#general

-unmute @atown_68465

Unmute <User:Mention/ID> [Reason:Text]

Invalid arguments provided: Improper mention "@atown_68465"

Am I a SKID ?
:8ball: My reply is no

Did they leave smh

how about me
:8ball: As I see it, yes

fuck

🥺

Just some information we don't want anyone on the team to know.

lol they actually did.

then dm the people u want to know on discord ?

league of legends team *

Most encrypted applications should be more than enough

if it isnt illegal discord cant share ur dms

What word did they trigger out of curiousity?

They said “nvm” three times which triggered the raid protections

Oof

oh

😐

Are the raid protections just for spamming and stuff like that?

Or does it have other functions

applications like what ? i am sorry for all this questions

LMFAO

I got muted for speaking in arabic before 😐

Signal? WhatsApp?

hello qwerty

Elloo

thanks ❤️

Gave +1 Rep to @mossy river (current: #6 - 1639)

is telegram encrypted ?

I'll answer ur dm once I'm back

It’s to stop common bot/ raiding behaviour but unfortunately catches normal users

okay thank youu

Gave +1 Rep to @bleak quartz (current: #279 - 28)

enjoy ur trip

Hm

No clue

Teleeeegraaa

👍

has to be

So I believe there was a thing that passed where telegram could be raided by the police now

My advice? Don’t be an NPC

Though, signal is pretty good

NAHH ban the ball

I asked if cats are cool

It said no

BAN ITTT

Dogs >

well most egyptian hackers use it for illigal stuff 😦

https://tenor.com/view/gmias-kuchey-oblivion-gif-22010830

it must be a bug

not really

Yes

everyone does

thx

Gave +1 Rep to @bleak quartz (current: #277 - 29)

i dont thin kits bound to egypt

There’s a reason why Telegram’s creator was in trouble

but it is mostly used for malicious topics so i do think its encrypted

Research more on it bte there's a bunch of nice settings u can change

Wasn't he in trouble with someone from france I think?

They got in trouble alot, during cyber crimes they completely refused to share any information

Ye account data deletion after being offline for x amount of hours or days

Was one of the questions authorities had

It nuked the entire acc leaving authorities with nothing

i mean most of its users are malicious, and after all it is a company

so it cant really

loose those people

No they're not

a considerable part are*

I've friends from Russia and other places where the gov watches everything they can

hello

me hack too

And try to censor and limit access to outside world

These apps allow them to talk

ohh

Yes true

Is it true that China has cameras installed in people's houses too?

Yeah when dc got banned in Russia I almost lost contact but realised telegram

I also helped him to find a VPN that did allow access to dc

As most of them are also blocked there

Cuz of random things their gov keeps on putting up

for what reason was dc banned there?

Officially for having so much western propaganda and LGBTQ+ (Which they hate for wtv reason) but in reality it was for allowing ppl to speak freely (they hate apps that do that lmfao)

U can research it more

This is just what I remember

Ahh

Just random bs to limit access to outside world

tbh thats very sad

Yes

Does DC mean direct connect?

Discord..

Oh

I see

Makes sense

Haha

Privacy brings freedom but it's upto users to decide how to use that ig

Just saying it's a "bad and red flag to have" is insanity

And delusion

(Looking at you swedish police who made an announcement on this)

😭

i mean to be honest, the com community has been growing

No

Question:

If I run a VPN client on a webserver configured with DNS records would it still be identifiable when running the VPN client?

That's just propaganda

bruh chatgpt roasted me while checking my code for a typo 😦

Yesn't, using a VPN client on a web server only hides outbound reqs and traffic. Server itself remains identifiable via DNS records, exposed IP, or just shityy config unless you proxy ur inbound traffic and mask DNS to prevent the IP leaks and DNS leaks, just remember that you're never fully safe and someones always watching

my name is someone >P)

Good to know

This one comic I read had cameras in a hotel room

It was a chinese one

That's reassuring though

hey guys ik this is super random but ive just started my journey into cybersecurity and ive missed a class where they where using the amazon aws

ive created a http server ( public) and database(private) i ssh'd into http server already using my key which i transfered using scp -i EC2_ubuntu.pem EC2_ubuntu.pem and now when i im in the ubuntu machine and i try to ssh into the databases private ip it doesnt show anything no words and 2 minutes later it says ssh: connect to host 10.0.0.223 port 22: Connection timed out

if someone could help me i would greatly apreciate it and i will be in ur dept 🙏

Copy

If I want a target to connect to the webserver (think reverse shell for example). Would the webserver identity be logged by the target or the target's implemented security measures?

Getting my news from telegram

😂

I love Telegram

But I had to turn off notifications because the world won’t chill.

Would talk to internationals that I wouldn't be able to talk to

Iranians for example

Chinese

Their internet is very restricted from what I hear

I miss those convos tbh

Easy to talk to someone in Canada or Europe

Someplaces tho, not really

Only place I talk to people is on discord

I use Discord and Telegram

Been using them for years

With Telegram I would find English learning channels as they had the most mix of internationals

Also I kinda knew the owner of one in particular

#room-help message
can someon check this out?

Yups, if the target connects to your webserver (like via reverse shell) The target or it's security systems can and most likely also will log the server's IP, hostname, TLS fingerprint, if HTTPS was used. Revealing it..

Fuck

Copy

Why tho lol

Fortunately this server is part of a test so no real problem

But was hoping to conduct my little project with stealth

Ah alr, I alrd almost thought u had some other plans

The webserver is hosted on a laptop lol. A basic DOS will shut it down np

Haha alrr

Hell normal traffic will do that too

It's a laptop xD

Nothing to a full fledged server

But yea, I 3x laptops

One is the attack device, then there's the server, and finally a Win11 laptop

Which is the victim

Attack laptop is a 2022 Acer Helios 300 running Kali

Is it necessary to learn the fundamentals of Windows and Linux, or is just one of the two sufficient

Victim is a 2024 MSI Raider

Both are highly utilized in the field, so yes

Also if you know Linux commands, then you also know iOS/MAC OS

That's a cool setup

Useful

Necessary for later on

And also great

So why not

Sorry, I didn't see this but yes AGREED

I wanted only learn Linux but if it is also important to learn windows then ok

Most of your targets will be win users

^

Big time

The servers tho, will probably be Linux

Yup

But the initial access via victim pc is usually via win

Hai! :)

(Yes!)

Hi

Not that kind xD

https://tenor.com/view/spongebob-spongebob-squarepants-spongebob-meme-spongebob-movie-sponge-out-of-water-gif-9214479226856959024

Whiskey is my meditation

If I post the URL of my webserver would you guys want to check it out?

It's a simple index.html for a fake cybersecurity firm. All made from raw html cause I was bored at work lol

Also, I am kinda curious on the amount of traffic it can handle before crashing

Cause its... a laptop lol

i just hacked thm, again.

I'll show ya a real trophy but I would get in trouble by the mods lol

https://tenor.com/view/catdance-gangnam-style-cute-cat-gif-11020797830010762324

@fervent meteor

I love seeing the christmas pfp show every now and then

Actually, may have lost it, cause I have lots of USBs and idk which one has the files lol

What project what

thm needs to up their securty.... too easy!

Little war game you could say

Free admin on THM 🤑 🔥

https://admin.tryhackme.com

loll

embed failed u

https://tenor.com/view/silent-indian-gif-23263843

https://tenor.com/view/fbi-fbiopenup-carlwhitman-gif-19586039

I've completed the entire learning path to SOC 1 (SAL1). I paid for my SAl1 exam, but i'm too nervous to take it. There was so much covered in the learning path, i'm unsure what to study for. Any help, tips, or advice is much appreciated. Thank you.

Keep digging

You haven't hit the treasure room yet

I really like how thm is adding more macOS rooms, I barely see any type of resources for getting into macOS security even though it's forensics, still cool 🙏

does curl get the html code of the page?

Yup

is it a tool or a linux command

Can also do it in the browser

It's curl

whats the syntax for that

No syntax, just right click and select "page source" I believe it's called

Yea, page source

Or Inspect

No wrong way with those 2 really

oh i thought u meant u could type it in the url thingy

view-source:url

Na, that would be more code injection

ah

Try a Traversal attack ^_^

/../../../../

what that do

Or

//..//..//..//

It will expose the servers directories

Assuming it works

/../../../etc/passwd

For example

Actually

/etc/shadow

cant u just go into the sources tab

(If linux)

Nope! Wish it was that easy

Not the same

I like how people still call me stealth even after I changed my name

ill read more about that

It really stuck

stealth is sucha coll name

cool*

If properly done you can access directories on the server itself not just the webpage portion

Nah

but a website can defend agaisn tthat right

Yes, most do

Its not so much an efficient attack.

But it does work fundamentally and may work on low-level sites

i mean its good to know for ctfs or unprotected sites

and just overall learning

ah

A modern problematic attack vector im currently testing is HTTP smuggling

whats that?

That can bypass most security systems if done right

does it ahve to do with checkign the http response status or something

Nope

what it do?

You just need the user to click on a .html

When they click, have it disguised obviously

Have it auto download an infected

a file? or just access a website

File

File

Email it to them is common

so it sends a request to ur device or server or whatver and when ur device server wtv gets request it emails to targeT?

No

You email an infected html

oh

That has an encoded malware disguised as something legit

It opens on their browser

And if set right, auto downloads the real malware

Which can be anything

Usually a base64 encoded powershell command assuming windows

how will that run

i meant the real malware

that got downloaded

Its is save into the html file

Its technically part of it

Like a

Sub launch

ohh

However this requires social engineering tactics to be successful

thats very smart

After all you want the target user to infect their ownachine :)

but cant they check the ,html 1code and realize it auto runs something that it downloaded

Depends

Http smuggling can bypass most AV and filter checks

Cause it's not a program

.js can evade lots of stuff

If it's something like .pdf yea good luck lol

You want to use file formats that modern AVs and browser filters don't chwck

i mean wouldnt this be the same as steganography? but steganography is more affective

No

That is infecting a file with malware

Http smuggling is the malware

ohhh

i understand

But you have to disguised it. Hence social engineering

yeah social engineering might be as important as the whole entire propcess

cus if they decide to check the source code

or sus;pect anything

it might nto work

What are u doing airports just naming every vulnerability

Exactly, but most users are too dumb to consider that ^_^

true

what

and u didnt send me anything

unless u msitaked me for someone else

That is an infected html

(I made it)

looks nice

Looks kinda real, huh

it does

Real enough

Exactly

im gonna go make a cup of coffee then chill a little

then ill go back to OS fundementals

Hi yall, I need help with something in tryhackme (OWASP top 10) room. On task 8 (cryptographic failures(challenge). It’s asking me the name of the mentioned directory of the website they gave me. I am having a hard time finding it. Don’t give me the answer but clues of where I should look for it. Please and thank you!

#room-hints

Thanks!

Enjoy 😊

Hey, anyone available to collaborate on a program where I have found an endpoint where its integrated with jira/confluence and it seems like I know nothing about how to proceed with it. Please let me know. Thanks

Thanks! and I see your back to ur old nickname 👀

Gave +1 Rep to @sacred shore (current: #408 - 16)

It's kinda a broken login session but I lack a lot of skills to find something valuable here. Please please let me know.

So should I call you Stealth now?

Salts

Stealthy salts

Hello Abdul!

Hallo brightly

Hello

Hows it goin

Hallo jazzy

How are ya

Hello Bee!

How are u

I'm not great but surviving

Great wby

Who isnt surviving

Lain pfp

oh man owasp top 10 rooms are pretty fun and interactive

Those who are dead

😮

So most of the ppl

ya

https://tenor.com/view/lain-serial-experiments-lain-skill-issue-lain-skill-issue-lain-gagnam-style-gif-13023857223177288732

https://tenor.com/view/lain-experiments-gif-202687086491934216

https://tenor.com/view/silly-lain-serial-experiments-lain-gif-8068692205073054215

https://tenor.com/view/fop-fox-deploying-deploying-fop-deploying-fox-gif-5791609786966551582

What ya doin jazzy

Hallo mints

yallo!

Hows the mintin goin

goood, actually getting to spend time with my bf today so i'm pretty happy

👍

Manner

What’s up abdu, slave, darkfly

?

😭

Hallo man

Hows it goin

I mean u chose your own username didn't u

The name he shouldn't use hehe

Good went to the zoo today

Yoooo

And you ?

Did you fight somethn?

Yeah the sun

Hmm sweatin bullets

i made my bed and i am now laying in it

Nothing much

Ooke

Hot out ?

Yea

hi guys

https://tenor.com/view/the-grind-dont-stop-gif-26421494

Hallo

Yeah same here… I gotta get back to my doing my dscout interviews

20 more private

Made 100$ this month from this app

Yooo

hiya! welcome!

Doin interviews

I leave for 3 seconds

Whatt

https://tenor.com/view/inugami-korone-processing-thinking-pondering-calculating-gif-24147534

Nice, keep it up

World moves fast mate

Wall of text

Time stops for no man

https://tenor.com/view/ferris-bueller-ferris-buellers-day-off-matthew-broderick-john-hughes-1986-gif-21664366

Look at this , 600 bucks for a friggin interview

Hehe

wut

Well life at least life not commin twice

Did you withdraw the hundo

https://tenor.com/view/group-chat-gif-6444830920886154303

https://tenor.com/view/confused-confusion-meh-bunny-rabbit-gif-19003098

I didn’t qualify , they need very specific peepl - I got denied at owning my iphone for less than 1 year

👀

that's crazy

Slide the app name :)

But if u match the parameters it’s really easy to make some monies

Dms

I'm so confused

Dscout, I think it’s USA only tho

Not sure

Fuuck

Ahm proxies

Nvm it works everywhere

Searched it up

Cool thanks

I just do the AI ones because we have an edge vs other people on those

Guys what u think about smh toolkit

And the big ticket ones

That and the express ones are good qurti

Oo

Smart

Lmk if u make some monies

Alr bet

Ayo lemm in

Anyone here interested in collaboration?

Yes I’m you’re guy

@crystal mauve dm you?

Hello Stormz!

Do u guys do anything online for side monies?

Hehe

Too much scam here

Where at?

Like 96+ scam at least the ones that are easy

Bro anybody please?

Why wassup?

Yoo

U can ask here sir

I need help with an endpoint I found and I think it's juicy. It's just I lack skills

I did

Is this for homework ?

No. It's an actual program live on intigriti

Oh I see what’s the payouts like on there

50-500 euros.

Good one

Please let me know or at least if you can guide me. Please!!

Manner go do stuff like this

Can you help?

No man i have got no skills in the web dept

Know someone who does, maybe?
I really need help bro.

Shit maybe one day , I have no experience with actual bug hunting

Hmm

Ok bro thanks

https://tenor.com/view/wow-oh-my-woah-whoa-cute-gif-4765390319311889096

Mornin karma

Hello karma!

Morning

Ello

morning karma!

Morning Mints!

how goes this fine morn

https://tenor.com/view/good-morning-goodmorning-morning-coffee-good-morning-cat-gif-14825251408147584085

Hi

How're you Stormz?

Sleep ruined coz of roommate

Storm guy

Im good

Hii

Hi

Hi

Hallo

Is he sleepin now?

Play some doom music

He'll think the demons are coming

Better yet dress up in a black morph suit and then stand in the corner

https://tenor.com/view/doom-doom-slayer-doom-guy-doom-eternal-crucible-gif-19831598

Now I'm in the state of being sleepy but not able to sleep

i like to sleep on stairs, idk if that'll be useful

Nehhh dum sleeps whole day
, then whole night causes noise and light pollution

Hehe

Damn..not a bad idea but it's cold n rainy outside lol i wanna stay in my blanket

Fallin would be fun

warm and cozy is so real

Hm

https://tenor.com/view/cat-wave-vibe-vibing-vibin'-gif-7210982161480492538

https://tenor.com/view/spray-bottle-cat-spray-bottle-spray-bottle-meme-tiktok-gif-25591053

Welp ill prolly only need to go for 60 minutes then

Lol

Oops mis tap

speaking of rules

while doing rooms and shit how often should i stop to take a rest or do something else

What rules

to avoid burning out

whatever it is man

just anseer the question!

Ah ok

I fall asleep when I feel tired usually

But I think the pomodore rule exists I think

That's upto your capabilities, if u feel tired or think that you're not able to grasp more knowledge stop and chill

I can sit whole day coz I have habits of Hackathon working 24-72hrs non stop no schleep

oh u were at hackathon?

9X WINNER HOLY SHIT

is that for realsies

Yes

Degenerate gamer

no way thats insane dude

how was it like

was it CTFs or

Thx

Gave +1 Rep to @lavish rune (current: #620 - 10)

Development based

ooo

My team combined has 18x Wins

We do in various domains

oh wow

to think that u have half of the team wins is crazy

i lowk feel like im learning overly slowly but ngl i just realized theres no such thing as that

i have a clean roadmap which wont take more than 3 months at very slow pace

and then ill be able to do CTFs comfortably

Everyone has their own pace of learning

As long as you're learning well it's all good

hopefully i dont give up like i did last time, although I was dumber with less experience and abilities and no roadmap

yeah

Yeah just stay dedicated and regular at it

windows fundementals rooms are pissing me off tho.

they are my new nemesis

year room exist

only useful thing ive learnt so far was ADS.

Welp

Active directories?

alternate data streams

OH ok

but i still wanna finish it accurately even if it takes time cus i dont wanna miss out on any info

i wouldnt have been able to learn about ADS or some msconfig tools if i didnt, so

up we go!

Do make notes too

i cant wait to get into the OSINT rooms

oh 100%, i take notes for everything i feel like i might forget

There are like 3 man

That's it

Good good

yeah i know but each have alot of tasks you know

and they are good and practical

Lol

for beginners

😠

Chill man

Am a beginner

👍

i mean fundementelers

Novices

Oki

yeah

apperantiece

Apprentice are beginners

shi

Anyhow

where are u from people

the 2 persons in the chat

personals

personen

whatever it is

oh thats not the brightest question to ask in a cyber sec srrver

lel

anyways

Lol

Sleep man

ill go continue the windows fundementals 2 room

it isnt the brightest

unlike me

EARTH

i have devoloped a batman schedule

sleep at 1 pm or before and wake up at 9

then go gym and come back at midnight

them thm for 4 hours

So you look happy ay night and look like an addict in the day

with breaks

then 1 hour of bullshitting around

and then 4 hours of god knows what

then sleep

Will do after breakfast time

very practical

do u live in the North america region

What ya doin in the gym for 3 HOURS

Neh

no i mean cus ill wake up at 9 so its like 30 mins realize im awake and eat then go to the gym its kinda far so takes 15 mins

then coming back also takes time

maybe groceries

Hmm2 houds of gym

https://tenor.com/view/cute-nft-strong-buff-pudgy-gif-26256525

max is 1 hour 30 mins

Tuxy boi

how old are u guys

if its not too classified

22

are you younger or older than earth

oh

nice

my prediction for abdullah is 16 17

he talks young

https://tenor.com/view/anya-forger-no-shake-head-oomfie-spy-x-family-gif-12270234514172102325

Heh

i dint think he will tell me his age tho

Man here i was trynna blend in using slang

cus he plans on becoming mr robot

and doesnt want to reveal too much

Hallo nex

i know you abdullah.

im under ur bed

in ur walls.

i can still be in ur walls mate

😠

Nope

i have a hidden camera that blends in wherever u live

Hello

Just lurking in the shadows

Wouldnt work here

Cool cool

u wouldnt know

i have very advanced technology

Ik

from the koreas

My house is a literal faraday cage

No signals man

Koreans hmm

nah

the koreas.

Hmm

Nah man the only good thing they have is samsung sony, lg

Hallo hydra

Hello Hydra!

Ello ello

https://tenor.com/view/red-s-skull-hydra-hail-hydrate-avoid-headache-gif-12265245

Sup abdu, dark, karma

https://tenor.com/view/hail-hydra-hug-whisper-gif-15191725

Nm , chatting in here

Chillin in 40c wby hydra

Nth much

Dead chat bruh

Lol

https://tenor.com/view/v2-ultra-kill-dead-chat-gif-27002020

Lop

Goofy ahh kids

Dead ahh chat bruh

ong b rah

Who are you waitin for hydra

Someone😅

where is ash el mexicant minty zombie and all the good people

they always yapped

in the chat

Ikr

Miss them

Sleepy

https://tenor.com/view/may-they-rest-in-peace-maurice-sistas-may-they-find-eternal-peace-rip-gif-8775413791280919594

Ashley might be alive tho

i think her name is ashyln

big difference

big difference

I think her name is ash

Close enough

If it doesnt piss em off

Its A-ok

whats a ok

hm u talk 19

ye im locking it in

ur 19

Abdu is 19😳

aw you miss me?

I lowkey thought he’s 12

zombieee high

hi*

he talks old

minimum 16 id say

:3

how ya doing?

good good

you?

flying

amazing

My social credit is 666 am I cursed? Lol

yes

Not at all

had to make it a gif rq

so cute

Man i dont use that immature talk

👀 illegal stuff

How did you come to this conclusion now lol

oh so ur younger

hmm

16-18 is the range

locking it in

unless ur egyptian

then ur 15-19

Never said that

What

Ur approximations are bad

theyre accurate.

well uhh

Militarized plane

Def illegal

Play simulation mode

Na

is this really illegal?

Hmm

It can be legal

Just make ur own state

And become law itself

halfway through the misery called windows fundementals.

(this is no where near misery)

Chill man

i am exaggerating for the sake of a reason i dont know.

Chill

https://tenor.com/view/silent-indian-gif-23263843

Cap

Prove it

proven

gg

ur done

I ain’t the Feds

Welp stay silent forever then

https://tenor.com/view/nev-nevolent-owl-gif-26700423

Oh sorry I forgot to give u the rep, thank you.

Gave +1 Rep to @sick lance (current: #2 - 3860)

has anyone here ever done the Sec+ online? how was it like?

my registry editor isnt looking right for whatever reason.

?

that was the default whenever i open regedit

thats the first thing i see

and i cant find my way back to the default

it always starts at the same state, this

Just remove everything so that HKEY_CURRENT_USER is there

last time i opened it was while ago

yeah but it still boots up with whats shown in the image

🔊 Unmuted bonesxalt

oh what its fixed now, thanks @ripe sleet !

@granite jungle Don't try to ping everybody in the chat , bot will automatically mute you for that

Member not found

Member not found

rip lmao

?

rip

It says that they're still there though when you click on their profile?

they gone now :v

very tempting to do 1 more room to finish windows fundementals and also level up

but im too lazy, i finished 4 rooms today, ill probably chill a ltitle then do the last windows fundementals room.

Hm

okay now you can say dead chat

Ded

:p

o/

https://tenor.com/view/cat-hello-cat-peek-cat-door-cat-peek-door-gif-17361470248875227911

Hallo mints

Zombs has arrived

does thee have snacc?

haiiii

🍪

MInts eatin cookies fired

Hm

https://tenor.com/view/cat-gif-12450451651611168773

my skirt is coming today btw :3

yayyyyy

i was gonna wwear that outfit i showed you but the market got rained out 😭

What kind? Pleated or??

https://media.discordapp.net/stickers/1226608001536884768.png?size=160&name=hina+cry

yep

Good stuff

integrated shorts too so no pantyshots

Good

oooh i need one with these, im just using some pride dolphin shorts atm lmao

real lol

i prolly gonna buy a pair of bike shorts if i'm wearing a skirt that doesn't have it

im rocking these

ooohh thats really cute

what we thinking?

needs more lincox

Lawliet

😔

the goat

Cap

https://tenor.com/view/lelouch-code-geass-anime-anime-command-command-gif-22023710

https://tenor.com/view/johan-liebert-gif-16892235470609608577

this is my desktop :v

Ahm

oooh i like that organization

Minecraft

tbh i like to keep my windows pretty simple

And too organized

Ew

o

White background

we're sharing desktops now?

idk i find it relaxing

yeah, show us urs

:3

Which monitor?

Middle, left or right

yes

u have different ones for each?

all of them

all

ye

Bet

ooh can i show too?