#general

Lets see

Why we just dont hack bank and share money

1, 3, probably 4, 7,OH 100% 8

Hey hey. Bad. No illegal stuff.

cuz that is illegal

😂😂

Only if they caught you🤫🤫🤫

https://tenor.com/view/mr-robot-elliot-alderson-christian-slater-hey-kiddo-gif-26529414

hey why dont we all just hack @sturdy cypress and split his money. See how does that feel? lol

Would ADHD meds have negative impact while entering a job?

i wouldnt tell them what meds you are taking

or do yoiu mean for the drug test

Government jobs

They have medical history records

it shouldnt, tell them if you have to do a drug test tho

i think some of them do show up on some drug tests but if theyre prescribed usually its okay

i woudlnt' tell them during the interview

Yeah just get a doctors note if anything

No i wouldn't tell

Because it is irrelevant

it is

Well if they drug test you should

So you can explain why it’s hot

I am going to see a psychiatrist on Wednesday

Hope it improves my life quality

It was a tough decision

Definitely a good choice regardless of who you are and your background. It’s helps so much

Therapy too

Well, i am just worried about the doctor.

Ah

ask the doctor who their doctor is and keep doing that until you reach the best one

lol

The final boss.

Lmao, nah i don't need a doctor from grave

Then give him an apple.

And he'll disappear.

It's free service and probably 10 minutes

I just need the meds

Hopefully you find something better than meds

i just smoke a little to keep the doctor away lol

Apparently, both I and my brother were diagnosed with ADHD when I was like 10 years old.

legally of course

yes that broccoli

https://tenor.com/view/dog-broccoli-dog-eating-broccoli-gif-5108538915117067580

doctors are extremely fast to diagnose kids with ADHD i cant stand it. Most of those kids are just craving attention

Mods are asleep post fish 🐟

I know. Most of the kids do it to get drugs, even when they don't have ADHD.

I think doctors are aware of it as well

yeah Adderall is the worst one too

Well fuck you too WSL

^

vyvance have the same molecule as the drug named speed

the difference is how fast the body consume it

It makes it hard to get a prescription when you really need it

I am having trouble writing reports and doing time intensive stuff

CHMOD on the bash file??

I have trouble doing pretty much anything my brain doesn't find fun lmao

I also have other stuff to tell him lol, wish me luck

Welp, su

its not executable\

But he's trying to write to it.

Does anyone here have any exprience with EBPF?

oh i see lol

sudo

Give 'em a sudo

I'm root

Doesn't change anything

Lmao

thats odd

https://tenor.com/view/guardians-of-the-galaxy-groot-i-am-groot-vin-diesel-wave-gif-6821441508273049329

lol

nano it and se if you an read it

also, do you want append ore overwite?

Did you play KoTH on your machine?

it has read permissions across the board

Fuck it

Try chattr

chmod 777

attrib -l

did you chatter it

yeah

wait

nevermind igore that please lol

lsattr

lol

.... fuck, I did in the past

-i

+i makes it immutable

eh

Fixed. couldn't echo it, even after the change, just nanoed and changed it there

Thanks y'all 😄

i was curious about why it wasn't working lol

lol still wanna know why the echo didnt work

maybe its not using root permissions even though you were logged in as root

wsl is weird

i had some odd issues with it

Had to be root to echo it, couldn't echo with sudo

If the file is immutable (chattr +i file), overwriting (>) won’t work, but appending (>>) might.

Lets test that

Why is it immutable in the first place may i ask?

might

Nope

trying to prevent others from changing his DNS server i guess

And yes, I was running that command as root

Look at me I'm a tree

Look at me I'm really branching out

.<

Don't bark at me

Meh think this one I was still doing bug testing for WSL ParrotOS and my nameserver kept getting overwritten everytime I started the WSL instance, so chattr'ed it so it couldn't change

that's weird too imo

that it was getting overwritten

Can you do id ?

And before y'all say "cap" or whatever the kids say today https://gitlab.com/parrotsec/project/wsl

maybe there is a service that had that file open

Don't gaslight me bro

https://tenor.com/view/capoolac-shaking-excited-cant-wait-happy-gif-16342725

auditctl can log what changed the file

i think that was the right one

ettercap? bettercap?

cappybara

Undercap?

https://tenor.com/view/capivara-gif-26305606

im just curious but what are you using wsl for

27

just curious what people are using it for

Me? Was doing bug testing. That was my use case XD

ah ok

Other than that

https://tenor.com/view/spongebob-rainbow-imagination-box-gif-12387358019437193946

Imagination!!!

thats like one of the best episodes lol

Very little use other than fixing up the poor dev situation on Windows

Forgot I even had Parrot on this machine XD. But I can't uninstall WSL as Docker uses it, and can't get rid of docker, got local AI

Can't get rid of local AI, cause then Skynet

i would never use it. i would just spin up a linux VM instead

Whew the proof it in the pudding, windows sucks for dev

that's kind why i was running . i guess the good thing is that it can access the file system on windows easily though

Unless you are making windows stuff or video games

oops deleted part of a line

then you need windows

Or in my case.... breaking WSL to the point where I can't even run sudo apt update it throws so many errors

i was running it to have certain tools like dig and whois lol

Nah even then lol

cause i had to have windows for a bit

lol

just install virtual box and run linux in a VM

it was a work laptop and i didnt want to change it too much

and nto very big

boo oracle sucks (but so does broadcom so rip)

i have linux now though

yay

i still run windows as my main it has the most options for apps and games

the only reason why it is still valid probably lol

I use all three major OSes every day. I have an obvious fave but both need to for work and nice to stay sharp on this stuff

me too

Hey, they still have the issue I found up on their page. Pog

i have barely used mac at all

It’s actually pretty nice, but yeah I far prefer Linux. However, it’s great just kind of like my side machine at work where I can do *nix stuff and have something not on our work VPN to see if things check out externally real quick

if nothing else, much more friendly to do *nix stuff on that Windows and WSL lol

i bet it is lol

now mobile wise, yeah iPad is lovely, typing on an iPad Pro 11” (2024) with a logitech keyboard case in bed lol

im just using a laptop i can't get used to mobile devices

i only use them when i have to

Because I mean, you get a Discord UI that actually looks as it does on desktop

lol quick edit, shh

Think about the order that happens, and ask yourself if the elevated permissions are dropped back to normal use at any point

how is working for an msp

hhahah

lol

Depends on the day 🙃

a lot of jobs similar to what im doing are getting outsourced to other countries

for now.... but yeah

huge trend, it's going to backfire and come back

depends on the scope for sure but also what you are actually doing. But even help desk is still valuable to keep local, especially just for the hands on knowledge about your clients and etc

i think it already backfired for us

based on teh review people leave about us

and um not being offput by an obvious attempt at outsourcing tbh

it used to be a really good company

actuallyl im not sure if that's the biggest problem though

there used to be better training

lol one dude spun off from our MSP as a competitor, but pretty much went outsourced help desk and it ended up being a mess

and better documentation and communication

we had a guy do that but we bought the company evenatually lol

Ah. Only real outsourced aspect I deal with is managing our managed SOC as a service thing. They mostly handle our EDR.

Ahhhhhh, I was on an old test version of Parrot, that's why everything was so broken

and then I have to go in and be like, sorry that is a False Positive after all

yeah idk there will always be a guy who just wants to play Steam games on his work computer, and he’s the head of the company with his name on the business. Sorry SOC, but Anno 1800 and Civilization III are not True Positives

im surprised they do that

was a weird take anyways, they were literally launched from Steam lol

gamers are a danger to this society 🙃

lol

its actually kind of funny though

I mean traditionally it’s not great to be running games on your work computer but yeah when you’re an MSP and it’s the head of another company, who cares.

I try to get him back into his game as fast as possible, he’s a cool guy

I’m a gamer so I know it would kinda suck to buy a game on Steam and just be like… it crashed

that’s all he would have seen without me remediating

Old games and very new games with anti-cheat are the most likely to run afoul of EDR detection by far, both for understandable reasons

why the old games

Now I'm wondering why Parrot didn't just create wsl.conf in /etc/ and have it say [boot] systemd=true .
Think they just removed powershell-empire from their install image since it caused so much issues with upgrading in the past versions

EDR usually says, they’re using uncommon APIs, have dynamic code rewriting, and some other stuff that’s kinda trivial.

ah ok

EDRs being more behavarial based, they’re just kinda like “WTF” at anything out of the ordinary

makes sense they are a lot different than normal office software

mhmm, still only been Civ III and Anno 1800 for this dude lol, but I hope he continues to enjoy his strategy games

i mainly just play old rpg and mtg

everything has a tabletop version lol

Nice I’m big into retro gaming and computing, and I have played MTG a good bit in the past. Not so much now

like baldur's gate and morrowind

I love mtg but its expensive

Heck yes, I have at least 200 hours logged on Steam for Morrowind and that’s just the time recently.

I freaking love the Tamerial Rebuilt mod and more now that I’ve beaten the game a couple times. The fan expansion is just so faithful

I had the original disk then the gog version now steam

mhmm

i love the creepy atmosphere

mhmm the atmosphere is just wild and lovely

oooooooh. even without a GUI, I got Armitage on windows with ParrotOS WSL

Nice

completely unlike most fantasy RPGs and etc, Morrowind is just weird in a lovely way

it is weird

very intracate too

dem big ass mushrooms and racist dark elves lol

Even Firefox. Look at little Tux!

It is interesting though, starting out as completely untrusted as an “outlander” and just working your way up in fame even when bypassing the main quest entirely

yeah it seems every game is like that though

you always have incredible luck

you don’t have to be the “chosen one” you’re just a really cool person in the world by your own deeds

mhmm I majorly dislike the “choosen one” narrative in many games, it’s way more interesting when you’re a nobody who just rises to greatness

Good night

G’night!

idk i like baldur's gate where you find out that you are actually a child of the lord of murder and by fighting evl you actually further his goals of murder and the neitze quote on all the loading screens make sense lol

I hate chosen ones too, I notice a lot of chosen one protagonists tend to lack agency

They’re not really motivated by anything

I like subversions of the chosen one trope though

It’s an easy crutch narratively in open RPGs for sure

mhmm

Actually, I just hate it when the main character is the least interesting person in the story

often also the audience self insert character, this syndrome continues to TV and more indeed

Note to self... running wsl sudo updatedb scans my WHOLE laptop. Lovely

lol

God, I hope it doesn't scan my NAS. Really don't need to wait for 32 TB to load into the DB

I’ll just say WSL is not very fun

2.0 made it way better but even then lol

Fun to break 😄

lol trivial to break

https://tenor.com/view/typing-computer-twitter-gif-12385391

i might not have played the games you guys are talking about

lol

most games out there have the “chosen one” more generally

i do wish i had a better pc so i could play the new vtmb when it comes out though

hopefully its as good as the old one

and yeah just kinda follow “the hero’s journey” template and you’re set!

but yeah I for sure enjoy games where you can just be notable for your own actions

maybe ill get an xbox or something

why lol

pc's are getting too expensive

for gaming

with new games

the old games i like are fine

You can still build a decent gaming rig even if you have to go back a gen or two for the GPU

doing just fine on my 3070 rn

I liked the Fable series because you had the good and bad meter which allowed you to be a bad guy doing things for selfish reasons such as money or power

i used to buiuld every pc i had but it just got too expensive

I’d recommend to stick to the PC space just because it’s so flexable. Even if you wanted a more console like experience, there’s always Steam Deck

i dont really like playing bad guys

i dont' really want a consile like expericne

i just dont' want to spend as much on a video card as i would on a whole console lol

Y'all ever get really in the mood to play a game, start it up and start playing, then you just instantly get bored?

Totally fair, then just stick to building PCs and such. But also fair I’m kind of lazy these days and just get a decent gaming laptop even though I know it’s not very upgradable

as I said, you can buy higher range GPUs from previous generations and still make out alright price wise

not to mention how many of the Ryzen APUs could actually last you decently until you grab a dedicated GPU

its something to think about lol

well another advantage of a console is that i can put it in the living room and everyone can use it

and i have 2 kids

i can't buy all of us a gaming pc or i would

i'd rahter have a pc though

Steam Deck would give you this same kind of advantage

Just get the dock which isn’t much more (or use any generic Dock or USB C adapter)

how do I connect my vm kalilinux via ssh to my target machine?

interesting

I got oopenvpn connected

If you mean in terms of TryHackMe, you need to OpenVPN in, yes

ssh user@ip ?

yes

so if thats successful, just ssh into the machine

is that what you mean

yes the openvpn is working, but after doing 'ssh tryhackme@ip'

it says connection closed by ip port 22

This is a silly question but does the room even tell you to ssh in? Either way you can do a quick nmap scan of the IP you’re given to give this a double check

It’s not a bad habbit to just nmap scan every room you see, even when you’re not told to do so

nmap and pings working

port 22 is open?

um does that mean nmap sees port 22 open?

yes

Read the test of the room closer then, if ssh is intended.

yes

yes ssh is needed and i dont want to use the attackbox

it to slow

yes so you can use this setup

idk what you got wrong, but it’s pretty trivial to do indeed

no worries tho

ill find sometthing no worry 🙂

hey. passed pentest+ gonna start applying for jobs. i wanna have a portfolio of report examples of vuln assessments and test..as well as some scripts i've made. what else should be in my stash while i'm applying?

coo coo coo cool

I have no idea personally employers seem crazy to me sometimes and you get hired for weird resasons

Holy fuck, I forgot how long HDD's take to write to

Go from 6.6 Gbps down to 300 Mbps

Godaften :3

Congrats on passing Pentest+ !!!

policy for executues: "tis for thee, not for me"

hi

Someone added a @raomail.com email address to my fb acc but didn't touch anything else visibly. I have removed it. Still feels insecure even after changing pw.

turn on 2FA

if facebook has this option, force sign outs of all devices

What are we all doing tn?

studying for certifications

also big chillin

yurrr

looking at setting up local DNS so I can just type a domain in for things running on my unraid server rather than remembering the ports all the time

https://tenor.com/view/dns-haiku-dns-haiku-tech-pod-it-was-dns-gif-27399037

That's not a bad fucking idea

https://tenor.com/view/cat-type-keyboard-gif-9625066

yo guys sup

sup bro

hey

https://youtu.be/jW7FmH1XyYo

Nah, what the absolute fuck is this shit?

nah that aint right

Its quite common for children who are just starting school to think LMNOP is one letter since in the original you typically say sorta all squished together.

That's why you have visual aids

let the youth know the struggle

hand them a controller, a book and a stick shift and the new generation will be furious 😅

Back in my day. We took out the P.

back in my day we had 2 N's in the alphabet

I agree with this which is why I have many alphabet books as well as have played videos that have the letters show up as they are said. For me its getting my child to not skip the number 8 and 18 when counting to 20

Nnnopqrstuvwxyz

nah, x, y, n, z

Nnnopqrstuvwxynz

i needa scrap together a laptop from marketplace and turn it into a edu ebuntu computer for my sister

need help?

nah i just need a laptop to do it on

Solution: contact a school's IT department

i have the drive sitting on my desk but theres no permanence

oh ok hope it goes well

See if you can get a retired/ old laptop

e waste centers

do you just google a schools county and then it department or just call the school?

1 2 3 4 5 6 7 9 10 11 12 13 14 15 16 17 19 20

Look up a school nearby, they usually have a staff directory, and find the head of IT

my child knows the numbers 8 and 18 just refuses to say them when counting, honestly it is a little frustrating but it's not that big of a deal as they know the numbers so I just make sure to reinforce that she skipped 8 and 18 when she counts

Or, if they have a search function, search up "Technology"

usually works

guys i think im an idiot

help

Mar 02 22:51:33.617 [notice] Tor 0.4.7.16 running on Linux with Libevent 2.1.12-stable, OpenSSL 3.0.15, Zlib 1.2.13, Liblzma 5.4.1, Libzstd 1.5.4 and Glibc 2.36 as libc.
Mar 02 22:51:33.617 [notice] Tor can't help you if you use it wrong! Learn how to be safe at https://support.torproject.org/faq/staying-anonymous/
Mar 02 22:51:33.617 [notice] Read configuration file "/etc/tor/torrc".
Mar 02 22:51:33.623 [notice] Opening Socks listener on 127.0.0.1:9050
Mar 02 22:51:33.624 [warn] Could not bind to 127.0.0.1:9050: Address already in use. Is Tor already running?
Mar 02 22:51:33.624 [warn] Failed to parse/validate config: Failed to bind one of the listener ports.
Mar 02 22:51:33.624 [err] Reading config failed--see warnings above.
@penguin:~$ ```

y do u need tor

cuz i want to use onion browser

alright ill check after this match

and i cant even figure out how to install that

https://tenor.com/view/google-exists-google-search-it-geekboy-geekboy-cz-gif-25933207

i hate that meme

y do u wanna use onion browser

beacuse im over here trying to unlock the full potentiall of my chromebook

Then upgrade your graphics driver

What does tor have to do with that

Do any one know how do IPspoof in combination with ARP poisoning?

i have 3 browsers already and chrome os is customed to the max im installing a bunch of shit on linux in running WINE and bottles has been finicky tor is the icing and onion the cherry on top

i cant leave well enough alone

why

dude the unverified user plague seems rampant these days

and how is tor gonna help u do that lol

and i cant mess wt the hardware its school chromebook lol

onion

https://youtu.be/GXfl568XTio

i would adivse not installing TOR on a school device

Do i need learn IP headers, TCP/UDP/ICDM, sockets, SNAT, DNAT and ARP poisoning(cybersec theory)
multi-threading, sockets package, subprocess package, select package, time package, scapy, wireshark or tcpdump (pratical/coding side)
to do this properly?

uhh if i dont install tor smthn bad might happen unless you have a magical substitute

lol

How do i verify?

what are you trying to accomplish?

u mean if u install tor smth bad might happen

no onion without tor = bad

trying to change ip of phone while using one of my wifi to other wifi i have

I'm still not understanding why you need TOR on a school device and I am still advising that you do not install it

why not just change the IP address of your phone?

i understand but tor is the sheild which even without onion is very helpfull

could you explain why?

what are u even saying man

tor gives secure safe browsing its used for the dark web just beacuse of how powerfull it is

that's want i am trying do

onion is the dark web browser

I am bit confused

the school owns it and could be against AUP

aup?

what kind of device are you trying to do this one, a smartphone?

Acceptable Use Policy

thye might have an mdm installed on ur device

ahh maybe

you are most likely wasting your time trying to reason and understand

maybe i think they do im doing anything actually illegal tho

Good morning

its not a waste of time i justt have yet to be given a compelling reason to avoid tor i understand avoiding onion

hey

tor literally does nothing on its own

What is onion. From my understanding TOR is accessed via the TOR Browser.

sole purpose of tor browser is accessing onion domains

well no ofc but doesnt it work for other browseres other than onion?

i have no clue what that means

onion is not a browser but a domain

tor browser aka onion gets you into dark web tor itself is what protcts you whie on dark web

what purpose do you need TOR on a school chromebook though

its just a better for security than my schools firewalls lol

there is no aka onion dude

thats for tor not onion i dont really care about onion as much as tor

onion is specialized domain, tor is network, and tor browser is a browser

you have no idea what are you yappin about

no ugh the tor browser AKA -> onion

In that case I do not think your use case really warrants the use of TOR and I would advise not installing it

i know more than you think

this tells me only that you are ignorant and that your ego is big

i understand that but as i dont see a downside i dont see why not

theres a lot i dont know im only human but i do know more about what im talking about than you think has nothing to do wt ego

Contact the school department and ask them if you can use TOR on the school owned device. If you can ask them to assist with installing it. This is my last message regarding this.

ok fair i will do that

downsides of using tor network is first of all that network is slow, its not intended for everyday usage, second it will not hide you, third nodes are usually self hosted and not intended for high amounts of traffic

not supposed to hide me i dont need to hide and yes im aware of the speed its abysmall wish someone would fix that tho

got 2 go 4 now

https://tenor.com/view/dr-who-doctor-who-david-tennant-anyway-gif-4895321

doctor who good show

I have recently started watching it

one of the best doctors ever

where you starting? The black and white era or 9th doctor?

Hands down

s2

so the 1964/1965 episodes?

2005

ah the 9th doctor

Amen

That's what I was recommended

Wait he's the 9th

And it's just s2

2005 was when they picked the series back up that's why he is on his 9th iteration.

Yes but did 8 doctors change in s1 alone

No the series starts up again with the 9th. 1-7 Doctors were 1963-1989

You will learn about the 8th iteration later in the series

wait I'm mistaken the 8th iteration was 1996, the one you will learn about is between the 8th and the 9th

I won't say anymore as to not ruin it for you.

https://tenor.com/view/park-jisung-jisung-park-nct-nct-dream-brain-has-left-the-chat-gif-23098335

David Tennant is best doctor. Matt Smith is second

Huh, just came back to THM after a couple months (got busy,) and was really impressed by the SOC simulators. They are awesome.

I can't wait for the new season coming out in April

They are quite nice aren't they

Yeah, real time alerts, and a summary at the end? Everything you do counts, as if it was real world.

Just thought it was something nice to mention. Good job to those who made it.

The SOC sims are utilized in their new certificate, SAL1, which is pretty neat imo.

I'm actually looking at it right now. I agree.

what do u guys listen to while studying?

I can't listen to anything with lyrics or talking as it distracts me while im reading, so its mostly just ambience music, usually themed after something ive been obsessed with (currently 40k themed ambience vids)

I listen to horror stories while studyings

It because backround noise in 5 mins

If you asked me what I just listened, I couldn't tell ya

That is a subjective question, it's all personal preference and what you need to do with the laptop

we went down 500 U$D 😂

yesterday was somebody asking the same question but the number was 3K

I know it was you 😂

come back tomorrow for 2K

if you have designated that much to spend, its honestly up to you. might be a lot for others but if thats your budget stick with it.

But in saying that, there might be a cheaper one that ticks all your boxes haha.

when I was looking at laptops recently I made a list of what was the top priority and started from there. Mainly weight and battery life

A requirement I have is it must have an integrated num pad

this is something i often forget until time of purchase, 100% agree

First you need to decide what you want the laptop for, and what will be its use, once you get that down, you chose CPU, video, RAM and SDD accordingly, also think about battery life, if you have a laptop but the battery runs out every 2 hours it's a pain

after you decided that look into the different brands according with your budget, and make a decision

That's what I do when I buy a laptop 🙂

I hate laptops with number just on top of the letters, I'm so used to a num pad that I can't live without it. Once I have a work laptop without a num pad and it was hell 😂

I love my number pad. I wish my current keyboard had one

I don't really have many preferences for laptops, I can code on a literal potato battery if I needed to.

I also could, but that doesn't mean that I would 😂

Me neither. I mean seriously, I'd have to be locked up to only have access to that potato, some copper and nickle sheets, and a small calculator, but honestly, it wouldn't hurt to try in real life, huh? Hey, I should do that, just to see if it would be possible.

Minus the locked up part..

https://tenor.com/view/let-there-be-light-gif-9830042

hold up lemme put this bic in darkmode

so i dont blind yall

https://tenor.com/view/flashbang-flash-white-csgo-cs-gif-8281163107746823908

Who sedning this shi bruh

💀

is there any coupons this year for THM on monthly subscriptions ?

i have been on HTB but wanted to try THM also . wanted to first get the monthly to check it out

You can try THM out without a subscription first!

i get stuck on a paywall

pay..wall?

To me a laptop must be 15' numpad , light batterie life at least 8 hours

i mean the learning aspect

Premium room

Ah, some content require different plans, but most are free.

yes

wanted to follow the guide map in the learning

didnt want to be jumping about

yeah, the free rooms are mostly user made stuff and things like that, while other rooms may require payment plans, but those free rooms, they're pretty fun.

well, most of them anyways, others are torturous.

i give tryhackme wverything i own.. just sold my couch for another month

lol

my goal is to get the fundamentals right

WOOOOO!!!!!!!

FUNDEMANTALSSS!

Fun stuff.

i am a software dev , i dont have issues with coding stuffs but wanted to get more indepth with offensive and defensive

alright well im about to get really offensive and roast you!

nah jus playing

lol

I..don't really like to be roasted, it's uh, the fact that my cells will die at about..100C.

Checking the address on a package before delivery.... Call it... ARP

MAC, IPv4, or IPv6?

Personally, I think MAC addressing would work best here.

Hello peeps

most definitly

gotta make sure it wasn't spoofed though.

hi

MITM 💀

isnt that mostly used on targeted entities

kinda specific atk

Yeah, gotta make sure those mailmen don't peek. I like to have my mail encrypted before it's sent.

plus with encryptions being used lately i doubt MITM usually works these days

sometimes it could occur, especially if some kind of defect allowed the attacker to decrypt.

its pretty old school. unless.... they are an http user

yh which its hardly to find anyone using http for anything sensitive over the internet

if its local network then it makes sense

alright

look man your digging to deep into my joke and its making it land softer

😠

XD

JK

It's what I do.

and sometimes it can be decrypted regardless, if you're lucky (or rather, unlucky) 🙂

yeah, that's gotta be fun.

i might look into that. thats sound rather intresting.. how would that even be done... 🤔

poor encryption or vulnerable encryption methods?

For example, say invalid cert that can cause some kind of public certificate replacement attack.

WAIT>... YOUR COOKING RN

https://tenor.com/view/metasploit-meterpreter-kali-linux-kali-gif-18347002

obviously, it would be quite scary to even be able to do so.

even good encryption can still fail you sometimes

but more often, it's just poorly implemented or poorly handled

thats actually foul asf you would have to still trick them into installing a cert that is yours using some sort of social engineering but its still very realistic

very nice thinking

despite using the same primitives as everyone else, there's a LOT of nuance to it and it's easy to mess up in some very difficult to spot ways

yeah, but it's possible.

indeed

yeah, and that is the reason we have penetration testers and bug bounties.

imagine you redirect all there traffic to a page hosted on your laptop... here me out... and then it asks them to download a file...(the cert you have hosted) then once they install it... allow them to browse as normal... guys im scaring my self... what if ive fallen for this...

there's much easier and effective ways, but they're a little more complex, perhaps something like BeEF hooks to take control of the browser, and uh..that's the scary part. All your tabs and search history for all eyes to see.

very spooky

ive messed with beef a bit. scary framework. very smart people made that

sorry if it sounds like an ad but, I'm looking for CTF players, it's in 3 and half hours. I need people who can do Reverse Engineering and Web Exploitation. DM Me if interested!

I don't see it as scary, tools aren't toys, perhaps you use them as toys when you experiment with them on your own devices or labs, but they gradually become tools as you truly grasp how to use them. Abiet, very dangerous toys.

https://tenor.com/view/adblocker-kel-kel-omori-kel-happy-omori-gif-25138418

bleh :p

which ctf are you doing

sorry buddy, ad blockers won't help you out here. It's part of discord!

VishwaCTF

thats ironic. me and my teammates decided not to do that one

o

why not

one sec lemme check the messages

just looked it up.

a..CTF from india?

yeah?

oh yeah, sorry, just like digging into things.

OHHH i remember now. we need H1 accounts. i have one but a few of my teammates dont so we decided against it cuz they didnt wanna make an account

H1 accounts, like hackerone?

ye

If you wanna join me for it you're more than welcome to-

can i throw it back

sorry?

😼

i've got one, but it's just for bug bounties.

THrow... it... backk?

🐴

im not sure if I'm understanding the genz slang..

😭

im just goofing with ya

I see 😭😭👍

That was a..very interesting string of emojis.

XD

really don't wanna do this ctf without someone who can handle web exploitation and rev eng...

i suck at rev. but im ...ok at web

🫃

I mean I love web exploitation, but honestly, look at my description to understand my dillema.

REAL

challenges aren't too difficult, this CTF, they're just annoying, I did their Mini CTF last month

procrastination is truly a bitch :)

Man I'm the opposite, im always on the grind but my skill is another story xD

what will my team think if i join another team and cheat on them...

https://cdn.discordapp.com/attachments/1213625739295850567/1286131361157222412/FEAR.gif

Hehe, the exact opposite.

it should be okay, surely :3 @static acorn

Mostly I'm just busy with life.

I mean, I'm mostly a newbie myself but I'm doing it for the sake of experience, it's how I learn lol

I'm not at the ctf level yet, right now im just trying to get through a bunch of lab exercises

well get UNBUSY with liFE!!! ITS TIME TO DEVOTE YOUR LIFE to the CYBER WORLD. ONLY CODE. NO SUN. NO FRIENDS. NO FAMILY. JUST HACK

Not you describing my daily routine lol

80% hacking
10% programming
10% looking at shitposts

I honestly just learn by doing, no better way than just saying "Can I code on a potato?"

H-H-Hack!

HACK IS ALL YOU KNOW NOW

YOUR FREE

mine:
80% watching TV
20% hacking & coding

(on weekends)

have you been in a CTF yet?

if not, the one I'm participating in is supposed to be beginner friendly,

no lol im just a noob, closest thing to a real life ctf i've ever done is just doing thm challenge rooms

but honestly those I'm not great at either

I see

@carmine tinsel i compete and get points. and im no where near mage level lmao. you totally could

I'm trying to build experience by just learning more shit lol

80% yapping on discord
20% learning

anyway my mage level is just because I'm jobless and spend all day on thm, im very new to hacking lol

its like drugs for me

participating also gives you a good baseline estimation of where your skill level is-

this is how nerds think 😭

YES

Nerds: obssessive, high IQ
Stalkers: obsessive
Dorks: high IQ

See the pattern here?

umm honestly I would not say I have a high IQ lol. I make too many jorking the peanits jokes for that

dorks don't have high IQs!

they're dorks!

Eh, true.

https://tenor.com/view/nerd-well-actually-as-a-matter-of-fact-gif-27665011

dork

dooork!

I did my first portswigger mystery lab at least, trying to improve my blind recon skills

nice

oooh mystery 👻

inv to team. i suppose. just dont snitch to my team... they will be jelly

Are your teammates jars of jelly by any chance?

team jelly vs team peanut butter

No, my team consists entirely of lettuce, I wonder where they all went..

sure thing! dm me your email rq

yes 😳

@static acorn

AAAHHHHHHHHH

holy crap my internet is slow.

you scared me

will you be online in like 3 hours that's when I get home, I'll be able to send the invite then. @static acorn

no but ill be on like 3 hours after you get home

Okay yeah, I couldn't be in the team even if I wanted.

https://tenor.com/view/why-me-zombie-cat-creature-gif-21383350

me asf

what in the world?! THIS IS OUT OF THE WORLD!!!

its me bro

uhhhhjj that's gonna be a problem

can't you make like a cron job to invite St3amPunk for you?

yea well. gues i cant join you team then lol. its no biggie smh

thats the goofiest thing ive ever heard

😭

i love it

bah I can send the invite rn but I'll need to login on my phone

rip opsec

big time.

whos that

OPSEC

operational security

whos that

long name

🎀❔

i dont like operational security. he sounds mean

It's operational security, he knocks on your door and gives you advice.

he is mean!!

mean and rude and mean

..and forces you to follow his advice whether you like it or not at the risk of being doxxed.

but... not as rude as me... id like to meet this... opsec

in a dark ally

well, opsec has 911 on speeddial.

well thats dumb...

stinky opsec

also is your best ally against (malicious) hackers.

i know. he ruins everything

its why i dont invite him to partys. he starts locking doors and managing permissions and shi

yeah, sudo chmod 600 St3amPunk

and then ruins all the executables

fr

"no bins for u" he says

One time I asked "What about the trash bin?!" he replied "unwritable."

this joke went on longer than i anticipated.

lmao

i asked him about nmap... "unexceptionable"

wtf auto correct just completly changed that word smh

wtf is unexceptioable

he told me that nmap was dangerous to have as a SUID binary, unbelievable!

i know right... laaaame

and then he broke my -sS option!

he told me i cant run a web server from the root directory... what a wimp

FR 😭

nor could I have NOPASSWD for my users!

and then he broke their abilities to use root content!

have to put you password in every time?! HORRIBLE! THE HORROR

it's always the first day you're at work that you can feel ramadan hitting

And then took out /dev/cron being writable for everyone! Seriously, we needed that!

well tell him to stop hitting you

FR

good advice.

thanks

Man, I think I'll blacklist Opsec.

block opsec in dns settings

if you do that, you BECOME opsec!

https://tenor.com/view/cat-cat-meme-funny-drunk-meow-gif-10381022155799670207

WHAT HAVE I DONE

I'm sorry, I have to /mute you.

JK.

anyway @chilly veldt how are you doing fr tho. we were doing a bit when you walked in and it went on toooo long smh

yeah, definitely WAY too long, like..20 minutes long.

doing good

thats good

studying hard or hardly studyying

began my fast after getting a good amount of water and reading 5 minutes of the holy Quran

i should read more books. i have an attention probalem that need serious addressing

is your..profile picture a..summary of the bee movie?

I SAID THE SAME THING

okay, cool, it's a beam.

like a laser beam or what kind?

are you talking to youself in general lol

I get it read to me in arabic while I read the english translation, cause I don't speak arabic yet

oooo

oh uh, the gif is literally named "beem"

sorry I didn't catch that

it's called bee movie

REAL

o/ bella

hola

hyd

doing good

i just wasted 1 hour of my life writing a python script that sends messages to other ip addresses using the icmp protocol and its so funny to watch on wireshark

💀

That's good

why not just use sockets and just sockets.connect and send?

more funny this way

okay, how does it do it?

XD

oh, that one.

got it.

still gotta be a way to optimize it and turn it into something unrecognizable.

i have a listener for it too...

thats cleans up the message

and displays it XD'

What's a good Firefox alternative? Is Brave any good? Just saw the privacy policy changes and they aren't willing to commit to not selling data lol big no for me

Firefox-esr is a good firefox alternative.

i think he meant a whole other browser

seriously though, uh, I don't know, but I think chromium would be good for just in general stuff.

i use

Is FoxyProxy just for Firefox?

anyone use image ip loggers

Assuming so lol

foxyproxy isn't just for firefox/

still firefox 😂

or am i the omly one

there are alternatives to that too

Oh yeah

that was the whole joke

Just thought for when I'm using Burp

So should I start using chromium

chromium is too slow

use zap

did everyone just jump in for a second

Is that anything like Google Chrome? That's a no also

yeah, but doesn't zap use firefox?

yes

💀

okay, cool, will use.

great. we solved nothing. good work team

I use Brave

🫡

Yay! Let's get more nothing done!

Master Procrastinator... they call me...

https://tenor.com/view/saloon-enter-crowboys-gif-24849059

I'm the world's BEST procrastinator.

I didn't even bother with the title I'm that good

for example, right now I'm procrastinating on sleeping "I'll do it later" I said.

im sitting in general knowing damn well my try hack me courses arent doing themselves

which im activly spending money on

I'll look for different browsers tonight lol

Yeah, firefox is a bit heavy on computional power.

try librewolf is based on firefox but focused on security

There's always edge though.

your whating rn

based on libreoffice too.

like any other browser, because chrome is super light 😛 😂

guys are wbhook/image ip loggers good?

uhh.

?

don't know.

i sometimes use them

are they good?

i gues i dont undetstand the question

IP LEAKED

if the user open the image

if you're going to make jokes at least put some effort and be funny otherwise don't bother 😂

not mine

crap, we're all gone.

still you should delete thayt

admins might get mad

:hammer: tomatothatisitxhed#0 has been banned.

yep

oof.

That's... Not something that's good to say

about time 😂

If someone's breaking the rules, ping a mod and stop interacting

its not

my bad 😭

just trying to help

Help someone being a blackhat? Best not to

no! im no blackhat 😭

IM GOOD

Apoligies @naive violet

All good

I will report on first glance 🫡

I will too

maybe the joke was not being funny.

Judging by 😂, I did succeed in being funny.

You guys heard of Google downloading and sneaking 2 applications (with no icon or user interface) into billions of Android phones without consent?

thank you being kind tbh, come across mods in other servers who redirect in a mean way

Gave +1 Rep to @naive violet (current: #3 - 2264)

is it worth buying the Shodan one time member fee, just for private learning to see all the features?

These kinds of things are massively over sensationalised, headline first

hes been on my case before, i just need to be more carful and think how i respond better

damn, stopped getting spanked then 🧌

Honestly, once I had a close call, just by accidentally being involved, and/or accidentally forgetting that there was a zero tolerance policy for certain commands, even if in memes.

"People who make operating system add operating system component" doesn't grab attention in the same way

im trying. i just need to be a better mor responsible person

true.

That was cringe

Google's case is a big different. Almost always the vendors are the ones to push updates and you have to download and install those updates (grant consent).

Nah, small components are usually automatic

This was the first time Google did something like this and on such a massive scale.

It's sensationalist headlines grabbing content because that makes money. The world runs on outrage now. Don't get suckered.

Hate it when the train Wi-Fi doesn't work.

you can be more responsible by enrolling at choat rosemary hall

If you always think like that, nothing is not an evil business?

double negative

The double negative doesn't check out

LMAO