i cant remember what one A is in AAA
#general
neat kindle
sharp igloo
Don't know why one needs to be randomly unfriendly
neat kindle
authentication, accounting and sms
sharp igloo
Just annoying internet stuff
sharp igloo
https://media.discordapp.net/attachments/1281699966615687289/1334275005265219714...
See. That's better internet stuff.
neat kindle
this aint 2010 lil bro
sharp igloo
this aint 2010 lil bro
Jeez you are just annoying. Not even funny. Boring as fuck.
Ignore list now.
shell dirge
All sent dude
brazen holly
Not sure if this is the right place to ask this but , lets say i'm almost done w/ pre-security path (80%) and my main goal is to progress with pentesting
Should I progress through pre-security & cybersecurity path first or should i go back to the linux & windows sections & try to advance my knowledge in those whilst progressing through the starting path's ?
I'm kinda worried that I might forget what i learned in the OS sections if i move on too quick from them.
Just looking for input on what might be the better approach to solidify my knowledge. Thank you!
if this isn't the right section to ask this some guidance to the correct section would be appreciated 😁
velvet gull
are you taking notes as you go?
brazen holly
are you taking notes as you go?
Yes, i am. I will admit, i'm not the best at taking notes though , I just kinda print everything that's on the thm screen since i'm really bad at summarizing when it comes to this stuff.
velvet gull
going back to a section that you feel might be problematic to you in the future is definitely a good thing to do, but extensive notes are also needed so make sure to note all information you learn and all practical steps you did to solve the quizzes and attackbox sections so you have something to refer to later on. After pre security you should do the Cyber 101 path for sure, but honestly whenever you feel like you're missing something or not understanding a concept it would be good to go back to some previous rooms, refresh your memory and update notes on that
velvet gull
Yes, i am. I will admit, i'm not the best at taking notes though , I just kinda ...
well it's a start but there's definitely a need to note down everything you're learning in your own words so you can understand it better, if you just copy it then that won't make you learn much
brazen holly
going back to a section that you feel might be problematic to you in the future ...
Ok that's actually a pretty good tip in terms of how i should I approach the note taking.
I'll start taking notes based on how i solved the problems from now on, Thank you.
twin ridgeBOT
Gave +1 Rep to @velvet gull (current: #866 - 7)
clear jolt
I did the Cyber 101 path after Pre-Security, and it was definitely the best choice. Whenever there’s something I don’t fully understand, I go back and do it again so it sticks better. I don’t usually take notes myself, but on another server they recommended that I do and to use Obsidian for it.
velvet gull
yeah Obsidian is highly recommended, there are some people that need to physically write something tho but that's just up to preference
brazen holly
I did the Cyber 101 path after Pre-Security, and it was definitely the best choi...
Ok sweet, i've been looking for a new note taking app 😂
velvet gull
if you're gonna be using Obsidian, someone here recommended the HackTheBox theme for it
brazen holly
thank you guys , i'll download obsidian & look for a better approach for my notes. this is exactly the answer i needed
clear jolt
Ok sweet, i've been looking for a new note taking app 😂
you have to search the best app for you
woven brook
is it just me or the thm website has been working very weird these last days?
topaz topaz
is it just me or the thm website has been working very weird these last days?
meaning?
woven brook
goes blank, does not load certain content, logs me out regularly
topaz topaz
goes blank, does not load certain content, logs me out regularly
The logging out after a few days has been usual behavior for me, the pages going blank has been happening for quite some time also, I have to wait a few seconds for it to load the content
But not loading certain content no not really, sometimes when I have done a force shutdown it will load the page but without any of the actual progress I've made and I need to refresh
But it's still as functional as it should be
lone sierra
compleated junior pen tester path
topaz topaz
compleated junior pen tester path
Go for it why not
If I really enjoy OSINT, what field would you say would be most suitable?
woven brook
https://tenor.com/view/flying-horse-gif-19333372
love your bio
innocent lives with my honda civic I have taken
modern fox
innocent lives with my honda civic I have taken
LMAO
lucid portal
Is the PT1 certification currently discounted? Is it worth it?
lucid portal
why pls
warm basin
such a bad joke i had to actually laugh (in myself)
i am premium, i just dont understand if I am receiving both by paying those 200$
ashen cape
No you get only one
marsh lark
one voucher for 200
warm basin
thanks 😄 gonna buy the pt1 anyway
it´s gonna be my first cert beside computer science degree
lone sierra
did you research if THM certs are worth it?
warm basin
since i am learning through THM, i thought it´s "easier" and the learned stuff will be better applicable
stoic flame
I think THM cert values
warm basin
Thank you, I´m aiming for the OSCP anyway by next year
rapid merlin
Thank you, I´m aiming for the OSCP anyway by next year
nice
stoic flame
What's that?
rapid merlin
A cert
royal hill
hello 👋
rapid merlin
Just go and hack some companies and then apply with those stolen information ( please dont take this seriously )
stoic flame
A piece of paper holds more value than knowledge
rapid merlin
Just go and hack some companies and then apply with those stolen information ( p...
real life success rate: 1%
warm basin
What's that?
OSCP (Offensive Security Certified Professional) is actually worth it, people think at least that you are a good hacker if you have it
warm basin
Just go and hack some companies and then apply with those stolen information ( p...
I am sure some shady CEO´s would enjoy that
if I am ever going to break the law for hacking it really has to be a good thing
marsh lark
OSCP (Offensive Security Certified Professional) is actually worth it, people th...
its overhyped
its a junior cert
rapid merlin
OSEP >
warm basin
shotout to that guy who downloaded a full library database to make it public and went to jail for it
hackers have the power to end capitalism tho
stoic flame
hackers have the power to end capitalism tho
They can change the world
rapid merlin
warm basin
we control electricity basically guys
marsh lark
microsoft web aint working
rapid merlin
microsoft web aint working
Same
stoic flame
I think the server has crashed
halcyon pendant
hi, does the current cert discount + the premium members discount stack up when purchasing an exam voucher for SAL1?
sharp igloo
Hey guys, what is going on? 🙂
marsh lark
hi, does the current cert discount + the premium members discount stack up when ...
for premium users, it is 40%
celest dirge
https://tenor.com/view/flying-horse-gif-19333372
sharp igloo
microsoft web aint working
What is Microsoft web? 🤔
oak river
Anyone getting nostarchpress books?
rapid merlin
marsh lark
What is Microsoft web? 🤔
web application of microsoft
ionic gate
W
halcyon pendant
for premium users, it is 40%
thank you
twin ridgeBOT
Gave +1 Rep to @marsh lark (current: #27 - 409)
sharp igloo
hackers have the power to end capitalism tho
Hmm how? Could you explain?
oak river
I just get mine for free.
May I join your ship, Captain?
celest dirge
May I join your ship, Captain?
oak river
Hmm how? Could you explain?
Lets say that only with paper and without electronics, things will be much, much, much more complicated.
sharp igloo
if I am ever going to break the law for hacking it really has to be a good thing
You have any plans to do that?
stoic flame
Lets say that only with paper and without electronics, things will be much, much...
But a computer was made by doing calculations on paper
sharp igloo
Lets say that only with paper and without electronics, things will be much, much...
And how would that happen?
oak river
But a computer was made by doing calculations on paper
Sure, but a computer still excels at them.
oak river
And how would that happen?
I don't know, if all hackers got angry and started nuking the global infrastructure digitally and attempt to take it down physically
They will have to reinvent the internet and how it works
Which is horrible if you think about it
Orwellian nightmare
blissful frost
sharp igloo
I don't know, if all hackers got angry and started nuking the global infrastruct...
Ah ok. Thought you might have some specific mechanism in mind.
blissful frost
I just got the udacity certificate of level 2 🥳
rapid merlin
I just get mine for free.
oak river
Ah ok. Thought you might have some specific mechanism in mind.
Well, I guess maybe the USA can do that
Although not on LANs
But a big tech player could potentially shake the internet ofc
Considering, afaik, that Israel managed to hijack an Iranian nuclear enrichment facility
With a USB
warm basin
Hmm how? Could you explain?
well a simple idea: a group of activists ddos the shady companies of the world down, day by day as a job lol
warm basin
You have any plans to do that?
not plans, but as a man everyone should be able to use their power to defend and do good
blissful frost
Considering, afaik, that Israel managed to hijack an Iranian nuclear enrichment ...
Yep stuxnet is powerful
blissful frost
My boss paid for lunch!
W boss
boreal scarab
I fucking love my boss. Best boss ive ever had!
boreal scarab
worn thorn
My boss paid for lunch!
looks delicious
sharp igloo
Anyone got smth cool to share? 😎
rapid merlin
Anyone got smth cool to share? 😎
Roses are red
sharp igloo
Roses are red
Yeah they can be
austere verge
I’m using my fingers to type this message
sharp igloo
I’m using my fingers to type this message
I use my neuralink
chilly veldt
yaaay
rapid merlin
Anyone got smth cool to share? 😎
It's ordinary to love the beautiful, but it's beautiful to love the ordinary
dark wolf
.
tired wolf
robust solar
i need an admin if theres one available?
chilly veldt
i need an admin if theres one available?
not an admin, but what specific do you need?
robust solar
not an admin, but what specific do you need?
how can i join voice chat?
sharp citrusBOT
chilly veldt
you gotta verify
robust solar
you gotta verify
thank you
twin ridgeBOT
Gave +1 Rep to @chilly veldt (current: #9 - 1008)
robust skiff
Hi, is this the place to ask for help installing john the ripper?
dark wolf
sure. are you using a VM?
robust skiff
yes! Its on my macbook using virtualbox. It is a debian distro. I installed john with sudo apt install john. The first thing that is odd, is that I can only issue the john command while I am in sudo. Otherwise it cannot find it. Then when I want to crack a unshadowed file, john tells me that No password hashes are loaded. This might have something to do with not providing a correct unshadowed file? I used the command: sudo unshadow /etc/passwd /etc/shadow > unshadow.txt on my own vm to test if john was even working. Then john tells me that No password hashes are loaded. On the attackbox of tryhackme, this was no problem at all.
Help would really be apreciated 🙂
robust skiff
which john: nothing sudo which john: /usr/sbin/john
dark wolf
so only root has access to it right now. I'm not sure why, but let's check the no password hashes loaded
echo 'testuser:$6$rounds=5000$abcdefghijklmnop$abcdefghijklmnopqrstuvwxyz0123456789abcdefghi.:0:99999:7:::' > testhash.txt
sudo john --format=sha512crypt testhash.txt
run those and see if it does anything
robust skiff
(im having clipboard problems im almost there)
rapid merlin
yes! Its on my macbook using virtualbox. It is a debian distro. I installed john...
celest dirge
https://tenor.com/view/mac-trash-gif-26503253
robust skiff
run those and see if it does anything
Unknown ciphertext format name requested
rapid merlin
https://tenor.com/view/laptop-smoking-fire-burning-lag-gif-19373925
Apple: " it's not a bug, it's a feature "
dark wolf
sudo apt install john jumbo-john john-data
digital estuary
dark wolf
you need jumbo-john for that format, use that command to install it and then retry the command that gave you the unknown ciphertext error
remote spoke
hey guys
dark wolf
Hi Adam! Welcome
celest dirge
Apple: " it's not a bug, it's a feature "
Lmfao
remote spoke
thank you allot m new to hacking and networking lol
dark wolf
thank you allot m new to hacking and networking lol
Awesome, they are both tons of fun
rapid merlin
thank you allot m new to hacking and networking lol
U will master it
robust skiff
`sudo apt install john jumbo-john john-data`
Error: unable to locate package jumbo-john
robust skiff
debian
dark wolf
try just sudo apt install john-data
robust skiff
me too am very new to this haha
robust skiff
I installed john-data but I get the same error message
dark wolf
john/oldoldstable 1.8.0-4 amd64
active password cracking tool
john-data/oldoldstable 1.8.0-4 all
active password cracking tool - character sets
debian has it. hmmm
robust skiff
<a:sasukestare:1423443521800507475>
What distro do you recommend me using?
dark wolf
You know, I am using Kali
rapid merlin
It has the hacking packages you need availble in the repo
U should have said something about this before to him
dark wolf
It might be easier to use kali. You can use debian but it doesn't look like it's going to be as easy to install the packages.
dark wolf
U should have said something about this before to him
I never tried installing them on debian, so I didn't know they weren't available
robust skiff
Yea I wanted to have my own custom pentesting vm
celest dirge
Guys, I installed Kali, why isn't it hacking NASA?
dark wolf
where I know all the tools
install kali-minimal
and just install what you need as you need it
then you know what you are installing and how to do it
dark wolf
thanks for the help!!
No problem, let us know if you need anything, people are usually here 🙂
celest dirge
LOL?
dark wolf
https://tenor.com/view/computer-gif-21026926
"Oh look, see you already stole the bitcoin"
"ahh, duh, it looked like there was more"
That's what they are saying
dark wolf
Yes, you just have to believe!
celest dirge
Lmfao
dark wolf
🤷🏻♂️
celest dirge
I wonder what type of software could possibly do this.
-# Surely it can't be Android Studio
dark wolf
I wonder what type of software could possibly do this.
Blowout Incinerator™ 6.9
austere verge
Nmap
cedar crypt
sharp citrusBOT
celest dirge
Gotta verify first, then you get image perms @cedar crypt
sand trench
I wonder what type of software could possibly do this.
it is called kettle mode
dark wolf
should have just asked shadow to begin with
sand trench
@loud marlin and the status page for arch now says the aur is down
sand trench
should have just asked shadow to begin with
true... shadow is one of few peoples to survive a lithium battery fire
loud marlin
<@957472407508123678> and the status page for arch now says the aur is down
shocked 🙂
sand trench
never gonna mess with battery charging circuits and controllers after that
when they go they certainly go FWOOM
dark wolf
never gonna mess with battery charging circuits and controllers after that
let that electroyoutube guy do that
electroboom
dark wolf
What are you referring to horse?
modern fox
What are you referring to horse?
nah new discord thing
sand trench
¯_(ツ)_/¯
dark wolf
¯_(ツ)_/¯
celest dirge
¯_(ツ)_/¯
modern fox
/¯ ツ)_(_
celest dirge
/¯ ツ)\_(_
The face reminds me that I've been slacking off on my Japanese language studies.
sand trench
anyone here used spideroak cloud storage for offsite backup???
wondering if it is as good as it seems on the tin
they have a linux client too :D
lone sierra
anyone here used spideroak cloud storage for offsite backup???
do i know you from somewhere
sand trench
do i know you from somewhere
arch linux community discord server probs
lone sierra
no, it was some other server where someone had same profile picture as you
sand trench
no, it was some other server where someone had same profile picture as you
well the clippies are everywhere now.... if you recall shadows old profile picture it stood out much more
lone sierra
i dont know any shadows?
sand trench
yeah then we probably never met anywhere
as shadow refers to themselves in third person
sand trench
yes??
sand trench
guess what
boreal scarab
guess what
Chicken butt?
blazing granite
what
sand trench
Chicken butt?
YOU GOT IT
blazing granite
Chicken butt?
boreal scarab
YOU GOT IT
dark wolf
😂
sand trench
wanna mess with twitch chats???? post a message using kanji or crylic letters
blazing granite
Your message made my computer lock up. please stop hacking me
Israelies are masters of cybersec, everybody knows that 🙂
dark wolf
Yup! Don’t mess with them. They will blow up your phone
frigid gale
Can somone help me hack my mans account i think hes cheating me?
sleek hare
Israelies are masters of cybersec, everybody knows that 🙂
russians*
celest dirge
Chat, I'm locked out of my house. I forgot to bring my house keys with me and my dad is out shopping 💔
dark wolf
You know what the russians are good at?? Making people think they are good at anything other than drinking Vodka!
sleek hare
You know what the russians are good at?? Making people think they are good at an...
we dont drink vodka that often
we used to use it as currency
dark wolf
Chat, I'm locked out of my house. I forgot to bring my house keys with me and my...
Might as well take a couple laps around the neighborhood to kill time
celest dirge
Might as well take a couple laps around the neighborhood to kill time
I've already done enough walking for today 
dark wolf
Yeah, well you gotta do what you can
dark wolf
but you are probably super young ... i don't do enough yoga but i need to ... im old lol
dark wolf
On the illegal stuff, yes, otherwise agree to disagree 🙂
shes only 15
sleek hare
On the illegal stuff, yes, otherwise agree to disagree 🙂
ofc on illegal side bro 😭 💔
sleek hare
shes only 15
Hi
sleek hare
blazing granite
Yup! Don’t mess with them. They will blow up your phone
I still have a few friends back in 8200 😉
dark wolf
I still have a few friends back in 8200 😉
Shhhh... you aren't supposed to admit that
sleek hare
but you are probably super young ... i don't do enough yoga but i need to ... im...
I don't do any sports since first grade
and im ~20 kg underweight gng
blazing granite
I don't do any sports since first grade
you don't have to be a gym rat, but a bit of exercise it's good for your body
rapid merlin
Chat, I'm locked out of my house. I forgot to bring my house keys with me and my...
U have a house
blazing granite
I'm starting Tai Chi in Nov
celest dirge
U have a house
And a house cat
sleek hare
you don't have to be a gym rat, but a bit of exercise it's good for your body
my body is uh
hater of sport lets say
I can get hospitalized if I jump & run
cuz slime stone
celest dirge
Damn lucky
Here's a picture of her (best one I could find)
sleek hare
or sum
AND fun fact
I got blood infection
few days ago
antibiotics no help 😭 💔
im cooked
blazing granite
Chat, I'm locked out of my house. I forgot to bring my house keys with me and my...
it could be worst, you could live alone, forgot your key inside and have to call a locksmith those guys are expensive 🤣
celest dirge
Oh god, that would be my worse nightmare 
sleek hare
https://tenor.com/view/dance-coffin-meme-rip-gif-16909625
according to doc if antibiotics wont help yes this will happen
rapid merlin
according to doc if antibiotics wont help yes this will happen
damn... that serious? wishing you the best
sleek hare
Rare, medium rare?
😭 idk
sleek hare
damn... that serious? wishing you the best
tbh I dont want antibiotics to help
¯_(ツ)_/¯
rapid merlin
tbh I dont want antibiotics to help
Nah, I need hacker competition. You stay in the pool, fresh and alive
blazing granite
you need not to bring religion in the chat, it can create a discussion that never ends well
sleek hare
no
rapid merlin
you need not to bring religion in the chat, it can create a discussion that neve...
sry, that just a saying here 😄
i dont even care about religion in that way. mb
deleted it
blazing granite
Rare, medium rare?
steak medium rare of course 🙂
celest dirge
Lol, same here
celest dirge
tbh I dont want antibiotics to help
A bit late, but I wish you well
celest dirge
What did I miss
Nothing much, other than how'd you like your steak?
blazing granite
Lol, same here
anything over that and you don't like meat you like sole shoes 🤣
sleek hare
A bit late, but I wish you well<:blobheart:689626579479035913>
thanks ig
twin ridgeBOT
Gave +1 Rep to @celest dirge (current: #214 - 47)
dark wolf
steak medium rare of course 🙂
It's the only way
celest dirge
anything over that and you don't like meat you like sole shoes 🤣
Damn, I guess I have an odd taste 
Oh wait, I'm dyslexic
I misread that
celest dirge
What else?
Currently locked out of my house, Russia, gym, and health
This is the best way I can summarize what happened in the last hour.
blazing granite
Currently locked out of my house, Russia, gym, and health
that's a hard locked out, how do you manage that? 🤣
4 things, it was gradually or all at the same time 😛
celest dirge
that's a hard locked out, how do you manage that? 🤣
There is a backdoor, but pivoting there will raise noise.
Soo, I gotta wait until the ADMINISTRATOR arrives on site
halcyon comet
wow I was doing coursea for like IBM ethical hacking with Kali Linux and I've been doing it like weeks it said it's going to take me to finished like 2 months nahh 2 months is crazy but I finished it like about 2 or 3 weeks and I got my course certificate and I'm doing a next one is professional certificate.
charred cave
Can somone help me hack my mans account i think hes cheating me?
That’s not allowed here
halcyon comet
why he asking that..
dark wolf
why he asking that..
people think that because hack is in the name of the discord server that we are hackers
blazing granite
people think that because hack is in the name of the discord server that we are ...
we're, but we don't do illegal things that's the difference 🙂
sturdy sequoia
we're, but we don't do illegal things that's the difference 🙂
well, we might do illegal things but we dont discuss them here 😛
blazing granite
well, we might do illegal things but we dont discuss them here 😛
maybe be you 😛
sturdy sequoia
so, anyone up to anything intersting today?
celest dirge
Use the cat door
Not enough budget, and hasn't been approved by the board yet.
dark wolf
so, anyone up to anything intersting today?
were just looking for a link so 0xNexionX can download a new door to get in the building
sturdy sequoia
have you tried the air vents?
celest dirge
It's worth a try, although I don't think it'll work.
Well, at least my security is good and I don't have to worry about anyone breaking in, unless they smash the windows.
digital estuary
rapid merlin
good morning people, allow me to ask a question, is there any cybersecurity certificate that i can get free?
rancid anchor
Has anyone taken the ISC2 CC certificate?
celest dirge
good morning people, allow me to ask a question, is there any cybersecurity cert...
The person below ya mentioned CC, which is free if I remember.
rapid merlin
The person below ya mentioned CC, which is free if I remember.
i see, thank you
twin ridgeBOT
Gave +1 Rep to @celest dirge (current: #207 - 48)
rancid anchor
The person below ya mentioned CC, which is free if I remember.
actually, that’s what I wanted to ask ,I think you need to pay $50 to get the certificate, right orr?
celest dirge
Has anyone taken the ISC2 CC certificate?
I haven't taken the ISC² CC exam yet, but I'm pretty sure everything they teach you (well most) will be on the exam, I recommend doing some external learning like YouTube videos and etc during prep.
celest dirge
actually, that’s what I wanted to ask ,I think you need to pay $50 to get the ce...
Was it? Let me recheck
After completing the exam, you pay the $50 USD Annual Maintenance Fee (AMF)
Which isn't much tbh
digital estuary
rapid merlin
Which isn't much tbh
ah.. it's 830k rp for me
kinda expensive for me, actually
but maybe i can use coding x app, it's free
but idk if it would be useful or not
yes
I hope I can ask that here:
Does somone know where a beginner in ethical hacking can start with ctf? Maybe more beginner friendly, but in the end it should be challenging.
Nvm google is my friend
stoic quarry
TryHackMe is a decent startingpoint
sand trench
stoic quarry
Hello Shadow
sand trench
ello ello
rapid merlin
https://tryhackme.com/
Already on it. Found, that they have some CTF challenges.
Ty
stoic quarry
Ye
Rooms are usually separated between walkthroughs and challenges. Most of the walkthroughs will walk you through (funny that) the concept of the room. The challenges are more self directed
distant robin
is there a problem with the THM VM?
boreal scarab
Fucking Proton decided it didn't wanna work... uninstalled it and reinstalled it fixed it.... turning it off and on again, killing it, nope
distant robin
Lol
blazing granite
Fucking Proton decided it didn't wanna work... uninstalled it and reinstalled it...
https://tenor.com/view/it-problem-phone-call-have-you-tried-turning-it-off-and-on-again-gif-17823069
rapid merlin
hey guys
I think one room has a bug
but i dont have access to the appropriate channel
sharp citrusBOT
@rapid merlin
rapid merlin
Race conditions last machine
boreal scarab
Mother fucker
sharp citrusBOT
@rapid merlin
boreal scarab
That, use that one
narrow yew
I wrote an whole explanation for you on how it worked and you replied with crap
digital estuary
I wrote an whole explanation for you on how it worked and you replied with crap
0xC vs 0x7
copper vortex
Can someone help me find where someone lives and their information by their name and face?
digital estuary
Can someone help me find where someone lives and their information by their name...
narrow yew
There is no cure for stupid
narrow yew
Can someone help me find where someone lives and their information by their name...
It is yes and no on that one
blazing granite
Can someone help me find where someone lives and their information by their name...
sounds like stalking
narrow yew
It depends on a ton of factors
charred cave
Can someone help me find where someone lives and their information by their name...
You have to learn some OSINT
distant robin
So can anyone tell me if the THM VPN is down or what?
narrow yew
You might need a new file
narrow yew
New battery for the GPS
blazing granite
So can anyone tell me if the THM VPN is down or what?
distant robin
New battery for the GPS
GPS doesn't need batteries
narrow yew
Buzz bzzzz
charred cave
You might need a new file
I really want to live Mr Robot live
Even just one single day 🙂
stoic quarry
Mr Robot is a TV show dawg
narrow yew
Schizofrenic
charred cave
Yeah mb i meant Elliot
narrow yew
He was craycray delux
rapid merlin
Schizofrenic
did
distant robin
<#521771811768107008>
Yeah this is the problem.
narrow yew
Didi
distant robin
Schizofrenic
*schizophrenic
distant robin
i mean DID, discotic (ugh i forgot) identity disorder
Dissociative identity disorder
charred cave
The more someone get in this field the more he feel that he know nothing about this things 😭
rapid merlin
Dissociative identity disorder
yep, ahaha, i forgot the first word
distant robin
yep, ahaha, i forgot the first word
You're welcome
stoic quarry
I feel like a lot of people took a pretty surface level reading of the show as 'cool hacking show' over any deeper meaning that the later seasons get into
distant robin
@stoic quarry !!!!
sturdy sequoia
I feel like a lot of people took a pretty surface level reading of the show as '...
i think that only applies to hackers. most of my non hacker friends also like the show for more than just hacking
charred cave
Does most of you guys work in cybersecurity or it’s just a passion
stoic quarry
i think that only applies to hackers. most of my non hacker friends also like th...
Oh yeah for sure. I think it's great in how it portrays the hacking side of things, but I feel like being too focused on that makes the broader message a little weaker
If that's what ya watching it for
rapid merlin
Does most of you guys work in cybersecurity or it’s just a passion
passion, i still a highschool student
sturdy sequoia
Does most of you guys work in cybersecurity or it’s just a passion
just a hobby for me atm
stoic quarry
Does most of you guys work in cybersecurity or it’s just a passion
This server has like 300,000 people in it. There's a mix 🤷♂️
charred cave
It’s just a hobby for me too
I’m still in highscool
rapid merlin
just a hobby for me atm
yep hobby, same as me, and i want to go deeper
stoic quarry
P fun hobby
charred cave
yep hobby, same as me, and i want to go deeper
I really want to get deeper
stoic quarry
And job
rapid merlin
ofc
charred cave
Which one do you like more
Red or blue team
sturdy sequoia
im red all the way
rapid merlin
i think cybersecrity wont be replace by AI like web and app developer in years
rapid merlin
Which one do you like more
Red or blue team
purple
stoic quarry
(Not to say pentesting doesn't have jobs, but you're not likely to get a job as a pentester early on)
plush sable
Hello i am new here
rapid merlin
Is this team is like a mix between both
yeah
stoic quarry
Hello 👋
sturdy sequoia
Hello i am new here
welcome
twin ridgeBOT
Gave +1 Rep to @sturdy sequoia (current: #305 - 29)
blazing granite
Hello i am new here, I'm GNU-Rex 🤣
stoic quarry
Gottem
rapid merlin
Hello i am new here, I'm GNU-Rex 🤣
tis is rafex!!!
sturdy sequoia
Hello i am new here, I'm GNU-Rex 🤣
im old here. well im new to the channel, but old to life
narrow yew
@distant robin where is the VPS hosted? 😄
charred cave
im old here. well im new to the channel, but old to life
How old 🤔
narrow yew
AWS is down again
rapid merlin
Hello i am new here, I'm GNU-Rex 🤣
rafex is everywhere, i see you in another server
narrow yew
Early 40s gang gang
sturdy sequoia
Early 40s gang gang
theres a few of us here
narrow yew
*schizophrenic
I will take your watch and send you in the wild
blazing granite
rafex is everywhere, i see you in another server
IDK who rafex is
charred cave
It’s never too late
rapid merlin
IDK who rafex is
nah, you must be him
narrow yew
no lies!"
sturdy sequoia
It’s never too late
agreed
rapid merlin
IDK who rafex is
if it's not, you must be his twin dawg
narrow yew
They will start to loose customers now
devout gulch
im old here. well im new to the channel, but old to life
I’m so green you can call me Grinch. I’m so green but wanting to build something new and trying to find community
sturdy sequoia
I’m so green you can call me Grinch. I’m so green but wanting to build something...
here is a good place to start
devout gulch
Good!
rapid merlin
I’m so green you can call me Grinch. I’m so green but wanting to build something...
are your skin is green too?
distant robin
I will take your watch and send you in the wild
I never needed my watch. I only use it for the vibrating alarm on it
narrow yew
I never needed my watch. I only use it for the vibrating alarm on it
Bzzz bzzz
charred cave
who have a strong experience with nmap, i'm focusing on learing nmap this days 🙂
i wanna get deeper
distant robin
https://tenor.com/view/bad-girl-spank-gif-1533102588995594402
I'll enjoy that
narrow yew
who have a strong experience with nmap, i'm focusing on learing nmap this days �...
What are you thinking
devout gulch
are your skin is green too?
I’m not a lizard my skin is pale and I just want direction and community
narrow yew
Looked at default nmap scripts?
distant robin
who have a strong experience with nmap, i'm focusing on learing nmap this days �...
It's easy, just find guides online and it will help you learn
charred cave
Looked at default nmap scripts?
wym
charred cave
It's easy, just find guides online and it will help you learn
i just finishd a 3hours nmap course
distant robin
i just finishd a 3hours nmap course
Go do some challenges that involve nmap
devout gulch
i just finishd a 3hours nmap course
Where do you find these resources?
narrow yew
wym
N m a p s c i p t s
That is what I mean
You asked for deeper knowlage, and I asked if you looked at default scripts
charred cave
Go do some challenges that involve nmap
there is some rooms about nmap in THM?
sturdy sequoia
3 hours?
narrow yew
If you dont know that nmap have a -script you did not look at it that deep
distant robin
not really but it involves using nmap, @charred cave
charred cave
You asked for deeper knowlage, and I asked if you looked at default scripts
ah ... no, i didn't
i used --script vuln couple time
that's it
narrow yew
then you used scripts
rapid merlin
I’m not a lizard my skin is pale and I just want direction and community
you must be green flag too
charred cave
Where do you find these resources?
youtube
distant robin
@narrow yew I need some discipline, Sir Math!
narrow yew
<@552250111871418368> I need some discipline, Sir Math!
PG13
charred cave
not really but it involves using nmap, <@1321988686702972928>
nice, i'm gonna come back to THM.. i miss it
i finished some rooms before
i even forget the account email and pwd
distant robin
nice, i'm gonna come back to THM.. i miss it
Yeah it's pretty interesting, some of these challenges are not so easy but you'll learn through them
narrow yew
@distant robin pg13 version would be
“Discipline me, sir.”
“Teach me a lesson, boss.”
“You’re in charge now.”
“Guess I deserve a little punishment.”
“Be gentle, but firm.”
charred cave
Yeah it's pretty interesting, some of these challenges are not so easy but you'l...
i will.. i found it really fun and informative
distant robin
Better? @narrow yew
narrow yew
@devout gulch Nahamsec.
distant robin
i will.. i found it really fun and informative
Yeah me too, I enjoyed some of those challenges.
charred cave
Any suggestions of who to look at? I’m really keen to learn
start with networking ig
get better in networking, it's the most important part i think
networkchuck
david bombal
are my favs
narrow yew
@charred cave build a homelab if you want to learn networking
buy some crap managed switches
stoic quarry
Homelabing is fun
charred cave
<@1321988686702972928> build a homelab if you want to learn networking
i have some routers and switches laying around lol
and an old desktop, i remember turning it into a NAS
installed ubuntu server on it
narrow yew
there are a ton of people selling Cisco cert home labs when they are done with certs
stoic quarry
i have some routers and switches laying around lol
and an old desktop, i remembe...
It's a good project
devout gulch
Thanks that helps! I have a network but just learning how it actually works now
narrow yew
There are also tools for setting up virtual network clusters
charred cave
It's a good project
oh yeah i remeber
it was nextcloud
an old desktop running ubuntu server have nextcloud installed connected to my router via cable
just wanted to try it out, then i unplugged it
i think it still have ubuntu server
stoic quarry
I have a laptop under a sofa running Jellyfin and Syncthing
Wazuh too, but I still need to configure that
blissful frost
who have a strong experience with nmap, i'm focusing on learing nmap this days �...
There is a room abt nmap
blissful frost
who have a strong experience with nmap, i'm focusing on learing nmap this days �...
charred cave
I have a laptop under a sofa running Jellyfin and Syncthing
that's fun
charred cave
https://tryhackme.com/room/nmap
nice,i will do it
i have to make an account
i forget the credintials of the old acc
blissful frost
That's just an uncensored ai with extra knowledge abt pentesting
blissful frost
i forget the credintials of the old acc
ashen cape
That's just an uncensored ai with extra knowledge abt pentesting
btw it's obvious that pentesters will train it to be more effectively on common problems happening during it
distant robin
i forget the credintials of the old acc
Just request a password reset if you still have the same email ?
blissful frost
charred cave
Just request a password reset if you still have the same email ?
i made more than one account
i will make a password reset of one of those emails
lemme try
brb
blissful frost
btw it's obvious that pentesters will train it to be more effectively on common ...
It doesn't work that way u don't train ai to do pentests he means he wants to make an agentic ai to do the pentests for him
charred cave
https://tryhackme.com/room/nmap
nice it's free too
that's cool
i will finish it today
rapid merlin
My boss paid for lunch!
You in Japan?
blissful frost
i will finish it today
Nah u don't have to. take ur time take ur notes study well enjoy ur experience
charred cave
Nah u don't have to. take ur time take ur notes study well enjoy ur experience
thanks i will i have a paper and a pen i will take some notes if needed
twin ridgeBOT
Gave +1 Rep to @blissful frost (current: #577 - 12)
blissful frost
thanks i will i have a paper and a pen i will take some notes if needed
Alr have a great day
sharp igloo
Nah u don't have to. take ur time take ur notes study well enjoy ur experience
Interesting pfp 🤔
blissful frost
Interesting pfp 🤔
LMFAOAOAOAO
sharp igloo
LMFAOAOAOAO
🔥
sharp igloo
It's first time for me using a srs pfp It's usually a meme or smth
I mean its intentionally stereotypical, so also kind of meme
tribal furnace
hey guys im new i want to join cyber security i wanna try do some practice in tryhackme is anybody here who want help me? I have a few questions
sturdy sequoia
hey guys im new i want to join cyber security i wanna try do some practice in tr...
welcome. you can just ask your questions here
blissful frost
hey guys im new i want to join cyber security i wanna try do some practice in tr...
tribal furnace
oh right. can you give me some tips that can i use at tryhackme. I mean i am in tryhack me 7 day in a row and i do some rooms with full of theory but i want to do practice. But even easy task makes me feel that its not for me. So i know that i have to know much basics of theory but i ve done some rooms and i cant do one easy task? What you recomend me to do in my situation
blissful frost
What r u typing mate
tribal furnace
What r u typing mate
cooking hah
sand trench
try out some of the easy challenge rooms
should get you cooking into not having tons of theory
devout gulch
hey guys im new i want to join cyber security i wanna try do some practice in tr...
I’m also new to this field and not used to discord but it’s hard to know where to start
sand trench
if you want a recommendation shadow can give you this list:
corridor
overpass series
agent sudo
pickle rick
blissful frost
oh right. can you give me some tips that can i use at tryhackme. I mean i am in ...
First of all always take notes
Then try to maintain a streak to make sure u have a suitable learning journey
Third always practise
4th search for what u want before asking people
5th make sure to have computer science information before starting with tryhackme
Also try to access tryhackme with subdomain fo admin to get free premium subscription
devout gulch
Free premium is available? I hit a wall when I needed to pay…
gritty bane
if you want a recommendation shadow can give you this list:
corridor
overpass se...
corridor is not for the weak hearted
sand trench
Free premium is available? I hit a wall when I needed to pay…
not really... but you can continue with all the free rooms that you can find and do... if you are lucky in december there will be chances to win a subscription for a bit
gritty bane
advent of cyber my beloved
devout gulch
Thanks, happy to send my money as the courses seemed very good but yeh still early stages for me and paying google for a course
tribal furnace
I want to try Red teaming what rooms do you recommend for me ( ofc the easiest one but I would rather try practise because i ve done several room of theory)
sand trench
https://tenor.com/view/coffee-small-gif-16965582269634372746
the perfect syncing of shaking making him not spill a drop is so nice
blissful frost
I want to try Red teaming what rooms do you recommend for me ( ofc the easiest o...
It's a bad idea to choose rn
Try to at least finish cyber 101 then choose
devout gulch
It's a bad idea to choose rn
What’s cyber 101 and where do I learn? Hacking is obviously an interesting field but I know next to nothing. I’d rather learn the basics of the field
blissful frost
What’s cyber 101 and where do I learn? Hacking is obviously an interesting field...
Start with learning CS at first
tribal furnace
Try to at least finish cyber 101 then choose
I do cyber security 101 but when it comes to do a linux part 2 it showed up that i have to pay for it bruh
blissful frost
U don't rly know if ur interested in cybersecurity unless u learn CS
sturdy sequoia
I do cyber security 101 but when it comes to do a linux part 2 it showed up that...
some rooms are free. some require a subscription
devout gulch
I’m so green CS is cybersecurity right
blissful frost
I do cyber security 101 but when it comes to do a linux part 2 it showed up that...
Skip it and view a tutorial online for it or just pay subscription it's worth it
blissful frost
I’m so green CS is cybersecurity right
No CS is computer science
sturdy sequoia
computers -> networks -> security
devout gulch
Ok, thanks, but where do I start? I’m wanting to learn
blissful frost
computers -> networks -> security
My personal path was
Computers - programming - networks - OS - Security
blissful frost
Ok, thanks, but where do I start? I’m wanting to learn
Search
We all started from no where just searching
sturdy sequoia
Ok, thanks, but where do I start? I’m wanting to learn
blissful frost
Also change ur fyp to computer science topics u will learn lots of sub info in between
devout gulch
Yeh it’s broad I get it, thanks though. CS like bios and scripts? I know some buzz words
sharp veldt
What is it called when you want to hack a phone number
Like let’s say there’s an unknown number linked to your Apple ID and you need to find out what that number is
blissful frost
What is it called when you want to hack a phone number
There r lots of attacks that can happen on phone numbers (siem card)
sturdy sequoia
Like let’s say there’s an unknown number linked to your Apple ID and you need to...
cant you just log in to your apple id and check what number is associated?
blissful frost
Like let’s say there’s an unknown number linked to your Apple ID and you need to...
Hmmm why is the question
He obviously knows that but whose phone number does he want
sharp veldt
Hmmm why is the question
My MacBook has been on activation lock for years now. Because someone stole my sister’s phone
blazing granite
What is it called when you want to hack a phone number
it's called illegal 🤣
sturdy sequoia
contact apple support
blissful frost
My MacBook has been on activation lock for years now. Because someone stole my s...
Stole ur sisters phone?
sharp veldt
He obviously knows that but whose phone number does he want <:kekw:6580619325778...
The one linked to my account. Idk whose it is. It seems professional or something
sharp veldt
Stole ur sisters phone?
Someone stole my sisters phone but the phone number that it’s linked to seems like it’s American. We are not American. When we saw the 2 devices that were linked to my MacBook, it was my sister’s lost phone and this other iMac with a professional sounding name
cloud otter
IS THM struggling right now?
topaz topaz
IS THM struggling right now?
aren't we all my friend?
sturdy sequoia
Someone stole my sisters phone but the phone number that it’s linked to seems li...
contact apple support
tribal furnace
Skip it and view a tutorial online for it or just pay subscription it's worth it
okay but except a more tutorials it will help me learn faster?
cloud otter
Just seems to be running really slow and throwing an error when i try to answer questions
blissful frost
IS THM struggling right now?
Yep i been getting errors all day
sharp veldt
Call support
They aren’t helping until I show proof of purchase but we bought my Mac from a retailer in 2021. He claims he doesn’t have the receipt anymore
Which is dumb
bright stone
Someone stole my sisters phone but the phone number that it’s linked to seems li...
what kind of phone is it?
sharp veldt
what kind of phone is it?
It was an iPhone 13
cloud otter
@blissful frost gotcha, glad it's not just me than in a way
blissful frost
okay but except a more tutorials it will help me learn faster?
Any info is useful
sharp veldt
contact apple support
They are refusing to do anything until I show proof of purchase. It’s frustrating
topaz topaz
Just seems to be running really slow and throwing an error when i try to answer ...
yes, sometimes the answers I give it can take up to 20 seconds to process
lofty pawn
IS THM struggling right now?
Everything is struggling these days.
First AWS, now Azure DevOps.
bright stone
@topaz topazare u from Greece?
cloud otter
Oof, last thing i need after 14 hours of work is to have a slow THM session lol fml
blissful frost
<@1389341075256246292> gotcha, glad it's not just me than in a way
I was last min on losing my streak and I kept spamming the submit question button and getting errors till it worked
topaz topaz
<@222151553992228864>are u from Greece?
you're good at OSINT
sturdy sequoia
They are refusing to do anything until I show proof of purchase. It’s frustratin...
if they cant help you, we cant either
sharp veldt
if they cant help you, we cant either
You can if you tell me the name of the technique that’s used to find out numbers
sturdy sequoia
You can if you tell me the name of the technique that’s used to find out numbers
what do you mean by "find out numbers" ?
blissful frost
They are refusing to do anything until I show proof of purchase. It’s frustratin...
Then show proof of purchase it's obv they won't help u lock a phone without proof it's urs
rose tusk
this is not legal, please stop asking for this type of advice
sharp veldt
what do you mean by "find out numbers" ?
Like a phone number
blazing granite
you're good at OSINT
he's great, he has eyes and the ability to click 🤣
frank sinew
Just a general question if someone knows the answer or is from TryHackMe Support team here: Planning to get the SLA1 Certification voucher (I am assuming validity is 12 months), my question is, I am currently subscribed to TryHackMe, will my membership be extended by 3 months?
rose tusk
if you don't have receipt confirm with your bank if they had the purchase or retailer
sharp veldt
Then show proof of purchase it's obv they won't help u lock a phone without proo...
No. They want proof of purchase for the MacBook. The retailer doesn’t have the receipt anymore which is weird asf
topaz topaz
he's great, he has eyes and the ability to click 🤣
That's a great foundation
rose tusk
retailers are mandated to keep records for x number of years
sharp veldt
if you don't have receipt confirm with your bank if they had the purchase or ret...
It’s been 4 years. He claims he doesn’t have it
rose tusk
Just a general question if someone knows the answer or is from TryHackMe Support...
yes afaik
blissful frost
No. They want proof of purchase for the MacBook. The retailer doesn’t have the r...
They won't have it 4ever
modern fox
blissful frost
https://tenor.com/view/horse-horse-reaction-reaction-elite-dangerous-borann-boys...
rose tusk
It’s been 4 years. He claims he doesn’t have it
get that in writing, but trying to perform an attack on someone without prior approval is illegal. Speak to apple and inform them if the issue with the information in writing and ask them if there's any other way to prove your identity.
willow delta
guys anyone got a good website for generating deface?
sharp veldt
get that in writing, but trying to perform an attack on someone without prior ap...
Im not attacking anyone. I’m attacking myself tbh
sturdy sequoia
Im not attacking anyone. I’m attacking myself tbh
not quite. youd be hacking apple
devout gulch
Im not attacking anyone. I’m attacking myself tbh
I’m green af and can see that’s phishy
sharp veldt
not quite. youd be hacking apple
Fr?
lofty pawn
not quite. youd be hacking apple
realistically nothing is unhackable
sharp veldt
Is there at least a thing that can allow me to try all possible passwords for something
sturdy sequoia
Is there at least a thing that can allow me to try all possible passwords for so...
for what password?
sharp veldt
for what password?
My Mac password
lofty pawn
sharp veldt
cracking...
Seems like cracking is about deciding hashs
lofty pawn
No one will tell you how to perform illegal activities (in this case being brute-forcing)
blissful frost
sharp veldt
No one will tell you how to perform illegal activities (in this case being brute...
What’s brute forcing
lofty pawn
🤦🏼♂️
devout gulch
lol
sand trench
https://crossclave.com/one/
so tempted to just buy this right nyaow
devout gulch
What’s brute forcing
If you want to brute force just login to googles quantum computer and let it run
lofty pawn
^^^
sharp veldt
If you want to brute force just login to googles quantum computer and let it run
What??? 💀
sand trench
here is hoping post quantum encryption algos actually work
loud marlin
quantum will not do much in bruteforce login
you will get blocked if try rute foirce login lol
strong fjord
Ayo guys i have a quick question. I'm aware i should ask this to the support team but i wanna know if you guys have the answers.
My monthly sub is about to expire and I'm planning to change to annual sub but black friday is upcoming.
Should I just wait or can I change my annual plan to the black friday when it comes?
lament tendon
Quantum computers are really strong against asymmetric encryption and that is about it for brute forcing with them.
sturdy sequoia
Brute force wont work if you're locked out
loud marlin
Brute force wont work if you're locked out
this^^
lofty pawn
You'll most likely just get your ass rate-limited.
loud marlin
or you can solve P=NP and then you have all the things
devout gulch
That’s actually informative, I was joking but you all actually know your stuff which is cool. I appreciate learning more
loud marlin
if some have quantum pc, i have hash to crack... pretty please lol
loud marlin
lol
dark wolf
Assuming you mean n * p 😛
devout gulch
or you can solve P=NP and then you have all the things
😂
lofty pawn
if some have quantum pc, i have hash to crack... pretty please lol
👉🏼👈🏼 pwetty pwease
dark wolf
https://www.imdb.com/title/tt1801123/
He wrote a whole book enumerting P = NP?
Damn, what's it go to ? 10,000,000 ?
lament tendon
if some have quantum pc, i have hash to crack... pretty please lol
A sha256 hash would still have 128 bits of security in that conext tho, so you're not gonna break that that easily. :/
loud marlin
there is much more in p=np
dark wolf
i kid
loud marlin
A sha256 hash would still have 128 bits of security in that conext tho, so you'r...
this is 7zip hash =/
lament tendon
Won't really make it easier, but I don't know math well enough to give exact details.
Does 7z use it's own hash function?
devout gulch
This is high concept right? You literally put more esoteric language and I’m lost
lofty pawn
Does 7z use it's own hash function?
yes
blissful frost
if some have quantum pc, i have hash to crack... pretty please lol
If someone have a quantum PC he won't even need to learn cybersecurity he would just learn cryptography and hack the world
lament tendon
Well, in that case a quantum computer may or may not solve your problem as I have no idea how that function works, lel.
lament tendon
You should still be able to see the file names in that encrypted thing tho.
blissful frost
Well, in that case a quantum computer may or may not solve your problem as I hav...
Imagine instead of u walking in 3 diff pathes there r 3 people of u who will walk on those pathes so thay would take × 1/3 the time needed that is quantum computing
devout gulch
Random but is quantum still classed as binary?
loud marlin
SHA-256–based KDF with salt and a high iteration count
lament tendon
AES-256 encryption
But you are first deriving a key from your password, and THAT is the important part.
You are not breaking AES256 even with a quantum computer.
loud marlin
But you are first deriving a key from your password, and THAT is the important p...
and salt, that you do not know
winged dirge
hey can someone help me out im trying to get into cybersecurity and figured this would be a good place to start. ill explain more in a vc just confused
blissful frost
hey can someone help me out im trying to get into cybersecurity and figured this...
The 3rd one in the same hour
sturdy sequoia
hey can someone help me out im trying to get into cybersecurity and figured this...
devout gulch
hey can someone help me out im trying to get into cybersecurity and figured this...
Me too! Just here to learn
lament tendon
and salt, that you do not know
Is this not literally the salt?
What would you even do with this hash if you did not have the salt?
loud marlin
you need whole file. is all one thing
blissful frost
Is this not literally the salt?
U can't know
winged dirge
ty
twin ridgeBOT
Gave +1 Rep to @bronze crescent (current: #1286 - 4)
trail sequoia
i've just tried leetcode for the first time ever today and i understood there's level to this shit... https://leetcode.com/problems/two-sum/submissions/1815464294
loud marlin
password = password + salt = hash
trail sequoia
i've just tried leetcode for the first time ever today and i understood there's ...
how is it possible that there's guys able to get 21 ms on twosum
blissful frost
password = password + salt = hash
Password = password + salt + hashing algorithm = secure storing
lament tendon
password = password + salt = hash
Yes, but you need the salt to check whether the password you entered is correct.
lofty pawn
I wanna try vim just for fun
lament tendon
A salt should always be supplied with the hash value.
lofty pawn
just been using nano the past years
lament tendon
If it is not, you would call it a pepper, fun fact.
loud marlin
A salt should always be supplied with the hash value.
and if you do not know password and salt... is crap
lament tendon
Anyways, back to topic.
You have a hash from a 7zip.
You should at least be able to see the filenames on the top level of the archive anyways.
Dunno whether that helps.
devout gulch
I’m very green but what is it with this industry coming up with such jk names?
blissful frost
Yes, but you need the salt to check whether the password you entered is correct.
Nope
So every user has his own algorithm for generating salting so they do he same algorithm to add the salting to the password u entered then hash them then compare them
loud marlin
You should at least be able to see the filenames on the top level of the archive...
you cant list whats inside ziped file
lament tendon
Also I would expect the salt be part of the password hash you send, because it would make very little sense if it was not there.
lament tendon
Nope
So every user has his own algorithm for generating salting so they do he s...
Do you have a link to a source that explains how 7z hashes work?
I would like to read up on this.
Seems like an interesting approach.
blissful frost
Do you have a link to a source that explains how 7z hashes work?
I would like to...
Ofc give me a second
Ik a good arabic source do u speak arabic?
blissful frost
Alr let me search for smth else
cloud otter
3 hours later..................................................
distant robin
Is there a gaming channel here?
loud marlin
lament tendon
https://www.7-zip.org/7z.html
Thanks, but I am looking specifically for the hash format documentation.
twin ridgeBOT
Gave +1 Rep to @lofty pawn (current: #3235 - 1)
lofty pawn
Thanks, but I am looking specifically for the hash format documentation.
Ah, got it.
blissful frost
Do you have a link to a source that explains how 7z hashes work?
I would like to...
blissful frost
https://superuser.com/questions/1758374/how-7zip-generates-hash-for-multiple-fil...
This is a rly clear ez explanation
loud marlin
@polar spoke can tell way more about 7zip then most of us know.... if he is amount alive ppl
sand trench
shadow can tell you more about cheese then most of us know
lament tendon
https://superuser.com/questions/1758374/how-7zip-generates-hash-for-multiple-fil...
Thank you.
twin ridgeBOT
Gave +1 Rep to @blissful frost (current: #534 - 13)
lament tendon
So from what I get from this here, there is no salt at all.
Which does not matter as much in this case, as there is no actual password verfification, but you can only try to decrypt the file and see whether that worked or not.
https://crypto.stackexchange.com/questions/90137/7-zip-encryption-practical-effect-of-lacking-salt
Aka. no rainbow tables, and each decryption attempt will take a considerable amount of time (at least to a computer).
Makes sense.
blissful frost
Thank you.
Anytime ❤️
left torrent
youngest hacker here?
lofty pawn
So from what I get from this here, there is no salt at all.
Which does not matte...
But if there is no actual password verification, how do people protect zipped folders with passwords?
sturdy sequoia
youngest hacker here?
youngest active member i know of is 14
left torrent
youngest active member i know of is 14
is this 14yr o still in the server?
lament tendon
But if there is no actual password verification, how do people protect zipped fo...
You use your password to generate an encryption key and then just directly encrypt the files with AES256.
sturdy sequoia
is this 14yr o still in the server?
yes
sturdy sequoia
ayy tag em
no. its up to them if they want to share their age again
left torrent
no. its up to them if they want to share their age again
bummer
lament tendon
You use your password to generate an encryption key and then just directly encry...
You can actually attempt to decrypt AES with any sort of key as input, but the output will be gibberish or there will be a decryption error.
left torrent
youngest hacker here?
lament tendon
So when you input a password, the files are "decrypted" incorrectly, and since the output makes no sense, 7zip knoes that the password was wrong and tells you that.
lofty pawn
So when you input a password, the files are "decrypted" incorrectly, and since t...
Yeah that's what I thought. Interesting stuff, thank you.
twin ridgeBOT
Gave +1 Rep to @lament tendon (current: #40 - 270)
lament tendon
They might be trying to get someone banned when they respond with a number that is too low for Discord TOS.
sturdy sequoia
erm reasons
what reasons?
lament tendon
Best is to not respond.
left torrent
They might be trying to get someone banned when they respond with a number that ...
ye ik
happened to my old account
left torrent
what reasons?
nvm you sound real fun
lofty pawn
Yeah like how people try to trick people to say numbers like 12, 11 etc as you have to be 13 in order to use Discord.
willow delta
guys is there a king.txt in the tryhacme koth hard?
left torrent
o im chilling
left torrent
Yeah like how people try to trick people to say numbers like 12, 11 etc as you h...
is 13 the age?
lofty pawn
is 13 the age?
Yes, per their ToS.
lament tendon
Do not respond to this dudes messages, there is a good chance you will be banned.
willow delta
HES COOKED
lament tendon
They will edit their message and then report yours.
willow delta
LOL
lofty pawn
Nah
willow delta
They will edit their message and then report yours.
YH EXACTLY LOL
sturdy sequoia
They will edit their message and then report yours.
thats ok. mods can see edited and deleted messages
winged nimbus
prob not a good idea to even say these numbers in chat, knowing how shit discord's automated moderation is, you guys should prob stop talking about age
left torrent
thats ok. mods can see edited and deleted messages
discord mods not thm server mods
willow delta
guys
lament tendon
thats ok. mods can see edited and deleted messages
It will be reported to Discord, not the mods here.
And Discord has been banning people over this message editing stuff in the past.
They don't check the edit history.
lofty pawn
Discord stores message content which also applies to message history (edits)
willow delta
is there a king.txt in tryhackme koth hard?????
lament tendon
is there a king.txt in tryhackme koth hard?????
Depends on how strong your opponent is.
Just getting into the machine is decently easy.
willow delta
bro..
lament tendon
Discord stores message content which also applies to message history (edits)
They do not check that tho.
left torrent
last man standing
lament tendon
Let me source you something.
left torrent
i was trolling and said i was 10
lofty pawn
my old account as well
wdym bro 2025 is recent
left torrent
got banned
lofty pawn
https://youtu.be/86LnUk2Dk50
Yeah I've seen that video
lament tendon
It's gonna explain it better then I ever could.
left torrent
wdym bro 2025 is recent
nah MY old account
lament tendon
Wonder whether Discord will actually do anything about this anytime soon, has been an issue for ages.
But now everyone knows about it, which is a bit of a problem.
lofty pawn
Wonder whether Discord will actually do anything about this anytime soon, has be...
Funny how their Zendesk instance was hacked.
lament tendon
Debatable. I usually am into dark humor, but this specific case causes a ton of harm to random people.
left torrent
lament tendon
I mean, you saw the video about that as well, I assume.
lofty pawn
Someone managed to phish one of their employees into giving their login credentials.
lament tendon
Yea.
left torrent
this was before the dc data breach
lofty pawn
/external employees, out-sourced, don't remember all the details
lament tendon
You can verify with your ID that you are old enough, but then they will store that ticket in Zendesk, get their Zendesk hacked and now your ID is used by some dude to extort Discord and potentially worse.
This whole situation is a massive disaster.
left torrent
You can verify with your ID that you are old enough, but then they will store th...
i literally said
no to them before they got leaked
lament tendon
Never give our your ID online to anyone or any service.
If the service requires your real life ID, it is not worth using.
left torrent
there you have it discords mod watching
lament tendon
Banking is a bit of a different deal, but you can actually physically go there and do the verification face to face, lel.
Even tho, of course, there might be some cases somewhere where sending your stuff digitally cannot be avoided, fair.
lofty pawn
Still a bit relevant though, they're not exempt to breaches.
Even though it's unlikely to happen.
lament tendon
They should also not store pictures of your ID after verification.
Discord should not have done that either.
lofty pawn
I'm just amazed Discord didn't have other measures in place in the event of a breach.
lament tendon
The measure would have been not storing personal information for longer then required for the purpose that information was collected for.
Which is actually illegal in the EU.
lofty pawn
lament tendon
Also MFA, I guess, but that does not secure you against all phishing attacks either.
lofty pawn
Don't know what's it like now, but before you could log in to accounts by grabbing tokens and log into it through the console through a specific command.
Probably been patched.
lament tendon
You can still do that because your Discord login is just a session cookie, like you'd have for any other website.
Dunno whether you are still able to change your password just like that anymore tho.
Or your email, both would work fine.
If you have MFA set up it will required a code.
sand trench
well discord not enforcing their 3rd party support providers data retentions is certainly not a good move
lofty pawn
Yeah, and the fact they're trying to hide it lol
lament tendon
Are they?
sand trench
hiding the databreach does not seem to be happening
lofty pawn
Yeah, they didn't give all the correct details.
lament tendon
hiding the databreach does not seem to be happening
That pretty much never works, but it usually does not help your reputation if you try to.
lofty pawn
https://youtu.be/NnuyT8FgSpA?si=Hk5gL9mZte_AYhWp&t=116 with timestamp.
sand trench
https://youtu.be/NnuyT8FgSpA?si=Hk5gL9mZte_AYhWp&t=116 with timestamp.
well that is taking the hackers words over discords words... both are probably missrepresenting the data to some degree
i.e generally both are wrong
lofty pawn
Yeah you're right.
lament tendon
If the statements the hacker made in this video are halfway accurate they are not much better then that finish hacker from a few years back.
sinful moon
Slightly unrelated, but I hope you all get experience writing Incident Reports for work because fun, it's that time for me again
lament tendon
Hopefully not, the writing I already do is the most boring part of my job. 
sinful moon
Indeed but having these kind of writeups are critical imho
lament tendon
They are. I am just glad it's someone elses task to write them.
sinful moon
Haha I am the all singing all dancing infosec everything at my org, so all me
as evidenced by this could have been prevented or mitigated earlier if not mishandled by another tech
hardy hazel
hey
sinful moon
Yep pretty much literally lol
hardy hazel
what does mean subscriber and verified? or how can i get that roles?
blazing granite
what does mean subscriber and verified? or how can i get that roles?
subscribe and verify 🤣
sinful moon
There's also a neat documentation search I was about to provide but that works too
hardy hazel
subscribe and verify 🤣
youtube channel?
hardy hazel
<#806554132117979143>
thank u
twin ridgeBOT
Gave +1 Rep to @sturdy sequoia (current: #300 - 30)
lament tendon
youtube channel?
No. This server is about a website.
Read #start-here, as Shyft recommended.
hardy hazel
No. This server is about a website.
like premium than?
sinful moon
Subscriber are for people who subscribe to the TryHackMe service
lament tendon
like premium than?
Yes.
blazing granite
youtube channel?
hardy hazel
https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhac...
thank u for information
twin ridgeBOT
Gave +1 Rep to @blazing granite (current: #55 - 191)
sinful moon
so I should have just sent my command lol, oh well
just exhasted from 10 hour day looking into that incident lol
willow delta
whats the point of doing that bro
lament tendon
At a certain level you get access to some extra channels.
sinful moon
do you want to send embeds, show your rank on the site, and etc on the Discord, you kinda gotta
sturdy sequoia
whats the point of doing that bro
lets you post pics and gifs here too
blazing granite
just exhasted from 10 hour day looking into that incident lol
I was about to ask you how are you. You read my mind 🤣 😛
willow delta
At a certain level you get access to some extra channels.
channels for what
lofty pawn
What are people's opinions about using Triage for malware analysis?
lament tendon
Just talking, and malware research.
sinful moon
Channels for subs and way way down the line, advanced topics
lament tendon
And a more advanced help channel.
willow delta
ait bro