#general

What else

Okay. Better question. How did you jump to "program needs to communicate with hardware".

Also, yes, Python can communicate with the hardware albeit indirectly.
e.g., https://pypi.org/project/RPi.GPIO/

Because that's a level of it

Should I have said, learn C

Yeah, that sentence makes zero sense.

Wdym "that's a level of it"

you do know that just to check hashes of programs you don't need to be kernel?

There's levels and different ways you can communicate with hardware

Kernel drivers are a level no?

....

do you know the difference between user space and kernel, just a question?

No. Drivers expose functionality to interface with hardware. That's... Basically their main purpose.
Nothing about "levels" -- if anything we're talking user space and kernel space, with the jump between them.

Kernel is supposed to be the middle-man between hardware and software

Kernel is software

And either way you've still not explained why you think this problem requires some custom interfacing with hardware

Why do I have to explain this stuff

Do you know what a kernel driver is?

Because you're giving somebody the wrong information.

Because you guys cut in

Thank you very much

Because you're talking shite lmfao
Or, at the very least, have explained yourself so poorly that it looks like you're talking shite.

Hence the question

we cut in cause you're giving someone directions in the opposite way
mcdonalds is to the left and you're telling them to go right

My skin is having breakouts like in a teenager ahh this weather

also half the time you can talk to hardware from userspace, you can write to files to directly talk to GPIO on a pi

Alright then, how do you make a program that communicates with hardware the way you want it to?

why do you want to talk to the hardware?

I asked a question

and I asked you a follow up

I’m so confused does software not communicate with hardware

This all stemmed from some really ill-observed advise on malware observation.

some of it does, some of it doesn't
(if we go technically, everything does)

It does. Generally via kernel space though, although that's still software.

Don't shift it back.

You think I said kernel was hardware? Ain't no eay

Sorry sorry, I'll go back to watching.

There’s so much going on in chat I’ve stopped functioning properly 😅

again, why do you want to talk to hardware via kernel?
that will narrow down on how to

Generally with a driver. That wasn't the contested point. The question was: why tf are you trying to talk to the hardware directly in this context.

Because it's possible?

I'm just giving shorthand advice

just because it's possible, doesn't mean you have to

That doesn't mean it's relevant...

To miss stealth it was

No it wasn't lmfao

just because I can take the elevator to the 1st floor, doesn't mean it's the best way

That's the whole point

The whole question is "why is that relevant"

She just sat there eating popcorn whilst reading this chat

Good morning to everyone! Hope you're all having a great start to your week 😊

mornings

Got a problem with popcorn?

Hahaha that’s them three 🤣

Crying

I'm in Uni learning AI

That's... Literally what this discussion is about.
You've suggested the nuclear option for a problem to which it really makes little sense.

i dont hve access to my old account on discord
which means i cannot link my account twice.... how do i fix this?

No I got a problem

Nicee, is that a good thing?

Ask a mod nicely to unlink your account if you have your token.

Oh, hope you get help with it soon.

Not really, it's boring.

i have my account token, are you able to do it? 🥺

Morning

hii shadow

You'll need to DM the token and the account it's linked to.

ok

Would you think it's a worthy subject to learn about?

I was out here coding shid, then I talked to dummies, mb

morning

Not at fourth year level.

There is no way you called Muiri a dummy

They did. It's cute

Please don't be rude about community members.

Without me

/j

They're not telling you you're wrong becuase they're bored, they're telling you you're wrong because they don't want you teaching somebody else to be wrong.

Well he's obviously not smart enough to understand I don't want to talk about kernel level exploits that communicate with hardware on a public discord server

morning shadow hows ur sleep

I mean
He's the only one out of the two that has the "Community Mentor" role

...You literally were though

not great

No I wasn't

slept since 05:26 to 09:39

Same last night

current time is 10:43

Just couldn't sleep

Slept so late

Revell why do you do this every time my man it's not that serious it's okay to be corrected.

It's probably a good idea you don't want to discuss it.

Let's just drop the subject.

this is based on shadows recording of their "snores"

you record your snores?

Some people do it for sleep studies.

well best thing shadow found so far that is not a bad smart watch for sleep tracking....

I'm fine with being corrected, I don't like being put in a position that leads to illegal conversations.. I think that is stupid

You don’t want to hear my snores that’s for sure

hoping the revived pebble will be a better option

Is there a cert I can show to gain access to the restricted rooms instead of getting the level up.

OSCP or equivalent

Okay

Advanced general chat for those who are OSCP/eCPPT-certified (or higher), have the 0xD level, have completed Throwback, or are a prominent infosec developer!
from the advanced general chats description/topic

so there are advanced level rooms?

Thanks, I’m gonna look

Gave +1 Rep to @mellow gull (current: #75 - 110)

yuups and it was never a secret

Thanks 🙂

+rep @sand trench

Gave +1 Rep to @sand trench (current: #4 - 2080)

So I can get one or the other

cool

damn im bouta get banned for ban evasion, even though i got false banned on discord -_-

screw discord

womp womp

Hmmm I’m looking at both certificates

One is good for exploiting xxs which would be nice for bug bounty

But the other has reverse engineering

Difficult to pick

They're both complicated, that much I know

You don't need OSCP to do bug bounty.

is xxs similar to xss? I can just google this giv me a min

Just need a fly swatter

I’m just a pro at war with auto correct

🙃

well miss stealth is looking into it because they wanna "speedrun" the advanced channels

that's what I thought lol. All good tho.

Honestly it'd be easier to get 0xD

Cheaper.

Or probably whatever they end up raising it to

100%. Correct

I’m old

I don’t have the time to wait

Didn't the price of OSCP go up again?

Yeah.

By like 500$ or something crazy

Isn't the OSCP locked behind it's + feature now

Is the statics on the bot in terms of rep able to be changed or is it a hard set?

I really want to buy two travel monitors.

shadow got lucky and sniped the throwback network just before it got removed

+rep

do it, they're worth it

Admin can change the value.

Ahh

Mobile monitors are nice to have in general

What cert is good for bug bounty in your opinion ?

Especially if you work with stuff that don't typically have them like lots of raspberries

You don't need a cert to do bug bounty.

you don't need a cert. Imo web exploitation knowledge is what is needed

You just need to learn, you don't need anything to prove it.

But first you gotta know where to search for the vulns

Anyone can do bug bounty, open up a bug bounty program, read the scope and you're set

go through owasp top 10 a lot....

THM has a web exploitation path.

Okay thanks +rep

Gave +1 Rep to @sand trench (current: #4 - 2081)

That would be good for BB.

Oh ❤️

Noice

There's also tons of nice vulnerable ISOs you can use to test web exploitation methods like BWA or plenty of docker instances

BBM

yknow you would think that ppl making websites would not make the top 10 most common vulnerablities but ig some ppl are not carefull

should probably get noodles again today

@graceful mauve +rep @graceful mauve

I'll give that a look. Working on HTBs role in it along with portswigger

Imagine

Self-repping doesn't work, but nice try.

low hanging fruit and all that

People give it a shot every once in a while

I’ve had to stop I think they’re making me thicker 🥴

You'd be surprised what people overlook

Nice try.

so does all food technically

dangling DNS

Tried to smuggle it 😭

But the noodles were putting a lot of weight on me. I was eating too many noodles 😐

Not enough veggies

shadow basicallly only eat them if they are out of bed early

as a reward

This is why I put broccoli and spinach on my XXL pizzas.

Healthier

...Who hurt you?

Im sorry for your lost gaw

there is so much fruit on shadows pizza

like banana and pineapple/ananas

I can't believe you torture your food like that

ooohh hope there aren't any italians in chat

I am so much fatter than I was last year. Even with all my walking around and around.

I call it "penance" actually

I need to move to a healthier country

you sure it is not new muscle weight???

Ty, thanks, +rep @sick lance

Gave +1 Rep to @sick lance (current: #1 - 3338)

Wat?

Nah I’m definitely chunky-er 😆

alright first tip in exploiting the bot. the +rep doesn't work without priv lol

Gave +1 Rep to @graceful mauve (current: #482 - 12)

Hello🙂✌🏻👋🏻

Yeah where’s there’s less processed foods and the food is cheaper

Lol ty

Italy maybe

buying food in resturants is always expensive

learn and take the time to cook for yourself

Food in the uk is so expensive now days

how much for a regular size pizza??

It’s cheaper to buy it ready made than it is to make it yourself

Depends where you buy it

Depends.

average the price out then you moops

How are you guys🙂🙃

Don't you tell us what to do you meep

here it is about 130-150 sek

Also depends on what you call a regular pizza.

Food is expensive everywhere due to global economic trends increasing inflation generally

If you want a nice pizza frozen is 4 pound a pizza but Iceland do a cheese thin crust one for a pound

this ^

ham and champions/mushrooms

No, I meant by size.

no such thing as cheap food no more. Like we could argue potatoes

But it might taste like cardboard

Small can be 12" Med 14" large 16"

weird take on reguler pizza

Hehe cute😁✌🏻

You new to thm?

Alright what's everyone's favorite pizza

stoner 420

Meat feast

I make my own pizza.

I use chicken as the base.

Add tomato sauce, cheese, red/green pepper

Cold and microwaved

this:
Banana
Chicken
Curry
Peanuts
Pineapple
tomato paste
cheese

so like are they dried bananas?

Ok, Cheese is the only topping our of that list that should be on pizza.

Is that on one pizza

I really should ban you for your food crime.

Sounds great, I might try that some time... With spinach and broccoli on top

yes

pineapple pizza 😋

now they are fresh bananas

gaww you're losing me. Stop

what do you mean no tomato paste????

I've known tryhackme for 3 months now, I just new wrote it on discord, I don't know it✌🏻

Ok, 2 out of the list.

chicken is acceptable

Cool! You should attempt in connecting your account here to display your level on here. Everyone here is cool and good to interact with

the food you listed, in my opinion wouldn't taste well with tomato paste, idk what you would replace it with though.

It’s not in your opinion, lol it’s objective, they’re just joking anyways

Cheese and chicken does.

I thought they were being serious

ooh jabba's pfp change to phineas

or is that ferb

She isn't, I do believe that is the toppings on Shadows pizza.

Oh fair chicken is good vibes, I just saw mainly fruits

ah lol

I can't get rufus to work on arch 😭

Thank you very much ✌🏻where are you from?😁🙃🙂

Gave +1 Rep to @fringe nacelle (current: #651 - 8)

lol why would you

it doesn't want to work via wine

again wtf

need to customize a windows boot usb

that is an insane idea

So did I

it's not insane if it works

Oh the Win 11 stuff? Fair then, otherwise I’d be like Bella, you are insane for even trying

somewhere in the land of America. Hopefully you enjoy the discord

yeahh, need to remove some stuff and make it a local login boot

Okay I'm back
Curry pizza is a real thing though and it's pretty good

Not 100% on the banana though

If you really need the Win 11 customizing features, just do a quick Windows VM with USB passthrough

welcome back

yes, but then I have to install that

i like pizza with just cheese and nothing else

No sauce no nothin? Fair enough I guess

might just take one of the windows laptops I have laying around and install rufus on that

I know effort but you should already have at least one around working/studying in this field

I don't have on my work laptop

so lol that effort will not be for nought even if you don’t have one

tomato sauce is okay

That doesn’t change anything Bella lol

just use virt-manager real quick

That said cheesy bread with some basil garlic pesto is bonkers good

hey hey, I am paid 2k a month, I work like I am paid 2k a month

no comment lol, either way yeah virt-manager usb passthrough should do the thing

yeah, it would

if I have the energy for doing it

There are other workarounds for local account bypass, although I know 24H2 barred some

Hello

indeed, but when you have to set up at least 2 laptops a month, you'll want something that just works instead of having to do bypasses all the time

what are you doing at home where you have to setup two laptops every month?

you think I am at home?

…you just said you weren’t at work

no?

okay you’re at work but you don’t have your work laptop with you

I said I don't have a vm on my work laptop

How do you complete a room?✌🏻😁

you answer the questions

Either way, why are you complaining about effort if it’s work time lol

cause I don't feel like working

lol

if work doesn't see my worths, then I'll show them the worth of the money I get

Low paying job means low effort

indeed

they denied my pay raise because they couldn't see my worth or results when I work a lot and put in a lot of efforts into what I do

so now they get what they pay for

Just surprised you have Linux machine at all at work formally if that be your compensation

this ^

we have 2+ people who run arch at work

Only Linux machines I’ve deployed at work are servers I explicitly setup myself

They use arch btw

I wish, but yeah not in our org

We dont even touch linuxes on my job

100% of our infrastructure of servers are linux

work machine is just Win 11 on a Beelink, then I have a personal Mac Mini on the side for actual *nix tasks which is segmented from the work network

God I wish

cause we are actual infrastructure people working here

100% of our infrastructure is then also cloud

lmao

we’re a very traditional org in terms of 98% Windows 2% macOS for our entire client base

Both the Linux servers I setup are for internal use/hosting

it's 45% windows 52% mac and 3% linux here

for all computers

servers it's 100% linux

Hi

I’d love administrating those servers, but I did learn tons needing to administrate about a dozen Windows domains via AD/GPO, but yeah most of those are moving to Azure/Entra ID

Being a WIndows power user doesn’t teach you crap about actually administrating Windows sadly, so it was eye opening

indeed

I am writing a final exam on windows AD

Nice nice

AD/GPO > Azure in terms of ease of administration and licensing still lol

Microsoft badly reinvented the wheel, split it into 40+ dashboards, and charged you extra for a majority of basic features 🙃

henloooo eberi1

i think i'm gonna go watch pokemon again

its been a while

play pokemon TCG

i used to

That's like telling someone to play yugioh

palkia and dialga cards are noice

too lazy to collect cards now

lol I haven’t watched the Pokemon anime in 20+ years

hahahaha

I never watched pokemon I just like the cool looking pokemons

HAHAHAHA

you do know that ash is retired right lol

when I was a like elementary I use to collect this mini figurines of pokemons hehe

ash got offed

rip

lol I was around when Red and Blue first came out and the peak of Pokemania in the 90s

ash: started 10 years old
retired : 10 years old

XD

HAHAHAHA

so you bet I enjoyed every form of Pokemon media there was back then

Pocket?

yep

I inspire to be ash, just travel across the world without knowing the concept of money

HAHAHAHA nahh just ride a lapras through the sea, or fly with rayquaza and youre good HAHAHA

something something MtG is better <3

do you just have this photo in your gallery?

commander?

What are these challenges. Try hack 3m

that infernap looks sick!!!

Not like I’ve played MtG in 15+ years nearly either

8 recently had a screenshot for a different server

I've played MTG, Yugioh anda bit of the digimon tcg

I heard the one piece tcg is pretty good

lol I didn’t know Digimon had one but I shouldn’t be suprised

Yeah it came out around 2-3ish years ago iirc

I had one of the original Digimon digital keychain pets, those were rad

literally Tamagatchi that fought lol

Idk if I had an original one, but I had one similar enough. That is why I own a Pwnagotchi now

lol totally fair

I’m happy with my Flipper Zero dolphin being constantly dissapointed in me

that little man always has to be so dramatic

recently got a wifi nugget, need to learn how to use it properly

yow just a quick question, I recently learned autopsy (Im the newbie and learning DFIR) and I learned about this ingest module. Is there a channel for modules for DFIR in autopsy?

You ever get much into software defined radio? It’s rad af

I have not, I'll give it a look whenever I wake up.

Highly recommended and just as cheap to get started with

RX wise, it’s like a $30 USB stick kit

RTL-SDR Blog kit is what I’d recommend to get started

bet, I've been meaning to buy another gadget. Soon I'll get into 3d printers

Both nice ideas, but yeah SDR is really addicting. But fair radio/wifi/wireless anything has always fascinated me

so SDR is very appealing to me. See (nearly) all the bandwidth and what’s going on

Although if shortwave is a big interest that will take some very slight effort. But those modern RTL-SDR devices have a mode which helps for that

We just use this channel or #infosec-general to discuss tools

@sick lance do you have any ideas? ghehehehe

lol

ahhh nice

I just asked it there hehehe

are you f2p?

100%

Didn't ever have the two week trail for sub

Fair, just know that it’s like 5:40am EST on the US East Coast, but UK peeps are probably getting going with their day. So a response in this channel may depend. Also this channel can move fast

Sounds like this whole project will be a learning curve for me lol. I'll look into it tho.

have a good day peepos

It’s not too much to learn to just get started, but yeah depends on how deep you wanna get

Oh myyy you have the mew gold card

damnnnn

hola people

lol I thought you were joking about Scrubz themselves being f2p

nope hahaha

I personally have no use for digital trading cards but I can understand the appeal, to each their own

I just want cool looking cards hahahaha

they’re just images c:

What is this easy challenge

What challenge is it?

I hope I don’t break it

hi everyonee

I found some challenge thing

On the website

What do you gotta do for it tho?

That has a list of “Recommended” challenges

Like what makes it easy

Still haven’t actually answered the question c:

is there anyone who knows how to doce in c?

It’s gonna takes ages

And then you realize that your wordlist is faulty because it misses edge-cases

Find the hidden text file

😒

sounds like you used a rather broad wordlist

Fml

I’d generally start small and work my way up from there if it’s still not found

What have I done 👁️👄👁️

When you realize you have to understand all of that image

imagine it just being in robots.txt xD

lol

What’s doce?

*code

A tad

Only I could make something easy, hard to do

sry

I know enough to get by

... Was it in robots.txt?

Well enough. What's the question?

Some things you need to understand are the differing http response codes and their meaning under different situation. Caching mechanisms based on different resolvers or usee-agents, rate limiting security measures in place, how to structure you gobuster script well so it captures everything you're looking for

I dunno what I’m doing.

... What?

Robots.txt tells you the directories you can crawl or not crawl

if i insert a name var in imput (string), in output comes out in numbers, WHY >-<

Oh

Can you maybe DM me your code snippet? 😅

What part of that was unclear Bella?

She's upset at me

we won’t see the caching stuff much in THM but it’s all valid notes

Just why all that should be needed to know for that room

You don't

I sent you the name of the room

It's just a couple of notes from the vast pool of cybersecurity concepts

Yee, I'm checking it out in a few, I'm out smoking

That's like 0.0001% of it

Good for real life and just understanding gobuster in general

Indeed, but just overcomplicating an easy room

she never told us the room lol

but apperently told you

She said it was an easy room

it is just what shadow calls pizza sauce as in sweden it is generally just tomato paste

I'm not overcomplicating it. I'm helping for future reference. You need to know this stuff

Even just simple nmap external scanning at work, I’ve indeed had some ISPs dramatically rate limit me in, which results in some very odd symptoms

this is why I rate limit my scans

I'll give it a try one day if I'm ever bored. The pizza you shared

I've been rate limited so many times by using the wrong connection chain in my workflows

Increase the threads

Never fun, but they should never randomly block or blacklist you

I got rate limited trying to hack my own pc

Hi, can someone help me with advice please? I want to change the email associated with my thm account but I'm afraid i might lose the premium subscription or progress

Many of them do.
I outright used that to complicate one of my challenges a few years back

I fork bombed my computer into rate limiting me

I think I remember that one Muiri, that was fun

Jellyfish, aye

mhmm

I still go back and rewatch the Alhazred stream of that one when I need a mood boost 🤣

I haven't encountered it yet personally. But that's interesting

You would be amazed at how out of joint many CTF players get when you give them a box with a public IP.

UPLOAD MOAR CONTENT.

at least year of the jellyfish can send its rev shells back over tryhackme vpn ip:s

Pft.

As far as I know, changing your email address will have no impact on your subscription or progress. Those are tied to your account not your email address

So whats the solution besides doing it slower?

Haha, they're like "I deafen, I attack"

sssssshhhhhh
That was the funniest part -- watching people try to send them back over the internet when they really didn't need to

We're not talking about defending and attacking right?

for year of the jellyfish it is just attacking but yeah

Thanks, will give it a shot. saw a reddit post that's why I asked here

Gave +1 Rep to @sinful moon (current: #34 - 275)

It's so painstaking moving notes.

anyways time to head to store to buy noodles....
tryhackme discord chat do you want something????

No worries, besides if something goes wrong for whatever reason, that’s what we have the support team for

Is that a name

I did 600 pages manually from Cherrytree to Trilium in 2021. Never again.

Pokemon cards

Yeah, Muiri has a few boxes Year of the *

Not least because I now have 4000 odd pages

i want some noodles too

i'm currently shifting Obsidian to TrillumNext.

lol lets see how my Logseq back to Obsidian goes

doubt they have any but will look

You need a custom note parser that functions on blocks with a control character

and stuff from Notion, Microsoft Onenote, and all my folders

Back pain medicine

Yesssssssssss
Also, you should be able to do a markdown import on that

Trilium didn’t look very appealing to me but I would be curious why everyone loves it

Or just use the import feature

You take that back

There's so many companies that they are no unique names anymore

Always makes me think of Trillian the IM client lol

Ive been using google docs for notes

It's too easy thoo

Cos then i can open it from any device

No that’s why I’m honestly asking lol

I have started using feroxbuster

Google docs slaps

convince me before I move back to Obsidian since I’m about to begin migrating when I have time lol

I used to make notes on it all the time

I have now moved on to Obsidian

Hehe, not true. That's one of the big problems for CTF Devs actually.
There are still names available, you just have to grab one and hold on to it.
That's why I often build multiple challenges around the same brand. It makes things easier, and more realistic.

Do you do any Windows exploitation?

Also, check out fuff, amass, sublist3r.. You can learn to code in python eventually too

Getting your notes nuked before sitting an exam?

Literally, Spooky lost most of his OSEP notes the morning of the exam

Thanks

Gave +1 Rep to @graceful mauve (current: #451 - 13)

Im just afraid of ever getting my laptop stolen and losing all my notes

Alright, so it encrypts the notes on disk? That sounds like a potential downside as well though

That's who I was thiking of, I just can't spell naniniasu

Backups!!!

3-2-1 backup of everything important.

and or whatever sync you setup

Google Docs is the best thing for you then, though if your laptop gets stolen, then the thief would have access to your already logged in Google Docs and other things

Np, although make sure you understand the difference in protocols used by DNS servers or web-based traffic communications

offsite backups :chefskiss:

Trilium uses an encrypted sqlite DB replicated between the sync server and any connected clients.
It's ideal for redundancy

And has the added bonus of not letting AV nuke your notebook

Really great idea, but yeah I do kind of enjoy the simplicity of “just a bunch of .md files”

Thiefs around here mostly sell laptops and cellphones for parts

Markdown is simpler, sure, but I wouldn't want my notebook sitting around in plaintext. Not least because if someone nicked it and used it for criminal activity, I suspect I may be in trouble.

Something something your job wont like that.

You want to help me a lot. You remind me of someone

Also that

full disk encryption would be a compensating control I would say however, but fair depends on your threat model

That happened to me

Where are you putting your backups though? Bearing in mind Obsidian doesn't have built in sync. You can pay them for a sync server, but most people just use GitHub

In which case you've got your notes sitting in plaintext on a public SAAS

Yeah when I was using Obsidian I just used their sync. I do have a big iron server that I need to put to more use though lol

hash ur note bfr putting it to github

Um

That... seems like an interesting choice

You know hashing is, by nature, irreversible right?

Good way to lose all your notes

which is the joke

Yeah no problem, just ask. Cybersecurity isn't easy, the deeper you go the harder/more fun it gets

you can make private repos so people cant just browse your notes too

Mh 🙃 I’ve been doing cyber for two years

1. There have been "won't fix" exploits recently that let people do that (albeit in certain conditions).
2. They're still plaintext, sitting on infrastructure owned by someone else.
3. If Microsoft decide they don't want to host your notebook, say goodbye to the primary copy.

https://tenor.com/view/anime-down-girl-gif-14680558

Crazy how time works in cyber

I've gotta do this shitty uni course

To get a cert

... It works exactly the same way as it does in any industry

Like it does in the real world 🤣 I’ve got certs

And indeed in Life in general

Life is forever complexing

i was under the impression that github was your backup not your primary copy

I like how scrubz talks to me like I know what I’m doing. Since so many talk to me like I’m a potato

mhmm four years of IT/sysadmin/infosec myself professionally, the weeks just fly by

I haven't got many certs but if you give me a day on a system, it should be fine

Fr

Too much to do

I started 4 months ago and still feel like i now nothing

Depends how many devices you're using the notes on.

If it's more than one then the remote needs to be the primary copy or you end up in a mess. It becomes essentially the same as collaborative software development.

That’s how it’s meant to feel

If you only ever have the notebook on one device then yes, you can afford to make the local copy your primary copy, but that's poor practice for Git.

One day you’ll be like oh right I knew that

I can use Triluim on a USB stick right?

That's the one quesiton I forgot look up,

... What tf are you playing at

What's the end goal here lmao

I have learnt so much it makes me sleepy

Mhmm, AD/GPO was the biggest thing I was missing in my knowledge when I got started and that was both a wakeup call and a revelation

“Oh this is how Windows was supposed to actually be administrated”

I have an open book exam, and we're allowed access to our notes, I'm not allowed to remote ouf of the Uni.

I created an asynchronous website resolver earlier. I'm happy

Eh, I'll just shift my notes to USB stick.

In bash, it's got custom subprocess handling like xargs

Oh, gotcha.
Yes, if you're able to run unsigned exes it should boot off a USB...

Yes, I'm knee deep in AI right now, I forgot that term

In that case though, I would consider exporting them all to HTML to be safe

Ya.

It's not as pretty, but it would guarantee they're accessible

Same I’m looking into it too

I went the opposite direction lol

Making your own models, or studying data science?

I print my work into folders too

Was really into AI but now im all for cyber

I'm making my own ML to analyse emails and attachments and mark as spam/unsafe etc.

What's the difference?

Ohh gotcha

Logistic regression, right?

That’s cool, im looking into ml too

You learning that with your uni?

Its much more fun

You should use n8n unless you've got something better

I will say that’s very neat work, but yeah I’ll let others train the models personally. But yeah that will look awesome on your resume

AI and cybersecurity intertwine in some ways

I'll spend hours coding but when it comes to AI I want it to be as efficient and fast as possible

I'll probably just stick to what I'm getting taught, for exam reasons and all.

or at least as a project that is mentioned

End of the day, "cyber" isn't really a topic in its own right. It's a mastery of other topics and understanding how things can be abused inside those topics.
AI falls very much into that box.

LLM Pentests are becoming increasingly common as well

Yeah, plus you can always leverage what you learn

Everything has an LLM these days.

I even seen one for Burp.

LLMs are so fun to poke at when you have the authorization to break them

Try working for a bloody bank

Not very good ones, though

I TRIED!

Some things are just a bad idea

I was OVER QUALIFIED.

I want to do this with Deepseek, but... no authorization 🤣

How can a student applying for a grad spot be over qualified.

lol totally fair

Run it locally then

mhmm this

Not enough resources to handle it, I think.

I find it insane how companies will refuse ppl for being overqualified

Whats the logic

Eh, the 1.5B model should run on most stuff

I was working a on a little AI assistant for a minute. I can access via discord give it a wake word or mention it and it would execute commands for me.

That's usually a euphemism for something else.

What about on a host with 8 gb ram?

What's the GPU like?

Should I make open source projects, why vs why not?

Oh no, you said GPU, Chick3nman is gonna pop up any second.

Remember it's mainly VRAM it wants

It's like saying Ippsec

Sooner or later he'll appear

😂 Yup.

why would you even consider not to? Do you have some proprietary secret sauce you’re looking to protect?

maybe they have the krabby patty formula 😮

lol

Pretty much, why would I want to share my script

open source and git history looks amazing if you’re ever asked to share it in an interview

also it just… can help others

DirectX 12, 112 mb of VRAM

Getting there, slowly but surely.

That’s why I didn’t want to talk too much about what I was doing earlier

Uh does that mean iGPU, 112MB of VRAM makes no sense otherwise unless that’s your current shared RAM use for that

Trust me. It's wise. Stay like that

tall people seem more serious idk if its just me

https://tenor.com/view/ironic-isnt-it-wednesday-addams-jenna-ortega-wednesday-how-ironic-gif-27434158

It’s true I’m goofy and I’m only 5ft3

Silly goose 🪿

The only times I share code are with collaborators

Other than that, it's my shit, fuck off

why dont companies want to hire someone thats "over qualified"

They just see more of the problems.

I wonder if it works to other way, you grow taller the more serious you are

Do keep in mind you don’t have to go open source from the start either, keep your repo private until you’re ready to share

Yeah, okay, you might struggle

(I am kidding.)

I’m not growing 😆

Yeah true

Paranoid the hire would ask for more pay, perhaps they want a student they can boss around.

This was for a well known bank too.

But yeah I do stand by my point that open source and git history looks great in interviews. Which lol leads to that meme about Github acctivity

As in the making of projects ?

Or am I completely lost here

😂

Ah yep, called it, yeah that won’t be fun for AI Hades

Yep :(

prob doesn't work, scrubz would be 8 feet tall by now

I'm average height, thank you very much.

He said, being smaller than his partner.

Coding your own website and turning it into a blog is also great

I was just still replying to Revell “Re: Open Source, what does it matter practically”. Doesn’t matter if you make projects or contribute, just that you can show some history if asked, if it’s even relevant, in an interview

Ohh okay cool

I have 0 git hub history

For infosec, probably won’t matter, but good to have if you are doing any coding anyways

Much more so for software devs tho

I plan to do that once I learned some web dev

Plus, with all due respect, there are probably 10 fold of what you've made already out there. There's a reason even huge companies still open-source their stuff

Ah yes, I’ve been looking into software creation

Yeah

hey, does anyone know any methods to decrypt a hard drive that was encrypted using bitlocker (win7). What to do if the tpm does not contain the key and the hard drive is encrypted via password

They key could be in your Windows account.

I can’t say much beyond contributing to a couple open source projects but hey even that’s something, even if it was sporadically.

Assuming it's yours.

I'm just following a YouTube series rn. The guy went to uni for web development and it's been a very fun and chill experience.

From developing mine it's helped me understand web exploitation better ngl

u mean the recovery key?

Yes.

yeah actually im trying to get the data back from a friend which does not know the password anymore.

I could take a look at that

which series is that if I may know

Yeah check their Microsoft account then online

if that is not the case are there any other options

were there any exploits or something back in win7 bitlocker

I'm not comfortable telling you, I can't prove it's yours 😄

or your friends.

No idea if Windows 7 was ever this smart but modern Windows saves bitlocker keys to Microsoft accounts/Azure

Yeah we can’t go any further than that

All I can say, is that Windows would have asked you to save the key to an unencrypted drive, most likely a USB flash drive was used

for backup

yeah i can tell you more of the story if you do not believe:
my friends dad passed away sadly. He was a musician and encrypted his data on a hard drive. This hard drive is encrypted til today and the family does not know the password.

Dani Krossing. The series is 6 years old, but seems like it still holds up today. I haven't gotten too deep yet, but I know frameworks are needed in some cases later down the line.

Check if he reused any passwords you know of, or maybe he put it in the will?

they did already

Html and css tutorial to be exact.

its not the case

Or got it written down.

they checked all that

its litteraly impossible to get the password

Yeah all we can say Tiiita, look for the flash drive they may have saved the bitlocker keys to, that would have been most common way back then… or what scrubz said

I'd probably seek professional advice, if it means a lot

Yeah, take it to a professional

yeah

thanks

Sorry we can't be of assistance, good luck with it

thx

I'm so pissed off bro, today was a great day and then night hits and realization hits that you've gotta do some pointless ass shit, with everything you're dealing with being shit and then you gotta fucking wait bro

Waiting is shit

Everything is fucking shit

Cant even sleep when im waiting for something important

And I've gotta fucking mold something out it

noodles is served

“Everything” is actually wonderful and amazing in the purest form of that word, it may just be your current circumstances that are shit. I do wish you luck in whatever it is you’re trying to achieve

not gonna share a picture as it is just quick instant noodles in a bowl

I am hungry

Everything is subjective indeed

Maybe I make toast

Hey guys, how can someone subscribe to THM

go get "lunch"

https://tryhackme.com/r/pricing

Imagine relying on luck

okay, but I don't have paypal or credit/debit card

As far as I know that’s a requirement

just taught my coworkers gen z slang

How were you planning to pay then?

are you gen z though???

I'm 2003

Probably close enough

so yes

Teach them this language

After some thoughts I don’t think what I want to create should be open source at all, this is relating back to previous chats. It would pose a security risk, I wouldn’t want something getting into the wrong hands and causing issues before it’s even released.

Don’t remind me I’m one of the only millennial and olders around lol

Nah

currently

millenial??

Nah

I have some friends in this chat who are much older

I am only 21

i hate this

As a beginner, an open source program will help you learn. You want to know before you start if it's going to be open source or closed-sourcd

shadows expiration date was 1996

I’m a millennial

Intermediates too

Same

One of the only is inclusive for you all c:

What if someone paid you to code an app with it?

But if you can create something someone else can't, then why release it as open source?

I just told you why my project would be closed and not open to the public.

I would say no thank you

Gave +1 Rep to @mellow narwhal (current: #272 - 24)

feath3rz is old enough to be shadows mom technically

though not seen feath3rz chat in here for a while

What if it was $100k or more?

Hypothetically

I'm giving you multiple perspectives

You're immortal.

is it a one time thing? because maybe

Either way just keep your git project private until such time as you’re actually ready to decide

until proven otherwise yes