practical for me to learn pwn next heh
practical in the aspect of getting a job in cyber ig
hence why i'm asking which category is the next best to learn after web, for real world application ig
late stag
practical in the aspect of getting a job in cyber ig
If you want to get a job in Cybersecurity, I humbly suggest to learn defence. Offensive security is a niche thing needed mostly at a very few companies providing those services. Defensive security is needed at a much wider range of organisations.
molten sky
mods are asleep, post sinks
late stag
You are increasing your employment chances by knowing KQL and how firewalls work, not by learning ASLR bypasses.
acoustic obsidian
If you want to get a job in Cybersecurity, I humbly suggest to learn defence. Of...
i get what you mean, is this under the umbrella of sysadmin/devops?
i kinda wanna do pentesting too, so offensive is still needed for that
late stag
i get what you mean, is this under the umbrella of sysadmin/devops?
Not necessarily. It also could be SOC, networks, security architecture, identity management.
knotty pendant
ππ
sleek bolt
NEEDED HELP
knotty pendant
NEEDED HELP
WHAT
late stag
i kinda wanna do pentesting too, so offensive is still needed for that
These are two different issues though - βwhat I want to doβ and βhow can I get a jobβ. You be you and good luck.
knotty pendant
I have no idea what that means
sleek bolt
you know about log4j vuln?
molten sky
that's a myth
late stag
needed help getting a rev shell on a unifi network using log4j vuln
Stop asking to assist you with illegal stuff
molten sky
just read your msg history --- if you're looking for irl stuff you should ask @shell nova he makes those rooms
sleek bolt
Stop asking to assist you with illegal stuff
?its a ctf lol
opaque flax
?its a ctf lol
what ctf is it
sleek bolt
and log4j vuln is 3-4 yrs old and patched in most of the networks
late stag
?its a ctf lol
You then solve it yourself. CTF rules usually prohibit external assistance.
opaque flax
You then solve it yourself. CTF rules usually prohibit external assistance.
not to mention this servers rules...
late stag
That too.
sleek bolt
You then solve it yourself. CTF rules usually prohibit external assistance.
whats this server for then ? just hangin out
opaque flax
general infosec discussion and tryhackme...
sleek bolt
its a htb machine is that illegal here?
sleek bolt
You then solve it yourself. CTF rules usually prohibit external assistance.
its an old box , i went thru the walkthru , yet im unable to somehow get the rev shell
sleek bolt
rule 5 says what you should do
cyber sec should b about learnin from one another , stop yappin ab the rule book bruh
opaque flax
you're funny
sleek bolt
whatevr
opaque flax
why don't you ask the HTB discord for help. it's their box
dull storm
Where can I find the rules for this group?
dull storm
Thx
sleek bolt
rule 5 says what you should do
rule 5 says active machine so , this one aint active , its a retired machine
dull storm
Just asking a question so I donβt get kicked. If I wanted to recommend a new cyber security community not in competition with THM but to help and learn extra about Cyber Security could I do this? Or is that considered self promotion? Itβs not my community Iβm just trying to help out another CyberSec Professional whoβs looking to build a community for Learning and Connecting with other professionals?
loud marlin
Just asking a question so I donβt get kicked. If I wanted to recommend a new cyb...
@mossy river or some can answe that
rapid merlin
anyone knows how to update the role on Discord?
sleek bolt
forget about other platform , i just wanna know about log4j , im not talking about the machine
bro wants to be a discord mod ig
cloud quiver
no, i want to update the level
It should get automatically updated
abstract birch
?
abstract birch
which language will be best so that i will not be caught easily
rapid merlin
π You sound shady ahhh
But I'd go with C if I were you, pretty low-level, programs systems pretty well
abstract birch
yeah i am expecting this answer
rapid merlin
Pretty steep learning curve though
abstract birch
performing a international level ransomware operation sounds like too risky but i wanna do that in upcoming years
rapid merlin
π
abstract birch
do you think it needs a very high processor pc...?
rapid merlin
Brother no
It's just programming
Besides it's time to pull out this copypasta
In case of an investigation by any federal entities or similar, I do not have any involvement with this group or with the people in it, I do not know how I am here, probably added by a third party, I do not support any actions by the member of this group
Cause you're SUS
rapid merlin
good question
hoary tiger
π lol
abstract birch
me too is a indian
hoary tiger
π
abstract birch
i think its a good server to talk about this thing
abstract birch
I could've guessed
ok where are u from?
polar wraith
rapid merlin
That, my friend, is a very good question
polar wraith
@mossy river
hoary tiger
π lol
rapid merlin
Are you sure you know what discord you're in..?
eternal tartan
hey guys do you think we can really learn hacking from 0 with tryhackme ?
rapid merlin
hey guys do you think we can really learn hacking from 0 with tryhackme ?
tbf yeah
abstract birch
Are you sure you know what discord you're in..?
i am in a server which supports cyber security rather than black hat hacking
rapid merlin
just complement it with some extra resources for networking and whatnot
twin ridgeBOT
Gave +1 Rep to @dim mason (current: #2497 - 1)
rapid merlin
Don't get stuck with tutorial hell tho
I'd recommand putting everything you can try and learn in practice, take notes and read them every once in a while
eternal tartan
Don't get stuck with tutorial hell tho
no i am not a tuto addict, I know how is the tuto hell ( i leaned programming with tuto at first and i didnt learn anything)
rapid merlin
no i am not a tuto addict, I know how is the tuto hell ( i leaned programming wi...
Yeah just trying to prevent you from falling in that trap
abstract birch
I'd recommand putting everything you can try and learn in practice, take notes a...
setting up your own linuk environment will be a good start learn the basic commands as well
rapid merlin
It's good if you have basics in programming
polar wraith
thats illegal
eternal tartan
setting up your own linuk environment will be a good start learn the basic comma...
I already have kali linux etc
eternal tartan
i'll try ddosing my self x)
rapid merlin
i'll try ddosing my self x)
Please don't π
If you wanna practice look up vulnerable machines made for learning purposes
abstract birch
I already have kali linux etc
have you heard of the tool named stenghide tool in it
eternal tartan
no
rapid merlin
Fire them up and try to complete them in a safe virtual environment
eternal tartan
Fire them up and try to complete them in a safe virtual environment
ok
wooden totem
why would you practice ddosing
eternal tartan
yk i want to become a white hat hacker, my dad's business got infected by a ransom ware and next time, i want to help him
eternal tartan
why would you practice ddosing
oh idk
abstract birch
thats illegal
doesn't matter
rapid merlin
doesn't matter
lowkey does
rapid merlin
It should get automatically updated
you sure?
eternal tartan
doesn't matter
why is ur name anonymous
wooden totem
lowkey does
highkey in this server
eternal tartan
are u a big fan of them ?
rapid merlin
highkey in this server
Tryna be ironic at this point
eternal tartan
there is a big hacker group in my country named B13, they are hacking israeli network etc
abstract birch
are u a big fan of them ?
yeah
i think sometimes you should watch the documenatry of specific channels like fern covering the cyber updates will give a motivation
eternal tartan
guys i have a supposition
i think every hacker in this planete played minecraft at least once
(sorry for my english I am not a native)
abstract birch
guys i have a supposition
where are u from
eternal tartan
Tunisia hbu
whole gazelle
s u p
abstract birch
Tunisia hbu
fucking india
whole gazelle
hi howdy
abstract birch
i am looking for a good team which support black hat hacking and malware development