#👥・help-me

#1181325692823150642

you get the roadmap from #1181325692823150642 like @chilly merlin said and then you go vroom vroom!

No petrol

Not starting

@chilly merlin thanks sir

Hmm

hello, there is a tool that I want to use temporarily but it's not from a reputable source and I'm totally ignorant on how to check its legitimacy. would anyone be so kind as to help me out?

tysm for ur help im just not home rn
when im back I'll text here and try again

No worriessss :)

Idk why your msg got deleted but I saw it @proper ruin

I said thank u again but deleted bcs i thought u were sleeping

Nah I'm not sleeping, and you don't need to delete your msg either way so don't worry about that

someone help me...
my problem:
I did this echo [MSFVENOM OUTPUT] > autoscript.sh so I can exploit Crontab and get remote access to shell as root (cron is set to refresh autoscript every 5 min) but after waiting 5 min nth's happening...

never mind, im just stupid -- forgot about the " " 😭

Anyone happen to have a ROHAN antenna tower?

nah, still not working -- gave up

Can someone help me get my email address for my account (not discord). I am not asking for you to hack into an account I can send proof that i had ownership to the account.

Can't you get it

No I entered the email in wrong so I can’t reset the password

. Static NAT

• Description: transfer private IP to Public IP.
• Example: Private IP 192.168.1.10 is always mapped to Public IP 203.0.113.10.

does anyone knows why always mapped to Public IP 203.0.113.10.

hey guys

Hello

how u doing buddy

i need some help if u dont mind

Ok

with?

Okay so basically this HTB web fuzzing vhost question is getting on my nerve

Here is the question :
Using GoBuster against the target system to fuzz for vhosts using the common.txt wordlist, which vhost starts with the prefix "web-"? Respond with the full vhost, eg web-123.inlanefreight.htb.

Here is my input :
gobuster vhost -u http://94.237.59.63:49466 -w /usr/share/seclists/Discovery/Web-Content/common.txt | grep web-

Here is the output:
gobuster vhost -u http://94.237.59.63:49466 -w /usr/share/seclists/Discovery/Web-Content/common.txt | grep web-
Progress: 4734 / 4735 (99.98%)

it finds nothing

Where are you mimi

halppp

does it output something without grep

a lot of stuff

just put it in quotes then

"web-"

i tried with verbose mode └─$ gobuster vhost -u http://94.237.59.63:49466 -w /usr/share/seclists/Discovery/Web-Content/common.txt -v | grep web-
Missed: web-console Status: 404 [Size: 153]
Missed: web-beans Status: 404 [Size: 153]
Missed: web-inf Status: 404 [Size: 153]
Progress: 4734 / 4735 (99.98%)

@unborn zealot try using feroxbuster instead

did that too

cz apparently gobuster is funky w vhost

💀

i am stuck at this 😭

do u want me to stream ?

https://github.com/OJ/gobuster/issues/489

hm]

feroxbuster -u http://94.237.59.63:49466 -w /usr/share/seclists/Discovery/DNS/common.txt -H "Host: web-FUZZ.94.237.59.63" -t 10 --timeout 10s

this ?

wait

--append-domain

feroxbuster -u http://94.237.59.63:49466 -w /usr/share/seclists/Discovery/Web-Discovery/common.txt -H "Host: web-FUZZ.94.237.59.63" -t 10 --timeout 10s --append-domain | grep web-

add this at the end of ur gobuster command

tried that too 💀

fym

i have tried several input for gobuster

did u edit ur etc/hosts

uh

no 💀

💀

https://www.reddit.com/r/tryhackme/comments/10zvz4m/web_enumeration_task_6_subdomain_enumeration/

iah

ah

have fun

thanks

use it in a virtual machinee 🙂

is autoscript running with root privileges?

yep

well it’s a static nat so translation will always happen on one static ip. the network admin can also configure this for each device within the network

i did it thanks for the help used ffuf instead

it’s just 4k entries so you can manually search if the common.txt you have has a vhost starting with “web-“ or not 🙂 if it does, it’s much likely a problem with gobuster

yeps mimi , how are you btw

make sure the msf payload is correct then. might be stager issues

ffuf just better hehe

will try, no im doing another thing

but thanks

❤️

hiii i’m okii. travelling to work wbyy

okii 💜

if i wouldve gone with this strat it wouldve taken me 10 secs or less 😭
cat /usr/share/seclists/Discovery/Web-Content/common.txt | grep web-
web-beans
web-console
web-inf
mimi pro for a reason

i have 1-2 weeks off so giving htb and thm my best

hehe yesss
save timee 💜 but the tool was recommended so you can get an idea of how it worked with larger wordlists. still gobuster is wack sometimes so just use ffuf for anything fuzzing. it’s superrrr fast

yeps and ferox too

yayy nicee

never used ferox but if it worked, that’s amazingg

yeps u should give it a try

who pinged me

i got 2 pings

i willl

i did 1 got muted

lolll

cuz caps

rip

ohhh

hryy windows man

windows/linux

i recently got into windows around june-july

i know you from windows so you’re a windows man for me hehe

okie >w>

Hmm

hryyy thoo

reddd

🙋‍♂️

Jus checking on server

it won't harm my software?

it won't

It will only run on VM -- Virtual Machine

but it's the same network

and i have zero expertise on these matters

i wonder if there is a specific approach to ctf and how people resolve them

Hey 10 request per second i can create 1000's of POST request is this considered a bug

And 429 was not hit

Depends... did it impact the target at all, regarding stability or integrity?

Really need more context on what the POST requests are actually doing

Yes i was able to create 1000 of recipients in a website

1000 recipients, as in what, like subscriptions to a mailing list or something?

For payments like i can pay them

In site

I can add recipient and then i can send money so there is no rate limiting in adding recipient

helloo

i need help gys

anybody here !

Hello! I want to get started in cybersecurity and to start I should learn Linux so I plan to use it in a VirtualBox.
but my question is: What Distribution should I use?

I've been looking at some but there are so many and I don't know how they are different. 😅

Well I'd suggest starting with something like Kali Linux or parrot os since they already have a bunch of security related programs already installed.... Get familiar with how to navigate in the terminal... Once you feel comfortable enough try another distro... Really the distro you will want to use is up to what you prefer...

Thank you very much

@upbeat veldt gimme some topics that i need to master in web hacking like ssrf and xss like there some important vulns right.can u gimme a list thank you

go over owasp top10

those are the the more notable ones

Can someone please help me. I was told by a friend that the people here are able to dig up very "specific" documents. If this is true and you are able to find documents that others might not be able to find so easily (they are hidden), then please message me. I don't know enough about hacking to know how to go about doing such actions myself which is why I would like help from someone else.

if they are hidden, they are probably hidden for a reason, at this point it is unethical activity

They are hidden for a reason

I'll let u handle this jancis

this is not the place to ask this type of question, please read the #📜・rules and lets move on from this question

thanks

❤️

I was following this guide
#1181325692823150642 message
but I have some problem with the proxy (i think) because I couldn't open http://burpsuite or http://<ip>:8080 from my phone's browser
any suggestions as to what might be causing this?
after setting up the burp suite proxy listeners to *:8080 (all interfaces) and enabling the proxy from my phone wifi settings, all that happened was that my phone didn't have internet

1. Network: Ensure your phone and Burp Suite are on the same Wi-Fi, and the correct IP and port are set in proxy settings.

2. Burp Listener: Confirm Burp is listening on all interfaces (*:8080).

3. Firewall: Allow port 8080 through your firewall.

4. Certificate: Install Burp's CA certificate on your phone for HTTPS traffic.

5. Network Isolation: Disable Wi-Fi client isolation if enabled.

6. Logs: Check Burp Suite and phone logs for errors.

If issues persist, check connectivity with a network tool or by pinging the Burp Suite IP.

@quasi berry

Only thing I havent done here is install the CA cert, because the guide said I have to get it through http://burpsuite or basically through the proxy itself, which didn't work

It might be "wifi client isolation" because im on a hotel wifi and i dont have access to it's settings obviously

I could try admin:admin on it's login page but thats next level haha

So, what is the impact of being able to add many recipients?

Is there any? If there is no impact on the stability of the target from mass adding recipients, and no degradation of service, would you consider that a vulnerability?

I would go over portswigger labs, especially server side vulns I think those hold more weight as in impact... Xss is good but could have low impact depending on what the company classifies as important... But xss chained with other bugs could increase impact... For some beginner bugs to hunt for I'd suggest xss idors broken access, API testing, file uploads,

I would try looking into race conditions maybe you could pay 2 ppl at the same time... So say you have 500 in an account and you sent 500 to account 1 and 500 to account 2 at the same time... Maybe they both go through before the 500 is withdrawn from original account... 🤷🏼‍♂️

i did it!!
i made a hotspot from my pc and then followed all the steps again and now it worked

now some sites work and some dont

but the one that i want, doesnt work

i get this error

[4] The client failed to negotiate a TLS connection to somesite:443: Received fatal alert: certificate_unknown

I do have a certificate installed, and i double checked

The error means the client couldn't establish a secure connection to the server due to an unrecognized certificate. This could happen if the server's certificate is self-signed, expired, or improperly configured. Check the certificate details, ensure the server has the correct certificates installed, and make sure the client trusts the Certificate Authority (CA) or has up-to-date CA certificates.

what does this mean

i have the correct ca cert installed on my phone. what else should i do?

https://cdn.discordapp.com/attachments/1267664851224756246/1275863786397630528/image.png?ex=66c7703f&is=66c61ebf&hm=1a97514da41294cd7270b9f7e1fde0447d8db93aae819311d77e9bca1c7be318&

trust that certificate to be used for both http and https connections 🙂 you might get that option

Idk if you have the setting for "also use this proxy for HTTPS" but make sure that is off

omggg telepathy

I dont think i have that option

🤣 Yeah lately I've been on the same brain wave with people, including Sudo

its cool you all thought of the same thing lol

What options do you see?

do you have a rooted phone? it’s easier that way. if you have installed a user space certificate, it won’t work. you’ll need to install it in the root space using adb

just
host, port, 'bypass for', ip type (dhcp, static)

and no sadly i dont have a rooted phone :(

it won’t work as intended. chrome runs its own sandbox where it restricts proxies for intercepting requests for certain protocols

its an app

not google

if you had a rooted device a root cert will help override those restrictions

the chrome app if i’m not wrong. or any browser nonetheless

most browsers have sandboxes

except for firefox and some other

i think firefox does too now

actually chrome is being intercepted just fine

i even opened the website version of the app im trying to intercept and it worked

but the app gives me cert unknown error

my main goal is to see which requests are being sent in some feature, could androiddump achive that?

it’s because it cannot recognize the certificate for that protocol or it doesn’t trust it to redirect requests for that protocol

not too sure about androiddump. maybe phone wizzies can help in this 🙂

oo whats that?

noo i mean the people in here who operated androiddump before loll

where can i send pics? 🥲

Psssst: Use imgur

#  Certificate Pinning
Some applications employ Certificate Pinning to prevent man-in-the-middle attacks. This means that mitmproxy’s certificates will not be accepted by these applications without modifying them. If the contents of these connections are not important, it is recommended to use the ignore_hosts feature to prevent mitmproxy from intercepting traffic to these specific domains. If you want to intercept the pinned connections, you need to patch the application manually. For Android and (jailbroken) iOS devices, various tools exist to accomplish this:

apk-mitm is a CLI application that automatically removes certificate pinning from Android APK files.

do u think this might be it?

@fickle mauve I have a question for you as it appears you could probably answer best. I’m looking to pivot in to a pentest career. I’ve been a security engineer for the past 4 years but, unfortunately, really been pigeon holes in to Compliance/GRC. I definitely need to get skilled with the concept of penetration testing as a whole. I have some experience but, very beginner. I don’t know if I should maybe go with HT.B Academy or THM?? There is just so much information overload. What are your thoughts if you wouldn’t mind sharing?

@gloomy arch you here?

?

Where can I fill out a ticket?

#📩┃ticket

I can't get in

Just ping tickets channel

And u will get in

It doesn't even show I'm my channels.

Then u arent following the channel category

Go to channels settings on this server

Find tickets channel and follow the category

I follow all categories. It isn't there 😕

I can't see too

@minor blade

Can i just tell you my complaint instead of filling out a ticket

dm me it

i need help running httpx on a txt file

cat main.txt | sudo httpx > other.txt

says its missing an URL argument

Any free cybersecurity courses with certifications???

while it doesnt really count as a certificate, i can really just suggest cisco skills for all

one of my favourite free courses

they do provide digital badges

Certs won't matter skills do. You can have oscp and still be an idiot no offense

Are you using the right httpx... I know there are two different httpx's one is from project discovery (most likely the one you are trying to use)... You may have to create an alias pointing to project discovery's httpx

You could just do httpx -h and see which one is running when you type httpx

Is comptia itf+ cert useless?

Hi Hackers! I'm trying to Install Konica Minolta Bizhub C280 printer driver via the USB but it's not working.

I've used those printers before, sometimes you have to use a specialty driver instead if you're not using it over the network.

Try the universal printer driver instead of the normal driver.

question, what makes me a hacker? Might not seem like this but i've been doing like computer hacking and computer stuff for a while like just over 2 years now. I've learned a lot and ik how to hack but do have some problems like malware development

there is no "useless" cert, each has its own value

Okay. I'll try that.

Thank you.

do you think you would call yourself that with the experience you have? there is no exact definition that makes you a hacker, but if you have the drive to learn and to excel, overcome obstacles with your knowledge then i would call you that

@chilly merlin I tried your recommendations. It worked. Thank you so much, Bro.

No problem.

I've worked in IT and as a programmer for over 25+ years, I've seen everything.

Hi, I'm currently working as an IT Support Engineer and have been in the field for almost two years. I'm looking for ways to advance my career, particularly into cybersecurity. It seems like certifications are the main path to move up…do they really make a difference? Has anyone else struggled to transition out of support roles? Feel like it’s hard or maybe I just don’t know enough

Certifications are neat and all, but they're a dime a dozen these days. The best way to learn is experience and practicing.

I’ve considered that too. When I get an interview, should I mention that I’ve done a few CTFs and labs, and just share what I know?? Lol. I’m thinking the next step might be to aim for an analyst role, where they could potentially pay for the certifications they want me to have

In my experience, companies care more about what you can do. Skill speak volumes, especially when demonstratable.

I started a new job this week at oracle, but my last job was a red team job and I had a 100% success rate with clients.

Anyone can study and get a cert, especially these days, but practice makes perfect and with virtualization there are a plethora of ways to practice attacks safely.

That's true, but I think times have changed and a CERT cert ainly (chuckle). It's fair to say get experience when you've already had it, and thankfully the self-driven learning platforms out there regarding security and other fields have improved so much since you and I started in the field Heretic. Certifications can open doors some times, but honestly I'm probably on the same page as Heretic, as all my jobs have come from crafting my CV, researching the company, building my skills under my own steam and by being honest and humble during interviews.

Companies love a new employee that they see has potential to grow from a junior / mid in to a senior through experience within the company.

But.. I do think things for hiring fresh and getting that first step on the ladder is much more difficult now

When I say crafting your CV.. I don't mean bullshitting, but crafting it to present your skills to match as closely and as to show the most benefit you could provide to the company you are applying to.

Yeah, having your CV be an honest and accurate representation is the best policy.

Also.. saying "I don't know" during an interview instead of stumbling to think of an answer is OK

Because people will have you demonstrate/prove most things that you claim at some point, programming jobs especially will make you take a test to see how well you code.

Nobody wants a bullshitter 😉

Yep.

Smart people also understand what they don't know, and they're not afraid to admit or acknowledge it.

My last interview, that happened. I apparently knew the answer, I just couldn't understand the question due to the dudes very thick Spanish accent lol

but.. yeah.. always take an opportunity to learn

I guess so. It’s hard to have separate time from work and then doing labs. it’s chaotic sometimes I’m so busy throughout my day I barley have time to practice. plus I’m kinda young I was lucky that someone recommended me this place and I didn’t really have an interview so stepping out and actually doing an interview and not being an “expert” seems like I’m not ready just yet until I have something to prove like a cert

Miss all the shots you don't take

Worse.. they say no.. possibly give you feedback

..but you never know

We've had people get jobs purely on experience playing HTB as their background

Not just jobs at HTB, but jobs in the field

Still find that pretty amazing when I hear that feedback

Lol isn’t that like the best of the best tho, it would be awesome to do that for a living tho but I bet a TON of people are competing for a position like that

Oh I misread this I thought you meant htb was hiring just from playing in their labs

No no 🙂 I mean, yes we do sometimes hire from the community when they apply, but I meant people getting jobs in the field, just from having lab experience in HTB

np

Thank you guys. I’m still gonna shoot for certs since I guess it can’t hurt me but focus more on labs hopefully that’ll help in the interview

Just so sick of support

@chilly merlin I'm just a beginner. Thank you once again.

Something to give you hope.. someone in the community was in support at a company, grew their skills, used HTB.. they now have a position in security at a fortune 500 company

Won't name names of course, as it's not my place to say, but keep working at it, keep growing, keep the passion and keep putting yourself out there for positions. You never know when you'll get a bite and a foot in the door.

Just a disclaimer, I do not know the persons full background, just what I've seen.

That's some wisdom right there

thx man

I would call myself that cuz of experience and the hunger and drive for this. I want to be the best I can tbh

Who needs help

Can help with network, Linux.

Windows I don't mess with because it's just that bad however I can help with anything else

Hello All! Has anyone run across an AV that may rename malware files or report malware as a naming convention of "VirusName.possibleinfection.BAK"

I have scoured the internet for naming conventions from AVs and even looked at some of the names of the files.

There is no infection but it looks like there was remnants of an infection that had happened and was cleared by an AV.

I personally do not use anti virus

However the .bak may be a backup? Unsure how windows extensions are

Maybe the program didn't have a name for the virus ?

If you click on some files where it is located it includes some excel files obviously empty under XLSTART. Which there is a virus back in 2007 that is related to XLSTART. But regardless I found this and I am lost in the sauce trying to find more information on it because it sounds fun!

https://answers.microsoft.com/en-us/msoffice/forum/all/xlstart-issue/c1361356-3d7f-44a7-a01b-66d28bf8cdc1

Hey guys I need some help. A scammer sent me a threat email and has my phone number. What would be the best course of action? I thought I'd ask here since its a cybersecurity server. I can't figure out how the hacker got both my email and phone number though

I already did a complete scan of my phone and pc and there's no evidence of any viruses... luckily the email was a burner email so thats whatever... but how do i protect myself should the hacker want to perform a sim swap?

Inform the authorities, your mobile provider, and then ignore them.

Ensure your provider knows that your SIM should not be transferred under any circumstances unless you request it with two gov forms of ID in person.

do you think locking the sim card is a good alternative?

If that's something your provider can do, but AFAIK the phone stores / clerks have proven the weak point, not paying attention to notes on the account etc.

Anyway, give your provider a call, see what they can do to prevent your SIM from being reproduced, or as you say, locking it.

alright I'll give them a call in the morning

I think that may settle it then. HTB sounds like the route I should go instead of THM. I have a decent bit of experience so maybe HTB won’t seem so out of reach.

can someone help me its an easy problem just need someone to help in vc for like 2 mins

can't hop in vc now

but tell me what's the issue

i'll try and help

found the issue i need to upload file to github and then post in the betterdiscord website to make the code work

okay

thought i could just drop the script in better discord

@chilly merlin Good day, Uncle. Please could you add me as a friend, Sir.

@sly spire i wnat to know if there is a way to message our own account like whatsapp

in here

i need this real bad

Call your phone company and change your info

i need to learn hacking, who's gonna teach me??

Go to #1181325692823150642 . You can find a road map and start from there

.

What is it and where is it from

can i post links here

Don't do it here. Dm me the link

ok

anyone got try hack me premium?

you can create a server and be the only member in it

and sent messages and create channels

just for yourself

Hmm good one

Probably..

If nobody does, they're in trouble

i want to give an html button a background image so i typed this in my css stylesheet but the image is still not appearing on the button is there something wrong in the following

.ytb{
width: 300px;
height: 50px;
background-image: url();
background-size:contain;
background-position: center;
}

does the url() has the path to the images?

i'm cooked then 💀

does it have to be on my device or can i just post url of online image?

it can be an online images

yeah i copied and pasted the url as it is

oh wait im dumb i put the source website url instead of actual image

sorry

np man

thanks tho

Hey guys.
Can anyone help me with apps on where to learn coding/programming languages

depends what language you want to learn 🙂

does anyone know the best code language to learn for cybersecurity?

start from c 💜

alr perfect thanks

Hi have a JS website but it keeps saying it Cannot run. Missing files. What do I do? It was created back on windows 10

which files

What is the best thing to do if you want to start learning anything to do with coding/hacking?

@chilly merlin do we have a roadmap??

I dont know what you mean by that.

Yea #1181325692823150642

👉👈

which one would you recommend

tyyy

umm need to check waitt

heey there guys

im in a bit of trouble

same

idl what to do

can somone help

What's the matter

i want to format an sd card but it is in read only mode

Hmm elaborate

I'll get back to u wait

🙂 cool

can u dm me

No state here

k

https://youtu.be/uPSLwj0JEJI?feature=shared

correct thats the same problem

Alr

time to deal with u

State your prob

@chrome wing

What is the best thing to do if you want to start learning anything to do with coding/hacking?

Coding or hacking?

both

Start with python

Learn Linux and networking

And beginner tools

i do know a very small amout of python so i guess thats a start

Nmap

what is Nmap?

Guess I'll take a leave

Use google

ok

Jobs done imma go

waite

its not working

?

i did everything said in the video

Hmm?

then aslo it didnt work

??

https://www.stellarinfo.com/blog/sd-card-showing-read-only/

not working dude

😭

Hmm

My phn at 2%

😭

Advice: buy a new one

🫠

dude its a 256gb sd card

cant let it go like that

U wanna format it

yeah

totally

..

https://youtu.be/Og1BUFoxU-8?feature=shared

bro

u indian

Hmm

No

https://youtu.be/PDf10FOzk3w?feature=shared

have u ever heard about the byjus study app

Yea

i have got that sd card from byjus kit

and its of no use rn so i thounght about formatting it and use it

Hmm

so how do i do it

.

Dunno

anyone else ?

Hmm

Uhm.....
C
C+
Phyton
HTML
JS

Why not alll

Okay sure.
Do you know any app or apps?

W3 schools

Or bro code yt

All of it right

It's a website

Or tutorial points

So I could try the both of them

i have a school laptop which is ofc locked is there any way i could unlock admin priveleges or wipe the drive and install linux on it ?

i know i can't acces the boot loader so the motherboard is soft locked ig

Yea

Kk
Thanks

Anyone to help me on how to hack telegram channel? #👥・help-me

We de no do unethical stuff here

Refer to #📜・rules

Just testing

No we do not

As i stated earlier

Thanks sorry for any inconvenience tho

Np

Someone hacked my social media accounts. I was able to recover them somehow but i still have my instagram attached to facebook, and my main facebook attached to my hacked email. How can / should i recover my social media accounts? Gmail recovery doesn’t work

Change your passwords

View loggin devices

Was able to do that trough OTP. But unable to disconnect it from facebook account centre which is linked to compromise gmail

:

1. Secure Your Hacked Email Account

• Password Reset: Try resetting the password of your email account (even if Gmail recovery isn’t working, attempt other methods like answering security questions or using recovery phone numbers).
• Check for Backdoor Access: Review the security settings in your email account for unauthorized access points, such as added recovery emails or phone numbers, and remove them.

2. Unlink Compromised Email from Facebook

• Login and Change Email: Log into your Facebook account (if you can still access it). Go to Settings > Account Settings > General > Email. Add a new email address that you control and set it as your primary email, then remove the compromised email.
• Facebook Support: If you cannot access Facebook, use Facebook’s account recovery options by visiting the Facebook Account Recovery page and reporting that your account was hacked.

3. Secure Your Instagram Account

• Login and Disconnect Facebook: If you can access your Instagram account, go to Settings > Account > Linked Accounts and unlink Facebook. Ensure you have a strong, unique password for Instagram.
• Account Recovery via Instagram: If you cannot log in, use Instagram's account recovery process. Go to the Instagram login page, select "Forgot Password?", and follow the prompts. You can request recovery using your phone number or a different email address if your Facebook link doesn’t work.

4. Enable Two-Factor Authentication (2FA)

• Enable 2FA on All Accounts: Once you regain access, enable two-factor authentication for all your social media and email accounts. This adds an extra layer of security and helps prevent future breach

httpx-toolkit

im also having a hard time trying to install subzy i did the go install but the command doesnt work

I want to try myself in programming and cybersecurity. can you tell me what resources I can study what I should start learning (I don't know anything)

Bro code yt python

what videos can you recommend?

That's a yt video on python

Bro code channel name

Oh thx

Ahhh so you installed it via apt. Looks like the same httpx as https://github.com/projectdiscovery/httpx .. did you manage to get it working... My next thought would be to make sure your main.txt is correct. As far a subzy I haven't used that one but I have used subjack which is basically the same thing but looks like subzy is more up to date.... What go version are you using?

Hi, sorry I couldn't get to this sooner. Four years as a security engineer is impressive and shows you definitely have a strong learning mindset! So, you're looking to transition into penetration testing. I'd recommend starting with TryHackMe to build a solid foundation since it’s beginner friendly. With your experience and determination to learn, I'm sure you'll fly through TryHackMe with ease! Once you start feeling comfortable, you can slowly transition into Hack The Box. By slowly, I mean trying out some of the easier challenges on Hack The Box while continuing to learn through TryHackMe I’d also suggest exploring and diving deeper into what you’re learning especially the basics like how protocols work though I’m sure you’re already familiar with that! Consider looking into INE certifications. With your experience certifications like the eJPT or eCPPT could help you get your foot in the door of corporate pentesting roles. After putting in the work and earning a certification like the eJPT I bet you'll catch the eye of potential employers I haven't pursued penetration testing as a full time career. I’ve used it more as a tool to help with my job and as a hobby. So take my advice with a grain of salt. However I believe this approach could help you. I'm sure others with more penetration testing experience will chime in and offer additional insights or correct any misconceptions I might have. But with your ambition to learn, I’m confident you’ll succeed! Also I have a question !!!!! 🙋‍♂️ What made you get into cybersecurity, and how did you start? Or what drove you to chase after this path? For me I was more into the bad stuff like DDoSing, backdoors, and malware development. Then one night, I woke up and thought, Imagine if I had a career where I could work with computers, the thing I love. What if I tried learning and applying myself to work hard?' That's what got me on this path. With out this job I would probably be in the streets.

not the best server to ask but no idea wherever else

im using a cat 5e ethernet cable which as you know cat 5e cables support 1gb connection (I think) but when I go to my network connections its limited to 100mbps

its recieving 1.1gb of connection which of that I get aroumd 700mb but its limited to only letting me use 100

Im using an ethernet cable that supports 10x the 100

🤨

Last time I knew this server it was a bunch of skids from a certain com

Does your ethernet port support 1gb? and do you have metered connection assuming you're on Windows set causing the limitations?

Wtf did he jus say

We're not from any com

I hate com kids with a passion

yeah same but there was before

yes my ethernet port is /1000

which is a gv

gb

Better to mind your language. You are here for help . Thank you

im just saying, im a open person I just say what I say yk

Everybody knows this server was once a jackpot for com kids thinking they could acomplish something

and as I said before

I have no idea what it is now

Are you old member?

I was here a while ago yeah

Account got termed :p

Although some youngsters or skids destroyed the server in the past, it is presently being developed.

yeah I see that

Hmm

Thats why I came here for the help xd

I came after that incident

I assume

How we can help?

That's true

Hm i dont know its a weird issue you see

Real?

very much so

That baf

Alright, tell how we can help

Yeah

I can't believe it cy and ben there then

?

ok so I explained earlier that im using an ethernet cable that allows up to a 1gb connection my ethernet port supports 1gb also

im receving 1100 mb

Nah they were not old members

which 1000 should be of use

but its limited at 100

Hmm new i see

which would be acceptable if I was using a ethernetcable only supporting 100mb

Better to ask chatgpt

not a bad idea 😭

Ai hehe

Its probaly gonna say some bullshit but lets see

I dunno why peeps don't use google and chatgpt

I mostly use it

it says to ensure im using a cat5e cable

which I told it I am

CAT5e and CAT6 cables support 1 Gbps speeds or higher.

I am one of them

this was only limited today when I got my new router

but the router is picking up like 1600 mbps

Hmm

So that's why b the server rules are tighter

Yeah

most the people that where here before

The roles and all

kinda moved on

Why

including the community that tried overrun the server

it died

@chilly trail I guess the problem is your router not supporting the Ethernet

like everyother half assed com

Hmm i dunno when i joined the server it was temporary disabled

I even had a guy at my house say it will work perfectly fine now im thinking he said that so he could elave early

Tbh the server is one of the best now

The guy was wrong 🤷‍♂️

Here comes networking expert

Dope peeps dope owner

I like no nothing about ethernet cables but there is like something that can happen where the pins are loose or something

might just buy a new one

if not I think the company that was out that provide this connection should be able to fix it

because having 1600mbps wifi that I cant use 💀

Could potentially be the cause of the poor signal strength.

I have the app on my phone which at one point that was the issue (was getting 60mbps)

So I moved it into the hallway

and it said strong connection

Im sure I will figure it out

tho

thanks for like helping me still put a further understanding on what the problem might be

I got you the problem is poor signal

Use a range extender

have one

Thats what the guy was putting in today

Done putting?

yeah he finished it

well half way and told me what to do

as he had somewhere to go

which I done and it was fine

Now hope better signal

yeah mabye it will take its time to catch up

atleast I got like 700 mbps on my phone which is

amazing

It takes time

I had to get a new phone as my old was limited to 65

im too outdated 🤣

Sometimes problem is your phones internal poor WiFi chipset

that was the problem thats why I changed my phone

and got a instant boost

Got my parents the same internet and they are getting pretty high speeds in a rural area iswell

theres is the non fibre version

as they dont need anything too crazy

Bro changed everything thing for a good internet signal 💀

yeah

Not expected

I cant with bad signal

Fr

its frustrating

I had 0.9 2 years ago

and have put like thousands into being up to date

as soon as I can get the 1gb connection I wont complain no more

Because they have no real skills, just ego

any chance some can help me setup vmware back up

or setup my python

Wdym setup Python

Go to "Control Panel" then "Network and Sharing Center" then "Change adapter settings" right click your ethernet connection and select properties. Click "configure" next to your network adapter go to the "advanced" tab, find "Speed & Duplex" and change it to "1.0 Gbps Full Duplex".

if going to feel rly stupid but whats wrong with this code

x = 2
print(x == 2)

i got it off a online corse and i coppyed it and i should print true but it doesnt

?

Am i just rly dumb

nvm for some reason it works now

Hey idk if this a stupid question but i have been trying for hours to install kali on my 64gb flash drive using the iso and rufus. after doing so idk what happened and my flash drive is now not working and when it does come up it says it has 1.4gb out of 5.6gb of free space. i wanna know is there a way i can just install kali on my laptop as a os itself instead of windows? so when i boot it up it would be linux instead of windows?

Plug your USB in, then use diskclean to wipe the USB, use disk manager to create the parititon again and stuff then use balena etcher for flashing kali to the USB

Im so confuzzeled about funtions in python

like what is the point of them and how do they work

Someone help me 😦

Wdym how does a function work? So basically you can do a for loop but put that inside of def _loop and that would turn that into a function so later on you could call that loop for whatever purpose. Here is a lovely resource: https://www.freecodecamp.org/news/functions-in-python-a-beginners-guide/

Thank you 🙂

Like any other language with dynamic typed language

Basically to make parts of code reusable

Think of it like why would you use for loop

You have functions irl too

Like a bunch of instructions under a single name and requirements

For cutting wood

def cut_wood(wood, length):
    selected_wood = wood
    marked_length = measure_length(selected_wood, length)
    mark_cutting_line(selected_wood, marked_length)
    saw = choose_saw(selected_wood)
    secure_wood(selected_wood)
    align_saw(saw, marked_length)
    start_sawing(saw, selected_wood, marked_length)
    maintain_steady_motion(saw)
    stop_sawing(saw)
    inspect_cut(selected_wood)
    store_saw(saw)
    clean_up()

    return "Wood cutting complete"

def func(a, b):
c = a + b
return c

print(func(1, 3)) # prints 4

its not hard

func = lambda a, b: a + b
print(func(1, 3))  # prints 4

fack lambda

Lambda >>>>

Have you tried the ethernet cale on another device?

Anyway to get a background report on someone without paying on those fake websites?

You can't call them fake if you haven't tried using them.

ahmmm anyone help about garuda linux I wanna switch os

I do have usb 16 gb

anyone wanna guide me

windows 10 is an old device of mine it doesnt updatee

https://youtu.be/smre_kSpcnc?feature=shared

I watch a tutorial it says it need two usbs is that true?

I wanna download garuda os for gaming and protect me

@frigid trail

all I have is 16gb sandisk usb

anyone guide me garuda

Im confused

@frigid trail can help you. I believe he has it installed on his computer

okay man thank you

Yeah but you are gonna have to wait if you need his help. He normally gets on like in 4 hours from now

@frigid trail help me brother

I saw garuda how many launchers are there wow

it also has everything emulators damns

whatt 4 hours welp I habe nothing much to do yeahh

Isn't like any other installation? Writing an ISO file to a flash drive

I dunno i saw in youtube I need to download a usb installation then download the garuda

but i doonnno to set it up

Im still confused in the tutorial

My advice: Wait for Ivan to come online

got it brother and thank you

So you chosen garuda?

@quasi dune

yess

I saw a lot of emulators and stuff

Alright

Shall we begin installation process?

so can you guide me brother

yes

LETS GOO

Ok cool

Are you on pc?

rn yess

on my pc right now

and my windows 10 says update but its not working

Leave windows now

got it

Backup your data

Like important stuff

i dont habe any data I reset everything

this is fresh installation of windows

Alr Go to https://garuda.org/downloads

And

what to do next

Select gaming edition iso

And download it

wait still loading

Alright

it says problem loading page

Hmm

Go to this one https://garuda.org

Then

Select download

Then download kde dragonized gaming edition

Iso

Is it suitable for Low end laptops?

it take so slow i dunno why\

I see youtube yess you just need 30 gb

If you don't have a stable Internet connection. You will not be able to perform the installation

Yeah

whyy problem loading pag

Not a good internet

It's garudalinux.org

Im using firefox rn

Hold a sec

Here https://garudalinux.org/downloads

still not done

is there any video

@quasi dune

https://downloads.sourceforge.net/project/garuda-linux/garuda/dr460nized/240428/garuda-dr460nized-linux-zen-240428.iso?ts=gAAAAABmydNjYLXVHKme_4dVkP8A2KtfBw-ek34RyRNRs2snHdEL5zcl0p0YsM7ZVP3ICbZpUcY_yc6fYPoILhQb6VyBgC8iDw%3D%3D&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fgaruda-linux%2Ffiles%2Fgaruda%2Fdr460nized%2F240428%2Fgaruda-dr460nized-linux-zen-240428.iso%2Fdownload

Direct link for iso

wait about the usb

@frigid trail

its now downloading

First download iso

got it

Alright

@quasi dune why dont u stream and ivan will guide u

@quasi dune do you know balena etcher?

ohh where

noo

it takes a long time to download

wow

Damn. This is gonna be a long installation @frigid trail

exactly same probs hahahah

ahh guys whos Imnotsuspicious

@quasi dune

https://github.com/balena-io/etcher/releases/download/v1.19.21/balenaEtcher-1.19.21.Setup.exe

Download this software

Yeah

As he is beginner so going step by step is good

do you know this guy @chilly merlin @frigid trail

Is he aslo messaging you? Don't answer him. He's gonna ask for help and then distribute you gay porn. I've fallen for this 3 twice

yes adding me rn

Don't accept

Don't accept damn

He will ask you about his pixel 8a phone

Yeah.

damnnn that guy really is suspicious lmao

Gotta ban him

It's his 3rd account. He just keeps coming back for the same victims

Which ones

Were the first ones?

@chilly merlin

@frigid trail Hold up

I banned him

iamnotsuspicious is suspicious

lmaooo

Alex guy

exactly the point lmao

i know

come out lets play

i wanna have fun

that guy should be teach a lesson yah know

@frigid trail banned him?

He deleted his previous accounts

maaaaaaaaaaaaan he left

You remember even a single one? Or did you text staff?\

or banned

garuda is taking me days to download 😦

lmao internet

good day

oh sorry good days

@chilly merlin

@frigid trail done downloading balena

now for the garuda

I guess need to sleep the download takes many hours sheesh 30gb

but its all worth it fuufuffufu

Cool

Here
iamnotsuspicious_
samirkhadiri8df

Yeah

@shadow fractal

Thank you

maaaaaaaaaaaaaaaaaaaaaaan

Brb

He'll just make new accounts. It'd useless banning him

alex need to pick some good looking accounts those names are sus from start

mannn it takes so long to download

It's your download speed.

yeah ph has one of the countrie slowest internet

we have corrupted country here lmao

Which country?

Your are gonna suffer installing packages after installation.

ph

I'm pretty sure it's in Africa

Phillipines

?

NOO lmaoo

phillppines

Ayyyy ayyyy

yeahhh

Damm ...

Hmmm

Africa poor

Lnaooo

I heard africa is richer now new cuurenc

dollar is goona go down

Philippines is good

you guys heard the news

Thats what the headlines show. But it's all the same here

Lovely women

I see

Hold on

Who is Africa

I mean live

yeah yeah you should visit here bro your dollar is worth it here you can be rich with just thousand dollars

Who lives in Africa?

plus living luxxery here with 500 dollars is a lot here

Yea

like rich rich I mean littreally

@quasi dune done downloading?

not yet bro

I only know me and Alicorn in this server.

@chilly merlin where is the serhane guy?

What's your download speed

Sehane is alicorn

Maybe busy

i dunno

Im not american

wait let me see

Wait he become alicorn

Long ago

ohh what are you bro I mean what country

Ah

Ind

india??

mah mann

asia is the best

You are full of surprises red.

thats why his username is red

Yea

Why

brotherr lets gooo

How does /work in #🦉・ranks work?

306.93 bro this is my download speed

Work gives you points after a while

Its a diff ranking system

That's hoe much you've downloaded . What's is the download speed (in Kb/s or Mb/s)

wait i send thru dm

@quasi dune done downloading?

battery is about to die

not yet bro you can charge

I will stay here until tommorow

💀

no choice bro it takes long to download

Hope the balena etcher is downloaded

done bro

I downloaded already

it says 30 gb right

Ivan you can leave behind the steps and we can guide him . Probably.

man I feel poopy

After the iso is download then run balena etcher as administration and plug your pendrive when etcher is on first select the iso of garuda second select the pendrive you plugged then click flash then wait few mins when flashing done remove the pendrive, go to your bios settings disable secure boot and save the settings then restart the PC , then plug your pendrive and go to boot menu and boot from pendrive and install the os

@quasi dune

Can he use rufus instead

thank you brother

I'll take you through the rest of the installation

got it bro

wait what time is it there bro

Hmm

Har far with the downloading

its night here

Seems everything good

16:26

45.9mb to 2gb bro

ahhh is 6 in the evening there bro?

wtf

its 4:26

oh my bad lmao

🤣 six relax

pm

Hmm six what's good

we used 24 hour time format here bro my bad lmao

just rotting in my bed

12*

Tell me when you're done

you use 12

not 24

oh my bad growing old lmao

Done with what ? rotting?

🤣

Yea

okie

ill hop on thm in a bit

@quasi dune how large is the ISO file?

Is the book prove to be good?

yes i do read it sometimes

Hmm haven't touched it

well reading can be boring

so yea

What about videos

i haven't downloaded them yet

i like reading

Hmm

so no need for videos

my pc auto update while downloading os

@quasi dune

Done?

wait it got faster download

nearly there

1gb download sheesh

1gb more

Tf still downloding the iso 💀

my bad my pc got restarted beacuase of windows update

Hope it's continues the download

yesye

1.8 gb

nearly there

2.2gb

nearly there

done @frigid trail

@frigid trail done download

Finally

Do you know how to go in bios?

yess

f2

what to do in bios

Go to bios

and then

what next

Search for secure boot options

Im using asus

"Secure boot"

cant disable secure boot

how