#general

https://tenor.com/view/call-of-duty-black-ops-1-call-of-duty-black-ops-cod-black-ops-viktor-reznov-alex-mason-gif-1681414047243403443

🙂

Arch is sexy.. Btw:D

Hi everyone, could anyone suggest a name for a cybersecurity company?

Ask ChatGPT

https://tenor.com/view/astolfo-shocked-face-suprised-gif-22302291

No way, it assigned the company name which are already existed.

What's happening with Meta's social media platforms ? I see only some violent videos in my feed today , many users in the comments report the same .

oh yea kamma was saying just the same about instagram

Tell it not to use any existing name....

I feel like it's been that way for a while + insta and twitter

Free speech maybe dunno tbh

Yeah like every other video is blured , if you click unblur it is some deep web content , like what the hell ?

I do not get any violent in my feed... I never look violent things so i don get it.

You don't have to look violent things up for it to appear in your feed

Me too , my feed is travel + cars stuff but today only some violence

But never get it...

Strange..

Well that's good. I'm just saying it can happen without you needing to search for it.

And when i see violence i mean some really dark stuff , like really dark .... I looked at the comments many people say the same . What happened to Meta 😐 ?

i see..

Meaby it is the cult 763 or what the name is...?!

Idk, could be an influx of that content or something messing with their algorithm. Could be a hacktivist thing or just something messed up. They'll probably be an answer in a couple of hours.

What's the cult 763? A new one or an old cult?

I like to take 763 down.. in sweden they force children to cut themselves and take their lives and broadcast it live. Kids stab old people in the back... Damn fools!

Well that's definitely dark, reminds me of that one group something whale. But I won't mention anything cuz of TOS

this is swedeish news but looklat it and translate the site.. : https://www.svt.se/nyheter/inrikes/satanistiska-internetsekten-764-bakom-flera-knivdad-och-sexuella-overgrepp-mot-barn

dose not work 😦

What's your favorite thing about CyberSecurity and what's something you like?

@cloud quiver here is a dark 740HP video, well the car is 😄 https://www.youtube.com/watch?v=X6p3afvTLCg

their slogan is "NML" No lives methers.. They are doing child porn and gross acts of violence with and children...
I think there was some kid in the US who started it..

yo guys

what’s the best place to buy a domain given that i will need to give my developer dns editing permissions

cracking into there website and play , manupulating with there request and response and exploring new topics like web3 testiing , AD hacking , exploitng EIP 🙂

Thanks for that 🤣 . That's my usual feed today something went really wrong on social media algo side .

Gave +1 Rep to @lime ledge (current: #193 - 40)

Give got these prompts and tell it to make a name based off of this. If this doesn't work than someone with a good imagination will hit you up with a name.

Hello

interesting i try this and let see\

@fringe nacelle dméd you

DM that to sid lol

ah.. hehe.. sorry

@gray jacinth dm you with some

ok let me see

https://x.com/matteyeux/status/1894628394832220224?t=HLhkC_sO81JTRYyzR4gygA&s=19

check out https://los.rubiya.kr/

sql injection challenge almost no one knows about

had a lot of fun solving them, there are ab 55 challenges

thats karma for rep farming 😂

on instagram its nothing new tbh

I uninstalled ig like 2 days ago but my friend saw 4 police shootings today on instagram

May be 😦

I have fb since 08 and instagram since 13 . For all that period i saw 3 blured videos which were in fact harmless . Today every 2nd video is some deep web type of heavy violence but i see many users are reporting the same , hope it will be fixed soon 🤣

looking at the instagram reddit there are a lot of people reporting the same today

no one knows the reason

Idk my Instagram is full of baby fever videos and lovey dovey stuff 😂

My linkedin is full of cats, and entrepreneur stuff ,

Currents politics influence heavily the algo we see in the web

lemme check mine

just the same AI brainrot as always

thats why i dont use instagram

Many research for a specific subject , in a location , will lead for you to see some bots influenced stuff

Like politics , brain rot stuff , war , cinema serie netflix .

i discovered my instagram feed is weird because my account was logged on my grandmas phone for who knows how long

so she destroyed my algorithm

You can be closer to your grandma , you know what she look on her phone

There is now reset option

no its good

makes me not want to use it

ive since removed my account from her phone

was wondering if shed like if i created her a tiktok account

Just a stupid question but there isn’t an installment option for SAL1 right?

Not that i know of

https://tenor.com/view/gato-triste-com-sono-bocejando-cansado-gif-2295619231831500370

the mods are probably gonna delete that

oh that was quick

@crystal moss Please don't post harmful commands here.

sry

Morning James

it was just a joke, but i get it, i will not do anything like it again

Yeah, best avoided

do yall take notes while doing the room or finish it and then take notes

Usually as I'm going, scan output, then reflections on it, then forwards

usually as im reading the room

Does anyone know any low cost vpns? which are safe

mullvad

mullvad is nice

only vpn I recommend

other than making your own with tailscale

I like that you can send them cash

as payment

its so unreal to me how the US still uses irl cash

here in brazil almost all transactions are digital and easy to do

only old people use cash now

mullvad is swedish

i guess they are behind the curve too

Hi everyone, please I need some help. I'm working on a lab and need a firewall with web filtering to control and monitor internet traffic. Chatgpt initially suggested pfsense but that is incompatible with my Mac M1 chip. It then suggested OPNsense, which I realise will be incompatible as well as they do not also have an ARM64 version on their website, which is what I need. ChatGPT has again suggested OpenWrt and pfELK, however I am weary of following anymore CHatGPT suggestions. I have tried to check the internet by myself to see what tool would be great for me but I haven't figured one out yet. Thought of asking here to see if anyone has any helpful suggestions. Btw, I am using UTM for virtualization. Thanks a lot.

it's more privacy reasons to use cash than anything else

do not use chatgpt and do your own research/googling

Cash is anonymous

that's why

I have tried googling. This is my first lab ever (that I am doing on my own) and I am not fully sure what I am doing, which is why I was using chatGPT. I do not mind doing my research but not sure what sources to trust, I don't want to download something harmful or something😅

I just put lorem ipsum text into the CyberChef Entropy/Shannon scale and it scored 4.237908394111447 😮 🤯

having fun in the Signature Evasion room 🙂

what does it mean to have entropy

a challenging password to brute force? 🤔

and a room full of lava lamps https://www.cloudflare.com/learning/ssl/lava-lamp-encryption/

woohoo top 10% rank

Ok bro lemme check that out now

amount of randomness

for example generating a number between 1-15 is bad entropy

you can post them cash if you dont want them to know who you are etc

its for privacy

and i think the most random is natural events in nature

isnt it easier to use crypto then

i dont see how buying crypto would be easier then just putting a $5 bill in an envelope

and putting it in the mail bin

yea but you gotta get out of your house to do that

that could be interesting with floating point values 🤔

so?

that's too much work xD

how random is π i wonder

oh apparently numbers dont have entropy

predicting the weather is some fun chaos theory

i mean, not a single number at least

3.14...

You can't predict the weather silly, the government give us rain via chemtrails. /S

i gotta study statistics at some point

They'll do it with a smile whilst logging our phone and inet data

They can have my phone data.

they probably already do lol

I doubt it, but okay.

Can I ask a question about a problem I’ve in a cryptography room

#room-help

There are no URLs in that message.

Please can someone help me with the answer on the first lap on tryhackme ?

Soc1

Ok thank you

Gave +1 Rep to @dark mason (current: #381 - 16)

there is #room-help and also #soc-level-1-path

👍 🙂

just finished all of easy web on pico

grats

thanks

about to move on the medium

Good job:)

Do it:)

someone help us with the task

#room-help

we can‘t send a pic

You will have to verify 🙂
https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

You need to verify!

Use the link KGB provided for how

Does anyone have experience using evilginx

Hi

https://tryhackme.com/room/multifactorauthentications

you can learn about it in this room

task 4

This caught me off guard,
It's so random lmao

https://tenor.com/view/these-biscuits-popeyes-gif-13495355

damn i didnt know they had country specifick leaderboards

thats pretty cool

When I see on videos ai will replace cyber security jobs I get afraid and stop learning for few days then again gain energy and start learning and again I get afraid.
I want to learn cyber security but this fear distract and demotivated me . do you have any advice guys 🥲

thank you

Gave +1 Rep to @slow cloud (current: #237 - 32)

I can even send pic on the group

Even so who will provide cybersecurity for the AI

its gonna take a while before ai can do this job

Another Ai? What about that Ai

You need to verify

click the link, verify using the instructions and then you'll be able to post images @serene reef

How can I pls I do all but facing issues

What issues are you facing?

https://www.theregister.com/2025/02/25/bls_ai_job_impacts_predictions/
A related field

I can send a pic in the group

can anyone make me a discord guild?

More over pls assist me withy task in soc1

if you follow the guide I linked above, you will then be able to send photos

First task

what is the task?

https://support.discord.com/hc/en-us/articles/23187611406999-Guilds-FAQ#h_01HXW2MCD0F03P7GE49RF9ZD4K

What will be your role as a Jr security analyst

I made it y'all 😄

Please go to #room-help 🙂

Where did the exclusive invitation come from?

no i'm a new member here just want to ask how to create a discord guild

This feature is currently an experiment and only available to a select number of servers.

So if you have been chosen, you'll have the option

Plus

I have gone there no one is helping

The Guilds experiment will be ending in the coming weeks and will no longer be available. However, certain features from the Guilds experience may continue as standalone experiments.

And I can't send pic

You need to be patient, as everyone here is not obligated to help

I have explained you need to verify and linked how.

You need to do that to send pictures

neat

thanks you broo

Gave +1 Rep to @silver sky (current: #37 - 241)

Discord Gangsters everywhere are gonna be disapointed

Yea, there already is a massive black market for those silly guild tags and it seems like Discord did not want to put up with that.

Great job Jake ,congrats 🙂

Finally cleaned up the office

Why did you put a bag in your printer, lel?

It's a pouch it's got my work phone in it

That's where it lives when it's not in use

That's good, my dad also does that xd

Deserved. See you there soon

How can i erase my IP adress after hacked a wifi password

@naive violet will be able to help

A great pic with your dad too, was he holding you while you took the pic of your office? 😆

Soldering at work todayyyyyyyyyy >:3

I need to start bringing my hakko in

My dad? Who's that?

https://tenor.com/view/harvey-specter-suits-suits-tv-suits-usa-gif-15684789061952038692

The one with the beard in the picture, didn't know kids have office too 😆

I gotta learn more hardware

Fuck so much to learn so little time in the day

That's me....

Stuff i wanna learn besides hacking
Maths
Quantum physics
Statistics
Hardware

Hope everyone is having a great day

I'm in Adept level. but here on discord profile it was not updated

https://tenor.com/view/hmm-dr-iggy-frome-new-amsterdam-thinking-wondering-gif-14163078457894789635

Bot takes a while

updates once a day

Verify again so it updates

Thanks I verify my account

I was kidding, i knew that was you lol 😆

Just do fun stuff @upper minnow

Bet you can't work out who the young one is

Is he your dad by any chance? 🤣

Hi all!!!

Goodness gracious Detective, good morning

No she is not my dad

I know i know, she's your Greek Teacher!! 😆

Close!

Ancient Greek Teacher! Right?

bang on

Hewwooooo uwu

Finally!!
commands "cookierain" and "silverlinedluck" activated

How are you detective?

Erase it from what?

turn my uwu up on god

The mainframe obviously

https://tenor.com/view/anime-anime-ara-ara-ara-ara-shinobu-gif-21482141

Wallpaper of the day:

Help me out here

The 3 body problem is a 4 book series as amazon says

1st season of the series is based on book 1

Should I order the rest of the books?

PSU?

Read the first book and then decide.

This is a crime. It is illegal and against our rules here.

ive seen a lot of people prefer the books

I mean the netflix series is based on the first book but a fair point, though I read about it because I was reading about the Dark Forest theory which mentioned that these books have that theory so I'm curious

anyone got some obsidian plugins to make code blocks look better?

day 26

didnt do any labs today because i need to do some stuff irl today

W

if yall are still not aware, im challenging myself to 180 days straight of THM and WSA

most good ones that theme the look of obsidian

I don't know what is THM and WSA are

THM = TryHackMe

The discord you are in now

😭

TryHackMe and Web Security Academy

WSA is made by Portswigger

Portswigger ??

creator of burpsuite

Oooo

I have heard about burpsuite
Can you tell me about that

the burpsuite module on tryhackme is a good starting point

at its basic its an http proxy

it allows you to intercept and modify network packets (= data that comes out of your computer to a server)

Iam very new in having

tryhackme has a roadmap completely for beginners

go to pre-security then cybersecurity 101 path

So it basically helps to steal the data which is on its way

Thanks for that👍🏻

Gave +1 Rep to @oblique furnace (current: #1072 - 4)

https://tryhackme.com/hacktivities

Less about confidentiality

More about tampering the data that is sent to the server IMO

this

Like there shouldn't be any info sent from your browser that wouldn't otherwise be accessible to you

IMO ?

In my opinion.

in my opinion

😭

where are you from?

Me ?

yeah

India

okay that explains it

dw im not judging

😑

im from brazil

in 2018 i had absolutely terrible english

7 years of being chronically online in foreign tech communities helped mold me into the tech nerd i am today

I think my English is not that bad.

better then mine in 2019

Nice

• chatting (both voice & text) with foreigners on discord/telegram
• watching global youtube
• using my devices and apps in english

7 years of doing these 3 things absolutely perfected my english

Ooo

ive only just recently done an english course and i barely did anything

i just skipped all the classes and answered the quizzes correctly

I will now give more time to it

Hey @oblique furnace

?

In what server should I go now

For my basics

dunno

tryhackme website

its 14 usd a month

or 126 a year

ik we both are in the third world and its not cheap

Is there any free course

but its super worth it

theres plenty

premium is the best way to go tho

Will I be offered a certificate too?

only with premium

tbh the best thing youll get is your THM profile

any blue teamers here at the moment?

even if ur on free

it has your entire history

what do you do if you see automation on a web page for example fuzzing

beside block it or is that it?

I think you have much experience @oblique furnace

What languages did you learned till now

Put it behind authentication if you don't want randos poking it

i only just started this month

and have done precisely 0 cybersecurity work as of rn

ik alot about computing and coding tho

?

If you don't want people probing your pages, you make it more difficult for them to do that.
You can do this by enforcing authentication.

This is a normal and common security control

c# and kotlin (been a while since ive done anything with them tho)
dart/flutter (replaced c# and kotlin for me)
web (basic/mid css and sql, html, php and js)

currently learning python

and c

cookies, robots, etc?

hey yall

No. Actual logins.

hi

hi

do you guys know about parrot os?

You're creating a barrier of effort for scraping etc

oh ok

yes

how is it. i liked it.

yes, and its not that good

just wondering are you bro team or just know about it

@naive violet didn't say good morning to me. I cri

i use kali, its way better imo

https://tenor.com/view/cat-crying-cat-cat-meme-cat-crying-meme-crying-cat-meme-gif-1182720488497099882

if u like parrot use it

how?

it has all the tools you need.

its basically just more corporate/boring kali

Why?

so does kali with the everything metapackage

that is true

I would claim Parrot is pretty much equal to Kali.

yup

honestly i just prefer rolling release distros

got boring to me to

what about arch linux?

they dont tend to break

i use it too, alongside kali and windows 11 and macos sequoia

i dont have experiene with that

good

try it out

its hard to get it setup but once you do you never break it

I would but I'm to lazy

Hey @oblique furnace you have studied much about computing so can you tell me what should I learn in computing that helps me in ethical hacking.
And how Linux is used in this field?

if you know what you're doing atleast

i swap operating system like every weekend

Now that is something completely different, whahaha.
You can use it to hack as well, but I would recommend Kali or Parrot over Arch any day.
If you want an Arch based hacking OS, check out Black Arch or Athena OS.

ha

I'm running linux mint right now

with kali virtual boxes

huh,

use rufus

better

If you want an OS to daily drive, Arch works perfectly fine, but there might be some alternatives that will require less maintenance from you as a user.

I dont ant kali as a base because it breaks easily

basic coding (python and basic web languages should be enough) and general computing knowledge (thm's pre-security and cybersecurity 101 should get you there)

"basic web languages" being CSS, JS, HTML, SQL and PHP

Everybody always claims that, yet I have never had Kali break on me before.

Does anyone wants to rate my work for school I made?

im not that good at SQL and CSS tbh

sure

i am.

tails pfp is goated

That's the work

i have a expertise of over 5 years.

Thanks, I don't feel like doing extra work without pay. ;D

Gave +1 Rep to @ivory shore (current: #2702 - 1)

Real

uhhh

Why web languages are needed ??

so you can attack web applications

sql injection

I use Arch btw..

Cool.

this, csrf, path traversal, xss, and some others

yeah

my friend got a 300$ from his state government (in brazil) for finding XSS on one of their websites

1500 reais

that alone can pay for 2 yearly THM subs

That's pretty neat.

and if you have basic computing knowledge, you can start on WSA, which is totally free

Does anyone know a free guide to set up my own home lab ? Does anyone have any recomendations?

What in the ChatGPT generated response?

depends on what you want in your home lab

I am considering Just mimicking SOC operations on beginner Stuff with Splunk

Aside from rate limiting (which doesn't fix the problem, only reduces impact) this is just detection.
Anything exposed to the internet is going to get fuzzed.

question to admins or staff or anyone else,

How many active users are on tryhackme?

if you wanna have fun grab a small vps and setup access loging for the ssh port on standard port 22

you will get a ton of entries for things like pi:s

and default credentials

Why does my waybar keep crashing, the heck?

update update update

try updating it

upgrading*

But like...

Thank you

Gave +1 Rep to @silver sky (current: #37 - 242)

You have no seperated upgrade functionality on Arch.

At least not without going out of your way. ;D

It's not a solution though. It's a partial mitigation. It works to reduce impact.
I'm not sure you read the words beyond "rate limiting"

If you're going with cloudflare, at least use their bot prevention too.

why downvote ?

For the reasons I've stated

i was looking at the message when typing the question

whoever determined that this room: https://tryhackme.com/room/uploadvulns is 45 mins, is a jedi master.

i was to far up in chat to see it

If that security advice was given to me by a consultant, or delivered in a report to me by a peer, I'd raise concerns.

so if someone is attacking you watch and study basically ?

Absolutely not?

nvm that is chatgpt

so you prevent it as soon as possible

If you want to prevent scraping, bots, etc, you need to prevent it with actual controls. Not monitoring.
Monitoring helps you determine the effectiveness of the security controls you implement.

I would recommend you stop them from attacking you immediately, but that might just be me.

In the best case you have proactive measures in place that prevent an attack in the first place.

I need to take some defensive courses

If you're going to put something internet facing, bots and low skill attacks (like pointing sqlmap at it) should be in your threat model

"Attack" meaning fuzzers, scrapers, etc. causing lots of traffic in this specific case.

so a real adversary would manually test

No?

instead of using automated tools that cause a lot of traffic

I mean kinda

well use tools that doesn't cause a lot of traffic

?

"The quieter you are, the more you hear"

High skill attacks are less common and harder to defend against by definition, we weren't talking about security controls for that

Automated tools are real adversaries. :D
But it is not guranteed that a more sophisicated attacker will not also use automated tools.

ah what do you do in that case

That really depends on what services you have going.

And what sort of threat model you have.

If you just host a tiny blog somewhere, you will need completely different security then a banking website, for example.

i heard that bank are easily exploited

Threat modeling is important

...no?

well some of their employees

People are different

Generally you should make sure that all credentials you use are complex enough, that your services are all up to date, and that you only allow access by others to as few things as they need to use whatever you offer.

must of read a old artical then

If this was the case, they would be robbed every other day.

You can mitigate a lot of the user attack surface with technical controls and defense in depth

so it mostly control and technique

maybe smaller banks

brb going somewhere

Huh?

shadow still feels like the discussion on changing the ssh port of your machines is whacky and heavily opinionated

meh 22 is good enough

Certified security through obscurity moment.

Even tho deception can help.

Is the soc1 path enough for the sal1 cert?

I think time is better spent on controls that will actually make a difference

though there are plenty of ancedotes proving it is not only security through obscurity

If you add it on top of all your normal security measures that is, you can't replace any protective steps with obscurity.

changes SSH port
2222

SSH on 1337, HTTPS on 11337, FTP on 21337, ...

shadow is oh so funny by putting ssh on 42069

It doesn't provide security, just cuts down on automated attacks.
Those attacks weren't going to succeed anyway unless you've done something horrifically wrong.

blue teaming

No, blue teaming isn't about naming security controls

Like with "red team", being a part of the red team and being a red teamer are different.
There's loads of different roles on the " blue" side

Switch to port 19 😉

brb putting a minecraft server on port 19

port 71337 for those binary overflow fans

impossible

literally

r/woosh

max port is 65 535

then use it

I think that was the joke

why

adding to create an integer overflow, port is 16-bit yes

and because everyone codes in rust now

binary overflows are impossible

think car odometer

https://en.wikipedia.org/wiki/Integer_overflow

You forget that half of the Rust code is just glorified C code stored in a

unsafe{/*...*/}

I remember as a kid hacking my saved game files, and filling the bytes with 0xFF in hex, then wondering why my gold was -1

😄 signed values

I just binary overflowed the amount of hours I have worked this month

just got paychecks, ended up working 281 hours 😭

"hey so uhhh we need that money back"

i know it impossible but what would you do if you saw port 90000 in a nmap scan

look at the code behind nmap

narhhhh, I already paid way too many taxes on them

and it was correct tho

for SoC install Security Onion 2 and use Nessus (free version) or OpenVAS (GreenBone)

i am back

Thanks for the reply.

Gave +1 Rep to @plain nest (current: #1767 - 2)

guys, just use hidemyass.com and tor network

weclome and to all chatGPT users! Switch to Grok!!!!

my recommendation, anonsurf

@odd tinsel

Did someone bought the SAL1 exam?

how much?

@idle mica already has it done. xD

https://tenor.com/view/kitty-cat-cat-float-kitty-float-cat-water-float-gif-17908418945946410709

sorry for tag KGB

It depends

wow congrats bor

*bro

np 🙂

on?

297 € if you're subscribed

ah..thx

and 350€ if ur not

https://tenor.com/view/cursed-ohio-meme-ayy-lmao-meme-kitty-gif-11740737186806017849

with learning or just cert?

Very expensive

exam and cert

I will subscirbe soon

350€ with 3 months of premium and exam

Real certification

For a certification, definitely not.

I mean...is there also learning included?

yea

OSCP is 4 digits.

yep 3 months of premium

For a blue team cert

Naa

yeah....2890.-

Go look at HTB

No clue about those, to be quite fair.

yeah HTB the most expensive 1500

Was OSCP always 4 digit?

idk

As far as I remember yes, but I also don't remember very far.

but in my eyes it is too expensive....very sad...

Anyway, it is expensive for me xd

Does the mods know how many ppl bought the exam and passed it ?

not just for oyu

I mean, it has just released

Jabba is not here

is there also learning and labs included in the price?

It would be better if they have made some discount

Yea but you get a limited package

if you are in the 100 first person

cheap certs: SecOps Group!

SAL1 is incredibly cost effective tbh. They sunk a LOT of money into development and running the infrastructure for the exam isn't free

SO 350€ contains 2 tries for the exam and 3 months of premium

W33t

Like shoot, my SANS classes and GIAC certs were all like... $10,000 a piece

I want to know something

dafuq

It really depends on how it is recognized in the industry. We will see

Excuse me?!

Mods won't know this information.

Not yet anyway

I'd have bought, like, a house, instead.

If i want the certificate on paper do i need to pay for it

Cuz it's optional?

Industry recognition is aside from the cost and time spent developing it imo

@sick lance Do you know something abt it ?

It's just an inherently difficult thing to accomplish

About what?

How many had passed?

Bear in mind mods aren't tryhackme employees

I have no idea tbh

No, if i need to pay for the certificate on paper cuz it's optional

I was almost. 😦

But I'll make a note to let you know if I have the option to get a paper version of the cert

You passed it?

yep

Not sure,.as @idle mica

Ask*

Information wise, everything is free on the internet.

If it does cover industrial tools that requires business deal, that's what would make it really worthful.

But yeah, i get what you mean.

He doesn't know

I am taking 2 certs this week

Sure, but the idea is that you've established a baseline of knowledge

hopefully

That's the whole point and it's not just you saying it

https://youtu.be/uLwtEI4x6x8?si=O3eqwKTt-j2VC35Y

@plush bone

Hi, is the physical cert a paid extra?

Oh well there we go

tell more ❤️

So i need to pay ?

Thanks for asking

Gave +1 Rep to @sick lance (current: #2 - 3427)

Didn't want to ping anyone

planning on taking SAL1 and the test exam for FOR508

@idle mica How was the exam? Is it worth the money? (Practical challenges and stuff)

I have no idea because I didn't even get an email about passing and I don't see the option to get a physical cert. But they also just launched it, so it might be something they're still working on

Unfortunately I had to reject the THM position. 😦

nice you pass it 🙂

What?

They say that you get instant results

I think for that L1 SOC analyst role, it captures it fairly well. There are some things that I wish were different with more variety, but that may have just been the scenarios I got. I don't know if they're varied at all

who has OSCP+?

I was offered a position with the company, but I had to turn it down.

You do, on the page lol

Why?

Bad timing, I couldn't do the position and finish uni.

My point is that I don't know anything about the physical copy

can you send a screenshot of the webpage when you buy the exam

what a pitty

You could've asked that they give you some more time

Well no because I already completed it

🤣

Congrats

Hope you pass

congrats

There was comprises.

THM actually tried their best to accommodate me.

And then it just tells you

Done ?

or what

@idle mica

smh slack is down

Damn

I hope they won't rise the price^^

Yeah, it gives you an evaluation. Part of it is LLM-based

So you get a feedback

but now your results

tf

?

How much you paid

i know its 300€

297

^

but does the price change with the region

SAL1 is the new thumbnail

I'm in the process of doing it

After you complete the exam, you're given a score breakdown, your digital certificate, it gets sent to Credly, etc. My point about the email thing is that I didn't receive anything related to "if you want a physical copy, you can request one here" or anything like that

I didn't even know I could get a physical copy until you mentioned it 🤣

Reading is difficult, why would I have read the whole page before buying the cert attempt?

How much you got (if you dont want to give me an answer np)

yep

He already received the cert. Infact I saw THM linkedin posting him on their account for passing the cert. First few guys privileges 😅

why does it feel like im not learning nothing

ik

Thats odd - you should do - let me pass it onto the team. The first 100 people get a special gift - you'll get a physical copy of the cert too.

@jagged yarrow how many so far has passed?

@jagged yarrow What's the gift ?

you might be burned out, or mentally exhausted.
Try to do something else, take a nap if you can, and just have at least one day off studying anything and get back at it.

804, but I've got some feedback about the scoring. I think it needs to be adjusted because it says "you didn't do X" when I did, etc

804 / 1000 Congrats

its mostly ctf i kinda get stuck on them because idk what to do

It's not

It's 80 questions and 2 SoC Simulators
The questions counts for 20 % and the simulator is 40% each

2 Soc sims.

But there is also likely my experience versus what is expected at play

check a walkthrough of something similar to that matter. Maybe you may learn 1 or 2 "new" methods.

Yeah

Hey! We're still working with the supplier - hoping to get this organised in a week or so

300 pounds is too much for me. I would get if it was like 150 or 200

Sweet! I'll hang it up in my office lol. Let me know if you need anything from me. I double-checked my email. I received the purchase receipt and then the marketing announcement.

😄 Sure, but would it be a paid option, or is it free?

They can't give for free i think

They need to pay the supplier

If I could get a SAL1 challenge coin, I'd be a happy little walnut 🤣 The collection must grow

I think the reason im getting burned out because i only do ctf no outside project/real world because II'm really don't havfe ieas

They had have throwback coins, SAL1 would have been cool.

It's hard to beat the SEC565 coin, though. Still one of my favorites

Its a surprise - pass and you'll recieve one in the post

Ok

How's the exam? I'm thinking about taking it in the future.

https://tenor.com/view/chocolate-factory-charlie-prize-surprise-best-gif-13901557

Just ask the team to email you soon - maybe over the next few days

Can you tell us how many ppl have bought the exam ?

Please?

You can do a note/walkthrough of your own as you do the ctf, word it properly so you can be technical, nevertheless show your thought-process as well, then post it as PoC in github, your own domain, or both.

You gonna buy only if the number is below triple digits? 😂

Fun, honestly. The SOC simulator is fairly accurate to day to day L1 SOC life

We'll reveal more stats about the exam soon - not sure about purchases, but pass rates, clients (that are happy to share) etc..

I might do some soc sim to prep.

Good deal, I appreciate it! I'll keep an eye out

I'm gonna buy even if it's over 3 digits

But i can't buy it now

I need to wait

@idle mica still no answer, cause they have to research stuff, so might just buy it myself and do it when I get paid on Friday 😄

thanks for releasing the cert, was really about time that THM created its own 🙂 already working on SOC path 😉

Gave +1 Rep to @jagged yarrow (current: #139 - 58)

Is there a age limit to pass the exam

I'll check back in later - need to jump to something!

Or do we need only an ID

?

👋

@tawdry blade

It's my last question

@jagged yarrow

Bruhhh lol. Yeah, just do that and have them reimburse you

dnd i don't think he get pings

That's great to hear, guess who'll be needing it soon? haha

indeed, cause it would be fun getting it right now, but I don't have the money for it before I get paid xD

?

if do not distrust is on you don't get pings

Yep he's in do not disturb mode

I tried

Wait

Perpetual DnD is the way

guys, any ideea where i can find a list of all usefull bookmarks? because i lost them all after i reinstalled the OS

@sick lance Do you know if there is an age limit ?

what operating system do you use

backbox linux

sorry

i meant browser

I don't think there is one listed.

brave

I don't think there is. I know they have a KYC identity verification thing, but you need to be able to produce a valid form of ID

What is a KYC identity verif?

that is effectually an age limit

can't you login so you could save bookmark, history ,etc

Never heard abt that

What's the age

the age of having a valid ID

More or less. You can get an ID card at any age here in the US, anyway

can't.. i need a list with all bookmarks, i lost them all again..

would depend on country in that case

My parents got me one as a kid "just in case"

country dependent

err...passport?

If you have a mobile device, you can do a sync between that device and your desktop/laptop, hence you save your bookmarks. I have done it 3 or 4 times with Brave.

Maybe just give them a thumbs up and it'll work 🤣

In Belgium you can have an ID before the kid is born

on brave?

A letter from the King

https://tenor.com/view/kuzco-emperor-emperors-new-groove-emperors-new-school-reaction-gif-11799237333535967196

yes :)

duh

why do people use brave

I like Brave leave me alone

Unless you're genuinely asking

Fun fact, different countries handle different forms of ID.

just asking lol

Built-in ad blocker

Only useful when watching youtube 🤣

Let's not.

thats my point..?

Amen, then it has a built in Ad-Blocker, privacy, fast and reliable

@ancient mirage

https://support.brave.com/hc/en-us/articles/360021218111-How-do-I-set-up-Sync

Some "ID" may not be accepted. 🙂

Right

guys any ideea where i can find a list of usefull websites for pentesting?

thanks a lot bro!

Gave +1 Rep to @high mulch (current: #226 - 34)

Bugbounties.