#quiet-conversation

As far as I know, that's pretty much right. CEntOS started as a direct byte-for-byte copy of the provided RHEL source code, compiled by the community, hence the name: "Community Enterprise OS". RH bought out the CEntOS project several years ago, and has been maintaining and providing it as more of a parallel unsupported FOSS product. Part of the chaos and confusion caused by RH changing centos into an upstream was that many orgs were using centos in dev/test so they could basically use RHEL without paying sub costs for non-production systems

I just re-read this and I read what you said incorrectly. Adjusted my above reply to not correct you on a thing you stated correctly 🙂

And visiting professors

Eh, yeah, good point. You may also find a visiting professor in a department
Wasn't really including them because they would be called professor anyway due to their own tenure, regardless of where they were actually working.

They don't have to be tenured elsewhere

Wait, what? You would call a visiting lecturer professor?

Visiting professor was this guy's title. Not one of my lecturers

He had the actual title of Professor

So, yeah, they have their own professorship elsewhere and thus already have the title

Not in this case

?

As people have the title of doctor

Being a visiting professor was enough to confer the title

So they were actually Dr. LastName but were addressed as professor due to the visiting professorship? How odd

Don't think I've ever heard of that one before 😆

Formerly doctor, now professor

Curious arrangement

Is that a UK thing? Doctor, at least here, is seen as more prestigious. Probably because anyone teaching the class is going to be called professor unless it's a TA

Professor is a higher title here. A PHD here will grant you a Dr. status, but professors are usually heads of departments and you usually have to be elected to be a professor

over here in the UK that is 🙂

In my 4 years of Uni I've only had to call Dr's by Dr formally (like in emails), in convo my lecturers have liked their first name to be used. Same with two professors I've studied under (formally in emails, etc, but first name in convo/classes)

That ^^^

guys when the monthly leadbord will reset to 0?

now

I turned mine into mush

My attempt at tortillas. A little wonky but still good lol

my tortillas always look like amoebas

still looks good

Ugh just now finally learned why putting comments after syntax gives an sql injection. I’ve always wondered why sql injection works for sooo long. Thank you ippsec 😭😭

I just feel so satisfied ya know? Figuring out how something works is just the best feeling in the world. I feel like I’m god and know all the knowledge in the universe.

yup, it's basically saying "hey let's just ignore the rest of this query, we don't need it anymore"

Yeah I really enjoy the thm rooms that explain why we are doing what we are doing. It’s so satisfying understanding why vs copy and pasting a bunch of stuff. It’s what I live for

-ban @radiant jacinth -ddays 1 Racist name and pfp

🔨 Banned High inhib Rice Ninja#4353 indefinitely

tfw
> someone sends an official national newspaper article in a discord server of a friend
> you recognize it's you
> you say 'damn, he do be looking hot'
> that other person doesn't know you're the person in the article

🤣

Poor Jeffrey

something has gone horribly wrong in there

hi

Database using first-name as unique key.

That sounds like a bad idea

Terrible idea.
Poor Jeffrey.

Lemur's screwed because they only have one name.

As in presenting HID to a connected PC, or using a USB input device on the android phone?

nvm, I just realized what i've asked for.

@quasi turtle why you getting seized?

ugh… my flipper is sadly buried in one of those crates somewhere

Damm i had some pistachios

That’s crazy, I was so close to ordering one before they sold out too

got mine, though i did have to wait 700 days

Shadow also got their flipper zero... Wait about a quarter of a year

A container! Is it a Docker reference?

same

anyone have voucher code ?

For what ?

for premium rooms, i want discount

admin.tryhackme.com/voucher?code=UL0Ok3d

You can get a discount if you are a student, other than that, don't beg for vouchers in here pls 😉

Put that url in your browser, free sub

how to get student discount

!docs student

ty

Gave +1 Rep to @olive frost

i provided the right answer but the system says it's wrong. what should i do

Spelling and punctuation perhaps?

Are you sure it's correct?

There are some rooms where I've found they want very specifically written. It can get annoying.

hello

hello

hi there

My DMs are open for conversations about anything with anyone 🙂

Hey, are we allowed to share some music here?

#876804968731009055

https://tenor.com/view/hello-chat-gif-24565372

Can any expert in hash cracking help me crack this hash? 7a828bae0910102319b8162edff80a73

what is this hash?

Oh it's part of a ctf

Just need to know if you guys are able to bruteforce it

No luck on my side

I am, but I'm not telling you 😄

Don't tell the flag, u confirm u have been able to bruteforce it

I wasn't planning on telling you the flag. 😄

Ikr

looks like something that should be easily bruteforced, though it may be salted

it isn't done in over half an hour with a 3050 so might be salted yes

You have been through the ctf.. so u knw the hints. Thought maybe the salt is Meow but does not work as well.
When you analyse the script the password is the location of the next page (final page of the challenge)
Thought maybe it should be in this way... Level8-####.
Tried a combinator attack on hashcat didn't work for me.

Meow might just be a hint to hashcat

https://challenge.orangecyberdefense.academy/level0-729be522d7251ab53fbf430204428240.html

Here is the challenge do try
... 👍

is this an active ctf?

https://challenge.orangecyberdefense.academy/level0-729be522d7251ab53fbf430204428240.html

that doesn't answer the question, but we do not assist with external active CTFs

It's not a competition ctf, it's a training ctf that has been up for years

Don't assist, try it for yourself as a challenge

The point here is to see if it's crackable that's all

ok

admin.tryhackme.com/voucher?code=VmpKNGIyUXdOWFJXYmxacFRXMVNjVmxzVm1GalJtUllUVmhPVGxKWGVFbFpWV2hoWVZaSmVGWnRORDA9 | FIND OUT THE VOUCHER CODE

@radiant jacinth don't offer help with active CTFs here

Which os do you use?.??

i am looking for a project in cyber security , do you have any ideas or old projects for reference

yes,i have

Alright.

Sorry

can I upload a zeroday exploit on github the day the CVE was published?

:D

I mean, it's probably not M$

Welp

https://github.com/Notselwyn/exploits/blob/main/__placeholder_1/proof-of-work.md

definitely going to be a funny headline on bleeping computer some day

Hello everyone,

I recently finished reading the book Ultra-learning which is basically a bunch of compiled stories of autodidacts and some of the techniques they used to learn their craft, and the author highly recommends "interviewing" experts on the skill you're trying to learn about their learning process.

Would anyone be willing to talk to me for a bit?

Just to be clear, I don't want any cyber-security related knowledge handed to me, I'm only interested in your journey towards getting to your current level. Stuff like research methods, learning strategies, order in which you learned the sub-skills, stuff like that.

Feel free to dm me if you're willing to give me some insights 🙂

Hey I’m looking to create my first room so I can experience it. but I have absolutely zero knowledge and if anyone would be interested in helping me along the way or even so much as point me to a few topics for me to read that would be appreciated. Just a simple boot2root Linux machine is all I wish to do for now. feel free to DM / ping me with any help. Thanks in advanced

Have your kill chain planned out first, then you can add the fluff

For VMs, check out the AWS docs for importing VMs here: https://docs.aws.amazon.com/vm-import/latest/userguide/vmie_prereqs.html

I can give you access to the creators lounge if you wish

I'd love access, if possible. Thanks in advance!

Gave +1 Rep to @twin ridge

I practice a lot and read a ton of blogposts. In addition that, I ask everything I don't understand with regards to the topic in a discord channel with experienced people

How do you practice?

Because so far I've only been reading theory

And doing the basic exercises on THM

HTB and personal projects. I'm currently analysing the firmware of an IoT device

^Doing a personal project is only possible if you're experienced with labs

But it's a great way to learn if you can, as I've learned tons of new things about IoT security

Thank you so much for the help! I wouldn’t mind access just to lurk and see some other stuff people might do if that’s not too much trouble 🙂

Gave +1 Rep to @twin ridge

-arole 404646839359373331 Creators-Lounge

➕ Gave the role Creators-Lounge to Huntress#0022

the corp is witty with CVD (they keep ignoring CVD requests but respond to usual customer support requests) so I might just request a CVE without their knowledge

but it's probably going to be 10.0

Hey where can i learn blockchain beginner level

What is this cute exploit?!!

linux unauth RCE /s

Hi is there any detailed writeup on the msfvenom encoder " Shikata_Ga_Nai ". Explaining in a higher way. I mean I just want to implement it into another language and don't want to study ruby.

People don’t really breakdown things like that

But as a programmer you should be able to interpret the code

Just use the Ruby docs and you don’t need to learn any Ruby, you’ll just be translating it

I’m getting to the point to where I can easily root boxes labeled easy. But then php code comes into play and i can’t do it. Pain.

😭😭 Wished you could tell something else 🥺😥

Like archangel. Doing great until php source code reading came into play and now I gotta look at write ups. Ugh

Nonetheless thanks I will be waiting for any other opinion 😅

Gave +1 Rep to @odd acorn

Dealing with syntaxes is true 😅pain

I’m even following along a write up and still have no idea what is happening in archangel. I swore I was finally getting good🥲🥲. Back to square one again lol

Problem changing country from public profile

Like Jabba said, you’ll have to read the source code to really understand what’s happening. I’ve thought about doing it in the past, but then I realized how sgn actually works, and it’s kind of complicated if you don’t have a good understanding of shellcoding

Hello, I need some help with parsing some logs. I there anyone who could help me to write an expresion on regexr or point me to the right direcion?

Is offensive DFIR a thing?

E.g. finding confidential information in metadata of a document

Wouldn't that just be Offensive security?

Since DFIR is Identifying attacks, investigating them and then remediating them?

I think you're just talking about opsec, and making sure that confidential information doesn't get leaked.

@fast swallow Please let them make their own silly mistakes

sounds good to me.

sooo, why aren't there source code based boot-to-root ctfs?

especially in the beginner difficulties

e.g. you get the website sourcecode and need to find a vuln. that would be a lot better imo than blindly poking at a webapp which is quite litterally biased luck

Ohhhh okay

im solving a maching based on nmap and netcat but idk from where hsould i start

Is it on tryhackme?

ya

#room-hints then please

Hey everyone I am looking for feedback on a project I am working on. It is basically saving the currently opened tabs using an extension for future use. Github: https://github.com/HatGuy68/SaveTabAsSession

is there some way to download the extension?

i mean, add it to the browser?

you can enable the developer option in chrome://extensions and add cloned folder to "load unpacked" option.

keep it quiet

https://open.spotify.com/track/4CpWJkSodVFE3HSylu7ajJ?si=XR7k-6nqQTu9B5C6XqizyQ&context=spotify%3Aplaylist%3A37i9dQZF1EQn4jwNIohw50

Ah, a fellow Deltron 3030 enjoyer!

Hi

👍🏻👍🏻👍🏻

Hahaha

Remember don’t ping!

Are you ping in?

I saw you

-undelete -a

Up to 10 last deleted messages (last hour or 12 hours for premium):

none...

Hello, I have problems with the vpn configuration file, I have downloaded a new one, but it does not work, can you help me please?

#site-support please

where lies the line between security through obscurity and regular passwords/secrets?

Kirchoff's principle?

ahh okay

(that dude's name "Kerckhoff" means graveyard in my language)

the sum of currents at any given point in a circuit is zero? or the sum of voltages in a closed circuit is zero?

Wrong Kerchoff

oh don't know the other

https://en.m.wikipedia.org/wiki/Kerckhoffs's_principle

bringing back trauma though

welcome back

hey

hi guys

hola 👋

wsg

Why do i get a converting error when uploading a vm to my room.in tryhackme

IT Security Trade show in Germany 25-27.10. Nürnberg :

Hi,

da ich ja weiß, dass hier einige Deutsche im Discord sind, wollte ich mal fragen,
ob wer noch zur it-sa geht?
Ich bin vom 25.10. bis 27. aus der IT Security Messe it-sa in Nürnberg. denke aber, dass ich bis zum 30 in NB bleibe, und mir das Nachleben noch ein wenig anschaue. War vor 10 Jahren oder so schon einige male in NB und fand die Stadt echt schön.
Wohnt noch wer in der nähe und hat lust mitzukommen?
Es gibt noch die Möglichkeit auf Kostenlosen Eintritt, statt 85€

Liebe Grüße

Hi,

since I know that there are some Germans in the Discord, I wanted to ask,
if anyone is still going to it-sa?
I am from 25.10. to 27. from the IT Security Trade show it-sa in Nuremberg. but think I stay until 30 in NB, and look at the afterlife a little more. Was 10 years ago or so already a few times in NB and found the city really nice.
Who still lives in the area and has to come along?
There is still the possibility of free entry, instead of 85€.

Love greetings

@humble bison this is an English only server

@quasi turtle

since it is in germany, i first wrote it in german, and on THM are also german, but yes have translated it again in english

I saw 🙂 but just for awareness. There are many nationalities here but such sre the rules

Ty!

yes, then I also thought that I'll quickly translate it, because I just still get coupons for free entrance

https://twitter.com/_JohnHammond/status/1582960976714158080?t=xY65BVuJ4Fg3f4KnZ7U7XQ&s=19

interesting.....

sniff

sniff

sniff

Anyone know of cyber security conventions in California

Bsides, looks like Wild West Hacking Fest may host one (they had one in May) and DefCon is a pretty easy drive if you are in SoCal

Thanks I’ll look at Wild West

Is there ways to network other than conferences

i watched him do it. wildcards are definitely weird

what word am I thinking of:

What projects are y'all working on?

I'm currently trying to find a bug in bluehost.com, relearning C and brushing up on my Linux

no real projects. just a lot of self learning stuff

Hey @quaint basin how did you find cyberfirst?

Huh?

uhh James said you did that

Eh?

@burnt night ^

Might have mixed it up

I did it around 4 years ago

Loved round one, round two sucked

How did the rounds work?

How did you find the general experience?

As a non-ctf player, I loved it

Rounds worked like this:

• Complete a series of tasks, (there's around 27)

Each task is 1 point, if you place x on the leaderboard then you go onto the second round

The second round was less hacky and I didn't understand it so I gave up

Is CyberFirst the same as CyberStart ?

Hello 👋 i have a small question for the people who are working with pentesting and got the job through certification and not through "targeted" university studies. What certifications in pentesting did you have to get your first dream job? 🙂

OSCP/OSEP got me my first (and current) pentesting job

Oh damn. The OSEP is one I want to get in the future. It looks tough tho

🤯

Spoooky

i need to access to room become private ?

how cam i do this

this room is allow for another ?

Rooms are private for a reason.
Why do you need access to a private room?

this room linked to hackerone i need access to a private room as i this room give me private programs to hunt in hackerone ??

No, it doesn't

hackerofthehill

this room

That's for an event that ended a long time ago.

That event is not running any more. You do not need to access it.

Is there an alternative to it?

What do you mean?

alternative to access a private programs by tryhackme

You don't get access to private bug bounty programs through tryhackme.

why chat dead bruhh

Is OSWE better than OSCP when you're doing software testing?

I'm honestly kind of on the fence between OSCP (due to it's rep), OSWE (due to web pentesting) and OSED (due to binexp)

In OSCP I will probably only learn AD, in OSWE I'll probably DOM-based XSS and in OSED I'll probably only learn Windows SEH

and I'm kind of in doubt what will be worth most

well OSCP is more well known, the others have some specificity... employers will most likely put OSCP on a job listing, you'd have to see how many jobs list OSWE

Lmao, one thing from each? That is unlikely

OSCP will do the most for hiring for the majority of junior positions.

I've looked at the syllabi... I do webexp and binexp and a hobby, and have done CTFs for 18 months

I think it could be true

Then don't bother taking them -- these courses designed to make professionals into experts clearly ain't worth it if you are already at that level 🤷‍♂️

OSCP is the one with hiring power

@frail rapids working internal pentest

is anyone experiencing everytime running dirsearch command saying that need to update pythong to 3.7 or higher but i updated to 3.8 still not working

whats the error you get?

@quasi turtle python3: can't open file 'dirsearch': [Errno 2] No such file or directory

I have updated python to V3.8 command sudo apt-get install python3.8
I have pip installed dirsearch
I also done sudo apt-get update
still not updated python version still out dated
~# python3 --version
Python 3.6.9

https://exitcode0.net/kali-linux-how-to-upgrade-python-2-7-to-python-3-7/

try this

you probably have to set your default python version to 3.8 first

its helpful to verify here too btw, then you can make a screenshot of your terminal and post it here 🙂 easier for others to help you debug

!docs verify

This can be a complex issue to debug, and very carefully read that link dolphin provided.

I have updated and installed new version to python 3.7 as below

sudo apt-get install python3.7

install successful

root@ip-10-10-71-220:~/dirsearch# pip3 install -r requirements.txt

root@ip-10-10-71-220:~/dirsearch# python3 dirsearch.py -u 10.10.103.41
Sorry, dirsearch requires Python 3.7 or higher

root@ip-10-10-71-220:~/dirsearch# python --version
Python 3.6.9

Running the above command to check the version , python version is not upgraded

root@ip-10-10-71-220:~/dirsearch# python3 dirsearch.py -u 10.10.103.41
Sorry, dirsearch requires Python 3.7 or higher

Also changed update-alternatives --install /usr/bin/python python /usr/bin/python3.7 2

Also changed update-alternatives --config python
and manually selected *3

0 /usr/bin/python3.6 7 auto mode
1 /usr/bin/python2.7 1 manual mode
2 /usr/bin/python3.6 7 manual mode

• 3 /usr/bin/python3.7 2 manual mode

root@ip-10-10-71-220:~/dirsearch# python --version
Python 3.7.15

still getting error, cannot run dirsearch.py

But I just want to have something on my cv.. currently I just list my CVEs but Idk how relevant that is for normal security work

Ahhh okay

Then you've missed the whole point and would almost definitely get called out and rejected at the interview stage.
If your attitude didn't get you ejected first, that is

What would? That I want to have certs in topics to prove I'm experienced at those topics?

Because I don't think I wouldn't be rejected if had no provable experience

Knitpicky but certs aren't experience.

They are an addition to your professional experience

I'm also not sure why we're hashing this out again. I thought we had gone over this and the companies that you were talking to told you they would be willing to offer you an internship. However, they said at the current moment you were too young. Am I misremembering?

A) as Moose said, there's a big difference between knowledge and experience. Technical knowledge is awesome, but being able to apply it in the real world is a completely different thing. There is no equivalence.
B) because you're wanting the letters after your name, not the knowledge.

Which leads on to the last point, that you have somehow got it into your head that they have nothing to teach you. The absolute height of arrogance -- there is always something to learn from others, even if you're already an expert in the topic (which, as a side note, I can absolutely guarantee you are not).
Think this came up a few months ago, did it not? Attitude is everything. No matter how technical you are, companies need people who can play well in a team and aren't abrasive.
As an fyi, "I don't think these advanced level certs have anything to teach me" from anyone who doesn't have some pretty serious accomplishments behind them is pretty dang abrasive lmao 🤣

They really said that?

Put it this way, I've gone into AWAE knowing "everything on the syllabus" (yes, including DOM-based XSS ), but I have still learnt an unbelievable amount from the course

Yeah
#quiet-conversation message

Ouch.

They'd probably pass it first time if they're that confidant.

Or have a very rude awakening... if there's one thing that Offsec exams are very good at, it's chewing up arrogance and shitting it unceremoniously on the floor

Oh, I've heard about that 😂

Ahhh alright

lmao. might be an interesting experience

Not the floor:( who’s going to clean it?

Maybe Kevin can seeing as he doesn’t do much around here.

I'm glad someone else said what I was thinking re. lazy bones Kevin

Who's Kevin? 😂

https://tenor.com/view/kevin-malone-the-office-say-lot-word-few-word-few-words-gif-15322018

Also, your attitude is absolutely a disqualifier if I was running your interview.

"a wise man knows that he knows nothing"

you should use gobuster or dirbuster for directory bruteforcing if thats what you are trying to do

Does anyone know how I can spoof DNS to the IoT device in the following context:

• IoT dev which I cannot influence
• IoT dev through router using wifi
• router only has DDNS and DHCP (which can be turned off)

I can't change /etc/hosts on the IoT device since I do not have a shell

a friend suggested that I could set up my own DHCP server and a DNS server, in which I would use DHCP to tell the IoT device to use the nameserver of my DNS server

but it's sounds very complicated, and there has to be a better way, right?

Not very complicated at all, and that'll be your only option to change it if you can't change the setting yourself.

ah alright

It worked!

I set up bind9 with dhcpd

Considering it's an exploit, I'm wondering if there really ain't easier way for dns spoofing so that I can just make a python script with the exploit

anyone know any good places to look to setting up a small home server? I know the whole "get a cheap pc, install proxmox and configure a nas" but im looking for more detailed info if anyone can help or know a discord server dedicated to this

Depends on what kind of server you are trying to set up. That's a really broad topic the way you have described your goal

What do modern web applications use for waf? Mod security was very common before 2018. Is mod security still a thing?

Hmmm ill come back with a more specific question then after i keep looking for a few days.

Anyone want to study cyber sec together? Moore towards blue team side. Just thought would be cool to have a study partner or set some goals together. Right now, I'm active on btlo, cyber defenders and trying back tryhackme

Yea bro I’m down if your down

Awesome dude, I just DM you

Damn I see someone having attitude with mother Junn smh

sure, what do you want your server to do?

For now just a NAS but I would like some playroom for other things. Im not sure if this matters but i would also like to set up a pfsense firewall. Been having some trouble researching how this all works together

Okay, and how does your living situation look, is it something that can draw a good amount of power or what do you think, something lightweight that you can build on throughout the years when you want to get a bigger lab?

Yes it can draw a bit of power right now. Even my current high end pc runs almost 24 7 haha i should work on that a bit

Okay, I can come back to you later with what I think, I am just in the middle of moving office

Thank you so much 🙂

anyone know if theres a chance of the workspaces feature eventually being made to work without needing to be part of a business/school email? id be interested in doing stuff with it with some friends

Most likely not because the whole purpose of it is for work/ school lmao

I joined one and there was noone from my uni so just me which is surprising lol but yeah it feels lonely doing them alone 🥲

Hello

hey how are you?

Hi, I have used free proxy IP on proxychains kali, but I can't get through, does that mean it's dead proxy or is it not configuredd correctly

restarted tor

still not working webpage

it could be that it's dead or unreliable, yeah

happened to me quite a bit

@radiant jacinth is there any way we can test them before I add them into proxychain

not that i know of AFAIK

like run ping test

I have read a post somewwhere, saying that free proxy is not good idea to use them

what site do you use for proxy

I use proxyscraper

What's your end goal? What are you doing that needs proxies?

it's just practice task need to complete

It's misguided

Is this the library? SHH

Exactly, slow and more sophisticated convo

why is this quiet?

This is for a more relaxed chat, sometimes the General chat does quite fast, and could be overwhelming for some people.

mhm

hey my pc is with i7 7800X and surprisingly its a 4 user desktop like its with 4 monitors but every monitor acts like a different desktop, i gave each core 2 4 monitors while remaining 2 cores for the background process. it was working well until i upgraded my RTX 370S graphics diver. Now only 2 desktops show display while other 2 cannot be used

all it says is user limit reached

i tried different ways but it aint fixin

any solutionsme and my team were makin a game

and only 2 desktops are workin due to which our project is gettin delayed for a month

try troubleshooting or if not can you elaborate more on this problem bro?

If this is for actual work, talk to your IT department. If this is schoolwork, talk to your professor.

meh actual work

i am in college not school bro i am 18

Not your bro

anyone here for koth friendly match

What happened to gogo6.com?

It died. Maybe hurricane electric's tunnel would help?

hey ninja

iam a little bit stuck

I can't help you migrate your notes

ok

I will look into it thank you

Gave +1 Rep to @burnt night

There is also 6TO4

Can i get 250 cinstant fps in cod r with Nvidia GeForce Gt 620 64bit 1gb?

Or with AMD Firepro v3900 1gb 128 bit?

There are websites that track this, but no.

Those cards are over a decade old

Any good card in low price? Cuz i cant affor

I just need 250 cons fps for cod4

I don't know why you need 250fps

At 1280x1024

Cuz its max

Not sure if there is a max, but will it even matter with the monitor you're using

No, actually my monitor supports 1280x1024

That's resolution, not refresh rate

Recommended is 60

having 250fps doesn't do anything for you if the monitor is a 30hz max rate.

Your best bet is to get your hardware specs and then do some research on your favorite search engine to find the card that works best for you.

Well any good gpu 64 bit in low price?

1gb or 2gb

It's region dependant

You're going to need to search yourself

Well ty

bro when did the sec+ test increase in price

shouldve taken that shit a year or two ago when it was only 240 smh

if it's coincidence or not that is very impressive

VRAM doesn't influence performance like you think it does.
GPUs don't have 32/64bit, they have memory bus width but that's very different.

hello

hello

hi

Hi

hello there

hi

general kenobi

two sauce...

2 sauce

Anyone know amy good alternatives to cuckoo?? It seems to only run on python 2 but installing it is seemingly impossible as py2 has reached end of life

Looking to do some malware analysis and im a newbie. Ill look at the thm site when im at my computer again to see if theres any examples

this is old haha shes 5 sauces now!!!

I don't get it

hi

btw

I'll let tryhackme.nl, tryhackme.be, tryhackme.store and tryhackme.online expire over 2 days

should I contact customer support or so so thm can take it over?

@frail rapids tryhackyou.com is fine dw

probably not bad idea

tryhackme was fine as well

just had to point it to thm :p so I sadly couldn't setup a phishing site (/s)

Why would you even joke about that?

I mean you can email but I’m sure that if THM were interested they would have bought them. Regardless I’ll still ask

ahh okay

I just want to prevent that someone sets up a phishing site lol

Hey @frail rapids mind if I DM?

sure

Awesome thanks

I mean there are so many TLDs these days

Hey would anyone mind helping me please. I'm trying to type in an attackbox but nothing is entering. I'm on the Operating System Security module and I'm on the task where I have to input the user's password. I can type everything else up until this point. Any suggestions?

are you sure you cannot type? If it is a linux: it does not show any characters while typing.

What Der said. you won't see passwords on Linux.

Its on the website tryhackme, I am trying to complete one of the tasks but I can only type on the attackme box up to a certain point.

I can click enter but when I do that it says the password is incorrect, but then I try to type a password in and the words are entering on the screen

Are you inputting a password?

Thats what I am trying to do. I noticed that I'm running into the same problem outside of the website. I am using virtual box on Kali linux and I can't type the password either

Yes you will that's the same with every linux OS. you will be able to type in a visually see you are typing in the Username. When you press enter and go to type in the password. the OS will still register the password you are typing in but you won't visually be able to see what you have typed.

For example:

Username: root ---> You will see this on your screen
Password: root ---> You won't see this on your screen but the system would know what you have typed

Tap enter as normal and you will log in.

Okay thank you guys so much. I was really confused. Thought something was wrong.

No worries

Hi guys, I hope this is the right place for that (correct me if I'm wrong :O)

I wanted to share with you a new tool that I’ve been working on regarding the automation of finding privilege escalation vectors!
The tool is called: minum for Minimal Enumeration Tool.
https://github.com/nirzaaa/minum

This enumeration for privilege escalation tool, unlike many others, is built towards the idea of finding the top most relevant privilege escalation vectors for its user.
The idea is to prevent throwing a lot of things at the user and let him begin searching for a needle in a haystack.

Instead, it will ask you for your preferable routes throughout its running and will present to the user only the interesting stuff.
Letting you spend more time on exploiting and less time on reading tons of text all over the place.
At the end it will also load for you linpeas.sh automatically in case you want an in-depth lookout.

Your opinion is important to us! so feel free to:

• Star up the repo if you found it useful 🤩
  And of course share with your colleagues 👨‍🎓 👩‍🎓

• Or leave an idea for modification down below or at the Issues section on the repo 🤔

We will be glad to make modifications so there will be a great privilege escalation automation lightweight tool out there!

Cheers!

I am trying to install bluto for python3 from the darryllane repo but its showing
metadata generation error
Does anyone have a solution for this?

x

sudo pip install git+https://github.com/darryllane/Bluto
Collecting git+https://github.com/darryllane/Bluto
  Cloning https://github.com/darryllane/Bluto to /tmp/pip-req-build-truzw607
  Running command git clone --filter=blob:none --quiet https://github.com/darryllane/Bluto /tmp/pip-req-build-truzw607
  Resolved https://github.com/darryllane/Bluto to commit 25cad7ad532ab0b0f88e8eff89a87e61ed8999cb
  Preparing metadata (setup.py) ... done
Requirement already satisfied: BeautifulSoup4 in /usr/lib/python3/dist-packages (from Bluto==2.4.17) (4.11.1)
Requirement already satisfied: dnspython in /usr/lib/python3/dist-packages (from Bluto==2.4.17) (2.2.1)
Requirement already satisfied: docopt in /usr/lib/python3/dist-packages (from Bluto==2.4.17) (0.6.2)
Requirement already satisfied: lxml in /usr/lib/python3/dist-packages (from Bluto==2.4.17) (4.9.1)
Collecting oletools
  Downloading oletools-0.60.1-py2.py3-none-any.whl (977 kB)
     ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 977.2/977.2 kB 9.4 MB/s eta 0:00:00
Collecting pdfminer==20140328
  Downloading pdfminer-20140328.tar.gz (4.1 MB)
     ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 4.1/4.1 MB 18.2 MB/s 

Preparing metadata (setup.py) ... error
  error: subprocess-exited-with-error
  
  × python setup.py egg_info did not run successfully.
  │ exit code: 1
  ╰─> [9 lines of output]
      Traceback (most recent call last):
        File "<string>", line 2, in <module>
        File "<pip-setuptools-caller>", line 34, in <module>
        File "/tmp/pip-install-00w7ybxd/pdfminer_e18936876e014a1cb31c541884cd8176/setup.py", line 3, in <module>
          from pdfminer import __version__
        File "/tmp/pip-install-00w7ybxd/pdfminer_e18936876e014a1cb31c541884cd8176/pdfminer/__init__.py", line 5
          print __version__
          ^^^^^^^^^^^^^^^^^
      SyntaxError: Missing parentheses in call to 'print'. Did you mean print(...)?
      [end of output]
  
  note: This error originates from a subprocess, and is likely not a problem with pip.
error: metadata-generation-failed

× Encountered error while generating package metadata.
╰─> See above for output.

note: This is an issue with the package mentioned above, not pip.
hint: See above for details.

pdfminer was written in python2 as seen by them using print without parenthese. You could try to install it with pip from python2.

you're missing a semi-colon

/s btw, in case I get bum rushed by an admin telling me I can't joke around about this kinda stuff

you can't joke about this type of stuff

gotem

You're running Python3, module you're executing is expecting python2

pip2 install module or python2 -m pip install module

Personally I like pythonver -m install better

But that's coz I don't use venvs and just link symlink arbitrary python versions to path

e.g. python3.5, python3.8, python3.10, etc

and regular pip install only works for the python in path iirc

Hi guys i am wondering what’s the best cybersecurity certificate for employment

Depends on what you want to do

I started off with Comptia A+ then got a first line support role then did Network+ security+ and pentest+ over a few months.

Then I specialised into penetration testing certs.

That's the path I did and it opened many doors as far as role options. But I always wanted to be a penetration tester. Just pays to know everything rather than just certs you need to do a role.

use remnux for malware analysis

I wouldn't do Malware analysis as a "newbie"

is hashlib the only module in python3 for hashing ?

How else would i start without starting

In a controlled classroom environment as an example. You can do a large amount of damage relatively quickly without taking the proper precautions and preparations. It's also why it's a topic reserved for the advanced channels.

Hm im not in a class so not sure how i would do that

there are courses and resources out there that walk you through the safe ways of doing so

I would start off with HuskyHacks’ PMAT course which walks you through how to do it safely and responsibly

Personally if your new to cyber security as a whole malware analysis is much further down the line you need to learn the basic first and lay a foundation for you to specialise off first. Malware analysis would be way to much to soak up for a new person.

Hey can I have some help on this hydra kali ?

i kept on getting false positive passwords

always make sure to double check how hydra interacts with the service.

I started at a new (hopefully long time) position today

it's basically a combi of security engineering and anti cheat but for non-videogames

I feel like I'm going to learn a lot about low level software integrity

Congrats

I would probably start with a different word list, one that doesn't have uncommented code in it. But in my experience when getting false positives with Hydra, it's because of my syntax. I would try looking at some other examples such as this https://github.com/vanhauser-thc/thc-hydra/issues/612

Thanks man it worked

Gave +1 Rep to @jovial yoke

hello

so you slacking at uni 🙂

anyone have their sec+ cert?

If you have a question, I would just ask as people here have a wide breadth of knowledge.

I have quite a bit of spare time :p

Hello, i hope i am asking in the right channel. I am in the final year in university in CS and i have to do a final project, i want to do one related to cybersecurity in order to learn more about it, but i am not that experienced, just less than 1 year of experience. I was thinking of making a WAF or a website vulnerability scanner, but maybe someone has a better idea, can you help me pick a project? Thank you!

No, we don't provide help with school work, you're the one that's supposed to be selecting then project.

After all someone could suggest a project for you to do that you have no clue about.

Do what you feel comfortable doing.

both of those projects are a lot of work. We cannot help you much further but as Scrubz said, do what you are comfortable doing.

Sure, got it. As i said i am not that experienced and just wanted some advices regarding which direction i should go so i can choose a project i will be able to do and also good for learning, but i will try to choose something by myself. Thanks!

keep the scope precise, don't branch off too far

get an MVP out before adding features

track your issues/stories like a real software project. that'll help you decide what to inevitably cut later 🙂

@faint island hey! May I DM you?

Sure thing 👍

+rep

Gave +1 Rep to @faint island

are the like some codes here that we can download or we just go the links that are already provided and learn there?

i'd like to ask something..is there any problem with the site?

Yes, staff has aknowledged and are aware of the issues and will fix it asap, sadly they do not have a timeframe of when the site is back up

oh understood ! thanks anyways :3

Is there any one interested to play ctf with me?

What CTF?

I mean Capture the flag

Nono I mean which one 😆

I need some company so we can play together

Hahaha, nothing bruh just needed some to play with, u know it’s better that way

Someone *

PicoCTF is good

@sudden viper i can find a team members on it?

They have teams and stuff yeah

I would just go join whatever CTF you want to do, and if they have a discord for the event, there's likely a team-recruiting channel where you can find people to play with

Thoughts about scratch or x code

They're quite different, what sort of thoughts are you looking for?

Just join a CTF

Virt-Manager's key grabber stopped working and I'm not sure what's happening, heh..

It started after updating Fedora

Is this a RHEL conspiracy 😅

key grabber?

what's it called..

"disable hotkeys"

Spice agent

systemctl enable --now vdagent-spice && systemctl enable --now qemu-guest-agent

to enable smarter guest tools; IIRC hitting both control keys at the same time unlocks mouse and keyboard from vm

yeah the problem was just the opposite. couldn't use hot keys on guest

only mildly frustrating

well I guess I don't have VD agent that might be the problem...

I wonder what happened with that.

Be sure to look it up; i sometimes get names turned around. Might be spice-vdagent

if this is running a kali guest, there is a known bug with XFCE where the screen will not auto-resize with the guests installed

yeah, it's spice-vdagent. That's very strange it's not on here

Any CTFs happening?

Hii

can anyone suggest some interesting tools for steganography apart from steghide, binwalk and sonic-visualizer

Those are the main ones

Hey @quaint basin I was wondering if your avaliable to quickly help me out here on trying to use SSH tunneling 😅

Tryng to achieve something like this, James reccomened to port forward the remote listener to my local tablet (remarkable), then connect to that loopback listenerwhich im trying to do now but having struggles

This is the command being run on the tablet

reMarkable: ~/ restream -h 1872 -w 1404 -b 2 -f /dev/shm/swtfb.01 --listen 1234
[rM] listening for a TCP connection on 0.0.0.0:1234

Port forwading

ssh root@<SERIP> -R 1234:root@<SERIP>:1234 -N

Then on the server im running

nc 0.0.0.0 1234

But it immidatley quits, not sure why

what I currently have

What traffic are you trying to send?

Like, I can see that it's netcat, but all I can find only for restream is video editing

rawvideo bytes is the output from the binary

At a guess based on that I would say that restream expects some layer 7 protocol or another when connecting, or possibly a constant stream of information?

On my local network this is what I would use

nc 10.11.99.1 16789 | lz4 -d | cat | ffplay -vcodec rawvideo -loglevel info -f rawvideo -pixel_format rgb565le -video_size "1404,1872" -window_title rm -i -

For connecting to the listner *

Where 10.11.99.1 is the tablets IP

And on the tablet the same command?

Yup exact same command

restream -h 1872 -w 1404 -b 2 -f /dev/shm/swtfb.01 --listen 1234

The problem im facing is trying to use a remote server instead of my PC

So expected behaviour is that restream will immediately start sending raw data down the line, aye?

If your wondering, I've tried using a VPN but the device is on an archietecture/ kernel that doesn't support any (doesn't have tun moduel)

aye, thats the second way to do it - via ssh root@10.11.99.1 restream -h 1872 -w 1404 -b 2 -f /dev/shm/swtfb.01 | lz4 | etc..

If you don't specifcy an listern itll just immidatley send all the rawbytes to the stdout

Which is why you can then use this ^

Perfect, yeah

Okay, only thing I can see that's unusual about your ssh command is the root@ in the middle

-R 1234:127.0.0 1:1234 should forward the remote 1234 to your local 1234

Try dropping the -N so that it actually creates a session. Check that the port is open then just do a nc call and response rather than using restream?

If that works, great

Okay, so that would be using nc 0.0.0.0 1234 on the server correct?

if I use
nc 0.0.0.0 1234 on the server
and
ssh <serverIP> -R 1234:127.0.0.1:1234 on the device
The nc is still running instead of stopping, I presume that means its connected right?

Successfully making a connection to 0.0.0.0 would be unusual, not sure if netcat handles it abnormally?

Try starting a netcat listener on localhost 1234 on the tablet then connecting to it on the server with nc 127.0.0.1 1234

If that works then what you type into one should come out of the other when you press enter

Doesn't have the listener method

Restricted

reMarkable: ~/ nc
BusyBox v1.31.1 (2022-08-26 11:00:46 UTC) multi-call binary.

Usage: nc [IPADDR PORT]
reMarkable: ~/ nc -l 1234
nc: bad address '-l'
reMarkable: ~/ 

Should I use the restream listener instead?

If I run restream -h 1872 -w 1404 -b 2 -f /dev/shm/swtfb.01 --listen 1234 on the tablet and I then run nc 127.0.0.01 1234 too on the tablet, as you would assume the nc does produce the output

Is there some setting I have to enable with ssh? 🤔

Worth a try

hmm so I did the opposite way round, and this is what happens

Shouldn't be, no. Worth trying it with -vv when you open the SSH connection though

Get's a connection

okay nice, it works the other way round

if I type xyz into the RM netcat, it does seem to port forwad it to the remote netcat lisener

wait hold on - hacky idea

YES

holy shit let's goooo

(Also probably best not to run this as root if you can avoid it)

Server side

nc -l 1234

ReMarkable side
One terminal has

ssh <ip> -L 1234:127.0.0.1:1234 -N

Second terminal has

restream -h 1872 -w 1404 -b 2 -f /dev/shm/swtfb.01 | nc 0.0.0.0 1234

Sucessfully got the data

cool

Yeah, just quickly spun up the server so haven't had any time to make any users

Why are you destroying the remarkable Jayy 😄

😅 It's so cool experimenting around with embedded devices like it

I'm suprised I haven't bricked it yet, I should really get and solder the pogo parts in case that ever happens

Tysm @burnt night @quaint basin

Nice one!

Np 🙂

????

hacking embeded devices of some kind and got data stream????

me when I almost leak my IP

Extracting the framebuffer, encoding it into rawvideo, compressing it, sending it over an SSH tunnel w/ port forwarding, decompressing it, decoding it, encoding it into an MPEG-TS Stream, sending that stream to the websocket, which finally gets taken into the web app as shown above

as you can uh imagine, the latency isn't too great ha

Now I need to make a script to automate all this, having 5 terminals opened all at the same time isn't very helpful! 🤣

cool anyways 😄

this is what tmux is for

tmux is great

I used to use terminator until I was bullied was converted to being a tmux user

To ease the pain of managing nested tmux, i usually use byobu on my primary linux box, and tmux on all my remotes

ooooooo

never thought about that being an issue since I haven't had to do that since adopting tmux but makes sense

there are ways to handle nested tmux but yeah kinda complicated

we should call a wireless mouse an hamster

Someone call the ISO

Shhh

should we not go through RFC first???

😂

theo

hey guys, so where can i apply the 20% student discount for premium? cant find it

changing to my university email did the trick

does the student discount apply for uni only or high school students too @vernal lantern

no clue

prob university only because high schools dont give out email adresses

hello

hi

hi

Hey, I appreciate that you are saying "Hi", but there is no need to say it in every single channel 😉

It should, I guess. I used my highschool email and got the discount.

ah cool ty

#general

Hello, i would like to make a private network with docker accessible with OpenVPN, i can launch the VPN server but the other container are not accessible.
i can't see where i do a mistake. here is bit a of details 🙂 :

• VM Virtual box bridged adapter (same network as the host) with docker (192.168.1.0/24)
  • openvpn docker network (10.0.0.0/8)
  • openvpn "redirected" network (11.0.1.0/24)
    port are correctly opened, the only thing a manage to do is to add a ssh server to the openvpn one (multi stage build), and access the ssh server thought the vpn ... but other container (with other ip) will not work. let's say i'm connected via vpn to 11.0.1.10 and the nginx is manually added to the same network at 11.0.1.11 it will not be reachable, why ? 😢

really, even in the docker network is the same as "redirected" VPN network, the machine can't communicate .. i really get discouraged on this :/

did you expose the ports properly?

Port exposed properly, with both ports on compose, and expose on Dockerfile

Callense its quiet shhhh

What is the highest paying cyber security job?

Are you asking so you know what to aim for?

no just curios

im aiming for pen tester/Red teamer

oops

curious*

CISO is pretty up-there, as a C-Suite role

what does he do?

he or she is in charge of the cyber security as a whole for the company. This includes managing all the directors under them, setting the cyber security strategy of the company as a whole, meeting with vendors, could include meeting with local / state / federal politicians, and is also the fall guy if there is a major security breach

and negligence could include jail time depending...

thank you

Gave +1 Rep to @scarlet moth

Anyone ever use one of these gigantic 49 inch monitors? What’s that like ?

I'm using 43" 4k tv/monitor and I like it

I didn’t even know such a thing existed until yesterday. Was just curious. 🙂

hii

too big for desktop use IMO

Hello, can the student discount be used with the aoc2022 code for the annual subscription?

As far as I know, they don't stack

Thanks

hi

@twin ridge nevermindmay I dm?

Perfect 4k size

ok

yeah, but at 10 ft away

Especially you're sitting near it 🙂

what if I use unshielded RJ45 (ethernet) connectors on a shielded ethernet cable?

https://electronics.stackexchange.com/questions/305539/using-unshielded-rj45-with-shielded-cat6-in-a-server-cabinet

thanks

Gave +1 Rep to @burnt night

hello

hi

Hello, I've literally no idea what this place is and I'm pretty sure this is the wrong place to ask, but I'm hoping someone could at least point me in a good direction.

I have the .iso file of an abandonware game from like 2001. I want to extract its files, which are stored in what looks like an installwizard .cab file. When I tried to open it in Unshield, an open-source extractor for this format, it said it failed to open the file. This file format should have the magic number of ISC(, but notepad shows this file starts with ISc( instead. Manually editing the magic number didn't fix anything, so it can't be the problem.
That's all I know. Does anyone here have any experience with this kind of stuff, if it is even possible, and if it is, how to?

I'd like to emphasize the thing's abandonware

Abandonware is still of questionable legality.

Ben is just 🥵 yall agree with me?

Is it possible to virtualize frame buffer output (to a gnome app)?

I want to run fbDOOM but it outputs graphics to /dev/fb0 and uses /dev/console for keyboard

but /dev/console only works for me when I'm in the gnome desktop environment

and /dev/fb0 gets mirrored to /dev/tty3-6

hence, I want to display /dev/fb0 in the gnome environment

Bella got me like😍

What is a better GLIBC malloc.c security update? (senior capstone google fourms survey )
https://forms.gle/vnRqqMe2WUeqsBhY9

Sorry, but we cannot assist with schoolwork.

Can we give them wrong answers?

Lets not troll

https://tenor.com/view/cry-dog-gif-25727185

it's just a survey, they're not asking for homework answers

@warm peak Hey! Any chance I can DM for some help with python?

you could throw it in #programming if you're okay with having it public

Sure, it's just smth we talked about some time ago so I thought I'll ask you again haha

I am in the middle of onboarding 5 people, so I think that it's easier to get help there 😄

Oh alright, Thanks!

Gave +1 Rep to @warm peak

!notifyme

Ok @gentle sonnet, you will now be notified of future announcements.

Hey

!notifyme

Ok @calm hearth, you will now be notified of future announcements.

!notifyme

Ok @crisp wave, you will now be notified of future announcements.

!notifyme

Ok @timber lantern, you will now be notified of future announcements.

!notifyme

Ok @oblique trout, you will now be notified of future announcements.

!notifyme

Ok @sonic sail, you will now be notified of future announcements.

No its just a survey no right or wrong answer

Just carious what people think thats all

heres the respones so far

Here's the context of how this all started

People can find my name on my website I have in my bio so I'm not worried about dox'ing myself

So basically scrap it and do it properly

You may want to fix the typos on the front page

I'd rather not though :/. Just style differences nothing is spelled wrong.

question about CISSP: I read it needs 5 years of paid working experience, however a uni degree counts as one year.

and these certs also count for a year, but Im wondering, does it stack?

will each cert you get count for another year of work experience?

No

Education can only count for 1 year

ah ok, I see thx

!notifyme

Ok @tropic tapir, you will now be notified of future announcements.

!notifyme

Ok @verbal coral, you will now be notified of future announcements.

Hello everyone! you don't know me and I don't know you, I am in the 495th position of the global ranking and until a few days ago I had almost 450 days in a row. Today I want to share a message with you: No matter how busy you are, no matter how stressed you are or how angry with life you are, today I want to lose my streak and send you the message to please invest time in yourself, your friends, your pets and most of all in your family because they will always be there for you. My grandmother always took care of me and today I want to take care of her more than anything else in the world. The message I want to give is to always be with your close people. Thanks a lot to @deft fossil because I have learned a lot of things in these almost 2 years from the community and the whole team. Greetings from Mexico

https://tryhackme.com/p/Alpha11257

Well done. Good words 👏

You said a lot in just a small paragraph. Almost one life’s experience. Thanks for the enlightenment.

Gave +1 Rep to @quasi river

Ansible:

 jinja2.exceptions.UndefinedError: 'ansible.vars.hostvars.HostVarsVars object' has no attribute 'token'

My code https://github.com/bee-san/ansible_scripts

Any ideas? It worked the first time, the token i believe is meant to be the kubernetes master token for this:

ExecStart=/usr/local/bin/k3s agent --server https://{{ master_ip }}:6443 --token {{ hostvars[groups['master'][0]]['token'] }} {{ extra_agent_args | default("") }}

or any ideas on how i can begin to debug this? i have exhausted google :/

Would need to see the structure you are keeping your hostvars in

okok i am printing em

:/ It is a very very long file (about 4000 lines) and there is no token in it

My guess, then, is that the jinja engine is looking for a dictionary entry that doesn't exist

hmmm yeah, I think I am just going to hard-code the value

Setting the K3S_URL parameter causes K3s to run in worker mode. The K3s agent will register with the K3s server listening at the supplied URL. The value to use for K3S_TOKEN is stored at /var/lib/rancher/k3s/server/node-token on your server node.

I only have 1 K3s server at the moment, so I presume it's not that bad 🤞

fatal: [192.168.0.242]: FAILED! => {"changed": false, "msg": "Unable to start service k3s-node: Job for k3s-node.service failed because a fatal signal was delivered causing the control process to dump core.\nSee \"systemctl status k3s-node.service\" and \"journalctl -xe\" for details.\n"}

One step closer, annoyingly this node doesn't appear to like k3s much -- I have even re-flashed the SD card 🤔

Dec 03 21:20:18 raspberrypi-2 systemd[1]: Failed to start Lightweight Kubernetes.
░░ Subject: A start job for unit k3s-node.service has failed
░░ Defined-By: systemd
░░ Support: https://www.debian.org/support
░░
░░ A start job for unit k3s-node.service has finished with a failure.
░░
░░ The job identifier is 2531 and the job result is failed.

From JournalCTL

https://github.com/k3s-io/k3s/issues/556

It might genuinely be because it's an older Raspberry pi model, it is the same as my other node theoretically but there may be minor differences 🤷‍♂️

Aha! It is not the same model, one of them is an RPI 2 B and the other is an RPI 2 B+

I'll play around with that github ticket but if it doesn't work I might switch to a Pi Zero W 😬 I reckon it could handle being a worker node and some small pods 😄 (alternatively I actually get my desktop up and running and turn that into a node....)

#bot-commands please -- not here

do this in #bot-commands, not here

?

this is like the 3rd time and its getting kinda weird ngl

Oh my bad I'll delete it

I just mean like you a great mod and all

yeah but like this tho #quiet-conversation message

Oh that's just jokes my bad

fair

🤡

Been a while since I’ve done any boxes on THM? Is there an easy box that’s good to demo to a group of people that has a path that isn’t just file upload -> PHP web shell -> GTFOBins? (Also free to access)

Overpass

far

Jalapeñi wisdom

test

Hi, anyone to help me with 2 PCAP files, please?
I have to specify the attack type, what happened (cve, exploit). I would like to get some tutoring and help to get through it.

Is this for a THM room?

Or is this for homework

sorry, it's not, I shall specify it
it is problem? I don't know where else to put this kind of question (I don't know any websites)

it is hw

Sorry, but we cannot assist you with homework. You'll have to ask your teacher/TA/professor.

I've found it, it isn't from school, therefore I can't get some help

I understand, thanks

Gave +1 Rep to @tawdry dove

Start from some basic packet analysis and wireshark course then before you jump up into investigations like that.

Wireshark 101 book by Laura Chappell is a great intro, and you can get it used for really cheap.

Also check intro threat hunting courses, like one from Active Countermeasures, but they assume you are quite versed in linux and networking.

Yeah, maybe I'll go that way, just wanted to try to find other way to learn something and see if it's worth it, maybe faster, on (maybe) more complex analysis

You cannot take shortcuts in this field.

I think that I've saved David Bombal's wireshak course for free on udemy months ago

You also need extensive knowledge about attacks and what they do in the network to be able to recognize them in packet capture.

Yeah, it should be fine to start with.

SBT also opened their intro courses - they are free now, and some basic intro to packet analysis is there.

Start from simple things. Then you can grab more and more complex public pcaps for practicing analysis.

Thanks for replies
If I can ask you: the first pcap file is about MITM NBNS and SMB is used.
I theoretically know what it does, but I don't see those processes in individual logs.
so, you still recommend me to go with that starting course you mentioned, yes?

to be able to solve this kind of task

knowing what something does and being able to catch it during investigation are two different things. Yes, you need to learn to see it in pcaps.

There are no shortcuts, sorry :D

yes, understand, but I've maybe incorrectly express myself - I do not want to take shortcut
I've just wanted to do it with someone who is able to explain me things "in practice/practically " and I'd be able to learn and get that thing done

and maybe give me some good suggestions what to do or don't while analysing

You need a tutor then maybe, who will teach you 1:1. But still, first you need to learn to read normal pcaps, then you need to know what certain attacks do in network to be able to recognize them it in pcaps, then you need to learn to differ malicious traffic from non-malicious. It is not something you learn during one meeting with a person. What is your current state of knowledge in this matter? Can you recognize traffic generated by certain protocols? Do you know basics of packet analysis? Are you proficient in using wireshark?

If you are looking for general advice: you need to be very detail oriented, pay attention to unusual traffic behaviors, and do not guess - confirm everything.

again, thank u for ur time, gn

Hi, is anything wrong with the room? My whole progress disappeared and shows me 0% - did solve yesterday and was at 100% in the evening

it's a bug, they are working on it 🙂

thanks, was scared for a moment 😄

Gave +1 Rep to @green wing

All good, i was the same hahaha

and wrong channel, but again, thanks 🙂

Hello i Complete 4 labs in advent of cyber today i start 5 th lab solving then i see my all 4labs are not solves how ?

it's a bug

it's being worked on

means again solves all labs

maybe, maybe not

Hi

Same. Started to work on all those again. Dang it

All the progress i made is gone now

what to do

The page is showing this"Uh-oh, this page has been lost in the matrix."

#announcements or #1043247478478225428

if you do the exercises again, you'll get more points

Omg its Mother Zojja

So basically it's a we don't know how to fix it but sorry for the inconvenience?😭

I love it💙 it's more fun that way gonna go redo them lmao

What did u do to go into osint?

How have you become professional in osint?

Well I do OSINT for a living full time. Can't say much about the job itself but by background would be I took a course by TCM and did some tryhackme Ctfs and learned from different resources as well such as TraceLabs eventually I applied to a company near me who was looking for someone to do OSINT and now I do it professionally.

Been doing OSINT since I was about 19-20 back then I didn't know that those jobs were even a thing

What do u do evryday for osint? Whats your daily job?

I can't say much about that

Yeah the jobs that need an osint orofession I see why they would be very open

Ur a glowie admit it

Glowie lol?

Exactly what a glowie would say

Oh nah lmfao I wish

Alright if you say soo..

Ugh okay?

You have a god day too

Rylussian / china / north korea journalist finder?

No.

Even if i guess ul deny it so no point have a good day lol

Slang term from 4chan for a Spook or other Feds

Ah lmfao never heard it tbh💀but aww you giving me too much credit

A government pension and having connections like that would be nice but with my juvenile record yeah not happening🤣

@radiant jacinth you a fed huh👀

https://tenor.com/view/fbi-gif-18962956

I see that pfp 👀 #fed

Please don't advertise here.

Lmao rip

Tag me in the anime thread

😭I don't remember where it's at

But thanks I could go on for days about Tokyo ghoul

I have deleted your post as it references an external event. 🙂

Guys, day 8 isn’t posted yet right?

Doesn't appear to be.

Same, watching #1043247478478225428 for updates.

Are you doing AoC?

It's not!

I'm a total beginner.

Each day has a lesson that walks you through what you need to know (more or less, there's been a couple of things that tripped me up, but there are hints.) There's also a video walkthrough for each day and the people explain everything even more than in the lesson. I would say the only prerequisite, kind of, is some basic computer knowledge.

Have fun!! And if you get stuck, you can post questions in the #1043247478478225428 room 🙂

You should be good. I'm a MySQL database guy and know some coding and networking basics, but not really enough to actually do anything 😆

You too! happy hacking 😄

!notifyme

Ok @radiant jacinth, you will now be notified of future announcements.

!notifyme

Ok @echo dust, you will now be notified of future announcements.

#bot-commands please

Seriously

Preach

Anyone else ever open THM and just stare at the screen for a while until realising your brain noped out?
If so, what do you do on those days? 1 simple question for the streak and try again the next day?

I would go do something and then come back after a little bit, or just go look into a different topic or project altogether. It's okay to need a little bit of a break from things, but I also think you can't rely on motivation all of the time. There's a difference between burnt out and "I don't feel like doing this right now".

It's fine to feel like you don't really want to do something, but repeatedly feeling that way oftentimes can just be laziness, but it's really up to you to be introspective and understand why you're feeling that way.

I mean, like paying attention to the content is hard so except for easy text answers you just stare at it. Maybe can follow step by step directions but brain just 404s when anything doesn't match up perfectly... probably means nothing is retained from the step by step tasks anyway.

I get that way sometimes. For me it's "I don't want to do this right now/ Been going for too long" or "I don't fully understand the material"

either way, I just walk away for a while, Don't think about it (too much), then just ease back into it, later.

I've also been struggling with a similar problem of paying attention to doing school work, when I'd rather be studying other topics. I find throwing on the lofi girl stream, opening all of the files I need open, and just mentally telling myself to "do the thing" works out fairly well.

It's just something you'll have to figure out for yourself.

As far as following directions go, you're not learning anything by copying and pasting commands or following the tutorial to a tee. Critically look at everything you're reading and ask yourself how and why things work. For instance, do you really understand why a php reverse shell works the way it does, or are you just taking it for granted and moving on?

It's okay to not try and figure out every single detail, but skill comes from understanding.

when i get that way, i know it's time to take a break, tbh. get a good night's sleep, eat a healthy breakfast and try again tomorrow. brains need a break and are not made to be productive 24/7, so if you're not really interacting or retaining anything then don't push it ❤️

this was kinda me after today's AoC, it was tough and a bit mentally demanding so once i completed it, i gave myself a pat on the back and spent the rest of the day playing mindless video games

my friend showed me this

that is amazing
and oddly fitting for this convo

😂😂😂

I hope thats a joke😂

I'm.... not even sure.

I hope it's a joke lmao

Nahhh there is no way a coffee machine can lease out dhcp

Does the coffee machine have a domain controller inside?😂

I hope not.

If they do, we might have bigger problems.

Coffee Kerberos. You can't login without brewing a pot.

😂

💀

!rule 9

Rule 9: No discussion of illegal/unethical topics or actions. If the target device doesn't belong to you and you don't have specific permission to perform an attack from the owner of the target, then you don't do it and we don't talk about it. This also applies to piracy / copyright violations -- illegally obtained materials (including classified or potentially classified materials) should not be posted here.
If in doubt, please ask a moderator before posting your message -- preferably without breaking rule 1. Whether an action is unethical or not is at the sole discretion of the moderation team. Be warned -- a community ban over ethical concerns may also be extended to a ban from the TryHackMe website; we do not teach blackhats.