#👥・help-me

its .pfile, and to decrypt .pfile I need have organizational account to decrypt it

Gotcha, if it's not ransomware, it sounds like your files were encrypted by a tool tied to an organizational Microsoft account, possibly something like Microsoft’s Azure Information Protection or Microsoft 365 encryption. If that's the case, you might need to log in with the organizational account that was used to encrypt them in order to decrypt the files.

Microsoft’s Azure Information Protection yeah i have that but i need organizational microsoft acc to decrypt

and I dont have that

Will try it out for sure, thank you

if you’re using Microsoft’s Azure Information Protection and the files are encrypted, you’ll indeed need the organizational Microsoft account that was used to encrypt them. Without access to that account, decryption can’t happen, as the encryption keys are tied to that specific account.

i just told u i dont have organizational account

Yes WiFi, I get into virtual gaming / social events. And from that people will try and ddos me and what not

Fair enough for testing the group. The methods I mentioned are usually standard ones, but if you've already used those and they didn’t work, it might be a tougher situation. If the files are overwritten or the user account is fully gone, recovery can be hard.

unfortunately, without access to that, you won’t be able to decrypt the files that are tied to Azure Information Protection.

I KNOW

@everyone can someone help me i need a good software for a cyber security contest where i have to crack a 3 million digit password

You might be stuck bc of this.

#1286135820008296509 #📜・rules we do not provide password cracking services.

I don t need a service

All i need to know is a good software

For my contest

Cause its sunday

You’ll need high-performance tools for this. Here are some options:

1. John the Ripper – A solid tool for cracking passwords, especially with large hashes.

2. Hashcat – Known for its speed, especially with GPUs for cracking large passwords.

3. Hydra – Good for brute-forcing passwords across various protocols (like SSH, FTP, etc.).

4. Aircrack-ng – If it’s a Wi-Fi password challenge, this could work.

Thank you

Just make sure to follow the rules of the contest and use legal methods. Good luck

Any other tips i should know

Or other softwares?

Optimize Your Hardware – Use a powerful GPU if you can. Tools like Hashcat can leverage GPU power for much faster cracking compared to CPU alone.

1. Cain and Abel – A versatile tool that can perform dictionary, brute-force, and cryptanalysis attacks.

2. Brutus – Another password cracker, mainly used for online protocols like FTP, HTTP, and POP3.

3. Rcracki – Specifically designed for cracking large passwords and hashes using GPU acceleration.

4. Medusa – A parallel brute-forcing tool that supports several protocols like HTTP, SSH, FTP, and others.

5. L0phtCrack – Often used for auditing password strength and cracking Windows password hashes.

yeah

@mental tendon one more question is there any software that can answer any question more atvanced than chatgpt

💀

Currently, ChatGPT is one of the most advanced AI tools for answering a wide range of questions, but there are other specialized tools.

Can you tell me another

Beacuse it dosen t work beacuse of ip ban

1. Wolfram Alpha

2. IBM Watson

3. Google DeepMind

4. Microsoft Bing Chat

5. Claude (by Anthropic)

6. Jasper AI

7. LaMDA (by Google)

Thanks

You're welcome!

@mental tendon is there any software i can get for free?

Hello Everyone
Please who can teach me and mentor me about cybersecurity

you can visti #👥・new-member-guide

refer to #👥・new-member-guide.
You won't find one on one mentoring here. You have to become a self learner. We just can guide you towards your goal

These tools are free, open-source, and effective for password cracking.

Good day all

pc building simulator 2 good for hands on exp a+ cert?

serious question?

I genuinely can't tell

yes serious i want to build a homelab but i don’t have enough saved up yet. watching and reading is draining unless there are other gamified ways to study hardware

no it's a horrible method lol

watch videos for people building pcs

it's good if you have never seen a pc in your life

it's like lego duplo

the kids lego version yk

ahh i see

damn i guess gotta suck it up or i’ll probably play around with my device for now

thank you

Any reason you're learning hardware?

In particular

Need help on cyber security
Just having issues with where to get the right informations and help😔

#👥・new-member-guide

Thanks 🙏

no worries

i’m studying for a+, i’ve finished most of messer’s stuff so i just wanted to see other ways of learning

a+ what?

cert name

comptia a+ 1101

Goodwill usually has cheap desktops. Also eBay if you dont want to mess with your own box

Also for os practice you can spin a virtualbox VM

youre right ebay im gonna see if they have some cheap android there too

Youtube and practice exams should be fine

Same but I've only just started

https://tenor.com/view/dance-gif-6692428908130908467

Can someone help please I tried downloaded kali Linux when I try turning it through virtual box it pop up window and it say parameter parsing error:VINF_GETOPT_NOT_OPTION Please refer to the command line help by specifying "-?" to get more information can someone help

Please DM me if you know solution

gotcha

I want to start bug bounty hunting , but i want to be really good at it. Tbh im a huge script kiddie and still need to learn allot. Any books or recources that could help me. I want to start making extra money with it.

Books to Start with:

1. "The Web Application Hacker's Handbook" by Dafydd Stuttard & Marcus Pinto

This is a great book for learning about web application security. It covers all the techniques used to find vulnerabilities like XSS, SQL Injection, CSRF, and more.

2. "Hacking: The Art of Exploitation" by Jon Erickson

This book covers the basics of hacking from a low level and explains concepts in depth. It also includes sections on buffer overflows and network security.

3. "The Hacker Playbook" series by Peter Kim

These books cover offensive security techniques used in penetration testing, and the methods are directly applicable to bug bounty hunting.

4. "Practical Web Application Security" by Andrew Hoffman

This is a very practical, hands-on guide with real-world examples of vulnerabilities and how to find and exploit them.

Ok thx man i appreciate it.

You're welcome!

hi i am totally new to coding and everything related to computer science so needed some help to get started . i am doing c, python , web D at college but i don't think that's doing anything . I do have an interest in cybersecurity and web3 but needed a practical advise from someone cuz everything at this point seems fascinating.

It's great that you're interested in cybersecurity and Web3! Since you're already learning C, Python, and web development, you're on the right track. To improve your skills, focus on building a strong foundation in network security and ethical hacking. Start by learning about basic security concepts (like the OWASP Top 10) and practice on platforms like Hack The Box or TryHackMe. For Web3, learn about blockchain fundamentals and smart contracts using Solidity and Web3.js. Build projects to gain hands-on experience, and participate in CTF challenges to sharpen your skills. Once you’re comfortable, consider certifications like CompTIA Security+ or CEH to validate your knowledge. Stay curious, keep experimenting, and join communities to learn from others. You got this!

These are all great classes. I’m in python this semester and microcomputers os and workstations. If you decide the cyber sec route some of those classes will already be in the program. I still have to do criminal justice and ethical hacking a bunch of other computer hardware type classes and Linux sec.

chatgpt through the roof

past the fcuking atmosphere

through the stratosphere

and further

Yea i was keeping an eye on their responses. Looks like they had only communicated through gpt

yeah well the professors doesn't really teach much here so its not much of a help and as a complete beginner everything seems fascinating so i wanna try doing little of everything and then decide that something i want to learn everything about . but it's hard to start so any help in that regard would be really helpful. (also been doing web D lately and that seem good as well)

I feel this bc at my college a lot of the professors don’t care and they complain no one tries but when they do they purposely try to knock them down for trying hard. Like you can’t win. I have one good professor that is very helpful. I decided on cyber security bc I like forensics and high tech crimes. I like the idea of it but I’m remaining open bc there are many avenues. I think for now, this place is a good start

A lot of it is self learning in cyber, and it never stops. I would say keeping up with #👥・new-member-guide is a good place to start. Good python courses are also at learnpython.org but a lot of it is making your own projects.

As you progress through class you will see where your strengths are. I’ve only taken like 6 classes but I noticed I’m pretty good with terminal sessions and network setups. Again remaining open but at my college if I take five additional classes I can graduate with computer systems tech as well as cyber security.

Follow some of the top peeps on YouTube too and it will give you exposure to situations and sections of computer science that will further help you. I like professor messer a lot but I scooch around a lot of other channels as well

I would recommend a home lab if possible.

Virtual ones are very inexpensive. You can practice with PFsense firewalls and other systems though VMS

So long as your hardware can handle vm tech

Certainly easier than is used to be. Bandaids and bubble gum to get old hardware working.

Yep! Most CPU chips have virtualization so Virtualbox is an easy setup these days with 2 youtube videos

memory and cores are the only blocker for hardware. Just need enough to run X number of boxes you'll have

Man can some one that is really good at hacking hit me up directly. I need some serious help no cap

Regarding infidelity

Best you get are scamers DM you.

yooo

i can use

NO WE dont help woth that @brisk token

Can anyone, for the love of God, help me find a job? I am in serious trouble, about to be evicted from my apartment. I don’t have any family or friends to fall back on. This is like “get ready to lose everything you own and be homeless” level. It doesn’t make any sense. I apply to a minimum of 50 jobs a day, every day, for months on end. I’ve exhausted my savings. I have a professional certificate in cybersecurity from MIT and a Security+ certification. I can’t afford food, let alone any more certs until I get a job. I have experience as a cybersecurity analyst in a federally protected and regulated OT environment (critical infrastructure protection for the US electrical grid). I am honestly desperate.

Subject: Urgent Request for Assistance – Cyberattack Issue

Dear Sir/Madam,

I am reaching out with an urgent request for assistance regarding a serious cybercrime issue. I have fallen victim to a hacking attack that has resulted in my system being infected with an unknown virus. I have tried every possible method to remove the threat – I have scanned my computer with various antivirus programs, used malware removal tools, and even reinstalled the system, but nothing has been able to detect or eliminate the malicious software.

I am concerned that the virus may have advanced hiding mechanisms or be operating in a way that standard tools are unable to identify. It could pose a threat not only to my data but also to the security of my identity and finances.

I kindly ask for guidance on further actions or for contact with an appropriate unit specializing in combating such threats. I am ready to provide any necessary information and cooperate fully to resolve the issue.

Thank you in advance for your help.

Best regards,

By reinstalling the system did you clean the drive or just reinstall the OS?

Are you in the US?

Hey

#🎥・srhoe-videos

Yes, I am.

If you're applying, tailoring your resume and coverletter to every job and not getting them still + you need work. You have some options.
https://www.teksystems.com/en/
https://www.roberthalf.com/us/en/jobs/all/technology-and-it

I did contracting for a bit and it allowed me to progress to getting a full time position at one of the contract sites.

are u looking for us to answer the email that was sent to you?

like do our work for u

atleast it seems like it

i didnt give u my email?

i did bouth and after connecting with wifi it reinstaled

please pv talk

its the format of an email

as if someone sent u an email

and u just copy pasted it

and want us to solve it for you

we can do that

?

i do not udnerstand

aaaa

no

nobody give-n me a email

then why did you

write it

in such a format

my eanglish is bad ( writing ) so i used chatGBT to write what i wos in need to say

i see

howd u get the virus?

i wos playing valorant with a hacker and he could send me stuff remotly to my pc from an valo stuff

he made is own valorant launher

How are you sure you had a virus and he wasn't lying?

i wish i have a SS of when the valorant wos growing in space --->2tb+

i can show u an ss of the virus stuff

and the task manager shows funny stuff

there is no antyvirus that can deteck this

no

that has nothing to do with the virhs

Can anyone help me make a admin panel type of website w multiple pages n a portal type homepage

Sure

What is up guys

Hello everyone, I’m looking for to help get information on someone I paid n didn’t receive it

Can someone help me to find a someone email please ?

If you paid for something and didn't get it but you have proof of transaction I would say talk to your local authorities

#📜・rules #1286135820008296509 we can't help you hunt down someone's information

No it’s to send my resume

Whazzup

who is smoking?

Why did you send me random friend request 💀

🤺🤺

Stay away male specimen

Damn yall not friendly over here lol

I’m new

Duh idk who you are 💀

If ya trust people easy like that 😭 ya need to be a bit careful

I mean of course you won’t know if I can’t even add you

I can know here tho

On the public space like this ?

We can have some privacy

@wary cape i think this guy

nah not him

Lol why?

I need help I’m looking for a email to send my resume

Is it a famous university?

Is it a well known place?

No it’s a company

Yes well know

You are sending your resume to a company you don't know their email?

Google it

Simple

https://tenor.com/view/me-atrapaste-es-cine-its-cinema-cinema-esto-es-cine-gif-12869046600151364058

On their website it’s just some generic email I want the manager email

A robot is responding to me

Staff will look you send the email

Then they aren't interested

Find another company or go directly to the place with your resume and papers

They have thousands of email there, if I send it straight to the manager he gonna think I’m in contact with someone who already work there and it’s gonna make it easier

It’s called Co opting

Bro if you WALK into the company they will take you as serious and responsible man

What's the company's name

You can’t just walk there man I already know the company man

Yeah which you'll just lie about

Is it in Dubai or smth

Allied security in Chicago

We're not helping u get this data

😂 fr

Bro 😂😂

So far I have a great experience here and looking forward to learning more from everyone

cool cheat sheet, but there's a reason nobody makes a cheat sheet for you... and deffo not for fred

Aye we gotchu bro

@pliant crystal

Nothing wrong with that I’m not hurting nobody

@pliant crystal what you are asking for is against rules @spiral notch no?

You can't make a big server believe that

Asking for a email is against the rules ? I didn’t know

Sorry

Ok

There's a reason manager's won't post their emails publicly

And keep it for employee circles only

I’m just sending a resume man that’s it you acting like I’m doing something illegal

You're missing the point

You're trying to get into an employee only circle

And also lie and make it look as if you have connections

Nobody's gonna help you do that, especially not for free

Ik what you mean but this happening once it’s not gonna hurt them it’s hard to find a job in this country man

• not on this server

I’m ok with paying someone to help me lol I never said I’m not paying

Also what you are asking is often illegal because you'd have to get the emails with illegal methods

Ik it’s wasn’t gonna be for free lol

But ok

You just help someone to get a job it’s for a good cause, I’m not asking you to help me sell dr*gs

But I'm telling you, getting the emails would often be done illegally and with unauthorized access?

😒

Im not the first person to tell you this - don't act surprised

Send the resume normally and make it stand out

You are tho

Make some achievements or some projects

You sound like that one kid that would snitch to the teacher if we cheat during the test

😒

If you know the company man, then reach out to the company man.. if you don't have a contact, go through normal channels. Nobody gonna dig out a contact for you here

From experience, receiving emails or calls from those who I have not contacted with or expected contact from, they don't get any attention

It's either creepy, or annoying, or both

It doesn't show initiative

Whatever man it’s alright, if someone see this and want to make a quick buck hit me up tho

🤦‍♂️

Creeping on to a recruiter or managers email with your CV won't get you a job, sorry to break it to you

All the people I know did this and got hired in this company

Well, sounds like that company don't give a crap

Just don't ask people here to obtain private contacts for cash

Exactly so if someone can help me please instead tryna talk me out of it

#📜・rules #1286135820008296509

Or 🚪

Ok ok

Sorry

who can help me with a ssh challenge

ctf

Link the CTF

Here please, I don't DM those I don't know @autumn slate

k

Is this a live CTF?

yes but its univeristy

Doesn't matter

Don't cheat

is this cheating

Speak with your classmates if anything

oh dear god

k bro

Asking for others outside of your class for help literally is cheating

👍

bro first thing always read rules before speakin

but whateve

I'm not a mod

This is personal opinion - if it's to do with uni, or a live CTF, asking others for the solution or help with it outside of your environment, it's just..

You're not gonna get to the solution yourself

You won't learn what it's trying to teach you

yoo um new to this and im tryna get into hacking anyone williing to help?

#👥・new-member-guide

#sleep

can someone please tell me what dangerous public info is searchable from my IP address that i will provide

Wdym "that you will provide"

nothing is

i run websites with my public ip

english isnt the persons first language

Nothing

Geolocation

Isn't*

Plenty of people to which English is not their first language have a better ability of speaking it than some native English speakers. And anyway, what does language have to do with anything?

Their sentence makes sense, if a little broken. They asked what information could be found, if they were to provide their IP

And nothing is not necessarily the correct answer @chilly merlin

Dangerous from an ip?

Enlighten me please

It depends. This discussion was had in #💬・old-gen-chat earlier.

Generally, no.. an IP will not reveal any information, unless under cirtain circumstances.

It's the big "what if", or "ah but"

At the end of the day, your public IP is not something you really want to be putting out there

Yeah i see what you're saying, i just look at it like id rather have my ip out than other things yk

Well yes, but what if your IP can be associated with a social profile, a profile which you believe is not possible to associate with you. It's all a big stretch, and by no means should everyone live their online lives in constant fear, but at the same time you should not expose yourself unnecessarily.

Anyway, pulling at strings here and on the edge of sleep finally I think lol

Work done, film done, sleeeeep

Are you kidding ?

Well, no? You pointed out someone not having English as their first language

so I thought I'd just pay it back

🤷‍♂️

That's punctuation mate

That's part of language mate

Listen $20 will do

Go spend it on Pokemon cards

So punctuation isnt apart of english then where does that put spelling, vocabulary etc...?

I don't have time to punctuate

I type all day long

Id like to chill

So? Don't burn on someone for whether or not you think their first language is English then

Easy enough right?

It isn't burning on someone, learn the difference, you're whiney as hell. All did was told the other guy that unknown62's first language wasn't English because kv was confused because he replied not understanding unknown.

lol

Therefore I was making sure unknown was heard and understood

English is the hardest language after all

You didn't help them be heard or understood at all

They didn't reply, of course not

You're in your 30s get some sleep. Christ I have work tomorrow leave me alone

y u getting heated

Dawh 🍼 Sleep well

Chill

Be agae it's annoying

Because*

Was just trying to help the man out

This is the help-me channel

He didn't disrespect him did he ?

He disrespected me

For essentially nothing

It is what it is. This is discord not irl

Read the conversation if you'd like to understand my friend

Don't worry, it's only Discord.

He's misunderstood that I was flaming unknown for not knowing English, when I stated that he didn't so it would know long story sort

nn

Kv* not so

Please,can someone teach me how to hack

Hack what ? DM

https://discord.com/channels/990435451334688768/1306084252437450763

Please I just drop you a message on you private Dm

Can anyone help me make a admin panel type of website w multiple pages n a portal type homepage. dm if u can help ill be sleeping

Hyy guys, can anyone help my my Instagram account got hacked someone just turn on the 2FA on my account I can see my account on Instagram, I can reset password but when I reset password it also ask for the 2FA code or passkey. What should I do

Contact support, we will not do anything related to "hacking accounts"

#1286135820008296509

Contacting support is the best thing you can do

explain more pls

@valid belfry @chilly merlin wdym "nothing"

Ever heard of OSINT?

In the wring

?

how do I make a password logger for a usb for example I put the usb c in my computer then it logs all my passwords

for educational purposes only

Are you talking about keylogging

#1286135820008296509

Yeah?

It’s for education purposes only tho

^^

But it’s educational purposes tho?

I wanna learn

If you know programming you know how to do it.

I don’t know programming

Then you have to learn normal programming first.

Might take you a couple of months or years.

bro

Hello guys I'm new here and I want to learn everything about coding and ethical hacking can you guys help me out with a road map you started with

#👥・new-member-guide

@everyone
What's the best language to learn for hacking

@amber matrix thanks man

Yup np

dont ping 60k+ peeps for it

I didn’t even peep that

go with python or any low level lang

That's cool can you gimme a list of LLL

💀

c , rust

ther r some others too

check it out

Thanks
For the help

Mind coaching me

nope

me demb

There are so many tutorials out there

Why...?

I want to start programming again. I'm going to rest my PC before I start. How should I set up my environment? (Python, Java, Want to get into Rust)

check this channel out #👥・new-member-guide

Thanks

Are some of you guys hackers

hacker being a cringe term u can describe with but like most of the people here

So are you?

what is best os for hacking

kali/parrot

ok thanks

just ask the question

Some bully keeps hacking my friends phone and I want to teach him a lesson

Or like get him back

were not gonna do illegal or unethical things for you neither teach u how to do them

#1286135820008296509

Not illegal like anti virus

?

Or anti hack

were still not helping get revenge. theres no way to confirm

that this will be used morally

also its still illegal, people wont commit cybercrimes for you

nobody smart will do it, especially not for free

Is anti virus free

Illegal

?

wdym antivirus illegal

No like is it illegal

free antiviruses arent illegal

some good ones are malwarebytes and avast

Thanks

Hello

Just wanna ask if i can get a software

If it costs money, you buy them.

It's not the problem i just want the authentic of the software

If it's possible to get it here

Through anyone

We don't even know what kind of app you are talking about.

Can i dm or i should feel free to write here

Is it something illegal?

What are the best nmap commands?

nmap -sC -sV <target ip>

I'm a total beginner help me to start my journey on cybersecurity it's like a passion for me

#👥・new-member-guide

#👥・new-member-guide

https://tenor.com/view/back-pain-better-not-sue-groaning-the-simpsins-push-gif-15079637

Thanks

Guys my proxychains isn't working

which website can i use to learn godot and be able to create games?

youtube

watch tutorials

i highly recommend using unity for game creation instead of using godot, a wider community that can support you if you're a beginner

Is Tor service installed?

I have created a roadmap for myself and first thing to learn is Network Security any(free) resources

I’m part taking in this year’s GSoC amongst their projects they have Owasp that I’m extremely eager to contribute to

How do I draft out a perfect proposal

There are several tasks in a project
So do u propose to contribute to multiple sectors within a single proposal?

Go on lol

I run websites on my IP no issue

you can stick an ip address into an osint tool, then youll be able to locate a few DNS servers the ip has hopped/been seen on since those often keep logs

if a DNS server gets breached, so does your ip address (atleast pretty often)

did you first have the networking basic down?

if i stick my ip address into any decent breach db, it will return a few results deffo, on my internet activity

which can often lead to more sensitive data being found

so no, if someone has your ip, them ddosing it or finding out your ISP isnt the worst they can do

just because theres no fence doesnt mean you dont need one?

the internet is constantly being scanned by services like shodan, you don't even need to be a direct target in order for someone to try and hack your stuff

people just do that every second of the day

^^

Hey guys so im like very very new to all this and im like really interested in learning about this stuff if you have any suggestions how should i like learn stuff step by step so its easier for me to do so.

Then help me out

#👥・new-member-guide

Yes i set up proxies and it just keeps on loading when i type the command
"proxychain firefox" even when i search anything it just keeps on loading

Please give me a osint tool that tracks the history of DNS servers and has access to DNS logs bro lol

entering a ip into a osint tool isnt gonna give you the dns server history or show any kind of 'hopping' lol

im not gonna give tools, i love to gatekeep ;3

Because surely DNS servers keep open logs about who uses them

^^^^^^^^

😭

ill send a screenshot with a bunch of

blurred info

rn

if they get breached bro

wtf

And its most definitely in their interest to log IPs forever

lol

Surely

not saying forever?

Because that's plenty useful

they can log it for some time

why? idk i dont host any

And how would it benefit them

And how would that hurt you

Wow you used cloudflare DNS I'm going to dox you!!

https://hunting.abuse.ch

it gives them more footsteps about your internet activity?

To my ip?

Which isnt personal whatsoever?

yall saif ur ip gets leaked its no biggie and they can only see ur ISP, im disproving it and disagreeing with it, by saying they can see more

Very useful to them

🤣

ever heard of static public ip addresses

So we're going to log every ip and hope they're static?

😋

????

dude

how ignorant are you

I mean i just restart my router and somebody else gets my tracked internet data

im just disagreeing with the fact that ips dont hold as much info as they actually do

According to you

nobody thinks that not trying to log them isn't beneficial

they hold more than you think

They are not useful for nearly anybody

they are useful for people to be able to see some of your internet activity?

what

They hold close to no info

what if the company has a vulnerable DNS?

they hold info about the website that you visit

IPs always have to be combined with something else.

who do you think would monitor it? the air?

of course they log them

So they can see my google.com?

And my youtube.com

Either you also get a DNS query or you see a process which establish a connection.

So they can use it to track it to me as a person and give me targetted ads? Or what?

You guys have ads?!

banking system u use boom
school website that u visited to login to ur acc boom

Surely i would visit my school website outside of school

now from an ip the bad actor knows what banking service you use and what school you (potentially) attend

that doesn't matter if you're outside or inside

Ok so they know I bank with BoA

And my school

mhm

Which bad actors am I so afraid of having my school

now youre just entirely missing the point

Since these said bad actors can also breach Cloudflare DNS logs apparently.

I mean I must be scared of some big guys eh?

u use cloudflare dns over https?

they are not doing that specifically to you, that's how they keep track of criminal offenses

What does that even mean

u route thru 1.1.1.1

https://1.1.1.1

Yes I use cloudflare as my preferred dns server?

I still use https?

omfg

this guy

What do you mean I use it over https?

give me some more braincells

Not sure if that's possible

Wish I could though

You could use them

DNS over HTTPS (DoH) is a protocol for performing remote Domain Name System (DNS) resolution via the HTTPS protocol. A goal of the method is to increase user privacy and security by preventing eavesdropping and manipulation of DNS data by man-in-the-middle attacks[1] by using the HTTPS protocol to encrypt the data between the DoH client and the DoH-based DNS resolver.[2] By March 2018, Google and the Mozilla Foundation had started testing versions of DNS over HTTPS.[3][4] In February 2020, Firefox switched to DNS over HTTPS by default for users in the United States.[5] In May 2020, Chrome switched to DNS over HTTPS by default.[6]

Not sure

if you use 1.1.1.1 as preffered then yes

I go into my internet settings on my computer

And for DNS

you use doh

Simply knowing an IP address does not provide enough information to track dns server but apparently according to @spiral notch we just spawn in with access to DNS logs

💯

I typed in 1.1.1.1

you spawn in with access to osint tools that keep breaches of dns logs

And these bad actors who can get these logs are interested in my bank and my school

And you mean to tell me in the year 2025 your ip is static?

Lord

Hey good thing cloudflare dns has never been breached

There are actually websites out there that take snapshots of DNS entries related IPs.

welcome to the USA dude

not everyone is connected to a DHCP

hey so i actually worked as a network security engineer and let me show you a trick!!!

Ok

1 simple command

Find me every website that 74.74.74.73 has connected to

or sorry

2

Using your dns logs

If you arent then i dont know why youd be talking about privacy lol

And your 2 simple commands to breach all dns logs

iptables -A OUTPUT -p udp --dport 853 -j DROP
iptables -A OUTPUT -p tcp --dport 853 -j DROP```

boom

nobody is talking about privacy

your preferred dns server now fails

we are talking basic sense

Kinda what the whole convo started on actually

But sure

😄

Ok so now this person who

of course they keep logs, wdym they don't

Has access to my machine (which is linux)

no

not acccess to ur machine

Can now destroy my preferred dns server

access to the wifi

To the dns server?

i dont need access to ur machine

idc about privacy, i'm just telling you what's happening

Ok so my router?

i need to connect to ur wifi

So mirai or some sorts

and perform an mitm attack

And im telling you what this sprouted from, Privacy

Lol

Some sort of iot malware?

no

Thanks tho G

literally anyone who connects to it

and has basic knowledge abt routers

and router exploits

And how can somebody who has connected to my wifi

Edit the DNS settings on my local machine

omg

i just told you

e

By dropping port 853?

youre deffo trolling

idk why y'all are arguing over common sense, dns do store your resolution data in order to keep track of any suspicious activity, that's what they do

And that edits my machine how

yes

that breaks ur preffered dns server

stops it from working

and actually routing ur traffic thru cloudflare

Guys where can i find working proxies

Alright so where are those commands running

it would be irrational of them to NOT do it

On my router?

Or on what

on the attacker's machine who performed a MITM?

imagine a dns that doesn't store any traffic logs

the attackers computer is now the router

an intermediary device which can modify your traffic

thus called a man in the middle attack

Ok so now we're just targetting me

So somebody who is locally here

On my network

nobody's targeting you

Wow so dnssec doesn't exist Lol

https://tenor.com/view/ftc-flight-reacts-flight-reacts-clapping-gif-17245651

Doesnt know any info about me

so does HSTS but for some reason more than half of routers dont even use either

and half of the internet doesnt use HSTS

I don't even know what this discussion is even about.

If we're on about using cloudfare dns servers then they have dnssec

Wdym

?

he thinks routing his traffic thru a DoH is going to protect him

Encryption is for sissies

and this started with me saying that your ip can hold more meaning to a bad actor than they think

Alright lets get this straight

So

it can get more than just your ISP

if dns servers are storing logs of resolution traffic and public ip addresses to tie them to people in needed circumstances

Somebody has access to my network, physically?

someone can connect to it

yeah

And performs a mitm attack

capture the handshake too

And now their computer turns into my router

can be on the street

Yes?

sure

yeah

Alright

And then they drop all outgoing connections to port 853

mhm

Now how does that edit my machines configuration to use 1.1.1.1 as my DNS server only

it stops working

dude what

Ok so I just cant connect to any domains

and then it uses plan B which is to not use a DNS server

custom one**

Not for me

If theres a big actor after me that is doing all the things you're saying id sure hope im not giving my ip out because clearly this person has to be smarter than the average person

Not gonna lie g

Yes

I'm going to deploy my rogue DNS server and redirect your banking website to my server and get your credentials

is ur machine configured to strictly use 1.1.1.1 and otherwise just killswitch?
doubt
if yes
then amazing

congrats on being safe

Ok

What are u gonna do when u have my credentials

which is what this conversation started with

@chilly merlin

Take your money

your IP has more of a meaning

I thought this started with IPs having more info than you think

mhm

yeah

And the bank will just allow a $30,000 wire transfer?

No questions asked?

Yes

Im sure of it

Maybe

Once you link me a public free osint tool that has access to dns logs ill accept that you're right

😭

I mean this isn't 2008

Happens quite a lot people getting scammed.

I could also send you a QR code performs an insta payment.

Those scammers convince them to give them a 2fa

Most of the time

https://hunting.abuse.ch/

one

not the best

but

i love to gatekeep better ones

I don't care about 2FA if I got your session cookie.

cooked

This doesnt have access to dns logs man

Yes but you still need a 2fa on sending the transaction

😭

Which you would need to convince me to give you

to breached
databases
of DNS logs
bro
what

obviously nobody has acess to all dns logs in the world

im talking abt osint and leaks

of dns logs

I’ll just guess the code

And you have a static ip as a "ex network manager" in the year 2025?

Jesus christ man

or whatever you said

a lot of people do?

lol

if youre safer or use the newer standarts

well congratulations

idk what to tell you

do u want a pat on the head

https://tenor.com/view/me-when-i-get-you-boykisser-gif-15629861713642818650

Having so much knowledge about networking yet you decide to not be safe

Interesting

You do you

Alright just searched an IP on here and my screen is blank

im not saying

Which section do I navigate to

i use those?

So i can achieve these logs

there are differences between privacy and safety

let's get that out of the way first

Ye idk this tool is confusing me

i dont connect to any wifis either, i have a VPN server hosted with a rasberry pi at home

if i really need to connect to something

i also have unlimited mobile data

and hotspot to give to my other devices

i have a strict set of devices i white list in this case being only 1

so nobody else can access it

i have an automatic killswitch for de auth packets sent on both my router and my hotspot (on my rooted phone)

Guys where can i find working proxies for proxychains

so yes, im safe, atleast id consider i use some form of safety

I have my own VPN in case I'm abroad. Some countries restrict access to certain websites.

safety better than most

websites

Who are you so scared of that you need to defend against deauth packets

Are you fighting the mafia?

oh my

You have no actual reason to have any of that

The more security you have the better.

at first i get accussed of not being safe enough even though i have such knowledge

now i get accused of being too safe

GG

To a point where its overkill

a thing called interest

i dont care man

it works

its fun

it was a fun highschool project

I mean its good to have it i guess but i know literal people who need to hide and dont even go this far

it doesnt make my life any harder

Its 2025 who doesn't

i dont have like 10 password firewalls i have to go thru

Its the default on like every plan

Tell that to companies that got comrpomised because of simple missconfiguration or if they didn't notice that an attack is happening.

i connect and thats it

i dont let others connect

like google in 2022

overkill security

still get breached

that was one piece of argument lol

a fun one

I mean it takes 1 user to f things up. Man I could tell you stories about what i've seen as a SOC analyst.

Companies vs normal teenager on discord

Its really not the same

At all

I tried so many

that doesnt mean u cant be a person of interest?

it'll be unethical of a company to never host dns queries and store logs about them

If you were a person of interest you wouldnt be on discord, with nitro, having connections, etc

i got it gifted

1 hour ago

but talk like that is the exact reason people are giving up and would rather not go through a trial like that

then you have a kofi link on your github aswell

my connections dont have to connect to my personal life or to my other online identities

my meowistic acc is outdated with last updates of projects back in 2022

i mean if you were a person of interest of somebody to like the government

or 2023

idk

doing it is educational, improves your understanding

they'd use government abilities

no..?

But are you sure they dont

to get your info

instead of osint

yes im sure they dont

👌

i mean the government can subpoena discord, get your ip, subpoena your isp, get your address

ive failed opsec once and that person who breached it got scared to ever try doing anything on the internet

nobody would be after an ethical hacker

obviously normal people cant do that

If he's working in a company and has a decision making position, I can gurantee he's going to get targeted by spear phishing attacks

nobody that is from the government unless they wanna work with you

yes

but hes a person of interest, obviously just depends who hes a person of interest to

if its the american goverment

discord is american

obviously higher ups will have access to their db

thats why i dont link my personal details

You must be a boss scaring people off the internet eh?

like my proton mail and others

to my discord

💀 i just gave an example

why are u trying to grasp onto anything now

anything i say

What?

I was replying to you

How so

cool

Lol

no im not

i was just upset

at that person

What?

Maybe it's the best we just drop this convo

oh boy here we go

you think? 😭

Discord accepted over 100 requests from the brazillian government just in the first half of 2024 alone

It's not just the us government who can do that

oh fun didnt know

++

im in europe

ok?

yet they rejected nexon

if a hitman wants to kill me so be it

like

and nexon is actually having a lawsuit against discord for not giving them information

the us government can request data from discord for europeans too?

ive odne enough to the point i feel comfortable

they are being selective

im not planning on moving to some remote island and living as a hermit

unfortuantely

yes because they dont give info to anybody

Europe has the GDPR law which is very strict.

It was a piracy subpoena lol

they do but

which doesnt protect people from government subpoenas

anayways

it's less likely to be someone that's outside of the US government

is what i'm trying to say

time to go back to studying

@eager knot i believe in you

stay strong

@crisp star

same for you

lol

all common sense really

they need to be a government official, be registered on kodex, have a proper subpoena, etc

lol I don't need to be strong. Could't care less about stuff like that.

i don't care about privacy, i don't use all of these stuff to hide myself or anything

and who is nexon?

a company

which does what?

A stupid gaming company

is it a government company?

nope

Its a stupid lawsuit and discord is in the right

Idk why hes bringing it up

so why would discord give them info?

that's the thing

they cant subpoena them

they dont lol

They don't give info

because they dont have to

so why was that brought up

as an example to who'm they won't give information to

https://www.youtube.com/watch?v=KYPCip-G3MU&t=937s

yeah dude i cant just email them and ask for data

https://discord.com/safety/360044157931-working-with-law-enforcement

You can if you are in europe

i literally said that if the government gives discord a subpoena that discord will give the info over

Literally all discord needs to comply too

but they are likely to give information to the USA gonvernment

Not give info to gaming companies

😭

About yourself at least.

you can do that in the usa

and you dont have to email them either

its built into the app

It was a subpoena for "piracy"

Come on bro

and thats not the point i was making

i was saying that if he was a person of interest that he wouldnt have all of these connections and stuff

since the government can just subpoena discord for all of his info

then go on a trail of subpoenaing

Which is what they do

Ngl

i mean thats entirely how the government gets info of crimes online

lol

what was that guy

who ran breachforums

That was an OPSEC fail about breachforum

his email in the raidforums chat, subpoena to gmail, got ip, subpoena to verizon, got address

Should of used Nord vpn

Fr

wouldve unironically helped him there

Mullvad

Nord vpn

This post is sponsored by Nord VPN.

Im hired by nord g

does nord even log?

Hell yes

😭

i thought they didnt

https://support.nordvpn.com/hc/en-us/articles/19744151372945-What-information-does-NordVPN-store

its just that compared to mullvad they log more

Yes

like nord has an email, mullvad doesnt

They log more than mullvad but still have a decent policy

Mullvad is a honeypot, use free tunnel bear vpn

https://mullvad.net/de/blog/update-the-swedish-authorities-answered-our-protocol-request
I'm not sure about this

can some1 help me with kali and virtual box? when i start cali i have a black screen

Is 3d acceleration on?

And how much vram did you give it?

wait i look

Can someone tell how do you access leaked data breaches ?

yeah

So above 3d acceleration you see a slider right?

@supple grail look prv

i cant send pics

in the channel

You can send them in my dms

i have