If it was, you'd be a millionaire in jail prob

mafia boss who controls everything from inside ahh

login info and cookies separate u wont be able to login with cookies, cookies has other purposes (useful ones mostly 💀) and cookies encrypted with that websites panel or whatever

aint that easy to take em either

just dont use weak password

know what i mean

@rapid merlinello

now i want a cookie

yes

what do you want to say

https://tenor.com/view/rio-rio-movie-rio2-roberto-blu-gif-24926546

i found some shorbread. close enough

...

u see what i mean

yes i knew then what the attacker do on the cookies

no i mean

.

Hey guys, Im trying to download nessus and the video tutorial I was watching, featured nessus essentials, which in my case I don't even have that option. The videos Im watching are a bit old and dont treat the problem. Doesn anyone here knows the solution or that can point me to the right direction?

the nessus website probably has an installation guide

where u wanna download it

Ye, but the thing is that I want nessus essentials and when Im prompted which version do I need are only: nessus expert and professional, which are paid versions

I went to the official site

no i mean u wanna download it to linux or windows

When you log in to a website (like Gmail, Facebook, or Discord), the site doesn’t ask for your password every time you click something. Instead, it gives your browser a cookie — a small file that proves “this is you, already logged in.”

👉 If an attacker somehow steals that cookie from your browser and loads it into their own browser:

The website will think they are you.

They can open the site and be logged into your account right away, without typing your password or 2FA code.

That’s why cookie theft is dangerous — it’s like someone copying the key to your house. They don’t need your fingerprint (password) anymore; they just use the copied key (cookie).

this is what chatgpt is saying

linux

thats not quite accurate. i wouldnt go to chatgpt to answer your questions

cookie is just a verification that u are that person

hallucinations

dang i thought they had the fast download from terminal but no

sometimes i hear voices

its not the download that gives me the problem but the license, I want the free version not the paid one.

so its a verification and when this passed to another browser then the attacker can login to our accounts because he has verified himself as us

Its called nessus essentials and I saw it on the video tutorial but thats a bit outdated so when I go there the essentials are not even an option anymore lol.

dude... if he can login to ur account he doesnt need the cookie omg thats not easy to steal you know what i mean cookies encrypted but if he has ur login info ofc new cookie created and now site thinks that hacker is u

Hello, is it me or are rooms not showing target IPs once machines are deployed

https://tenor.com/view/battle-cat-air-cat-pilot-cat-cat-war-cat-gif-9888863539466296855

does the NSA spy on everyone?

no

no

no

wait i cant find free version either...

what if someone here works for the NSA

Thats what Im saying 😭

there might be. but so what?

schizo

https://cdn.discordapp.com/attachments/1013636347019411506/1366388469064273930/togif.gif

are women real?

ig got fully payed...

ask chatgpt

what tool do u use for vuln scanning that is free?

but fr what if im a terrorist does that mean im being watched?

i was thinking of using nessus either 😭

no

i thought nessus was still free with kali

nessus is a freemium

isnt it

idk we cant find free version

how much is it

https://www.tenable.com/products/nessus/nessus-essentials

When Im prompted on installation which version do I need I only see these 2 😭

Yes and when u follow it u still dont see it in the prompt lol

1 Year - $4,390

dayum

fr

Trynna make us all go broke

?

their faq says its free
"Nessus® Essentials is free to use to scan any environment, but it is limited to 16 IP addresses per scanner. It is ideal for educators, students, and anyone starting out in cyber security. "

wait i found it

I download it and follow it, when I go to register offline, I dont see the nessus essentials

it says u gotta fill a form and receive 1 year license activation code...

so temp free 😭

fr

can u provide a screenshot please?

you're gonna make me install it

https://cdn.discordapp.com/attachments/1013636347019411506/1366388469064273930/togif.gif

well if u do and find what Im looking for Ill owe u one

Im just a beginner guys 😔

i assume the issue is beyond this page

yes

so what if he decrypts the cookies

IT IS NOT THAT EASY YOU KNOW WHAT I MEAN

after that I chose register offline as per the tutorial and then I dont see the essentials option @tired wolf

okay as you say

he has ur login > he logs in > new cookie > site thinks him is u

ur cookies not safe even if theyre encrypted everyone selling ur cookies to everyone

chrome, facebook, utub, tikgram, instatok

we share the same server that Im facing the problem in, Im trynna get PNPT certified and Im going through the PEH course lol

LMFAO

To summarise, you don't need to worry about someone stealing your cookies

@gray pine i understand

theres no nessus essentials

install free stuff to buy omg

Is it a separate download?

type shi

They are scamming us fr

nay

fr

That sucks

Thanks for helping guys, especially @tired wolf that actually went through it!

Gave +1 Rep to @tired wolf (current: #1270 - 4)

Is there an open source competitor to nessus?

openvas

https://www.openvas.org/

Can metasploit scan or does that just exploit?

both i think?

i havent used it

cant say for sure

thm down?? room's ip not showing

I just found the awesome Linux priv esc list. This is gonna be so useful. Why didn't I find this sooner

I quickly saw it, I think u have to fill out a form and request it

guys???

lemme test that real quick

Also experiencing the same issue

But how do I know which rooms to do 🤔

which room r u facing problems tho cause I cant find one to replicate the issue

tried 2-3 dif rooms
same issue on all of em

ok just name one so I can replicate it

anniiev2

https://tryhackme.com/room/annie

tried different medium difficulty rooms, same issue

whichever ones you want

same issue here in easy rooms, including basic pentesting

samme issue

how can we let devs know? do they already know? any announcement?

hey can anyone tell me why my machine ip not showing after start machine after 2 minutes....?

we r going through the same problem

we ALL (as in you and me)

hey so i got this problem where it doesnt show me the ip address of the target machine in tryhackme it shows me the copy button but even when i press nothing gets copied is this a server problem that ishould just wait for or my problem :

oh okay universal

oh but now its showing

same for me

@gray pinebtw u can use metasploit as well

for vuln scan

thank you! I pray u have a blessed day!

Gave +1 Rep to @modern fox (current: #616 - 11)

oh thanks man u too 😭

Gave +1 Rep to @gray pine (current: #858 - 7)

thats my dilemma in cyber sec , having too many options to do the same thing

its much better than having not enough

u just have to try them all out and figure which one u like best

thats actually good thing

yea fair enough

fr

exactly

back in my day.....

really ? thought it was more of a situation based rather than just personal preference

id love to hear that!

manual sql injection aah vibe

nah man thats actually good thing to have more tools because they're complete one anothers lacks

oh i could tell so many stories

fr, u find one thing with one and one more with the other

thank u i understand

pray tell

Gave +1 Rep to @modern fox (current: #573 - 12)

inject sql with syringe

exactly

😭 🙏

there were no youtube tutorials, no online test machines, no ethical hacker forums. it was all word of mouth and test it yourself

good old times

WE ALL have it easy now fr

defcon and 2600 were still small (especially where i live). the hacker groups were quite private and it took actual knowledge to gain more knowledge

back when I had to stackoverflow something instead of chatgpt-ing it

correct me if am wrong but werent systems too very very weak in security compared to today

idk back than someday maybe it was good

i have a physcial book that i bought in a physical book store

lol u such a troll

yer less secure but harder to be a script kiddie

It's a bug, a patch should be live for it soon

damn that mustve SUCKED

https://tenor.com/view/fknbnuy-reaction-animal-speed-fast-gif-21698273

There we go, sorry bout that Jabba. Anyhow, how're you

what my cat does at 7am

exactly

it was definitely a different experience to now. one thing im thankful for is actually having to understand everything rather than asking ai or a chat room with thousands of people

Bit of a headache but alright nevertheless.
How are you? Up to anything interesting?

just discussing the olden days

3am*

I have this cybersecurity club today
Hopefully they can help with this one NCL problem. Speaking of which, are there any THM rooms that explain anything related to hex and analyzing a hex dump?

Does anyone else have the problem when you're waiting for something and you can't do anything until that thing is done?

Every day

imagine finding a toy in a cereal box that can be used to make free payphone calls. it was a crazy time to be alive

Also, congratulations on your rankup Shyft 🥳 🥳 🥳 🥳!!!

id say everyday

thanks. i didnt even notice the colour change

Gave +1 Rep to @ripe sleet (current: #109 - 83)

oooo Cyber club, what do you get up to in that?

I can't think of any rooms off the top of my head 😔 sorry

All's good, but they do like an NCL module every week or so. Though, I have gotten better at understanding awk with the help of Vigor and GPT

I'm trying to minmax my methods to make them the most efficient

wireshark was ethereal, kali was backtrack, aircrack was still aircrack 😛

I only ask because something is happening on Tuesday and it's completely taken over my brain, I just want to bed rot and wait

Run by students I assume?

Oh? I'm sorry to hear that! I hope it's nothing bad

Yup

I also do bed rot in such situations 🤣

guys i heard

Hello KGB!

comptia secAI+ is free

how do u get it

any idea ?

Can aircrack attack or find drone Signals?

What certs do you plan on getting next KGB?

Prime day 😔 😆 Feels pathetic just waiting

But alas I must work and earn a paycheck

if those signals are wifi, maybe

Nah, it's not pathetic. I'm happy that you have something to look forward to. 🙂

Certs are on pause for now 🙂 . Already have a few , haven't seen any bemefits yet 🙂

Have you learned anything new recently?

kgb

reccomend some certs

which are affordable and effective

It's, hopefullly, a new PC

to slap on my resume

I hope that it is!

I want practice the topics that I complete

I'm over budget by £400

There's this older Christmas movie that has this one inspirational song that applies to cyber and mostly everything else. It's from this movie called santa claus is coming to town where the song is "put one foot in front of the other."

Are you able to pay bills and stuff?

Like you're not bankrupt or anything right?

Yes yes don't worry 😄

https://tenor.com/view/sweating-gif-6497153096045529135

My partner has given me some money for part of it which has helped a lot

Not that I need it, I think she just feels bad cause of how sad I was when my tower stopped working 😆

She's a cutie, I begrugendly accepted her money

I hope that everything goes swimmingly for you and your purchase Jabba

I'm super super excited to buy it

I'm excited for you!

hey can anyone tell me why my kali not connected to tryhackme through openvpn

I was out with my tech club friends and I have to say, they're way more fun than my literary club friends not even joking

Can you ping 10.10.10.10?

Did you previously connect and forget to close that session?

Sometimes you might have to kill that previous process to start a new one

we got a cybersec club i applied didnt get selected cuz i am a junior

I laughed so hard with them that I felt I was dying
With literary club friends, I have to be careful about my jokes so much that I don't say some dark joke

Damn

Those are the best kind of friends

IKR

I have friends that are like that and it's always a fun time

I love the tech club I'm a part of
It's a bit small but the quality of people is just insanely good and better than other tech clubs of college

I have a friend that I send the most effed up reels to and we just send them to each other

Yea that kind of friendship is best

Quality over quantity is good

Yea

You can really understand them as people

Yeaa

I got in the cybersec department of that club

And it's pretty good

I was in like 3 tech clubs on the e-board in my previous college

The entire club built the college website and we manage it

One of which was my own club

Nicee

Too bad it's dead

Awww

If we had like 4-5 more years we could turn that shit into a powerhouse

We had some fun

It's alright
Good things seldom last long

I made 3 ctfs for that club

The 1st one, I didn't realize that AWS doesn't like ubuntu 24

Currently , checking up typescript and mongodb

Let's gooo

I hope that's going well for you!

🤣

I am online for the first time today lol

how is everybody 🙂

going really well. got a level up and a 30 day streak today

u?

good, had my coding class, learned a new data structure (that I actually didn't learn on purpose cuz it never really comes up)

thanks for the review... yeah still gotta expand on some stuff and order it better while adding more boxes to check off

Gave +1 Rep to @simple wadi (current: #2100 - 2)

D ALL OF THE ABOVE!!!!!!!

what does this 5 months free discount is about?

pekaboo

i pay 95.50euros for 12 months

closet

but get 5 months for free?

or 12+5

THat is not for you

i dont get you

@mossy river could you explain

I actually don't understand it myself lol

i mean every once a month there is a yearly discout

every month the same discount

whats different this time

you pay for an annual plan but get effectively 17 months of access for the price of 12.

thats not it

from what I heard from Jabba

It could be

what I remember

is that it was not 5 extra months, but 5 free months

what I'm not sure about is how that is calculated

so its just for marketing purposes

Then you buy 7 and get 5

🤷

i would assume so

its the same by saying you get 25% off

Well what is the price for this deal

I cant see the price since I have a sub

Or where they drunk when they made the add

from €10.50/month its €7.88

which is 25% off

i will just wait for black friday

I assue it is explained further up from past days if you just look.

no no it ok i got it

Hello Matt!

Matt friends

hi guys

im new

welcome

You think it would be cheaper

tnxs

anyone seen comet-perplexity.ai? offers too good of a reward in discord quests, I wonder how much data they are vacuuming

💀 downloaded new ai-browser, kept it for 15min, deleted everything, hit them with GDPR request 💀

cant wait for new fireship video....

i did the same

I had a look at this.

The 5months you "get" is based out of pay per month price not annual 12month price

Welcome!

tnxs

https://tenor.com/view/seagull-screaming-scream-seagull-screaming-meme-gif-18193351

@cloud quiver

https://tenor.com/view/enbabyfazball-fish-thirsty-gif-12496812153427391344

Done!

Done 🙂

Thank you!

Gave +1 Rep to @cloud quiver (current: #1 - 5972)

5000 internet points

I wonder if i can use a VM for the quest

install discord on a vm and do it

lmao

~5eur / client adds up fast

to be fair some banks offer up to 50 for registering, but yeah, I dont trust it

or maybe download the browser on my host and then block it with firewall and keep it open to do the quest

@cloud quiver

Done!

how are unverified users posting images

it just stops embeds afaik

it needs more stopping power

a desert eagle can be considered

best of luck, to delete account is one click with 30days data deletion prommise (gdpr compliant), and gdpr requests seems to be simple to make. .com/datarequest

dont post my guns.... dont post my guns

i'm not in europe so i'm not protected by gdpr

Hello

im just interested how much they got on me during 15min...

😭

some things are better, some are worse

could you let me know, when they reach out to you

i'm curious

just seen someone with a HTB hoodie in my unie

buy em a coffee

hello people

I want to share this video

https://youtu.be/0h-zxfEF740?si=CSd5kCv-UZ89rc_5

very interesting

offer them an USB

🤨

@torn olive how'd u calculate the 5 euro thingy

way gift not working

if youre asking why the gif wasnt working its because you need to verify your account

it offers 5k points, DC store equals around 7eur, - im assuming they paying way less 5< (?)

oh i removed that when I changed my email. i think

i would think that they have some kind of deal with discord rather than paying for each

i mean, possible, thats still monetary value

yeah but its not the same as they'd have to pay 5 euros for everyone who does the quest. they likely have a deal with discord that i'll u pay u guys x dollars, and in return you'll publish this quest

they're likely paying more than the 700 orbs quests but it doesn't mean they have to pay 5 eur for each customer

that still has an equilibrium of X per person

New set up

Don't mind the JH vid

hello guys

how are you guys doing?

Good you?

im goood

https://tenor.com/view/penguin-linux-tux-tux-linux-gif-341950137175367051

Need more screens.

i see

how many do you have now?

sup sup

https://tenor.com/view/penguin-work-hard-gif-8451442284034383693

https://tenor.com/view/cat-gif-27161863

g9 everyone

likely I wont forget, so Ill try to let you know, - takes a month tho

hello

whats this

any python developers

Any good ctfs / vuln labs for Wordpress? Or some kinda docker image I can pull down that’s intentionally vulnerable and a good representation of how people are using wp these days?

nmap is the goat

Hi I connected thru openvpn when I try to go to the target machines website http://targetmachineip it loads forever

Anyone knows why?

DId you power it up

try to ping the machine ip and see if your properly connected to the openvpn

Did you start the machine? You need to start to generate the ip

Guys of course I turned the machine on

And yes I was connected to the VPN

Don't know why it just didn't want to work

Then why does it say http://targetmachineip/

That's an example

it changes when it has an actual IP Address

I know it had an actual ip

I pressed on it and it just loaded forever

And after some time the website timed out

I need coffee

I found the same issue on reddit

did you ping it?

ill ping you

@narrow yew

Yo

https://www.reddit.com/r/tryhackme/comments/1h8orjj/cant_open_target_machine_website_in_browser_of/

Ok

https://tenor.com/view/job-job-application-jobless-gif-2757097081210871087

Hello everyone

Hey

Hey

https://tenor.com/view/hey-there-dax-mallard-caspar-jennings-migration-hello-there-gif-11733235842390128464

https://tenor.com/view/indian-tiktok-cringe-gif-26054928

https://tenor.com/view/my-life-my-rules-gif-10436468092816510991

Better to report all gif kids

Why I cannot post anything here

cause youre a racist

you need to verify your account

Ohh

Right

I didn't verify my account

😭

@undone kiln

@undone kiln what do you call a man is from Senegal

@mossy river being racist to indians

no

You both Indians?

Yo

You know deleting your message just makes it look worse right?

it is worse

Don't do racism

https://tenor.com/view/what-is-this-whats-happening-gif-14760168

We are all human

im sorry i wont be racist

pls dont ban me

@undone kiln answer my question

there should be a no tolerance on racism

Yes

@rapid merlin has been warned.

what'

@mossy river

atleast mute him for a day

Who is gravity 👀

Let the mods do their job people!

Move on, situation is over.

You were muted for provoking community members, would you prefer to be also put on a final warning? 🤔

HOW TF HE CAN CALL ME A PAJEET

He didn’t call you a pajeet.

😭

See the logs

Yo this is a first degree racism

His message wasn’t directed at anyone hence the warning and not immediate ban

He asked in GENERAL, not targeted as a specific person

https://tenor.com/view/shocked-surprised-gasp-what-cat-shock-gif-635629308990545194

Why not let it go this time

This message was intentionally

Please avoid mini-modding

https://cdn.discordapp.com/attachments/1013636347019411506/1366388469064273930/togif.gif

Ok

😭

Is is petrol or diesel?

Yesn't

Appreciated

@mossy river can you tell me why I cannot post anything in this server

raw crude oil

Oh my

youve already been told

You haven’t verified your account #start-here

It has those carbon chunks, right?

Can you direct me the link

Please

its right there

😸

are you trolling?

Whats with little kids and trying to relate to adults? Like i'm working on ipads, and the kids feel the need to tell me they have ipads

I swear, it's like they're on autopilot telling you stories lol

no, I had the same problem until someone directed me to how to verify my account. Lol.

they were told minutes earlier. then literally replied to a link asking for a link

@limber linden

Sup chat

Yeah I did the same thing too because I couldn't understand what I was supposed to do and I also explained that I haven't done things like this in a long time so I was a little confused.

@sturdy sequoia this is what I got too and took a while to get it sorted out.

i was just alluding to the fact that they literally asked the same question and got the same answer. it sounded like they were trolling

anyway

what are you expecting them to talk about, are they going to talk about RF frequency modulation or something lol

YES!

Anything but telling me they have an iPad case like the one iPad i'm holding has

I. DO. NOT. CARE.

we are in the last day of the dino run 2 kickstarter

looks like we hit some stretch goals but not all D:

what is it?

old flash game where you run from the wall of doom after the astroid that killed the dinos hit
this is the sequel made in unity
they have a lot of stuff planned and some stuff already working

ohhhhh

like the no internet dino

They put on a video for the kids to keep them occupied... it's working on me.

kinda but better...

been a long time since i have played it

put on darknet diaries lol

https://www.kickstarter.com/projects/pixeljam/the-dino-run-2-early-access-campaign/

ice cream please

I actually meet Jack at DC33

if you wanna check out the kickstarter

cool

pixeljam are the good guys :D

anyone wanna vc?

who did you not meet at defcon??? :P

i'm so bored

He signed my duck badge!

I'm Duck Rhysider. And this is Ducknet Diaries

I meet Jack Rhysider, Ryan Montgomery, Deviant Ollam

I was busy this year lol

no more left 🐥

does he still wear the bandana

Yep, you see 0 parts of his face. He hides it all

fair

is jack even his real name lol

it is 3am and there is like a fucking duck or something making sounds that sound like a duck

outside

Guys why tryhack content don't make me professional at cyber security and Dont deep in vulnabilitys

what?

Probably not lol

kinda sounds like a duck being attacked by a large rat or something

THAT'S DUCK RHYSIDER!

whos the rat

if it is a rat

RAT RHYSIDER!

Could also be cat rhysider

Now you're getting it!!

is there anyone can hack fr?

Wdym

I haven’t uses unity in years and i just got a vulnerability report which is interesting

well seems shadow "fixed" 1 problem but now got new problem :P

i mean who knows how to hack a person

Thats Social Engineering

.

HI

hlo

SATORI SEDAI YORU WASHUKAI

holy tough storm we have omg

hello people

I am solving OWASP juice shop

and i think this room is bugged

it doesn't want to give me the flags for the XSS's

can someone help?

#room-help

ty

@small kernel
t'as dis quoi dans mon dos ?

english only pls

why ?

#rules

cause its the rules

k

man no one is helping lol

the room is literally broken

It's all voluntary, there is no expectation for anyone to help you 😅

Ping a moderator please, don't mini-mod

my apologies

No worries 😄

what do y'all think of portswigger labs

worth it ?

and the certif as well

Mhm of course

so

hmm

do u get any kind of certif by doing the portswigger labs

instead of paying that 99$

chat

do we have any new update on owasp top 10?

or is it 2021?

2021 newest for now

in novemeber they will release a 2025 version

oh oh alr ty

https://owasp.org/www-project-top-ten/

echo "enable privacy extensions for ipv6 in networkmanager"
echo "[connection]" > /etc/NetworkManager/conf.d/10-ip6-privacy.conf
echo "ipv6.ip6-privacy=2" >> /etc/NetworkManager/conf.d/10-ip6-privacy.conf

echo "disable connectivity check in networkmanager"
echo "[connectivity]" > /etc/NetworkManager/conf.d/11-connectivity-check-disable.conf
echo "enabled=false"  >> /etc/NetworkManager/conf.d/11-connectivity-check-disable.conf

work in progress much :D

probably better ways to do this actually but whatever

peeepee

Portswigger shows how many labs you have completed and stuff you can post it on socials to show how dedicated you have been

Hello if anyone can get me a $15 steam gift card i can paypal them 50$ but i need it quick, pls dm me

Hey guys, anyone recommend a quality VPN for hiding your IP.

https://tenor.com/view/i-miss-you-gif-9601499254078520677

Use case?

Case?

Is that a VPN?

I'm still a bit of a newbie by the way.

Wild suggestion, use the $50 to buy a Steam Giftcard?

why you wish to hide you ip for start

Nah as in why do you need a VPN? What you gonna use it for?

and don't just say hiding my IP

I'm going to hack Amazon.

Oh fascinating

ask @gusty inlet ... and that sounds illega

Just curious. I was watching the Youtube guy who hacks people. He said he uses Nord VPN.

Please standby, a senior adviser will be with you shortly

you think to hack amazon, and i can't hack my own lab and get banned by fail2ban

🤣

Jeez....I can barely get through John the Ripper on basic.....🤣

by hide you ip in sense doing bad things, vpn will not do you good... for start

https://youtu.be/14l51vt5kdQ?si=9KbyDJeVSZxFehMy

holy sh8

I would love to do what that guy does - on Scammer Payback. Those videos are awesome.

That's still a criminal offence

He must do it with law enforcement.

We don't discuss or engage in such activities

I wonder how else he does it?

No they literally don't

you know that he have many legal things in backend by doing that. he is not doing that for the lolz

Is he not? But 4 million hits!

Doesn't mean it's legal

8 million subscribers!

sub/hits means nothing. illegal is illegal

I could hit the front page of the news for a crime and be seen by millions but doesn't mean it's legal because so many people saw it

I guess I'll never know.

I'm telling you now, it's not legal

I know. I was just curious.

my advice. is to be carefull with words. this is cyber sec discord

And there are those who work in law enforcement here.....

guess #start-here and #rules is nice place to go with

And more than likely three letter agencies too

Thanks for your advice 🙂

Gave +1 Rep to @silver sky (current: #36 - 295)

So what are the rules on port mapping?

If it's your network or a network you have a legal contract with, sure.

Random network is a no no

That's active recon. Only if your have written permission from the owner

I guess that's how professional Penetration Testers do it then?

• is legally approwed

Not even written permission, a legally binding contract that has been reviewed by solicitors

https://tenor.com/view/rules-gif-18225622

Don't get yourself stung

Ok, fair enough

And also make sure you have adequate insurance.

https://nmap.org/book/legal-issues.html

getting visited by 3 letter agencies is not fun....

Or getting sued for millions because you fucked up

tru tru

Your honor I didn't mean to

As Zoz famously said "don't fuck it up"

That was a great DEFCON talk

link it pls

https://youtu.be/J1q4Ir2J8P8?si=GRg2lXSM5_qYOoQM

oh.. the guy who decide to find his laptop 🙂

most likely if you port scan a big entity, they won't sue you / get a 3 letter agency visit... cause most likely they get port scan a crazy amount of time per day that they can't take action against everyone.. Probably they will simply block IP / automatically set some extra rule for your IP to block / rate limit / audit for more suspicious activity, and as you get more persisting and attempt more stuff, they will probably escalate to more drastic legal action

Most enterprise have IPS that are configured to log/audit/enforce different set of action on different pattern/behaviour (Like port scan / fuzzing around / trying to inject known exploit... for example STI, SQL injection and other). The more you persist/poke hard, the more they will look at you closely and may react with legal action

AKA its a bad idea to attack an enterprise cause what you think is just gentle/for fun / think has no consequence may at some point go above their tolerence threshold and trigger legal action. They will notice, they have the tool to monitor. You don't know what is their tolerance threshold...

Same guy

That was also a good talk

And so was this one:
https://youtu.be/fWk_rMQiDGc?si=bV_PMErfCPG6HYA7

https://tenor.com/view/enbabyfazball-fish-thirsty-gif-12496812153427391344

Wow! I saw about people in England being extradited to America for hacking. Imagine being in an America jail!

All for scanning a port!

https://tenor.com/view/cat-shower-cat-kitty-kitty-shower-showering-gif-16885876113304224165

I had a scam call once from India and was like 'Ben Chod!' They soon hung up 🤣

Cool story thank you for sharing.

yeah that is one of the most fun defcon talks to watch now and again

https://cdn.discordapp.com/attachments/1372366755338653780/1421604023538155570/STK-20250927-WA0004.webp

https://tenor.com/view/cute-cha-pri-gif-4196443019552842049

and yeah one of these days i should go watch through the best talks from defcon;

i am still working my way through the podcast darknet diaries;

Should I go back and spam post the 200+ THM rooms i have done on my linkedin?

no

An interesting topic lately... Kernel level Anticheat... AKA lets try to make PC like a game console, a sandbox where user is limtied on what he can or can't do with his device, while also introducing a host of issue.

Kernel level DRM where the user don't control his computer anymore... Valorant/BF6's Anticheat solution that may be incompatible with AV solution, and incompatible with each other, and also prevent user from installing legitimate software. The kernel Anticheat used by BF6 for example prevent the installation of process monitor by windows systinternal. They are trying to make PC like a game console, a sandbox environment where its a blackbox/trusted environment where the user is limited in what he can do / not do. But this open up the door for some backdoor / supply chain attack. Oh, also since the Anticheat of BF6 also need control over the secure boot, it may also have compatibiltiy issue with dual booting with linux

you are right. my 676 connections probably don’t care and will unfriend me

you can still use it though. i sent an llm the screenshots of all the rooms i did and had it create an inventory of all the skills i learned from them;

EA games was bought by saudi arabia and jared kushner

RIP EA

That’s smart!

its wild that valorant has so much control over users pc

Fsck any game requiring kernel stuff

not gonna happen

the funny thing is i probably still have more experience doing the thm rooms with those skills than most of the people who just copy and paste the requirements of a job posting to their resume and hope they don't get asked about it at the interview;

so true

thm actually forces you to have to use the tools enough to understand them, as long as you didn't copy and paste the answers;

That is the problem. You can get those certifications or even room completion notices and still not know what you’re doing.

fr

That is why listing certifications and completion certificates. Don’t always help very much. Having experience means a lot more.

My bad, i said DRM when what I wanted to say was Anti cheat, just corrected it

Once you get into a position, and they see what you were capable of, then you have a chance to shine and show them what you really know

yeah its a catch 22. even for entry level it jobs, you need 3-5 years hands on experience;

in my case i did freelance for 10 years in it;

Does tryhackme have a referral program?

At this point, if a game require any kind of intrusive Anticheat, I would rather play that game on console, or not play the game at all if that game isn't worth it. Nothing worse than some problematic Anticheat on my computer. No way i would compromised my computer because a company think they will stop cheater using a kernel anti cheat. Cheater will find way around it, but legitimate user are penalized. Its a big security breach

so even if i didn't do on site experience in a soc or something official, i easily have more than enough experience between my certs and from going to senior homes and volunteering to help set up wifi and security for seniors in my area;

Sounds like it'd be a fun exercise to create a maximally undetectable VM with a virtualised TPM just to spite it

its also why i strongly recomend getting in contact with senior homes if you are new to cyber and looking for clients. seniors at least in my area always tip well if you are nice;

i deleted everything about valorant from my pc when i learned about the valorants anticheat system and that they can literally control everything 😭😭😭

yeah that's part of the reason i game on linux. every game is sandboxed;

The stupid thing is a kernel anti cheat basically behave like an active threat protection... like An antivirus... It just mean that if someone want to cheat, he will just use the same technic used by malware writter, there are technic to evade EDR solution, the same technic will be used to evade the kernel anti cheat. People will just start writing cheat solution like malware

I heard gen z Rust Programmers use anime girl pfp

kernel level is the most egregious, but running any software on your pc is inherently a security risk that windows doesn't really have a good solution for besides hoping that steam and other large storefronts for games and software doesn't allow malware on its platform;

If I cannot cheat in a game I refuse to play it.

Anyone interested in helping me ideate a project please dm me
the base idea is an 'adversarial AI attack defender focusing on the healthcare niche'
Im not an expert but erm, would appreciate if youre down to discuss in dms

could you explain here? i'm currious what that means;

if you're saying defending against ai, its called a firewall;

ideally healthcare shouldn't be exposed to the outside internet at all;

no defending healthcare AI Models/LLMs from adversarial attacks such as data poisoning, prompt injections, evasion attacks

llms are not doctors;

they shouldn't be used for health care purposes period;

actual machine learning absolutely is good for health care though;

but llms are not secure as a tech enough to be relied on for life threatening access to patients;

yes true but healthcare firms are moving towards AI like any other fields
not to take direct decisions but mainly to assist them in safe tasks
take ibm watson for example

well yeah not specifically AI but ML models too

ml security is a different beast;

I play most of my game on either Linux (Game that are better on computer) or on Console (Game that play better on console, have intrusive anti cheat, or game that have nasty DRM on PC (On console, game don't need DRM, since they used the console built-in one... )...From Kernel Anti cheat that compromised your computer while restricting what you can or can't do in your computer like in BF6/Valorant ... To DRM that make the game super slow... Remember Assassin creeds in 2018 or so, the game would barely hit 60 FPS with some of the best GPU, while it would run super fast and look nice on console, because of the DRM that was super ressources heavy

My friend, game hackers have already gone the extra mile actually 😭

The exploits I'm aware of against kernel-level anti-cheat is above that of EDR + Antivirus. Hackers are currently using hardware and PCIE devices to write straight to the memory of a live PC from that of an external Linux device

They use display merging hardware and a 2nd machine to draw ESPs for example and then combine the outputs using specialised hardware

Or use programmable macro devices to merge legitemate input with automated scripted keystrokes

It's insane 😭

lets say using ML in cancer detection
its trained on some datasets to identify patterns
some attacker messes with this data
thats an adversarial attack

then that's database security;

it'd be the same whether ml is involved or not;

hash the datasets;

i guess
what about defense against evasion attacks
prompt injections (yea this is more AI)

I know, but those are not easily accessible solution. I already did some experiment with an FPGA to drive the input of the computer while reading display output. Hardware solution are impossible to block, but at the end of the day, not many people can apply it

like i said, prompt injection is why llms shouldn't be used in health care;

proxmox ❤️

at a foundational level, there is no securing them for anything life threatening;

Interesting: https://www.youtube.com/watch?v=Re1dAB7pyeQ

why cant they be used for assistance?

because if they are injected, proving they are is impossible atm;

we don't understand them enough at this stage to be able to verify if they have been modified in a malicious way;

databases we can verify with hashing;

or simply backups;

if llms are foss, we could theoretically hash them and have each prompt be untied to each other so that it reverts to its default each time;

oh
well I guess I could try to come up with a defense for prompt injections tho that kinda sounds impossible like you said

but then they are just only able to output 1 thing, and that still means verifying the outputs and inputs;

how about evasion attacks on ML models?
manipulating input data during inference time to trick a machine learning model into producing an incorrect output, such as misclassifying a normal-looking image

i feel the whole LLM security (company trying to protect against injection / people specializing in prompt injection) kinda pointless / stupid, cause its impossible to ever have a fully secured LLM, thus in the first place, LLM shouldn't be able to take action (Like modify stuff / run shell command) and shouldn't have access to any sensible/confidential data

i think the root problem is the datasets in those cases from what i can tell;

ml afaik doesn't rely on manipulating the datasets meaning that as long as you authenticate integrity of the datasets you should be safe from malicious edits;

yeah gotta filter the data and curate it which many trainers miss

i don't know enough about ml to be certain though, if anyone has experience with that i'd be interested to know;

i have some experience in llms from the research i'm working on as a part of trying to specialize into mcp security, but ml is outside what i have direct experience with;

I mean adversarial training exists anyway
like tesla uses it on its autonomous vehicle systems to avoid misinterpretations of road signs
training on "corrupt" data
like sometimes the stop signs might have stickers on it or the paints come off and it might trick the car into assuming the sign as something else
well this is an old solution I guess nothing new

tesla isn't a good example for security imo;

for context I was considering this idea for a capstone project 😂
welp idk

though that's more cause of elon than anything the actual engineers are doing;

if yall got anything fire lmk, I try to build up on ideas

if you are like me, my suggestion is to focus more specific;

in my case, i am specifically focusing on mcp;

fair

that keeps me focused on 1 part of llms rather than trying to breadth out into every area of its security;

since we simply have too much we don't know about it from what i have seen and read so far;

but its kinda tough coz the judges look at the solution from a business perspective so I gotta find a balance between something too niche and too generic

mcp at least is grounded enough since its parallel to api security;

right

so a lot of it is just applying the same protections as api;

the big added issue to security is vibe coding;

and specifically people using llms to automate creating api connections and thus not considering the endpoint security needed;

yeah and its increasing daily

for mcp to work as a protocol, there needs to first be some security in authenticating what mcps are verified, and thus working with the companies creating api to create official mcp with proper security imo;

but of course that currently isn't happening so its the wild west where any mcp created could be secure or insecure;

whatever I see as a problem, I immediately think of a potential solution
maybe theres a counter to faults made from vibe coding

hm

the biggest one is building in checks into vibe coding;

if we could even just ensure that these models built in unit testing to the software they build, that would go a long way;

how about a software to automate testing on vibe coded solutions

hmm

we have that, its called unit testing;

lol

like in javascript there's jest for instance;

yeah jest

or integrate it directly into AI chatbot but thats just like trying to solve the problem after creating the problem which couldve been avoided in the first place

eh

yeah that sentence. didnt make sense

xd

the main thing is training vibe coders to actually read the tests if not the code itself;

cant beat laziness mayne
we seek the easy way out

but yeah thats bare minimum else we all cooked

the biggest issue imo is vibe coding is incentivised from speed being the main incentive financially for coders;

yup

as long as we are paid in salary or hourly, the incentive is fast vs good;

pretty much
running for the moolah

that's also why i think the root of all of this is capitalism, the financial incentive is the core vulnerability that created vibe coding imo;

basically there needs to be tools for employers to be able to identify bad code much more than just for vibe coders to create it;

and that means effective unit testing and tools for mangers;

you know what's a little frustrating the more rooms I am doing ....

okay so
what are some top vulns in mcp
which you think are solvable?

I find errors that are clearly wrong and a problem. There is a bug-report forum here for that I think.

i mean besides humans, the biggest issue fundamentally is its a fluff layer on top of api keys;

But there are almost never replies so why waste my time showing where the errors are

When no one will read it or fix it

and people aren't being trained on how encrypted keys work and to keep them private in .env files;