#general

Please is there anyone here who has participated in the thm advent of CyberSecurity 2024?

That’s like saying u haven’t seen ghost in the shell

https://tenor.com/view/ghost-in-the-shell-keyboard-gif-7519694

why

you might just need glasses

I already wear glasses

different glasses xd

They are for every day use and reading.

i had same issue they figured out my eyes cant focus well so gave me different glasses

What kind?

all i know is the bunch of filters for light my astigmatism and they were like beyond confused how i managed to exist without glasses up till now

Is this using a discord token or the tryhackme profile token? It lists to use both in different instances.

Unless I just don't understand

i wanna study but destiny 2 is calling my name

In no way it lists using your discord token.

you take the token from your thm page and use it with the discord bot

very oversimplified

tryhackme token

Then where is the settings icon on the site as indicated in that link you sent me?

2 and 2 isn't equaling 4😅

It says look in your settings

I don't see that available on the site

manage account

hover over your icon

I just figured that out😂 😂

Thanks

This

It's literally prompting me to install

Or is that malware on the site?

def shouldnt be malware, im also not on an android

but i wouldnt download that mobile is gonna be limited anyways

i should change my pfp

Oh... that's normal chrome behavior for websites that supports it.

What resources could you reccommend to try the new rooms that are about blockchain?

What I'm hearing is there is a mobile.

An app to be specific

Gonna try it then and see what it's like

It's not going to be a mobile app. It's just going to be a shortcut to the actual website, but instead of being open in chrome, it will be like an app and open through a windowed frame.

But overall, it's still just a browser tab.

Sounds incredibly unnecessary

It doesn't sound unnecessary. It is unnecessary.

Last week I got the premium membership and started the cybersecurity pathway, and got done with the pre-requisite and now doing the cybersecurity 101 section and I’m loving what I’m learning and how I’m learning it.

https://tenor.com/view/thats-it-that-right-there-you-said-it-youre-right-you-got-it-gif-18397042

Do every section 3x at least, you’ll be happy you did 👍🏽

And specified notes too, even just vocab

I just got the Google it support specialist cert from cousera and now I’m doing this.

Thanks

Gave +1 Rep to @cunning gyro (current: #1898 - 2)

https://tenor.com/view/larry-henn-final-days-b4retirement-hahahahaha-gif-20544125

yoo i finally got top 10%

peoples are comin for my top 5% ima need to lock in

Shittt I’ve been just doing 2 rooms a day it’s decent

Congrats , great job 🙂 🚀

Ily

Smart go. I try to warn people against doing what I did.
Take your time, absorb, and don't burn out 🙂

Wat gat dam

Im highly interested in cybersecurity, hacking and understanding linux system.
I already have basic knowledge about Linux commands and network systems. Ive bough an external SSD to install ubuntu on it. But I feel lost. I dont know what kind of learning path should I follow? Should I do CTFs? Or obtain more certificates? Im open to any type of advices :).

pfp changed

dont worry

for i am not an imposter

I'm still a novice but I think doing pre security then cybersecurity 101 on THM then follow a path of your choice, I started out a absolute beginner when it comes to stuff like this but It's helped me learn so much and so many tools about pentesting and cybersecurity in general

tryhackme has a pretty decent roadmap out on there site now to check out

and also once your a little bit better you can do the challenges to reinforce

I highly recommend checking it out the fundementals are there and that will keep you busy, by the end of that you should know what you want to do

they have a multiple choice thing to determine what could fit the interest best

idk if it was supposed to be taken seriously though

Voidi changed pfp

who?

👀

https://tenor.com/view/feed-the-void-black-cat-snack-hungry-cat-hungry-gif-306965068353833327

You

https://tenor.com/view/fox-hungry-butter-kit-gif-18290527340172991522

Beerise

Hallo

This^^^

It happens to me sometimes as well

https://tenor.com/view/bonk-piggies-piggy-pigs-rodents-gif-25600042

I was falling asleep and suddenly I’m awake

And then I see someone say they’re the top 10 percent

If you’re a wizard you’re in the top 4% apparently

What rank do you need to be in the top 1

Prolly legend

Salads

I think my eyes are gonna fall out

Lol

It could be guru

I was getting harassed by a fly, I go get the electric bat,get back in bed and it’s gone

🙄

It has the right to defend itself

admins that frog is hackerin

Admin is prolly sippin tea

pepe has me password help

Admin's busy hacking the Statue of Liberty.

He's gonna make it fly

He's gonna make it fortnite dance.

https://bsky.app/profile/koboldposting.bsky.social/post/3lpuqrq4axs2y

CTF during work break let's gooo

Cozy CTFing.

Hello

G'day.

howdy

check the site for help

Restore your wallet with your Recovery Phrase.

You should have stored that somewhere.

Have u done the new-ish APT28 in the snare yet?

Room

If not, do it. It was hella fun imo

If you know you know

One of the most goated films

idk what i missed but i hope they have there recovery phrase

guys, anyone here into pentesting?

lol

alot of us

do u have experience?

i dabble 🤡

oh so ur not like really into it?

no im def into it

did you have a question

i mean yeah

well shoot your shot lol

You dabble in pentesting? Usually a full time job, but fair enough

lmaooo that part

we offer pentesting as a service

not our top sell

so like idk what i have keep working on, i am fucking lost

well where are you at

Curious strategy 😆
Fair though lmao

were an msp we do what we can

Aye

well, i am working in kali linux and kinda know vocab, like dns http https and stuff like this, working with nmap and brute force, and i learned some of the html language

So, tech fundamentals.
Keep working on those foundations. Build a lab environment (virtual good, physical a bonus). Do some overthewire to get comfortable with Linux.

End of the day, hacking is an applied mastery of other fields in computer science. The stronger your foundations, the easier you'll find offensive security

thanks buddy

hi

well there are prereq's to understand before attacking anything of course. If your attacking network services or functions then your gonna need to understand networking, if its a webapp youll want ot understand requests and apis, hardware requires an understanding of the logic gates etc

Just curious, does anyone know of potential concerns or gotchas with hosting Unifi Network Application/Controller on VPS/cloud resources in production? Seem like many do so though, and similar to my personal (local VM) setup but wanted to put out feelers

get used to identifying that feeling of not knowing something and then taking the time to research it. Dont reinvent the wheel here AI is very helpful with indepth conversations. I suggest perplexity

unfi's cloud portal isnt bad, i recommend researching there current vulnerabilities if disclosed

Yeah I stay on top of that but we do prefer the self hosted Unifi solutions, but that’s actually fair. Not sure why my employers won’t consider the actual Unifi cloud

Oh God. Please do not use AI to learn new topics.

beyond lesser control

AI is great for drudgery for topics you already know

“Write me a a professional paragraph about [x company] for our company partners page”, used that within the last couple weeks when told to update the website lol

If you must use it to learn then it can be a reasonable way to tentatively expand an existing understanding. I.e., signpost resources to expand your understanding of a topic.

But never use it for a topic you can't call BS on its responses

do your own research everyone has there opinions about AI. All you have to do is care about what your learning, if you do you will ask more in depth questions. Perplexity is a live browsing AI which simply pulls its answers from multiple up to date sources. You can watch its thought process and view the sources its getting its answer from, it simply searches faster then you

how is the SAL1?

My favourite is getting isbns for books of interest for a subject

On the odd occasion where I use it that is

I've been rather impressed with ChatGPT lately, but I haven't tried to really grill it on anything very technical.

lol although then there’s the Chicago Sun Times where only 5 of their 15 “2025 Summer Reading Picks” were real books

hi

welcome

Well yeah but that's where asking for the ISBN is handy

totally fair

can anyone help me

that’s a good question lol

Only takes a second to look it up, it's more helpful for getting started finding resources for niche subjects occasionally

can anyone truly help you? Especially without any info or context?

what is the syntax of ping 10.10.10.10

Although that's for when my Google abilities aren't quite enough

you literally just did it

that’s it

As you said it haha

for THM, that’s a good check to ensure you’re connected to the VPN properly, although 10.10.10.10 is often also an example IP

I really need advice on how to get an internship, I have been looking for a long time now and have been getting constant rejections

I think I'm done for the day, going to bed. It is 10pm here. I have had a very fun day doing the cybersecurity 101 section. I learned about Active Directory through Coursera IT course, but I really enjoyed the hands-on experience of that room. I learned a lot more than I did using Coursera

Not gonna lie, I like 10.x over 192.168.x.

I mean obviously, but for sure depends on how much scale you actually need

This is so nostalgic

lol is that rock band, let me grab my headphones

Oh it’s scooby

lol

Is scooby doo 2 monsters unleashed 😂

I have barely ever watched this second movie

Wsp long Time no see

what difference does it make? they are both private IP ranges, atleast upto a certain point

I've watched it a few times, mystery begins and monsters unleashed were great

I wasn't too fond of the other one on spooky island

I thought that one was overrated

Gl on ur journey. Dm me anytime if u want any help or advice

Idk

I remember watching that one when i was younger, it creeped me out.

You can do massively broader networks with 10.x style networks. I forget the nomenclature of Class A/B/C but, 192.168.x is a much more limited scheme

Nah nah it is haha

From what I gather, enterprise and corporate likes using 10.x for obvious reasons where as 192.168.x is pretty good for LAN and SOHO networks, but I'm lazy and like that I can type less numbers.

mostly ideal for actual businesses

yeah I am aware but I mean, they both pretty much serve the same purpose (without context)

Honestly I loved that one so much

oh yeah that makes sense

Yeah that’s more what I meant

I like to use 10.x.x.x in my GNS3 labs too

You can do 10.x.x.x on your home network and labs but lol you’re likely not going to run out of 255ish subnets on 192.168.x.x

Yeah. The lazy part comes into significant play for me.

Its been a couple months since I passed my CCNA, I need to brush up on some networking knowledge again

havent gotten a single interview tho, it really sucks

I've been going over the Google Cybersecurity Certification on Coursera. It's kind of whatever compared to Security+, but eh, 90 bucks for a Cert is not bad.

yeah just regular clients on my network range around 30-40 machines so it’s nbd, then I just have other subnets for my VLANs for labs and etc

its terrible, I'd recommend doing CySA+ instead

my Sec+ is gonna expire in October so I need to get that done before the deadline

Yeah the Google one will be of limited value

Do organizations typically care if you've got an expired cert?

I think they do

I mean technically you can’t claim you still have it when they expire

but yeah that’s the crappiest thing about certs

They say it’s for continuing education but they just want the re-occuring revenue

The job market sucks right now anyway, all you can do is renew your certs

Makes me think you'd have to go through the entire A+, Network+, Sec+, Pentest+, CySA+ pipeline all over again if you've already reached the finish line.

Uh, you for sure won’t need A+ and Network+ depending on your intended field there. That’s kind of assumed what with the rest if you’re going into infosec

I'd guess they're then more interested in your immediate certs?

I feel like certifications dont even matter anymore, I am gaining no traction with mine

mhmm

I meant for 0x90’s statement

Work experience will help even more imho but I’ve not been through this gauntlet often

So if you're in a SOC role or BlueTeaming or some crap like that, then I guess they wouldn't care that your A+ expired. Not bad, then, I guess.

Honestly in my understanding, A+ is “i know the basics of computing and fixing things”

not really a infosec cert

that’s just at least the vibe that I always got from the study materials

I feel like some workplaces just use a checklist, if you've done A+, sec+ etc. then that's all they really care about but idk I am really drunk atm because I didn't realize having a specific amount of IPAs would get me super drunk

edit: this is not what I meant to reply to

lol there’s nothing special about IPAs that would make them less intoxicating

At least for me, I have 0 experience in a formal IT environment, so I've probably gotta start with A+ and Help Desk jobs, but yeah. At the very least, I've been looking at the Google IT Certification, but kind of ADHD'd into the Google Cybersecurity Certification.

Yeah I got my in with help desk and just rapidly got recognized for infosec and more, but really small org where I’m at

pretty much same for me, and have been looking for internships while I am doing my masters

But yeah I don’t think A+ is worth it

If you can prove a higher tier cert, kinda useless to have the basic ones. Nah even then imho, Zumi

Google's Cybersecurity Cert at least seems to give you a 30% discount on the Sec+ Cert, so that's a bonus I guess?

I have a couple certs but I feel like the barrier to entry is just too high, a couple certs arent gonna cut it

to be fair I don't drink often but they are more concentrated than some beer I have had before

Meanwhile no certs and no college for me. Just hoping my 5 years experience and lol, connections will get me through. But I have been planning on certs for a while, I’ve studied for Sec+ before and from what I saw I basically don’t even need to study lol

At the very least I'm tight for Cash as I've decided on changing careers and currently unemployed, so I can't really fire off a couple hundred bucks in one go very easily. I'm just tryin' to get my foot in the door.

can u cancel THM subscription anytime?

depends if you’re monthly or yearly, but yes. Just for yearly I believe you pay upfront

shit man, I feel ya, got uni debt to pay and I already regret taking up a Masters in Info Sec

no monthly

then sure, anytime. You’ll only be charged for your current month if you’ve already passed that deadline

Yeah. I was in the Trades, and I've still got it as an avenue, but I had a realization that I don't do wrenching in my spare time like the others I worked with. Kind of occured to me that I should devote my time into something I tend to gravitate towards or hover around, and that's just IT in general.

every day I am glad tryhackme exists because honestly college has not given me all I need in terms of practice. one of the few services I'd pay for.

yo master in cyber is good or not?

And yeah some IPAs can be 5% abv vs the more typical beer 3%-ish

nice, 5 years is really good!

That’s good. I personally read books, watch vids and do other stuff for enhancing my knowledge

i got a voodoo rangers pack btw which is like 9%

Thanks but lol I’m more than ready to move on

would love to connect with you professionally, if possible.

I wouldnt say it is, tbh

First off, u can’t fully master it cause everyday, new attacks and threats r getting discovered. However u can learn stuff according to ur satisfaction

that's fair, my college only offers a couple courses for cybersec as a "concentration" into the area, whcih is fair but not enough

Sorry I can’t give you any good legs up where I’m at if that’s what you mean lol. This is a really small org lol

its just the name of a degree, it doesnt actually mean youre a "master" of it

The "Extra Competent" stamp of approval by a University.

Yup. Also my DMs r always open for free resources and advice so dm me whenever u want

appreciate it black hydra

Ik people who don’t have any degree and earn more than someone who has a degree

nah thats not what I meant, I am just connecting with people on Linked and disc to learn more about IT and InfoSec in an enterprise environment

Ofc man

lol I don’t even have a Linked-in

I’m delaying that for as long as humanly possible

Professional Social Media is still Social Media.

I am not big on social networking, even if that is job related, I hear infosec Linkedin is especially cringe lol

it definitely is

its insanely cringe

Yeah seen screenshots of so many insanely bad takes lol

it doesnt come naturally to me either, but I am cooked if I dont

totally fair

I hate it tho, its weird

i may be super drunk but honestly anytime I check linkedin it's cringe.
that or half the time it's in portuguese because I added people from brazil when I was younger for no reason.

I seriously do not understand why I added so many brazilians

yeah that makes sense, but getting into IT right now is a living nightmare honestly

Until u realized

My only experience with them is being swarmed by them in MMORPG servers and then seeing them rolling spam "jajaja" across the screen.

lol the Japanese equivalent is long strings of “wwwwwww”

Yeah, that's what I'm dreading. There's such a huge amount of competition and corporate hoops to jump through which kind of has me feelin' some kinda way about it.

as always, if it’s your first time in any kinda IT field, Help Desk is a good foot in the door and honestly gives you many more necessary skills you will require throughout your career

even help desk positions are difficult to get right now, thats the thing

fair enough :c

What would one expect out of Tier I?

I applied to just about every available internship for the Summer and I didnt get anything, now I am applying for the Fall

literally anything, and usually dumb things, but sometimes something more advanced

well

you better know someone at the company

or you're cooked

thats what it is

man I'm just hoping to get something in SOC or sumn after college, I hate this job market

Oh placement wise? Yeah, having hooks like that helps ton. I may be moving to a much larger org soon but we shall see

I tried youtubing the differences between the Tiers and it was some kinda generic but vague answers from some of them about what Tier I does.

you mean SOC or help desk?

Help Desk.

THM actually has good rooms on what the SOC tiers are

oh for Help Desk, level one is literally anything, and it really only progresses if level 1 gets stuck and escalates

yeah same, applied to a lot of SOC internships

I think tryhackme has a good SOC thingy word for application thingy you pass jfc I'm drunk

i don't remember the word but their thingy is cool, really enjoyed it.

Ah, okay. So you're kind of the Go-To to fix something until it becomes something weird and whacky, then you send it up to Tier II, or it gets sent up to Tier III?

wishing for your success homie, I'm sure youll do great.

Tbh college ain’t worth it

typical level 1 call “help I can’t open this PDF”, “dude it’s because you broke the 255 limit on paths and etc, just like rename your files”.

Level 2 which level 1 could probably still handle is like “help I can’t send invoices via my program this month” (turns out it was SMTP, and we just enabled MFA for this client in 365, so it needed an App Password as authentication to go through).

I disagree, but that's because I'm in college and whether we like it or not, degrees are needed regardless of what we know now these days because of it being apart of the checklist. college is needed for newcomers, not really out of choice I think.

lol I can tell you many practical real world help desk examples since my org is small enough I often dip into the pool still

Ah yeah, okay. So even without my experience, I should be able to handle Tier I if I've been troubleshooting people's stuff in my spare time anyway.

yep pretty much

you very quickly learn also the enterprise stuff you wouldn’t normally be exposed to as well

yeah please do, I need something to talk about in my interview (if i ever end up getting one, that is)

you'll get one

Do you get much exposure or mucking about with AD as Tier I, or is that more something Tier II's trusted with?

thanks a lot! same here as well, wishing for your success too! what are you studying currently?

Gave +1 Rep to @topaz falcon (current: #2896 - 1)

lol not sure what kind of examples you’re looking for but typically level 1 stuff is simple af. “Help I’m locked out of AD” (they phrased as can’t do “network password”), “Help, I’m not getting emails” (you literally toggled Outlook’s “Work Offline” button, ez fix). etc

csc with a concentration in cyber. having to use thm to learn more important aspects of cyber. I'm trying to go on a path from SOC to reverse engineering since I like messing with assembly

hbu?

or dreaded printer stuff. The most recient printer issue I solved is “just reboot, your machine has been up for over a month” “oh, it’s fixed!”

that was easy but printers are more often hellish

Oh, that's brainrot easy. Okay, cool. So any time I've locked myself out of my account due to typing in a 15 character password wrong 3 times would be likely a Tier I that I was phoning.

Yeah level 1 stuff is often super simple

you just have to be prepared to filed literally anything, and if you need help ask a tier 2 or another co-worker, and if truely stuck, sure then you escelate entirely

Oh nice thats good, you'll def get something in a SOC! I am currently doing a M.Eng. in Info Systems Sec and have a bachelors in Comp Sci but that was more AI/ML shit which I didnt really like

Probably more props for figuring it out yourself and solving it if it's something you can sort, though? Or does levelling up to Tier II generally come with Cert promotion?

Not yet no

I don't know if it's common for them to review your fixes.

look ill be honest I am too drunk to understand this completely but I am sure you'll do great. if you have something to show for it like thm or projects, you'll get it. just keep trying my friend.

Ik successful people who r successful without going to college. Ik people who r broke but went to college

But then there’s ultimate hellish scenarios, “you all shipped me a Mac, and I’m read to be set up with MFA and get going”… but wait the MFA doesn’t work upon reboot because Macs aren’t connected to internet first login, and Offline Codes don’t work because this is the first ever authentication. That was a hellish catch 22 I solved

absolutely the case, however it's important to understand the current job market requires mostly bachelors in csc due to just how american job market works, unfortunatley, as well as the issues those without it will face. if one can get into the field without, GREAT! however, if you can go to college for free like myself, then do so yknow

I had to disable our MFA via Recovery Mode to get her in, and then re-enable it once it was connected to the internet properly lol. That is easier said than done

Thank you co-worker for not anticipating this expected issue and not registring offline login for our admin account either! 🙃

yeah I got a couple projects here and there, also applying to jobs takes up like 80% of my time, it takes such a long time so I cant even do other things I wanna do

applying to jobs is a full time job

after this school year I'll prob be the same ngl, got one more year left

thanks a lot for the positive reinforcement

I’ve only worked at a smaller org, but generally just your talents gets you the bump

no need to thank fsociety, thank yourself for trying hard

yup I'd suggest sending out atleast a 1000 applications

I am simply a very drunk man waiting for witcher 3 to download on my switch

W witcher 3

It’s not an awful port (actually kinda limit pushing and neat), but is that really the only platform you have for such?

one of my all time favorites

gonna send it all to one company only then complain on reddit that I can't get a job

lol

I have it on pc but I like to separate where I work and play due to adhd

and I am not home currently

No I’m the same, but I have seperate work and play PCs for sure

Okay, sweet.

I'm waiting for you to hop back on and take first place

I am very disorganized, I am so disorganized, in fact, that I run WSL2 with Kali and Ubuntu on it

At least I know what I'm applying for, now, so that's cool. I think my interests and spare time stuff I put on my Resume might be a bit overkill then for the position, but anything helps in that end, I guess. Thanks for the info.

Gave +1 Rep to @sinful moon (current: #31 - 312)

Within my first couple weeks, I got to address Log4Shell vulnerabilities and patch our Unifi controllers and that quickly got me recognized as being more of a sysadmin/infosec type lol

But I will re-iterate, we’re like double digits amount of employees lol

you use a computer?? don't you know its more secure to not use any technology? I just use my mind. you are all figments of my imagination (therefore you are all very TAX PAYING CITIZEN and granted tickets to disneyland)

Yeah, fair. At least the company I've got an interview lined up with next week's got the 100 range of employees. Probably less than.

Kali in WSL sounds like a bad time lol

that honestly sounds epic

missing the point and not as fleshed out as a full VM, as VM-ish as WSL2 is

it is but works for THM pretty well

ouch but fair enough

still run a real VM imho

VMs are slow though

WSL is fast

WSL2 is already a “slow” as you say VM

you know what is also fast @north raptor ?

it’s just Hyper-V

thats the only reason I like it

yeah?

chicken butt

thats valid

but sure since it’s Hyper-V that’s level 1 hypervisor instead of level 2 hypervisors (userspace)

thats so valid

Type 1 hypervisor yep

so like run an OS like Linux where you can just do kvm for level 1 hypervisors without bothering with Hyper-V garbage

thank you thak you, I am here for one hour longer until witcher 3 is downloaded

Gave +1 Rep to @north raptor (current: #2896 - 1)

personally I have a whole Proxmox server which is just the Linux qemu/kvm equivalent to VMware ESXi/vSphere

if that’s overkill then virt-manager on a Linux workstation does the same

Ik many people with degree who have no jobs. And ik many people who don’t have a degree and have jobs just because they played smart instead of hard

For Windows you really are stuck with Hyper-V if you want level 1 hypervisors. VMware Workstation Pro and VirtualBox are both level 2 and userland

I have to use Windows for now, I dont have an extra laptop that I can fully run Linux on

KVM/QEMU.

as much as I'd love to be able to do that

which honestly I never really had any issues with VMware Workstation Pro performance, but since you’re claiming “slow” might as well explain

its slow even though I've allocated a decent amount of memory to my VM, Idk it just feels clunky and slow for me

And installed guest tools or just used open-vm-tools on Linux?

I have installed many tools on it, of course

good just gotta check

my SO is awful about remembering how critical that is lol

again completely fair but I do think we're past the age where the majority of jobs would be applied in such in America, I would not likely get a job without a degree here.

Ooof rip
Man

there is a bit of a game changer setting in VMware Advanced settings for write back though

just like for optimial performance with Windows on qemu/kvm you do the same for the drives

WSL is pretty cool though, I can use Linux commands on Windows, I feel like thats kinda sick

Not today.

what is it

I just always found it far too limiting for anything other than dev use

lol I’d have to check, I now a days won’t touch VMware with a ten foot pole so I don’t have it installed

but it’s whatever does writeback, either that or RAM purging stuff

Oh I lied, I do have it on a computer handy, one sec

tbf I go to college for freee so its not all bad, I have enjoyed my time even if it is mostly swe experience. it's been fun

at least i am not learning java

I mean free college is good

lol discord has u blocked by default, it says to me you're a spammer

I just hate student loan

okay I was sorta close “Disable memory page trimming” despite the name, can help

i agree, I am fortunate in my situation.

Fr man

Alright, and why does discord think you're a spammer 😭

o i am also doing vm management stuff rn

what i am not fortunate in though is how drunk i am because i am stupid

Should I learn SQL?

yes

just the basics you need for infosec imho

postgresql my beloved

yeah also keeping postgresql maintained for metasploit can be a whole thing lol

Will Only Basics be enough
Cause I want to learn SQL Injections

ye

this be "real" VM management stuff

Although don’t believe the HDD space, it actually has 64TB

also dramatically low use because we’re not doing crazy encoding and etc as normal

WTF

nuh uh, I am too dumb to understand so it must not be true

https://tenor.com/view/what-monkey-shook-shocked-surprised-gif-8153885586429536809

download more space?

lol it’s this guy:

alright witcher 3 is done downloading, y'all have fun xx love y'all yada yada you all matter and don't forget to do your best, your life is your own journey, do not compare it to others, you have a purpose only you can create.

Dell Poweredge T430, expanded out to the second CPU socket so 2x Xeon, maxed out RAM and I think, maxed out storage

also elizabeth is a nerd be wary

<3

Why is the RAM more than The Hard Drive Space/Storage

scary

As I said, it’s only showing one of the storage pools, the main pool is a good 58TB

total of 64TB

but lol even then we mostly use the NAS for actual long term storage, this is active storage

NAS is at 48TB

Why do you need that much Are you making GTA 7

Or 8

At the rate of GTA 6's development and release, GTA 7's gonna be like a Nerve Gear release.

encoding and ripping physical media, while running labs, and critical network services. The performance is minimal rn because it’s under like no load

Here’s what the CPU time graph looks like when active when it was still on VMware lol

literal insanity lol

Is it for your personal use or CORPORATE

Personal, but it closely matches (or even beats) some of our clients at work

Hybrid

Last 5 years I’ve been administrating these same Dell Poweredges remotely from 800 miles away, so about 3 years ago I felt I wanted one for my home lab stuff

got to touch it and set up from the ground up

and yeah having the lights out management of Dell iDRAC was something I desperately wanted

lol

How much it costs?

this is a 2016ish era server, about $800-$1000 maxed out

Will get something like it in Future

I would recommend a cluster of Dell Optiplexes in Proxmox though vs a big monolithic guy like this though

unless you really need big compute for some reason (our ripping and CPU encoding [GPU encoding is worse quality])

Vast majority of home lab cases and local network services will run just fine on a cluster of much smaller computers

So no need to break the bank. The main reason I did this was for experience with the same kind of setups we have/had on prem for our clients at work

Ok tell me where can I learn SQL for free

I mean THM has good SQL rooms, really the SQLi ones teach you the basics to get into this

but beyond that, I hate to say it, but did you google it? lol

freecodecamp

i'm using it in preparation for my dbms class in a couple days for fun

I want to learn the language so I can craft custom injections myself without help of any tools

you don’t really need to learn how to be a DBA (well I guess stack there does) but yeah

just enough to get around

ello

ello

morning

Is Coursera IBM SQL and Database course good I can audit it for free and use the resources

Ello

ye

Looks like IBM Cloud uses MySQL so sure that’s fine

(because actual IBM SQL is a 1981 product lol)

lol I love that I did initially come here with a question but yeah not too many people here doing self-hosting and devops.

Ended up asking my friend who is now a bigwig manager in his infosec department lol

spinning off from that, I do love my freaking Unifi equipment at home but yeah expensive. I rolled my own personal self-hosted solution, but now work is just asking me to do the same in production. No pressure lol

For home use though, damn I love having an actually robust mobile app.

I’ve just never seen a mobile networking management app be just about as robust as the web version. You can do about 97% of the same config just in the app

I am studying for comptia linux+ is there any rooms on thm that could benefit me?

There’s the Linux fundimentals rooms which do actually teach you some good stuff which is a bit more in depth than one may expect

Yo

You should try some bash scripting. Even simple ones teach you a lot. For me, it worked

Did you guys know u could do this bc /etc/passwd has write options

lol wrong reply, tell the other user, I’m well versed in bash scripting and more

And what's ur problem

18+ years of Linux myself

you atted me lol

And you wanna learn fundamentals of Linux

the single free one should get you familiar with linux terminal enough to get working

😄😄

I don’t think you read the conversation lol

Everyone's admin yipee

GTA 7 would be released by the time I have grandkids

I tried using linux for gaming

Dont think i will try again

hag
https://cdn.discordapp.com/emojis/860953188119216138.webp?size=48&name=TenmaYou

was replying to JohnDoe.exe

Maybe you won't even be alive when it's released

Will stick to windows as daily driver

Maybe

lame

I've found Linux Gaming is pretty doable, just barring those aggressive anticheat games.

Linux gaming is in a fantastic spot right now, but fair to each their own

Unfortunately I do play those games with anti cheat with friends

Then again, I don't want a kernel level anticheat running on my system anyway, regardless of their assurances.

If linux isn’t your jam, use what is

My fav game is still not supported

That's terrible

I play GTA Online alot and it doesn't work on linux

steamOS is released rn i think

So many games don't

it used to, until they broke it with Anti-cheat again lol

Ehh alot of my games dont work
And the ones who do, they perform worse than windows unfortunately

but like GTA Online is just online gambling timesink anyways lol

did the amount of modders get reduced because of battle eye? :v

Ah yeah, fair enough. It made me sad that I couldn't play Battlefield V anymore because of their new EA Anticheat. I wanted to max out every weapon and vehicle, then never play it again, and I can't even do that now.

lol expect for the ones that perform dramatically better than they do on WIndows

Elden Ring, GTA IV, good bit more

Yea they're lesser than few months back IIRC. I usually just play on private sessions and do missions with friends

I wonder if gta is gonna re use the same dll's

it’s so bad on Windows that DXVK ported from Linux on Windows helps them dramatically lol

In all honesty, GTA IV worked better for me on windows

I had some issues running it on linux

depends on what you define as “working” lol

112 gb for a game is a lot

It ran well

With 180-200 FPS

Probably just a me issue but still

I want smooth 60+fps with good frame pacing, Windows falls far below that

I can also play ray traced games

Cause i have an RTX 4080

I’ve tested both without and with DXVK on Windows and just the same as Linux, massive improvement

Well I guess we both had different experiences

Ray tracing works on LInux as well? lol

I couldn't figure it out unfortunately

Just install Nvidia propritary drivers and like done

Sometimes you had to enable some particular switches in Steam's launch options, but now it seems RTX just works out of the box with Proton Experimental.

sudo pacman -S nvidia

Ayeeee, Pacman!

Its probably just an issue from my side

But I'll stick to the convenience of windows

Fair enough, and sure there’s some weird edge cases with specific machines on both OSes

but Windows is literally inconvenient for me lol

I use Kali on VM anyway for studying cybersec

I assume you've used linux longer than you have used windows

Morning chat

That being said, I’m OS agnostic, Linux may be my main but I use all three major OSes on the daily

yeah 18+ years Linux for me

Yea in my case its the opposite
It just depends on what you're used to

I’m typing on a freaking iPad Pro with a logitech keyboard rn so yeah I’m not actually too picky if it gets the job done

I got really bored in 2020 so I ditched windows when 11 came out and haven't really looked back.

I did have a stint where I would KVM Windows using a GPU Passthrough script, but when Steam got better, I was good.

Though I started with Garuda. Garuda annoys me now, so I went to Endeavour.

bruv, my spacebar is broken, the most important key

and i use my resistance to activate it

How are you typing then

lol rebind Caps lock to space

I relatively easy fix if you didn't break the actual key itself and only the cap or the bar(s)

I’m still just Arch but totally fair

really?

i broke the key retainer

and the key

....

How

Buy a new keyboard

Do you literally just smash your keys when your typing

I kind of want to just run a vanilla Arch build to be honest. I've been very tempted and just custom configure everything.

Yeah been doing so since 2008

I'm running a fedora setup on my laptop rn

although yeah I just go archinstall these days

it is the integrated rgb led keybord of 200$ onto my laptop

a big loss

planning to change to void

enjoy lack of packages!

Again, how'd you break that

but maybe that’s changed

the keys are gel

You literally need to smash the keys 😭

something got stuck in it, and while removing it, it popped right out.

That's why you be careful with laptop keys

dell laptop, inspiron 15 5502

yeah

the dell exclusive store says that i will need to pay 500$ to them to fix this

worth more than the keyboard itself

dude just get the replacement part

Yeah cause you're paying for labour, warranty and the board itself lol

it’s usually not too hard to replace the entire keyboard assembly yourself

just, don't pinch the tape cable

i have a old ps/2 keyboard

*ribbon cable but yeah (sorry being pedantic)

or break the latch on the mobo

I never remember the actual name 😂

totally fair c:

I've called coaxial "round cables"

even the hid connecter is broken, fan missing

Which is funny when you're setting up a satellite receiver

and you look your coworker dead in the eyes going "you know, that round cable with the pin in the middle?"

i have been there

I've been given USB cables cause I've called DP and HDMI "rectangle cables"

cause I forget the names

Any of you ever made your own cat5e cables

Pretty cool experiment

nah, but a encryption algorithm

Nope, but I did splice together two USB cables 😂

I was too cheap to buy an adapter so I cut two USB cables, soldered the cables, and wrapped in heatshrink so i could have a male-to-male USB

Okay yeah that’s cooler

That same cable is also being used in production environment

which is Not Good™️

hi

Straight-Through, Cross-Over?
Shielded or Unshielded?

Straight through are the ones I did

nice

Crossovers aren't too different really

hallo mortals

hallo karma hows was the breakfast

i missed the breakfast ...i had to go to college for a report submission ;-;

i meannnnnn
as long as its not encountering any sort of high amps it should be fine

Yeah the ones I usually made were just in home router to pc/switch ones

It's a receiver for SATCOM gear

it's definitely going to fail eventually

hehe

usual for me ...i rarely do breakfast

same i do brunch instead :v

yes

degenerate gamers

lol

game dev*

hmmm same category

https://tenor.com/view/blender-3d-glitch-pixels-artifacts-gif-26391318

magic

yesh cube magic :3

blender

Most useful AI

what AI is even that?

Gemini?

That interface is definitely Gemini

ya lol

why i didn't get these type of answer

Because that's not how seeding, inference, and neural networks operate

https://cdn.discordapp.com/emojis/585635824884908046.webp?size=48&name=squint

sounds very familiar

👁️ 👄 👁️

We dont do that here

Cmon guys this is easy money

It’s not illegal

it is

Oh mb

If you use the report feature, the mods will then see it

Okays

:hammer: elcat1013#0 has been banned.

One message removed from a suspended account.

It’s not something we can discuss here in afraid

One message removed from a suspended account.

advanced channels only i guess

One message removed from a suspended account.

u need rank of 0xD on THM or official Certifications to access those channels

One message removed from a suspended account.

One message removed from a suspended account.

No

then?

If you hold an OSCP or eCCPT certification
Holding a recognised cybersecurity certification, such as OSCP or eCPTX (or higher)

got it

We don't really discuss phishing there either as it's illegal

Unless it's contract, even thehn it's not

One message removed from a suspended account.

And legal

One message removed from a suspended account.

Red hat is ethical and legal

One message removed from a suspended account.

Bruh

Not as often

However like I said, it's illegal to even try and phish

Red hat is a Linux distribution

You may be thinking of red team

One message removed from a suspended account.

This Distractions are getting me

I've seen articles where vigilante hackers are labelled as "red hat". If you follow that definition then its illegal.

Yeah all these definitions are people BSing lmao

i see

That's grey/black hat

Theses definitions say grey hat is who penetrates system without permission
while red hat is who hacks blackhats

Without permission...
It's black hat with extra qualifiers to make them feel good about themselves by feeling ethically/morally smug

It's all nonsense

yeah i doubt this is common lingo

never seen a cybersec professional use these terms

only whitehat/blackhat at best

This is why I believe it's important to call out these terms because otherwise the nonsense is perpetuated, then someone uses them in a real scenario and gets laughed at

Although, in fairness, laughing at people using them in a professional scenario is fun.

why do so many people use medium for ctf writeups

anything special about it?

they make money with

Sometimes, and also it's an easy platform

i see

discussable but not my cuppa xD

It's worse when they bring purple, green etc

does anyone know how to fix bind9 saying this
rndc: connect failed: 127.0.0.1#953: connection refused

im just trying to fully sign my ddnsec for my domain

hi, are there currently active coupons for access to aws azure cloud?

None at the moment.

ss -tunalp | grep 953

root@clumsy:/etc/bind/keys# ss -tunalp | grep 953
root@clumsy:/etc/bind/keys#

nothing

im on debain 12 btw

root@clumsy:/etc/bind/keys# rndc reload
rndc: connect failed: 127.0.0.1#953: connection refused
root@clumsy:/etc/bind/keys#
it keeps doing this

Then there is nothing running on port 953

oh see im not good at internal networking

ty let me allow tht port rq

systemctl status bind9

Failed to start named.service - BIND Domain Name Server.

Process: 268606 ExecStart=/usr/sbin/named -f $OPTIONS (code=exited, status=1/FAILURE)
Main PID: 268606 (code=exited, status=1/FAILURE)

You configured everything okay?

root@clumsy:/etc/bind/keys# systemctl status bind9
× named.service - BIND Domain Name Server
     Loaded: loaded (/lib/systemd/system/named.service; enabled; preset: enabled)
     Active: failed (Result: exit-code) since Sat 2025-05-24 09:26:29 UTC; 3min 16s ago
       Docs: man:named(8)
    Process: 268606 ExecStart=/usr/sbin/named -f $OPTIONS (code=exited, status=1/FAILURE)
   Main PID: 268606 (code=exited, status=1/FAILURE)
        CPU: 44ms

May 24 09:26:29 clumsy systemd[1]: named.service: Scheduled restart job, restart counter is at 5.
May 24 09:26:29 clumsy systemd[1]: Stopped named.service - BIND Domain Name Server.
May 24 09:26:29 clumsy systemd[1]: named.service: Start request repeated too quickly.
May 24 09:26:29 clumsy systemd[1]: named.service: Failed with result 'exit-code'.
May 24 09:26:29 clumsy systemd[1]: Failed to start named.service - BIND Domain Name Server.
root@clumsy:/etc/bind/keys#

That's what it says

Do you need to install/set this up in root?

I'm trying to sign my ddnsec

like the domain is up and configured properly but the ddnsec isn't signed and idk why when it should be

@knotty valve how's it going in naham?

Not running Naham, doing HackOSINT

And wishing they gave somewhat more clearer formats

oof

I THINK POSSIBLE

Hey guys

Had to reset our attempts 2 times as well

So that means we lost out on quite abit of points

Does thm have a more phone focused security path?

not really, there's some rooms, but not a path

Do you know anywhere where I can go more phone focused

not really, cause it's pretty advanced stuff

Doesn't help I'm doing this mid breakdown

Okay

Take a break for now and we can continue in a couple

all my phone knowledge comes from working with it and knowing people who are in the scene to get help from

best cyber security learning path?

is there any channel where i can ask questions? like how do i do after learning the basics of computer networks?

Soon ™️

https://tenor.com/view/bouncing-walls-gif-10159740

Cool

Ohhhh, I knew that android room was a hint to something

@rapid merlin do you know cyber security and now want learn phone security or you just want to start with phone?

Is all the modules of thm free?

Also why would phone be considered advanced

Just another system

Different systems, can hold more sensitive data, telecomm laws, GPS tracking, etc.

I am just pivoting

You can track a phone's location more accurately than you can track the location of a laptop

Yeah I know

And depending on how far in you go: There's systems like Secure Enclave and Knox

Which don't exist on 2/3 PC systems

cause the phone is harder to get into than a computer?
your phone is one of the most by default hardened and secure devices you can get your hands on as a normal person

Tho tbf, you could argue secureboot and TPM falls under Knox/Enclave

oh

Fair, I’ve done some forensics on my phone but I need more knowledge on the system and how it works

graphene OS ❤️

bit annoying but it work like charm

Now the true question can I run it without losing telecomm functionality

I would recommend never doing anything on your personal phone, cause it can and will leave it more open and insecure

my work phone is graphene

i wanted to install it but i got samsung

my work phone is iOS

It doesn’t matter. It’s already been attacked so while I’ve got it I’m going to investigate it

Plus’s live attacks will make me better at security won’t it

for work phone all depend on company rules. some is ok to bonk the original os some not so much.

it won't

Yeah it’s a personal phone though

you are in a war

my work explicitly tells us not to:

• side load apps
• jailbreak
• install software like Cydia
• install certificates without approval from IT and upper management
  And so forth

and if you're that really keen on getting it investigated and figured out if it's being attacked, go to a professional and get it tested or the cops, there's someone who can help you

instead of going rogue

You don’t think dealing with in world attacks is better for learning than answering questions online

that's ok, and all up to company rules. i also have list of DO NOT DO things

Once you know what you're actually doing without threat of damaging your system further, yeah sure

The police won’t actually investigate anything unless you’ve got solid evidence

🙃

In England

Maybe it’s different where you’re from

but also: Coming from someone that loves forensics, you're gonna miss something that a team of people trained to do it will find

Yeah I know that’s why I really want a job

my R&D part do not allow us toi take phone out of our pockets when we are inside. if we get call we need go outside

Because I know there’s stuff I could learn so much better in a team

Same, but not just R&D, it's the entire facility

But I’ve still got to start at support desk

😑

what I am saying is, you don't know where to start with this, and can put yourself in more harm than good, and even then you wouldn't be able to see "live attacks", many of the so called attacks that happens on phones are zero click that you wouldn't be able to recognize or see, and the phone area of cybersecurity is so lucrative that you'll need more than just basic knowledge of phone forensics to find out if your phone is infected.

if you need to call someone in the company, you have instructions on how

hello

Yeah I’m stubborn.

Sometimes its as simple as a bad cert, or hidden app, other times the entire exploit runs in memory

And if they're working from memory, well good luck finding it without a device directly attached, airgapped, and having all the tools and knowledge to be able to analyse it

Most of this persons exploits have been run at the core. I remember my bios was effed on my pc. They’re running before the system at above admin priv it would seem. I’m still interested in studying it 😛

https://tenor.com/view/monsters-inc-books-mike-shoved-gif-10486164

OM NOM NOM KNOWLEDGE

I love cornflakes

Crunchy

then you start with bios

Don't touch the BIOS™️

that'll either destroy your system or give you one hell of a repair job if mess the volts

will VM help here?

I tried 😂 I turned off my computer and went to bed. When I woke up I found my pc on and the folder left open on my pc.

https://tenor.com/view/happy-halloween-gif-12849861831894812

Genuine question

Anyways we are getting off topic

Is hacking going to get replaced by AI or AGI one day?

I still want to study phones

AGI is not for at least another 100+ years

Let me check my crystal ball 😂

and AI has given security people more jobs

I don’t think anyone knows

I'm kind of anxious by what's happening with software engineering

Especially red teams

How can you please tell me

Nothing has happened to them lol, most companies prohibit the use of LLMs in code due to the excessive amount of bugs, vulnerabilities, and lack of complaince to coding standards that it introduces

why?

Nor can it produce correct code

hahaa

But people do say that AI is advancing to the point that they will be replaced
Microsoft just laid off 6000 employees

1. Compute
2. We barely even scraped the surface on anything to do with cognitive behaviour and reasoning

People said NFTs are gonna be the next big thing, did they actually work out? no.

Don't believe the blind

I've always loved hacking but I was pushed to be a software engineer and now I saw how AI is eating every thing
It's making me anxious if my passion will get eaten too

otherwise it's just going to be the blind leading the deaf and you'll fail at your own job

what about if quantum computer is used to make AI and then

Yeah, maybe in the next hundred or so years when we can actually make a usable and scalable Quantum processor

not gonna happen for quite some time

Then should I follow my passion?
Ever since this AI came I'm having second thoughts for everything

You're gonna have photonic processors before quantum

Look at it this way:
If you don't follow your passion and AI takes your job, you didn't learn anything and getting a new job is now officially A LOT harder
but if you followed your passion and somehow AI miraculously takes jobs, you learnt a lot in that time and are more well adapted to work in new fields that have developed

@rapid merlin guess who was right! Someone stole my debit card details 😂