I'm just glad I don't run Windows anymore for years

They were clever, they put 1 normal .exe in one place but the other exe in a folder in the zip which was the problem. so I scanned the normal one not seeing the bad one

I rarely do memory dump when doing forensic investigation

do u just do like task manager?

I'm more into malware analysis.

How are you able to analyze malware without memory scanning?

Static analysis

And reverse engineering

^^

Aren't most malware impossible to reverse?

no

💀

Python Malwares are the easiest to analyze

Rust is a pain

Golang 💀

.net is also ez

And golang is a pain but I rarely saw any

oh cool

You haven't seen mine 😎

I love Malwares where it connects to Discord C2 server

Binaries are large af tho, only downside 😭

I did that once, made me lose my acc

Hence the new one 😄

are obfuscation tools really that bad that you can just reverse pretty much anything?

It just makes it harder

Not impossible

You can reverse engineer obfusactors aswel

Obfuscation is mostly to confuse security solutions

I used the bot token I found inside the malware and logged into their C2 server

Since you mentioned John Hammond, he has a great amount of malware reverse engineering vids

But there is channels even more focussed on that stuff tho

yeah thats where I learned mostly everything about malware. Most of them looked simple, they just target browsers for crypto and accounts from what I remember

And worst case you can also just attach a debugger. But it does require you to run the malware. And there are also anti debug technique

Oh yeah, don't make malware without AntiVM and AntiDebug 😎

Ok ok I've said enough about malware 🤐

I've seen malware during my job where people use techniques from Maldev Academy 😂

Career wise whats the point of malware development? is that for pentesting?

like you make stuff you will use ig

theres ways around it

malware engineering is a part of cyber sec

Shhh don't tell em!

They da feds

Jk jk, we are ethical

🫏

fonky

donkey

i'm blue team. mostly... when I actually finish my certs

Blue team kinda boring tho

red teaming is too

ngl

Become a CSIRT then blue team won't be boring

i feel like red teaming would feel more rewarding on success tho

depends how u use it

u can make a whitelist service and make money

and u can crack one

and make money

bug bounty or a product

u choose

id prob just do pentesting for businesses

I use most my skills towards children safety these days

back in the day i used to do bug bounties

and unethical "hacking"

I think social engineering might be fun

it is

done it for a couple years

its nice to have in the back of ur mind

Social engineering by sending phishing e-mail?

I tricked a dude who tried to steal my account to giving me his number because i pretended to also be a dude who stole (my account) and was like wanna make money together?

😭

this is not social engineering

😭

or

it can be

Well sending phishing e-mail or BEC is a form of phishing.

I mean social engineering

dude from from cyprus and had the alias "F3arG0d" or something like that it was more cringe than that

did this when I was a teenager

scambaiting might be fun. Idk the legality of it so I don't want to try it until I know for sure what im doing

I was thinking about making him download some malware that I would make with the goal of getting my friends account back to him. (cuz he stole his)

that would be greyhat ig?

i'm assuming even if the goal is good like giving someone something back that was stolen from them, i could still get in trouble

Okay... I restarted my PC after removing things for 20 hours and there are no more suspicious processes. Even if there is something super hidden, I don't really have anything to compromise on this PC so i'm good I think. I checked with Autoruns and stuff as well and everything is good.

Btw thanks for the help everyone 🫡

I should prob make a habit to do a clean install of Windows every 6-12 months anyways tho

But first I wanna figure out how to make those custom .iso so I don't have to set everything up forever again

Can anybody help me set me capture card up?? I was streaming via remote connect but it keeps disconnecting. What is a better way???

Anyone have experience with using a SIM reader as a phone/sms modem? I wanna experiment with building a microcomputer that can perform the functions of a phone

That way i can get rid of this god forsaken thing

So nobody???

hey whats better black arch or just arch?

whats is better parrot os or kali

What's up

@dusky lark

Digi Accelerated or a Cradle point.

Wait are you staying you want to use LTE as a wan

Yes and for telephony and sms. business laptops can use a sim card for Internet and with the right configuration and software you can make calls and send texts.

Can only use it for one at a time unless you use a phone providing a hotspot

I work on these at work https://www.digi.com/accelerated

This would ideally replace having to need a phone

This is a good model https://www.digi.com/products/networking/cellular-routers/enterprise/digi-6310-dx

Can't use them for both to my knowledge

Only one or the other, they use cellular towers and connect to wan of a router

It doesn't actively broadcast

???

Still can't figure this out

I would really appreciate sombody to help frfr

I mean, what have you tried, what card is it? How did your attempt to set it up fail?

Asking for help, provide information that will help people to help you with the request 🙂

ayy gobby

oi oi

whats up seems u in good mood today

Mostly tired lol

No sleep, so chatting until I start work

How're you doing?

quick question

if ssh service is running on a system how to determine if it uses pass authentication or rsa private key authentication @lean lance

i mean im doing hydra bruteforcing in a ctf if a ssh service dosent accept passwords its waste of my time right

doing ctfs

Come on man

Any luck on Google?

actively looking

so far no problem

-v - look for Authentications that can continue

It'll list the auth types that are supported in the verbose output

ill take a look

ty gobby

Question

What is the best wifi adapter for educational hacking purposes?

Would like to know one that is:

• Economical
• Accesible
• Good Quality

Did you want that pasted in to ChatGPT for you? 😉

..but personally, the Alfa adapters are good

Consider, you pay what you get for though

Yes you can get an adapter for WiFi work that costs £10, but compared to something of quality that might cost 4-5 times, you will notice the difference.

If you want to mess with 2.4ghz and 5ghz, you want to go with quality over lowest cost.

Already done, just checking up on human interpretation and also real interaction.

But thanks for your suggestion!!

That's right

Yeah, personal experience as I said then is Alfa 🙂

I'm not looking for something very expensive since I just want to learn

You could go for a WiFi Pineapple, but honestly unless you're running engagements (and even then) you don't really need the Pineappple

For a decent Alfa you're probably look at around £30-40

Engagements?

Yes, as in on site penetration tests

Hmmm

I doubt so, I'm very far from work opportunities

Then yeah.. an Alfa to start researching and working in the field personally and learning would do you perfectly fine

Thanks for that!

Is that a branch or a product name?

Alfa is the brand / producer

I'd do some searching to find what people recommend as the best these days, as it's been a number of years since I did any work in that field

The Alfa AWUS036ACH looks to be recommended though

tp-link tl-w722n are good economically and alfa have good quality

Yup, used that for years when on budget

Ohhh I'll look up on that!

Thanks!!! I'll look up on that too!

ALFA is goat tho

i currently use alfa for a nethunter setup, it's a bit old and doesn't support 5G, apart from that the best adapter i've ever used

Can be attached to an android phone device?

With a dongle y

yup, with custom-built kernel too

Hmmm

Custom-build kernel?

How I could learn that?

just search xda with "%device name% nethunter kernel"

90% chance you'll find it prebuilt

My perception tells me that that is not safe but I'll look up on that

you can build it from scratch tho, kali website has instructions for that too

generally it's safe 'cause foss

XDA what that stand for tho?

xda developers

Ohhh

It's a community for Android development and such

And more

it's generally not safe to use nethunter phone as a daily driver tho

cause y'know, no verified boot and all of that

Ohhhhh

That is new for me, thanks for making me know that!

Is there a way to safely boot an alternative os on android just like on pcs?

tp link are good

¯_(ツ)_/¯

im late

😭

yup, search grapheneos

Do not worry haha

i used to contribute to that project also

and graphene is my daily driver for like 4 years

Oh

grapheneos.org

I'm looking into that but..

How I could make a use of that?

Btw

of nethunter? you can pentest your neighbor's wifi as example

Btw this was the one I was about to buy TP-Link Nano USB Wifi Dongle

Don't do that.. work on your own network (as in don't test / mess with your neighbour or networks you don't own)

or build a home WiFi environment

(to work on)

I know the consequences haha, I'm not into that

at least i'm honest with color of my hat

yk

no that "don't work without written permissions" bs

lol sure, good luck with that

but yeah, generally speaking it's not good to pentest networks that don't belong to you

As for I understand, Greyhats typically hack without permission but looking for compensation after notifying it

That's my opinion, is not a conclusion

i'm mostly whitehat nowadays, i just don't like painted borders yn

nope, you won't get anything for that, to receive compensation you have to do this on hackerone or same resource

Hmmm

i used to do that and notify not to receive any compensation but to make a resource generally more secure

Ohh

That's interesting

you shouldn't count on any compensation if you go where you don't belong, you should make yourself safe from punishment lmao

I'm agree with you

even if you think it's for good

Or at least I understood something of what I'm agree of

generally speaking, most of the dudes telling you you should be law-obedient and never try anything stoopid like to hack people's things in their spare time

calling themselves white hats in process, or they are ctf-only people who can hack in a specially-organised environment only, not real world

Responsible disclosure and research on open source projects 😉

Have done a few engagements for a few private clients, and a disclosure for a bank I found by mistake (legitimately noticed a vulnerability by mistake)

otherwise, I'm an engineer first, and a enthusiast / security advocate at heart

"doing engagements for a few private clients" is the way i'll call blacking from now on

thanks for suggestion mate

lol, no, not at all

A couple of previous companies I worked with, they asked for my services.

i used to work with a pretty legitimate pentesting llc before, also did same thing. we signed nda and all of this

Yep, all above board. It was quite fun, as was not my usual day job.

Had some decent findings as well which was good 😅

formally i'm still assigned to them, no tasks dropped recently

i'm currently unable to receive paychecks yet they always were so nice to pay me in monero

That's good, even if I bet their accounting department hate them for it 🤣

probably yea

it's sad i can't work with them in open due to current geopolitical situation in my region

That's a shame. Here's hoping things improve, and you can openly work with them again in the future.

The world's a bit of a mess at the moment 😦

always has been

thx, i hope so too. never liked fascist oppressive governments yk

Hey yoo

https://cdn.discordapp.com/emojis/1247299500234641438.gif?size=160&quality=lossless

👋

i really wanna use it , but what about banking/other government apps ? do those work properly ?

mostly yes

guess ill try installing it on one of my spare phones first......then maybe onto my daily driver

No

Google services doesn't work with graphene

You can enable elements of google services within GrapheneOS but by default it is disabled. I daily drive graphene

Nah @quasi berry you gotta flash gapps right?

I used it on pixel but didn't like it and went for lineage

And just didn't install google apps at the time, but I like their recovery

There's a service in the settings you can change to use for google services or smth but might be limited to certain things, I will check

That's dope I didn't know that existed

MicroG perhaps

^

That is the one

I only know cause I saw it in settings

Yeah been flashing ROMs for so long haha

Gonna switch to Graphene and Pixel probably very soon

Ah there's a thing in network and internet for changing the connectivity checks, widevine, and alternate key provisioning to google servers

Oh that does ring a bell ye

Reading the documentation you'd need to use the compatibility layer

❤️ Pixel phones

but not messed with the OS on them yet, have lots before on other Android phones

Two days battery life easy, excellent camera, stock experience

Only thing that is missing is LIDAR

No, time of flight, not lidar

(for 3D scanning)

?

?

?

https://tenor.com/view/question-question-mark-question-mark-cat-cat-cat-confused-gif-25961432

Lol I've asked the last 2 days if sombody could help me and I've gotten nothing back! I would GREATLY appreciate it if sombody could help me figure out how to stream with out remote play . I have capture cards just not an elgato! If sombody would help be around 2:00 I would get on one knee for you😂😂😂😂

Lmao last parts a jokey joke

Bring a ring as well, and i'll consider

I'm not too familair with console + streaming tbh

I replied @vale tide - I have no experience with capture cards, but did reply trying to help you provide more useful information in order to help someone troubleshoot or advise.

Scroll up and check my reply, the more information, the better.

also shouldn't a capture cards just give you another video or data output that can either be sent elsewhere or used by the computer? I'm unsure as I haven't streamed for a very long time

You got people replying to you @vale tide ..

Capture cards used to offload the video encoding away from GPU/CPU by passthrough of HDMI or whatever, and then passing off to local storage

Yeah I'm confused as to what the issue is then

Yeah, I don't know.. we need to know more if we're going to help

do they need it written remotely? Just forward the stream over the network or something idk, write to an SMB or NFS share

https://tenor.com/view/out-disappear-bye-vanished-gif-4932063

Bro was like

I tried

we*

@flat garnet Sorry I didn't reply back

Is it possible to do cybersecurity without knowing how to code

very borderline and limted but sure

what do u wanna do specically

specifically

idk how to spell gg

yes! but a few caveats

you'll be quite limited in the roles you can choose

and you wont have as much job security as one would like

(fear of AI etc)

Chat best laptop to get that dosent have loud ahh fans

For what purposes?

Hacking

Everything

Gaming ?

That too

Heavy games or ? Graphic intensive?

lol I’m not much of a gamer

What are the options.

Gimme example of a game

Depends on how graphic intensive the game would be

I don’t play games

But..

😄

Yh, I like to have more options 😂

Fair fair haha

hey sorry I was in iop! I appreciate the replys noww! 😀 So what would be the best way??

Read what I said twice, then reply with some more information

FFFF

Let me say it once more I guess @vale tide - what have you tried, what are you struggling with, are you facing any errors or what is not working as expected?

I really am trying to help, but you're not making it easy 😅

Please don't say you've vanished again

Yeah.. nevermind then. Call tech support listed in the manual for your capture card. I'm done @vale tide

@chilly merlin

Is it in #1181325692823150642 ?

Not yet

You should pin it there. 📌

Yes

Does anyone have apk/tool to redirect every out/in connection on my android phone to my local proxy. So i can monitor the out/in connection. Without root.

Packet capture

Can anyone give me my guest account of freefire game it was 4 years old

Anyone familiar with setoolkit site cloner please inbox

kindly pls read #📜・rules

guys i just started in game design what do i do to desig the UI for it

I am looking for some guidance on schooling and career choice. I got into comp sci with an interest in programming, but got scared with all the dev layoffs, so switched to cyber sec. I love the idea of ethical hacking, always have. My only issue is, I still love the idea of diving deep into programming; specifically low level, embedded, playing with microcontrollers, bread boards, etc.. my school does not offer any majors with focus on computer engineering, embedded systems, etc otherwise I would have went that direction instead of cyber security. I guess my question is.. will programming electronics have to remain a hobby? Or are there areas of cyber security that’ll allow me to play with toys (microcontrollers, breadboards, components)

Yes, there are specialiastions within Cybersecurity where you'll be able to mess around with embedded devices, microcontrollers, etc. Look into hardware hacking, it's one of the core services my firm offers, there may not be nearly as prevalent as say web-app or internal pentests, but it's still a widely needed skillset.

Excellent, I thank you so much for this advice. I’ve been getting discouraged, feeling as though I may end up working a job that isn’t as exciting as I’d like- simply because there are no options at my school. I’d say every company is different, but in your opinion; would a degree in cyber sec be enough to land a job involving hardware hacking, if I am completely self taught on the hardware side of things? Is this the type thing where real-world experience is more important than a degree in say, Computer and electrical engineering?

Of course, I’ll need to do my own research into this. I‘ll look into certs that could help supplement my degree.. at the very least it’s good to know that this field does in fact exist in cyber security

Hmm, that's difficult. I won't say having a degree will inherently in of itslef garuantee you a job. There's plenty of other things they'll look for, it'll certainly help your chances, but it's not the core requirement for what they are after. I'd highly advise that you start documenting your projects, showcase the work you do, that has far more weighting than an undergrad in cybersec. Real-world experience is valued far more than theoretical knowledge, if you're able to demonstrate your understanding of hardware hacking, you'd drastically bolster your chances of being hired.

roblox

I will keep this in mind. Thanks again so much for the advice

Gotta enable it as a device though your VM host software

Same thing with USBs

https://tenor.com/view/thumb-up-thumb-up-eating-thumb-up-moment-gif-1291509566922348051

Yo how’s it going bro

Hello, i have to crack a pdf file for a homework assignment. i know the password is 8 characters long, so far i have used john, and haschat. I have also used every wordlist with kali linux including rockyou. any tips on other ways to crack the password.

hashcat probably your best bet. If it's homework, surely they would have given you some context, some sort of hint for the password? Otherwise, you're going to be dependent on hardware.

ok thanks

Bro I'm professional game developer and if u need any help u can ask me and for ui if u use ue5 dm me I teach u

If u want to learn about programming dm me

Evaluation Request

I would like C++ experts to help me evaluate this code:

#include <iostream>
#include <windows.h>

namespace color {

    void setConsoleColor(int color) {
        HANDLE hConsole = GetStdHandle(STD_OUTPUT_HANDLE);
        SetConsoleTextAttribute(hConsole, color);
    }

    std::ostream& green(std::ostream& os) {
        setConsoleColor(FOREGROUND_GREEN);
        return os;
    }


    std::ostream& red(std::ostream& os) {
        setConsoleColor(FOREGROUND_RED);
        return os;
    }


    std::ostream& reset(std::ostream& os) {
        setConsoleColor(FOREGROUND_RED | FOREGROUND_GREEN | FOREGROUND_BLUE);
        return os;
    }


    std::ostream& blue(std::ostream& os) {
        setConsoleColor(FOREGROUND_BLUE | FOREGROUND_INTENSITY);
        return os;
    }
}

int main() {
    std::cout << color::green << "This text is green" << color::reset << std::endl;
    std::cout << color::red << "This text is red" << color::reset << std::endl;
    std::cout << color::blue << "This text is bright blue" << color::reset << std::endl;

    return 0;
}

Is there any better implementation for this?

Banned... 0.0

tried using r4ven, tried hosting it myself, used ssh, followed all the steps, allowed the correct ports, changed ports, used ngrok. all this and it still doesnt work

whos got an ip logger i can use

...

lmao

but someones gone and tried to get my friends' and dox them

obviously, i cant allow it

Hey Quacked, long time no see. How’ve you been :)!

@deep aspen lol

I need help

How do i run my localhost to a public url

Like the link is only working for my phone

try ngrok

Thank you

Hello

Please help I want to hack into someone's WhatsApp😃 without them knowing

#👥・help-me message

#1286135820008296509 #📜・rules

@light kettle u can't do it alone dm me for information but it can't be done easily

Don't promote that here wtf.

Bro I’ve been good I’ve been practicing my nmap skills recently by watching network chuck lol

Oh we love network chuck, he's awesome.

I am not promoting I am just telling that it cannot be done easily

You told him to dm you about it, don't.

Ok sorry

hey everyone i need a help

What's the problem

i wanna explore dark web with my kali linux

can you help me??

And what are you trying to find there exactly?

just for exploring there it will be my first exprience>

Well, just a fair warning. You're more likely to find stuff you didn't wanna see then the other way around.

okay

Are you familair with using Tor and/or how it works?

So basically there a session management tool called villain check them out just type villain session management tool in your browser its a session management tool and i don't know why but there is a command called flee basically it saves the sessions so you can use them later in the future but the flee command is not working for me,once i press yes i want to save this session for future use and later when i type sessions it don't show me the session i saved. please help me fix this i used windows Power Shell script to get the session.

no its my first time

I'd first do some more research on Tor and how to safely use it. https://www.youtube.com/watch?v=0wMCg5q0emo

And again, I've warned. You WILL see things you didn't want to see eventually, whether you choose to or not.

Are you sure the session that was established is still ALIVE?

If the process / session died, then obviously 'saving' the session with flee will not work

Hello

/sbin/modprobe: invalid option -- 'l'
/sbin/modprobe: invalid option -- 'l'
Stoping bluetooth service..
Stopping bluetooth (via systemctl): bluetooth.service.
○ bluetooth.service - Bluetooth service
Loaded: loaded (/usr/lib/systemd/system/bluetooth.service; disabled; preset: disabled)
Active: inactive (dead)
Docs: man:bluetoothd(8)
GIVE SOLUTION FOR THIS

What you posted doesn't really say much. What are you trying to do? and what commands are you using?

Please helo

Im learning to crack passwords

Actually i got one file pasted on VM kali

You are not giving much context. What you show here cannot be solved without knowing what you are trying run/execute.

Okey Wait

I'll DM you

How come you responded to my question about laptop and then completely ignored my response?
Don’t seem to get it? @lean lance

I didn't ignore anything purposely, I had some other things to attend at that moment, and kind of forgot about it.

Well you shouldn’t have led me on

All good

Lmao

Right

@calm basalt You need a kryboard specific to razer?

Yeah

https://amzn.eu/d/2c4XXAG

This is what they recommended me tho it's not razer

Have u visited the razer website?

Nope

Kinda want to buy it in amazon

You can buy directly from razer

But I'm sure they sell on amazon too

Wut keyboard would u pick

https://www.razer.com/pc/gaming-keyboards-and-keypads

Just find the one you prefer and search for it on amazon

Check under Deathstalker keyboards 👍

cookie send subnetign video please

Check #💬・old-gen-chat

ok

Is it a dualboot. Or vm? Or fresh install

It's good

@molten otter ^^

You want to install kali on a vm?

Okay download virtualbox from this website https://www.virtualbox.org/wiki/Downloads

Do you want to watch a video on it or do you want my help

@molten otter ??

@molten otter

Send screenshots of the issue you are having during installation

#1275512489022455911 this might be for u

bro

i hatw

hate hitboxes

tell sieges shitty ass skid fucking devs to fix hitboxes before i leak their entire god damn db

these devs have a year max in experience with jack shit other than fucking python and lua they need to be fired

could I get some assistance please okay I have two issues first issue is out of a Dell latitude 7420 with an administrative password as soon as the laptop turns on can't get the bios screen or nothing so how do I get past this problem. My second problem is my other laptop it has a company log on with a work and email instead of personal Microsoft how do I remove this so I can use my Microsoft account to log on to the laptop. and thank you for whatever information will give me

and I did watch a few YouTube videos trying to learn but nothing has worked by the way

How come you got a laptop with a company login that you can't access? 😅

🤖

for the latitude you could try just removing cmos lol

wondering what's some good beginner cybersecurity projects

I’d recommend unis with a cybersecurity course (if you are going to one)

@lean lance

https://www.hackthebox.com/blog/learn-to-hack-beginners-bible 😉

(biased due to working with HTB)

There are lots of platforms out there to help you expand your knowledge in the field

Find what works well for you, and go for it!

hey anynoe know how i can build pasted code into vs code?

a wat

i copied code of github and i wanna build it

itsa remote admin tool

explain more clearly

basically i setup visual studio code and went into my pc system enviroment and set it up for c++ and now i copied code of github "AsyncRat" "remote admin tool program" and i wanna build it now

@chilly merlin

cant find option to build the code i copied and pasted

did u read #📜・rules and #1286135820008296509

its a Rat

Interesting

😭

yeah its not for anthing malicious

its just that i wanna learn

nybad

malware analysis

mybad

?

no im not intending to use it on anyone

its just easiest thing i found

gimme a sec

i can download literally anything ele

else

i jsut need help with build

@chilly merlin i can download anything ethical just need help

did u tried youtube

and ai

yeah but the thing is in my version of vs codethere is no build option

@chilly merlin doesnt AI cost?

Chatgpt

chatgpt

You need Visual Studio, not VS Code

thanks gonna go cehck right now

i have both @lean lance

i downloaded 60+ gigabytes

got 5 terabyte

ssd

It can be done in VSCode, but VS may work better

ok thanks

oh i didnt know i could download chatgpt

does fbi/cia/local cops watch chatgpt logs?

like if i write stuff

dont wana wwrite anything i will regrety

@tight elk just keep it Ethical

alright thanks for all advice boys

we dunno ur intentions even if u say jus wanna know its like teaching u building a bomb . we cant help u much in this case not after u mention fbi/cia

oh noononon ahhaa

not that stuff

try googling and yt and ai

seems like chatgpt download is only for mac

that sucks

this server rules does not allow

hope u understand

yeah i understand

im not here to learn bad stuff

im here to learn coding

/hacking

whitehat

mal dev?

if im correct

sorry dont understand

malicous?

malware development

oh

yeah somnething like that

its a field

in cybersec

its for my future

i have bad situation

and wanna learn

take a look at maldev academy and vx underground

cy u here

?

what do vx do?

yea c me there

never used it

but what do they do?

i just looked their site up

idk

@tight elk

vx-underground also known as VXUG, is an educational website about malware and cybersecurity. It claims to have the largest online repository of malware. The site was launched in May.

ohhhh

that is all i can do

ok i get it now

thx

watching the site rn

@chilly merlin do you recomend any program to encrypt my files?

like encryption

the file

yeah

like i mean external programs

for google

from"

wat

thAT can encrpyt my pc/files

ransomware

?

or asking for a software

wait i forgot i can use chatgpt

that encrypts files

sorry for wastnig ur time

i mean i usedto have a program that could do that

but i frogto the name

forgot"

bitlocker

I think he means a way to encrypt his own files

on windows

@hallow kindle yeah

Encrypting the files themselves, or the entire drive?

both

Not sure

Nvm

https://hat.sh/, https://www.veracrypt.fr/code/VeraCrypt/?h=NewSysEncWizard

YEAH

there ya go

thats the program

https://www.cyberciti.biz/security/howto-linux-hard-disk-encryption-with-luks-cryptsetup-command/

that i used to have thhanks

benny to rescue

veracrypt

exacly that one

https://www.7-zip.org/, https://cryptomator.org/

thanks bro

apreaciate it

No worries

@quasi berry any proxy progream to recomend too?

https://hiddify.com/#

https://mitmproxy.org/

thanks so much

boys i got a last question if u have time

whats the best free vpn to download?

dont got money rn to buy one

@quasi berry

if u know

Best free would be Proton

@chilly merlin hey bro you know i downloaded 7zip and whenever i try downloading a file enidng in 7z, it gives me errror saying "support for the encrypted archive is not available for hte moment"

does the file have a password?

damn

Outdated 7-Zip: Update to the latest version from 7-Zip's website.
Corrupt File: Try downloading the file again.
Unsupported Encryption: The 7z file may use an encryption method not supported by your version of 7-Zip.

i am a complete beiginner help[ me out to step in cybersec

i know basic lol

wait

why

kya haal hai

nah only english bhai

ok

rules are in place

start with linux

linuxjourney.com

is a good website

Ivpn

perks?

hi, i have a question what is opsec and what does it do?

Proton also good

OPSEC (Operations Security) is a process designed to protect important information from falling into the wrong hands. It helps organizations, especially in cybersecurity and the military, keep sensitive data safe by identifying risks and addressing them before attackers can exploit any weaknesses.

https://github.com/Scrut1ny/OpSec-Guide

Its basically like doing certain SECURITY measures/activities to prevent sensitive data from falling into the wrong hands(attackers)

@calm basalt https://www.razer.com/pc/gaming-keyboards/deathstalker-line

Ty

Oh low-profile, saving that one 🙂

Hi guys , i have a problem in dual booting arch linux with win 10 , when i boot into the usb and i issue the cmd lsblk or fdisk -l it shows only infos abt the usb instead of all the drives

@solar fiber

0.0

Could anyone assist this kind fellow?

😂

Thanks

Is secure boot enabled in your BIOS? If it is, disable that and try again.

@maiden violet I know ur smart, might you check this kind sir?

Yeah it s disabled

Is there any option called "Intel Rapid Storage Technology (RST)"

Somewhere under SATA Mode probably

Where

Also in BIOS

What boot mode are you using btw?

Usb

Boot Mode (UEFI vs. Legacy)

Uefi

Set it to Legacy and try again

You want the booting process to be handled by GRUB, from there you can always boot to Windows (if it's added correctly).

But i don't have the choice in boot mode

Were you trying to install? Or just troubleshooting after the install?

Only uefi

Trying to install

I highly doubt that, should be an option somewhere

Aha, okay. In that case perhaps the Fast Startup or Hibernation option in Windows might be locking the drives

https://support.lenovo.com/us/en/solutions/ht513773-how-to-enable-or-disable-fast-startup-on-windows-11

Disable that, and make sure to properly Shutdown windows, no hibernation/sleep etc. This can lock active drives

So i ll disable hibernation and fast startup

Yes, and then properly shutdown windows

Okey thank you so much

That will likely fix the issue, otherwise let me know

Sure

I went to cmd and issued powercfg /H off

To disable fast startup and hibernation

Nothing changed

From archwiki

Chatgpt said that arch doesnt read RAID sata how can i check?

Change the SATA controller mode from RST to AHCI

How

Depends on your BIOS

Look around in the settings, let me know what you see

https://support.thinkcritical.com/kb/articles/switch-windows-10-from-raid-ide-to-ahci#:~:text=Type this command and press,automatically boot to Safe Mode.

i found this

there is nothing in bios abt sata or smth relevent

There definitely should be

Are these NVMe drives?

What motherboard do you have, I'll tell you where to look

I come to you with a matter. my mother was robbed by extorting the blik code. and the thief used this code and pretended to be a friend and made a purchase in the online store where I also have the address. Would it be possible to somehow track the device from which the transaction was made? My family and I are in a very difficult financial situation and I would really like to ask for help

Welcome in, and that's a shitty thing to happen first of all. However we dont support vigilantism and it sounds like a matter for Law Enforcement and the fraud departments of used platforms. Please also check the #📜・rules and #1286135820008296509 .

just a min it s a laptop

Which laptop, I'll check up on the BIOS settings for you

i am checking it s acer nitro an 515-54

https://www.youtube.com/watch?v=F3w_ywBbb1Q There you go

man how could be that fast ?

hhhh

i've changed it and i ll see what ll happen

thank you so much man

it worked

🙂 Good to hear, my pleasure

just one question

did u face that issue too or ...?

i mean before

It's a common problem when trying to install.

By booting the Arch Linux USB in the same boot mode as your Windows installation, it will solve your problem. If you had an extra SSD or HDD for example. That one would likely show up normally.

Did windows fix the dual boot issue

Which issue?

of windows 11 ?

Can I watch amazon prime on nordvpn?

Should be yes, if blocked use Obfuscated servers.

Yk an article that proves it?

https://support.nordvpn.com/hc/en-us/articles/19563148662545-VPN-for-Amazon-Prime-how-to-watch-it-securely#:~:text=Met NordVPN heb je veilig,een VPN-server in Canada.

Sometimes a simple Google search is the best solution to your answer

Idk

It just says "it's advanced enough to surpass amazom prime encryption detections"

Which doesen't seem so ethical

There is no crime in trying to hide you're using a VPN

Don't worry they wouldn't be advertising it like this if it was deemed illegal.

Kk ty

Just want to convince my parents to buy it

Hi

Here

Cpp code evaluation

Hey thanks!! Ill check up on that!

Help

With what

It's fine i figured.

Yall why I can’t do htb easiest challenges ??

Hi guys back with my problems

Your skills needs some working

Can someone tell me why can't i enter the boot menu

The bios i mean

After i installed arch i can't enter my bios

What key did you use before to get into bios, try booting again and keep tapping it.

Initial view of the BIOS boot screen might be gone faster with the changes made in BIOS

Hello, I would need some explanations on the use of Cheat Engine, if you don't mind.

Here are the steps I have followed so far:

I want to create a proximity voice chat. To do this, I first need to find the player's X, Y, and Z coordinates in the game. After finding these axes, I used Cheat Engine's "Pointer Map" option to create a reliable pointer for each axis. Then, I wrote a C program to obtain the base address of my game.

Once this step was completed, I wanted to develop a console program in C capable of displaying the Z-axis (the height). However, I realized that I don’t know how to do this, as I used the "Pointer Map" to find the pointers instead of finding them manually. I would like to know if you could explain how to find a pointer without using "Pointer Map" or recommend a tutorial that explains this method.

For your information, I have already followed several YouTube tutorials, but without success. I think this is due to the size of my game, which likely makes finding pointers more complex than in smaller games.

How , it’s not that I’m blinding and don’t know anything , it’s been a year I’m in cyber security but like idk I just can’t do stuffs by my own , how to improve ?

that owasp bible thing i found pretty useful for learning about web vulnerabilities

https://owasp.org/www-project-top-ten/

Practice more. Then ask questions when you are stuck.

You can also check out https://portswigger.net/web-security/all-topics for learning and hands on. https://www.hackinghub.io/ for hands on practice with bug hunting

oh nice

are they free?

wow looks like it awesome

I am very novice , and started my cybersecurity journey on TryHackMe and but I noticed so many errors from the labs and as a pure novice it is not always very easy to go around those bugs or no updated rooms, I am very into ethical hacking , I would love to find a mentor, is there anybody with a great heart and patient for ?

I mean.... you can always jump on a vc and share you screen with people who can help

thx Cookie

Whenever you need help. Just ask in #💬・old-gen-chat and professionals will help you out.

Finding a mentor is a bit difficult

I really appreciate it I am consistent but sometimes I feel very frustrated to not see the issue ...

That's how you learn 😉

Just look carefully and think outside the box

thx I have a lot to learn! thx again

@chilly merlin

yes

@chilly merlin

Trynna pawn a new router i bought. i need help

im prank calling law firms

Ohk il ask later

Following this video

https://youtu.be/HcoX1wTv7zg?t=385

@lean lance hmm.. now what??

Did you just blindly copy-paste the commands for formatting & partitioning ?

hm yeah?

the same he did just changed the size

partition sizes

Well, that is not how it works

Ugh

so you are telling me

I need to do all that again?

Your drives and partitions were probably different

That's why blindly copying & pasting without understanding is a bad practice

Start over and use this (actual) tutorial: https://www.youtube.com/watch?v=AYxaNjbC1wg&pp=ygUXaW5zdGFsbCBhcmNoIGxpbnV4IDIwMjQ%3D

How would I know?

A decent tutorial would actually teach you what commands do, and where it might be different for you.

Thanks man

No problem 👍

I accidently changed the fonts

now it's too big

Fonts where? In terminal?

yeah

root@archiso

setfont ter-132n

Try this

setfont -h8 /usr/share/kbd/consolefonts/drdos8x8.psfu.gz

uhm these are not too good

they look weird

How do I get the default fonts back?

setfont /usr/share/kbd/consolefonts/ter-v16b.psf.gz

okay

how too use CVE-2020-6091 on a my epson web control

What is your end goal, and is the device your own hardware?

Can u give me a roadmap for penetration testing ??

Well this depends on what kind of pentesting you want to focus on. Web app, external, internal, etc. This also depends on your current experience. If you are a complete beginner I would suggest to start off with tryhackme, learn the basics, finish a couple learning paths, by then you should know what kind of pentesting you would like to do. If it's internal / external then continue pwning different machines but challenge yourself, switch to HTB machines, practice writing reports for the machines you complete. if it's web app use portswiggers academy to learn and get hands on, then look at bug hunting to get some experience with hardened targets. Again this is very broad, but this is what I'd suggest based on your question.

how can i import bluethoot

like on pyhton

dat kernel takes ages to compile on a nugget even with custom build flags

help me

Please explain.

Port forwarding with the vpn

So my laptop crapped out on me so I pulled out my old computer, it's got Windows 7 on it, but yeah it's been so long I forget my password and I don't have a recovery disc or anything, and we need to print stuff but going through others or the library is getting old... can anyone help?

I would suggest to flash a USB with a new Windows installation and just reinstall the OS in that case.

Will I lose my files?

With a full reinstall, yes you would.

That's what I'm trying to avoid. I have pictures and videos of a dear friend who has passed away now, as well as a bunch of other things I don't want to loose

There is ways to bypass the login and clear the known passwords, but It's hard to tell If it's actually your own device.. We regularly get unethical requests as you might understand.

Oh, I get it

I would say do a quick Google search on it, and you would figure it out easily.

Yeah I did that, I found a video where it showed me a process of switching a file name or whatnot which would allow me to like pull up the command window and that process didn't work

Give me a moment

Hmmmm

Yes, was thinking the same 😄

Best would be to reach out to professionals for this

I'm lower income, waiting for disability to kick in so I was trying to avoid going through one of those tech help places if I could help it.

All I can say is, there is a shitload of information on what you are trying to achieve

"but It's hard to tell If it's actually your own device.. We regularly get unethical requests as you might understand."

This is the problem for us, we must also abide by the server rules and Discord it's own ToC.

Lol, ok... I'll keep looking into it. I'm just concerning that if I follow one of these videos advice and like change something, I'm worried that one of these videos is going to troll me and I'm going to screw up my computer.

But don't worry I don't take offense to it, I understand the predicament you guys are in

Thanks for understanding, and good luck. You will figure it out 🙂

I understand you can't assist me with it but might you be able to point me in the right direction? Maybe a trustworthy YouTube page or something? Like I said I just don't want to follow the wrong videos advice and screw something up. If not then any advice for maybe what to look for or what to avoid as I do my own research would be greatly appreciated.

Regardless, thank you for taking the time to respond to me, I do appreciate it.

Quick question - if i start streaming here my THM rooms do i risk myself being exposed ?

The Jr penetration tester on THM locked behind a paywall ? do i really have to spend 12$ a month tho learn cyber tf ?

HTB does the same shit

Well they offer a lot of content for free, but at the end of the day they are still a business and need to make money

i mean 12$ isnt much right ? its probably lunch money and its really good quality content too

Really depends on what country you're from though

What kind of exposure do you mean?

NL

well it's not much for you maybe but i don't 12$ every month to spend money learning cyber

there is free alternative though

since most of pay to get acces are just easier to handle / use on internet

I would search on YT for a lot of lenghty free courses and just keep grinding the free stuff on HTB and THM

And start doing CTFs on sites like ctftime.org

Like intercepting my connection and just accessing other unknown machines or other methods that im not aware of

Ah no, you can safely stream here. People stream often here.

im a newbie ow am i suppose to compete against internationnal teams

Nice , i quess i know what ill be doing this or next night 😄 . Thanks @lean lance

Well not to start ofcourse, but there is a lot of CTF platforms. Also for beginners

Just make sure not to accidentally show any personal information while streaming.

other than overthewire idk any other site

Perhaps this will be useful to you: #😈・pentesting message

Also check other channels and their pinned messages. You will find a lot of resources

#1181325692823150642 & #1181331992948785273

Hi, any tips for finding someone with just a facebook username?

We cant assist you with that im sorry

Please read #📜・rules

Ye, search on Facebook 😔✊🏻

Need help with a windows log in passcode

hmm

use a password reset disk

So I got an error code when my pc bluescreened and it said: “kernel_lock_entry_leaked_on_thread_termination”

What dose that mean

what are some cool stuff i can do w the raspberry pi 3 model b+

any special projects or

What or who are you investigating?

Vigilantism is not what we do around here..

ok

@quasi berry could provide you with information about OSINT, but he can decide for himself whether he deems it ethical.

Can i dm him?

Sure

He will respond here eventually, he checks his pings 🙂

There we go

It could be a number of things, you can DM me if you want. We can check a couple things.

Doing hw rn but ill look into it later.

No we don't teach unethical things here, please read the #📜・rules and #1286135820008296509

I need to create a payment gateway using APIs. Can someone help me do this? Will pay

hey friends, im pretty new to hacking, how can one hack a DNS server?

(all ethical ofc)

What you mean by DNS server hacking?

like DNS poisoning?

ohh yeah I didnt know about DNS poisioning, but yeah that'd be DNS hacking right

yea, what you know about RCE?

I think you're trying to achieve XSS on dns right?

Wtf?

uhhh idk what XSS is

yeah just googled it, I guess its exeucting commands on a host remotely

Cross-site scripting is a type of security vulnerability that can be found in some web applications. XSS attacks enable attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy. Wikipedia

have you google

thank you, so what did they mean when they said XSS on dns? dns isnt a web application?

but what's your end goal?

No but it could be, look into DNS over HTTPS

oh none really, just learning 🙂

I'll ask chatgpt

Chatp gpt your frnd

well, gpt has a lot of false information

what scripting language does dns run on

nuh uhhhh

is it javascript

most likely typescript interpreted by rust

@empty olive Wait I know you.

oohh i have heard of that

double nuh uh

you are the CyberInfo or wtv guy

shit you caught me

world is too small 😂

wait I know you

yea, I watch your streams often dude.

you're the dealer

Wait really? Awesome, I appreciate it

I'll be back today lol. Out of commission as of late

guys how are direct syscalls detected

Just google that

I didddddd but no info

Then ask chatgpt

A DNS server doesn't run on a language. It's a server serving the domain over the port 53. You can use servers or software for domain resolution like nginx or Apache. Also adversaries generally target the DNS resolver itself and attacks may vary. If you want to know more about them, google Cache Poisoning in DNS, DNS Takeover, DNS Amplification and Tunneling

ahhh ok

easu

*ill tell you

gtp told me syscalls are detected with hooks

direct syscalls cannot be detected with hooks

ohhh

see? gpt is wrong!

they're detected because of the bad call stack

Then google better!

oh wowow

what is a call stack

a syscall coming from usermode code is unusual

Depends what defence is present to detect and respond to them. AVs can catch them, EDRs can catch them, XDR/SOAR etc. infrastructure can catch malicious nodes

could they also be detected because they dont come from ntdll

no lol

what even is ntdll

A stack of phone books, obviously

@native sleet you need to behave.

sounds made up

sorry sir

ahh okok

so syscalls always come from kernel mode

exactly my point

Syscalls comes from the user level applications to request services from Kernel. It's how AVs work

nono they cant come from user mode right

what about service mode?

You mean Kernel mode?

well service mode, where the services are

You should take like 20 steps back in learning CyberSec

applications are user mode, drivers kernel mode, but services are service mode

I've heard of that

are drivers not in driver mode

oh shit... are they?

hey how come?

chatgpt said there are many modes

I disagree I think you're on a good path, maldev is hard to grasp, even for experienced professionals

i know right!

I didnt know drivers are in driver mode

see, I learn something everyday

Syscalls can be detected everywhere. If you are talking about Kernel mode which is apparently the most privileged mode, there are syscall detections in place such as eBPF and ETW for windows services. Strace traces some syscall transitions too

XD

but wont ETW result in a bugcheck? because of syscalls and such

but I was thinking, wouldnt they simply be detected since they are not coming from the ntdll DLL?

which is where most winapi syscalls are?

kinda think its unusual for a legit app to do direct syscalls

Not every time and it's rare. It only happens because of resource exhaustion or driver related bugs or maybe high frequency of events

what if we patch etw

or hijack the provider?

wait waitwait

cant we simply patch edr

yes! we can in fact

I usually patch asmi by doing a super cool trick, yall prob dont know but its as simple as freelibrary("amsi.dll");

etw a bit more complex tho...

It cannot, that's why defences need to run in privileged mode to monitor those calls

Yes

what is amsi? I've only ever heard of etw

amsi protects the kernel

ohhh so like bugchecks and stuff?

so that unsigned drivers cant be loaded you know

AMSI is a defence mechanism for Windows native runtimes

yeahh bugs within the unsigned drivers

like crowdstrike!

If youre an early supporter you'll most likely have emerald and up

exactly!

lol

Man I feel so much smarter

owlsec very nice to learn

0day has ruby

Thank you

happy to have found it

Isn't this a bit random tho