#👥・help-me

F

what da hell do someone need 80 gigs of ram for

https://tenor.com/view/tom-y-jerry-tom-and-jerry-meme-sad-cry-gif-18054267

he a 3d designer or smth?

U married right?

He was getting frame lag while running two games at once so we increased his ram a tad bit…

He was running 32….

Typical American people

2 Games at once 💀

It was Cyber Punk 2077 that was killing it

Now he can run it at 90fps average 😎

Dancin why do u have a roommate when you're married @normal heart

i assume he has 4080- 4090 with that

🤔

4060 ti

1080ti gang

Tell me i need to know

Because we can. Him and I have been friends for 11 years.

What then where is hubby

My spouse is always hanging out around me. I set up their computer and actually need to install the 1650 into their computer

sorry for any inconveniences i shouldn't have asked

It’s fine

I mean it

@coarse perch there is a thing called sleep u know that

sleep ? what is that?

never heard of it

https://tenor.com/view/jerry-heart-attack-jerry-hurt-gif-11070099764616397724

Ok time for my Batman duties

imma log off now , will try Dual boot on different hard drive in the morning

Bye

Have a good one!

Be safe

you too!!

you too!!

Someone just told never heard of sleep

Where can I get a free Linux server?

Not free but cheap: https://www.serverhunter.com/

😅

Hi light…

HTB Spoiler Jewel

||Jewel.HTB is Ruby on Rails vulnerability.||

That took way to long 🤣

i am creating a tool where you add a payload list let's say xss and try to find that vuln
the way it works is that you have a url example: example.com/search?q=Cars
instead of cars you put the payload

how do i check if i have a vuln

do i check the html code of the page and see if the payload is in there or how?

@normal heart any idea?

Owasp ZAP

?

It’s a tool that does that

ok

but like i am trying to create my own tool if you can help me 😆

Use it as a reference and see if you can find the source code. It would be a wonderful resource

I’m going to bed

Alr Bet

hello there
can someone help me with one thing?
I have this problem when I boot into kali through flash drive it takes really long time to boot (like 1 or 1,5min)
I also had problem with a beep sound when booting but I figured it out myself
Is this boot time normal for flash drive?

flash drives are slow for these king of stuff

OS related

Facts

Could someone suggest me a small project idea about making a small network secure

Like for a bunch of devices printers etc in an office

I’m trying to dual boot but windows installation media won’t recognize the nfts partiton on my drive

hey does anyone have any experience with ghidra? I want to run it headless. so far I am able to submit the the analysis headless but i can only see the analysis from the gui, is there any way to access it from terminal?

guys am i cooked

yall know what an $phantom-SCV.cmd is? 🤔

$phantom-SCV.cmd appears to be a script or command file, likely associated with a specific tool or software, but it isn't a well-known or widely documented command.

Looked it up on google, something about valorant came up.

I thought it was a ransomware attack

or cryptoware idk

but just to be safe

which antivirus should i run for a small scan?

phantom is a gun in Valo XD

but it should not be in .cmd format imo

Are you on Win 7 by any chance?

https://www.malwarebytes.com/solutions/virus-scanner

just for small scans

11

thanks for this, i had it in mind but i couldnt exactly remember the name

hello, i am interested in learning cybersecurity can anyone help me how i should start with it?

We need more information based on where you currently are. The field is way too big for an open ended question.

Can someone help me regarding Android Spyware. To identify and remove it

Using archinstall instead of manually configuring everything takes care of wifi configs? While installing Arch Linux

Should do ( @chilly merlin )

and patriations too, or should i manually do it ? following the oficial installation guide on arch's website?

nope that's for noobs

LOL

will this be a better option then?

because i want to install KDE plasma 6 with it too, and official installation guide dosen't mention ay about that.
i can do it after installation too, if i am correct?

@whole wave do you have any idea about this?

Is anyone free tomorrow at 11am-1pm est ?

Reason for that?

Some devs are giving me temporary access to some unreleased ctfs

So?

And i need some people as a "test" group

Hmm

They're designed to be intermediate level

Apparently

If anyone's interested

Dm me

Please state who this is with lol

hello there
is there anyone who has some experience with pymongo?

or just experience with python databases and moving within them

is using tor without a vpn safe but not buying anything just browsing?

Why the hell would you ever use a VPN with TOR?

i was just askin

TOR on it's own is fine :)

Also, if you're worried use Whonix

oh bbet

oh ok thanks

Whonix is not an NSFW website wtf

@sour badger this needs fixing :(

fr

For the next hour I'll make sure to be active here so ask away people (even you lurkers, I see you)

Hey

Finish the sentence.

Is this possible to hack a website using termux?

Yes

What we need?

To find open Ports and vunlerbilties? To hack

It’s most possible having a rooted android device

Same way you do with Kali

Without root

Nmap doesn’t always need root

Which tool

Tryna make you think about it a little as well

I did say which one

What tool i need for hacking in termux?

And to install it look up, “Termux working nmap” and click this one Suspicious Link

Using nmap !

I can hack a web ?

The device I am physically operating when hacking is an iPad Air 5th Gen

👍

I’d recommend using that

Word ?

The PC yes

Oh its mean computer

👍

Hey dark

lmao what

What does...DM me

yoo

Hello

Nah

As a staff member here, just want to make sure that it's safe :)

Oh

I mean that it's not by anyone important

or like famous

Indie devs i know personally

What about a Iphone? How do you feel about alpine Linux?

I can do it off of iPhone but the ipad has a physical keyboard

Who can hack my gf camera to see if she’s been cheating

Small generic camera

Not allowed here

Not allowed here, please follow the #📜・rules

Ok

I got a small RC car that can connect to Bluetooth I took it apart but I can't figure out how to make a code for it so I can drive it with my laptop if that make sense

Depends does it has software that comes with it? Or are you making it?

If you’re making it then you need to know what languages the RC computer understands and learn it.

it should already have one the car im using is a REV: robotics enhance vehicles I had it for years and thought it would be a good time to do something special with it put up a challenge for me but I got stumped

I cant figure what language the car is or anything about it I tried doing it though the app but still nothing

Compile the information about it and only keep the crucial information. That’s the best way to search IMO I also do break SEO’s…

I know it has its own type of AI and its Bluetooth only can be run by phone how ever because its Bluetooth I can connected though there the problem I don't know what language it is

that is all it got

... I wonder if scratch would work

are you able to help me find out what language it is?

It’s 5am and I need to go to bed soon 😅

I just hacked two medium machines on HTB in the last 4 hours

damn (i don't know if I can swear or not the rules dosn't wanna open for me lol) I also didn't sleep

Get some sleep then try. While you’re going to bed think about different ways you could find out.

It should help ^

at this point im too tired to sleep

someone please tell me how it is I can ping from PC-A to PC-B but not from PC-B to PC-A

feel like its simple but dunno

Firewall can be blocking it

is there anyway to overcome it?

testing smth on my own system

Yeah let me find something what is the PC A and PC B OS’s respectfully requesting clarification of which one is having the issue and other context I may need.

I want to scan Windows PC to find vuln with nmap vuln but its not working (ping doesnt go through)
I can ping from Windows to Kali but not from Kali to Windows

Oh okay do “nmap -sC -sV -T4 -Pn $(ip)”

The -Pn is what us important

https://cdn.comparitech.com/wp-content/uploads/2019/06/Nmap-Cheat-Sheet.pdf

hmm, "No targets were specified, so 0 hosts scanned"

weird

Umm… did you change the $(ip) to the ip address of the windows pc?

ofc haha

Are you positive 😅 idk why else it would say no targets were specified

I’ll take your next word don’t worry

Like imma have to do research if you weren’t joking

gimme a sec, doing it 2nd time

can I send ss in DM's? (when its done)

What for exactly?

to show it really shows this

I trust you

or I misunderstood smth

wait

What’s up

it shows now "Host is up."

Yay

Please read the #📜・rules , we do not participate in these kinds of activities.

Okay lol

I learning computer network to begin with

can anyone help me

i need a quick recap on how to perform SQL and XME injections

Idk anything about those yet but @shadow fractal might help out he knows more than i do

Oh ok

Or @quasi berry if he comes online

My boys sleeping rn

Well I'm in a bit of a rush

You mean XXE?

No

Its a type of XSS exploitation

https://portswigger.net/web-security/sql-injection

For recap

Oh

Mb then

Np np

Just a sec

Portswigger has clear explanations

It is XXE lol

https://portswigger.net/web-security/xxe

Ahahaha

All good

Hope this helps

But wait

How do i perform SQL injections

Is there SQL code i have to edit?

Depending how you use it

Like for example

Theres a ctf on picoCTF

That says you have to open /etc/passw

With an injection

So you would have to adjust the SQL code

To get to the ETC

Then passw

And get the data from it

https://github.com/DanArmor/picoCTF-2023-writeup/blob/main/Web Exploitation/More SQLi/More-SQLi.md

Check this if it is not a spoiler

Ty

Ig

Always welcome!

It's like i get it but not rly

Check what each part does

It will help you better understand the code

How it functions

And the Portswigger has pretty clear explanations/guides

Unless there is a specific part

Causing you issues

password = '' or 1=1;--'
and username = '123'

Why do we pick these

i know they are sql code

Think of a query that is built using string concatenation:
"select * from myTable where id = '" + txtIdEnteredByUser +"'"
If the end user inputs:
' or 1=1; -- '
then the query becomes:
select * from myTable where id = '' or 1=1; --'
That is a valid query and always evaluates to true because of the (OR 1=1), as a result the whole table values are returned.

However, if the user input was:
or 1=1;
the query becomes:
select * from myTable where id = ' or 1=1;'
which is query that wouldn't return something (likely).

More clear?

what language is this 😭

SQL

And english

Lmaooo

do i have to learn sql...

The basics

Yes

Its not that hard

Believe me

i have 2 hours

You can go over the basics

Like Union

And etc

Other commands

on the other hand

what about the XXE?

same thing?

XXE is XML entity injection

quite a bit different

i.e. if a user submits an XML payload to the web app:

<userInfo>
  <firstname>John</firstname>
  <lastname>Bob</lastname>
</username>

You can modify the request and define an entity, then reference it:

<!DOCTYPE replace [<!ENTITY ent SYSTEM "file:///etc/passwd"> ]>
<userInfo>
 <firstName>John</firstName>
 <lastName>&ent;</lastName>
</userInfo>

why is forensics so dificult

That way when the application echos back the lastname to you, you see the contents of /etc/passwd

Depends how you define difficult, I think it's an area that is not very google-able

this looks easier than the SQL

But it's not crazy hard to get a hang of some of the bassics (pcap analysis/disk analysis/memory analysis)

whats &ent; ?

oh

Depends on the application! You can have instances where an SQL injection is really easy (i.e. literally submitting ' OR 1='1 to bypass a login, and you can have cases where XXE has filters etc.

&ent; refers to the entity that we custom defined here:

<!DOCTYPE replace [<!ENTITY ent SYSTEM "file:///etc/passwd"> ]>

yeh got that

so wait

its like a function?

Is what like a function sorry

nvm

i mean since you defined it

is it like a variable

Yeah more like a variable

i see

you could do:

<!DOCTYPE replace [<!ENTITY whatdahellisdis SYSTEM "file:///etc/passwd"> ]>

&whatdahellisdis;

if you wanted to

lastly, SYSTEM opens the directory right?

or does it read it like cat

I think the entity creates a pointer to that system resource

then when it gets to &ent; it renders it by reading the contents of the file

ohhhhhhhh

i think i got the hang of this

wait would i just input this into a console?

XXE is usually relevant to web applications

You would find some part of the application that accepts XML as input, and play around with it by using external entity injection

i mean like the console you get from inspecting a page

OHHH

You would probably need to use a tool like Caido/BurpSuite/ZAP to play with this attack in a nice way

window.contentType = 'application/xml';

function payload(data) {
    var xml = '<?xml version="1.0" encoding="UTF-8"?>';
    xml += '<data>';

    for(var pair of data.entries()) {
        var key = pair[0];
        var value = pair[1];

        xml += '<' + key + '>' + value + '</' + key + '>';
    }

    xml += '</data>';
    return xml;
}

for example

They sit between your browser and the server and let you inspect/modify messages as they are being sent, i.e.

browser -> BurpSuite -> server

Then in Burp you'd see

POST /endpoint
blah
blah
Content-Type: application/xml
blah

<xmlstuffhere>
</xmlstuffhere>

oh ok

i think i have burpsuite

https://www.youtube.com/watch?v=99_eeZ-x_7E

PortSwigger have a nice video talking about how you'd do this challenge

You'd probably want to watch a different one for how to set up burpsuite with your browser of choice

(i.e. set the proxy settings / add the burp CA as trusted)

ty

my prof explained it to me using ruby (how did he even do that)

i didnt understand anything

does this work for community edition

lmao

Of course, Repeater/Proxy/most of the stuff you'd want are all in the community edition

wtf

i cant do active scan

or passive scan

https://portswigger.net/burp/upgrade-community-to-pro?utm_source=burp_suite_community&utm_campaign=upgrade_to_pro&utm_medium=button&utm_content=new_scan

bruh

Yes, you shouldn't need scanning

Since you should be able to use the app and spot the vulnerable areas

could i borrow 449 $

You only need proxy history / replay to exploit pretty much anything

ill pay them back trust

💀

Also the passive / active scanning isn't that great

so like, it's not a silver bullet

Just go to whatever page had this code snippet

play around with the buttons

find the request that has XML as a POST

oh yeaahhhh

use repeater to view the request, modify the XML, and send it out and see the response

weird

i cant find a POST xml

Have you set up the proxy so all of your requests are going through burp?

yeah

the only XML is a GET

wait

Ah okay, then play with that request

isnt there that /robots thing

Well, I mean, I'm not sure of:

Your goal
What this is for
What you are looking at

So it's kind of hard to provide any ideas on direction

flag

flag is goal

Okay, but what's the context for the challenge, what does it look like etc.

i.e. if the challenge is called "OMG its an XXE" then it's like, okay, robots would never help you

its SOAP

https://play.picoctf.org/practice/challenge/376?category=1&page=1

SOAP definitely makes a POST that contains XML data

theres only 3 POSTs

Okay, what are the post requests you see

1 sec

POST /data HTTP/1.1
Host: saturn.picoctf.net:63037
Content-Length: 61
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.122 Safari/537.36
Content-Type: application/xml
Accept: */*
Origin: http://saturn.picoctf.net:63037
Referer: http://saturn.picoctf.net:63037/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Connection: close

<?xml version="1.0" encoding="UTF-8"?><data><ID>2</ID></data>

Okay, so that'a a POST, and the data (down the bottom) is XML

oh

oopsie

So, can we inject an entity into that XML, and what can we define that entity as

lemme try first

For your testing I'd right-click that request, send it to repeater, and then modify and click send (it's a nice work flow for stuff like this)

<?xml version="1.0" encoding="UTF-8"?><data>

<!DOCTYPE replace [<!ENTITY ent SYSTEM "file:///etc/passwd"> ]>
<ID>
&ent;
</ID></data>

this is what im editing the bottom part with

wait

shouldnt there be another <data>

I think you're close, order is important

I'd define the doctype before <data>

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE replace [<!ENTITY ent SYSTEM "file:///etc/passwd"> ]>
<data>
<ID>
&ent;
</ID>
</data>

sure, and what happens when you send that off?

sigh

the instance ended

so i have to redo this

You can spin up a new instance

:/

shouldn't take long!

You've already got the payload

I think I messed up my OS... its stucked on loggin screen (Arch)
any idea how can I fix it?

VM or host?

host

And when you say stuck on login screen, do you mean you type creds and then it just freezes?

no no, I turn it on and its stuck on 'lenovo' screen ahaha

I installed one login screen layout and yea...

So it never gets to login-screen, but it's booting?

yep

named it wrong, sry

Have you tried ctrl + alt + f3-6 to try and get to a tty?

not working

You can try booting into single user mode

how can I do that

Do you use grub?

idk tbh

https://askubuntu.com/a/760064

dont remember

When booting if you hold shift it should pop up something

got smth

resume normal startup
BIOS
diagnose hardware
temporary startup device
management engine setup screen

picoCTF{XML_3xtern@l_3nt1t1ty_540f4f1e}

it worked

You don't have to share the flag in here 💀

its random for every user

so it doesnt matter?

options

Ah k

yup

ty

wait a damn minute

uhhhhhh, I guess normal startup?

I'm trying to think

what your boot loader is

isnt there something called xml reflection

or sm along the lines

doing it

You can have reflected XSS, but that's a very different thing

sigh

yeah thats it...

i dont remember 😭

its stuck on black screen now (I can move cursor around)

Okay, now try switching tty 🙂

(ctrl + alt + f3-6)

doesnt work

uh, just alt + f3-6?

You basically are trying to get to another tty that just has a tty login screen

nth working

It's super odd you get a cursor, sounds like the system is pretty much booted

None of the ctrl + alt + fkeys work?

none

Do you know what change you made to have the system be unable to boot?

I installed login screen style in the kde plasma desktop themes

and rebooted it

he opened a vm inside a vm inside a vm inside a vm

Ah okay, so the login greeter is just borked

Is this a laptop?

yep

fkeys can be disabled sometimes

Is there like an fn key?

yep

Make sure your flock is the right way around (i.e. when you press f6 it's actually f6 and not brightness up)

wait i dont understand now

There should be a fn lock symbol somewhere

yes there is

So try changing the lock, then doing ctrl + alt + f3-6

its not changing, I mean it had this led and should lighten up when pressing it right?

fn

Sometimes the led doesn't work (it doesn't really on mine)

otherwise you might have to do like ctrl + alt + fn + f3 💀

oh god

it worked hahaha

go into tty3

got*

Nice!

You should be able to login

and run commands, and try and fix the greeter 🙂

but how 😭
im new to all of this ahah

Okay so something has to start plasma

You're probably using sddm

yes

Do you know how to generally move around the file-system / edit files from the terminal?

yep

Okay, well I'd try and find the logs for sddm

see what's happening there

can you explain the reflected XSS

https://portswigger.net/web-security/cross-site-scripting/reflected

ohhhh

so it uses the url to implement code?

I see I have file 'theme.conf.user' but there's only 'type=image' in it (in sddm themes)

there's so many files to check

Where is theme.conf.user ? /etc/sddm.conf.d/ ?

yes

No other files in /etc/sddm.conf.d/?

Main
metadata.desktop
screenshot.png
slice (dir)
theme.conf
theme.conf.user
translations (dir)
readme

wait a secd

What's in theme.conf ?

im stupid, in this there only kde_settings.conf

Nice, well that's a good file to start

look at the [Theme] section, (specifically what Current is pointed to)

You can change it back to Breeze for the default theme

what im talking about is in '/usr/share/sddm/themes/sddm-slice-1.5.1

okay

Basically, get the default theme working

get your nice desktop back

then modify the config, and check out https://wiki.archlinux.org/title/SDDM#Testing_(previewing)_a_theme for how to actually test the theme

When you try to preview it'll spit out what errors are happening directly to the terminal (i.e. missing dependencies/incorrect config etc.)

i got:
[Theme]
Current=sddm-slice-1.5.1

Yeah I'd just go back to Current=breeze

then do systemctl restart sddm

then login, and then after changing the config/theme make sure to try and preview it 🙂

readonly option ofc ghahaha

(I have also learnt to always preview before logging out from this exact situation with sddm 🤣)

make sure you open the file with sudo 🙂

i.e. sudo nano blah

ik ik

nano... vim mate

haha

I mean I use vim

but like, I don't expect normal people to use it hahaha

Just do :w !sudo tee % in vim and you can write the file with sudo

OMG ITS WORKING AAAAA
thank you so much mate!!
U 👏 ARE 👏 THE 👏 BEST 👏

i'll surely remember this for the future

I don't know if the custom login window was incompatible or what

Some custom login themes require more dependencies

i.e. qt5-quicktime and such

I thought I was smart enough to do it on my own but probly need to read or watch some yt vids

yo f3rn0s

XSS is an attack that is built upon the idea that if you (an attacker) can get an arbitrary script tag to be rendered. How do you get a script tag onto someone elses page though? well theres:

• Stored: You get the website to save your payload somewhere, then it displays it to another user
• Reflected: You put the XSS payload in the URL, and it gets rendered onto the page when a user visits that specific URL.

mmm

I mean, learning how to debug and fix issues is huge 🙂

are ye gonna be available in about an hour

Like, having the tools next time to go, well my computer booted, but my desktop manager is cooked, let's try and switch tty etc.

is super useful

Nope 🙂

Sleep comes for us all

aw man

this emoji is savage ' 🙂 '

Is there any way i can program my Logitech g502 the sidebutton too keys for Playstation?

i wish but idk how

Need help

Termux printing the following ..
~ $ wget -o install-nethunter-termux https://offs.ec/2MceZWr
CANNOT LINK EXECUTABLE "wget": library "libssl.so.3" not found: needed by main executable

Apparently an apt-get update && apt-get upgrade or pkg update should resolve

(ref: https://github.com/MasterDevX/Termux-ADB/issues/50)

Is this even possible?

$ pkg install wget
No mirror or mirror group selected. You might want to select one by running 'termux-change-repo'
Checking availability of current mirror:
[*] https://mirror.accum.se/mirror/termux.dev/termux-main: ok
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
wget is already the newest version (1.24.5).
0 upgraded, 0 newly installed, 0 to remove and 64 not upgraded.

I think it's more about a whole system update (i.e. your wget version is looking for a version of libssl you don't have installed)

I want to install Kail

Okay... but your wget is borked

It's probably borked because your termux has tools like wget that are relying on system libs that aren't up to date

So, update all the shit in termux (including system libs)

with something like apt-get update && apt-get upgrade

Okay

Hey guys, I just started learning about cyber security. Any recomended way to learn?

Cisco and try hack me

thanks

File on system created by you or by a script.
==> File also in package provided by package maintainer.
What would you like to do about it ? Your options are:
Y or I : install the package maintainer's version
N or O : keep your currently-installed version
D : show the differences between the versions
Z : start a shell to examine the situation
The default action is to keep your current version.
*** openssl.cnf (Y/I/N/O/D/Z) [default=N] ?

I'd go Y for most things

since you haven't configured anything non-standard

Okay

So y?

Yess 🙂

Done

Checking device architecture ...

[1] NetHunter ARM64 (full)
[2] NetHunter ARM64 (minimal)
[3] NetHunter ARM64 (nano)
Enter the image you want to install: 1

[*] Checking package dependencies...

What next ?

Well wget seems to have worked, so I'd go back to following the guide you were originally following

Okay

Thanks

[*] Checking package dependencies...
Just printed this

I need help hacking an old game SimCity 2000 it doesn't wanna start downloading or anything

I haven't hacked a game before

sim

sim city isnt made for you

What?

its a meme reference...

Ah okay

But any ideas on how to hack it so it's playable

Check #📜・rules , no piracy

Thank you!

But I have the CD I'm just trying to get it to be playable.. it's still considered piracy?

Thought you meant from online

If you have a cd, idek, noone hacks games here tbh

And if it not downloading or anything

Might be probs with disk

Hm

You most likely don’t have the correct drivers for it

Try running it as administrator.

Alright I'll try it

can anyone teach me how to do XEC injects?

XML External Entities? For a quick recap use this: https://www.hacksplaining.com/lessons

f3r helped me with that

Lovely

fr

well the only thing left honestly is this 1d0e1a0f3e0b021b132c201225252e361228132132232a291a31283d3b20362316233523223a2531363e34

gotta XOR decrypt it

nvm

Just xor it

i have to make the key hex first

uh oh

nevermind

im stuck

sob

turns out it wasnt just a simple XOR

nevermind

the cipher was the key lmfao

wait im confused

1d0e1a0f3e0b021b132c201225252e361228132132232a291a31283d3b20362316233523223a2531363e34 ^ SMILE = flag

gimme a sec

You got it I believe in you

sorry im slow brained

imma just python this

yaaaaay

i did it

see even my ape brain can do it

😄

Anyone can teach me I'm new and I only have a phone

Not much you can do

You can learn online using #1181325692823150642

help

help

import string
restrictions = [
'ounpbctiwrw_rbpgvzvjwbrduf',
'ybuacimefujwzpjnfwmwljjyyc',
'ffornwxnsweroqmmzoocuaefhn',
'wxpddhr_mqxmkxaxbscmydmswx',
'qmvxlgwoimttudhlwtgfqknp_h',
'zlcmvysxbakxwtzceptniglnsv',
'mwfezazhqyukmfkkkultappvxo',
'unghuxepus_ingqpomdedzuwmw',
'_txkxegukkqnvvgfhqsqkqdkqi',
'l_r_jkulxecoi_bvgkehjrkjbd',
'kkzgmvkjpjlfdyxsscpiblsgcg',
'ecayfdyrrlplswlemg_khvyram',
'rswlrz_zhzzqyucqqyfof_oifl',
'ihtotrpdv_nbxkviylzl_mcopr',
'gzyqhqimdfvaaewtrhazpexzou',
'bjdjksftjhfy_stdcvwsnfhekp',
'pqlbpfqveooefnorliiartimdj',
'domcsthqapbhborjuakgtczhvb',
'nvjf_ocsyggupheudnndohvqzk',
'jebugbbftihzerf_n_qbsyqtg_',
'crinwpacgnychzdypfbpciablz',
'xi_zimoknbspclshixrrxxfxta',
'spksqjvwztrvgcnatrjyew_ary',
'tdhveljblcddqiiw_duvzsbljs',
'agqwyudgodajlmuojjxumnwunq',
'vyeionnycxmgjjyzxehxvugcee',]
cap = [
 0, 4, 9, 19, 23, 26]
flag = input('enter the flag : ').lower()
flag = flag.lower()
if len(flag) != len(restrictions[0]):
    print ('nop..........no flag for you')
    exit(0)
for f in range(len(flag)):
    for r in restrictions:
        if flag[f] not in string.ascii_lowercase + '_' or flag[f] == r[f]:
            print ('nop..........no flag for yo')
            print(r[f])
            exit(0)

new_flag = ''
for f in range(len(flag)):
    if f in cap:
        new_flag += flag[f].upper()
    else:
        new_flag += flag[f]

print ('Yeah, you got it !\nYour flag is NCSC{' + new_flag + '}\n')
print(r[f])

wtf is this

de-obfuscate the string.

huh?

what does de obfuscate mean

obfuscate is basically scramble all code to unneccesary data

something that will run but contains lots of unneccesary codes and strings

can you help me do that

honestly, i have no idea how to do it

i think google can help u tho

since the code isnt that long

and it aint that obfuscated

Well dose the code works?

yes

it works

my findings with it:

the flag has to be
a- same length as restriction
b- all lowercase
c- flag[f] == r[f]

It all looks right but I'm entirely sure I know I'm missing something but I don't know what

This is starting to bother me now lol

IKR

ive been at this for ages

i just want to get the flag and move on

Figure it out yet?

yeah

its not even a flag

D ;

it was a troll

but not rly

?

basically

its a bit complex

but any string that abides by 4 rules can be the flag

1- has to have the same length as restrictions
2- has to contain atleast one _
3- has to be all undercase
4- has to abide by flag[f] == r[f]

Yeah

turns out

the ctf itself was partially the hint

you just have to look at it from a weird perspective

Are the numbers right?

does anyone have any idea what would be the reason that simple nmap sc sv scan takes so long to scan (still going for 3min now)

@royal sphinx #💬・old-gen-chat message

Putting that here so your message gets seen

What I understand by it is just taking it's time

Are the numbers right?

nevermind

the restrictions was a list

Ohhhh

Alright so it's fixed?

yeah

Nice

Your network might be just slowing down

Slow host too many ports udp scans it can do that

how to inject XEC

GUYS… i wanna start programming but dk where to start 😭😭🙏🙏 like do i start w the hard programs first or should i start w the easy ones or IDK HELP

Easy

HTML&CSS for website form and UX/UI

@normal heart you’re going off on HTB!

Then JS from functionality; from there PHP for backend development and MySQL/SQL for database server.

Thanks!

I meant to type this in general lol

Alr thanks alot 🔥🔥

No problem!

@analog temple alright so #help-me understand what you're trying to get across, I'm listening

I'm not saying that you're wrong to think that; other than enjoying helping people what perceived gain do you believe I get from helping others? And do you think there is an exception to such a rule?

Is that an exception to the rule I see 👀

It is down to values and I have quite a few

I'm a family person

Yeah of course, as long as there is mutual respect among discourse; people will jump to my defense regarding some things and I appreciate that they do this because people tend to target me so they're just looking out for me

It does take a bit to encourage conversation with others, I find it fruitful when I'm able to have in-depth conversations with people regarding different topics

In my brutally honest opinion, if someone doesn't know something then that is okay but what is not okay is acting like they know everything in cyber when they know very little. If they reach out and are like "hey I don't know this, could we go over this?" then I'm more than willing to jump in and give them a helping hand if I have experience or knowledge regarding the subject. I think a lot of it resorts down to the peer pressure of certain circles of people they hang around in and it can be scary to escape that at times

I agree it's better to ask for help with something you don't know instead of acting

Well I'm three coffees in and an energy drink and I still can't get my RV car connected to my computer

yes, its simpler in my opinion

i failed on first attempt , ig it was the nvidia drivers that went wrong

basic installation complete?

i used nvidia for display drivers , so it was bugging

had to wipe the drive

oh ok

Finally did it

Without nvidia driver for now , ig I'll stay on intel for the time being

Tysm!! @whole wave

@quasi berry I managed to install proxmox on my raspberry ^^ thx for your help 😄

https://tenor.com/view/linux-chad-arch-arch-linux-chad-user-gif-21904978

Greetings ppl

I want some help in bypassing ip restrictions

This is not permitted in the check the rules #📜・rules

I can’t pentest?

idk

Hi so now I got proxmox running on my raspberry and I connected my hdd to it with an adapter. Is it now possible to just add the drive to my proxmox interface and split is up for the vms I want to practice on or do I have to do something else? I did mount the hard drive and managed to let it mount automatically.

can anyone help

help me to do an Xec inject

@marble fern

https://github.com/preslavxyz/Web3-Security-Researcher-Roadmap

its web security researcher

Thanks

It's good

Help

@shadow fractal

what is that??

Xec??

I have no idea

It's what the challenge says

what challenge?

Gimme a sec

Wdym by this?

help

other thing

must restore png file

its corrupted

There’s this webpage with locked sites

It’ll only open a form if ip matches

Uhmm and what sort of site would this be?

can anyone help me

what room are you doing send link

its not a room lmao

my friend sent me it

he's a ctf dev so he wanted me to test it

i dmed you

@shell sinew check out my new repository that all i had found to become security researcher, reading is the must skills to develop

https://github.com/AdiSec/Hacking-beginner-to-security-researcher-books

@shadow fractal corrupted png restoration

Tried to use online tools for it?

still attempting

im stuck

99.999% sure its a hexedit thing

Might be the case

can you help?

i can dm you the png if you want

Any guidance? Hints? Or anything added for this png?

And for this imma ask another member for possible tools

@quasi berry Any tools to offer for this member?

ok now im sure its a hexedit thing

100% sure

100?

https://github.com/sherlly/PCRT

yes

100% sure

can i dm you it to see

Hit me up

Will check

done

Can you give more resources for security Researcher I love to see ❤️

Is there anyway I can get access to my gmail that I forgot the password too and don’t have access to my old number

Best to reach out to support for this

can anyone gimme a php injection example

i just need the format to copy

@quasi berry

one that reads file.txt in /home

Thats @minor blade

Oh

Do you have recovery email?

yo can i dm you sm

i need help

with burpsuite

Oh

yo?

can anyone help pls

pleaaaase

okie

i cant send images here

il dm the ss

Just use imgur

Because people spam NSFW

^^^^

hahaha

100 people

Would take quite some time

☠️

Nope

im so confused

from Crypto.Util.number import long_to_bytes, bytes_to_long

# Read encrypted cipher from the file
with open("cipher.enc", "rb") as b:
    cipher = bytes_to_long(b.read())

# Convert the number to encoded string
encoded_str = str(cipher)

# Reverse encoding process
flag_chars = []
for i in range(0, len(encoded_str), 2):
    encoded_char = int(encoded_str[i:i+2])
    # Reverse the bitwise OR and left shift
    original_char = (encoded_char ^ 317) >> 15
    flag_chars.append(chr(original_char))

# Join chars    
flag = ''.join(flag_chars)
print("The flag is:", flag), bytes_to_long

from Crypto.Util.number import *
flag = 'aaaaaa'
def enc(flag):
    return''.join([str((( 51415 & 5 + 314) | ord(t) << 15 )) for t in flag ])   
cipher = long_to_bytes((int(enc(flag))))
with open('cipher.enc', "wb") as b:
    b.write(cipher)
print((51415 & 5 + 314) | ord('t') << 15)

😭

what the hell is this

chatgpt says u encryption function has logic flaws

hi ^^ can someone help me with porxmox. I want to start my vm after I finished the creation wizard but it always give me that error
kvm: cannot set up guest memory 'mach-virt.ram': Cannot allocate memory
TASK ERROR: start failed: QEMU exited with code 1

benny isnt availabe now

https://forum.proxmox.com/threads/cannot-allocate-memory.81501/

try this pls

alright I try thx ^^

oh well
I started learning on tryhackme through my laptop
for ethical hacking but my laptop's battery is dead and so until it's replaced
can I get few other websites which work good on my phone?

other thing

uhh

how do i exploit a website that lets me put anything as a /

…

../../../../etc/passwd ?

what?

dude what???????

I have this problem
I finished all tiers of HTB starting points and now I want to try out PermX machine
and my question is:
How does HTB know I found a flag? Do I have to report it somehow?

nvm, I see now

@covert path that’s Object Oriented Python.

Good job 😎

A 400 bad request error occurs when a browser sends a request to a web server that the server cannot understand or process correctly. This is an HTTP response status code in the 4XX range. HTTP status codes starting with 4XX typically indicate an error on the client side—meaning the issue is on your end.

@normal heart did you maybe have this problem that after connecting to HTB openvpn host is still down?

do you know how to fix it? (machine's restart doesnt help ://)

Yeah do ifconfig and tell me the names of your tunX X will be a number should start with 0 the more tunnels open the more networks

wait, im rebooting

just tun0

oh, reboot fixed it haha

Yay

That would make sense on why it seemed broken

200 is confirmation it worked as intended and 300s are redirects

What should I try first as a ethical hacker and where can I practice my hacking skills any recommendations??

@quasi berry day 78 of asking for help

I need to be able to loud mic

😭

heeellp

PLEASE

😭

Give me a moment y'all 😭

idk what’s happening

I think someone hacked my phone

If someone can dm me so I can send messages I’m getting

Like idk what happened

uh

GUYS

Yeah what's up?

I'm here now

hiiii

wanted to check up on you uwu

hru

also

i may need help in wireshark

💀

@quasi berry

I am good, you?

im doing well

What do you need help with regarding wireshark? 😭

Also do I know you or smth? 😭

bruh

damn that hurt

damn....

im jk

im so lost

how do i examine network traffick

i have a pcap file

I'm so confused rn 😭 You're not @wooden anvil that's all I know 😭

Are you having issue with opening that up in wireshark?

nah

im just a rando

just one that tries to be kind

I'll add you

aww ty

No worries

nah i have it opened but honestly i cant see what im supposed to do

What's the task you've been given?

i havent been given one

the ctf is literrally just the file

and this definition

"Network traffic or data traffic is the amount of data moving across a network at a given point of time."

i have no clue what its supposed to be

on second though actually

https://support.pelco.com/s/article/How-to-Use-Wireshark-to-Measure-Network-Traffic-1538586679539?language=en_US

read the packets

i did theres nothing in them

Youre looking for exposed information sent over a non secure line

nothing important atleast

maybe i missed something

theres gonna be a flag somewhere

hmm

Follow the TCP Stream and check all headers/look for files.

bruh my kali crashed

That is what I recommend starting with

That is also what @quasi berry would recommend too.

Think of the packets like cars, they are moving across a motorway. Aka traffic. What you want to do is look through the packets for any which may have something to do with file transfer, you should be able to right click on that packet and initiate "follow TCP Stream" and in there you should be able to find a file, might be a .txt file or it may be in a header of the packet itself. Which ctf is this for?

ohh

well i'll wait untill this boots then check

can someone please help me

if they can dm

Are you IOS or Android?

Say less

ios

bruh

it was in base64

ty!!!

if someone knows how to help i think i got my phone hacked or smt

Any time :)

uhh

so extremely weird OSINT one

https://support.apple.com/en-gb/guide/personal-safety/ipsb8deced49/web

Shoot

Friend: No problem. I'll just hop on a secure VPN. Me: Can you find her linux user?

flag format : flag{user}

Is this for checking openvpn logs or smth?

idk

Wait, wait wait

this is all that is provided

Are you doing labs on immersive labs or cyberdiscovery or smth because I recognise the style of questions LOL

okay; so track the friend if possible

nah

What are you doing ctf's on? 👀

Did they send the user later on?

no

this is all that it says

Is this all packets?

a website that i paid for

Which one

The name please

no completely different

different ctf

Alright

What is the name of the CTF? @quasi berry might have done it

Just want confirmation

NCSC

user

😭

Okay yeah LOL

One sec

also bennie

(is it ok if i call you that)

Yeah many people call me that, it's fine

did cy send you the corrupted png

No?

oh

@quasi berry is there any other way to loudmic on ios?

Not sure

My crew is gonna start beef with a clan with 5k

So we need help

What help?

I need to be able to loud mic on ios

That sounds like unethical activities

We have the same thoughts on this lmaooo

The goal is to make their mic as loud as possible most likely because they wish to scream into someones ears with an already loud mic...

Right

the only method to get a loud mic

Then No

is to litteraly swallow it

eat it

XDDDD

HRU

Its for a good reason

Just got of work

Forwarded benny with info

caps bot

its unethical

smh

For a good reason

Any more discussion and I will time you out

want to hear a real answer? purchase a 3 dollar mic from wish

those things are CRAZY loud

XD

Does it work for ios