#quiet-conversation

we have really 2 choices, Confluence or OneNote, OneNote is a pain to share with teams. but Confluence has sprawl issues unless you have a team diligent about creating an index and keeping it updated

oh god onenote

formatting is the biggest pain in that app

we use onenote/sharepoint to collab at work, i can see the formatting thing but otherwise its worked pretty well for us so far - but being able to see who edited a note and when is a nice feature

and having a shared place you can just dump things for the shift turnover is handy also

getting Gem for OneNote and a code syntax highlighter add-on definitely sealed the deal but yeah they're missing a TON of QoL things you see in other editors

sometimes oneNote gets out of sync though and its such a pain

ah haven't seen that but im sure it will happen

yeah we got so frustrated with it on Sharepoint with the team I worked on that we did migrate everything for that team to Confluence

Sharepoint to Confluence is an improvement, but I wish there was something better than Confluence to use.

well maybe Obsidian will be it

I'm thinking about setting up a pi or a container to host a trilium server - if i could evaluate the code for obsidian, i'd like it a lot more. I've heard that it phones home on the regular, not sure I like that.

To become a pen tester are certifications like OSCP actually required?

companies aren't likely to hire someone to hack their network without evidence that they know what they're doing and can do it professionally

Which one would you say is the best one to get

OSCP?

I have none and don't do that job, sorry

but as a hiring manager, I wouldn't hire a pentester without certs

Yeah I see your point

I won't get any job if I don't have any certs?

no, I mean that is my actual job, hiring manager. When I hire devs, I can asses their skills pretty easily. It's much harder to assess a pentester.

I want a entry level job in cyber security. I come from a poor third world country. India.

I can't afford any certs. Will I be able to get a job then?

Or should I give up?

It may be different over in India

But I'm from the UK and I'm sure over here in the West they expect people to have the money to take the exam

Alright

I should stop this then

No I didn't say that

I said the economy is completely different in india

Meaning companies may keep this in mind and take you in without certs but you might need some kind of proof

It's perfectly possible to get jobs without certs smh

Just means you need to compensate elsewhere, and usually work your way up.

some companies might prefer to train their pentesters themselves

probably a lot rarer though

afaik tech hiring is booming in India, like up 50% compared to last year- with the amount of work that gets outsourced to India you can easily stand out if you do some work with Americans/Europeans which can lead to opportunities out of the country

One case I can think of specifically, worked with this brilliant dude from Mumbai who specialized in these annoying ass API integrations - he did good work so we referred him around, lo and behold he works for a US firm now doing those annoying ass integrations

can't speak on the market there but I know it leans heavily towards DevOps work, with less opportunity for security stuff

be careful, it's commonplace in india for your hiring test to be the software they want for their company. Then they take that and dotn't hire you.

I would also add in that the Indian companies I've worked with have a very different approach and company culture than the US tech companies. It's not a bad difference, but it can be a huge culture shock in terms of expectations.

i mean are we tryna encourage the person to work in tech or not lol, i've heard this too but never seen solid reporting on it so mostly speculation to me

I spent a few minutes googling to find the video I watched about a year ago and was unsuccessful, but there are plenty of examples that I found while googling. A cursory scan of the internet sees a lot of scams out there with programming jobs--and not all from India of course.

they cracked down on it I believe but there used to be "schools" in the US that would charge foreign nationals, largely Indian, huge some of money with promise of a job, then get them here, work them like crazy, not get them a job and in the end they got deported

yup, if he was talking about schools, then I'd be warning him about the US

but in the job market, the $8/day internships you have to pay money for.....yeah, that's more of an India thing

yeah just I'd be cautious with places that promise a job and work visa and say they are a school in the US. There are very little reprecussions for fake schools in the US.

actually the opposite . The US rewards schools for screwing over students

these were not actual schools

you mean s/actual/accredited

I mean actual...

there are definitely private schools that are not accredited that do that

a couple of the indian students in my grad program had horror stories about some of their classmates

like they didn't have teachers or subjects or anything... what they did was have the 'students' do projects, which was work farmed out to companies

so the 'school' made money from work of the 'students', but was collecting money from the students as well without teaching anything or even having what you would say was work experience as they didn't have work visas, they were on student visas

Basically it was a huge scam, like 3 or 4 years ago, 3 of these schools were found out in the DC area and closed

you don't have anything to prove to me....I don't understand why you're so much in violent agreement about this

what?

it feels like you're beating a dead horse. Yes, there are fake schools in the US. It's not even the topic that was being discussed.

I'm saying there are scams in the US to try to lure foreign nationals here, collect money and pretend they are a school

ok nevermind then, I figured it was worth mentioning since I see a lot of people desperate to try to come to the US to work

he was trying to find work, and people were recommending India. I was warning him about Indian job postings and the culture shock he might see there.

but I misread anyway

he's "from" india, so I'm an idiot, ignore me.

getting back to the main point, comments like "be careful about applying for tech jobs in India, they will scam you" are probably not the most encouraging for someone on the fence about it

I was worried about the kid, sorry. I will speak to the cert thing. There are plenty of free certificates you can get for completing various free coding exercises online (and cybersecurity ones like those on tryhackme as well). They're not OSCP, but they speak to your skill. I think "I can't afford certificates" is a genuine concern, but it doesn't need to hold you back, especially not when you're looking for entry level.

:v

Hello, i have problem with connecting to openvpn. Every time I try to open openvpn and my file i got error so can anyone help me. I'm on virtual machine on kali linux. Can you send me private message so i can send you photo of error

@untold merlin please don't ask the same question over multiple channels, it looks a little spammy

there are known issues with some of the VPNs, the workaround for now is to try to find another one that works

i was SO confused for a second, I was like "Has Dark completely lost the plot?"

uts just a visual bug from another server haha

Ok my friend but i need help haha

Did you go to #site-support and ask?

Yeah but i didn't get good response

Ok, then ask again there.

gh ( GH cli ) is awesome

does that work with private git and gitlab servers?

or just MS github and enterprise?

What advantage does that have over just the regular git cli..?

i think it is like an "interface" to github. see PR on a terminal and alike, no?

so it's like the regular git cli

except works only with github and github enterprise

git cli is ok, but I'm more of a gui fan. absolutely love gitextensions

Pweh cant stress enough how nice it's to get back to hacking or any activity to activate your brain after spending a week with a sick child

Better tokens management, it doesn't replace git by any means , you still require git to push, commit, and pull
https://hamzawinix.com/gh-cli/

despite the name it isn't a replacement for git, the functionality of both are different, gh eases working with github & git, you still need to use git even after setting up gh

wasn't there a github cli that accepted normal git commands and just allowed additional github specific ones on top of that?

I guess you mean the unofficial hub , gh is the official cli client which has a different scope than hub

oh hub yeah

ah so they made a different one then

extend, embrace, extinguish ™️

here is a nice rabbit hole
https://en.wikipedia.org/wiki/Prima_materia

P

do you guys use tmux? I find it very aggravating using like 8 different terminals every single room i do but tmux was difficult to understand.

maybe im just bad idk

tmux is bae

help me pls

ctrl + b + %
ctrl + b + "
ctrl + b + d
ctrl +b +c

huh

Tmux commands

The man page is helpful

where the hell is % on your keyboard

try them and you will get yourself pretty fast on the track of learning tmux

also most importantly
ctrl + b + ?

does nothing

shift + some number

yeah but then the command would be ctrl + b + shift + 5

did you press shift ?

mhm

thats exaclty what im looking for but maybe a shorter command

yeah i was looking through the settings and man page and it never makes any sense

there are tons of cheat sheets on tmux too

and it is a good tool to get familiar with

Byobu is a much easier to use frontend for tmux. If you are having trouble with the hotkeys, the byobu environment is simplified in that respect. That said, I use byobu and tmux regularly, and keeping a print out cheatsheet of hotkeys next to your setup is extremely helpful. I prefer the printout because usually I have multiple windows I'm juggling as is.

the only keys i care for is making more windows and closing windows. Those are the only hotkeys i care for

right now at least

whats the drop down terminal one ?

nvm google lol. its guake

guake is unstable as hell

I hate it

i do not recommend it

eey I always appreciate a fellow guake hater

i plan on using it for my VPN into tryhack me. Just so its out the way

virtual desktops

what

use vdesktops to move windows in the background

what os are you on ?

kali

do ctrl + alt + l&r arrows

I typically background ovpn and write teh console to a log file just in case

isnt that ctrl + z?? i did that once and had some issues

i thought i was misunderstanding the command

just do
$command &

the & does the magic

ctrl+z will pause it, which will play merry hell with network sessions

O.....oof...big oof. I thought ctrl + Z was the background command

CTRL+Z pauses, then bg to resume execution in background

neat thnx that worked

but if the app relies on IO, that could break it.

how do i foreground the VPN tho??

fg ?

did not work

$sudo openvpn xtwo.ovp & comand being used

Blegh

Just start it in a terminal tab and open a new tab to do stuff in

but the issue of not being able to access the VPN is still here lol. How would i disconnect? Reboot?

Control C in the terminal where it's running

Yeah i was wondering how to background the VPN so its less terminals on my screen, the command i was told to use backgrounded it but now idk how to access it

fg

in the terminal where you backgrounded it

this the command someone said to use and fg doesn work lol i said that

read the fg man page in worst case senario...

man jobs and man fg

tbh best setup Ive seen for a linux box is done by ippsec using tmux, he starts the openvpn in the 0 tab and opens new tmux tabs as needed

@mortal venture https://youtu.be/Lqehvpe_djs

so i completed the "upload vulns" room and i know it was covered in there but i cant remember, if i successfully upload a shell.jpg how would i actually get the shell to return to me? Like activate the shell i think im trying to ask

i did a skim of the upload vulns to refresh my memory and all i found was there was a page that "activated" our shell for us so what if the box we are hacking doesnt have that page (i know the name of the shell and where its located , but i dont have access to said directory)

Then unless you have LFI etc, you're out of luck

You need to convince the webserver to execute your code.
Usually that's by navigating to it for something like php where it uses templating

lfi?

Yep. LFI. Local file inclusion. Pretty much just a PHP thing.

thank you

Gave +1 Rep to @burnt night

I really recommend learning a little PHP because it can help clarify concepts for sure

will try, its on my list but as of right now I want to be able to complete an easy box with 0 help. as soon as i learn 2 things 5 more things i need to research come up and im getting burnt out

Yeha that's how it usually works. This is why I recommend doing a good amount of walkthroughs, get comfy with the OWASP top 10, maybe skipping XXE for a bit because xxe sucks

A lot of the learning process is just being exposed to things you've never seen before. I used to suck at priv esc, not cuz I'm bad or anything, but just cuz there was so much that i had never seen before so I didn't know I found something when it was staring me in the face

As you get exposed to more different things, you'll start to learn what to look for and how to look for it

guys

can i see all pc's connected to a public network? if yes, how?

This doesn't sound ethical

Leave it to the mods^^

You need to enable mutual server DMs in your privacy settings

Gave +1 Rep to @odd acorn

guys sorry if questions like these r not allowed on this server

i'm a total newbie (as you probably could tell)

@radiant jacinth that's a sketchy question considering you are a new user and unverified user here. This is ethical hacking server. You can find more info #start-here here.

okay my bad!

🤤

@dull dove my condolences

wat

@dusty sleet

What about it?

Oh nah it's not what you think

we usually use it to announce the death of a relative , IK in other arab speaking contries it has diff uses

Yes, I did set that on my bio when a relative died, but usually we have another saying for that

This one is more a general philosophy

got it m8

This is what we use here https://en.wikipedia.org/wiki/Inna_Lillahi_wa_inna_ilayhi_raji'un

in my country we use either the full verse in your profile or the one you mentioned later interchangeably to announce the death of a relative

Where are you from? 🤔

jordan

Ah well hello there neighbour

egypt ?

DM?

surez

Does anyone here hold any interests in APTs /Malwares /Real World Attacks?

definitely

Hello! Pls vote for me 💖 https://twitter.com/bee_sec_san/status/1448565181525774337?s=21

Deffo yeah

Hi, I can anyone tell me how long does it take for a CVE Request to be validated?

Its for an open source project on GitHub. I tried mailing the maintainer, reaching out to them with a report and all but they did not respond. I even submitted a request for a CVE ID with the same PoCs and all but haven't heard back. It's been almost a week.

This is the last mail I'd got.

This is just sad

charge your phone

its rooted and the charging module is fked

Generally the project maintainer should reach out to GitHub, who will contact mitre to open the cve for you.

but for real no tears for petya?

The process can take a few weeks though

petya just wanted a present for his birthday like all other kids ;-;

i refuse to acknowledge that until you charge your phone

fine 👀 I guess petya can wait for the next bday, cause my charging applet isn't working

Yes, that's why I reached out to the maintainer but no responses. I mailed them and even DM'd them on LinkedIn with a PoC document and Video but no responses whatsoever :(

I want a CVE

Mayor said CVEs are nice.

I think it took about a month for us

Aah, then it's just me being anxious. I guess I'll wait for a few weeks.

But the project maintainer was nice enough to get in touch fairly rapidly

The Project Maintainer didn't reply to my LinkedIn DMs or my emails.

Since you emailed mitre directly, you'll just need to wait for the process to play out

Thanks. A CVE would be nice for the resume

Haha

Is it a big one?

MITRE is probably just trying to corroborate what you've told them. I know some people that work there and they are always busy

Yeah, probably overloaded as well

break into his house, bury a big wooden sign into his pillow and bed, he will surely notice that

Yeah, and I'm going to bet just messaging them out of the blue isn't getting you any favors

I sent over a GitHub repo with the poc and the dockerfiles to repro

And the python scripts

Priv escalation in an API gateway.

Found it while testing a client.

Ok that's a pretty big one, to an admin?

I think I will do that as well.

Maybe give it a few days?

Mitre might also be waiting for the exploit to be patched as well

Yeah sure. I am just excited and anxious. First thing that got me excited in a while.

I know CVEs are important but getting constantly messaged is going to piss some people off

Especially if they aren't allowed to respond due to company policy

@plucky raft I think you should give it some time,prolly it is his first time getting involved in suh scenario and he is freaking over what to do now exactly

Patch might take a while as well

👀 and trying to contact them through many different means might creep them out

If they have a security policy, use that

I'm careful to not do that. Being very very careful right now. Do you think that publishing some exploit codes beforehand might be wrong ?

Yes

Yeah

Responsible disclosure and all

I mean........I didn't do the OSINT rooms for nothing xD

oh god not you again

That would move into forcing people's hands

Which isn't cool

?

Yeah that's what I was thinking. I might just make a private repo so that I can have it ready when the time comes.

Yeah

If it hasn't been longer than 45 days I would just cool it a bit

nothing, just joking around

I recommend you hack their main page and do one of those edgy #$hacked by b1gGu$))$#&

/$

Not acceptable, even as a joke

Thanks Everyone :D

Gotta remember that these engineers and researchers are 9-5 and probably have families

Yes yes. The application is pretty cool. Making it must have been quite the effort.

Also depending on where you submitted it to, covid rules may be in effect still

Yes. I was just a bit anxious about this because getting a CVE is kinda important to me. First times are special.

Just hope ya don't have to wait 3 months before anything is assigned

Dead chat

?? lol its meant to be???

Shhhhh :)

Don't wake up the chat

no joke, some of us have early morning meetings

Juun you're scaring me

?

I almost complained about a late Friday evening meeting (I consider anything on Friday after two late evening when it comes to work), but it was moved to next week. Phew.

Hi James,
It seems you overslept this mornings meeting!
Not to worry ol' chap, we'll get you fixed up right and spiffy.

meetings
mornings
early
Those are all scary

mornings are often the best time to get something done at work. Most of the people are not willing to call a meeting before nine 🙂

that’s because no one should be awake before 9

My spouse goes to work at seven. So I typically start my working day at that time as well.

i have my first daily meeting at 7 every day

My US team mates have problems waking for 9 AM meetings. And that's 7 PM for me...

your US team sucks

i get up at 5am local to make a 3pm CET meeting

If i have a meeting I'll get up but 5am is a little ridiculous

@spark sun tbh the composition has been shifting more to the east coast, and their meeting times are more human 🙂

And it's not even every week that I have those meetings.

"work the job, not hours"

Typically my working hours are from seven to three. So it's not a huge issue for me.

I usually do 7 to 6 or so

i was raised to think of work as working the job you sign on for, not just to put hours on the timecard

it's hard for me to not over-work - the hardest part about the early morning meetings is not having that quiet time to work

I think thats a good mentality as long as you aren't being taken advantage of

...and have time to do whatever else you want to do with your life.

I typically set a firm limit of no more than 50 per week

when i was a student, it was closer to 90-100 hours a week for work and study

50 is a good limit in the US, 40 probably in Europe. Take plenty of breaks during the day is my advice. 🙂

when you buy @twin ridge from thrift shop

Yeah nah

the distortion gets me every time I look xD

Hemlo, does someone have any "experiences" with 3D Design software there ?

Long story short, I'm planning to get a wider desk for my setup and I'd want to know if there is any existing softwares to render it on with some computer / screen "models" to see how it will look before buying it

Sorry if there are some misunderstandings, I'm tired

Hello

Google Sketchup, Fusion360, and SolidWorks for makers are the first that come to mind

Then you have things like blender which aren't "engineering" specific

Hello! If you would like your name colored and the ability to post media to the server, you may want to verify. Below are the associated instructions.

!docs verify

If you would like to learn more about ethical hacking and the THM site, you can go to this channel: #start-here

I've heard about Sketchip for that kind of things but did not for Fusion360, I will have a look for these two, thank you

Gave +1 Rep to @tawdry dove

Both will take work on your end, just telling you now lol

Hello, I just have done that, and thanks for the help.

Gave +1 Rep to @tawdry dove

Yes that is evident

Both allow the import of models though

and have pre-designed models as well

so you can find something similar

Alright I will take some time to look into it, ty a lot

Solidworks is fairly easy, its what I started on but on the enterprise license. Never used the Makers license

I've used it at school back in 2016-2017 so I've almost forgotten everything lol

Yeah I used it from 14-16 so I know the feeling lol

Solidworks'll be a bit pricey IIRC

Yeah, I listed it but haven't looked at the pricing of the Maker version. Is it bad?

Regular SolidWorks is like 5 or 6 grand

$99/yr it seems

• applicable taxes

Ehh that's not terrible

not too bad, I was expecting worse from Dassault

But Fusion360 is free, or was

We get to play with SolidWorks' big brother at work

I had to make a Weir Gate as my final project with SolidWorks

It was kind of annoying lol

I mean the 3d parts are pretty decent tbf

Should have added from scratch

We had to design all the parts in the gate

yeah I gathered

I meant the 3D design software

Oh yeah the software is good

I've used Catia a bit, way back when

and some Delmia

currently working with the less exciting parts of the suite

Yeah, never went that far lol

it's...painful

hi there

hello

using blender for engineering is like using a blender to grill meat

Right, which is why I said it wasn't for engineering

They needed 3d modeling software

ik

Sketchup has all I need so thanks again Moose

wanna get mind blown, search for TREE(3)

https://twitter.com/rootredrain/status/1449202108188676099?s=20

I think I've already seen this before

Tfw colleague and I tried an easy KoTH during work just now and we were both stuck on getting a stable shell... Oof. That's what we get for slacking :'))))))))))

Wow.

hello

anyone here who is familiar with using Google Cloud Shell Editor

?

Me not

depending on use case yes

ayy

burp keeps intercepting requests from https://tryhackme.com/socket.io despite being out of scope, would anyone know why? This is the only URL outside of the scope that burp is intercepting, I can just forward the requests but its still annoying to deal with long term

Under Proxy > Options, there should be a section Intercepting client requests
See if you have And rule enabled in it

I do thats why I am very confused

Chances are those are websockets, which are handled separately iirc

yeah they're websockets

so there is no way to stop intercepting them?

Check Options tab, there's "Intercept Websockets Messages" section

ugh thank you, 2 second fix once again

thanks 🙂

Gave +1 Rep to @rapid summit

TryHackMe & HackTheBox are cool

anyone ever worked with analog based AI systems

Good luck

Why would anyone do this to her neck 😢

how can that neck support that head???

the power of photoshop

Hey I’m not sure how much the brand matters but I would still prefer the opinion of this server, what USB’s do you guys prefer? And while I’m on the subject what would be a good laptop to use for Kali? I won’t be doing anything crazy with it at the moment, but I would like the laptop to be future proof. Any help is appreciated thank you 🙂

(Please ping me with any responses)

This is your daily dose of wholesome content,here enjoy
https://youtu.be/27Dx6ztJ8jw

New Yorkers are their own special kind of crazy

I see a lot of videos from New York @dusty helm

They’re always on the subway or the bus and you never know what to expect

general doubt: MD5 checksum of a favicon would be completely changed even if 1 pixel is different, right?

It would.

There are hash collisions with MD5, but they're unlikely with just one pixel, even if it would be 32 bits.

okay, thank you @rapid summit

Gave +1 Rep to @rapid summit

For a good hash algorithm (*) single-bit change in the input should change the hash so that it's statistically indistinguishable from other input.

(*) MD5 is not considered good enough these days

It should still be good enough to show the waterfall effect though

I like it here better

it's beautiful

this makes me genuinely happy ngl

Yeah, getting attention is fun.

🤔🤔

hi

hiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii

go to the CMD AND tap dir /s

i have kali lunix

Hi

I need help

Is there any one can help me?

mate just paste you question / trials / errors in a structured way and paste them in one channel, if somone knows the answer and has time to reply he will do that

Okay bro thanks ☺️

@glad sage read the rules, especially rule #1, no DMs without asking

Okay

e

f

Question :
Does THM plan on adding support for tcp openvpn protocol as the competetion does (ie HTB) us in the mid east (ie egypt , jordan) mostly can't connect to the platform , in jordan udp openvpn doesn't work but tcp does (tested on HTB ,it supports both protocols) ?

that's probably something worth putting in #feedback-and-ideas

what is the response time of tryhackme by mail plz ?

response time = jabba's speed

bunny on cherrycoke

which is pretty fast

it depends, if it's something that can be resolved by the support team then within 24 hours, but if it's passed onto another team it can take a few days, depending on how busy they are

okok thx

@half fractal what drives you?
1- rush
2- discipline

wha

it's the cherry coke that drives me

now I know the secret to becoming a good hacker is to consume cherry coke,thanks

@quaint basin
what drives you?
1- rush
2- discipline

hello?

hello monkey blunt

hows it going, jake?

Pardon?

sorry didn't see the dnd
I am asking ppl who I see interesting what their motives are

Curiosity 🤷‍♂️

Discipline just stops you from getting distracted. Curiosity is the driving force

i'm sleeepy how are you?

i'm doing alright, thanks. just checking out discord for the first time 😬

Gave +1 Rep to @short elk

"the secret is to be curious and disciplined"
got it thanks

what drives you(yes you the reader) ?
rush/money/discipline/fame/curiosity

Are you copying these out of an assignment...?

These sound like "ask your parents what they do for work" questions

ello all

Hi

I like your GUI!

Wassup guys! I'm currently booting my Kali VM from my USB stick. So what option should I select to boot up Kali?

I want my files to be saved too

even after reboot

should I select "Start installer" first?

nooo🙂,why would u say sth like that
i knew I should've just taken szy answer

shame i didn't find a local store that sells chery coke

there is a difference between kali vm from usb and booting whole computer from usb

either way checkout https://www.kali.org/docs/usb/usb-persistence/

Thanks

ya marhab

I have a problem in a question can someone help me?

if you ask your question someone might be able to help you

I'm new to learning yet, Interacting With the Filesystem! in this stop i can't find the answer

What is the contents of this file?

this is the question i can't solve it

Linux Fundamentals Part 1

okay, have you identified the file the question is talking about?

I couldn't find the file

I've been trying for 3 days

did you answer the previous question?

Which directory contains a file?

Which directory contains a file?
this is the question so it is folder4 but in the terminal i can't find it anymore

are you sure you're running the commands on the right machine/terminal?

I don't know with many doubts in this part I would like more detailed help

Since you know the file is in folder 4 all you have to do is navigate to that folder and read the file within it. There is a little chart that shows all of the commands needed and then it goes in-depth into what they do. I would recommend taking it one step at a time, figuring out which command you need for each step and then using it. Something like:

step 1: navigate to folder 4
step 2: find the name of the file within it
step 3: read the file

I'll try thank you

👍 Good luck

I'm still learning I paid the site for me to learn

Tryhackme is a good site to learn on for sure

if you are still struggling, ill give you more help, but we should probably head over to #room-hints or #room-help for that.

How many IP addresses will Nmap check if you provide the following range 10.10.0-255.101-125?

can anybody help me

do you not have a calculator?

Do you need a calculator..?

You will find that easier to do if you convert it to CIDR notation

||What type of drugs make you able to do mental math?, asking for research purposes.||

Anyone uses kali wsl in pentesting ?

https://tenor.com/view/troll-pilled-gif-19289988

I feel creeped

are u on kali?

i'll tell u a good trick

if u are on kali rn

yes ?

type kali-undercover in ur terminal

yea already know it

hello, please whats the REGEX pattern to match this sequence? -0,2*-3+7,-11,33/-11*-5,-12/6,19,77,1-2+3-4+

Is it for homework by any means?😄

To match a valid arithmetical expression

i am trying to create a script to solve math problems as an open source tool

so i am fiddling around

You want to match the sequence, or elements within the sequence?

Honestly just split at , and do it that way

It looks like a homework assignment to convert an input string into a parse tree and then evaluate the arithmetic expression 😄
So for the input string, -33/11+4
We get a parse tree and then 1 on evaluation🙂

what are those components called when you can select something from the left "table" and it gets put into the right "table"?

like this, and if i were to click test challenge, it gets put into the right table

@cinder laurel hello, since you are a thm staff and online, we might also get to know you more, how are you ?

does anyone here watch xqc??

Hey, I'm fine, what about you?

I am good and feelin great

so I would like to know more bout you

if you don't mind

My name is Yas3r and I am a PhD in computer science 🙂

Where r u from if I may ask ?

Iraq

Thought so 😄
Jordanian here

nice to meet you sir

nice meeting you 🙂

more like neaaaooo ✈️ 🛬 🛫

never heard of em

Can I ask what your dissertation/research project was in? Was it cybersec?

Sure, my research focuses on Network Security.

I can see how you fit in then

james would dig links to ur papers

If I wanted, I would ask.
I'd also do it elsewhere so that Yas3r wouldn't have to doxx themselves. I have access to a bunch of academic papers so I can quite easily find it given a name and title.

~last time ama try to joke on quiet-conv~ it always gets weird

just watched a vid of em, awesome content

The last thing I want is someone doxxing themselves on a misunderstanding

Academia is a whole thing

phd woa

big brain

sexy title

@burnt night

https://www.bleepingcomputer.com/news/microsoft/its-windows-xps-20th-birthday-and-way-too-many-still-use-it/

Thank you, dealt with at the time but was busy so couldn't say much

Gave +1 Rep to @tawdry dove

tell me one reason why can you edit a python file while excuting it with open.write ?
legit use not ctf wise

why not

if you open with w it overwrites the file i think

well some systems don't like you edting files open by other programs but it should be possible to edit it while something is using and reading from it. just it can potentially result in unwanted results if not done carefully

just rooted a box by it

just not itself while excuting

thats more of a computing questions - but when you execute a program, the mapping of that program is put into allocated virtual memory space. From a computing perspective, it would be really inefficient to constantly read a program in order to execute it, hence why you can edit it independent of execution

Why do we need VIM or nano when we can use Microsoft word on Linux?

Joined info sec twitter today

Imposter syndrome kicking in big time

Well a normal program theoretically shouldn't be able to modify itself (but things happen ) but in a case of python, it's much different since python interprets the source into bytecode (or uses the cached bytecode on disk) and runs then. The file itself is not ran directly so the "can't edit the program itself" thing doesn't apply here

What does it represent the column in red please?

Did you check man page for ls, or google this?

yes

ah shit

Got it , python is weird thanks szy

Gave +1 Rep to @half fractal

suggest a book that I can read about hacking (entry lvl)

Penetration Testing by Georgia Weidman

oki ty

Gave +1 Rep to @grave prawn

TIL that you can export wireshark pcaps to csv thus import them in excel

I'm planning on experimenting with it tmr, as it might make analysis tons easier

writing documentation at 1:30am

kill me

Creative hours😊

Hey Im new to hacking.. Im using Kali and im trying to pentest a https server (not that great for a begginer but i wanna learn and help a friend) any tips or turtorials you guys suggest? pls ping or reply

Someone is paying you to perform a pentest as a newbie..?

Or.. he's pentesting his own local https server

hiiiiii

He uses kali.. I doubt he's able to set up an SSL cert

Mean

I don't use kali and I can't setup an ssl cert

same

the only reason I do have an SSL cert on my website is Cloudflare automatically adding one

yea thats how you learn

yknow i have worked w/ servers before just not pentesting....

anyone can set one up its just annoying af

I will assume that you have all the legal documentation sorted then (and would highly suggest you stop if you don't -- there's a reason there are legally ratified contracts in place before a professional firm goes near a client's infrastructure, and it isn't just fear that the client will sue...)

That said, we also have no way to tell whether or not you're telling the truth. Equally, if you're at the level of being paid to do it professionally then it's assumed you know how to do the job, or have someone more senior to help you who has signed the same NDA.
For those reasons, we can't really help in here.

Also, SSL certs are as easy as one bash command and two lines in a config file 😆
They really aren't hard.

And what's wrong the Kali? It's quite literally the professional choice.

Remember that means that HTTPS ends at Cloudflare, which is better than nothing, but still not brilliant as all the requests to the actual server are plaintext.

Severity of that depends on what you're hosting on / where you're hosting the site as that determines whether there is any possibility to intercept.

Ideally you would have an SSL cert (even a self-signed one) on the webserver itself to ensure that the encryption ends at the server, even with Cloudflare serving the content under their own cert to the client.

For real?! Guess I'll check it out then

letsencrypt is what you want to google

👌 👌

then how do i learn to do the job myself. i own my own server and wish to test it's authority and authentication aswell as my code to protect against attacks.

You either work for someone else whilst you learn how to do the job, or you use sites like THM to learn how things work, then put it into practice.
Regardless, we can't help you to attack stuff that isn't clearly a lab environment as we don't know the legal position behind it.

As a general rule, attacking stuff outwith a lab environment when you don't know what you're doing isn't hugely sensible anyway. If it's your own server (and genuinely is your own server -- not a VPS) then you aren't gonna get sued or prosecuted, but you may still damage it.

especially if you don't know what you're doing

it's hosted via my own raspberry pi, i own everything lmao. it's currently all just a localhost situation as it's in development.

i'm currently learning the jr pentester path from THM and have done the pre security learning path previously while planning to do the offensive pentesting path next, and i'm wondering when will i learn stuff to put things into practice

i'd love to have someone to learn from but idk who

How long does it take for support to respond to an email? Submitted a self xss bug report 6hrs ago but haven't heard anything yet

I'm afraid it gets N/A'd by no response^

for thm?

Hi, the Pentester title will be in place after the current tickets promotion?

Yeah

Morning everyone 🙂

-warn @soft oriole Looks like you've been token-jacked. Change your discord password, then DM me - Esqy, and I'll get you un banned.

⚠ Warned 545633631360647199

Hey all

Let's Encrypt makes that ridiculously easy. Even I can do it

Welp I never heard of it

Go look it up

Hey guys I just got premium on tryhackme. I’m doing learning cyber security and the first one is not working. Bookface site isn’t loading. What can I do ?

try relaunching the mechines and room

also you should attach you account so you get levels and stuff

im quiet

but are you? I mean, you're sending messages.

yes but you don't hear them

shhhhhhh, elves are talking

The quieter you are, the more you hear

Hi

fail

why is it considered a security vulnerability if we add the root-SUID to the chroot command? I mean it's just for putting users in jail 😂

What if the jail is / 👀

oh yeah that's true

you're right

so a user can break through its jail

I remember mounting my linux drives to login as root that way😄

but to change the chroot path that the user has to be in the sudo group

or else he couldn't execute the chroot

isn't it?

I haven't noticed the need for that, usually ran these commands as root
Well, if it is right what you say then it is a possible privesc if a user has sudo chroot ...

yeah 'cause I'm on a privesc CTF

and it's been like 26579 hours that I'm trying stuff lol

Look at the docs for resetting a forgotten root password - the power of chroot becomes immediately apparent.

alright thanks

Chroot is insane

It can probably fix every problem you may come across barring hardware failure

Hello

What can hackers physically do to gain access to a machine?

Assuming it doesn't have a monitor and other peripherals

Busses

Plug in a keyboard and monitor?

lol

Assuming the disk isn't encrypted, you could always just steal that and read the files on a separate device

If physical security fails, all of the OS related protections don't really matter 🤷‍♂️

Ohhh yeah that's smart

Or they can just take the whole computer

or they can marry the said person and slowly gaining their tryst over the years until one day they leave the room with the computer open

Oddly specific…🧐

hey all

getting married to someone to hack their computer really is a long game...

but a winning one

reee you jb

-undelete -a

Up to 10 last deleted messages (last hour or 12 hours for premium):

33 seconds ago (Sat Oct 30 13:23:48 2021) Bloke#2439 (ID 270975958511517697): @ma1ware

1 minute ago (Sat Oct 30 13:23:01 2021) Bloke#2439 (ID 270975958511517697): @ma1ware

1 minute ago (Sat Oct 30 13:22:28 2021) Bloke#2439 (ID 270975958511517697): @ma1ware

Fuck

😁

I will annoy you forever now (to be fair I already do that)

It's impossible to ghost ping someone who spends all their time on Discord smh

smh my head

hello

Hello

How are you?

,

played 10 hours of pc building sim in the past 2 days

it really is good for learning hardware after all

I hate that game ngl.

It's so repetitive, it's a good game but they could make it a little more interesting.
I had really high hopes for it too

Fine, what about you? I'm trying to learn basic stuff in THM rooms.

I'm trying to practice Hacking routines

https://twitter.com/zux0x3a/status/1454490182401417219?t=fYlNdxrh9JsSfwdiKyvNoQ&s=19

a lost soldier..

whats the word used for when a startup does X, but it shiftts to Y?

iit was in the lean startup / or zero to one 🤔

it's pivot 😄

On Linux, what is the difference between running a program as sudo and running it with the SUID bit set? Both options make a command running with elevated privileges... 🤔

suid isthe devil

lol why?

there is a thm room o that

Sudo changes your user context. SUID runs in your own user context, but allows you to act with the authority of the owner of the binary.

When you use sudo, you outright change the account you're working under. It's basically a temporary switch user.

SUID just lets you execute a program as if you were the owner of the program. It's also very much dependent on how the program is written as to whether it actually gains you anything. If the program drops privileges immediately then there's no privesc available, for example.

what a good answer

I get it now thanks
so sudo literally replaces temporary the current user with root and SUID gives ownership to the user over a file, right?

Not quite. As muiri said, it changes the context that the file is run under, not necessarily a replacement of the user itself. You can verify yourself by configuring the logs and checking to see execution of the file as su root && runfile vs sudo runfile

yeah that's right lol
I didn't choose the right words to reformulate it

That is one of the reasons I always try to repeat back what I just heard in a different way than how it was explained.

so basically the sudo command gives the same privileges as root to a user calling the sudo command while running a binary with SUID bit set gives the same rights as the owner of the binary (not necessarily root), right?

https://linux.die.net/man/8/sudo

Kinda

When you use sudo you quite literally change account -- like if you switch user in Windows before starting an application

That's often (but not always) the root account -- that's the default, but others can be specified with -u when running sudo.

su - root = sudo -i?

With SUID you are still using your own account, but you temporarily get the same permissions as the owner of the binary (known as an effective user ID)

There will be more nuances to it than that, but it's the same effect, yes

alright I get it

yeah the RUID will never change

when executing a binary

su is "Substitute User" -- it's literally changing user account in the current shell
sudo is "substitute user do" -- it's a temporary change of user account, usually just for a single command

i.e. "Other user account do this"

I see

Sudo with -s or -i (both do similar things) effectively tells sudo to start a shell. It would be similar to saying sudo bash

Not with SUID, no 🙂

so when executing sudo command, the real UID doesn't change while the effective UID does, right?

When executing with sudo the real UID does change

That's the difference between it and SUID

alright I get it

but when executing a binary with the SUID bit set, it's only the effective user ID that changes, right?

Yep -- you can see that in the second screenshot there

That's about as clear as I can make it, I think 😄
See how the id command with the SUID bit set gives those extra euid and egid entries?

yes

thanks man

Np 🙂

https://tenor.com/view/rami-malek-smirk-smile-gif-5761868

ye those screenshots are v helpful, really clear to see the differences there

Question, with stuff on gtfobins, what are the steps taken to mediate privesc and misuse?

I understand the concept of least privilege but if the privilege is necessary is there something able to be done?

SUID is the same as sudo -E?

*the context

Replace suid with something more granular like capabilities.

No, sudo -E still changes your user context iirc -- it just also keeps your own environment rather than using the environment defined in sudoers

I've always heard sudo as "super user do"

could be substitute though

substitute user do

if you don't specify the user, it uses root

ye

Common misconception

Although tbf, it's so widely used that it may as well be the correct one

One day, I'll master Linux 'cause I wanna purify my soul from being a Windows dependent lol

🙏

I always thought like “pseudo” like the prefix as in

“supposed or purporting to be but not really so; false; not genuine.”

But that’s just a homophone so idek

I've heard that one a lot as well

and become linux dependent?

At least you can do whatever the f*ck you want in LInux lol

I want to be good at Linux just for cybersecurity

it's substitute user do

it used to be superuser do in older versions where -U didn't exist

but it's been changed like that for years

anyone with CEH or OSCP acutally use metasploit?

during the tests i mean

i know its heavily restricted in the OSCP, so if that is my end goal, whats the point of learning metasploit? at least currently?

OSCP- didn't touch metasploit, OSEP- Basically live in metasploit, real life testing- metasploit is used frequently

I love how you put those two in the same sentence smh

OSCP should not be your end goal -- it's a foundational cert and a gateway into industry. CEH shouldn't even be on your radar: it's a pile of useless rubbish that gets you passed HR in India and precisely squat else.

Metasploit is used extensively in real life, but not in OSCP

Uh

Noted…. Thank you both for the info

As for my end goal I was meaning in terms of education. It’s just something I have my mind set on. Not sure if that’s right now not :/. Would CRTO be a better option? In my area the only thing job listings have is bachelor degrees which I’m (hopefully) starting soon. Should I even be considering a cert ?

The rule of thumb is to check job listings, which you're clearly doing anyway, so that's good.
Certs are useful, although having done it myself, I'm not sure I'd necessarily recommend doing them alongside a degree. Let's just say I've not had a holiday or day off in well over a year. In many ways it's better to just get a job and let your employer pay you to do the cert.

CRTO is excellent, although it doesn't have nearly the same weight as something like OSCP. It's also a lot more in-depth on the AD side of things, and a lot less generalised. The difficulty of the teaching content is higher, but the exam is easier than OSCP due to not having rabbit holes in it.

I would definitely recommend it to people between OSCP and OSEP, 100%. I definitely would not recommend it as an alternative option to OSCP.

Noted and once again thank you. I will re evaluate my goals as continue to research 🙂

Np 🙂

Time to crack open the notebook and do some research lol.

You see, I'd put a distinction in place between learning certs and HR certs. There's a lot of interesting courses that give you whatever like CRTO that don't have weight with HR really

Very true

from last two days i am not able to connect to tryhackme through open vpn , i dont know whats the problem , please help me

try and changing your server.

ya i already tried that but nothing work

I see

maybe try changing servers again, and if nothing works in the end, wait for someone to answer from #site-support?

in the meantime you could use the provided AttackBox or web Kali/Windows machine to access the victim machines you've spun up in THM

EJPT worth it ?or should I go for oscp?

Is the discussion of udp openvpn ban allowed or not ? (talkin technical + workarounds)

No. Bypassing the measure in Egypt is illegal

they aren't really the same certs

I k

but
as a first cert is it nice or should I just study the material and go straight to oscp

if you are a complete beginner and want to prepare to OSCP I guess a normal path that I saw many people doing, if you wanna go thru eLearn: eJPT -> eCPPTv2 (simillar in "scope" with OSCP but more "loose" in pressure and rabbit holes) -> OSCP

if you want to prep for OSCP, just prep for OSCP - pretty reasonable to say most people could "zero-to-hero" it in a year or so

ok thanks.

A year😳😳😳

Excuse me?

?

A year? 😳

That's the usual timeframe I see people use as a OSCP study period.

I think you could honestly learn everything for OSCP in that period, tho I'm not sure if youre talking about going from nothing to OSCP or knowing the basics and to OSCP

I think that's pretty common to go from another IT discipline to OSCP.

Y’all on some crack☠️

Or am I just that bad

? how long you think it takes?

Whatever it takes

well it does depend where you start

I think... for most people who have some knowledge of tech in general and have a goal of OSCP can get there in a year

if your goal is 'get decent at hacking', then focus on OSCP, thats also a good goal

the most important factors here is motivation on the part of the individual and quality hours of study they are able to put in - someone who could put 40 good hours/week into study could probably go from just knowing how to turn on a PC to OSCP in 6 months

but everyone goes at their own pace, don't just place arbitrary limits on yourself and just set reasonable goals

So I was talking about ctfs with my nephew who's doing a CS course in college, while my brother overheard me. The rest of my family doesn't know I do ctfs and I don't want them to know.

Today my brother called me out of no where: "yo lau can you find a backdoor on this website so I can download this for free?" sends link

I guess this is what it feels like when people ask to hack their gfs instagram

It's pretty close to how it feels when family asks you to fix their printer because "you do IT stuff, you know all about it"

Or when they ask you to fix the internet because it's so slow

your fingers have finger tips,but your toes don't have toe tips, yet you can tip toe but you can't tip finger

still my favorite moment. I went out to dinner with my programmer friends and met a streamer I watched on Twitch and he decided to join us for dinner and he was like "my internet was faster before I moved. is there anything I can do to improve it now?" and they were like: "we don't really do that, but the obvious answer is move back."

TRUEEE

my favorite uncle asked me to fix his apple printer :pukes:

so I gave him the stare

an apple printer?

how old is this thing?

Last printer apple made was 1997, first was early 80s so that'd be interesting

hasn't the appletalk protocol been deprecated for a long time?

yes

quiet

shhhhhhhhhhhhhhh

shhhh

what even is this channel for

quitness?

pretty much a #general 2.0

with a timer

to keep it from being spammed

https://tenor.com/view/spam-spam-intensifies-yum-gif-13948300

I don't know. I think he meant a regular printer, connected to an apple computer

@north roost do you have any resources I could look into for something like zero to hero? Like a playlist on youtube for studying for OSCP? I want that cert pretty bad, working on Net+ currently and hope to have it after this semester.

Offensive Sec is not clear on what I should learn, and I've asked around, and people kind of just shrug

Well...first off you need to learn the fundamentals via something like TryHackMe or the OffSec pwk course then practice with TryHackMe, Hack the Box and proving grounds before moving onto the pwk labs

This should start you off well enough.
https://checkout.ine.com/starter-pass

Then move onto privilege escalation courses like TCM or Tiberius's stuff. Fawaz's guide is a good roadmap

1. eJPT content - no exam 2. Offensive Path - TryHackMe 3. Buffer Overflow Prep - TryHackMe room 4. Linux/Windows Privesc courses - Tib3rius 5. VHL - 1 month subscription 6. Ippsec videos (Just watch and take notes) - HTB TJNull list 7. OSCP labs

i dont have OSCP and never took PWK so I really can't be much help - but I would look into VHL, CyberMentor courses, Ippsec videos and the paths on THM

I wish offsec did scholarships or something for offsec certs / courses

gl getting paying that $1200 for OSCP as a starter without a job

most people will have part time jobs while in school or something to earn money

They do

I’m not going to pretend I’m capable, I’m not giving myself enough credit, but I’m being cautious more or less. But yeah what you say resonates with what I see that needs to happen

I think that’s part of the point, it seems like age gate keeping, but anyone who has taken OSCP probably agree there’s a reason they charge so much, but maybe not

I don’t care, irrelevant. I’m going to take it one of these days soon.

They do. Some communities have been given vouchers to give to their members.

It's rare though

Yeah but at minimum wage which is like 5$ here and 16 hours a week like a normal student, thats like 3 months work

gl working 16 hours a week + school + studying for OSCP

What are your go to reverse engineering tools ?

anyone got any examples of smexy card components with an idea like mine?

this is what i've made, and it looks ugly but i wanna see look for inspiration

I use ghidra for investigation, ida for recoding something or stealing code and cheat engine for memory inspection

I personally dislike R2

The background text makes the foreground text hard to read

yeah i know it does here, but i’ve seen examples where it looks really nice

interesting,any reason to why?

what version of ida do u use

hihi i am looking for a generic blog name like "not boring" "smarter every day" etc etc it can't be related to my name or a topic pls help

“The blog about stuff”

Stuff you might want to know

This is why I don’t have a blog

"things about things"

Go for an abstract approach: “AHAUghjKidhhsbaiI”

Call it post modern art

Hey there 🙂
I have a question: If I would get invited by someone, or a team on THM "to hack with them", shouldn't I get a notification on my THM profile somehow and not just an email?

You can’t get invited to teams as far as I know

That’s a friend request

Friend invited are relatively new so there isn’t a whole management system for them

If you think it would improve the platform, drop some feedback #feedback-and-ideas

Oh, okay, I just thought it was a phishing attempt..

Anyone here knows a katoolin working repository...Most of the repos ...they use that key server that is gone down and other ones dont work with it.. Please I'm currently on my ubuntu and want kali repos ...is there any other way than katoolin?

Something something frankendebian

debian is love

macos is love

windows doesn't want to greet the world, whats wrong ?

well, for one you should probably be using << std::endl; instead of the \n

¯_(ツ)_/¯

I mean you could avoid it altogether as well...

“Just because it works, doesn’t mean it’s right” - Jabba, right now

windows prefers \r\n anyways

did you properly link iostream?

windows still be like nope

choco install minigw
thats all ive done

did you kill the terminal and restart it so it can update the PATH?

and/or other environment variables that it may need

yeb, also g++ works so that tells me the path is ok

try compiling as a static binary

¯_(ツ)_/¯

I'm guessing there's a linker SNAFU

no idea what that means

Ive realised my mistake

I am giving windows a chance, I am jumping back to my comfort zoon in wsl

Whats a snafu tho @twin ridge

Situation Normal, All F***ed Up. it's a technical term

Thank you so much sir for the term, ama start incorporating it more in casual conversations with unsuspecting managers to sound more professional

I'd bet it's windows terminal nonsense

@dusty sleet tried dropping into a CMD instead of powershell?

dunno about windows terminal....could be powershell nonsense, or conpty acting up

ye I did still no luck

IMO trying to do mingw/cygwin is a huge pain until you are really well versed in the differences between Windows and Linux C++ environments. Stick with either, don't try to fit square pegs into round holes.

WSL does it reasonably in my experience, if you just want to write code and then run it

I agree, wsl is perfect for what I wanna do, shame on me for even considering using windows c++ outside of bulky visual studio

isn't there like a native tool for c++ compilation in terminal , I have VS c++ package installed