#general

Elf still breaking their computer and installing arch linux btw

finish* I gotta clean my keyboard 😭

I haven't seen jb in so long.

naaaah elf is only welcome here during christmas celebrations due to working in the northpole

Some things never change ❤️

I mean, I was one of the first five moderators in the server. I was the only lead moderator, and served in that for over two years before becoming the community manager.
If you can't trust my opinion on that, whose opinion can you trust?

So, while my knowledge of the law isn't that great. The "pledge" actually isn't legally binding. There is no consideration for the Moderators. (Signing away your rights without consideration is invalid most places, even in the US and we have no protections)

Birb is the worb, btw

jabbas??? because they have muted shadow before

Bird 🐦🕊️

A random person in the server

I'm just a guy on the internet.

You'd make a great mod Shadow, but ya know what do I know

how many skids are here 😭

Yeah, trust the person who made year of rabbit. I'll never forgive you.

not many

I can't trust you. U used to change my username.. now try it

One more now you're here... /s

Eh, Dark and I brought Jabba on as a mod. We win.

👴 I remember when jabba was just a coke bunny

all people are either 9 or below or 30 and above 😭

Seems like It is otherwise xd

broooo the year of the x boxes ... my god.

LMFAO. True. I can no longer do that.

Im 20

if they are 9 and below they are breaking discord tos and should not be here

see, you'd be a great mod

shadow already being a good mod

you would realize some break TOS like that after dming a couple of people here

Shadow would be an excellent mod

unless you mean 9 feet and below
but then shadow wanna know what kinda special reality you are comming from
as very few humans reach the size of 9 feet

@cosmic pendant ...

Genuinely shadow would be amazing but ya know you gotta sign that NDA

Now just ban some ppl, mute some ppl, block some ppl and you are essentially a mod.

is that filamet?

well signing nda:s is not to much of a trouble for shadow as they have had others for QA testing games

this slowmode is so annoying bruhh, anyway do yall hackers know how i prevent people going into my mariadb database or sending out xss/DDoS attacks its to hard for me (php)

no... that black 4.0. i buy 1l

why you posting your s*x toys here??

for a moment I thought the same

Fr. Looks fishy.

not worth the effort IMO

fr is fishy 😭

love ya ralex

Well that sounds like a trip to the doctors

i get anxiety attack from slowmo =/

I'm

What happens if I sign the NDA and leak confidential info? as they are not legally binding as toaster said what can be done. I am not even in the same country as THM HQ

Exempt

And

I

Love

It

Mod vs COmmunity with slow mode 😄 😄 (#TeamSCrubs)

https://tenor.com/view/no-moderators-no-mods-mauzymice-gif-8795886664789662635

that count as abuse of power?

k

e

k

w

https://tenor.com/view/nobody-cares-nobody-chairs-who-asked-finding-who-asked-nemo-gif-20058022

imagine a raid started right now seeing this state

yall i run my exploit that i dont even know how it works and i use sqlmap and ping itanimulli.com -t am i a certified real skid hacker and i always run "python3 github_multitool.py" on my blackhat am i a skid or certified hacker 🗿 (not ragebait) i will hack amazon with this

you mean a slow-raid?

nah, we'll do like the States and self-regulate

https://tenor.com/view/troll-trolls-tired-computer-gif-15460846

I like to use my powers.. right up to the edge.. and smear the line with my toes..

You're a CRIMINAL who is on the FBIs BLACKLIST now, they are coming for you ANY MINUTE, so HIDE /s

Even if you're in a different country, leaking info after signing an NDA can still lead to legal action and result in a ban from the platform. NDAs are about trust, and breaching them can have serious consequences, both legally and professionally.

They would just turn around and leave. No need to add any additional chaos

https://tenor.com/view/gun-rifle-ar15-administrative-results-gif-24437340

raiders easily circumvent slow mode by creating like thousands of users through scripts. we had that many during events

to be fair, scrubs has been the only mod around hasn't he?

haha, im on daily mail's channel now. i guess taking down localhost:3000 is to easy?? im to good at this fr fr no skid im the worst criminal out here

I move that Scrubz be removed per article 6 of the mod pledge for abuse of mod powers

That's true, Epic Games does go after people even if from different countries.

yup

He's the only one left trying to make a final stand only to be crushed by the overwhelming majority

Guys i have a question, i tried to hack my own wifi using kali linux but i dont have a wlan, is there another tools in kali you dont require a wlan in??
Please answer me

Yesss they doo, not just these, many orgs do that

Only one left now

Heck yea, give everyone ban perms.

Scrubz is the only mod 👀

actually ngl makes sense. thanks for the haxxor l33t reply

Gave +1 Rep to @sudden trail (current: #2808 - 1)

yall see even YAGPDB.xyz is congratulating me for taking down localhost:3000

/b bit

https://tenor.com/view/verify-gif-25797667

How would a legally not binding NDA work? 😅

This gif always makes me laugh

Probably more effective

no idea toaster knows me a n00b haxxor l33t skid

I think it would have to specifically state that it's not legally binding.

Understandable...good night peeps

Guys i have a question, i tried to hack my own wifi using kali linux but i dont have a wlan, is there another tools in kali you dont require a wlan in??
Please anserr me

WiFi hacking is for our advanced channels

you can take down 127.0.0.1

yep gtg. enough THM for 1 day, or maybe next 2 quarters.

Non-binding NDA is basically a handshake agreement, no legal bite, but break it, and you’ll probably get kicked out and looked at like the guy who brought the pineapple to a pizza party

Something is holding me back, it's weird. I want to leave this server but I'm feeling like I still have something to do

Love ya dude

🤓

You have an emotional attachment to this server because you spend a lot of time here.
(Likely).
Not that that is a bad thing.

Howw???

We won't teach you how to hack your own WiFi in this server

is this server like alive, i mean by like humor

Soo where i can start?? Im just trying to learn smth new abt hacking bro

damn I hate emotions, they are illogical and messy

Where do you think it lacks humour?

Sister, you can start in most places.

Life without emotions would be pretty empty, if we are getting philosophical.

Good Night THM. Try not to sign an NDA.

However WiFi hacking isn't what we discuss in this channel.

they are one of the best and worst things we humans have

Soo in what place should i start

@sick lance can you please like disable slowmode

chemist humor

Do I want to? No.

Can I? Also no.

but if you wanna learn about WiFi technologies and such.. that's cool. We can discuss that. What are you trying to learn?

I think that was it actually, that's what was missing. I needed a final interaction

Take care.

Thanks @urban cypress

Gave +1 Rep to @urban cypress (current: #2808 - 1)

toodaloo or something idk

Thanks

Gave +1 Rep to @worldly hearth (current: #1129 - 4)

hi all

Hey guys . As moderator what do they expect from me ? To watch for each message on my free time ? Any payment for it or it's as volunteers for the community

They expect you to learn to use the banhammer properly

I hope this is a joke. Otherwise it is funnier.

Just for fun ?

Beakss!

I dont know if there are any benefits.. i used to be a mod on chess.com i got free membership lel

Yeah .

heap!

@rapid merlin thm membership is nice :3

Nice

nice, now i'm going to go to cybersecurity 101 learning path

How do I remove my icon photo on my profile. I can't figure out how to do that

You can upload a different one, I don't think you can delete it.

niceee

Create an empty jpg file try to see what it does 🤯

gotcha. How does everyone have a unique robot icon. Is that generated upon account creation?

Yeah.

Yee.

No way of getting that back huh?

Afaik, no.

U could put gif why would u want common robot 😆 show your skills

we can add gifs to the website profile?

Only if u learned this technique

🔊 Unmuted im_hiding.

@wide nacelle

Please don't ping everyone

sorry....

ah yes the everyone ping problem,

😮 it shows how long it took lol

it s time in class or time start on Tryhackme

what do you mean?

if i stay afk on the Dashboard ?

well, I don't know, probably??
I just did it normally, without rushing.

But taking that question into further thought, It can indeed be probably abused. I guess one could afk for hours and then it will show a lot of time to complete lol. Hopefully it has some way to prevent it.

I think you just answered your own question.

I believe it is counted from the rooms themself

can someone teach me how to hack skippy peanutbutter so i can have unlimited peanutbutter.. ill pay $5

Add water until It vanishes completely

u got venmo

payment after unlimited peanutbutter

Just went out of the cinema, it was awesome. I'd recommend it.

https://tenor.com/view/cat-chicken-nugget-meme-gif-25924623

🤣

@blissful current

rami for the win boi. Was it hacking related at all I havnt see the trailer yet

Your Reviews? (slow mode ...goddamn it xD)

sooo

It was good, less hacking than Mr. Robot for sure. More OSINT though. (The cinema OSINT - Nothing like reality)
Stalking much - for those who have seen the serie "You".
Pretty solid overall.

What did you end up eating DKob?

3d Printed Chicken wing

i watched mr robot.. not even real hacking.. hackers 1995 is real hacking 🙂 nah i stopped watching that show after season three though...

CHIMKEN!

Maltesers.

Lol

jesus

Can one explain right

Right is the opposite of left

👋

Hi Tim!

https://tenor.com/view/apocalypse-burning-city-smoke-gif-17576296

how do I find out my current level for this group?

^

there is thing called Blob Of Death. is when fillament stick to nozzle and block printing and looks like this

good luck to all the future mods

How do you fix that?

if you lucky. somehow with heatgun to separate. ofc if blod does not breake all the things in first place

You can't just use an angle grinder on that??

nope as the filament is made of diamonds ;P

or titanium

I prefer unobtainium.. fr tho. 🤣

so i'm now doing a bug bounty and whats crazy to me is how a company says not to test for certain vulnerbility's while they can be really easily exploited

They probably have a reason. Sometimes companies have people doing these kind of tests internally - and don't want external people doing it as it could give access to some kind of critical asset/info (Talking from experience)

4chan is dead because someone did not update their php code for ages upon ages

oh who would ever think to do that?

you would think the anonymous hacker known only as "four-chan" would know to keep their frameworks up to date

apparently there are alternative image boards with dislike for each other but there is plenty of points to take down 4chan for how it works
then again something like it will probably pop up again...
or we have all the "refugees" making the rest of the internet "interesting"

It's happened before and it will happen again unfortunately

Weakest part of any system is the user

PICNIC..

shadow just wonders what will happen with all the leaked info of the admins mods and janitors of 4chan now

it's more like they don't want RCE to be tested which i think is weird but i'm ok with it so i'm going to test on yes i know it's decently old on SSTI and find out SSTI can be used for RCE like bruh really

apparently a lot of them were dumb enough to not use burner emails so that will be fun when they're doing stuff like applying to jobs

Well... nothing much you can beside respecting their policies I guess.

i guess so idk if i should report it or not i mean it's out of scope but can be a real issue if someone would use SSTI for RCE

yeah exactly this... surpising how many used gmail actually.... of course only seen a redacted email list and wanna keep it that way for liability reasons

Your job is to focus on the scope they gave you - My advice would be to mention that there might be a vulnerability somewhere that you did not look into because it is out of scope. It is then for them to decide if you can proceed or not.
Don't get into trouble.

@mossy river any chance the NDA would be made public? I'm curious about its content (vs. the potential exaggeration) and I suppose there are no actual secrets in the NDA itself.

The terms are published in the #mod-application channel - for the record only one person has actually seen the NDA so please dismiss anything you’ve heard about the NDA itself.

However, we will be discussing these changes internally and I will post an update following the discussion 🙂

what does that mean?

you asked how to find your lvl, verify and it'll tell you your lvl

It's the same as the one on the website if that's what you're asking - and you can show it off by verifying your account: https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

Did they just add that timeout moment to type again, or was I just not giving attention to it?

Is Pledge and NDA the same thing?

If you don’t want to copy the link you can use the bot command /docs discord and it will show the same thing btw

Guys 4chan got hacked💀🙏🏼

I actually have this link pinned on my clipboard since it seems like a lot of people ask for it daily, so it's easier for me to paste directly. 😉

Fair enough whatever works best for you

yeah i mean i kinda understand it why they wouldn't want certain exploits to be tested i mean one of the out of scope one's was DOM based xss which isn't suprising

Yeah just forget it if it's out of scope, you really don't want to get into this kind of trouble lol, even though I'm sure you're saying this from good faith

No, pledge is a separate doc that also incorporates some "do not disclose this kknda stuff" terms

what is DOM based xss used for tho because i have tested for it but i don't really understand why self XSS would be a problem

Thanks for your service as previous mod

Can someone help me with a problem?

Anyone know what the best way to get a scam server taken down is ? I emailed the server provider but it’s still up.

depends on the problem

All you can do is report it to the concerned authorities, other than that I don't think there's anything anyone of us here can do

I think that’s the best legal recourse you can take other than taking it to your local cyber security division within law enforcement

i have recieved a sms message from an unknown number to me but i see the number digits, and the sms contains a url link to a photo which is published to a website caled imgbb and the image contains a sensitive photo of mines, i wish to either track down the number or the publisher of the photo and see who did it, how may i do that?

thank you!

Gave +1 Rep to @spice otter (current: #272 - 27)

we dont do that here, best you can do is report it to the authorities

Besides the server provider is there any other places you’d recommend I send the report ?

Contact the authorities only recourse you have really

The local authorities obviously if it's scamming

teach me something

UK NCSC have a thing for it too

? NDA ABOUT WHAT

debates making an epic games account just to play alan wake series in glorious high resolution

Typically a NDA is a Non-Disclosure Agreement in which you agree to NOT DISCLOSE information... so "about what" would be a question you would have to view the document to assess.

nah NDA obviously stands for no dragon amulet in the game dragonfable ;P

omg no shadow... no no dragon amulet.. 🤣

That's actually very clever

it is used as that meaning tons in said community as an acronym so yeah
shadow also loves to play dragonfable and be part of that community

well.. to make picture of what NDA is...

so not for non disclosure agreement? great to know

oh that was a joke.. it is why shadow included the smug ;P at the end

oh fight club??? thingy shadow no watch

to be honest shadows not watched movies backlog is huge
same with their game backlog

we do not talk about fight club... is rule #1

i mean you ain't wrong sometimes you just want to talk about a fun finding but you can't

by that logic we no talk about sherlock holmes movies either as there are scenes where he is in "fight clubs"

yout are breaking the rules..

but why

oh right forgot to ask about this... but do you have your rofi config accessable somewhere for shadow????

ooo fancy what type of linux is this

i use default ml4w rofi. but can send if need. or look at ml4w github

oof
guess that is back to trying and extract useful rofi configs from other sources then

is arch worth it, it looks so clean

It doesn't cost.. so what is it worth?? Arch is pretty clean.

worth the trouble of setting it up 😂

it is one of the build your entire linux distro from "scratch" distros so it can be worth it... but you will have to put in a decent bit of time to keep it updated and maintained

do you like problem solving or do you want stuff to work out of the box?

I didnt get it yet for NDA I know for company accept pentesting but I didnt get in context in the annocument of the group

hmmm interesting, i might set it up in another vm just to see if i have what it takes to get it maintened thanks lol

nda is contract of what needs to be secret and can't be talk public

and can be for any thing or so. is common in area like this

the hardest part of installing arch on baremetal is to figure out how to setup wifi so you can run archinstall after :D

Okay

But I know it is agreement with company that penteser will do the company

guess thats a great time for youtube to tell me what to do 😂 😂

yes. to keep secret all the things

yea if a pentester stumbles on credentials that would be bad if they didn't have an NDA

Ofc

Oh slowmode is still set to 1 minute. RIP.

They had to put the brakes on tempest

I vote for shadow absorber as mod

Wowza

Slowmode on general? What did you all do? ;-;

1 vote for Silas as mod as well

😔

I gotta assume the everyone tag in announcements got some extra eyes

oh it was baddddd a whole war zone just scroll up lol

Wat when did war start

maybe 3ish hours ago (it started as soon as the announcement got announced)

Just tried looking, woah mumma this channel gets scary when there's more than 4 people at once

Hi

Oh damn that's scary.

Scrubz working all on his own now? That's not good. Hopefully some THM staff (e.g. Customer Success) can dedicate a little extra time to keeping an eye on the Discord.

yeaaaaa guess we will see what happens

Looks like we're in the finding out stage

If you have common drivers, iwctl is ezpz

try and explain iwctl for someone that has never used it??? it is hard

❤️

Very true. I need to remember that I’m used to finding random CLI tools and figuring out how to make them work 😄

nmtui is decently intuitive in comparison

Im glad you’re taking the comments into account, good luck with the changes and I hope you manage to find a fair compensation for their efforts and troubles

Isn't KGB onboard now too?

alright guys now serous question, jr pen test or soc 1

👋

I'd say soc 1

So u can face financial penalties for violation of the nda but u don’t even get paid for the job right ?

Whatever you like more, I went for jr pentester

I'm doing SOC 1 now, and it's been pretty informative.

Sounds like a normal NDA, ive had similar ones

Rly I’ve only signed ndas in situations I’m being compensated for

Base it on what you want to learn https://tryhackme.com/careers/quiz

SOC L1. 😎

i wanna be a soc, just didn't know if they had any over lapping knowledge i would need that i needed to do one or the other first

SOC1 sounds like the best then

https://tenor.com/view/cookies-palpatine-star-wars-minecraft-food-gif-12580846573300688008

With JWT flavor

This, especially since Jr pen is intermediate and soc 1 is easy (so soc 1 doesn't require external info)

Personally, I went for jr pentester, completed it and rn I am at web security, didn't ever touch SOC (planning to this summer tho)

Personally after completing Jr Pen (almost done) and Web Application Pentesting im thinking of trying out some parts of the other paths

ITS STILL SLOWMODE?? Hours later??

sloooooooooooooowwwwwwww

Using SOC L1 as supplement learning material for cySA that I need to take for my Masters....

What is even the point of the slow mode??

CySA is good, good luck

With 1 mod i guess this will be perma

even crazier is if scrubz is sleeping right now D:

Going to 1 mod was unavoidable really. Clearly. Nothing could have been done to have more mods

What’s a good yet lazy way to blur text from a training video?

dang... the soc 1 is massive..... and has a tonnnnn of challenge rooms, we gonna be a here a bit 😭

welp time for this shadow whadow to go sleep sloop to the beep boop while meep moop

Night shadow

Nighty night

Not even done with it yet

Finally got to TShark

Hi

Hello

You mean as in redacting info? Put a black box on it, don't use blur for sensitive information.

71 rooms, but each room is bitesized.

No, what I meant was the best way to redact text from a moving video

Sup everyone! 👋

Congrats!

I’m not a video editor

Some random editing software, personally I use DaVinci (free) but as I said don't use blur in the editing software, put a solid color over the information.

How would you achieve this using DaVinci

congrats!

DaVinci is a pretty good free editor.

KdenLive is good too,

Can it do what I’m trying to achieve

Yes

Just add a black image to your timeline and cover up things, keyframe it if you need to

@finite tulip You haven’t really answered my original question tho

I made a thing today.

You made the solar system? That's cool man, I'm a big fan

Make sure its fully black and not at 90% opacity (although it's probably not transparent)

In reply to @round orbit, check @stoic quarry reply

That looks awesome!

Bruh, the text will obviously appear in different areas of the screen, not just in one spot. Otherwise that would be easy to edit ofc

oooo thats so nice

Yeah so keyframe it to move with the text. Kdenlive and Davinci both have that feature, it's a pretty common thing for non-linear video editors to have

Oh Thank you @gusty inlet @spice otter ☺️

Gave +1 Rep to @gusty inlet (current: #178 - 48)

https://Admin.tryhackme.com Get your free admin there

Bruh 🤣

Try harder lol

If anyone wants to check out Solar heres the link https://web.gatorsecc.com/planets

what language did you make it in?

Haven’t tested it on android yet but its built on three.js so Im sure it probably runs.

@spice otter its the typical JS/CSS/HTML stack. I forgot chat is in slowmode.

i dont wanna be that guy but im pretty sure plutos orbit is wrong 😂 isn't it more oval?

slowmode go brrr still

Probably is I haven’t dialed in the equations for orbit yet. WIP

Well it's probably time to zzz mimimimimimimi, good night everyone

Im sure the Y position of the planets relative to their orbit is also off 😅

A lot easier to understand though.

Need help

Is it for a room? #room-help is a good place for it (And slowmode isn't turned on)

Thanks 🙏

lol yeaaa still really cool though regardless

I wanted to ask

Go for it

But the earth is flat isn’t it

Is ethical hacking good For a career
And Whats the point of the slowtime thing 😭

It's a job, but cybersecurity is a lot larger than ethical hacking.

In my opinion it's better to get a job in the SOC than trying to go straight to the pentesting side.

I got no clue why it's on slowmode, probably because a lot of people appeared with the mod news

Slowmode is on because of a lot of people chatting here earlier.

Yeahhh I know it’s a lot larger than ethical hacking but I wanna focus on that more
I find it fun thats why

Yup, well said!

I cant get a job in cybersecurity yet because I am 15 but I am completing a cert 3 IT and next semester im gonna complete a cert 4 Cybersecurity and im gonna go uni next year for it but right now I’m exploring different types of things I can do in cyber and I really like ethical hacking

You can probably get a job in IT.. but I think you probably need to be of age (18yo in the US) to get a job in cybersecurity.

It's definitely fun, I love doing CTFs and exploiting vulns in labs, but I wouldn't go for a pentesting job anytime soon (Also I'm scared to lmao).

I'd definitely recommend starting in SOC if you can, from there you'll get experience and can move to Risk/Compliance, Deploying security solutions, DFIR, whatever you like

I’d say anything you are passionate about you should pursue , even if it’s not for a career any time soon

Thank you guysss appreciate all of y’all answers

Hi

Hai

Ello

https://tryhackme.com/room/phishingemails3tryoe task 9 last question is broke?
i would think its CVE-2017–11882
CVE truly dead?

Nah, CVE got funding again. It's still a bit of a wakeup

nvm fucking capitalization was the reason

hey guys, have you ever done a room that took you more than 1 day to complete? like without pauses? hehe i'm curious about my procrastination or slowness HAHA

yes

Yes, but it depends on the level etc.
Probably go for some hints if it's too much 🙂

There's an estimated time up the top of the room. Sometimes if I'm struggling to wrap my little head around a topic I'll take longer.
It's not a bad thing tho, as long as you understand the topic then you're still learning, and that's the point

hahaha oooh ok ok, thank you guys ❤️

The point is to learn, not doing a speedrun

you're absolutely right ! :), i appreciate it

Everyone has his own time to learn and understand, so don't feel hurried mate :)

Yeah don't put too much value in the rank/level of THM

If someone speedruns rooms and searches up answers they won't be learning anything.

If someone takes a day for every room but actually understands it, they'll be better in the long run

https://tenor.com/view/spread-positivity-gif-18324730276732100546

No I went with the radical theory lol

I gotta start writing out paragraphs for this slowmode lmao. When do I get marks for my essays?

Had that happen once or twice

I'm having roasted potatoes with melted cheese. What more could I ask for?

you're right! , do you have , anyone, any kind of schedule for training in thm? like for example, doing 1 room daily or something?

That actually sounds banger

It also tastes like a banger. Trust.

Killed the TShark VM when running curl -v 10.10.10.10 ...

@mossy river I think we can lift the slowdown

Keeping up daily streaks is a good habit.

Seeing Jabba appear online on mobile as soon as the ping was sent was crazy

Bro is locked in

Ask and you shall receive...

Thanks @mossy river

Gave +1 Rep to @mossy river (current: #6 - 1575)

https://tenor.com/view/a23-gif-5165236331565184779

Yeah actually thank you! +rep @mossy river

Gave +1 Rep to @mossy river (current: #6 - 1576)

What would you guys recommend as a Netflix serie? Like a chill one. You know... for a chill dude.

https://tenor.com/view/chill-guy-my-new-character-gif-2777893510283028272

Come and See

naruto

Oh thank Jebus

Gave +1 Rep to @boreal scarab (current: #28 - 355)

So Tshark box I ran curl -v 10.10.10.10 and seemed to have killed the vm.. Its just sitting here loading and then Failed to connect to server

Terminated the machine and reloaded still the same thing

https://tenor.com/view/it-crowd-chris-o-dowd-roy-have-you-tried-turning-it-off-and-on-again-off-gif-4711577

How do I find with what value the key gets compared with? it's 3am already, brainfucking with it for 3 days already🫠
Another evening in dnSPY

the birds are singing already

lol

Sounds like you need to get some sleep and come back to it after some rest

If you're not learning anything now, going at it for another hour probably won't help

Yeah good night sleep fresh mind in the morning

the deadline is tomorrow and I will be all day at uni

I'm about to do one of the tshark rooms lol, lemme see if it happens for me too

so it's not the option

If anyone has any questions about OSINT, or OSINT rooms in general. Feel free to @ me 😄

Deadline?

👀

Thoughts on the PORP? 👀

Still a problem?

yeah, i have to send the reply till the tomorrow's evening

Too many acronyms!

No I got it to load. I terminated the vm and waited a min or so and started it back up. Thank you

Gave +1 Rep to @umbral bay (current: #17 - 538)

Going to try again and see what happens lol

TCM OSINT cert, I think it looks kinda fun but a wee bit expensive

Awesome, third attempt appears to be the charm in this case.

OOOOOOOOOOOH. Honestly, I don't even look at TCM at all

I need to up my cert game, so I'm just looking at anything lmao

https://tenor.com/view/lucky-clover-four-leaf-clover-heart-eyes-blushing-blink-gif-16464061

Plus I love OSINT stuff, as little as I'll ever do at work

What are you looking for exactly?

Dope curl actually worked this time

@stoic quarry Check this

https://pauljerimy.com/security-certification-roadmap/

Is there any advice what to do?

There's a fake value, to which the entered key gets compared
But I didn't find any other compare function

Tried to look into craft.dll, all empty, nothing to see there

I'm kinda lost

Got a rough plan in mind
SC-200 (or SC-900 quickly, then the 200)
CySA+
CISP maybe

Yeah I've seen it before, heard it's a bit outdated tho

Studying for cySA+ now then have to take pentest+

Then the PORP because

1. Funny name
2. OSINT is just fun

#resources message

Holy cannolis

Just the prices and the placement, but certs are certs.

This website is a GREAT resource to see what certs are on the market.

It has almost everything.

Yeah 100%

I'm pretty active in infosec circles, so I see the general news whenever a big cert comes out

Or just the update to the SY0701 that made all my learning for the previous version useless lmao

lol, this happens when a cert gets a major renewal.

#eCPPT

I found a study guide for the 2018 version of the CISSP in a charity shop recently

I use it to prop my laptop up

CISSP is great for leadership positions

I'll never open it then

Usually managers take the exam.

It's an MCQ IIRC

A what now?

Sorry

A multiple choice question exam.

Ah lol

IIRC = If I remember correctly

No more slow mode

Damn

No more slow mode indeed.

Wahoo

Jabba came in with a clutch

Big ups Jabba

Damn i missed the slow mode 🥲

So you're saying if I roll nat20s the whole time, I can ace the exam without a single study session? Hell yeah 😎

https://tenor.com/view/spongebob-meme-gif-15993619957719701221

u speak to elf??

Hi Bee!

Alright pals, do I keep staying up late working on this writeup, or do I rest my wary head?

Finally!

Took 2 days off from work.

Spent in on TryHackMe

~22 hours on the platform in 2 days

Hell yeah

Nicely done

Gotta get that CRTO soon.

I'm farming challenges

I wanna be more than ready.

That's close!

bro, how did u get 8k points???

Took 2 days off from work, and spent 22 hours doing challenges.

I do medium-hard ~100-400 points per challenge

I'm working towards a cert, so it's good traning.

crazy

ye

i did same as u few days for bronze league, 32h doing challanges 🙂

but only easy and medium, i have a lot to learn yet

That's what I do each and every time before my certifications. Since long ago.

Lol

nice

I'm in the easy league I guess

@stoic quarry https://subdomainfinder.c99.nl/

bro im glad this @gusty inlet not in my league, 8k points..

Thank me later 😄

Hahah

Thank you

I'll keep that in the ol' backpocket

dirbuster can be fun but I guess a website is nice too

im this time i wasnt doing challanges for league, i just got enough points to get 1st place.. im finishing cyber security 101, i did 2 or 3 challanges

I like gobuster over dirbuster..

Either or

ye im using more gobuster now

I guess it's all preference.

@stoic quarry https://crt.sh/
https://dnsdumpster.com/

Couple other sites for ya

I know about a few of these

But cheers

Love em

Gobuster over dirbuster Anyday, Anytime.

Those are actually great tools. I remember using them back in college.

A lot of those tools I know because of Kasescenarios

Kase who?

Is this a Youtuber?

Are you using the Challenges page to pick your challenges?
https://tryhackme.com/hacktivities/challenges

https://www.kasescenarios.com/

Kase is JUST OSINT, nothing else

Yes, also using the filters!

Oo fun

This actually right here is an absolutely amazing feature.

I love everything about the addition of the Challenges section.

Is there a apk file of thm?

No! This doesn't actually installs it

It like creates a shortcut for it on your home page like an app

But it's actually a web page loading inside the frame

Oh ye i see

I open thm website a lot on my android , when im not at home , to check league and search for rooms to do when im at home

4 more rooms and i finish cyber security 101 finally , but im doing that tomorrow , i did a lot today 🙂

Great job , keep going 🙂 🚀

How useful is it that it shows the timeToComplete on each card, but unfortunately after using a filter, the card no longer shows it?

Sorry if I misunderstood your message, but I don't see the time to complete being shown by default - without any filter:

On this page?
https://tryhackme.com/hacktivities/challenges

Yes, I am on this page.

That is even stranger. 😄

lol! Am I the only one? Can someone else confirm?

nice!

does someone have the error sometimes webpage of a machine lab doesn't load?

it happens usually, not with all machines but sometimes happens that

With filter: (Exactly the same)

There's only a green (for easy - Yellow for medium etc.) circle as progress bar around the room's logo when I start with one, but that is pretty much it.

I'll check with another account.

Sure!

@spice otter Hey, are you still on your PC?

yes

Can you check this too on your end?

https://tryhackme.com/hacktivities/challenges

it never shows time to complete?

even without filter

Yeah, that's what I have on my end,

It only shows time to complete when you actually click on the room, but never outside of it.

wha happens?

yea thats how it is for me

Ok great! Then maybe Tim sees something different due to his privileged account, but that's only my guess.

Nothing important really. Just chatting. 🙂

yea maybe lol thats weird

he just better 😂

and yay no more slowww

@gusty inlet

Could you provide a SS?

If you want send it in #site-support or #room-help , we'll help you out

the "tryhackme failed to connect" screen on the attack boxes?

Oh, I got this one a few minutes ago. Just refreshed and it worked.

404 on the webpage of the machine

There's also this weird mounting error.

Is this room-specific?

like imagine i'm doing "Brains" machine right?

so u start machine

gives u the ip

Mhm

then u type ip in browser

The apache 404 error?

are you putting the ip in your hosts folder

oh nvm

it redirects u to h ttp://brains.thm

but

I can't acces directly

Oh... /etc/hosts

to brains.thm

yea

DNS configuration

You need to map the IP to the domain

you have to put it in your host folder

IP DOMAIN

/etc/dnsmasq

i think

10.10.10.10 example.com

mmm ty

I didn't thought about that

bc it just happened a couple of times

WOOOOT

then suddenly was nomore the error

Party at the leper colony, slowmode is gone

When the IP in the URL bar switched to a domain - just map it in /etc/hosts

This sentence screams I have a PhD

honestly whats the different between /etc/hosts and /etc/dnsmasq

One is mapping - Second is telling which IP you want to be your DNS Server

You should hear some of the things I scream, aint' that right @boreal scarab @wind lake

hmmm ok thank you

Gave +1 Rep to @gusty inlet (current: #155 - 53)

Of course

Wait, lemme go back into my notes about everything you scream about

https://tenor.com/view/list-amazinggrace-court-watching-scroll-gif-13488308

Looks like it is an experiment for now, why you don't see it. So you might see it in the future if it succeeds. 🙂

Making the move to Arch see you guys in 20 hours

Oh great, it's actually really great for UX. Thanks!

Gave +1 Rep to @umbral bay (current: #17 - 539)

Howdy Ho there Neighbor

This sounded so much like Chucky.

@umbral bay You believe this guy

I guess the show was like... 30 agos... or 25 years ago.

Toaster, what was your thesis about?

Risk factors in risk management, mostly about Time

There's a Netflix serie about it, too. It's pretty nice.

Is it online? Not sure if you want to disclose it.

They have been pardoned. 😄

It was online.... I think was removed now for a few reasons

LOL 😄

I miss that show

Oh ok LOL

do THM mods get THM free subs?

oh boy: https://www.bbc.com/news/articles/cjr75wypg0vo

👀

We need a whole level of GDPR lol.

isn't that borderline illegal 😭

The real question is: Do anything remain private anymore?

You don't even own yourself.

with google? ha no

(╯°□°)╯︵ ┻━┻

might switch to opera lolol

Cloudflare proxies like 20-25% of websites

talk about power...

oh wow

Good question, I've forwarded it to the team.

raisees hand

#general message

@forest sphinx

Cop cars are scarecrows for people

https://tenor.com/view/misinformation-spreading-spreading-misinformation-online-gif-4543841945782036495

Fun Fact. Birds aren't real.

moo??

My favorite length of time

Sometimes you gotta move fa{session expired}

Lmao

yay slow mode is gone

anyone get the hidden secret flag in network services room?

the writer seems he hide it in an image

no idea what you are talking about

mostly cause im a noob

@vocal gale I see you 👀

Wonderful....... Disk Controller on my server decided to crap out again. Lovely

Do you tho?

https://tenor.com/view/let-me-be-clear-clear-it-up-jabroney-jabroneytv-gif-26807883

Time to sleep. Good night everyone!

https://tenor.com/view/good-night-chat-gif-21861289

https://tenor.com/view/john-cena-vanish-cant-see-me-gif-11472638

Good night 🌃 😴

Good night KGB! 🙂

Oh hey mod is open to everyone

good night

yeah people were going crazy about that a few hours ago

I just woke up

be glad you missed it

it was bad

Depends in which way you want to pursue a career in but I will go with SOC1 🙂

😊

soc it is

lol

aww how nice

.

Hello everyone

heyyy

This holds the same premise of "turn off the system and it's secure" and I'm all for it!

Anyone here play Ps5 and what do you play?

i have a spare laptop is it better to just linux in a vm on it or wipe windows and make linux the main OS

How old is the hardware on that thing

uhhhh 5 years?

ish

I have a few laptops at 2.6 ghz with 4 cores, 8gb ram and 64gb hdd, all soldered, I just put linux on them and called it a day lol

I put kubuntu to keep it simple and easy

im not sure the ghz but its 4 cores, 8 gb ram, and 256gb ssd

yeah, I'd just put linux on it and call it a day. Windows will destroy that ez

thats what i was thinking because dang windows makes these fans go brrrr

😂

thanks

glhf!

If you want to virtualize on your laptop, use VMM (Virt-Manager in apt) it has been working great for me lately, better than vmware or vbox

ooo aright lets take a look at that rq then lol

steve harvey has fairy god mother

It's beautiful!

Steve Harvey Is...
The Fairy Godfather.
In Theatres October 31st!

Stolen.

anyone else has a mirror for athenaos

im tryna see somethin

🤔

lol he just posted this in ISP too, just copy pasting to any infosec server he's in I guess

Considering that """acount recovery""" is most likely code for account brute forcing, probably is wrong lol

My new wallpaper ❤️ Thank you for this beautiful work of art! xD

Gave +1 Rep to @crystal mauve (current: #301 - 23)

yeaaaaaa

sounds pretty shady

lol yw grok does some quality Steve Harvey renditions

lmao yeah this one is super solid

Out of curiosity, what did you use as the prompt?

Ahh grok doesn’t keep track , but it was something along the lines of Steve Harvey dark wizard teaches a young tempest in a neo cyber realm

no worries lol

Thanks again this is cool. Gonna be the first thing I show guests now.

a young tempest lol

where can i find the recording for today sentinel 101 session bootcamp