#general

hacking at school isn’t really taught in France until the last two years and it’s still basics…

@drifting halo it's against the rules to ask that here

Thjs is illegal and against our community rules.

Sorry

Im Locked out and lost my phone 😩😩

hacking emails would get you millions of dollars easily 😭 you get every password for every account of every person

New phone but no access to my things

Microsoft are so bad at verify people I’m lost 😢

call them if you have the other information about the account it’s not lost

I have it all….
All i get is do recovery…my information is wrong apparently

call them with the infos they’ll reset your password

They won’t do it that way 🥲 fill in the form…then refused

It don’t have my mobile or email 🥲

can’t help sorry

just call them if it’s free they’ll know better sorry

AND learning cyber? props dude

They’ve been rubbish but thanks anyway, really appreciated

you’re doing 6 rooms at a time and you’re main source of knowledge is a big blob you’re not too different 😭

there is alot of people that are really smart in the hacking community that’s great competition

😶‍🌫️

I do that for fun

what are your PRs ?

I don't have expertise in super theoretical mathematics and mind-numbing physics concepts though

everyone is good at their own things !

True true

how to get ur own command line application gobuster thinkg

I cant wait to get back in the gym, they closed it down for the holiday break and I've been going crazy

everyone is lifting here 😭

my laptop?

or like vm

your OS is like windows or parrot

i am using window

you’re on windows running a parrot vm if I’m nkt mistaken

Yeah but I'm pretty new to it, I'm also pretty small so I don't lift a lot

I just enjoy staying in shape

yes i have a vm and it is linux and it has parrot

okay give me a minute then

435 lbs bench is what I’m most proud of

a healthy mind in a healthy body is so true just stay consistent there’s no such thing as new really in lifting it’s so personal

wtf 😭😭

You're built different

I’m also 240 lbs lol

studying galaxies to lift them right after

Fair enough

Lmao

I weigh 145 and I can bench my body weight but that's it

Maybe 155 on a good day

done

i oppened the parrot terminal on vm

you gain strength over time as tendons and ligaments take more time to get stronger but you’ll build muscle soooo fast in the beginning

yo

gobuster --help
Usage:
gobuster [command]

Available Commands:
completion Generate the autocompletion script for the specified shell
dir Uses directory/file enumeration mode
dns Uses DNS subdomain enumeration mode
fuzz Uses fuzzing mode. Replaces the keyword FUZZ in the URL, Headers and the request body
gcs Uses gcs bucket enumeration mode
help Help about any command
s3 Uses aws bucket enumeration m

I think i have gobuster then

My goal is to eventually get to 155 lbs lean, feel like that's a good goal for my frame/height

you can bench with your legs and still make gains the beginning is the best part imo

I’m trying to get down to 210

oh ok that was easy

Bulking is tough af though

I’m in kg so that’s what 70?

It’s easy for me

I eat like a pig

if you’re on a budget it is

Around there I think

haha same for me

Cutting is very hard for me

whats ur hieght

6’3

Well 6’2.89

make sense

you’ll get used to it and you wont be able to stop eating

Right now I'm 65 kg and 170 cm

the more muscle you build the more calories you consume and the hungrier you get

https://open.spotify.com/track/24Cwnor5iVkzlFQOQEajHR

Uh.... WTF SPOTIFY?!

264 lbs here

Why was this in my feed?!

im 81 kg

5'11

or 120kg, but I'm 6'7"

it depends on your build but that’s a pretty good ratio already just stay consistent

https://tenor.com/view/spongebob-patrick-star-noted-notes-gif-26231953

wtf lol

Bro is an official unit

I wish

haha you’re a mountain basically

https://tenor.com/view/ultrasad-gif-23310565

Monster

HAHA

Man's a whole foot taller than me 😭

lol

For sure, I'm hoping I can get my abs back cuz the bulk took them away

I got a lil fat

why do you want to learn how to hack when you can just break any door you encounter ?

Hack the door

Cant break digital doors 💡 🧠

having abs is for skinny people to be honest 😭 when you get in the gym having abs is the hardest part for most of us becauseof the bulk but just gain muscle you’ll get leaner

taste the rgb

haha you’re right but if a 6”7 120kg asked me my password I would give it immediately

FR 🍭

Yeah i know it is, I won't be upset or anything if it doesn't happen

When I was at my lowest I was 55 kg so it probably wasn't abs but more so just ribs 💀

😭🤣 exactly

Last time I was 55 kg I was 14

but trust the process you’ll get there

I can tell I'm getting better day by day and that motivates me

I was 55kg at 6’2 when I started you’re disrespecting us 😭🤣

any anime lover?

I've actually been doing a lot better with squats than bench, despite the small frame I can squat 205 lbs (93 kg)

That’s crazy

it depends on the length of your limbs tbh not really your size and it’s quite the opposite

like an ant that can lift 385929188 times its own weight

I have a friend who can squat 6 plates for reps at 75 kg

Are you suggesting i should be able to lift more because I'm a compact human being

😭😭😭

But he’s also a national powerlifting champion

haha yes that’s ehat I’m saying

Thats crazy lmfao

that makes sense 😭

He’s also just 18

Could squat 6 plates at 15-16

Dude is a monster

strength never stop growing unlike muscles he will only grow from now ☠️

I has new gun

heat gun

🔥

Can you take the tint off my windows for me then

My car doesn't pass NY inspection because of it 😭

Swing on by the JOYSAY an gib monay

what should be the appropriate disk size in vm for kali??

100 TB

I’m going to sleep for real this time have fun guys it was fun !!

It doesn't need to be huge, especially if you don't plan on using it all the time

Id have to check but I think I only gave a few gigs to mine

when are the results of AOC gonna release, any idea

Emails were sent privately to winners

Please Lemme know

I use gobuster -u http://fakebank.thm -w wordlist.txt dir and get Error: error on parsing arguments: wordlist file "wordlist.txt" does not exist: stat wordlist.txt: no such file or directory do u know why?

oh sucks i didnt win this time either lmao

#room-help

oh sorry

Sure just gimme a few mins i gotta turn my laptop back on lol

ooh thanks

Gave +1 Rep to @karmic hemlock (current: #875 - 5)

also was the black friday sales cheaper or this 25% off one

You were talking about disk size right? Like storage?

ya

I gave mine 80 gigs, and my laptop is half a TB

But honestly I would say you don't even need that much if you don't think you're gonna be putting a bunch of programs on there

I have TB's of space, and I usually give my VM bout 100. or 120 GB

There is no straight answer for how much storage is ideal, it's more of a preference thing as long as you can fit what you need

If you have a few TBs you can definitely afford to give a little more

ooh okkk

ty

Gave +1 Rep to @boreal scarab (current: #30 - 325)

Welcome!

okkay

I also install EVERYTHING, Is it all needed? Probably not.

I get by with very minimal stuff so honestly I could probably use less than 80 gigs

I leave it allocated there just in case though yk

I'm not using it for Windows anyway

I’ve had two beers and 3 glasses of whiskey

Finally, after 3 days of grind, I have caight up on my notes.

Time to finally move on in my studies and then blow off note taking until the end again and hate myself for it later.

Did somebody try to drive on it

Or throwing rocks

I was tempted to jump on it but it was so too cold outside

Personally I wouldn’t

Why no desktop app for THM

Website

Ik but why not add an app

Most things have a website but an app I think could be better

Eh is there really a difference tho

./Linux.exe

what about the app would be better?

It was way too cold for the ice to risk braking

I mean it’s more of how thin it was

Why?

Well yes but a lower temperature for a longer amount of time would imply that the ice is thicker

It would just wind up being a wrapper for the site. If you want one so bad, make one. They are easy to make.

Would be kind of pointless though.

isnt the discrod app just...basically the webapp

but with a wrapper

The discord app is written in electron

never heard of that

So a bit different but kind of

It is different though

ah its a framework for building desktop aps

Yea I bet you will find plenty of people here who are not fans of electron and rightfully so

it can be a security nightmare

using front end web languages

Indeed, thats why I was like "kind of" but its not a pure wrapper.

makes sense

But yea I think electron is pretty cool personally

I think ther person above is hoping for an all in one executable application that gets installed on their machine and they can do everything they can do on the site

thats just not feasible for many reasons and perhaps they don't understand whats going on, in the backend of sites like this

To get the same functionality of say the attack VM, and the target machines, you would still need to be routed to THM infra

as just one simpler example why that wouldn't work out and be pointless.

yeah either way I don't see the reason for a desktop app anyways

it works just fine on the web

Chaos Control huh?

That like your team or something?

Yea they are pretty neat

Nice, whats the general skill level of your peeps over there?

Do you all compete at all?

Very cool, I will have to stop by.

Oh nice you have a CVE awaiting review, thats cool.

Still neat.

kerberoasting and golden ticket are still the bane of my existence and I would say a majority of places are still very susceptible to them

Most places refuse to mitigate it because an app somewhere for whatever reasons needs the features enabled

drives me nuts

indeed

people honestly just need to offload and be entra based only at this point

if they have legacy GPOs they need to get with the fucking times and move over to something like intune and manage from there

got file shares? Cool, you can do that in azure as well.

Not like it makes it more secure by default but it at least off loads risk from legacy systems

Who

I had a copious amount of alcohol

Dude I have a client of mine who is still on 2016 and they have a fucking RDS server domain joined and left no firewall protecting them. I came in and they had been getting owned for a while and I separated them out from their parent companies network and isolated them until they could address and here we are like a year later and they still haven’t

Why does family just keep on making you drink

Hi Zumrr

Very cool

That’s the kind of organization I can get behind def my style

I gave all my notes away

I charge people for mine depending on if I’m cool with them or not. If I’m mentoring someone or they work for me I’ll hook em up. If they work with me or I don’t like them best believe they going to pay for my knowledge

It’s petty too. I charge them like 5 bucks

It’s the principle

I could win a Nobel prize and I’d still just throw my notes away

I used to feel the same way until it was abused

Or someone onetime copied my notes and got recognized for them and claimed them as their own

That left a very bitter taste

Bro wrote down the secrets of the universe

That one is locked away in my head. Can’t write that one down.

As soon as you do:

https://tenor.com/view/fbi-gif-2734175389934997010

But in all honesty now in my career I don’t even let people know I have notes for the most part. I’ll still document a separate set of notes for engineers as needed or for system documentation etc I’m not going to let them fail and it makes my life easier knowing they have access to those resources and I can point them in that direction but personal notes are kept close.

That’s your secret sauce.

Like I said unless we cool and it’s symbiotic then I don’t care because fair is fair

Exactly

And unfortunately that’s all you see in tech on a professional level is parasites and snake oil salesmen

The amount of times I’ve interviewed a “Sr. Engineer” etc and been left floored by how they got to where they were is high

Haha same

I found documentation today that said “the client will send the link download the file and update it on the server”

For a Linux server

With no gui

In a mostly windows shop

I am rewriting it

Wait so the machine that needs the download is windows or Linux?

Nah I’d win

Linux server

Isn’t every server basically a Linux server

SSH, then wget no?

Yes

But

I had a senior NOC technician while doing a Linux ticket for them say “I hate Linux”

So

Oof

I’ve had a copious amount of Johnny walker green label

I taught a coworker how to do it this morning in the event I switch teams

See those are the types of people that I wonder about.

And he said “I don’t want to do. This I don’t care about learning it”

“I’m just going to send it to you next time”

After I walked him through it

See I’m going to be real for me when people have that attitude it’s a fast track to losing their jobs. I no longer play nice about it anymore

I used to feel bad, I have a cold heart towards that kind of attitude now

It’s frustrating but I’m just going to to leave solid documentation about it

Fair enough.

I really liked windows server core and wish it would have had some more love.

Which next time I may be on a different team and won’t be able
To help them

So

Or I’ll have gone to a different company

Yea for sure.

They can call the vendor for it lol

If you don’t mind me asking, without doxxing yourself what do you do now?

By title? Level 1 help desk

In actuality? A lot

Sounds like you are most certainly ready for a step up then.

There’s talk of moving me into the infosec team

You are displaying tier 3 at the moment

I don’t know the full extent of your capabilities but you have the mindset of a Sr. That will serve you well.

Hope you get that change

I sent, under the direction of my boss the director of security services a highlight of what I have done inside and out of my company along with my resume highlighting my infosec learnings

I’m not perfect by any means

But I’m getting there

You say resume, can I assume you’re in the states?

Currently on my plate I’m updating the encryption algos for a clients vpn

And configuring, testing, and deploying a new intune policy

How is your networking knowledge? Have any specific certs?

Yeah do people call it something different in Europe?

Are one of those Linux

Yes they typically call it a CV

No specific certs. I’m thinking ccna

But I have a homelab

Limited to THM

@rapid merlin Hmm, lock downs lock downs, opened up my requests so you can ping me when you see this.

CCNA is a good one. If you fast track it let me know.

So basically every server is running Linux

No.

Lowkey kinda drunk rn

Why no

There are a bunch that run windows

Active Directory domain, opnsense firewall with vlans, managed switch, snort IDS, tailscale for remote access

Oh?

Like?

2 pihole instances

Wazuh SIEM

You got Cisco experience? What is your experience like with nextgen firewalls?

Like windows server… the operating system

“Basically” means most in my books at least

Literally

Yeahhh

My gf isn’t responding to my texts

Probably good cause I’m tipsy

Will do 🙂 minor experience tbh. We use Cisco meraki mostly and I have been making network maps so I make it a point to review configurations. I don’t have full write access to meraki tho

Not much experience with NGFW yet

I’m gonna learn everything cool

https://tenor.com/view/mike-myers-austin-powers-austin-powers-gif-austin-powers-movie-movie-austin-powers-gif-10312148211531516253

Yea definitely keep me apprised of where you wind up friend I’m looking for someone with a deep understanding of merakis, Cisco leaf and slime topo and Palo Alto right now.

Gonna study bio so I can make a drug that makes me inhumanly smart

Can I dm you?

I kinda can. At least I know the basics

But any sufficiently advanced knowledge of next gen firewalls will do in place of palo

Yea man it’s cool

No just get rid of sleep

I’ll make the LLM im building hack you

Yeah I can’t say I have a deep understanding I wish. I have experience with sonicwall, fortigate, meraki but since I’m not on the network team I don’t do lots of configuration

Tempting

https://tenor.com/view/yap-expansion-gojo-domain-expansion-ryoiki-tenkai-gif-8954021360802172436

Me fr

Imaginary technique: happiness

can you cancel a subscription to like not auto renew?

Ye that’s called canceling a subscription

Yes 🙂

but like if i cancel it after the grace period, It stops after that month/year ends right?

Well ye

It stops when your paid period expires 🙂

alr bet

ty

You’re probably gonna pay at least one subscription after you die

🤣 🤣 🤣

😭

Shodan may show more Windows connected devices than Linux, but Linux runs the interwebs. I have no credited sites to show the info, as I am also a little tipsy, but "I've heard that is the case Podcast and other media ( open source security, cyberwire and I think compiler (could be lining on this one)". @eternal timber

Coming from someone has who has worked vast amounts of spanning infra, across many fields and orgs including fortune 100's they still use windows servers and services for a lot. What you are referencing is that linux servers have the market share, and that is accurate for sure, it's also used a lot in data centers etc. Hell most containerized apps will run a linux backend, no reason to run them on windows. However, many orgs use windows for purposes such as AD, file shares, DNS, IIS, etc still to this day and will continue to do so. It just "works" so to speak and the curve for their engineers internally is lower. Also, despite many that are linux fan boys, myself included, there is NOT a good alternative to active directory when it comes to linux that will provide the same feature set. Also in the corporate world most of your machines are going to be windows for user endpoints and domain joined.

Now Entra ID (formally azure ad) is working at replacing the need for domain controllers in general, and for GPO's we are moving to towards intune policies. But even with that said, many still use hybrid topologies

What for?

additonally, don't discount the amount of people that run hyper-v clusters, even though they are god awful

Hiring out some position and it fits one of my skill sets I need

Ah

we already talked about it though

took it to DMs

anyways, I'm going to pass out, night peeps

Oh, yeah, I was just asking because you mentioned some specific products and it piqued my curiosity lol

GN

Should I try CompTIA + course if I wanna become a security engineer?

It depends if you have any it experience

Or any other certs

would useful for getting in an entry level job like a technician or helpdesk, but is a bit on the beginner side for specifically security engineer

Yes, that is what I was referencing and I kinda thought that was what we were talking about. But I submit, you are correct in the majority of company's being Windows shops. Windows being probably the correct thing to learn before Linux.

good day sir @opaque flax

https://tenor.com/view/good-day-sir-wonka-angry-gif-4938393

got time for fizzy lifting drinks?

Always

Cheers

sqlmap [INFO] retrieved:....waiting waiting waiting

cheers

Thanks

Gave +1 Rep to @jolly aspen (current: #358 - 16)

curious if this happens to anyone else, but when I access a new room, the points graph displays for 1 second and then disappears into the pennywise gutter somewhere

Nah not me

I punched penny wise in the snoot so he doesn’t bother me

hmm, i wonder why this happens then

What browser?

Clear cache and cookies to start 😂😂

🙃

cache money, and i'd rather eat cookies

Idk maybe there’s some JS issue

yea, i don't need to see it. it was just an observation of strange behavior

Fair enough

Thanks Jensen

jacket shine should be a new innovative technology they patent

like EnvironmentalBumpJackets™ rendering technology

EBJs

I forgot to check how nvidia stock did today

Not good

People are probably annoyed about the ai

a dip today seems like

Oof the keynote really didn’t do them any favors

That hard dip after the keynote

ya

It went up in anticipation of the keynote

keynotes are always pump and dumps

Then I honestly think the ai shit was what got them

Fair I’m sure amd did a similar

Not bad actually

nvidia to the moon

what is this

Amd

oh

im betting on nvidia tomorrow

They had their keynote

Yesterday morning

Did TryHackMe announce the AoC2024 lucky winners list?

#1305926862114914325

its riiiiight there, soooooo close

thanks

Why answer when I can guide them to the answer

i've been doing the same, its the only purpose of that channel now anyways

I also love just sending documentation

It’s my favorite past time

https://tenor.com/view/harry-potter-daniel-radcliffe-hermione-granger-emma-watson-book-gif-5043012

im bored

go use exiftool on some of your photos

buy random thrift store HDDs and have fun playing the role of a digital forensic person

bonus points if you are able to visit a lava flow and secure disk erase them

I've done this, found some interesting things..

Play video games

guy was selling a full case of hhd from 64gb - 500gb. i got 45 of them for $20

AI seems to view lava as a method "One unconventional method that has been discussed is the use of lava, which raises several important points regarding its feasibility, safety, and actual effectiveness in data destruction." 🙂

Morning

of course many bad sectors, high error rates, and some had insanely loooooooooong power on hours. but it was interesting none the less

Mornin Bella!

mernin

I imagine car junk yards salvaging data

I did this with a whole computer

i didnt think about that, of course now that cars have more and more data storage and telemetry

Found lots of data before wiping

And no password on the OS

yep

https://tenor.com/view/emeraldcity-wizardofoz-gif-5421386

on the way to the junk yard

many years ago I remember buying a $5.00 garage sale laptop, which was still signed into social media when I booted it up 😕

was hoping for a lost bitcoin wallet

ILLEGAL

Just tax returns, social security info, w-9s, drivers license pictures

Bills

Receipts invoices

🤫

I had no idea it was in that state

It's so cold that I have put on my knee high boots

yikes

but knee high boots are cool

obviously I erased it using dd /dev/urandom

Full company info

It was a problem

So I wiped it and now it’s my server!

not without posting a selfie first i hope

😄

Yeeeee, just covering them with some wide legged pants

I wonder if @sick lance has insight on legalities around buying hardware which has software connected to services

do's and don'ts etc.

Don’t do malicious things with it

Wipe it

You’re fine

It’s legal

well obviously

I'm thinking like accidental

Its not ilelgal

ah ok

Crimes require a state of mind

Modus operandi

right, that's kinda what I was thinking

You have to have intent

intent etc.

yep 🙂

Just buying a used piece of hardware that has data on it isn’t illegal

But once you cross the line and do something malicious it becomes illegal

also at what point would a person report the discovery?

That's why companies destroy their harddisks and doesn't sell them

like say it had confidential data that was high risk, notification of the owner etc.

what that process would be

Depends

You’re under no obligation to inform them really in most places

true

if its destroyable data, then i don't think a report is necessary. however! its hard to tell if the device wasnt stolen...so destroying it would be a crime

Might be different if you’re dealing with government secrets

I did report a hardcopy paper leak once from a dumpster that was supposed to be shredded to a CISSP person in the past

You're only obligated to inform about the data if it's something related to a crime

Which you’d have to know or a reasonable person would be able to know it was stolen

and you can confirm the device wasnt aquired illegally

interesting, real world scam? thoughts on what it is?

someone cloned a friends website, using a free website creator, was tipped of with an email "Someone is stealing your copywrite", but the website has timestamps on when pages where created, email was sent very soon after it was created. so i send the contact page a email with a link back to a webserver i control and there is about 5-6 differant machines/phones opening the link in china.

ah! that makes sense

You’d have to have facts that would lead a reasonable person to believe it was stolen for it to be a crime

posession of illegal goods doesnt require knowing they are stolen. but there is generally some leway

For probable cause no

Because people don’t come into stolen objects most of the time without knowing they’re stolen

That said you may still get arrested

And have to fight it out in court

not entirely, il use craigslist bike market as an example

a thift store as an example being a legit business

Pawn shops as well

you can also look at how pawn shops need to maintain documentation to cover themselves as well

haha damn

For sure

I have a story where it was close to the line of having to write a report on it at my old job

oh interesting

ya I imagine there are like edge cases around liabilities

also, we could all be pooling from different legal markets

Big truth

And different jurisdictions

Yeah, it was the line of legal age of what was on the harddisk

But yeah if you think data was used in a crime gotta report that

If you get what I mean

sad, understood

Not the funniest workday

i don't doubt that

which cert do you think THM will launch first in feb?

🟥 or 🟦

oh good question 🤔

I’m gonna guess red

But I’m biased

But it seems most likely

I'm gonna guess blue

Someone wanna guess purple?

I only guessed based on the learning roadmap

Just so we can all round it

purple!

ultimate surprise answer, love that

there, its like a slow game of paper scissors rock

Red blue purple shoot!

Red

What do you think of this as a sticker, the font and outline okay?

https://tenor.com/view/easter-bunny-easter-bunny-suit-lol-funny-gif-3939312

I can still remember him moan as he had to walk down the steps

I will buy this outfit to have outside my riding gear😭🤣

perfect

anyone can help me decode a cipher ? 🫠

What's it for?

idk...some challenge among frnds

dcode

I am off to sleep, have a fun rest of your day 😴 👋

i tried...i decoded from hex -> morse then stuck

Then we most likely can't help as it's cheating

no i meant to learn it so

its already over

i'm off to sleep too, but you can send it to me and i'll loook at it in the morning

Then ask your friends who have solved it, we can't prove that it's not a challenge that is still ongoing

Sorry

😭 they arent active in that server

its ok

but in general to solve a cipher encoded thro multiple layers what tools one should use?

i tried cyberchef but to no avail

trial and error, typically it would have accompanying clues

no clues i found 🫠

i found this : (after converting from hex->morse)
FWHWRD ZA NQVPAONA, TITLR MQCK BS IX :#TWK ULAJQIVP EZIGE XMJXLCRXM TESKN...

i tried ceaser, for vigenere no key there

the other thing is statistics of language - specifically occurances of specific letters or words are more common and you can infer there placements sometimes and start basically a "wheel of fortune" style or sudoku decode

why did you choose hex>morse specifically?

and that doesnt look right for morse

i ran it through cyberchef

as initial one was hex representation ig

no i mean thr org cipher text after i ran thro hex, morse i got the above

this was org cipher text:
2e2e2d2e202e2d2d202e2e2e2e202e2d2d202e2d2e202d2e2e202f202d2d2e2e202e2d202f202d2e202d2d2e2d202e2e2e2d202e2d2d2e202e2d202d2d2d202d2e202e2d202d2d2e2e2d2d202f202d202e2e202d202e2d2e2e202e2d2e202f202d2d202d2d2e2d202d2e2d2e202d2e2d202f202d2e2e2e202e2e2e202f202e2e202d2e2e2d202f202d2d2d2e2e2e202e2e2e2d2d

2d2d202d202e2d2d202d2e2d202f202e2e2d202e2d2e2e202e2d202e2d2d2d202d2d2e2d202e2e202e2e2e2d202e2d2d2e202f202e202d2d2e2e202e2e202d2d2e202e202f202d2e2e2d202d2d202e2d2d2d202d2e2e2d202e2d2e2e202d2e2d2e202e2d2e202d2e2e2d202d2d202f202d202e202e2e2e202d2e2d202d2e202e2d2e2d2e2d202e2d2e2d2e2d202e2d2e2d2e2d

morse is typically really easy to identify as it has characteristic binary short and long values

ik.. i got .._ like that

Hmmm, changed it to black text instead

4 distinct values, 2 is always a separator...i would start there

Might be overthinking it

d, e, f, 0 with 2 as a separator

ok

look for repeating groups - if its english then there will be some repeats somewhere

gn!

I just want people to like it cause it's going to go to good causes 😭😭

I would feel shitty to drive an ugly bike to raise money for kids with cancer

if you don't look good while raising money for kids with cancer, I think it cancels out the good deed

Yeahhh, the good/cool looking part is a factor that plays in a lot when it comes to raising money, cause that's typically what gets people's attention

How can I make friends?

Go outside and talk to people 👍🏻

say hi would u like to be friends

Isn’t that elementary tho

I go outside still no friends

Are you missing the talk to people part?

You never mentioned that part

But yes I talk with people

Literally did.

They all think I’m weird or psycho but in reality I am just your average dude working on minimum wage job

Do you know what is like to have friends

What do you even say to them to make that impression?

No clue I guess the way I talk? I don’t know really

I just woke up

Me too ... nothing again ... i will no more rush for make all the ... and will stop my sub i think as well ..... each time the same ... 4 millions + fake account ... so in real you have 1% to win something other the a day streak lol

Yea I was going to say stealth. I tried to message you about some of the stuff we were talking about previously and it says your dms are only open to friends now, also you aren’t taking friend requests. That happened a couple of days ago. So I can’t message you anymore. If that’s intentional all good dude for sure. Just letting you know.

That’s just the way my account is set. The DMs thing was changed because I kept getting random DMs

It was also discussed in the server

It’s only me that can send the FR

Gotcha I must have missed that. Well if you ever want to dm again you’ll have to add me. All good though dude. Hope you feel better.

I just opened my eyes

https://tenor.com/view/anime-tired-lucky-star-tired-anime-gif-1495236166145253179

I was supposed to be in bed a while ago myself

I gotta find socks and do school run

But I’m determined to finish out this pen tester path by tomorrow night

Not looking forward to work in the next few hours :/

Good morning people

Sleeping for 7 hours and the morning wakeup is still unbearable I want to pass out doing minimum work

Reminder that coffee is actually our lord and savior

Good morning 🙂 🌅

Good morning to you too pal, wish you all a good midweek 💪

Thanks 😄 . I wish you the same 🙂

Gave +1 Rep to @topaz topaz (current: #536 - 10)

Thanks, have some rep in return 😎

Gave +1 Rep to @cloud quiver (current: #4 - 1884)

Is there a hidden mechanic to rep or just an indicator of positive activity?

right need a cup of tea

just an indicator of gratitude

Hi can I ask questions about python

Yes

I’m so tired

😩

Morning all

How to learn it fast I mean I still don't understand classes and the modules

Code academy is good

Python also has their own tutorial

Take your time, there's no "learn fast" solution, it all depends on who you are and how you learn and keep knowledge the best

https://docs.python.org/3/tutorial/index.html

Yee, best thing to do is not to move on until you understand a concept. If that means learning how an OS/Kernel works, then don't feel bad taking time to fully grasp that

Okay do I need to know All the modules librarys

No you don't need to know every library

That'd be impossible I think 😅

Okay can you tell me some library that helps as cyber security

Start with just python, then once you're comfortable with your knowledge use a library and see how it works

depends really on the project you're doing

What do you mean by library?

Depends what you want to do.
There are cryptography libraries.
OS system call libraries
Plenty of different stuff

I don't know when I see someones code and the library he imported I confused

Learn how Python works first, then learn about libraries and it'll make sense later

you'll get more used to what libraries do what when you have been coding for a longer time,
you don't have to know them all, a good google search for libraries that does what you want when you program is what many do

and then just read the quick documentation/help there is for the library

So the documentation can help

indeed

What about c++ after understanding python

personally for seecurity i use pwntools and pycryptodome mostly but then again depends on what ur using it for

I heard about them I will try them thanks

Gave +1 Rep to @near sapphire (current: #2573 - 1)

@whole topaz what you're doing is illegal, and against our comm rules to teach/discuss.

Please stop.

I'd focus on one language until you understand it well. Most languages follow similar rules so once you know one you're kinda set

if ur using coding for scripting python should be enough but if you wanna go into something like rev eng or binary exploitation might be a good idea to learn c

ohh sorry I didn't know I will not do it again

Thank you guys

just can you explain me what I did ? is this considered as unhetical or spam ? I didn't meant to sorry

It's straight up illegal.

The Instagram does not belong to you, you just have permission from Instagram to use it.

Any attacks on "your" account is an attack on the platform.

new point for the chart ^^

oops sorry but thanks for expaining. is there a way to try offensive or defensive on my pc without being illegal ? or I just can do it on THM website ?

plenty of rooms on thm to practice both

The materials on THM you can use are legal.

there's quit a bit of resources online too where they give you vulnerable machines that you could use although idk about defending

Golden rule of thumb is.

If you don't have a contract don't touch it.

If it's not yours, don't touch it

koth is available on thm to practice live defence

THM gives you express permission, Instagram never gave you that permission

as long as u stay within the scope of the rooms

I wouldn't advise new people on KoTH.

The currentl players who play it all the time will just annoy them with their bootkits and auto-pwn scripts.

yer thats very fair icl its not something ive tried yet myself but for defence i think its good practice

Que

English only, please.

I didn't bring up koth lol but I see it was the message right next to mine lol, was just confused for a sec

Yeah, true

My b 😅

I lciked wrong messgae to reply to 😅

its early in the morning we all make mistakes

Morning all, hope the weather ain't too bad for ya

its cold but im back home from germany so im chillin

Nice

Average temperatures are like 25° for me lately

Jealous of ya

Oh Jesus

I’ve had my tea

Sounds like a surprising tea

What type of tea we all rocking?

so real. aoc seems like a gimmick at this point to just get more account count.

The croissant was good

Yorkshireee

Because you didn't win anything?

Good choice

because its all gimmicky, honey.

i wouldnt describe others hard work as a gimmic

Elaborate?

yep i aint saying its all fake, they do give prizes. but the chances of a bot winning is way higher than an actual person. gimmick enough?

I just realised it’s my birthday tomorrow

bruh

😆

oh damn stealth

happy one day early birthday

I forgot

Lmao

Not really, as winners are all E-mailed, and then given 7 days for the prize to be blaimed, staff take checks to make sure bots don't win. 🙂

If you were in my timezone it'd only be 2 hours away!

Thank god it ain’t

Gave +1 Rep to @stoic quarry (current: #434 - 13)

XD

Lmao

No plans then?

I don’t usually celebrate my birthday

I used to stay in every year and play video games

Which is what I did everyday anyways

So

My lecturer

"Check out the extra reading material"

The extra reading material:

xd

Lmao

he's teaching you to trust no one

For all those kids who think they can do extra reading, try save your network.

I have a question, what do you guys think is the hardest part of learning security

Discipline , just with anything else in life 😄

Yeah

keeping your cat off the keyboard

Impossible

well who knows maybe ur cat is a better hacker than you

I’ve see all the videos of peoples cats and their keyboard but I didn’t realise the extent of this till I got the kitten

Hello, I'm on university and next week I have a school project, and the topic is cyber security. So I hoped that I would find somebody that could help me make a fake facebook website (beaming site) to demonstrate how easy it can be to steal information. And the best safety procedures to keep yourself safe.

I personally would say motivation and comparison. It feels like one of those industries that's super competitive and you can't help but feel useless in comparison to other people

maybe just me

No, we won't assit with school work in this server.

might be, her typing looks like she writes shellcode without extra steps

alright

treats work for a short period lol

def not just you, I feel useless compared to all other ppl in this dc

Same 😅

I see some people casually flexing certs or their understanding of a topic I'm struggling with and I feel that imposter syndrome setting in again

job interview processes makes me so self concious for those reasons i feel

I don't mind job interviews.

Mmhm

just take one step after another, like focussing on one topic. thm paths are good for getting a good overview but you need to dig into specific topics after, practising on the machines

yep, thats how I finally understood metasploit, I did a few tasks had a break then thought to myself "I dont understand this enough" so I started to read the documentation and redid those tasks but slower by sitting back and really taking in what im doing and also looking up the exploits so I have a better understanding.

Metasploit so big in comparision to some tools though.

Yeah it's a good habit I picked up of redoing rooms where I was confused. Builds up that knowledge

yeah metasploit is massive, I have an entire book on it xD

especially when you understand it at one point and can fully use it

theres 1 room im never re-doing and that is figuring out encryption calculations by hand

Jesus

I've not come across it yet but it sounds painful

I have a whole book on sed, awk, and... something else coming.

They're so useful that using it in a 30 minute room doesn't do enough

why does that room exist lol

to get you to understand how cryptography works

there are apparently math geeks i was told .. they are kept in a really dark place no one walks to

It's not a bad idea

I saw an article that explained Public key cryptography really well in a low tech way, it's been pretty useful for explaining it to people lmao

https://www.quantamagazine.org/how-public-key-cryptography-really-works-20241115/

At uni I knew maths majors and physics majors around exam season they all look like they're trying to summon a cosmic horror

I think cryptography should be a math majors lesson insted of comp sci

i had financial maths and i suffered, atm I have maths for CS and thats kinda fun

It's important to know stuff

yes it is

So sick of my phone warning me about my music volume

Let me be deafened by the bass

I think mine gave up warning me eventually

the phone doesnt know you are not gen mi mi mi ^^

It's a safety thing.

I'm sure by, probably some consumer law, they are required to do it.

Crypto maybe?

Dude my watch does that to me in the car as well, and also my Cardo in my motorcycle helmet. Like dude I’m well aware I’m blasting my ear drums out. I’ve accepted it.

https://tenor.com/view/jinx-jinx-dance-arcane-arcane-season-2-lol-gif-7787906071870511373

I just want to party in my kitchen

Riot cooked with arcane

Straight facts

https://tenor.com/view/jinx-the-best-gif-2612604530998071416

People called me Vi growing up 😆 back in the day

Guys do we really have to network to find a job😐

I had my first conflict as a human being attracted to a character from a game when they released Jinx and her promo on league. She reminded me of my wife.

Unfortunately

Unfortunately we must interact with society to be part of it.

It’s annoying

Lame, I know

Ifkr

And half the time i get ghosted for months

Can’t wait to just live in a dystopian society where I can “jack in” to the net and do my thing.

Ong

It would certainly make it easier.

Networking is good, I almost got a pentest job from being in this server.

I'm moving countries soon, my plan is to use my vr headset to have a virtual desktop where I can do my work stuff, literally gonna jack in to work then pull it off after my shift and see some sun

Why can’t I just run “missions” and get paid in credits Scrubs? Hmm? Tell me WHY.

Damn thats fire

Dayum nice

I tried that for a while it becomes draining real fast and definitely isn’t quite there yet depending on what you do.

oh you can, but you might end up on most-wanted lists xD

yvan eht noij!

They did releases windows 365 on oculus which is cool but it’s also not quite there yet

He's just like me fr

try snow crash 😉

You can duplicate your monitor(s) with a few apps

Amazing book

Loved it

ive read it a couple of times, one of my favos

I'd just get more monitors.

I will have a video wall by 2027.

Yup I was just looking up a cover for that book to respond. Hiro is my hero.

How else can I look around and pretend I'm in some high rise apartment and not some shabby 5x5 room in the UK

snow crash is actually the only book i really miss they should make a movie for .. but then, they might mess it up as they did with ready player one

Dude ready player 1 was such a disappointment when it released. Me and my wife were pissed.

It was good for what it was if you pretend you never read the book. But that’s a hard thing to do.

My cousin studies Sumerian... language? I think, idk. He was not happy with how it's shown in the book lol

Neuromancer, snow crash, and ready player 1 man. Solid.

i absolutely loved the book, was like going through my childhood again with all the 80s references

Yup same.

chuckles, well, no idea about that though ^^

Eh, it's a great plot device in the book

I don't care too much if it's not perfectly accurate

I want to see a good movie portrayal of the unwind series. But I feel like in the current political climate it would not be a great idea. Though that’s kind of the point.

That or the series scythe

not familiar with scythe, gotta google

Same author as the unwind series if you’re familiar and if not definitely check that out as well. Also the illuminae files but for that one make sure you read the book. The audio book is great but the book is meant to be an experience with changes in paper etc.

Same

Snow crash is what got me hacking in second life as a kid.

Closest thing back then to that book.

oh god I haven't heard about unwind since school omg

gets on my wishlist ^^

Dude that book is such a good thought provoking book and I think it should be a mandatory read for kids.

It is super messed up though

there was also a book serie called net force, that was pretty good

very messed up haha

Neil Shusterman?

tom clancy

Yup

Don’t let the premise fool you. Read the whole series if you do. It starts out about human reproductive rights and you think it’s a statement on that and to a degree you would be right. But it’s really about capitalism and greed, as well as corruption of the human condition. It’s a wild read.

I mean I like to just numb my brain with his books from time to time in general he wrote some good ones.

I’ll have to check this one out.

Sounds right up my alley

and my all time favo 1984, who knew it would become a strategy paper in nowadays world 🙄

Wildly taken out of context too

Won't get political but when my co-worker was ranting to me about Orwell 'predicting the future' I told him what Orwell's personal politics were and he was completely shocked

That and animal farm are must reads

But I'll leave that there

You’re not wrong. But the book itself and the way it was interpreted by the people reading it as opposed to the person who wrote it is one of its more fascinating aspects to me.

His other stuff is great

Homage to Catalonia is the first I read, amazing stuff

do you have a link?

I didn't record our conversation, no

I can pop you a DM if you want

sure

Also not to get too political, I think he wrote the book in line for what he stood for. However the context of the book was too nuanced for people of opposing ideologies and it was taken out of context to suit their agenda. I feel like those types of people likely only know the idea, the whisper of the book and what they were told it meant as opposed to actually reading it. If one truly reads the book and takes the time to comprehend it, there is no confusion to what his political beliefs were. In my opinion of course.

Yeah, I just mentioned to Kangafoo, but my co-worker 100% had never read 1984 and just knew the quotes and rough idea

I believe we are referencing the same type of person when you speak of your coworker

Orwell has amazing rules for writing too. No Jargon

Lemme find them

I had a coworker when Obama was in office in the states, when he was talking about healthcare for all, he looked at me goes “how Orwellian”. I just looked at him dumbfounded and said, do you understand that word and have you read that book? He was like “nah”. I just shook my head and walked away.

(Slight note for number 4, 'passive voice' and 'active voice' would've been better to mention than just shortening it... lowkey contradicting rule 1)

ah healthcare for all only works when everyone does something for it

Saved this for future me.

Honestly the first rule is amazing

It was more so that the writer was indeed a democratic socialist

I found it hilarious

Binary can I pop you a DM

Sure

Just so we don't veer too political on ol' general

Yea for sure man

hm we have that healthcare for all in germany and trust me, its a lotta bullshit... the mixture of our social system (payin for all) and insurance system, which is fed through the social system, is getting abused for years, therefore working people have to fill the gap for those on social benefits .. and when you really need your insurance, you gotta pay a lot for all the extras

my insurance is 0.55% points more expensive this year

it was once 12% of my pre tax, its now almost 14%

in absolute numbers, it would be definitely cheaper to have a private insurance as in the US, than paying the insurance for all and not getting any service when you need it

and the employer kinda pays the same as well for you .. so technically .. 28% .. even though its not really accurate

Gives the single mother with 3 kids the same opportunity as the single guy living on pot noodles making 100k, seems okay to me

so when you have an insurance in the US, you know your costs and then think about how much % of your income it is .. when its less than 28% .. you should be happy you have that system

But I think we move on before we get too political

the single mother is on tinder and writes "ready to settle, 4 kids, 3 daddys" 😉 a society isnt responsible for your decissions

To each their own

Before I go to bed. Listen Kanga I pay more than that in insurance for me and my family. The kicker? You just get your claims denied because it’s a system run by corporations not the government and they are incentivized by profit. That’s all legal here. Your system might not work. That’s fair, it’s hard to find one that does. But if you think ours is better you’re more than welcome to move down here and find out for yourself the reality of the situation.

I think you would be displeased personally

I’m a single mother.

And not everyone gets here because of the decisions we make

It’s not just our fault

🤨

KMT

The making of a truly remarkable society in my eyes, is one of compassion and one that puts its people first. A great society is one that plants seeds for trees they will never sit in the shade of.

People’s circumstances change all the time and that’s just life

i wont discuss every single case, i had my fair share as placement officer, from rape to incest, i know all the stories

You would see those people not taken care of by society if able?

This is why it’s not a black and white topic. But I’m going to disengage from this because this is dancing on the discord rules to closely

I respectfully bow out.

they are taken care of... and once you prepared them for the job market, qualified them, invested into 1:1 coaching, spent like 50k on them, they are like "oops, pregnant again"

The government hasn’t spent a penny on my learning.