#general

yes

if it's a hash, eventually might get it but I do doubt it's a hash

doesnt look like a hash

tf

its base32, no?

yes but its still nonsense

NUVFejJ4dWppbGNrclFYbXFod25INGFhNU5MSVBvb0NuYUhVUmluNURQUEExelpnNkNPbklT

32 then 64 i think

hashcat only sees the gpu dedicated vram but doesn't show the CPU RAM that is shared between cpu and gpu :l

base64 decode that and you end up with something else

5EEz2xujilckrQXmqhwnH4aa5NLIPooCnaHURin5DPPA1zZg6COnIS

that's the part people think might be a hash

I personally don't think it is because that'd be a short flag for a challenge unless there's something else to it

where did you find it

no clue, apparently someone posted it and fucked off lmao

yeah that's not right

the regex for it is too broad

lets ask the good ol chat gpt

yeah, I don't know what it is but I don't believe it'[s a hash

So a crypto? Lol

It's possible

But that's not the usual format of them, is it

What is the original "thing" that was posted

Not sure

Someone posted it. He said it was a riddle from a challenge he doesn’t remember.

There's two things going on btw

One's the k300... thing and the other is this

Guys since it's a riddle you probably can't dicpher it if you don't know the whole concept of the room 🙂

the orginal message he sent

"The keys become one"

Have yah tried googling the riddle to see if it has a trail?

I was just about to lol

^

What about only the cipher part

Ok well paraphrase the riddle

Nothing for that too

@polar spoke ppl need you help... again 🙂

Cyberchef suggests base32 then 64

The output of this is an unidentified hash (if it's a hash) on various online platforms

got it :))

Nice job

HOWWWW

Inb4 it was encoded multiple times

Yup

I guessed it was just a simple base encoding

lol

ah I got to 62 then didnt think of 92

I've never heard of 92 but I'm not too versed in crypto

ahhh nice, good job man

k now figure this one out lmao

AAA I WASN'T THE FIRST

amazing job

this is obviously some CTF and i don't really want to help further without confirmation

Jayy got it

Yeah we should delete the solutions

These are just a few characters

Easier to figure out

But haven't yet, so

well no trace online of pfswt

bich

yeah, it might be a private one

I WAS KIDDING

Yup, I don't want to be scolded by scrubz

was gonna say I've not seen a public ctf

Also, there should've been a google trail

When someone searched for it

If it was a public ctf, so it is something private

Maybe a college's internal CTF or something

plot twist he made it himself

True, could be that as well

and just wanna test this dc

there is no spoon

If there is no goose

I mean I got it a while ago, but it's a terrible challenge

I mean it's all cyberchef goes brrr

That's what we did yes

wdym base encoding 4x is terrible?!1!11!!

yes

Btw what is the lead mentor role for thm? Obviously some form of mentoring lol

Apparently I need to help people more

😉

smh

and learn to type good

Mentormore

Teach me how to efficiently decrypt cookies and md5

😄

md5 is technically non-reversible

Yeah I know lol

and cookies are probably not encrypted

Had to do something recently with it where I had to add a missing digit to one. So that was fun

https://tenor.com/view/cookie-monster-waiting-sneak-out-peek-cute-gif-9649418687917462631

in the last ctf I did, you had to run padbuster against the cookies 🗿

now if they're done properly, they'll be a fully random session id, with the session info never leaving the server, or a properly signed JWT with a strong secret

Keep feeding me info boss, this is all going to the notepad

if you're encrypting session info in a cookie and throwing it client-side, you're doing it wrong.

We should go back to encrypting with ceasar

i have to modify a jwt in a room

header.payload.signature thing

I mean I made one where you forge a token

for that you need either the RSA private key, or the symmetric secret used to generate the HMAC

whats the room's name?

CERTain Doom

If I learn more about the stuff mentioned above, I'll give it a look.

I still think it's a Medium, though apparently enough people disagreed

nice room, looks good

im gonna do it

glhfdd

I did decrypt the writeup... I think

Can these be temperatures?

??

Uh the k ones

I was thinking to myself, sorry

like kelvin?

nah, might be hex with a wonky separator

or some really messed up encoding with no real-world use 😉

where did you find the "k" code?

Unit Frequency
k300 5
k780 4
k330 4
k370 1
k380 1

This what I found out (ignoring the last k)

Someone dropped it randomly

oh yeah

dear lord

and how do you connect to wifi at first place?

and is tehre buy 2 pay 1

and if some send deuth to it. do you lose water ?

so many questions

so little time

that threw me off for a half second ngl

at last you do not need LAN cable

What’s everyone up to

secret riddles and wifi showers

some might lose eye if not carefull

Hol up that reminds me of something

Good morning

https://youtu.be/wkQfbXAzejE?si=d7VLkRzNTTo6nCZb

There we go found it

lmao

does anyone hack accounts?

Hey this is illegal and against our community rules.

Hello, i am back

https://tenor.com/view/komaru-cat-komaru-dance-vibe-soggy-gif-8606070379211151724

why no floating kitty

what drop-in replacements does everyone use for the default gnu utils on linux? i.e cat -> batcat, find -> ripgrep, ls -> eza

https://tenor.com/view/cat-berg-cat-orange-cat-swimming-gif-25177582

I use default ones, simple.

dont change what works

but but no syntax highlighting

Pls guys I need help
Yesterday I was working with a desktop computer at work and the monitor suddenly went to, wasn't recieving visual signal, switched monitors and still the same thing, mind you the one I used to switch It was perfectly ok on the other desktop.
Now I've switched to the other desktop and non of the monitors are receiving signals
Everything is properly connected by the way

Ask your IT department?

well pretty nice ig but why do you need to replace ls?

Most likely an update (or optional update) will fix the problem. Otherwise you might have a faulty port on your desktop. Just reread your post, if multiple devices and monitors combinations are having this issue, it will most likely be an update for the display. A had malfunctioning monitors as well after an update was pushed and the optional ones were not.

I only used batcat. It's pretty nice to have some color in an otherwise dark terminal.

import this, it sounds like ur ordering python

more customisability

that actually looks good, jayy might convert me

heh

plus tree/recursive options are nice

I am okay with black & white, i use vim if i want syntax highlighting

Very nice

I’m chilling with my friend, we talking about plants

All my thoughts are balatro

Chat how cooked is my screentime

How many hours?

keep on breaking the game
I have two possible infinite runs which have a pretty good chance to crash.

what font is this

hey guys

nerd font

Hey guys

I bought it around 10:30am this morning (it’s 13:34pm now)

whats the try hack me website url?

i love that game

which one

I made myself wait until all my assignments were submitted before I got it, thank God I did 😂

Gave +1 Rep to @shut hawk (current: #14 - 603)

Jayy is God 😔

I’ve watched a streamer play balatro. It’s really hard to understand what’s going on I guess I need to really sit down and play it or really pay attention

yo jabba whats the try hack me website url

https://tryhackme.com/

oh fira code i think?

if you've ever played poker you'll be fine

Watch Markiplier’s video, although I still think actively playing the game is the best way to understand how to get the best scores, he does a good job of explaining. He is also super attentive so his runs give me a second hand dopamine rush

lol games that good I guess

It’s the sounds, I can still hear all my jokers being activated

https://tenor.com/view/subaru-natsuke-natsuki-subaru-gif-19434521

Did someone call

two hand goes OP

i had it like level 20? ish

What’s the safest way to use deepseek

Roffle Lite is a very good Balatro player and he does a pretty good job of explaining what's going on in both modded and vanilla runs.

Define safest?

Same as any other LLM... Don't share sensitive information

How did you do it ?

..I looked at their ToS and decided not to. 🙂

Ah okay

I don’t ever read terms of service

I would love to try it though if people are saying it’s that good

It's pretty rough (the ToS)

Red already

That's right, I'm red now

orr run it locally

Damn

The ToS still applies to running locally, especially if it phones home.

Red

I am the IT department bruh

I’ll try to level up

You got this

Can someone send me the new ranking system please so I can save it

It can't access any of the resources of the OS to update anything

just realized i'm about 2k away from becoming a potato

I think the ToS is just for using the service, if you want to self-host the model then I'd assume you would have to follow the MIT license it's under?

Nice, we will be two spuds in a pot

😂

@blissful snow Hello, unsolicited DMs/Friend Requests are against the rules of the server. If you need to ask me something, you can do it here. What's up?

Still something I'm not comfortable with.

Including stuff that phone home.

Right and that's fair enough, just the "you have to follow ToS, even self-hosting it" part is incorrect

I think? I may be wrong there

ok ok

Could someone help me with data exfiltration with ping

Which point did I say that?

Uhh here

Oh yeah.

But even you don't seem think you're right, so that's okay

My general assumption is that regardless of whether or not the ToS applies, the data it says it scrapes from your devices it probably still takes and sends back if it has an internet connection.

Well, are you?

I mean, to counter a point to say it's wrong, then say yourself you don't think your point is right either.

They're basically the same.

Okay, I think you're wrong

That's ok.

I could very well be.

Doesn't change my stance on using it though.

So...do you have a source?

Can't really be spreading miss information, can we?

Where's yours? 🤔

https://chat.deepseek.com/downloads/DeepSeek Terms of Use.html

https://github.com/deepseek-ai/DeepSeek-R1/blob/main/LICENSE

https://huggingface.co/deepseek-ai/DeepSeek-V2/blob/main/LICENSE

The services they provide have a seperate ToS, to the self-hosted models in which you need to follow the linked license

Then that's it settled. 😄

Spotify has a sleep timer so now I can turn off my ASMR keyboard typing sounds automatically

o

Thats quite useful

Is it on all platforms?

I’m not sure, I opened the queue to put the better music at the top and I saw a sleep timer

any suggestions on what code editor i should use?

can any one recommend me a linux course ( everything about linux )

Have you even looked at tryhackme?

There's several Linux Fundimentals rooms

bro WHY IS MY INTERNET SLOWWWWWW

i want videos

not articles

and stuff like that

Overthewire is good for practicing
https://linuxcommand.org/tlcl.php is good for learning

Oh videos?

lol is this real life? We've come full circle: https://github.com/NilsIrl/dockerc

microsoft is learning linux, about time maybe you could learn how to make a good terminal

anyway linux videos..

😭 😐

to be fair Microsoft actually has a decent terminal these days

linux terminal still superior

Writen in Zig too, absolutely based

I mean as a Linux enjoyer myself, I can't complain but it's at least on par with many Linux terms

uhhh

Yeah, windows terminal is genuinely really good

linux for hackers by occupytheweb is a pretty good book to learn linux

😭

and the bandit challanges in overthewire is pretty good for practicing basics of linux

Making their new term default in Windows 11 is genuinely one of the only measurable improvements 11 brings to users lol

I use VSCode as main . Sublime/Notepad++ - for scripts on Linux 🙂

powershell still sucks though

For programming projects, a mix of Zed and the JetBrains family. For quick stuff, sublime

Can't argue with that

does anyone know? ^

Yeah honestly, it's like that bell graph meme, VScode, then forcing vim/emacs/etc into being IDEs, VScode again

i have no issues with vscode but idk why i don't like it

why dont i see a lot of ppl using vscode in linux

because they're on the middle of that bell graph meme I'm refering to lol

I have myself tried to force (n)vim into being an IDE and it's not fun

i use jetbrains ides as much as i can
pycharm for python, intellij for java
but i'm mainly looking for a code editor/ide for c programming
clion from jetbrains is great i'm sure, but it doesn't have a community edition and i'm not really keen on paying for code editors/ides

vim really is best at just quick scripting and editing imho, it's perfection for it

Hello 🙂

but keeping track of multiple files in an entire coding project, yes you can do it, but is it easy or sensable? Probably not

Nani superior!

Nano*

lol

does jetbrain have like an all in one package its going to be really annoying for me if i need to install a new ide for each language

i am lowkey trying to learn vim/nvim
but i did hear it has a very steep learning curve and till you give it a few months your productivity will be shit

iirc there's a more modern version of nano called micro which is like the neovim to vim

:wq is the only important command to know

I'd probably say Intell is the most "jack of all trades"

There's also a WIP called fleet

https://www.jetbrains.com/fleet/

Honestly it's pretty darn easy to learn just enough to just get yourself going. Ironically what he said above :wq and learnign i to insert and understanding the two main modes (command and insert) are kind of the essentials

I need to take a look into micro

Yeah I haven't tried it but have heard that syntax highlighting is on by default and other nice QoL stuff

I've never personally been a fan of nano just due to the wack keyboard shortcuts lol

vim may be esoteric but the keys you press in command mode at least 95% of the time make sense for what you're actually trying to do

i use nano for very basic stuff like editing .conf files quickly

that's what vim is for but to each their own lol

whatever gets the job done

i'm actually thinking of learning vim to use it as a substitute for ide

Well see my posts above regarding that

you can do that, but it requires a good bit of plugins and customization

more specifically for writing c/c++
because i use jetbrains ides for other stuff

But also depends on the size of your coding project. If it's all one file, yeah vim is fine

If it's a large project, yeah just use VSCode instead of banging your head against turning vim into an IDE

Oh for sure, where's my Ctrl+C/V for copy paste

also to be clear when I say vim, you should be starting with neovim instead of classic vim

why's that

so hello everyone

Wait I may be getting mixed up, not c/p but ctrl+a for all and delete

Neovim is where the modern development is happening, and it's what the cool kids are using 😎

lol

some people have recommended me to use the vim plugin in vscode, to practice vim and i can turn it off when it becomes too much of a headache

Done!

i just wanna learn about cybersecurity and hacking but dont really know what i can do with it and thats kind of hindering the will to start

You can make a legal career out of it

I mean you can get careers in computer security more generally

Or do CTFs

Hmmm I've heard a site called TryHackMe that may be of interest

professionally I'm in infosec and sysadmin

Yeah ^, cyber isn't all just red teaming, there's so many different career options

when you say what i can do it with, in terms of what are you thinking
legally, you can make a career in a bunch of fields like soc, pentesting etc.

like i dont wanna go for a career related to cysec but just wanna learn hacking for fun

There's both offensive and defensive computer security positions you can persue

oh wow I've never heard of that thanks for the resource jay! *free rep

Gave +1 Rep to @shut hawk (current: #14 - 604)

https://tenor.com/view/kitty-cat-cat-float-kitty-float-cat-water-float-gif-17908418945946410709

Then you can learn for fun too, it just sounded like you were questioning the point

which weirdly has a similar name as to this discord server

I do it for shits and giggles

Got a link? 👀

why have I been getting htb ads everywhere lol

ye like this

Ad tracking woo

ad tracking is crazy these days
i search for a specific type of app on play store and start getting recommendations of similar apps on my insta somehow

It’s all connected

the keyboard is listening to you

and my microphone is recording my keystrokes i presume

?

you all get ads? laughs in adblockers

in case i wanna learn linux

do i use wsl or dualboot?

vm

There's Linux rooms on THM, but you can do either or both... and that

but do know WSL won't be very effective if you try to use it for TryHackMe due to networking limitations compared to a proper VM

Pihole stops most of mine

it's all 1s and 0s

Most? That's why you have actual extensions to stop the rest

Yes I know

i'm surprised google doesnt make google+ where theres no ads

lol Google+ was a thing, it was a social network

It was an awful social network

u do realize that websites can detect them and ask u to disable it

but also lol, you're undermining Google's whole profit generation stream with that

Yes and there's ways around that, is all I will say

https://youtu.be/LTq8TrA3hb4?si=WKUlmenWpymHhK5R

well they get a new stream though

Google is not really a search company anymore, they are an advertising company in terms of income

yea ik

and they do everything in their power to keep the ad revenue flowing

I'm lazy and just use nano and mousepad when scripting on my kali machine. Notepad++ and VSCode on my windows machine

totally fair

mostly vim or VSCode for me

but like alotta websites rely on ads yk

Quality of Google searches in the past couple years 📉

Yeah for real

like if theres an ad, out of respect, i watch it

Nintendo music app has this I think, good to see Spotify got it.

in a yt video

they've figured out once and for all the Google SEO techniques and it's awful

or sumwhere else

I'd highly recommend Kagi, if you are willing to pay

KAGI

oh hi bella

What is that? Is that like SponsorBlock or something?

it's a search engine

SponsorBlock is a step too far for me

really good

ah okay nevermind then

It's an impressive search engine

https://kagi.com/

I have been experimenting with alt search engines but for some reason Kagi has never came up in my research

I def pronounced that wrong

ke-gi

I pronounced it like the "Pegi 18" voice lol

lol

Anyways for Kagi I'll have to do some more research, thank you for the recommendation though

Gave +1 Rep to @shut hawk (current: #14 - 605)

yw

I have pretty much de-googled my life outside of Google Earth and Google Maps (notably with all tracking disabled obvs)

Vast majority of my accounts have been migrated from Gmail to Proton Mail... although I still have more work to do on that front lol.

part of a larger project to clean up my decades of interent presense and update passwords and etc

I want to do it as well but too much effort

Password manager and actual email client like Thunderbird helps tons

Bitwarden being my password manager

amount of ai generated crap when searching for stuff is unreal nowadays

These days I usually keep my Proton Mail inbox clean but you caught me on my off foot lol

Just my Thunderbird view

Pretty rainbow folders c:

Honestly I didn't learn the value of having a desktop email client until I started working in IT professionally. Obviously Outlook there, but Thunderbird is what I love personally

gosh this thing is sooo frustrating...

just MFA harder bro

i am at a point that i have 0 tolerance for ads

Agreed, sometimes I forget the internet even has ads these days lol

and i make a point of adding adblockers to all my friends computers

I tried to make a big push to roll out adblockers at work too but it was sadly in vain.

Mostly because too many dumb users were falling for awful search result ad placements and more, leading to malware and scams

If you all do infosec professionally though, I would recommend rolling out adblockers if you can convince management

Google being shit as usual makes that tricker though with Manifest v3 unfortunately

Any means of preventing and curtailing data harvesting is a worthy cause.

but sadly it stopped working with the last update

Probably best not to mention that specific use case here

but I get you

Piracy is illegal.

Don't promote it in this server.

okk

so nowadays if i want to listen to music on my phone i just open youtube on firefox with adblock

can anyone help me out in a code thing

Adblockers are also against many platforms ToS.

Where is the code from?

Yeah I do actually pay for YouTube Premium and Spotify Premium despite all my adblocking. Honestly sometimes it's just the best way to go about things on all devices

i am creating it using chatgpt

That being said, we pay for no streaming services beyond that c:

all blu-rays baby!

Then that's where you're going wrong.

I do pay for Youtube Premium, but I don't use Spotify on nearly a regular enough basis. Never really seen the point of the platform; I could just be missing out.

What's the code for?

yea if you code with gpt youre gonna spend more time debugging than anything else

i want to create a program that download yt subtitle and summaries it using ai agent i was thinking of using chatgpt api but it ain't free so i am using deepseek but i don't know how to do that

isnt there a tool for that already

Coding with ChatGPT is like coding with a co-worker who copy-pastes everything they do from StackOverflow

@sick lance review Active Reconnaissance room task 6 question 1

do people still use stack ?

pretty sure i remember a friend using smth like that to summarize recordings of college classes

#site-bugs if you think it's a bug, #room-help for room help.

https://notegpt.io/youtube-video-summarizer

Youtube Shorts does such a good job of giving me random AI summaries of movies I've never watched all by itself though

Yeah there's a ton of tools like that and they're awful because that feeds into the plagerism market

Thank You

Gave +1 Rep to @sick lance (current: #1 - 3330)

actually i think he used one AI to turn the audio to text and another to summarize the text

f4mi has a fantastic video on combating that

yeah it can't do playlist whole

https://www.youtube.com/watch?v=NEDFUjqA1s8

Highly recommended watching and related

The AI must be combated at every turn

for some reason my instagram feed is infested with weird ass AI videos so i dont even feel like using it

https://www.youtube.com/watch?v=73rkqkTY6dA

Oopsie Woopsie, you posted a youtube link as an unverified user, no embedded links for you

I'll pass, but thank you for the thought

what a weird accent

f4mi is a very fantastic channel though and worth a sub, she has great well researched content

yeah she's eastern european as far as I can determine

her video on tracking down the origins of "SMASNUG" is also 10/10

oh god i love this

I actually really like this accent.

Very wonderful.

Yeah her vibe, editing and videos are just great. Always a must watch for me when there's a new one

yea i like it too

one more transfem youtuber for the list

She is actually cis

no way

my radar never fails

It's okay I myself suspected as such until she confirmed multiple times on her twitter to people attemping to call her out lol

Nothing wrong with that.

Wassup

No embed

Didn't imply there was

https://tenor.com/view/embed-no-no-embed-megamind-megamind-meme-gif-25261934

Sometimes you gotta hit em the mega mind

https://tenor.com/view/kira-death-note-light-light-yagami-light-yagami-laugh-gif-16005396670537375082

Or not 😅

A new user won't know they won't have embeds. 😄

apparently they launched a straight to streaming megamind 2

I leave for two seconds and we start going down the shitposting rabbithole lol

with dubious quality

They knew it would be too good for theaters

It's the weekend (for some of us)

We have fun

lol yeah it's Friday and shh I am very much "at work" right now

Same!

been a very long and busy week so I am enjoying actually having enough time to Discord post

I’m taking it from you

its public knowledge that no one works on fridays

I’ll pirate that shitposting game

To be fair even in IT, it's well known you never make significant changes on a Friday

or else yeah your weekend is ruined lol

Run your untested script a 4:59pm and shut your computer off and go home

actually spoken quite frequently but yes

good thing demand lately has not been high

Demand for what specifically?

in my job

No forewarning, major server patch at 9PM on a Friday Night --force --no-backup

Ah totally fair, I can tell you we've been quite busy here lol

but once the college semester starts and i have to write a thesis along with work its gonna be hell

what will it be about? absolutely no idea

We did actually apply Windows updates and server reboots for our largest client every Friday night until that was passed on to their internal IT. I don't miss that. Was always on the on-call tech to do after-hours

I did run into a couple show stoppers like "whoops email broke for 300+" users, lets stay up until 3am to fix it, but yeah nothing was ever like catastrophic

Also who would have guessed, it was Microsoft who broke that themselves, as always (Exchange authentication changes a couple years back)

god i hate microsoft stuff

Microsoft don't like competition, they will do everything alone.

Build stuff, fix stuff, break stuff.

i work at dell so everything is microsoft related

They're not fussy.

They also hate Q/A and testing lol

fucking power tools everywhere

Man you’re good. Our NOC applied patches and reboots to a hyper-v host and didn’t check to make sure it worked

And then I had to go fix it 🙂

Oh literally at Dell? Interesting. Well our fleet is 95% all Dell so there you are

I also have a Dell PowerEdge T430 as my homelab server c:

hoping to be able to escape it soon

their work culture is sickening

Yeah I can't even imagine working at a major OEM like that, but yeah whatever's best for you, go for it!

oh just noticed we have almost the same name

Yeah, I go by Ellie generally. Pretty close

yea and with them removing remote work completely its getting worse and worse

Ouch yeah, I work 800 miles way from my empoyers lol

we used to have Udemy so i could take some good classes in it but now they removed it to have their own learning platform with barely any content at all

Yeah probably just rebranding yet another product anyways

Meanwhile my company is on the order of less than 20 employees, so THM/HTM/etc was all my decision lol

and they make you use stupid tools so you dont learn anything useful

ive been working in automation, but instead of learning powershell, they had me learn POWER AUTOMATE

We have no learning content platform 🙂

Udemy, ouch.

lol before you leave, please kill Dell Optimizer and Dell SupportAssist 🙃

We were also promised certs and that was 7 months ago

We actually were told we have pluralsight

Bro help mee

But then when they changed their licensing model they said nah we don’t need to do any learning platform

With what?

When I tried do nmap scan on my network

It said " All 1000 ports on my ip are in ignored state"

oreilly is a great platform.

What are you scanning?

Give us the nmap command you used

What should I do

Your network is secure

nmap -Pn myip

Ohh I see

Wi-Fi hacking is restricted to our advanced channels, if that's what you're doing

did you use your interal IP range or your external IP

Did you scan your external ip?

Looooooooool

😂

Also TryHackMe does have great rooms on learning nmap I will say

Wait lemme try again

What are you planning on doing?

lol, that doesn't answer the question but yes if it was external that may have been why

I'm tryna get into my home network

Use the password?

Um... what do you mean by that

I'm trying to get into my home network

You better be the actual administrator of your home network if you are doing this

Probably best I take over 🙂

For fun though

Yeh my father is

Ik that

Wi-Fi hacking, and hacking in to your home networks, is reserved for our advanced channels, we won't be assisting you on this. 🙂

Getting into my webserver

Oh ok

is hacking into my own home network not illegal?

No it's not

if it's your equipment, then it's fine.

But I'm going to assume a few things here

1. It's their parents that is paying for the network
2. It's their parents devices they're using.
3. The router is part of their ISP package, in which case is rented, and not belonging to them

I have the permission dude

Testing on your own equipment that you own and operate is totally fine, but yes, ISP owned equipment and equipment administrated by other individuals besides yourself is not

You need permission in the form of a written, signed and data contract.

Oh I see

We just don't even want to touch anything murky. But ISP stuff especially never

Ha

This is done to protect you, and the company.

I miss the days when even our cable modem was solely our property, but we had to give that "right" up to the ISP in the name of "free speed upgrades" in the 00s

Thanks @fervent meteor and @sinful moon for stepping back

Gave +1 Rep to @fervent meteor (current: #59 - 148)

This is why I always purchase my own equipment.

Same, and even when an ISP tries to give you a router/modem combo, turn off all the router stuff and use your own

Never use ISP provided router/modems if I don't have to

They ain't even that good most of the time

I double NAT D:

I'm having works done soon in my area to increase our speeds.

https://tenor.com/view/kitty-soggen-soggy-sopping-wet-kity-gif-3736576636392932586

When it's completed, it's going to be insanse.

Yeah they're usually those pretty crappy Arris devices or whatever that company is called. Very much not a fan of them

compared to back in the day when I'd be running custom firmware on all my routers and yeah owned my own cable modem as mentioned. Those were the golden days

dat dd-wrt/OpenWRT life

Using wireshark on public network isnt illegal right? Cause i may or may not have done that without knowing

Yeh I solved that

This is a grey area.

Just because you can, doesn't mean you should.

No, it's not illegal

The packets are being sent to you so

At least here, but I'd double check your local laws

what about tshark and termshark???

Wireshark is my wifu

I mean they go hand in hand

Wireshark is a really good listener <3

It really all depends on what you do with the traffic you capture, on what makes it legal/ethical or not.

Yeah i didnt know anything back then was just playing around with wireshark for the first time

Sometimes I can’t understand what wireshark is telling me 😦

Realistically only use Wireshark on networks you have full administrative control over if you are concerned

I still don't know how to use Wireshark to capture the whole LAN traffic

A skill issue you fixed after. right?

..Right?

All it does is capture localhost for me

https://tenor.com/view/hacker-pc-meme-matrix-codes-gif-11310648121341593764

Oh come on!

That's all it will do, capture traffic going to and from your network interface.

On Linux you may have to explicitly enable promiscious mode on your networking interfaces to do so

You may need a dedicated NiC that features monitor mode.

If I want it to capture all the traffic to all the devices on the network?

I thought there'd be some Wireshark setting but apparently not

Hey guys, so rn im doing the jr pentester course, but I kind of decided id rather be on the protective side of things, like actually keeping sites/other things safe rather than attacking, any suggestions on what to do?

that goes for both WiFi and Ethernet, and support for monitor/promiscious mode depends on the manufacturer

I did, it didn't help

You would need some special hardware, or a network switch that does "port mirroring" that sends a copy of all packets to that interface on the switch. Then your capture machine can be connected to that physical port and it will see all the traffic.

do the Soc course

Do the SOC courses

Then it's quite possible your hardware doesn't support it explicitly

What would that be/do?

Makes sense

or you did it wrong

what exactly would i be doing/

Also a possibility

All I did was check the box where it asked to enable promiscuous

Learning about how defenders operate really

cool, so it would just be learning how to defend?

Ha

Are there any restrictions on live streaming the SOC simulator? I was thinking of doing that this Saturday.

I have an Alfa Network

shout out hak5

Good question, let me ask for you

lmao

I just know for WiFi specifically, typically once I got everything I needed to get aircrack-ng going, I usually had enough to get Wireshark going in monitor mode

That's one nice mouse
And a nice sticker

Ethernet I generaly didn't have to fiddle with much

The mouse is a £5 Amazon special.

I love that backlighting

Because I hate trackpads.

start with SOC fundamentals?

Soc 1 and 2 is good path ways.

You have yet to experience the steel ball on the middle of the keyboard acting as a mouse

so should i finish pentesting, then do SOC, or if I just want to do protection should I switch from pentesting to SOC?

I wanna see scrubz full setup

What is the brand?

nubbins were peak, and we have regressed as a society not including them on laptops

It looks awesome

This?

Jfc how old is your laptop

No that's a nubbin as I was refering to

Your nationality

Thinkpad still uses them iirc

3 years.

Not that. It's more like a steel ball, rather bulky, you spin it around to move the cursor. It's found in older airports with cyber cafes.

or a TrackPoint as IBM used to call them

Tf. I haven't seen those in at least a decade

yes, but Lenovo is a hollow shell of the former IBM ThinkPad glory

same for Motorola being aquired by them

Round about way of calling someone a boomer damn

I mean, it's just as insulting to me...

🤣

Scotland.

https://tenor.com/view/elevator-scotland-burnistoun-gif-15604770

@sick lance

It's called a trackball, I think

lol

Oh I had a few of them.

I think

That is the most industral looking trackball I have ever seen

I'm noting this down

I love backlights

looks like a trackball for an industral CNC machine or something lol

Throwback to when we had to hard boil an egg to use our mice.

My childhood lol

Did you launch them from slingshots too?

hell no, those things were precious, I didn't have spares. I washed them in the sink even lol

Yeah I do not miss having to clean those and the bearings

even on my retro PCs, I refuses to use anything other than an optical mouse if possible lol

It was the old horrible mouse mats you used to buy, the threads would get trapt inside.

2090 quantum mouse

Specially when playing the Amiga.

Yeah Amiga is the one I still have to put up with classic ball mouse

probably there is one of those somewhere in my mum's house 😂

I'm sure there are solutions, but I just have an original NTSC A500

https://www.amigakit.com/optical-scroll-mouse-black-p-1329.html

Nice yeah I figured it was a thing, but I haven't investigated much. Sadly I don't have enough room in my house to get it out of storage

Trying to use optical mouse on your old hardware be like

I'm already out of space between 1999 Dell XPS T500, 2002 Dell Dimension 4400, and iMac G3 on a table

used to have a room dedicated for them but they got shoved into the home office due to my SO

Im too young for this conversation lol gn all!

https://www.youtube.com/watch?v=tI8Z9snG2U0
@sinful moon See the speed of him writing in vim

See ya!

Come back and learn some history, young blood!

I'll pass, but I'm more than familiar with people proficent in vim, myself included

I've been using vim for about 18 years

vim golf was the original linux game

I can use vim, but far from proficient, it's amazing see people fly through it

Okay... Thought you would be interested.

one of my former interns learned vim because i made him write python for 6 weeks using only that tool

once he learned vim i "let" him use an IDE for the rest of his internship - he was actually pissed at the IDE because he'd gotten used to how fast and snappy vim is, even with plugins cluttering it up

Honestly for single document projects, vim just kills it, I just don't like the whole "forcing vim to be an IDE" vibe myself

Eh, getting vim properly turned for a language isn't difficult, juts time consuming

Oh I don't mean that, I mean more multidocument large projects

Vim is just more than a text editor.

autocompletion for keywords and named entities is the big pain point

Just because you can doesn't mean you should

preach!

yeah I'm more than fine with a few plugins for a language or whatever

How old are you

i use vim on vscode

Honestly I'm a VSCode scrub and perfectly fine with that. Why have all this ram if I can't use it?

it was more about the speed and responsiveness with vim than with the IDE. intern got used to the speed of navigation with search, line jumping and never having to move his hands to do anything

yeah vim is my go to for quick editing and single document coding for sure 10/10

I hate to use this awful meme but this does sum up my feelings

eh

Electron does indeed suck though lol

vscode is still too bloaty for me, to be honest. and ssh tunneling to a remote devbox is much easier than trying to get the ssh connection working properly in vscode or codium

I was trying to compile a binary with a .sln and it was such a painful experience

I just git push from Code then pull on my test box

fair enough, my pentesting server is all ssh/ssh tunneling, not that I do much dev there, so it's just all vim

or setup an sshfs mount

shh, big brain moment

I think efficiency is great for production, but simplicity is great for devloping, at least for me.

so far, liking the look of micro, thanks for the recommendations

it already blows my mind as it is THM OpenVPN on pentesting server > ssh tunneling that server > RDP locally, wut

i use python scripts on the devbox that i call from vim to push to git for my runner to work. i don't like to leave a lot of things on my laptop to clutter it up.

just to confirm, we're talking vim and not neovim?

Same. I like to setup dedicated dev hosts on my home server to keep stuff organized.

Realistically they're interchangeable in any convo

My muscle memory is so strong I just have vim aliased to nvim

alias nano=vim

Now that's evil, just set your $EDITOR properly

From now on, my screen saver is vim screen. You can't quit until you learn how to.

lol that's something I enjoyed about using Linux without a display manager and etc for years. No one knows what the heck to do when they're presented with bare Linux login prompt compared to a pretty GUI

alias nano='echo "Get a real editor."'

who needs Win+L when you have this

It's kind of like for the people who stole my iPod 5.5gen with Rockbox back in the day. Hope they're enjoying Rockbox, probably thought it's a knockoff or something lol

custom firmware all the things

Amusing until you realise that ChatGPT is cheating off everyone else in the room...

"It took years of hard work for us to steal beans from farmers, apply our unique brand of magic, and seek investment from our nation’s finest rubes and oafs,” a Beanco spokesman said. “Now DeepBean wants to steal our magic beans, rebrand the magic, and get money from their own buffoons and clods? It’s just not right."

Source: https://www.thebeaverton.com/2025/01/chinas-new-and-cheaper-magic-beans-shock-americas-unprepared-magic-bean-salesmen/

I despise AI

Indeed, it has only been of value to me exactly once

And i am obsessive

does any know how to switch chromeos to linux

Is the chromebook yours?

yes

That is a very very compliated question and depends on your specific hardware

my school gave out free laptop for a event

not school laptops

Although technically you are already running Linux lol

yeah chrome os is bad tho

also the hp i have is horrible

Just from memory though, this is one of the easier ways: https://github.com/dnschneid/crouton

thanks

Where u from

mhmm, there's way more options but they can get pretty complicated

why?

oh "crouton is now end-of-life" lol rip

Country I meant

ik

Either way just do some basic googling and you'll be fine

okkk

i didn't wanna break any thing

then i would be down to one laptop

i use to have 5 😭

I hear you. I used chrome os once and I felt claustrophobic, like I was stuck in a chrome browser with no escape 😂

lol

U from Europe

no

Asia?

nope

Ok

the moon

,😂

your close

America?

no closer to the moon

Then u from mars

logically the ISS would be the next guess

@sinful moon how can I join the study session

finally did the Skynet CTF

what study session lol

the voice chat?

Small study room

Yeh

Oh

Yeah

I'm purple noww

you are 0xNeo

w3lcom3 to the THM matrix

How can I get green color

do 100+ rooms

Ah

I had a bad experience with this once, I quit the whole rev shell and restarted, then installed nano 🤣

U support LGBTQ smthng??

support, am , etc

where can you find malware samples? I'm interested in using what I've learnt about analysis in practice to try write a mini-report

Bruh

Is an advanced topic

There are some THM rooms which contain malware samples

I know there's an advanced channel....

omg

"malware" is advanced channel topic

hah

You can copy them off Github too, but do so at your own risk

Can we just not talk about it at all 🤣🤣

my goodness

This defeats the purpose of having advanced channels.