#general

I see, alright thanks

But the last time I was doing Bloodhound stuff was prior to this whole change

Honestly, I do a lot of blue team stuff at work and only a bit of offensive, so just a decent AD audit tool like PingCastle/PurpleKnight goes a long way in clearing up low hanging fruit

yes, Bloodhound is not a soft I use often but I've heard about the shift

PingCastle has been invaluable in helping to secure the couple of AD enviroments we have left, we used to have way more, but you know how things are going

Nananananna

me too I used to do more blue than red

would you guys consider PingCastle to be better than Bloodhound? given that I only have the community edition

I found freaking Kerebostable Domain Admin account due to being used to run an SQL service back in the Win 2000 days, which, those servers obviously don't exist anymore.

No, different scope and purpose

Both are AD auditing tools but PingCastle is more focused on "here's some major things wrong with your AD setup", compared to BloodHound which is a good bit more flexable about digging even deeper

I see...

what about plumhound?

Couldn't tell you, I'm not familiar

Anyways that was satisfying as heck to resolve, massive security issue that had been lingering for 20 years

probably still out there somewhere, you should be surprised. A few months back I read an article that said that a lot of the air controller still run on win 95 🤣 after reading that I don't want to enter a plain in my life 😛

And yeah no real way that would be obvious without actually using auditing tools or doing pentesting

I see, thx for the info tho

https://tenor.com/view/clapping-clap-applause-standing-ovation-gif-15648815

All this being said, I find AD/GPO monumentally easier to manage than Microsoft reinventing (and constantly renaming) the wheel as with Azure/Entra ID

Plus, "whoops, you want this common feature that you had on-prem, guess you need an Entra P2 license for it" and things like that

Or "gotta use Intune for all the things that GPO did better"

air controllers is critical software, to update they need to shutdown the airport so the cost of doing that is astronomical, it's a miracle that plains still on the air I must say 🤣

Microsoft rarely does something well but AD/GPO is an example of how it was already perfected over 20+ years. And it's just all thrown away. That's not to say it's secure by default, sure isn't, but doesn't take a lot to get it manageable

That's fair, I have some horror stories about administrating airports but won't get too much into that lol

Mostly smaller Fixed Base Operators though vs major public airports though

I know this is cringe but does anyone have a good idea for what stickers i could put on my laptop? aside from the usual red team, bug bounty etc.

nice! i mostly play retro games on my trimui pro. will have to look into if i can get retroachievements set up with it. latest retro games i have been playing is golden sun and mother 3;

aesthetics is not cringe;

imho none, but from a young age when my younger sister put stickers on places they shouldn't go, I've since associated then with "gross"

design is a huge part of what makes life worth living;

I can appriciate people who plaster their stuff with stickers but it's not for me

asking for stickers recommendation is cringe af 🤣

Hey I wouldn't go that far

1 sec while i take a pic of my previous laptop (i still am deciding on stickers for my frameworks laptop i am currently using;

But yes, most of them are very self motivated by what tech and culture you are passionate about

no comment :/ (lol this is in reply to a deleted post)

I'm from south east asia, So far, the only option i found is customized stickers with hologram finish. No one makes actual cybersec stickers

If you ask others what they are passionate about, then what are you even gaining by customizing your laptop like that

nice I wanted a framework laptop seems like a great idea sadly they don't ship to my country

Wow that's packed, but I respect your choices of media and etc

ooh i would love adventure time. thanks for the ideas

Gravity Falls and Adventure Time are for sure among my faves

Aliexpress is great for affordable sticker packs;

Needs more Steven Universe and Infinity Train but I am bias as you can see lol

This was like 7 years ago laptop iirc;

(my avatar is Tulip from Infinity Train)

Oh and The Owl House, if we continue on the western animation thing

Yup s1-2 i liked, 3 and 4 were a little weird though;

obvs love your Ghibli stuff but that goes without saying

Just fewer western animation fans sadly

lol of which, we mentioned a couple

your profile pic here reminds me of Dora the explorer 🤣

hush, again it's a character from Season 1 of Infinity Train

Dora has black hair and is a little hispanic girl anyways

one of the things i most want to do with my quest headset is play around with virtual posters;

basically turn my walls with ar into postered walls using the various memes and posters i have saved;

or you know, you could do that irl, even in rented apartments without damage

I know but somehow that pic gives me Dora the explorer vibes 🤣 maybe it's just me because I have no idea what Infinity Train is 🙂

i did back in uni, i don't have the mobility i used to;

Probably because it's been delisted saldy and flew under the radar as a result

plus i like vr, its a part of the real world too;

HBO/Warner Brothers wanted a tax writeoff and not paying royalties :/

real just means it exists, not that its materially existing;

that's why ideas are real even if they are all in our heads;

memories are absolutely real too;

that is a huge ghost for sure

I love this android feature

anyway its something i do with mindpalaces already, so doing it with ar is the next logical step for me;

a friend of mine is working on stardust, a linux based xr os;

that's not Casper 🤣

Honestly besides getting to experience Rez in VR, nothing has really capitvated me

one of the features i am most excited for is ar desktops and walls, where you can spacially arrange digital posters and even 3d video in space;

But fair we have much older VR hardware

look up boneworks;

also if you like anime, highly recomend the series dennou coil;

I don't think you understand, Rez is a synthenisa inducing full sensory experience that was only enhanced by VR

to me that series is what i envision when i think of what xr is capable of;

Maybe I misunderstand what it is, I just heard it was like VR chat or something

if you just want cool vibes, the tetris vr game is good apparently;

boneworks is a full narative video game;

Tetris Effect? That's by the creator of Rez, yes

with vr you can have blockout 🙂

VR is just too much hassle and I refuse to sell my soul once again to Facebook after I broke all ties with them years ago

that's why i like stardust;

completely linux based alternative os;

its still work in progress but i am big friends with the dev for it and it gives me hope for what xr can be;

I'm not giving Meta/Facebook any money to even entertain the idea

you don't need to use a quest to do vr;

there's other options;

That's fair, I just don't have a great need for it

i happened to get a quest but that was a used referbished one;

and yeah for me i got it to help with testing vr on linux;

and to play escape room simulator;

blockout with vr sounds great 🙂

vr atm is the main games i play that aren't retro;

besides genshin impact;

but that game is literally free for me;

i just play the game and explore the zones and i have gotten nearly every character i wanted in the game so far;

No comment

lol

https://www.reddit.com/r/trimui/comments/1d7sapt/retroachievements/

My feelings about gacha games are too complex

huh looks like i can add retroachieves to my trimui pro;

might try adding an account so that it keeps track of the games i am playing on it and its achievements;

If you do, feel free to add me, but yeah this is old school so I have to add you back lol

For it to be reciprical

I'm not into games at all, for me game = solitaire or mahjongg, once I used to play carmen san diego, sim city and civilization 🙂

also looks like it doesn't count it while i'm on the bus playing it unfortunately. ah well all the more reason for me to set up my gaming pc with retroarch so i can play it at the couch as well;

i love board games;

to this day tabletop is some of my fav experiences in gaming;

I mean those are great games, yet you mention being huge into Genshin so, I mean that is a major mainstream game too

unstable unicorns is a game i play a lot;

nah that was me;

Yes I played a ton of tabletop RPGs with friends back in the day

board games I used to play chess and go when I was a child

yeah i still want to learn go in more depth;

Oh I just saw the yellow and Replied to the wrong person lolol

i know chess but there's so much bots and people who play chess online lately i feel like if i don't read books i can't even play at average levels;

also i am bad at memorizing;

a sea of yellow 🤣

Yeah I would rather not memorize a ton of Chess openings and etc lol

i used to be good at it with memory palace stuff but haven't been practicing since too busy with notes;

luckily logseq has made notes a lot easier and i can use that to help journal;

I used to be a member of a chess club when I was a child/teen

hate how much that term is associated with freaking awful Steve Moffat Sherlock

same, i was the worst of the school lol;

Play bleu in chess

It's very hard for me to hear memory palace and not think of Steve Moffat's awful showrunning but that's just my opinion lol

its a real thing not just a tv trope;

its basically just the brain spacializing memories to make it easier to recall them;

Yes but it's been co-opted over the years in a way that I find distasteful and tumblrish

you didn't tell me you were working on a phd violet

lol i'm not;

hahahah

Sorry if I sound overly combative, I'm not trying to be, I get where you're coming from

guys

anyone knows

if

its one of those things that neurodiverse people do but then neurotypicals heard about it and treat it like magic;

bettercap is safe to use

or not

when its just training the brain a particular way;

Steven Moffat had a good run with Doctor Who 🙂

https://retroachievements.org/user/Violetlain

here's the account i made years ago;

i'll add getting it set up on the 2 devices i game on most as a thing to work on tomorrow;

I get it, but I still personally dislike the phrase due to the normie pre-conceptions and how it's been memed. I do personally think I am on the spectrum with how insane I get with my obsessions amongst other things, but to be fair I have never been diagnosed as such

i mean its a spectrum so most people are at least somewhere on that spectrum;

lol I don't think I can even add you when you have a blank profile

its cause i need to verify my email apparently;

will have to check which one i used for it;

Random question incoming.

Hypothetical too.

General is in the house 🤣

Hey...is there anyone in here have done Windows Event Logs room?

Say you worked at a gas station and another country was invading your country, and one of the attacking countries tanks rolled up to the gas pump in your country at the gas station you worked at and came in and wanted to buy gas. What would you do?

I used to work with ASD populations in education and health care and for some reason I bonded and did amazingly well with those individuals. But way back then I was told no, having a ton of empathy invalidates you. Obviously we have learned much more since then and I've had to re-evaluate things

Oh I'm on a spectrum allright

i could answer but i worry it would be politically charged lol;

how much money are we talking about? 🤣

lol

https://www.ettercap-project.org/bugs.html

I just meant buy gas like a normal customer

acting like nothings wrong

If you require some assistance we have #room-help. But honestly Event Logs are not too hard to parse and filter and most rooms have guides and writeups

anyone here uses ettercap

and knows to emuulate it

f off 🤣

whew that's a name I haven't heard in a long time

why not tcpdump?

bold of you to say with a tank outside lol

oh right i just remembered;

https://www.youtube.com/watch?v=MCAdbUaMlAE

thoughts?;

I live in a country that back me up 😉 🙂

i mean if it counts as brainrot, then even shakespeare would be brainrot;

mr pickle is a different show;

How Shakespeare got there? 🤣

guys

my telnet is closing instalntly

idk why

🙁

uh telnet why? Yes it's great at doing like plaintext checks of SMTP or pulling HTTP headers but what is your goal?

Very dead chat

https://tenor.com/view/shark-silly-lemon-shark-ocean-scuba-gif-905724840689496229

https://tenor.com/view/fknbnuy-reaction-animal-speed-fast-gif-21698273

need to make connections with some successful people

https://tenor.com/view/cat-shower-cat-kitty-kitty-shower-showering-gif-16885876113304224165

is it almost time to go home

( i started work 40 minutes ago)

yipeee

👅

DM me for fun

fun 🤣

is it coding?

https://tenor.com/view/battle-cat-air-cat-pilot-cat-cat-war-cat-gif-9888863539466296855

Haha it's telugu

https://tenor.com/view/hello-hello-chat-chat-gif-11854988458409488653

thats philipines no?

Hi@rain socket

No

ah

something spelt similiar there

That's from THEY CALL HIM OG movie

@night peak kakashi

hello?

Yup?

what kind of fun

black ops 7 beta this weekend

and i cant play

https://youtu.be/rfP_6Ieczek?si=ktNsblsS3eMmsWwm

no its not kakashi its from demon lord 2099

anyone know why my attack box will stop suddenyl and upon reboot give me this

@night peak i see

what room

any

w8 let me check if you are alone or not

yeah that sometimes happens

a reboot usually fixes it

My machine is fine

mine is now also... it just happens randomly

You need to terminate your machine and start again

hmm

i dont need to terminate it because it happens from terminating itself lmao

okay

Morning, i am trying to work through the tasks on https://tryhackme.com/room/uploadvulns and the images are all this, i am based in the UK and have tried changing my region in the account settings to US but still no joy, any ideas why this might be happening?

https://tenor.com/view/akademiks-nervous-um-alzolanskii-looks-around-gif-2683279470269465605

Yes i would appreciate some assistance if anyone could help please, its also happening on Pickle Rick and i can't complete the web hacking fundamentals without the images

Yo gm!

Since Badboi and Jack aren’t on Discord anymore, the #general chat feels dead. They were the ones giving it life. Now it’s just full of dumb trolls asking nonsense, so the smart people end up leaving because of the idiots.

Why they leave

They might just have stuff to do

I’m not really sure what the reason is, but based on my observation, there are too many crazy people asking stuff in the chat, maybe that’s why it’s stressing them out.

oh damn jack left

Or maybe they’re just busy with whatever they’re doing.

i didnt notice that

yeah no thm mutual

They already have a new private server just for themselves.

yeah i know

karma is also gone

Today is October 1

yesss

spooky month

A year is about to end soon

Calamity class disaster incoming..canon-level timeskip in place...

https://tenor.com/view/dead-chat-gif-20784341

Hyy friends any here ejpt students?

probably

Seems like a really old room and the images are hosted on imgur 🤔

No idea, got tech support looking into it now, raised a bug report

is there any problem with https://tryhackme.com/room/nonamectf

I cant reach the ip since 3 days

a few things to check
#1: are you using the attackbox or using your own vm?
#2: if you are using your own vm, are you connected to the vpn?
#3: what do you mean by you can't reach the ip?
#4: how long did you wait for the machine to boot up?

Sup everyone

https://tenor.com/view/whats-up-scary-scary-movie-scream-gif-16966640

not much at all. hbu?

I been noticed for a while that the server low-key feel of a lot recently

Defo just feel like people doing stuff etc

Bout to go graft for some moneyyyyy💀😂

graft?

wasaaaaaag

Hello Donut!

hi dark 🙂

how are you?

A lot better than yesterday. My resolve has been strengthened!

good 🙂

o

halo

hi

Hey team

Can anybody help me with a coupon to subscribe for tryhackme for a year or month

what do you need help with @kindred pulsar

Is there running promo for coupons to subscribe for tryhackme

not right now I believe

Damn it 🤧

there is a student discount for annual

Okay, how do I get that ??

you need to be a student

I’m a student, I already signed up and I’m doing the course in Cybersecurity penetration testing

But I need to subscribe to continue

then if you get annual and set yourself as a student in your settings, then you get 20% off

i think you need to change the email of your account to your student email and then you can get the annual savings

if your school email is not recognized contact support

Oh you mean my student email? The one I used in college right ?

yep

https://youtu.be/7bd997MmiJM?si=BHhDQud1N_8ulKTk

Oh I’m not a student anymore. I thought you mean if I was a student in tryhackme

ah, then you can't get student discount

Thank you

Gave +1 Rep to @slow cloud (current: #56 - 185)

Yeah. Thank you

Gave +1 Rep to @marsh lark (current: #30 - 374)

Fully excited for tomorrow webinar training. It will be my first, can’t wait

yeah, DKob will be doing an easy challenge box

Work sorry …it’s a British term .grafting = grinding =working /job for money

Gonna be wicked

That’s sad how many people left the server

yeah couple left

but thats what happens

server go in generations

in a month there will be a new active user base

yeah, but I think a lot of people left cuz they didn't like how THM general became

that also

its a combination of everything

hello guys I just started learning some basic web app pentesting tools weeks ago and I want to test if i can do some basic web app ctfs is there easy yet something i can really learn in thm rooms?

yup, there are tryhackme challenge boxes you can try!

can you recommend some??

dvwa

maybe try this one?:
https://tryhackme.com/room/dreaming

I believe I did the intro to owasp with dvwa or is there more to it? kinda new to it

okay will try this and see if i can apply the things i learned😂 thank you

Gave +1 Rep to @marsh lark (current: #30 - 375)

That’s crazy

no problem 🙂

No way congrats

🤷

Congratulations 🙂

I've heard very good things about their internships. Intense but you'll learn a LOT

hi Ben 🙂

hello Donut 🙂

how are ya?

doing rather well thanks, busy busy, as per usual, how about yourself?

good, good 🙂

learning some new stuff (PyTorch)

Couldn’t have done without your material ya know. You and the THM team and the HTB team have paved the way to my success. I want to take a second to thank you for everything. Thank you Ben you made this cybersecurity’s student dream become a reality

Gave +1 Rep to @lone thistle (current: #10 - 941)

ohhh nice

yup 🙂

ironically, I am working with PyTorch RN 😄

🤣

what a coincidence

🫶 thanks for the nice feedback, I'll pass it on, but you can't forget your own efforts. You put in the time and efffort, that should be celebrated 🙂

Gave +1 Rep to @eager marsh (current: #532 - 13)

heh yeah. I love PyTorch

so flexible

are you running it locally?

or through smth like google collab?

locally for dev

ah, nice 🙂

plus Ollama but yeah pytorch locally

oooooo ollama

I'm guessing either you're creating an AI model, testing an AI model, or fine tuning an AI model

all of the above 😄

BINGOOOOOOO

creating & training an AI model, that uses llama3.1 16b for user inference, via pytorch 🙂

training for some very specific context

ahh, nice nice 🙂

makes sense

😄

all good fun

yup 🙂

electricity company will love me over the next 2 weeks

but while learning AI stuff, realized I need to know calculus

🤣

24/7 running for training etc

ahh

sooo much energy

which GPUs are you using?

RTX 3090 for dev, has a lot of cuda cores

oooooo nice, nice

loking to offload to cloud A100s for prod / refinement

nicee

is it for THM or some other project?

Maybe H100s

we'll see

THM 🙂

ah

have fun 🙂

likewise!

im training via CNNS atm

ahh, neural networks

need to" populate" to offload for prod where it's X/Y/Z does A/B/C

jus training the

"X/Y/Z = A/B/C"

huh

ahh

as in like

"this means that etc"

I got it

yeah 🤣

I thought it too literally

then prod will have the trained model

-# will I get early access

me wanna see this PyTorch trained AI model 🤣

heh, potentially not, but it's for something very fun 🙂

I'll be looking forward to it 🙂

🙂 I wish I could say more haha

it'll be fun

lol

but it gotta be a secret for now

alas yes 🙁

that way it is a surprise

unless I ask skidy if I can get early access 🤣

think of it like a blue team assistant and a "auto solver" for a challenge

with source code review

I see

-# you sure you aren't giving too much info?

hah

nope 🙂

ah

don't want you out of your job 🤣

heh, thanks for the consideration, me neither

I am careful about how I word things 😄

nice 🙂

whattya pytorching?

just learning

currently about how to save your models through google collab (since it disconnects and you lose your progress with your model)

yo quick question: Is it better to setup hardware intensive stuff (like john or hashcat) on my base machine instead of the kali vm which I use to solve rooms?

don't use your base machine for tryhackme rooms

thats my suggestion

you will be connecting to the VPN, which is full of hackers (technically, it is illegal and against the ToS to scan and hack other users)

but you always gotta be careful 🙂

so, in simple terms: use a kali vm

im not doing that. Just asking for hashcracking tools

John is CPU-based, so it's whatever your assign CPU-wise to your VM

Hashcat is GPU (plus CPU based), so much quicker, but requires pass-through (i..e need to run T1 hypervisor such as esxi/hyper-v )

While I don't recc using your base machine for THM stuff, (or any cybersecurity platforms), I personally copy hashes/etc/ outside of the VM and crack via Hashcat etc on my host to make use of the hardware

thanks. Was my first impulse as well to do it like that

Gave +1 Rep to @lone thistle (current: #10 - 942)

Yup 🙂

Use VM to collect the hashes

crack on host/base

would be my recc

especially NTLM etc

Pretty sure Bee had a Discord bot hooked up to a supercomputer to crack hashes or something on those lines 😄

Just Bee things ✨

wow

StH

that shii was wild

but (very basically and not doing it enough credit) a massive DB of hashes

Is this only US based ?

I believe so

Don’t quote me though

Is that what rainbow tables are?

Damnnnn

I think this was a separate thing for CTFs

Might be switching the person up but it would rent a supercomputer everytime you used the bot to crack a hash

rainbow tables are more like reverse engineering the hash to find a possible "answer" compared to what the output of the hash is

like if you know x/y/z hash does it this way, reverse engineer it basically until you find the plaintext. a very TLDR thing

Oh I thought rainbow tables were like a pre generated database so you could do a brute force like a dictionary attack

so if a hash algorithm does "hello" in a certain way, you can step back and find out the hash that gives you "hello" basically

sorta, but more like, databases to reconstruct a hash

Interesting. Thanks

Gave +1 Rep to @lone thistle (current: #10 - 943)

would that work with WPA2 hashes? or is that different?

sites like crackstation work because they have a big DB of hashes already cracked, TLDR

i.e. they know that certain hash = text

yer i just assumed crackstation used rainbow tables

WPA2s are salted, so not quite so, rainbow tables wouldn't work, you'd need the capture the handshake to auth etc

thats what i thought 🙁

like for example you can have two wireless networks named "CMNatic" & "ben" that use the same password bob1 to login

cracking/how the hash is stored would be different as it it's salted, so, for example, same password, different networks, looks entirely different

so it would only work if you were planning on cracking the same AP name

basically yeah, but the AP itself

you're looking at the router/access point specifically

then there's the whole WPA2-PSK stuff for APs etc

gets a bit complicated heh

so you can focus on the SSID, you might just have APs that are "relays" for connectivity, it's the same salt

yer i guess at that point its not even worth considering

you're better off capturing the handshake between client / router/ap / rogue APing and some other things that I dont think are quite for this channel

😄

yer all good. thats what i already do but im always on the lookout for new methods

🙂

if you can crack PBKDF2 reliably and fast, there'd be a lot of people interested 😄

im not that smart. ill just wait for someone else to do it 🙂

you 'n me both 😄

is crontabs even useful aside from being like a ticking time bomb?

now my brain is coming up with a whole bunch of ridiculous ideas

aight thanks

Persistence

is someone here trying to DM me?

hey @cosmic pendant, I don't know if you remember me but on your advices I am now doing eJPTv2

@craggy iron ??

he's on vacation

just letting you know 🙂

@sturdy sequoia Check DM

Don't send me a dm unless you ask first

I need help to decompile a .jsc file

Why are you asking me?

I am asking everyone

Chosen one ahhh

Only the true messiah would say he's not the messiah

🤣

I just joined this server and I saw you first that's why I ask you

Fair enough. Well I got no idea

Anyone else?

https://tenor.com/view/archer-sterling-archer-hey-phrasing-phrasing-gif-4228674

why do you ask?

eh?

the american of the server cannot start dictating to me about the english language

you're using pytorch to actualy train a model, what do you mean you're not that smart 🤣

oh rofl

sorry matt

I am dumb but just know a few specific thing srofl

I trip over pavements walking down the road

thats everyone

i'm glad it's not just me

🤣

Hiii 🙂

hello 🙂

welcome

Iam a neww joiner to this server

welcome

welcome 🙂

And also for discord also 2 days before only i installed

Hello!

welcome. also a new user?

Yep 👍

Welcome, tinywitch 🙂

Thanks!

Gave +1 Rep to @lone thistle (current: #10 - 944)

Caan anyone explain me how this app worksss 🥲

youre doing alright so far

😌 noicee is this like reddit

nah its more like a real time chat

not really, its mainly a chatting app

? Ppl will catch up in every topic

Ohh 😮 okayy

But there are more '#' for what

those are channels

usually for specific topics

and stuff

Damm okeyyy 🙂

https://tenor.com/view/yes-i-can-yes-michael-reeves-i-can-gif-25578627

https://tenor.com/view/merica-america-murcia-usa-drink-gif-8694483657974374888

A minute ago there were one of these shitheads outside my window making a lot of noise up in a tree

oh wow

what a photo

From google

Not going to be able to photograph them without expensive equipment

heh I was gonna say

owls are funny. google shaved owl (not a troll)

the great potoo is a funny owl

Guys I am curious where does people get data leaks for free

Anyone know

what?

Data breach leaks

those are illegal

that sounds illegal

My friend go them

So for education purposes only

thats not how education works

that won't be for "educational purposes only"

there is no need to "get data leaks"

you can understand what they are, but getting the data from that is unethical and illegal

and no way can be used for "only eduational purposes"

heres a tip: dont ask random people in a public discord server to help you with illegal activity

don't ask people to help you with illegal activity period 😄

haha also a good rule to follow

they should teach it in school

Yeah, you gotta go find a dark web forum for help that, and good luck not just becoming part of the data that is leaked when you do 👀

is there much, or any, thm rooms that are focused on attacking client side stuff?

https://tenor.com/view/cat-shower-showering-showering-cat-cute-gif-11955391106985110144

why?

Interesting..

Recently my gmail got hacked by someone, I tried changing my password, allowed two factor authentication, added recovery mail and number, tried removing the unknown devices many times but still the unknown devices are showing there. Can someone help me with this situation 😭

Google can.

Plss explain it?

This, actually depends on the country.

email google support

Contact Google.

Ask for help, answer their questions,

huh

The legality of obtaining, and collecting data leaks, varies.

I see

oops, sorry for caps

interesting

Ok I'll try this one

It's the only way to prove the account as yours.

is there a way to check a git repo for obviously malicious files online? Like Virus Total.
https://github.com/ngodn/vmware-vmmon-vmnet-linux-6.16.x

Why not just get Vmware from Broadcom?

doesn't run on the latest linux kernels

it's pretty far behind

Hello all, I am having a problem with my downloaded THM vpn file - it wont let me connect using terminal. I am using Parrot Security OS in a VM on Windows.

#site-support

If in doubt, download and check in a sandbox.

that's funny. Chicken and egg type thing

Thank you. also how to upload screenshots? I can't find the option to upload them here.

Gave +1 Rep to @sick lance (current: #2 - 3921)

It's not funny?

It's what to do if you want to download something and make sure it's safe.

You need to verify, quick question, which country are you in?

UK

VPN should work then.

It worked for me on HTB but for some reason, it won't work on THM

This isn't HTB though.

Yeah I know lol

I can't ping 10.10.10.10 after connecting. I can ping google.co.uk and get responses

TryHack the creator.

The VPN file won't effect if you can ping Google or not.

I'm being a noob now. It's been a minute since I joined discord servers and can't remember how to verify

#start-here

Imgur blocking users in the UK must create some slight issues with THM's content, no?

guys if reverse shell is highly usable in CTFs and bind is stopped by firewalls

which one is usable in irl instances

"irl" varies.

like

Many factors?

The defense, the OS, the version etc.

oo

Every company in the world will not have identical setups

so which one is commonly used

Whichever one works.

😮

Yes some of the content is blocked

brb I need to sort my account out

By this..he means..usually custom made ones which you create based off of extensive recon and info-gathering.

I'm aware of what they mean.

No, I was explaining it to him.

No, I mean all.

Not just custom.

Sure.

I can speak for myself, thank you very much.

Was...adding onto your comment, but alright? 😄

I mean, I didn't ask you to?

I said it, not you.

Huh? I wanted to add on more information?

🤔

No.

You told them I meant something I didn't.

By this.. he means..

Oh fair.

My fault tbf.

😄

Finally...

Gratz!

https://tenor.com/view/coffin-dance-coffin-dead-coffin-dance-dead-man-dead-gif-1795768380065876519

Standing here waiting for an iPad to charge since it's on my list...... FFS IT'S BEEN 20 MINUTES

FUCK YOU APPLE. CHARGE!

yeah it's humbled me to realise how far and deep in the cave I've been living in.

Hello guys

hello everyone 😄

Hello hello

how are you all?

IT FINNALY CHARGED AFTER 30 MINUTES

AHHH

If you run it flat, it will take a while to charge up again.

How'd you personalize an app

Hello Scrubz!

hello

XD

@gusty inlet

why is this guy spaming on all channels

lol

like literally every channel

mods ^ please

XD

Hi Admins!
May I ask if theres update on the laptop issue prize? I just followed up my email last day but no response.

Can anyone give me an example of SQL

SELECT * FROM [name];

How SQL works

GRANT SELECT ON table TO 'ROLE';

i just did the mysql fund https://tryhackme.com/room/sqlfundamentals its a really good room

I try out

@mossy river you broke the report command?

Matt broke it

what?

its /report user

Done!

Using the wrong bot

as soon as i hit enter on report user

the ban spam came up

lol i was like what did i do

Too many bots

Lol report the user. That's what I usually do

Guys I’m looking to get a laptop but I have no idea where to start, I thought asking here might be a good shout.

https://tenor.com/view/shocked-sunglasses-double-sunglasses-look-remove-shades-gif-17848793

I had problem opening try hack me on pc

i'd go for a second hand, nothing wrong with that. decent ram and decent cpu should do it for starting

It needs to be new

try best buy, open box then

Not because I’m snooty, just a requirement of the money

they are basically new

I second that. I got myself an Asus TUF Gaming A17 at a decent price and I'm glad I did, it's been a great machine

how much ?

I might be one too soon

Disabled students allowance is paying for part of it and they stipulate it needs to be new

I'm in the UK so it was £650 and it was on offer (on special)

been having issues with my old u530 lol

I bought from Laptops Direct

get a thinkpad

dont buy anything that advertises as "gaming"

Any reason for that?

TAG check

I won’t be gaming on it anyway but I’d think it should be fairly powerful cause I’m doing cybersecurity and forensics at uni

bumping the price for low quality components, rgb or otherwise taking advantage of people who don't understand components

Thinkpad

Lol I have a background in IT hardware and software so I know what I have bought.

It is better than my desktop which is 1 down from it.

I embarrassingly do not have any idea what I’m looking for, I owned a laptop once when I was like 12 to play Roblox but my little brother broke it lmao

The normal price for this laptop would have be over £1000

My advice wasn't specific to any purchase you have made 😅

Now I’m in uni and have no idea what I’m looking for

I only paid £650 for it

I am new to here and passionate about offensive security so can you guys guide me through it

just try to look for something you like, and go with it, do some research for example... best laptops for programmers

Jabba, is there a way to renew my 161 day streak?

I forgot to do one today

I'm really busy these days 🙁

-# and I lost it 😭

The only thing I know for sure is it cannot be a Mac, I’ve had that drilled into me by my lecturers and peers :p

Mine works fine for me because I also game too and do a lot of other things with it

No you didn't 😄

wut

+1

i got gaming laptop too. got 2, 2tb ssd. going to make one just for linux. windows on the other

runnning VM on mac is a headache

huh, I guess my eyes fooled me

Must be tired Donut

well, it is 12 AM

I'm also busy these days

ARM has no capatibility with anything, Apple did not need to suddenly make their own architecture

Compatiblity*

Dual-booting? I used to do that on my desktop with 2 hard drives. I need to find out if I can add a 2nd ssd to my laptop

I had to create a dual boot loader for Linux and Windows

yeah, thought about getting another laptop but came across doing this. saves money and less baggage travelling around. my laptop is 18inch

Truth to that

Ill need to try do some research but I don’t even know where to start lol

Well first you need to understand what you're expecting to get out of the hardware

Do you need lots of storage? Do you need high RAM?

Are you going to be using more CPU intensive tasks? Or will you require a dedicated GPU? (Laptops usually use integrated graphics)

Are you going to be running AI? NVidia is better for AI than AMD

From doing a Cyber degree, I'd probably invest more into CPU and memory than GPU

I need lil bro to get me through my degree 🥲

And don't cheap out on storage, you'll use a lot across your degree. You might be able to get away with buying a small drive for Windows but then buying an external hard drive to put all your university work on

That way you can also access your work on the Uni or Library computers

+1

you're gonna neeeeed that storage

don't make the mistake Jabba's gf did

-# or I guess her friend anyway

We were comparing my specs with hers

and I crashed out on her using a hdd 🤣

🤣

I just understood what coding is doing to me

I saw HDD as HLD

a coding data structure

Would getting like a new windows laptop be good? I’ve got some savings from my part time job+dsa and my saas

🤣

So I could hopefully get a pretty powerful laptop

Yes do Windows host

VM Linux don't daily drive it

I’m still learning what most of the computer parts actually do 😅

Look at Thinkpads

Good performance for cost and they're reliable

Also you can always find replacement parts if they break

thinkpads also are one of those rare types of puter that can have coreboot installed

Done!

https://tenor.com/view/starwhocouldfly-rigby-cat-rigby-silly-cat-stupid-cat-gif-15385366713072989704

also:
LET SPOOKY MONTH COMMENCE

https://tenor.com/view/skeleton-dancing-skeletons-boo-cartoon-gif-18326832313355216882

Hey our local tax dude is running an insanely insecure service and I have multiple idors and I’m pretty sure I can find more - in this situation do you just fill out a responsible disclosure?

Are you doing this with or without permission?

Without

https://tenor.com/view/jail-judge-court-time-gif-13138173571129872159

interview for a junior sysadmin position

you may ask me what i know about systems administration

i wouldnt respond

Hello ppl

Hyd

This anime has extreme gen z energy;

Each of these panels is a fully animated story told in parallel;

What does it sound like

Or is there no voices

They only have the audio from the main pannel but they keep swapping the one in focus;

Perfect for iPad kids

Its like that terrible action show 24 but with slice of life anime;

So then what’s the incentive to help small local services if im liable when I just wanna help?

Being gay and doing accidental crimes?;

I’m not going to do anything bad simply cuz I do not wanna deal with no Leo but what’s the point in helping smaller companies

I like being gay but I want shit on my resume and all the big companies get triaged by the experienced guys I thought this would be a valid way for everyone to come out on top lol I just wanted to put this on my resume

there are other ways

Wym ? I’m not tryna be an ass, I’m ignorant here cuz I’m new to cybersecurity

I genuinely want to do the right thing ( if I get something out of it not gonna lie )

you need permission

thats about it

Damn it’s really that simple

K don’t touch sites without bounty program

Don't be ignorant be informed

read up on the laws

you may send the domain admin a formal email regarding what you’ve found

i.e, disclosure report

create a company, find out how to make a proper contract where everything you are allowed to do it described and offer your services to the guy for a symbolic price

(otherwise, you’re a potential threat actor from their point of view)

if he pays for it... well, then give him what you already know 🙂

and if not

https://tenor.com/view/telegram-gif-gif-26412553

Lmfaooo

Thanks yawl nbs

and next time do not touch websites /servers without permission

you can easily get in trouble

guys is tryhackme roadmap enough to land a job in cybersec? i also have htb to help

No, you also need practice with projects and writeups, and it expererience, and ideally certs too;

https://tenor.com/view/the-rock-black-cat-eyebrow-raise-stare-gif-6214185072299085291

thm & htb are common nowadays

and people with formal education in IT / cybersecurity have that on their resume

If you want a job focus on starting in helpdesk;

yeah but i need to get my A+ right

Then you can move towards networking and cyber;

not necessarily no

got a helpdesk role without prior internships or certs

Depends, the cert itself most people dont care as long as you know the knowlege from it;

but how do i prove the knowledge? projects are enough?

Helpdesk is entry level;

They might test you in the interview but its not a hard job to get usually;

certificates gets you interviews... thats the hr filter... then knowledge will be tested in the interview for sure

At help desk level in practice most people dont care about a+ ;

Its mostly just that you know the foundation;

so, what should i do?

If you get a first cert, have it be ccna or network+;

what should i study mainly because right now i just can complete a few thm ctfs lol

Then from there work towards security +;

Hello can anyone recharge my tryhackme through indian rupees...?

Security jobs arent likely to hire based on ctf participation alone;

Or anyone can give debit/credit card for payment I will pay....

So should i get a cert or just study without getting any sort of cert?

Tldr: learn the content from a+ using professor messer course online;

that's it?

Then apply for help desk;

Then learn network;

Yeah I just got a refund on a fucking Csec boot camp cuz it’s literally just a guy rehashing professor messor vids

Then learn security+ and or cloud;

Cybersecurity is kinda simple imo (coming from web dev background)

Contact support

Not that

The easy part is theory. The projects are the harder part;

support@tryhackme.com

Or maybe that?

That’s cap I swear you guys have a million 3 letter acronyms and protocols

I thought I knew networking but I don’t know half the terms on sec+

I already contact but no response received

How long has it been since you sent the email?

Tutorials in security are much easier than solving problems when you have to identify what the problem even is;

7 days

Yeah I noticed that lol. Feels much more “creative”. Feels like you’re doing detective work

@near hawk how long is the wait time looking these days?

Anyone help me.....

go ahead

Hearing gossip in the teacher lounge, but not talked to is great. Got access here, but none of them know me. They dont even know I'm one of their IT personnel lol

Isn't that when you introduce yourself?

dont get me wrong, I rarely did..

The retreat made us go into like a 12 day backlog but we’re now down to about 7 day back log but there’s not many tickets so will probably be picked up this week if over 5 days

i have forgot my androids pin , can someone help me restore it using hashcat or any other tool in kali ??

XDR: Operation Global Dagger
I'm facing this @cloud quiver

https://youtube.com/shorts/ESOVZFYcin8?si=lGEfcYKp7BWpj9MA

https://tenor.com/view/linux-linux-is-better-why-linux-is-better-shitdos-windows-gif-19494703