What Dm stand for ?
#general
dark frost
coarse hedge
What Dm stand for ?
Direct Message
dark frost
I usualy see PM , for private message
grave locust
What Dm stand for ?
don't message xD
dark wolf
I've never been worried about people finding me. It's at least 5 hours to the closest airport.
dark frost
Direct Message
A yes that work too π
woven flint
I've never been worried about people finding me. It's at least 5 hours to the ...
π
you never know stay safe
dark frost
I've never been worried about people finding me. It's at least 5 hours to the ...
I am 30 minutes close to the aeroport
rapid merlin
What Dm stand for ?
@marsh lark
dark frost
marsh lark
<@987259301506736149>
lol
loud marlin
https://tenor.com/view/donut-gif-9784398
elliptic curve encryption π
real heath
yesterday i lost my streak at 95, today i was given chance to complete a room to recover it. at what conditions is this given? does anyone here know?
loud marlin
yesterday i lost my streak at 95, today i was given chance to complete a room to...
iirc if you lose strike you can email support to recover it
real heath
iirc if you lose strike you can email support to recover it
this one was automatically given
rapid merlin
Wat
celest dirge
https://tenor.com/view/donut-gif-9784398
I wonder if I can do this in C++
loud marlin
this one was automatically given
that idk for. but for sure you can email support
celest dirge
Nah, I was just curious.
After taking a closer look at the gif, I realized how much sanity I'll lose if I try.
oak kelp
Big shark
sand trench
BURRITO TIME!
with cheese or not???
boreal scarab
with cheese or not???
Of course!
dark wolf
https://tenor.com/view/patrick-eat-spongebob-gif-11221971
that cartoon never made since. like how can they walk around in water like it is air
dark wolf
with cheese or not???
cheese is good. just donβt cut it
rapid merlin
cheese is good. just donβt cut it
stable pier
heady parrot
and market didnt even open yet
sand trench
opensnitch goes BRRRRRRRRR
bleak quartz
that cartoon never made since. like how can they walk around in water like it is...
π
celest dirge
https://tenor.com/view/nai-long-chinese-good-boy-yellow-dragon-xaiohongshu-gif-5...
When the, when the, uhm, when the
sand trench
that cartoon never made since. like how can they walk around in water like it is...
there is one episode where patrick makes a fire go out by commenting they are under water
timber iron
@jagged yarrow
hope you are doing well
are you looking to bring another developer on board ?
loud marlin
skiddy is bussy bee...
loud marlin
there is one episode where patrick makes a fire go out by commenting they are un...
also they put swim suit when going to beach
dark wolf
narrow yew
is everyone facing the same thing?
Everyting is slow, I am enumereating a db that is timebased. Takes forever
queen flare
@mossy river the website is taking forever to load
after all, daily downtimes might be really coming
boreal scarab
1 hour later and my plugins still have not been sorted...
loud marlin
plugins for skyrim i guess
dark wolf
<@270975958511517697> the website is taking forever to load
Jabba not online, it's the weekend. I don't think he will see this by Monday
bleak quartz
<@270975958511517697> the website is taking forever to load
true
also all the machines are being extra laggy
might be just an overload on usage but still
dark wolf
It's a deathspiral
topaz sedge
https://tenor.com/view/nai-long-chinese-good-boy-yellow-dragon-xaiohongshu-gif-5...
Nah you're not
grave locust
huh? poof goes the message
dark wolf
idk, i did a pickle rick room but thats a training room
rough widget
somber kernel
lavish rune
real
pallid lotus
holy EM DASH
What's wrong with em dashes? AI ain't the only one that can use them tyvm
Aw. Bye bye scammer π
digital estuary
What's wrong with em dashes? AI ain't the only one that can use them tyvm
im aware, its just not one you use commonly
velvet gull
^especially on discord
digital estuary
especially on discord, exactly
grave locust
aahh that's why messages are dissapearing from the channel?
pallid lotus
im aware, its just not one you use commonly
I do. As does anyone with a reasonable grasp of English.
grave locust
I also used to use the dashes :) but lately I'm trying not to
pallid lotus
Why?
It's kinda sad. So few people know how to use grammar properly that proper grammar use becomes indicative of AI.
Use them proudly.
digital estuary
I also used to use the dashes :) but lately I'm trying not to
i use em to gaslight my peers π€·πΌββοΈ
grave locust
Why?
It's kinda sad. So few people know how to use grammar properly that proper...
well English is not my first language but I remember back in high school I was fascinated with them, almost like gpt xD now.. I mostly use them when i write poetry (and I'm not self promoting here) or other short stories.
pallid lotus
They're a perfect middle ground between a comma and parentheses.
digital estuary
Why?
It's kinda sad. So few people know how to use grammar properly that proper...
I'm not saying anything bad against em dashes or grammar and I totally agree on people not using grammar properly, I'm just saying that on a platform that is usually informal, I'll be more inclined towards the belief that someone who used an em dash is using AI over being a formal gentleman with amazing grammar π
grave locust
They're a perfect middle ground between a comma and parentheses.
yess :D I really didn't like parenthesis (but they do come in handy)
pallid lotus
There's nothing formal about em dashes smh -- they're a perfectly legitimate part of any sentence.
As demonstrated right there.
digital estuary
I should probably start eating up more grammar content as I will probably need it soon π Good way to remind myself
digital estuary
As demonstrated right there.
-- > β
pallid lotus
I'd also point out that this server feeds into an industry where a good grasp of language is essential...
grave locust
omg I think I made my setting too strict for my profile, I can't react to messages and is bugging me
velvet gull
omg I think I made my setting too strict for my profile, I can't react to messag...
you gotta verify with /verify
digital estuary
Two hyphens is how you type an em dash...
Discord just doesn't substitute
I am aware
pallid lotus
omg I think I made my setting too strict for my profile, I can't react to messag...
That's a server setting. It's because you don't have roles
grave locust
you gotta verify with /verify
aaaah I see, thanks :) yep makes sence, waiting to recover my account and will verify after that
twin ridgeBOT
Gave +1 Rep to @velvet gull (current: #1283 - 4)
pallid lotus
If you'd prefer β I can do it properly though 
Advantages of mobile.
It's just an extra few steps.
digital estuary
If you'd prefer β I *can* do it properly though <:kekw:658061932577816606>
Adva...
I didn't know mobile has em dashes, thanks on enlighting me with the fun fact though!
twin ridgeBOT
Gave +1 Rep to @pallid lotus (current: #11 - 914)
pallid lotus
You can do them on desktop as well TBF. Alt codes or powertoys on Windows
ashen cape
Hello chat
pallid lotus
I wanna say the alt code is 151 for Windows? Been a while -- usually I just let it automatically substitute
grave locust
Hello chat
hello
pallid lotus
I wanna say the alt code is 151 for Windows? Been a while -- usually I just let ...
0151
I was close.
...
grave locust
That's a server setting. It's because you don't have roles
sorry, just saw the message, yes will have to wait a little bit :)
digital estuary
You can do them on desktop as well TBF. Alt codes or powertoys on Windows
Even more fun facts!!! :steamhappy:
ashen cape
I wanna say the alt code is 151 for Windows? Been a while -- usually I just let ...
I use -- when it's possible to substitute them to β
but when not
I'd prefer regular -
It's just more comfortable
pallid lotus
I'd prefer regular -
Yeah, but that's inaccurate. Hyphen β Em Dash β En Dash
ashen cape
Ikr but thanks there's no need to have 100% accurate grammar while chatting
pallid lotus
-- is irritating, but at least it's symbolically an em dash
ashen cape
I can't just accept it normally
It gets percepted as AI because AI uses it everywhere
grave locust
wow just googled En Dash :) I feel educated
ashen cape
even at places where this Em Dash won't needed
pallid lotus
Heh, yeah, that's actually what sparked this conversation
ashen cape
or would be better replaced with comma
It's just cosmetically
But GPT uses it too often
ashen cape
Heh, yeah, that's actually what sparked this conversation
I didn't saw the context but wanted to contribute :P
pallid lotus
The fact that em dashes are now considered an indicator of AI because AI overuses them and humans underuse them.
pallid lotus
I didn't saw the context but wanted to contribute :P
Nae worries, kinda figured π
ashen cape
That's the point. Just because people are underusing them when AI just..
being AI
Only Claude didn't use them too often so it's irritating
but the funniest part that because people are to lazy to do Alt 0151
their AI-generated works can be exposed
pallid lotus
What I don't get is how the damn robots developed such a liking for them.
Modern English speakers underuse them. What the hell have the models been trained on that they now overuse em dashes
velvet gull
lots of articles
ashen cape
I'm not into LLM or model training so I may be wrong but I think it strongly depended from the source from which they were trained
pallid lotus
but the funniest part that because people are to lazy to do Alt 0151
I mean, even then, most office suites just substitute -- automatically. Can't remember the last time I had to manually insert an em dash when reporting, etc.
grave locust
old literature?
pallid lotus
I'm not into LLM or model training so I may be wrong but I think it strongly dep...
Exactly. What sources have they used which overuse em dashes.
My guess would be academia, aye.
Older literature would be a good guess too though
... Thanks autocorrect?
ashen cape
I mean, even then, most office suites just substitute -- automatically. Can't re...
I know, the same is with Obsidian or other instruments
ashen cape
Exactly. What sources have they used which overuse em dashes.
Sadly we won't know this
ashen cape
... Thanks autocorrect?
Maybe some researches
which are always checked
and maybe there Em Dash is a must
pallid lotus
Maybe some researches
Oh, that was me sarcastically thanking my phone's autocorrect for turning literature into litres
ashen cape
oh lol, I didn't notice that
I was too slow processing the whole information
but I think maybe it's good to some extent to have this "check" for Em Dashes just to prove how the essay or whatever was wrote
pallid lotus
As a small metric in a larger system, maybe.
Too easy to raise false positives if that's your entire system though.
I'm glad I finished uni just before GenAI became commonplace
ashen cape
Considering schools where IPads or other tablets are often and often
and where kids getting more and more lazier
it could be a good system
because kids are to lazy to use --
pallid lotus
it could be a good system
Nah, I'll tell you the best system to combat AI use in schools... you ready?
Pen and Paper π€£
ashen cape
It is actually but it's obvious that there will be more and more digital devices that are replacing old school methods to prove it
pallid lotus
Kids these days rely far too much on technology... And that's coming from a 24 year old who works with computers as a career.
ashen cape
The problem of AI is actually how we are getting lazy because of that
It's like when we stop to search solutions
and just paste our problem into AI to solve it
pallid lotus
You seen the MIT study on that?
ashen cape
I didn't
pallid lotus
Here's an article summarising it if not:
https://time.com/7295195/ai-chatgpt-google-learning-school/
The link to the actual paper is here:
https://arxiv.org/pdf/2506.08872v1
It's a scary read
sand trench
Here's an article summarising it if not:
https://time.com/7295195/ai-chatgpt-goo...
how bad is using search engines to figure it out instead of figuring it out on your own??? as seems they tested that too
ashen cape
I saw a lot of ideas brought by ChatGPT alone (also without adjusting it with own ideas)
sand trench
yes shadow could just read this but is assuming muiri already read it
ashen cape
how bad is using search engines to figure it out instead of figuring it out on y...
As I already read to that point
It states that in comparison with ChatGPT it calls an active brain function
more active
pallid lotus
how bad is using search engines to figure it out instead of figuring it out on y...
Been a few months since I read it, but iirc it's a middle ground between GenAI (basically brain dead) and brain-only problem solving.
ashen cape
By the way, just checked my own written letter that goes with my CV to HR. I got 90% of AI
I don't know what algorithms they are using
sand trench
thank you @pallid lotus @ashen cape
twin ridgeBOT
Gave +1 Rep to @ashen cape (current: #679 - 10)
Gave +1 Rep to @pallid lotus (current: #11 - 915)
ashen cape
But I couldn't imagine me writing like AI
It's just good grammar checked with Grammarly
tf
velvet gull
grammarly is picked up by AI detectors so thats why
sand trench
oh so we should have typos???
ashen cape
But I used it for Grammar check and not paraphrasing I guess?
velvet gull
if i have time to care i sometimes paste what i wrote into an ai checker to verify it and change it to show 0
ashen cape
in official letters ^^^
velvet gull
But I used it for Grammar check and not paraphrasing I guess?
yeah still gets flagged unfortunatley
pallid lotus
It's just good grammar checked with Grammarly
How do you think Grammarly is working?
ashen cape
How do you think Grammarly is working? <:kekw:658061932577816606>
Okay that's quite obvious
But I don't paraphrase anything more like orthography or grammar at all
because sometimes I forget to write u in obvious
bright stone
hi
sand trench
seems shadow has figured out how to setup their "blog" on github pages now :D
bright stone
I want to ask a question but im afraid to be missunderstanded
pallid lotus
because sometimes I forget to write u in obvious
Hey, at least you try. Americans don't even bother with that lmao
velvet gull
because sometimes I forget to write u in obvious
word isnt enough for those corrections?
ashen cape
I want to ask a question but im afraid to be missunderstanded
Just ask it, if we won't understand it -> we reask
pallid lotus
I want to ask a question but im afraid to be missunderstanded
And what would that question be?
ashen cape
word isnt enough for those corrections?
Sometimes yes, sometimes not
Espescially when I'm tired
I'm relying on autocorrect but still being blind
grave locust
I think at this point whatever you write will have AI "traces". And I think it's because it is used on many different texts. When i write I like to experment with different tones, and I use AI too (mostly for research and grammar check and is fun to consider what the reader will think about a text that I feed into gpt)
velvet gull
Sometimes yes, sometimes not
ive got a perfect solution - find a grammar assistant on fiverr
ashen cape
ive got a perfect solution - find a grammar assistant on fiverr
I'm not a millionaire π
pallid lotus
This is why we do rounds of QA for documents in a workplace. Grammarly just functions as an AI peer review these days.
velvet gull
youre cooked then sorry :((
ashen cape
The thing is when I write like the whole day
I won't get this kind of typos
but when it's the first letter I need to write
then..
obvios
pallid lotus
I think at this point whatever you write will have AI "traces". And I think it's...
I've seen a few authors complain about exactly this.
Their work has been ingested (arguably illegally) into AI training sets, and people keep accusing them of using AI to write... but it's actually the opposite
ashen cape
repetetative
I just don't understand how my personal story in this letter could be percepted as AI lol
I'm starting to have thoughts as I'm being in multiverse
hoary pasture
chat
i'm watching 15 hours youtube video of cyber mentor
and shit is it actually hard or am i just tripping?
pallid lotus
I'm starting to have thoughts as I'm being in multiverse
Society is cooked. Just sit back and enjoy the chaos
ashen cape
and shit is it actually hard or am i just tripping?
I guess it's not that hard when you structure what you'll need to learn in the first place
because if you will start direct from SSTI ignoring the basics
hoary pasture
I guess it's not that hard when you structure what you'll need to learn in the f...
ic
ashen cape
you'll be thinking it's insanely hard to process
ashen cape
Society is cooked. Just sit back and enjoy the chaos
I will enjoy it when I will have a stable income atleast
pallid lotus
because if you will start direct from SSTI ignoring the basics
Eh? Since when is SSTI not a basic?
ashen cape
Eh? Since when is SSTI not a basic?
since when somebody don't even know what Back and Frontend are
It's just a point of perception
from my side SSTI is incredibly easy to understand and exploit but still
grave locust
I've seen a few authors complain about exactly this.
Their work has been ingest...
I'm not against using AI or a puritan (?). There was a writer, not sure if I remember correctly but she mentioned she used AI and her book actually was really good (I think she was from Japan). What I want to say is, I think even in the past, people would build stories upon stories they heard right? And there are minds who have the same idea and live in different conrers of the Earth. Not rying to be an AI advocate eiher, but for me it really works :) not only n writing. I think it depends on how your brain is wired. Is like having a personal assistant and a 1-to 1 tutor sometimes.
hoary pasture
alr y'all got me lost now
ashen cape
alr y'all got me lost now
Just structure what you need to learn at first place (or use roadmaps atleast)
pallid lotus
since when somebody don't even know what Back and Frontend are
See, that's not security though. That's basics of application development. You should know that before learning offensive security.
hoary pasture
Just structure what you need to learn at first place (or use roadmaps atleast)
how do i make one?
i'm completely new to this ngl
pallid lotus
Which ironically does tie in with structuring what you need to learn lma
ashen cape
how do i make one?
i'm completely new to this ngl
Maybe use roadmap from TryHackMe (Learning paths) or
let me find it
hoary pasture
Maybe use roadmap from TryHackMe (Learning paths) or
i'll look into that 
but lmk if you find one too pls 
oh oh
found one already
pallid lotus
https://roadmap.sh/cyber-security
Oh, no no no. Not this. That is not a roadmap
ashen cape
Oh, no no no. Not this. That is not a roadmap
I used it and it was well
What's wrong with it actually?
pallid lotus
That is a script kiddie regurgitating a bunch of acronyms on to a page, seemingly at random
There's no focus to it. It's about as useful as reading a dictionary of computing terminology, if they didn't bother to write down the definitions
hoary pasture
π
pallid lotus
Also, their categorisation of certs is just bizarre
hoary pasture
welp
ashen cape
There's no focus to it. It's about as useful as reading a dictionary of computin...
Makes sense then. I didn't think about it because it seemed okay for me. Then it will be better to use THM one
As I find it ultimately okay
pallid lotus
e.g., CEH is not an advanced cert by any stretch of the imagination. For that matter, CEH is something you should only ever do if you literally cannot get a job in your area without it, or if your employer insists on paying for it.
And even then you should forget everything it teaches you as soon as you have the piece of paper.
Then there's random stuff like this just thrown in there
ashen cape
tbh didn't have any experience about CEH
pallid lotus
Like, sure, yes, okay those are virtualization technologies... so what?
How does that even remotely help? How does it even signpost you to something useful?
The whole thing is one big mess thrown together in 5 minutes by someone with no experience who has no clue what they're doing but fancies LARPing as a cybersec professional
Note that it also claims to make you a "Cyber Security Expert"... without bothering to acknowledge just how many different roles and domains cyber security actually encompasses.
hoary pasture
thm roadmap it is then ic 
ashen cape
Note that it also claims to make you a "Cyber Security Expert"... without bother...
but I got the point of it
hoary pasture
Note that it also claims to make you a "Cyber Security Expert"... without bother...
would it ever be a problem if at any point i ask you to share your wisdom? 
pallid lotus
would it ever be a problem if at any point i ask you to share your wisdom? <:Pra...
"Wisdom" might be pushing it
I'd honestly suggest just asking in chat. If I'm around I'll probably answer. If not, there are still others in here who can π
hoary pasture
"Wisdom" might be pushing it <:kekw:658061932577816606>
I'd honestly suggest j...
yes my brudda, the more the merrier and ty
twin ridgeBOT
Gave +1 Rep to @pallid lotus (current: #11 - 916)
rapid merlin
i'll ask alot since i'm new tho
Hi new
i'm too stupid to understand that
gusty inlet
@pallid lotus Wait a minute aren't you younger than me?
Just noticed it said "Senior" in your profile.
Or am I confusing you with someone else?
rapid merlin
bout to go to bed
cya soon ig
rapid merlin
bout to go to bed
cya soon ig
Sleep tight
hoary pasture
<:tipsfedora:662730883513450504>
hoary pasture
Sleep tight
sure tc my brudda, GN!
wide hornet
Hi, I am struggling in the 'Metasploit: Exploitation' room. Could I DM someone for help?
ashen cape
Ask in #room-help for best experience
wide hornet
thanks!
errant girder
Hey, can someone from Staff contact me via DM? I have a light-hearted question about one thing, but I don't want to bother anyone on this server, since there is no questions-related channel. It's, by any chance, not any critical thing or a problem, yet I have something in my mind that I'd try asking.
pallid lotus
<@650476435269484549> Wait a minute aren't you younger than me?
Just noticed it ...
That's my job title. Political speak for senior pentester
rapid merlin
That's my job title. Political speak for senior pentester
Quick qn
gusty inlet
That's my job title. Political speak for senior pentester
And how young are you again?
pallid lotus
24
rapid merlin
How long have u been in this field?@pallid lotus
gusty inlet
Someone can be a senior at 24?
pallid lotus
Apparently π€·ββοΈ
rapid merlin
Someone can be a senior at 24?
π²
gusty inlet
Oh wait, you started working directly after your BSc?
My friends who are seniors have all skipped the MSc, guess I'm behind on that part.
carmine fox
The world has gone mad with job titles nowadays
rapid merlin
My friends who are seniors have all skipped the MSc, guess I'm behind on that pa...
U have 2 
pallid lotus
How long have u been in this field?<@650476435269484549>
Depends what we're counting. I worked for THM on a contract basis 2020->2022, plus part time vulnerability assessment for a local company 2021->2022. Worked as a pentester 2022->current.
So either 2 years if we only include full time work, 3 years if we only include pentesting, or 5 years if we include teaching as well.
rapid merlin
Depends what we're counting. I worked for THM on a contract basis 2020->2022, pl...
Thanks
twin ridgeBOT
Gave +1 Rep to @pallid lotus (current: #11 - 917)
pallid lotus
Oh wait, you started working directly after your BSc?
Technically started working for the company I'm with now 1 day/week during my BSc. Got hired after my third year.
rapid merlin
This should give me a general idea
strong fjord
Babdoi 
gusty inlet
I've given up on my red team journey. RIP all my certs and money. No jobs for me in the red team for a year now.
rapid merlin
I've given up on my red team journey. RIP all my certs and money. No jobs for me...
Damn
gusty inlet
I'll stay in my blue job for now I guess.
gusty inlet
Damn
Yeah, most clients are skipping pentests entirely. They just rely on automated vul scans now.
carmine fox
Well there is a much higher demand in blue jobs to be fair π
rapid merlin
Yeah, most clients are skipping pentests entirely. They just rely on automated v...
Does pentester.com come under that?
gusty inlet
Huh? No.
pallid lotus
And some automated pentests now apparently.
Gonna be very interested to see if these ever become comprehensive.
May need to prepare an exit route into architecture
pallid lotus
Does pentester.com come under that?
Technically yes. The original scans in pentester looked at vulnerabilities in externally facing infrastructure, and there is actually a pentest service (or was -- not seen that side for a while).
Focus has been on identity stuff for a while now though.
carmine fox
Gonna be very interested to see if these ever become comprehensive.
May need to...
To be honest, have you seen the outputs of Pentera? It is quite interesting to be fair. I am not advocating in any way for replacing pentests but the tool does a pretty interesting job.
rapid merlin
Technically yes. The original scans in pentester looked at vulnerabilities in ex...
i gotta get better at what I do if i want to win this battle
pallid lotus
To be honest, have you seen the outputs of Pentera? It is quite interesting to b...
Is that the open source one?
A colleague and I tested one off GitHub a month or so ago and weren't hugely impressed. Can't remember which one though
rapid merlin
pallid lotus
No, definitely not that one
carmine fox
Is that the open source one?
A colleague and I tested one off GitHub a month or ...
No it is not open source π
gusty inlet
Gonna be very interested to see if these ever become comprehensive.
May need to...
Yeah it's sad to see TBH... had a talk with the head of the offsec department in our company, if he's worried then you know it's bad lol.
Lost lots of customers this year.
pallid lotus
Lost lots of customers this year.
Look on the bright side. The tools are not at the point yet where they can fully replace a pentest, despite what marketing claim. Or, at least, none of the ones we've looked at have been at that point.
i.e., the companies jumping on that bandwagon are likely to get a nasty shock.
Once they start getting hacked the trend is likely to slow down.
There's also a lot of talk recently about the AI bubble bursting. Looking forward to seeing whether that happens
carmine fox
That is under the assumption companies are going to get hacked because they are not doing any pentesting, I find that a dangerous statement in a world where there is a serious gap in workforce and automation gaining a lot of momentum and traction in the cyber world.
gusty inlet
Look on the bright side. The tools are not at the point yet where they can fully...
I honestly think pentests will be doomed. RTOs less likely.
I really got sad when I heard the manager saying they'd give it a max of 5 years before it dies by another 90%.
(Pentest jobs)
oblique loom
Tbh I kinda gave up on landing a pentest career
tall oak
anyone here playing hack the boo CTF?
pallid lotus
That is under the assumption companies are going to get hacked because they are ...
Pentests are a security control, nothing more. You're less likely to get hacked if you've already tested yourself for vulnerabilities, but that's it.
i.e., you're not automatically going to get hacked if you don't do pentests, nor are you 100% safe if you do... but they sure as hell reduce the risk
oblique loom
Let the dream die, I'll figure out something else
pallid lotus
I really got sad when I heard the manager saying they'd give it a max of 5 years...
It's possible, but I've not given up hope on that yet.
Doesn't mean I'm not making backup plans, granted
carmine fox
Why is everyone so dramatic this evening, having offensive security knowledge is still valuable knowledge π
pallid lotus
Right?
rapid merlin
Why is everyone so dramatic this evening, having offensive security knowledge is...
Who's gonna feed my 10 kids
pallid lotus
Jesus Christ please tell me you do not actually have children
oblique loom
Jesus Christ please tell me you do not actually have children <:kekw:65806193257...
I have a cat
pallid lotus
Can always be a hobbyist
A "hobbyist pentester" tends to end up in jail π€£
carmine fox
You can have a pretty decent career in other cybersecurity trajectories
oblique loom
A "hobbyist pentester" tends to end up in jail π€£
THM is kinda hobbyist tbh
gusty inlet
Doesn't mean I'm not making backup plans, granted <:kekw:658061932577816606>
LMAO. You sounded exactly like everyone in our offsec department.
The manager told them to start having a backup plan.. just in case. I doubt the demand is as bad in the US as it is here in France, but you never know.
oblique loom
Its what ive been doing outside my own labs with my own tech
pallid lotus
LMAO. You sounded exactly like everyone in our offsec department. <:kekw:6580619...
I dunno, I kinda fancy being CISO
gusty inlet
I fancy being a RTO but welcome to France.
pallid lotus
I really enjoy security architecture. Designing systems in a way they can't be hacked.
That's always been my strength in offensive security -- focusing as much on building as destroying.
oblique loom
I'm just not gonna have high hopes for something that will probably never happen
The chances of it are low
(Where Im at at least)
carmine fox
I really enjoy security architecture. Designing systems in a way they can't be h...
So go for security architecture?
pallid lotus
That's the backup plan, yeah
Heck, may end up going that way eventually anyway tbf
But not right now. I enjoy testing too much
gusty inlet
Did you ever conduct an entire Red Team engagement from scratch?
pallid lotus
I mean, that's part of my job? π
gusty inlet
You do both pentesting and RTO?
pallid lotus
We're not big enough to have lots of people dedicated to specific things like the consultancies do.
When we do a RTO, we're the ones planning and conducting it.
oblique loom
I'll get a loan and start my own cybersec firm. Why not? Never gonna know success if you don't take some action. Or could wonder "what if" for the rest of the years.
pallid lotus
You do both pentesting and RTO?
Mhm. Remember I work for an internal testing team. We've got about 20 people total. A few of us specialise in AD / RTO / Purple team sessions, etc. Others specialise in other stuff.
Team ain't big enough for everyone to only know one thing though, or to have dedicated researchers alongside dedicated operators alongside dedicated infrastructure people alongside dedicated administrative teams, etc.
oblique loom
I would love to do a paying pentest as a full time job
But if that wont happen due to employers
I'll start my own
gusty inlet
I see. We have the same case in my company when it comes to Offsec, same team for both. However, they're not mature enough for red team. Hell they're barely mature for pentests lol. They just promote their blue team offerings.
pallid lotus
I'll start my own
Hey, just as long as you have the background to make sure it gets done right (and legally), then why not?
carmine fox
But remember there is a far bigger need for people to actually protect systems instead of pentesting them.
pallid lotus
True. Ultimately, pentesting is literally just a very specialised form of QA
We're all on the same side, at the end of the day.
oblique loom
Hey, just as long as you have the background to make sure it gets done right (an...
As someone that has worked for a startup (hydroponics lab - grew micro greens) it does tkae work but it is possible
Hiring the right people can be fustrating
thick vortex
You can have a pretty decent career in other cybersecurity trajectories
Been taking a couple programming classes, but not sure I'll go with a developer route yet. Game dev, maybe.
pallid lotus
Hiring the right people can be fustrating
That'll be the key if you're wanting to start a consultancy with no experience of your own.
You will need employees who are certified to carry out the engagements (and more importantly have the experience to actually back up those certifications), as well as a legal team to make sure your documents are water tight.
blissful frost
Erm
pallid lotus
If you don't have the former then you won't get clients. If you don't have the latter then you'll end up in jail.
gusty inlet
Yeah, don't be like me with certs and 0 offensive experience.
blissful frost
Trust me y'all just automated AI agents to do bug bounty for u
carmine fox
There we go again
carmine fox
pallid lotus
You'll also need some pretty decent insurance... which brings us back to proving you're able to do the job safely.
pallid lotus
Trust me y'all just automated AI agents to do bug bounty for u
Oh GTFO lmfao π€£
oblique loom
Imo people deserve a chance
blissful frost
Oh GTFO lmfao π€£
Man i did that when I first started and it didn't work and after lots of pain I found a way to enhance it i made 50Β£ π
oblique loom
There are many that want to start in cybersec but will nevver be given the chance cause no prior exp
pallid lotus
Imo people deserve a chance
In a fair world, yes.
We do not live in a fair world though.
In the real world, companies don't like taking unnecessary risks
And in the real world security is not an entry level sector of IT
oblique loom
I get that, but that doesnt mean I have to follow the same route when I hire my employees
Which I have done before
blissful frost
I get that, but that doesnt mean I have to follow the same route when I hire my ...
Depends
carmine fox
Good companies always bring in a few juniors along the way, it keeps the team fresh
pallid lotus
Oh, for sure.
If you setup a company and have the budget / time to train up juniors from nothing then good on you, 100%.
But you're not going to get a consultancy off the ground like that.
blissful frost
Good companies always bring in a few juniors along the way, it keeps the team fr...
Good companies does that great companies get junior developers and gives them senior tasks and a cursor subscription
And for low salaries
carmine fox
Lmao π
pallid lotus
Pentesting is high stakes. High risk, high reward.
If you fuck up, you're all going to jail.
If you can't convince clients that you can do the job safely, you won't get their business.
If you can't convince insurance that you can do the job safely, they won't insure you.
There's no getting around that.
blissful frost
Pentesting is high stakes. High risk, high reward.
If you fuck up, you're all g...
U can't convince it's either u can or u can't it's a 0 or a 1
Wake up
carmine fox
I believe you over estimate the jail part to be honest, I am not sure where that is coming from π
oblique loom
To be honest, as a former business co-owner. I would take a pay cut first during hard times before I'd think about firing anyone from my team
blissful frost
I believe you over estimate the jail part to be honest, I am not sure where that...
3 monthes of pain
Due to OOS
π
blissful frost
To be honest, as a former business co-owner. I would take a pay cut first during...
Trust me the best thing that u can do is to fire useless who consume and don't generate
pallid lotus
I believe you over estimate the jail part to be honest, I am not sure where that...
Nah, it's pretty clear cut in most jurisdictions.
Usually when something goes wrong, it gets absorbed by the contract and liability waiver (and then by insurance when the client demands a payout).
If you don't have that then you're at the mercy of whatever your local laws are.
willow delta
guys
ERROR 2026 (HY000): TLS/SSL error: Certificate verification failure: The certificate is NOT trusted.
how to fix this issue when logging into a mysql port?
oblique loom
Trust me the best thing that u can do is to fire useless who consume and don't g...
If you hire the right people, that wont be a problem
willow delta
im doing a tryhackme room
carmine fox
Nah, it's pretty clear cut in most jurisdictions.
Usually when something goes w...
I agree but those type of contracts are pretty standard stuff to be honest π
pallid lotus
Jail is a very real possibility (at least in the UK under CMA). You just don't hear of anyone dumb enough to pentest with contracts and insurance lmao
blissful frost
guys
ERROR 2026 (HY000): TLS/SSL error: Certificate verification failure: The c...
Go to setting of ur browser and trust the cert
pallid lotus
I agree but those type of contracts are pretty standard stuff to be honest π
Exactly
If things are setup correctly then you shouldn't need to worry about it.
That's my point.
oblique loom
Hire people with drive, not just paper
blissful frost
If you hire the right people, that wont be a problem
U can't know if u hired the right people or no ans there r always better offers
pallid lotus
If you setup a consultancy you can't cut corners.
willow delta
Go to setting of ur browser and trust the cert
my browser? wdym
oblique loom
U can't know if u hired the right people or no ans there r always better offers
I cant even read this, what?
blissful frost
my browser? wdym
Where do u get the error?
willow delta
Where do u get the error?
im trying to login to a mysql
blissful frost
I cant even read this, what?
There r always better offers to hire people who r better with lower salaries
gusty inlet
mysql on a tryhackme room with TLS?
pallid lotus
Go to setting of ur browser and trust the cert
Why would they be using a browser to authenticate to a mysql db?
gusty inlet
Which room is that?
oblique loom
There r always better offers to hire people who r better with lower salaries
I pay my people well
willow delta
mysql on a tryhackme room with TLS?
i do not know man im getting this error when im trying to login it also happened before in the advent of cyber 2019
oblique loom
To the best that can be offered
gusty inlet
i do not know man im getting this error when im trying to login it also happened...
Room link?
willow delta
Room link?
Wordpress: CVE-2021-29447
oblique loom
I nvr fked around as a business owner
carmine fox
Hire people with drive, not just paper
This is the best advice indeed! I have my own team and I brought all of them in because of their motivation, this is where the magic happens!
willow delta
and in advent of cyber 2019 i forgot which day it was
oblique loom
This is the best advice indeed! I have my own team and I brought all of them in ...
Exactly!
gusty inlet
Wordpress: CVE-2021-29447
Did you try comparing with the writeups?
blissful frost
Room link?
Go read in room bugs in reported a bug before
oblique loom
Exp is not always the good pick
blissful frost
Go read in room bugs in reported a bug before
And no one asnwered
willow delta
Did you try comparing with the writeups?
i searched on youtube and google it worked fine for them
oblique loom
You should always give people a chance, as long as they have the drive to grow
willow delta
but when i try to login it get that error im using the same username too
gusty inlet
You should always give people a chance, as long as they have the drive to grow
Unfortunately does not work like that in real life. Look at all my certs, all that and I wasn't even given a chance for a junior pentesting position.
willow delta
i mean its only for one question i tried just to search for it on google but no one is shwoing the answer so idk how to complete the room..
gusty inlet
Best I got was web pentest, my one and only offer.
blissful frost
but when i try to login it get that error im using the same username too
Just do this gng
mysql -h your_host -P your_port -u your_user -p --ssl-mode=DISABLED
gusty inlet
In a year.
pallid lotus
You should always give people a chance, as long as they have the drive to grow
Agreed... Provided you have people (either those people, or other people), who can safely lead the pentest team
Again, if you can't prove that to the clients, they won't give you money.
If you can't prove that to your insurers, they will either refuse you cover, or set a massive premium.
willow delta
Just do this gng
```mysql -h your_host -P your_port -u your_user -p --ssl-mode=D...
mysql: unknown variable 'ssl-mode=DISABLED'.
...
blissful frost
mysql: unknown variable 'ssl-mode=DISABLED'.
...
Did u rly just copy and pasted
pallid lotus
End of the day, experience does not necessarily make them suitable for that role... but lack of experience definitely excludes them.
willow delta
Did u rly just copy and pasted <:kekw:658061932577816606>
bruh no bro im not that stupid
i jsut copied the sslmode and added it to my command
pallid lotus
Having juniors with a lot of passion around to train up and learn from the seniors is awesome, assuming you actually have seniors to train them.
willow delta
Did u rly just copy and pasted <:kekw:658061932577816606>
ββ$ mysql -h 10.10.221.189 -u thedarktangent -p --ssl-mode=DISABLED
mysql: unknown variable 'ssl-mode=DISABLED'
oblique loom
Agreed... Provided you have people (either those people, or other people), who c...
Thats why you have a mixed employee base
Like seriouly
blissful frost
bruh no bro im not that stupid
Hmm try to run it with --skip-ssl
pallid lotus
Exactly
oblique loom
Ofc you hire experts with years of exp
willow delta
Hmm try to run it with --skip-ssl
yh it worked now
carmine fox
This chat is confusing me, we have people topics and in parallel this guy is talking about mysql commands
willow delta
thank you bro
blissful frost
thank you bro
Anytime man β€οΈ
oblique loom
But atst I hire juinors so they can learn
pallid lotus
Ofc you hire experts with years of exp
Now, you do know what your problem here is gonna be right?
gusty inlet
+rep @blissful frost
twin ridgeBOT
Gave +1 Rep to @blissful frost (current: #620 - 11)
pallid lotus
Then again, might not be a problem, depending on your background I guess π€·ββοΈ
oblique loom
Have you ran a business before?
blissful frost
Gn y'all
oblique loom
Have you been a business owner?
blissful frost
Have you ran a business before?
Yep a lemon stand when I was 8
oblique loom
I apperciate the joke lol
ashen cape
is it a business?
topaz topaz
Yep a lemon stand when I was 8
Who was your network admin?
blissful frost
Who was your network admin?
The root
carmine fox
Yep a lemon stand when I was 8
Did it have a cybersecurity program? You know, to protect the lemons!
pallid lotus
Have you ran a business before?
You're talking about starting your own consultancy.
You've said you're going to hire some experienced pentesters, as well as a bunch of juniors with a lot of drive.
You're going to get the legal basis in place to do the testing.
You're also going to get insurance in case something goes wrong.
Then you're going to acquire some clients.
All of that costs a lot of capital.
If you've got the money to throw at it, or can raise it from investors, then good on ya
oblique loom
You're talking about starting your own consultancy.
You've said you're going to...
No fking sht, its called small business loans
blissful frost
Did it have a cybersecurity program? You know, to protect the lemons!
Ofc i used pure urine (fun fact urine is a natural grow booster for most plants)
pallid lotus
Ofc i used pure urine (fun fact urine is a natural grow booster for most plants)
Jesus fucking Christ. How the hell did we get to this
thick vortex
There are many that want to start in cybersec but will nevver be given the chanc...
Has anyone actually landed a SOC career with the SAL1 cert?
blissful frost
Jesus fucking Christ. How the hell did we get to this
Search it up man
carmine fox
Jesus fucking Christ. How the hell did we get to this
It is sunday evening, classic stuff I suppose
oblique loom
Search it up man
Wth does that have anything to do with what I said?
topaz topaz
Has anyone actually landed a SOC career with the SAL1 cert?
I'd say the SAL1 isn't a key unlocks all kind of cert
blissful frost
It is sunday evening, classic stuff I suppose
It Saturday for me
pallid lotus
No fking sht, its called small business loans
Cool. You've got it all figured out. Go nuts π€·ββοΈ π
topaz topaz
It Saturday for me
Or as I like to call it, "Thursday" π
oblique loom
Cool. You've got it all figured out. Go nuts π€·ββοΈ π
Start a business yourself and then tell me how it is
carmine fox
It Saturday for me
What? How is that possible :/
topaz topaz
Start a business yourself and then tell me how it is
Are you hiring yet?
pallid lotus
I'm well aware of how to run a business lmao
oblique loom
Are you hiring yet?
We'll get there
oblique loom
I'm well aware of how to run a business lmao
k
topaz topaz
What? How is that possible :/
They looked at the calendar
blissful frost
They looked at the calendar
topaz topaz
<:johnsus:1408170707715883094>
heyyy aha.
blissful frost
Lowk I came here to kinda troll
topaz topaz
Lowk I came here to kinda troll <:kekw:658061932577816606>
What a malicious silly little fella you are π
carmine fox
Well, the saturday thing was just a stupid troll imo
topaz topaz
cmon pope don't be so mean to the guy
pallid lotus
It's 12:53 am ur too slow
It literally can't be π€£
If you're gonna troll at least make it vaguely plausible
topaz topaz
He's just here to do a bit of trolling
pallid lotus
0053 on Monday sure
blissful frost
It literally can't be π€£
If you're gonna troll at least make it vaguely plausib...
I swear on my life it's 12:55 am rn
pallid lotus
Sure. On Monday
blissful frost
Sure. On Monday
Nah
topaz topaz
This one is <:kekw:658061932577816606>
Point at him and laugh hehehehehe
topaz topaz
I live in the past
how bro feel
Can we bring back MSN and forget all this discord BS
rose tusk
IRCs
grave locust
yahoo messenger?
rose tusk
BUZZ!!
topaz topaz
imagine THM on this π₯ π₯
grave locust
aah wass that hotmail?
topaz topaz
aah wass that hotmail?
MSN
carmine fox
Oh my god, let's not go back to that era
blissful frost
Can we bring back MSN and forget all this discord BS
I think y'all were talking abt business the only way to do business is to make ur employees blind to the truth
topaz topaz
windows live messenger
topaz topaz
Oh my god, let's not go back to that era <:kekw:658061932577816606>
I'd go back to that era ANY day of the week
blissful frost
I daily drive Ubuntu for 2 years now what should I change to?
topaz topaz
An era where the internet actually had character and wasn't built around algorithms and bots made to hold your undivided attention hostage all while bombarding you with advertisements and propaganda of all kinds
topaz topaz
I daily drive Ubuntu for 2 years now what should I change to?
Why not go for good old Debian?
Ubuntu's granddaddy
carmine fox
How old? Because MSN was pretty well known
topaz topaz
i'm old, but not sure I used this :)
I'm nearing my 30's and used MSN plenty
blissful frost
Ubuntu's granddaddy
I think u mean grandpa π
carmine fox
If you are like me end of 80's you have lived through all of it
topaz topaz
I think u mean grandpa π
tomato tomato
blissful frost
tomato tomato
Ur British?
grave locust
ahem.. born in '86 =.= but consider demographics...
topaz topaz
If you are like me end of 80's you have lived through all of it
And you truly believe the best of it is this era?
topaz topaz
Ur British?
Depends on the day
carmine fox
And you truly believe the best of it is this era?
I actually believe the best was, when we had no internet π
carmine fox
And I am lucky enough to have had my childhood without any of the Digital era stuff
grave locust
And I am lucky enough to have had my childhood without any of the Digital era st...
saaame :D
blissful frost
Depends on the day
topaz topaz
And I am lucky enough to have had my childhood without any of the Digital era st...
I lived in a very underdeveloped location, where our televisions had only just started showing color. I lived during an era where VHS tapes where the standard, and all my childhood is kept in VHS tapes to this day
In the meantime, my godfather from America would bring us gifts like a DVD player in the style of a laptop, and that was the most mindblowing tech ever
blissful frost
I lived in a very underdeveloped location, where our televisions had only just s...
Avg me being 15 reading this and asking how did people live back then
topaz topaz
Avg me being 15 reading this and asking how did people live back then
Very happily I'm afraid
carmine fox
We had good lives without the internet to be honest, kids where mostly playing outside, in bad and good weather
topaz topaz
These days we have been imprisoned in a very insidious comfortable cell
blissful frost
Very happily I'm afraid
Like what did u do for fun
sturdy sequoia
the industrial revolution destroyed society
blissful frost
Like even studying study materials was too old and bad
topaz topaz
Like what did u do for fun
We had neighbors, we went for long walks, we met up after school, we ran away from the house, bike rides, we'd go to the funfair, win bb gun prizes and play bb gun wars
blissful frost
the industrial revolution destroyed society
The greed of the owners of the industries did
topaz topaz
During Christmas we'd go for carols, by nighttime we could afford a Playstation 2
blissful frost
We had neighbors, we went for long walks, we met up after school, we ran away fr...
I used to do this too what is the problem?
grave locust
During Christmas we'd go for carols, by nighttime we could afford a Playstation ...
that's a small business idea :) sing for games
topaz topaz
I used to do this too what is the problem?
That's good! Your parents gave you logical boundaries and allowed you to enjoy your childhood
carmine fox
yeah but not everyone has those boundaries nowadays
topaz topaz
My statements are not meant to attack the average person, it's all about what today's industries are targeting
topaz topaz
yeah but not everyone has those boundaries nowadays
absolutely not, unfortuantely
blissful frost
That's good! Your parents gave you logical boundaries and allowed you to enjoy y...
Hahaha no they didn't at all my parents didn't let me out of house alone till I was 11
topaz topaz
Hahaha no they didn't at all my parents didn't let me out of house alone till I ...
Would you let your child leave the house at the age of 10 unattended?
carmine fox
amyhow night night all, it was fun chatting
topaz topaz
amyhow night night all, it was fun chatting
Goodnight friend
blissful frost
Would you let your child leave the house at the age of 10 unattended?
Depends
Is the future safe?
blissful frost
Then you're still a tad bit young π€£
Maybe the future is safe
topaz topaz
Maybe the future is safe
That's what our ancestors used to say in the medieval ages
That's what their ancestors used to say as cavemen on the verge of civilization
blissful frost
U can never say will u but u can say should I have done?
topaz topaz
U can never say will u but u can say should I have done?
No, as that implies regret
blissful frost
That's what their ancestors used to say as cavemen on the verge of civilization
Ye and by years world is getting safer at least I won't get eaten by a huge chicken
topaz topaz
Ye and by years world is getting safer at least I won't get eaten by a huge chic...
There's much worse out there nowadays than huge chickens
blissful frost
No, as that implies regret
Regret is a key to build better future without regret no improvement
topaz topaz
Don't blame your parents for keeping you safe, or, blame them, but expect to understand when you grow and have kids of your own
blissful frost
Don't blame your parents for keeping you safe, or, blame them, but expect to und...
Ur right ngl thanks
twin ridgeBOT
Gave +1 Rep to @topaz topaz (current: #232 - 41)
topaz topaz
Regret is a key to build better future without regret no improvement
Don't confuse development with contemplating and feeling bad about past choices. Embrace bad decisions, if you didn't have the chance to choose them then, you could've made far more crucial mistakes further down the road
sharp igloo
hi
tiny hinge
Hi everyone
blissful frost
Don't confuse development with contemplating and feeling bad about past choices....
I mean if mankind didn't get regretion they won't try to improve to prevent them later right?
topaz topaz
Hi everyone
Here comes THE elliot
rich axle
just bought premium and started taking notes properly in obsidian im locked in now
tiny hinge
Here comes THE elliot
Hi buddy hru?π€£
blissful frost
Hi everyone
From the pfp ik the most iconic questions r coming
topaz topaz
just bought premium and started taking notes properly in obsidian im locked in n...
The best combo
sharp igloo
whats going on here? anything interesting happenin?
topaz topaz
Hi buddy hru?π€£
Doing alright. New to cybersecurity, or visiting with experience?
blissful frost
The best combo
I used to use obsidian before tryhackme for my normal to do list
sharp igloo
Sup 47/Smith
you got me.
topaz topaz
whats going on here? anything interesting happenin?
Just a bunch of I.T. nerds getting angry at terminals and asking for help on syntax errors
The usual
topaz topaz
I used to use obsidian before tryhackme for my normal to do list
Obsidian is excellent. Do you use Linux?
Ah Ubuntu you mentioned
blissful frost
Obsidian is excellent. Do you use Linux?
I use Ubuntu dailt drive for 2 years now
Daily
topaz topaz
I use Ubuntu dailt drive for 2 years now
Why did yo uwant to switch
blissful frost
Why did yo uwant to switch
Bored idk
blissful frost
It's always nice to try smth new to learn to keep ur development going
tiny hinge
Doing alright. New to cybersecurity, or visiting with experience?
Not that new to cybersecurity but definitely new to this app ...
I mean it's crazy here
topaz topaz
Not that new to cybersecurity but definitely new to this app ...
I mean it's cra...
There's some nice n chill people to talk to here most days of the week. I like spending an hour or so just relaxing
blissful frost
Not that new to cybersecurity but definitely new to this app ...
I mean it's cra...
Whatever happens don't go to servers with no rules to not get traumatised like me
I gtg rn
sharp igloo
Whatever happens don't go to servers with no rules to not get traumatised like ...
which servers you talkin about
tiny hinge
Yeah btw what the hack of sever I can't understand
topaz topaz
gnnn
blissful frost
Thanks again @topaz topaz
twin ridgeBOT
Gave +1 Rep to @topaz topaz (current: #227 - 42)
topaz topaz
You're welcome my friend
willow delta
yo guys
i bough a wifi adapter atheros ar9271
like a week ago
but that shit aint working
can anyone help me here
sturdy sequoia
same as yesterday?
ashen cape
just bought premium and started taking notes properly in obsidian im locked in n...
If I only could start Obsidian at the beginning...
sharp igloo
Yeah btw what the hack of sever I can't understand
what do you mean
rich axle
If I only could start Obsidian at the beginning...
Me too dude. i spent wayy too long just forgetting shit and taking notes in nano before i installed this
ashen cape
I also did it before in nano lol
willow delta
Me too dude. i spent wayy too long just forgetting shit and taking notes in nano...
what are you talking about
willow delta
lmaoo
rich axle
i took notes really bad and kept forgetting shit instead of learning it properly
willow delta
just bought premium and started taking notes properly in obsidian im locked in n...
broo i wish i could buy prem
willow delta
i took notes really bad and kept forgetting shit instead of learning it properly
ohh are u using a program called Obsidian ?
rich axle
Yea its good cus you can like make links between different notes and stuff
google it
cherrytree does the same job too
willow delta
i took notes really bad and kept forgetting shit instead of learning it properly
yh same problem tbh i keep forgetting stuff and my desktop is full of stuff when i want to search for something i spend hoursπ
ashen cape
i took notes really bad and kept forgetting shit instead of learning it properly
I regret not doing accurate notes bc I returned to them many times
and then... what just I did?
willow delta
google it
yeah i found it
should i also download
Obsidian.md
ohh does it cost money?
rich axle
Nah its free
willow delta
alr
willow delta
Nah its free
hows the prem bro π
willow delta
Nah its free
bro why u suck at coding python its the easiest lang..
rich axle
Im starting from square one on the jr pentester course cus before prem i just did random rooms and now i have random knowledge everywhere instead of a solid base π
rich axle
bro why u suck at coding python its the easiest lang..
cus i never program
willow delta
Im starting from square one on the jr pentester course cus before prem i just di...
ohh daym lol
i just started with these path things
like 2 months ago
but i cant even complete them
cuz of the prem ;/
rich axle
;/
dreamy bronze
does cisco have an updated blueprint for CCNA
anyone know
because iβm genuinely lost in the sauce
sharp igloo
i bough a wifi adapter atheros ar9271
k can you tell me more?
willow mauve
Hey question I am wondering if I am able to copy what is said in sections of tryhack me to have a reference if I forget?
sharp igloo
Hey question I am wondering if I am able to copy what is said in sections of try...
what do you mean
can you elaborate?
willow mauve
so I am using obsidian to keep notes of things like https://tryhackme.com/room/monikerlink?taskNo=2&sharerId=6792b3d1f6d63c3c0064c39e to go back to as a reference
so I am trying to keep notes is all not trying to use it like my own words just to go back to
sturdy sequoia
sounds like youre already doing what youre asking
sturdy sequoia
on copying information to save for personal use?
willow mauve
for reference of what i have completed already
like I am looking here https://tryhackme.notion.site/Community-Guidelines-bb1cc45df5a64db98ef0d8d314834a68 and it does not say anything
rich axle
Its okay to take notes bro dont worry
willow mauve
well I want to copy what they said bc its explained well'
rich axle
As long as you dont take parts of their premium lessons and publish them online you'll be fine
sturdy sequoia
why would that be a problem?
rich axle
Yea 99% of people do that dont worry bro
willow mauve
yeah I just want to know where the lines are is all
willow mauve
bc I dont want problems ltr
rich axle
yeah its fine you can do it
willow mauve
No I am not I just want to keep the information as reference for help later
Okay is there a way I can talk to them just in case or nah
sharp igloo
Okay is there a way I can talk to them just in case or nah
talk to whom
sturdy sequoia
I mean, yes, you're allowed to copy and paste information from websites
But I think I might be confused about what you're actually asking
sharp igloo
I mean, yes, you're allowed to copy and paste information from websites
no, that is essentially what he is asking
topaz topaz
From what I gathered the person is just scared that he's holding copyrighted material due to the copy pasting
sharp igloo
From what I gathered the person is just scared that he's holding copyrighted mat...
correct
topaz topaz
You are not to share copyrighted content from these rooms in any way
sturdy sequoia
Isn't that what a cache is?
sharp igloo
You are not to share copyrighted content from these rooms in any way
yeah he is not planning on doing that
its just for personal reference
topaz topaz
yeah he is not planning on doing that
Then I personally doubt it's a problem, a ton of people already do the same thing
Hell when I Was in school my teacher would ask us to copy stuff from the chalkboard down to our notebooks, this is how most people have learned to take notes
sharp igloo
maybe if he is super dumb and somehow syncs premium content with some online repo
willow mauve
Yeah I I ainβt dumb lol
topaz topaz
Yeah I I ainβt dumb lol
You're fine, keep learning and enjoying your content man
sharp igloo
Yeah I I ainβt dumb lol
yeah then you should have nothing to worry about mate
willow mauve
Okay
sturdy sequoia
web browsers have a save function. you can keep a local copy of the whole page
topaz topaz
web browsers have a save function. you can keep a local copy of the whole page
That sounds like a horrible way to take notes π
sturdy sequoia
That sounds like a horrible way to take notes π
definitely. but its been a function for as long as web browsers have been around
topaz topaz
fact
sturdy sequoia
it also has a print function π
sharp igloo
definitely. but its been a function for as long as web browsers have been around
i just use comet to summarize each page without looking at the page kappa
topaz topaz
it also has a print function π
Haha yes I've worked in I.T. no need to remind me of those headaches π
sturdy sequoia
eeeeeeeeeeeeeeeeeeeeeekkkkkkkkkkkkkkkkshshshshshshckkckckckceeeeeeeeee
thats my impression of a dot matrix printer
willow delta
k can you tell me more?
more what bro π
serene ginkgo
What we cooking today chat?
willow delta
What we cooking today chat?
th you doing in the screenshare bro
serene ginkgo
th you doing in the screenshare bro
just started to finish off a ctf
sturdy sequoia
What we cooking today chat?
not much atm. not sure what ill work on today. hbu?
serene ginkgo
not much atm. not sure what ill work on today. hbu?
Finishing off ctf, cleaning notes up
willow delta
just started to finish off a ctf
but why are u in a private screensharing..? hahahah
guys i got question
serene ginkgo
but why are u in a private screensharing..? hahahah
private screensharing, wym?
willow delta
private screensharing, wym?
it says u are in general talk-chill and its private
guys if the website index.html is in /var/www/html
and there is also a port 8080 running on html
where should it be?
in /var/www/html?
serene ginkgo
It's probably because your not verified.. with voice access..
willow delta
It's probably because your not verified.. with voice access..
ohhhhhh alr bro mb lol
serene ginkgo
ohhhhhh alr bro mb lol
Connect your THM account and you will have the ability to join voice channels.
willow delta
which ctf u doing
willow delta
Connect your THM account and you will have the ability to join voice channels.
yh ill do that later
serene ginkgo
Guardian from htb.
willow delta
hahahaha
serene ginkgo
rose creek
how do you guys fight the urge to not use what you learn for bad just asking if i am not allowed i would understand
austere verge
Why do you have the urge to do something bad
rose tusk
how do you guys fight the urge to not use what you learn for bad just asking if ...
it's called morals and legislation.
austere verge
I just donβt have that urge
half girder
how do you guys fight the urge to not use what you learn for bad just asking if ...
ethic
rose creek
it's called morals and legislation.
toucha
serene ginkgo
how do you guys fight the urge to not use what you learn for bad just asking if ...
How to fight the Urge?
Think about Prison life
Make yourself afraid that you wont run that little nmap scan.
lmao
rose tusk
easy come easy go
if your car can go 160km or miles per hour, does that mean you should do it in a residential area? π
serene ginkgo
if your car can go 160km or miles per hour, does that mean you should do it in a...
Yes.
Absolutely
jk
No
rose tusk
wrong, you should say yes only if it's your ex's street
serene ginkgo
wrong, you should say yes only if it's your ex's street <:kekw:65806193257781660...
You got me thinking..
does it 5 minutes later.
rose tusk
kids don't try this at home
serene ginkgo
Kids, this is for educational purposes only.
sturdy sequoia
only speed on property you own or have permission to use π
austere verge
wrong, you should say yes only if it's your ex's street <:kekw:65806193257781660...
My ex would jump in front of the car
rose tusk
@gusty inlet plz
grim sparrowBOT
Done!
serene ginkgo
only speed on property you own or have permission to use π
ask for permission before driving.
sturdy sequoia
ask for permission before driving.
get it in writing and looked over by a lawyer
rose tusk
ask for permission before driving.
woven brook
how do you guys fight the urge to not use what you learn for bad just asking if ...
A better question is how do you guys fight the urge to not use what you learn for illegal but not bad things
E.g.: Doxxing the owner of a scamming website or exposing these kinds of shady stuff
rose creek
A better question is how do you guys fight the urge to not use what you learn fo...
i dont know just like hack someones phone who talks alot of shit would be fun but not allowed i suppose
dark wolf
there is no urge to do those things
sharp igloo
how do you guys fight the urge to not use what you learn for bad just asking if ...
ehm I don't know, do you want to get intro trouble?
rose creek
you know not like leak their shit just show them it to get them to shut the fuck up
woven brook
there is no urge to do those things
If I could I think I would have them
I wouldn't give into them but I'd have them
rose creek
ehm I don't know, do you want to get intro trouble?
i am to new to want to get into trouble yet
woven brook
I guess I have batman complex
rose creek
but the urge is there to see how much power you could have
austere verge
If u wanna catch bad guys become law enforcement or a lawyer
rose creek
me a cop lol and or a lawyer i have been on pc way to long lol
austere verge
Doing something illegal to catch someone doing something illegal usually doesnβt solve anything
That person may go free anyway
And u could get in trouble
sand trench
welp time to hit the hay and go honk mi mi mi to beep boop for sleep sloop meep moop style
rose creek
Doing something illegal to catch someone doing something illegal usually doesnβt...
this is true
sharp igloo
welp time to hit the hay and go honk mi mi mi to beep boop for sleep sloop meep ...
ehm meep the moop i guess mrs shadow senpai
dark wolf
If u wanna catch bad guys become law enforcement or a lawyer
or a mercenary
rose creek
or a mercenary
cyber mercenary lol
austere verge
Daddy Keanu
sharp igloo
https://tenor.com/view/keanu-reeves-cyber-punk-gif-14366050
i love benedict cumberbatch
rose creek
time to become a netrunner??
dark wolf
Thatβs whatβs up
sharp igloo
well
ivory cedar
I have returned.
Note to self: Do not wait until the last minute and cram study for the SecurityX exam....
quick blaze
Note to self: Do not wait until the last minute and cram study for the SecurityX...
How'd it go?
#rules Rule 3.
ivory cedar
How'd it go?
I passed, thankfully.
quick blaze
I passed, thankfully.
Awesome job. ππ½
ivory cedar
Have pneumonia, which makes it even more surprising since I was coughing every 2 minutes and head was buzzing the whole exam.
But overall, it was a solid exam.
quick blaze
Have pneumonia, which makes it even more surprising since I was coughing every 2...
Yikes.
ivory cedar
Now all my other exams have renewed, which is the only real reason I elected to take this particular one
quick blaze
Are you CompTIA sponsored or something? π
quick blaze
what would that do? Do those people get certain perks or something?
Oh I have no idea. I was joking.
ivory cedar
oh lol gotcha
quick blaze
Considering your choice of certs. π
ivory cedar
well, my choice was because apparently you cannot use CEUs for the CySA+. Only for the A, Net, and Sec certs. So I would either have to take the CySA+ again or the PenTest+, or take the SecurityX (which used to the CASP+ I think)
all that... and I am a glutton for punishment and enjoy the challenge lol
ivory cedar
What's up with the no CEUs for CySA+ though?
That I have no idea about... really caught me off guard since I had done their CEU course thing for my Sec+ previously. completed it over a weekend and boom, I was re-certified.
I guess because its more of a mid-level cert that they wanna make sure people are staying current or something? idk π€·ββοΈ
quick blaze
I guess because its more of a mid-level cert that they wanna make sure people ar...
Hmm...sounds a bit redundant to me but alright.
ivory cedar
yeah who knows
all I do know was that I wasnt just gonna let years of effort and headache expire
glad I passed, thankfully
quick blaze
glad I passed, thankfully
π
sharp igloo
π
vast wraith
hi
dreamy bronze
helo
finite basalt
Moved my work-in-progress notes from local joplin to server hosted trilium
it's slowly coming together π€£
teal breach
yo guys how can i get the subcriber role in here
ivory cedar
yo guys how can i get the subcriber role in here
...have you tried subscribing?
cause it looks like you already have it
safe swallow
Hello all, new this is world. I was curious whatβs the best way to start and progress. I have maybe 30-1 hour of time to educate myself as I work a 14-18 hour job
sturdy sequoia
Hello all, new this is world. I was curious whatβs the best way to start and pro...
ivory cedar
no
sick shard
hi guys
anyone know about how to do penetration testing for web application
oblique loom
Skinwalker hours
Its almost the Day of the Dead
My family gonna be weird n sht
Making fking shrines n crap
Although I do like the spooky ness
stiff pebble
floral ice
Making fking shrines n crap
sound fun join them
rapid merlin
Do we get a badge for finishing first in ruby league?
sturdy sequoia
Do we get a badge for finishing first in ruby league?
yep
rapid merlin
Does it take time to receive it or what? Bc i still did not get it
rapid merlin
Thanks
narrow yew
This is easy. Do it with hackerone, intigriti, bugcrowd etc or out it on companys website.
Not get people to do your dirty work on discord
junior wraith
Im doing the "Alert Triage With Splunk" and dont even need to do splunk queries. "What is the name of the parent process for the process that created this malicious task?" duh "Which local group did the attacker enumerate during discovery?" duh
neat kindle
junior wraith
many soc boxes on thm
rapid merlin
hi
carmine fox
Hmm, I ended up being first in gold league and I didn't receive the badge π
rapid merlin
happens
velvet gull
Hmm, I ended up being first in gold league and I didn't receive the badge π
Maybe try reaching support?
I finished yesterday evening as a 2nd place plat after starting out in the morning on place 17
The grind was real
rapid merlin
Been like this for a month now
carmine fox
Maybe try reaching support?
Yeah luckily I have it on mail I won so fingers crossed they can do something for me 
carmine fox
Dude, those reports are like one day old
pine bison
uh huh
carmine fox
Whoops
queen flare
no
quaint crystal
any one doing the red teaming path currently?
slow cloud
mornin
sharp igloo
hi
slow cloud
hi
rapid merlin
hi
sharp igloo
Jesus, a lot of these bug reports doesn't even get a response
correct. thm unfortunately does not seem to look at these often.
there are unfixed bugs mentioned in bug report that are months old
knotty dune
I downloaded a exe file but it felt malicious to me. Without opening it, I first checked it on VirusTotal wherein the community tab I saw a comment which wrote
Original filename : 2025-09-06_2cccf36b9d62026d435c6ca4885008b6_akira_cobalt-strike_rusty-stealer_satacom_vidar
What could this possibly mean ? Was that a ransomware
sharp igloo
I downloaded a exe file but it felt malicious to me. Without opening it, I first...
where did you get this from?
what did you think it was?
can you give me the hash?
knotty dune
From a website ofcourse. It was a downloader
sharp igloo
From a website ofcourse. It was a downloader
ehm yeah from which website
ok; and again: which website? what did you think it was? what is the filename?
probably not akira_cobalt_strike-... right?
ok i see
knotty dune
ok; and again: which website? what did you think it was? what is the filename?
the name was downloader.exe
sharp igloo
filename was "downloader.exe"
knotty dune
It is actually callec cirno downloader
sharp igloo
well thats already a pretty sus name
knotty dune
I cant say the website here but others just download it and use that exe
But i was trying to take some precautions
knotty dune
But i was trying to take some precautions
Cybersecurity taught me π
okay so it was meant to download cirno downlloader which is a downloader for clean game files
for later activation
A lot of people use it but I dont think they have ever cross checked it for being malicious
I am talking about AAA denuvo games like AC Shadows
EA FC
etc
It downloaded downloader.exe which I refrained from opening. Ik by opening it, cirno will be opened for sure but it may also activate spywares or data stealers on my system
sharp igloo
okay so it was meant to download cirno downlloader which is a downloader for cle...
I'll check out what I can about it
give me a sec
knotty dune
Alright thanks
sharp igloo
Alright thanks
okay. I have looked at the virustotal results.
Disclaimer: Iβm not a cybersecurity professional. Anything I share here is for general informational purposes only and shouldnβt be taken as professional advice.
knotty dune
Anyrun said Microsoft Edge WebView 2 Runtime will also try to download but in my case, it didnt
sharp igloo
on first glance this looks to be more likely a false positive than a true positive. but i would need to look into it more to be confident.
knotty dune
I see
knotty dune
Okie
sharp igloo
Okie
okay, yes, my assessment is as I've stated above. however i have only scratched the surface here.
now my practical assessment for you: i would strongly advice against using this in the first place
this can cost you much more in the end than you are "saving" rn
knotty dune
given that it says cobalt strike and such
Yes but it was mentioned in a comment on Virustotal not by Virustotal itself. Also I checked the profile of the commentor and bruh it has like comment after every damn minute just like a bot
Across different files
sharp igloo
Yes but it was mentioned in a comment on Virustotal not by Virustotal itself. Al...
my practical advice for you is: DO NOT use this
knotty dune
this can cost you much more in the end than you are "saving" rn
Hmm yea
knotty dune
you are right
slow cloud
yeah, until you get caught for piracy
sharp igloo
then buy stuff when they are on sale
knotty dune
Indeed
slow cloud
every summer holiday etc
sharp igloo
there are great games on steam that are super cheap when on sale
sharp igloo
Thanks guys
yeah sure you're welcome
sharp igloo
Thanks guys
i looked into it a bit more and i am now less confident this is a false positive
so yeah: best to avoid these kinds of things
knotty dune
Where did you looked in to dive deeper
sharp igloo
whether this specific file is malicious or not: piracy is a great way to catch malware
sharp igloo
Where did you looked in to dive deeper
i initially thought what was mentioned in the comment is (likely) harmless aka false positive, but reading over it again, I am less sure now
knotty dune
I meant where you checked except Virustotal or anyrun
knotty dune
i initially thought what was mentioned in the comment is (likely) harmless aka f...
I read about akira stealer and rusty stealer online as well
bleak quartz
Piracy is not bad in my personal opinion "Culture shouldn't exist only for those who can afford it"
But in this server it's not allowed to embrace it so stop
knotty dune
Alright my bad
slow cloud
i mean its not like we are doing malware analysis
pine bison
If you are pirating something, always assume it includes some shady shii. It's a risk that you should understand.
bleak quartz
i mean its not like we are doing malware analysis
Kinda sounds like it 
knotty dune
Kinda sounds like it <a:rockwhut:1285597252412248064>
We were doing malware analysis only
sharp igloo
knotty dune
The way we had this discusson was as <#680459914828972076> friendly as possible....
Real
slow cloud
Kinda sounds like it <a:rockwhut:1285597252412248064>
yeah okay appearantly we were π
sharp igloo
Divyansh even took care not to mention the specific website.
knotty dune
Divyansh even took care not to mention the specific website.
yea cant lure anyone into downloading anything malicious just for the sake of checking or curiosity
bleak quartz
The way we had this discusson was as <#680459914828972076> friendly as possible....
Sounds like it, just wanna make y'all aware that mal studies are sensitive
Just vt analysis should be ok
knotty dune
Sounds like it, just wanna make y'all aware that mal studies are sensitive
Do you do HackTheBox
sharp igloo
If this kind of discussion would be limited to advanced channels, I would be very disappointed as this would mean I would need to link my thm account. And the green would ruin my profile look.
rapid merlin
If this kind of discussion would be limited to advanced channels, I would be ver...
I feel u