Recently finished killer in the code, goes over the black dahlia and zodiac killer cases

Guys please i need real help right now on advice most especially from those in pen testing. i’m 20 years old in uni studying comp sc for cyber security, it’s summer holiday now and i want to grab like 1 or 2 good certs, im a complete beginner in ethical hacking but not to sound depressed im more of a loner so i have much time in my hands, what cert would you guys say i should go for first? ive asked a few some say eJPT and others say PNPT and another said THM PT1. chat gpt said Pentest+. im genuinely so confused and i hate when im ready to do something but dont have the clear pathway. someone please help

true crime ❤️

Really depends on ur interests, i like alot of the stuff wondery puts out. Although the backlog is paid, alot of episodes can still be found, i like american scandal, American criminal

This one is riddled with ads, sadly. But it goes into the American/italian mob in the first season and the 9/11 stuff in the second season

and if anyone gives me good advice on this i promise, tomorrow i’ll be fully locked in and send my progress here each day maybe be motivation for others looking to start and not knowing a partway. because im fully ready to commit but also so confused on everything

And ofcourse the goats, darknet diaries, malicious life etc

hey hey 🙂

It's worth cross posting this into #cyber-and-careers so it isn't instantly burried here

But yeah, generally speaking those are some good recommendations. I mean, I'm THM staff, so I will say PT1, but I definitely wouldn't say that it's the only one.

There's a lot out there, Sec+ is always a great start if you're looking to affirm cybersec generals,

respectfully if I may, I think things like PNPT or SAL1 might be a bit too far ahead for your journey right now - if you're at cybersec camp. It won't harm at all - but - finding challenges/learning platforms to learn and practice on before straight away jumping into certs right now might be something worth looking into 🙂

ugh and again i cant beat the cheater in the leaderboard (i know it doesnt matter but still -.-)

i’m sorry i’m confused what you mean by this 😭😂

https://cdn.discordapp.com/attachments/887824062389289001/1498082160924692490/image0.gif

yes i completely understand, but id also like to follow up a certification to start securing a job pathway if you get what i mean. the past 1 week ive just been watching youtube videos on which cert to go for first, every video says something else. of course i will go for THM pt1 in future but most of those videos said it’s more intermediate so i gave up 😭😭

why would i club when im not in a happy position currently for it lolll

Only reason why I say that is because I was in the same shoes - for whatever it's worth. Certs are expensive and they expire. If you're currently studying cyber, continue with that, use online platforms to practice your skills to help with cyber in the immediate term.

When you're in the position to start looking into getting a career - start looking at certs - because of aformentioned. Expensive and they expire

Much better IMHO spending the money you'd say for example wasting a year of having a cert when instead that year cost for the cert that's being wasted might give you a year subscription x/y/z platforms to learn/practice on 🙂

Hi guys

Sup astro

What are we discussing

Yeah I totally totally get that 😄

I can't give you an unbiast opinion. But totally get that there's a lot out there - "go for this" "go for that" etc right as you've discovered 😅

I mean yeah, I would say personally, PT1 isn't the most absolute beginner friendly ever - it requires following our JPT & Web paths on THM. So it's just a gauge of where you feel you are at. Comptias are always a solid foundation for a lot of things, so i'd never recommend against it.

If you want to sit a cert right now, look at the course/exam cylabbus for whatever and see how you feel you align. That could be PT1, PNPT, Sec+, you name it 🙂

Not really a helpful answer but hopefully that helps a bit. But yeah, try posting into #cyber-and-careers and see what replies you get over the next few days 🙂

https://tenor.com/view/texting-text-me-zhivago1955-typing-dictation-gif-20265500

discussions maybe

Something something certs

hahha....yeah..sleep. About that 😄

Genuinely, Sec+ is a really solid and recognised certification. Is it perfect? No. Is any certification? No.

But yeah, it's very popular for good reason. I wouldn't dismiss it

indeed 😄

all around a great skills/knowledge for a mixture of things. I think Sec+ gets a bit of hate, and I understand it - it's old in terms of exact curriciulum but, the general thinking and skills across the board are great.

I'd never say never about it 😄

but it's all individual, so...

Not sure if this is your forte but what do you think of Sec+ and SC-300 for an aspiring IAM engineer? That’s what I’m here on THM for.

I know AWS is popular in private sector but I’m focusing on enterprise

IAM as in AWS?

oh

azure, hence the SC-300

Yeah, that'd be my recommendation. Again, Sec+ is a great "all rounder", and gives you a lot of "cybersecurity thinking"

I'd be inclined to promote our SEC0 + SEC1

But Sec+ yes for sure. SC-300 for sure. To make you make a bit more rounded I'd suggest SEC-200 and/or AZ305 (I can't remember if AZ305 is the entry to azure architecture)

AZ305 for the "I know Azure"

will definitely help for demonstrating azure skills, even if you'd be IAM-focused. Knowing how services, etc, interact, always helps

AZ104 is maybe the entry version to that I'm thinking of?

I can't remember without googling hah. Sorry.

I think AZ-104 is a good all arounder about Azure, I'd expect it'd help getting a JR IAM role but yeah who knows heh.

Sec+ & AZ-104 would be a great start, imho (anyone feel free to correct me). SEC-200 IIRC is a prerequisite to SEC-300

well it's not an officialy prerequisite but from what I understand that's the general path - SC-200 -> SC-300 usually gears you up well

Thanks for the advice y’all! Definitely helps to have a framework to know what I should be studying. This field is quite overwhelming, it’s nice to be able to talk to people who are in the know lol.

Definitely overwhelming! All good - best of luck!!!

If it helps any I’m already coming from an IDM administrator role, though we use Sun Java Identity Manager (yes, we’re legacy, lol)

Goooood question haha. So yes, it's open book in the traditional sense - we don't...."punish" you for taking/bringing notes ETC. We try and make it realistic in the sense of - you wouldn't be going into a SOC/Pentest role and not taking notes...so why harm them for doing so

We have certain protections in place as a best effort for preventing cheating. Is it perfect? No. Can you cheat on a SANS exam? Yes. Can you cheat on $insert OFSEC exam? Yes.

We have a "proof of work system". So what you see is different to some else sees, even if you're doing the same exam, and other things. But, I can't go into much more detail about it 🙂

But that's the general stance. Take all the notes you want, etc, it's open book.

That's the general rule for our current certs -- that may change for future or current certs. Always best advice is to check the certification page and/or reach out to support 🙂

Basically no, we don't require any software like having a "locked down" browser as far I know.

We generally recommend chrome/firefox, but nothing like having to download a sandboxed browser or PC monitor thing right now 🙂

subject to change ofc ofc but that's just my understanding as of right now

Yeah, I mean it's easy for me to agree - cheating for certs to get a job is crazy, Because okay maybe one would get hired but you'd be very quickly get highlighted within a month of "well they cant do the job"

So...

I mean, with the value of certs and etc, it definitely hapens. For all certs providers. There's definitely the motivation etc but yeah I mean an ]view is "you're ultimately harming yourself"

Yeah, I mean it's easy for me to agree - cheating for certs to get a job is crazy, Because okay maybe one would get hired but you'd be very quickly get highlighted within a month of "well they cant do the job"

So...

I mean, with the value of certs and etc, it definitely hapens. For all certs providers. There's definitely the motivation etc but yeah I mean an altruistic view is "you're ultimately harming yourself"

What cert is this? SAL1?

Okay so, my understanding is (and this might not be 100% sorry)

But, as far as I know,

You can start each section i.e. the MCQ (1hr), the practical sections (scenarios i.e. 2 hours) when you want over 24 hours

But once you start that section of that section (i.e. MCQ is 1 hour - you have to complete that section in 1 hour)

so over 24 hours

I could do the MCQ straight away - 1 hour

and start the practical after 6 hours of completing the MCQ (which then gives you that 2 hour slot) , as long as I finish all elements of the exam within 24 hours

so for SAL1 it's x2 2 hour practicals

I could start the MCQ (1 hr - I have to complete that within 1 hr)

I could go away for 2/4 hours etc, start the first practical, then have to solve that within 2 hours since starting

go away for 2/4 hours etc and start the next practical which I need to complete in the 2 hour window

Basically yes that's it -- I worked on SAL1 but it's been so long, so I won't say it's the "trust my word" but that's how I remember.

Worth checking with support to make srue that my understanding is right if you have specific questions 🙂

Sorry! We have a lot of certs and tbh I'm still tryna keep up with it all haha

the exam as far as I remember is 1+2+2 hours, aslong as you do each stage within 24 hours totaliltiy, and start and complete the stage of that exam within the window (i.e. 1HR for MCQ, 2HRs for scenario)

Basically as far as I remember you have 24 hours to complete the stages - but once you start a stage you have that specific timelimit

Good Q. As far as I know they don't stack -- but I could be wrong. I think it's usually for the if you renew but I can check 🙂

Plus ticketing events have discounts for either montly or annual etc so depends on that, but AFAIK they don't stack so it'll be *if you renew you'll get that ticketed discount applied to whatever it applies to (monthy or annual) but I can check 🙂

Sorry I can't be of much more use. It's kinda above me, I just do the hacker/terminal/content stuff on the site 😄

the cybersec nerd stuff 😄

But yeah, if you want answers in concrete/on paper, always give our support team a shout 🙂

Awesome! Best of luck if you do sit it.

It's easy for me to say as someone who worked and reviewed on SAL1, but, I do think it's realistic as in the sense of - you can apply the skills to a job. We contacted big SOCs to build it, and the squad I was in are previous SOC members so 😄

Not tryna sell it, etc, but that's just the place we're coming from as in those who built it

Heh yeah I just do the content across the platform. There's so much going on over the last months, and upcoming, It's hard to keep track of HAH

Gave +1 Rep to @lone thistle (current: #10 - 971)

Heh yeah same 😄 awesome!

For your previous comment, just to check, was this a price difference that you wasn't expecting?

Feel free to send it onto me via DM and I can check about what you got and what's advertised. I don't quite know the full details but I can always check 🙂

been fighting with Kali in Vbox to share bi-directonal clipboard. Anyone run up against this?

did you maunally set it up

could the that virtualbox guest utils is not properly installed?

I’m reading that they don’t exist for Mac silicon. I think I’m out of luck. No guest additions at all

ENJOY THIS BRIGHT MORNING

https://klipy.com/gifs/headphones-listening-to-music-4--k01KQ67J7J5ESFVD97ZN80G97FH

https://tenor.com/view/cat-tired-sleepy-coffee-coffee-cup-gif-16510344054637063999

Just setup 2fa for all of my important accounts

Ay up how we doing

Someone tried to log in to my tiktok account with sms💀

SIM SWAPPINg

No, i dont think they successfully logged in

Tiktok sent me 2 verification code through sms

Tho i dont do anything related

So i think someone tried to log in

nah your data gets cut off immediately out of no where, one time that happened to me but it was apples fault i thought it was over for me

i saw some scammer tricking people to give them those verification code, i know you smart but some elderly fell for it : /

I dont even know who made tiktok sent me those bruh

i know,

Luckily, i saw the sms message and setup 2fa to all important accounts

the thing is, how did they get your number :

I dont even know💀

maybe your data is circulating in breach forum

Did it come from cracked games i installed💀

https://tenor.com/view/omniman-gif-26206182

Wait, the cracked offline game i installed has mobile data usage💀

they won't do much if they can't trick you

this was a long one lol

congrats

where did u install them from

3 New Zero Days on Windows MS Defender

• BlueHammer (Patched 2 weeks ago in latest update)
• RedSun (UnPatched)
• UnDefend (Unpatched)
  and they got open sourced by someone who found it
  https://github.com/Nightmare-Eclipse

no as such Office work today too, I'll continue with HTB ADPT stuff

hi i got a question if you'll guys can anwers i'll apreaciare

Just go for it , whoever has the answer will answer

i just waching the network fundamental

but i don't know it this video its pretty good for it.

you'll recomed any video for learn networking fundamental ?

jeremy IT lab

It's this one ?

I mean this video should i watch?

yea

I do appreciate bro!

Good blees you ahahhaha

I'll watch right now

How to find out if the command is not found

Yaaaaay Silver League 1st place 🥳

search new alternatives online

@fading perch

is this ?
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Command Injection

yeah

yo are u doing bug bounty ?

yea

wanna connect i am also in bug bounty and off sec

and looking for Friends

yes we are all here friends

i mean team member 🙂

yo

wsg

this is my first time here hows the community?

noicetiful enough

ok so the thing is that i feel really threatened online can someone help me?

what do u mean by that

Umm idk someone is teaming up against me with some of these Hackers and im pretty scared

if someone can help me

Im so sorry for disturbing or being weird its just that im stuck

Contact authorities/police then

I have thought of that but i dont think they will do anything specially in my Country I`m not sure that I'll get attacked but still im threatened

Just some help like what can i do to prevent ts?

nor we can do anything mate

what exactly are they doing?

leave it bro thanks for the support

Gave +1 Rep to @blissful current (current: #69 - 170)

@dreamy bronze Thanks for the support

Gave +1 Rep to @dreamy bronze (current: #777 - 10)

ahahh I forgot give it to you bro

yeah ofc

my bad

and i like thim bro

in the first video i just got 3 anwers of 5 but I gonna make that happend

in the quiz

what u doing ?

That

ohh nice

yeah

i gonna watch those one

before i got in to the university

in to cybersecurity

for ccna u can try networkchunk yt

mmm, I just want to learn the fundamentals for networking

becasue i saw that before i study cybersecurity learn the fundamentals

of the network

Hi, does anyone have a summary of the commands, organized by topic, for the entire learning path of junior penetration tester of try hack me? I finished it but didn't take notes.

yeah

isn't the first thing that i have to learn if i wana learn cybersecurity / @rapid merlin or @dreamy bronze

yeah

yes networking is first

if u know hindi watch bitten tech networking its good i learn from there

after that, What should i learn ?

linux

@fallen perch download pt or gns3 or the theory won’t really stick

gns3 ?

what its ?

network simulator

oooo i'll try it

but i have to download ? and where ?

what is this do ?

you can build networks

ahh okay

any one suggest free rooms for off sec in thm

i appreciate guys

Thanks you @dreamy bronze

Gave +1 Rep to @dreamy bronze (current: #708 - 11)

Thanks you @rapid merlin

Gave +1 Rep to @last scroll (current: #1261 - 5)

and another question

yo damon u can do reverse engineering right ?

after i learn networking fundamentls and linux where should i go from there ?

bro first learn this and after this feel free to dm me

dont think to much just st working

appreciate

Can someone get into somebody’s account for me on Roblox?

we dont do that kinda stuff , its illegal

Fs I got you

Ww should stop studying and go work as mechanics

congratulations

i never try challenge in tryhackme before, i always study in path, so this year i wanna try the challenge, did you guys have tips for me or did you guys any advice? like "complete path first and do challenge"

try challange what u know about

u can learn from challenges too btw , upto u how u wanna do in the end
but dont just keep doing learning path and skip challenges , do some sort of module and utilize challenges related to it for hardening the knowledge u gained

Thanks!

Gave +1 Rep to @last scroll (current: #1106 - 6)

Thanks!

Gave +1 Rep to @blissful current (current: #68 - 171)

wtf

but when i try the challenge sudenly i have 0 knowledge, like i didnt know what to do even i already learn the course about that

thats why u want to fix your mind

schrodeingers sign in

You got hecked

u have to practice because if u do only rooms its teach u teory not practical

cwzy

u know about web reverse engineering ?

did it wrong when i use AI to tech me to solve the challenge?

nah as long as u dont copy paste

am i tripping or i saw Lxzy and Lxzy type at same time

Search and read write ups that show the way and step for answers not just giving u the answers byr after u actually try

Alright Thanks! 😄

like in bug bounty i have to understand how web app works so u have any exp ?

Thanks!

Gave +1 Rep to @quasi dome (current: #306 - 35)

my pleasure well feel free to dm me

if u need any help

so can u tell me how u do ?

reverse engineering on web app

take up easiest challenges for starters and try on your own first(make sure while learning u make notes and also about the procedure/workflow to follow) and if u still get stuck look for Writeups and practice the challenge with that then do it again on your own after understanding what to do and how to do

slowly and gradually u can be independent of the Writeups and hints

Try search about the topic too by urself thm aint the only source or platform

when you are stuck on a question, keep trying for 10-15 minutes, and if you are still stuck then look at the answer

yes like i want to map out whole architecture like api route forntend backend etc..

so how u go for it ?

yes i know that i am collect info from response header

well i wanna know if u have any new method

or new source for fingerprinting

Anyone preparing for CRTeamer?

https://klipy.com/gifs/heart-anime-18--k01KQ6SHC23GDGVWE0N96E90YDX

https://media.discordapp.net/attachments/997830034083549256/999611514644344942/received_854905331847602-2.gif

https://tenor.com/view/pfft-no-thanks-get-out-of-here-get-outta-here-whatever-gif-5880797220710125928

Stay hydrated

How has everyone's night been? I just finished an intelligence report, and I am so exausted.

okay big bro

Good and you? Congratulations

here morning

@quasi dome Please slow down. Further spam will result in a short timeout.

Very tired, it was my first deliverable I've produced of that specificality. I'm thinking about making another..

It was really fun, and who knows.. I might adapt my deliverables for content but I have no idea what I'm doing yet.

mreow

intelligence report means @desert thistle

Hope you have a wonderful day!

yeah u too

Essentially a collection of information learned about a subject, usually a threat actor group or APT.

https://tenor.com/view/alone-karu-cute-frog-karu-love-gif-9073542059226148631

i see

Could be about an individual, or a group of threat actors.

How has your morning been so far?

kind a boring and looking for friends for share knowlage in off sec

Where are you starting from?

starting from ?

Let me link my account before I continue, I'm sure this account is raising flags to staff. 😭

Good morning guys 👋

morning

Who should I contact to reverify my account? @ionic nymph

How much experience do you have?

Nice banner brother!

/verify command

i am student

Yeah, I've tried but it's already linked to my old account: @rapid merlin

then u prolly need to contact mods/admins
check maybe on FAQs or something if any details there

How much experience do you have with computers?

3+ years

Are you asking what paths to take on tryhackme?

nah

i know most go through thm fast or easy, but i want to go through things until i not only know them but able to understand and explain it. so it may take me longer to get to a certain path but i think i would be better by knowing, understanding the foundations before i go into a certain path

@lone thistle

true mindset i like this

Not sure what channel to direct this though. I apologize.

I think there used to be a mod mail system?

why ?

Contact them on their support email it works for me every time

Appreciated brother, have a blessed night! Thank you for helping..

Gave +1 Rep to @unique sonnet (current: #2435 - 2)

No problem

what should i do, when a slot booking website poorly designed and facing "Server is too busy" error multiple times so it is possible to make a request when server is busy ? if yes please tell what to do ?

Yeah and make sure you document important notes

Try using vpn

try diffrent brower but i dont think its help that much

Route through tor it might help

If its an issue on server then we cant do much

If it's a server issue then using a VPN won't help

Yeah i mention it

yes

yes you're right

Is this for a THM room?

Or you just trying to exploit a random site

nope 😅, actually real world site

What are you trying to do on it?

slot booking 🤧

Just wait for the server to not be busy lol

Load balancers be working

Slot booking is pain

i wait alot, rarely open then slot booking page, when i filled detail and click submit, the server again busy 😢

maybe no Load balancers, because of poorly designed 🤧

yaa, that's why i'm searching for tool/methd whatever that do that job quickly 🤧

Movie booking?

Try using cli tools like curl and see if they give same response

ye that's what i think about

U are using Windows or Linux ?

Linux 💙

which one ?

Then do curl via terminal

Linux mint 😅

See what u get

hmm

It will take time to say that "I use Arch btw" 😂😅

yeah but i can say it i use arch btw 😂 😭

https://tenor.com/view/miku-kernel-unix-linux-arch-gif-27230800

Something yu must be proud of

funny

nah its noting i waste my too much time

guys nessus how many days for free I can use

https://open.spotify.com/track/7JsIEz27QU9kk7z1EEp9kt?si=77a4cf78c74f4c61

Googling up for fixing issues or use llms?

both 🫠

...sedly the moisture ate the laptop ..laptop died recently...RIP 2013-2026

it's fully free

Which one over the other as priority?

i have no must time, otherwise i definately switch to Arch 🤧 but currenctly happy with Linux mint 💙🙂

stop the cap

google is best

llm not work in my system

yeah dont waste time its just a os

how much ram?

4

TB?

damn

Sry late reply lol, I've been buys studying Golang. I'm trying to master the language by writing projects such as custom RATs, stealers that can decrypt using the keys stored locally etc and just stealthy malware that can persist without the usual known tricks, no startup no run registry keys. + doing two courses for Golang online from codeacademy

GB

aw man

I know it well but I want to get better and better

it was a Microslop laptop what do u expect

sadge

-# the laptop would have been decent if it had more than 4GB RAM and 128GB SSD

Have u guys heard of DBSC?

Nope

Thoughts on it? How long until it's bypassed?

winows avarage ram usage is 4gb lol

Device Bound Session Credentials thing?

ikr but somehow it was working with Win11

ya but dont expect multi-tasking without lag

lol

It stands for Device Bound Session Credentials itss a security feature in chromium browsers designed to prevent session hijacking by basically forging authentication cookies to specific device, I'm still learning how it actually works behind the scenes but it seems interesting and possibly a way to prevent cookie hijacking or at least make it difficult

the avg consumption was 2-2.5GB RAM usage

system crash due to 10 tabs of browser

by windows on Idle

yes

Oh I have heard of it!

I remember when chrome rolled it out

Also for some reason it's disabled by default on all browsers that are not chrome

heard a bit yeah

Lmao ofc

chrome is the only one that ships it as enabled

Yeah, well I do think it makes it harder but the attacks will just change

there's prob a bypass for it soon

I'm trying to figure out one as well on the side but yeah honestly zero clue yet

No clue, all I know is evilginx still works when I show it off on chrome

It's possible I'm just misremembering when I did that though

I wrote a RAT that allows you to open stuff on the victim's system without them seeing (The proceses are completely hidden) so you can open edge and use it as them, the GUI is still mad fucking laggy but it somewhat works lol.

So technically you can go around it

but that requires you to have direct connection

not just snooping cookies and leaving

Like a headless chrome or

that reminds me of this i saw last night
https://github.com/h4ckf0r0day/obscura

It's basically HRDP and the process is just injected in the background

its not exactly headless

I'm just a blue team dummy

Neato.

yah, learning things are far better than.. too much customization and things arey sometimes waste too much time.

🙏 Nah u just haven't read about the stuff yet haha

I've been diving deep into these topics for a while and now finally building my own stuff hahaha

yeah i use arch because i wanna learn Linux

HRDP stand sfor hidden rdp

in blue ?

hm? Meant that for @stoic quarry

Me as soon as Im trying to read n learn something :-

https://giphy.com/gifs/cat-sleep-sleeping-2zW5WSSp0umEHmqgTA

🤷‍♂️

oo

overdosing on caffeine fixes this problem

(dont)

Lmao

https://giphy.com/gifs/3d-monster-energy-drink-oEh1JaPy8uy5O

i ran out of white monster stock ...i'll order some again

silastic

What's up

nesus how many montsh free

the vm tool

Nessus ain't a hypervisor

So I found some typo's in a room. Where am I supposed to report this?

before learning anything 15min mediation is good to improve focus

#room-bugs could work. Or if you submit feedback for the room

Ah alright, cheers mate

hmmm ok

anyways ....imma go play some sports on VR for excercise since i dont have any work today ...im just chilling in WFH

Hell yeah man

then after this I'll jump back to HTB AD PT modules

Have fun

Morning

Morning 👋

No work today

Wooooo

Lucky guy

National holiday so the company is closed

Hello hello

https://tenor.com/view/snow-leopard-lock-in-roll-snep-gif-10362363214511745797

👋

Yo

i am working rn 😭

https://tenor.com/view/hi-mods-and-staff-mods-staff-hi-hello-gif-18113366955668622297

Hi

https://tenor.com/view/raging-kid-gif-21737059

https://tenor.com/view/really-bitch-annoyed-face-stare-whatever-kid-gif-17309831

Nice sounds interesting 🧐

Gm!

Hrllo peple

Hi

Morning 👋

Morning

Hi

Morning 🙂‍↔️

Hey

Ya been at it for a while now

Hey guys

hi

👋

https://media.discordapp.net/attachments/1120824341509197984/1153260232898777228/silly_little_cat_jaw.gif

https://klipy.com/gifs/gakkou-gurashi-hello-1

Puppy saying hi

U know the anime name?

boku no pico

Noted

https://tenor.com/view/luigi-no-thanks-gif-17830600169354026437

Luigi

https://giphy.com/gifs/luigi-mangione-PC7OnpizuJs04soXTe

i dont know if im allowed to make that joke

Itsa me Marius

Or whatever he says

CEOs in chat are gonna be pissed

uh huh gabe newell is safe

https://giphy.com/gifs/steam-half-life-gabe-newell-tmrbdE4rnlOwWwksVa

Does nothing

Wins

get sued by UK and NY

well well

Well

Ok i feel like im gonna only care about passing soon

no shit

The true spirit

company's dont even care about CGPA nowdays , they dont care

Internships are cgpa cutoff the non interview ones

what kinda internships is ur college providing

Let me get a ss

amazon, 9.95+ isro drdo for 9.5+. This is second year only so not a lot of companies come. In 4th yr there are a lot of then

doro doro

Can someone break down how a VPN works and what the dangers are?

Sup

Hi guys

Hi

Hi

hi how are you today?

Good u?

Instead of going to your ISP, your traffic goes to a VPN provider.

ummm... investigating my phone, pretty sure I have malwae on it don't really want to do a factory reset so now i'm having a look on what's installed. I don't know much about this but trying to learn and figure things as I go

Well I reccomend factory reseting

Whats happening to phone?

Just check your traffic

yes but I learned some things along the way, so I guess it's good practice getting hacked :D

If there a malware it should phone back at intervals
Look for irregular spikes when it's idle

investigating on arilplane mode at the moment. :D

What good is that gonna do ...there probably nothing,just keep tabs on your traffic

missed some phone calls, hopefully nothing important

i was thinking that isolatingthe device will goive more control for investigating

Hiii

Anyone know how to hack Facebook passwords etc?

Hi wanna get banned?

Investigating what ?..you need to find the cause first .

Ans your only option is looking at the traffic

Why would I get banned

Server is for hacking isn’t it?

should add that on the list, not hacking passwords... but my guess is that social accounts are compromised as well

Ethical hacking

@cloud quiver

Where does it say we can’t do that in this server?

was looking at permissions fisrst and overlays

#rules

Umm hacking Facebook passwords is counting illegal hacking

Thx taavi

Gave +1 Rep to @narrow bone (current: #825 - 9)

Oh ok ok

Fair enough

lool

Bruh

Hi woah

sudo hack --password --type=facebook-acc

Hi

😭

Christ just monitor the traffic,turn it on through a controlled proxy
Otherwise gl finding anything

He means use burp etc

I need some hacker community to join bruh

Wait nvm

Have you heard of owlsec?

Im banned from it

I dont know why

Its great

epik

isnt that an OSINT server?

owlsec

Cryptbb ? If you gonna help me sell my exploits

Huh? What is that server?

Yeah lmao

Whats that?

Anony

And what u mean selling?

Dark net

Nope thank you

Gave +1 Rep to @graceful pelican (current: #3745 - 1)

We are ethical

Gotcha

No, i stay on the white

Oh, I see I'm right in time for another 12yo selling roblox "hacks"

The only good community i found is a skid community on tiktok name 0xANONYMOUS if i remember right

….

0xANONYMOUS

gettin copyrighted by

https://tenor.com/view/rizzler-the-rizzler-rizz-face-aj-big-justice-gif-11358477961824563585

Anonymous

Wait, it is 0xDEADCORE

🥀

💀

Wait is it right?

I dont know

https://cdn.discordapp.com/attachments/1465050038689468659/1474146072212275332/IMG_4473.gif

karmanya i had a question can you tell me which tools I should learn for vm role?

valuiblirty managament

I know how to use these type of tools nmap nessus openvas nikto so far

Oh that's what you meant by VM

My bad

Just asked chatgpt for communities, now i have a lot discord server to chat, yippe

Vuln Mgmt

i was confused too lmao

Yah yah yah

Like ..whats a Virtual Machine Role now

Those are good tools to use for sure. If you have a home environment add it to a projects section on your CV/website and show you can use them

Rapid7 have a community edition for their vuln scanner iirc

u can look maybe for these....

DefectDojo,Qualys , Tenable ,OpenVAS/Greenbone, Trivy, SCAP/OpenSCAP and probably
SIEM ..elastic or splunk or whatever u wanna go with.

i havent used many of these but have heard ...so rest u can do research about

ok ok I will keep it in my mind

future is virtual machine role

Elk is a good siem

Hey everyone ,does anyone one have a CTF team I'm interested and I'm currently on the leaning path SoC analyst level 2

Hello everyone

Who can teach me how to create a link that steals cookies

yo

I want to steal back my old account

No one

Mi bombo 😭

How tf does that work?

Someone stoled it from you? And now you want revenge?

hxxp[://]admin[.]tryhackme[.]com/cookie-stealing-link

https://tenor.com/view/ishowspeed-my-mom-is-kinda-homeless-please-speed-i-need-this-tired-blow-gif-15401023925154467112

let me guess, it's a Counter Strike account ?

https://tenor.com/view/sassy-big-lez-show-wadiyatalkinabeet-what-are-you-talking-about-tell-me-gif-8526583

https://tenor.com/view/badong-sloth-big-lez-big-lez-show-sassy-gif-7706442927432687611

This is in my head all day

Khant

for me it's the CIA agent that interviews sassy

"they stole my weed, which I didn't think was very nice"
"ahhh fackin dogs"

Wayno gave him the pounder bag tho so it all worked out in the end

you're never too old to enjoy a sunset

https://tenor.com/view/sassy-gif-27701590

https://tenor.com/view/yeahhh-brahh-sassy-the-sasquatch-yeah-brah-sassy-the-sasquatch-sassy-brah-gif-2737259545630716276

its a titan where is caption levi ? 😂

We are adopting a new cybersecurity strategy at the company.

what ?

bring out the holy (deionised) water

hyy dude explain what is this ?

I think its something related to a religion

u talking about this @slow cloud ?

Yes

I think its the virgin mary

Dont quote me on it tho

okay thanks ya

Of course you feel that way. You’re new to this I assume? So am I. Years of web dev but this is a different skill set. The whole point is that you will fail, just accept it. You will suck at this for a while, as I do. Everyone has a day one, no matter what they’re doing.

The process of struggle is where the brain is rewired. And people hate it because let’s face it, It’s not comfortable So don’t feel down about it, understand that you have to go through this process to get good. There are no shortcuts. I’ve been looking for years and so has the rest of the world.

Everyone has a day one, no matter what they’re doing. Don’t quit!

yo best motivation but its reality

hi skids

Yeah, I should also add, ask a lot of questions. Question methods. And when someone does give you the right answer, don’t just blindly take it. Actually take a minute to understand and research why the answer works. I spent many years just copy pasting from stack overflow. I could’ve learned a lot more.

good essay writter

Haha yea off my soapbox for the day

yes i know i gone throw it

yo chat wsg

fine here what about u ?

im ight too

I have been doing strictly challenges for the past week after months of only walkthroughs. My advice is try, fail, understand why you failed and try again. It is not a weakness to look for writeups or videos so you can follow along and understand how you could have done things differently. Eventually you start developing your own methodology, forming hypothesis and testing them. You will also know exactly where to look for resources that make the challenges easier. It is a painful start but prepares you for the real world

whats your opinion on certificates? HTB vs TryHackMe vs OffSec ??

TryHackMe vs who ?

😭

jokes beside htb and thm cant be compared to offsec

İdk

Yup

Offsec

atomic bomb vs crying baby

OffSec is 100% more recognised than THM & HTB certs

yeah thats true

Fr

HTB is getting a name tho

I've seen it on a couple red teaming job postings

hello @slow cloud

yeah was about to mention this HTB has been actually going crazy with the certs

https://tenor.com/view/key-and-peele-comedy-central-keegan-aaron-skit-gif-4842542

I see CPTS at some places too and other HTB certs as well

https://tenor.com/view/cry-gif-27376041

yeah cpts has been getting more** recognition
wouldn't be surprised because they make you write an entire report as well

So did CRTP do to me..so Im fine with it ...coz in actual work too u will sit n make reports and emails mostly

sup

Hi a a r o n

Hijack
-# sorry if u r still mad at me

Called him idiot owner of the server then he kicked me from ARGS ..

yeah im fine with it as well people really make report writing sound scary
... The report writing struggle really prepares you for the actual job, i'd rather learn and figure out everything during the certification than in the workplace; mid assessment

Probably blocked me ..God knows ..and ignores me lmao

https://tenor.com/view/cat-eyes-eyeballs-cat-eye-emoji-eye-emoji-cat-looking-gif-9406810929029867845

can any of you let me know how secure a site is?

i didnt even gave the site yet

Its insecure

Every site is

There is always a way

yep but how insecure

Im not gonna tell u

does the perimeter of the site have fences with anti-climbing measures? preferably add surveillance as well...

Whos site is it?

https://tenor.com/view/smoking-gif-9745930313517122415

Well do tell him he good person ...and I'm sowie for what I said back then in anger.

Thx if u can pass da msg

no problem boss

I just don't wanna keep grudges with anyone tbh

well its a type of should i say crypto scam here tokenlordsrpg.com

im the same, i totally understand, I let him know 👍🏼

I overthink a lot so I say shit stuff and realize later I said something bad ...

looks like Ai made

OH MY GOD I WILL KILL DISCORD AUTO-EMOJI

Sakee

Samee

WHY ARE YOU NOT AUTO-SELECTING THUMBSUP???

yep know it but i want to go into details

The cyber police are coming

its not my site

huh

We know

i thought you were talking about a physical site

Thats why u are getting banned

Bud

What A name

Token lords rpg lel

something like a house, perhaps a lab,

anything "on-site"

really?

love you guys

thanks

im very interested in cyber security and AI i want to have a career in it

im very new

you can start in thm

go to #start-here

👍🏼 has everything you need to get started with using the thm platform

i want some general knowledge

I cant use paid services for now

pre-security & cyber101 have everything for general knowledge

Thm has a free learning path

oh and that as well

https://tryhackme.com/resources/blog/free_path

thanks

I have just finished creating a vulnerable VM based on the fast16 (predecessor to stuxnet) that in the new lately.

Yooo boiz

I just joined the server

Welcome

Welcome y’all

welcome

Thx dude !!!

Im tryna break into cybersecurity just finished a bootcamp and got my sec+ cert with az-900

sup peeps

got a questsh or sth?

@random tendon

Ello

@fluid portal

https://tenor.com/view/trump-potus-kat-gif-7675227

was wondering why cfx rate limited me

maybe because my server decided to restart like 45 times in 5 seconds

😎

nice

https://tenor.com/view/sassy-big-lez-show-wadiyatalkinabeet-what-are-you-talking-about-tell-me-gif-8526583

Any still having the module catalogue of SOC Level 1 (Legacy)? THM removed the path silently, sadly.

https://giphy.com/gifs/please-stop-ragebait-girpd-Rtu8Jzs4MzoC3cl8lM

if being smart is your power.. what are you without it?

@cloud quiver was this user a moderator in this server? techiedev13

he's trying to become a mod in one of my servers and he's claiming that he was a moderator in here

lol

me when i lie

https://giphy.com/gifs/iron-man-shad10-this-aint-tuff-OCfQJMN6nI343tnoq9

really not

dayum he really was a mod

i thought he was larping

https://giphy.com/gifs/meme-jjk-slander-STdYym8k8sc3jyyCOa

fair enough

some have skill issues with larping

What is the official statement? Tryhackme has posted on their socials

Is it SecLeaf CTF??

Link?

i just saw on instagram

The discord is always behind

Oh yeah

Maybe an irl ctf

In the ul

Uk

And no where else

Or a physical AI with noscop

That would be cool

What are you on about

Im slop?

🤔

If only he knew

But i dont think he does

I don’t think I do

Sup nerds

https://tenor.com/view/rigby-rigby-cat-rigby-the-cat-cat-cat-meme-gif-5854655156909761082

Sup

s

u

p

Good Evening everyone

Sup

Is there something that I can do with a 6month premium voucher that i won from the AI security challenge if i already have premium?

Cant u just redeem it

Does anyone know a good VPN for PC? I wait for 5 seconds until the page on VM scrolls lol

Mullwad

Give it to me

Mullvad

Terms & Conditions: This code applies a discount to a new TryHackMe Premium subscription. Valid for one-time use only. Cannot be combined with other offers. Non-transferable and cannot be exchanged for cash. Prizes are not exchangeable — no exceptions. Code must be redeemed by 27 April 2027.

i got that email today

Is it free?

i clearly cant

Nope

Sad

If u want a good vpn, it wont be free

If u want a shite one

Itll be free

It was a joke

I understand...

tbh i would give it to you if i could xd

I thought proton was good

Problem is that I fear to buy VPN because in Russian it can stop working for about 2 days and become useless