#👥・help-me

I would just need to do my research in what I have to actually learn

What's up @gilded siren ?

How was your day

Fine, you? If you have something to ask, you can share it here - I don't accept DMs from those I don't know I'm afraid.

Hey i am asking if i should use proxychains before every commande or is it automatically working once configured?

you gotta insert the command each time you want to open a program or do anything with it at the moment

Hadoop Distributed File System (HDFS) @chilly merlin

Idk what that is tbh

I guess it’s similar to that

A wild Hadoop appears!

They added me too, I ignored it cause they just joined here so I assume it’s a bot

Please remember if there are users of our server dming you to do illicit acts or offering services we encourage you to make a #📩┃ticket and provide evidence to allow us to protect our members.

@chilly merlin i need help with my biology assignment

@grave dew Not here please, this is an ethical server. Read #📜・rules

im thinking of switching to linux mint which edition do you guys recommend i get?

still need help with biology

i completed the fuck@ss biology assignment and i dont even care if i fail im just glad its over

uh

cuh

do ur homework

It’s not homework 🤬

It’s just work I do at home

☠️

Does anybody know how to jailbreak a ipad 10th gen

Chill 😎

Jailbreaking is unethical , sorry! #📜・rules

Understood, thanks

arch

Hahhaha

Can i just use the vpn of tryhackme or hack the box instead of using the vm 1 time per days :v

you mean the openvpn thing?

there is a thm room on it

Yes

yeah it should work

Hi

hello

if its for chatting please use #💬・old-gen-chat

if u need help u can just start with the question

no need to hold back

👍🏻😁

Hello iv been trying to boot kali linux on my laptop but iv already been using windows before and windows keeps blocking the boot, is there any possible way for me to boot kali without having to erase the laptop

Yes , you can use kali linux as a virtual machine or Bootable machine

What if i dont want to use a virtual box because in the virtual box it doesnt give me complete acces to all commands

like what?

like which commands i mean

Who said ? There is no connection BTW Bootable state and command prompt

I have virtual box and i cant use all commands

I'm using vbox, ain't got stuck since yet

Like what type of commands ?

Most of the programs that are in the kali starter kit like nmap

wdym

of course you can use nmap

Wdym?

It doesnt work for me?

what error do you get?

Can you run sudo su ?

I dont remember what error

It will give you root access , if you can then you can utilize all the commands

try it again and tell me, also don't forget that once you run the system you need to fully update and upgrade it

Lol

Ill try thanks

just do
sudo apt update && sudo apt full-upgrade

Thanks

congratulations on level 1, you can now talk in voice channels and send gifs

I Didn't know about this , lol🤣

how to get level 1?

you are already at level 1 or more ig

chat to level up

#🤝・roles-info

sniped ok

I need help someone help me 😭

(I'm not home to provide further context)

so uhh
how can we help you my guy

lmk when you can provide further context

alright. back on my laptop

https://imgur.com/a/59BSGzn

https://imgur.com/a/qCruRRV

so uhh

whats the issue?

https://imgur.com/8ZqKB0d

my terminal isn't cool (transparent)

did you press apply?

yes

that was the active config

Who can help me with this 2). Brute force the website http://testphp.vulnweb.com/ and find
the directories that are present in the website.

im running qterminal btw, sensible finds and runs my terminal

you can use dirsearch in order to do that

either that, or gobuster/fuff

Ok.. thank you

i want to move my kali from c drive to another drive

the transparency issue was caused by a picom start-up issue

other issue 🙂
After a system update, system can't auto detect directories. https://imgur.com/Q6XscI6

argcomplete is installed

im working on it too, just reaching out to see if anyone has any input

When you need help or have a question, drop it here

@pine terrace

TY 🙏@sour badger

Yo I need help installing a OS on my Hard drive

So my Laptop is without OS right now and I’m using a Kali Live boot stick rn

lol

grab an iso

flash the iso to the usb via balena etcher

go to ur bios

make boot priority the USB

and install via there

What is the best wordlist to crack the .zip file in the Nocturnal machine on Hack The Box?
Hi, I'm working on the Nocturnal machine on Hack The Box and need to crack the password for a .zip file associated with the machine. I've tried several common wordlists, but haven't had much success so far. What do you think is the best wordlist for this kind of challenge? Is there a wordlist that has worked well for Nocturnal, or any more comprehensive lists you would recommend for this kind of cracking attempt?

I would really appreciate any advice on how to improve my cracking attempts to keep progressing on the machine.

did you try rockyou?

i try with rockyou and seclist

hmmm

maybe the password is not in a wordlist

but rather somewhere else

since it's an active machine i kindly ask you to dm me in order to get further assistance

we don't want to spoil any information regarding it

okayy

thx

you cant help anyone with an active machine

Is there a red hat certification just asking I haven’t been seeing anything on it was looking into it. Just wanted to know if anybody know.

He didn't literally help me, haha, he just told me that I need to do some research.

https://www.redhat.com/en/services/certifications

This ?

Thank you much appreciate it

Am using Kali Linux virtual box, but I can't screenshot my work...pls some should help me out.

Press windows key and type screenshot

It should open a menu to screenshot

Is not working...is typing on my terminal

go to

ur main system

windows key + snipping tool

Is not working

hello guys,
i didnt visit thm for months and i want to come back and be conistent, but i think this is not enought to focus on thm only, i thing i should follow a youtube channel of someone hacking for solving or read writeups or something, does anyone knows a good guid or sources please?
thanks.

Doing that rn, thanks

srhoe
hack the box
matheuz security etc

I'm on windows rn. I tried to change the hosts file using notepad running as admin. I inputted an htb machine's ip address tab space and it's name like dog.htb

but still the website isn't running

how to troubleshoot this:)

What is the difference Between m5stick c and m5stick c plus 2

how to get started with ctf?

Do I have to read all of that?

"You want to get started with ctf " right

yes

Then read em

ok

hey im upgrading to win 11 today cus of the support ending later this year for Win 10 do you have any recomendations for settings or other tips that could help with performance or privacy? i dont know enough about the topic but ive heard that win 11 has some annoying features that are on by default. itd help me greatly if people would have recomendations

Just make sure your cpu supports the OS

Otherwise you'll face problems

Yeah but i wanted to respect goblin's request (he asked to help privately because he didn't want new boxes to be spoiled)

ftp> ls
200 PORT command successful. Consider using PASV.
425 Failed to establish connection.
ftp>
guys i tried using pasv
still the same

its done fixed it

https://tenor.com/view/high-five-patrick-star-spongebob-squarepants-the-patrick-star-show-yes-gif-2201400520488940521

alirghty thank you for the advice

Hey guys,
I recently bought a laptop from a guy in my locality so I can start learning about Networking, Linux and hacking but it was a company laptop that he had laying around.
I got Kali installed in it through a friend but the company logo still shows up as soon as I power on the laptop and then loads into kali. I updated the BIOS but still no effect.

I wanted to know if I can just change it back to Dell and not have the company logo show up.

Laptop: Dell Latitude 3420

Any help is appreciated 🙂

No embed

Hello everyone
Just wanted to know that if i want to create a cyber security solution based company what suggestion would you give me ?

hello people
can someone help me with a network domain project, i have to present it to my teachers later

and i don't understand the whole thing is my problem...

Is metasploit a good tool for rats?

it's a framework for all kinds of exploits
but msfvenom would be the one to generate shells in

one kind of shell that would come pretty close to a "rat" would be the meterpreter shell

🙏🏼thank you very much

could someone dm me? i could really use some help

Please elaborate what the request is

hello i need help for bypass cloudflare, anyone can help me

why do you need to bypass cloudflare?

my dads website attacked few times i look for how but i cant find that

someone find real ip but i cant find it

best solution is to block cloudflare's ip addresses from accessing the website as they are not for personal use usually

@idle otter We unfortunately cannot assist with bypassing Cloudlfare as that would expose origin addresses.

I would recommend talking to your dad about setting up a proxy for his website. They are cheap and easy to set up.

This can add an extra layer to help protect the Origin server.

@spiral notch can u do something with this:)

mroeew

soo what are u trying to do

Hmm on windows

interesting

are u sure the website exists?

like why are u trynna change ur hosts fine on windows to access a htb machine

mhm

@1rokos hello

To open the website running on ip address's port 80, i have to include that ip address in hosts file right?

why are you trying to do it on windows

yea

to resolve it

looking into safer alternatives to gmail and such.
What is the general opinion on protonMail?

i do have wsl

not recommended

How does hardware fingerprinting ban work? Sry if question is unethical

Wdym mac ban

No like if the device gets banned from a certain forum starting with r

And it ends with eddit

We can't help ban evade

Ok sorry

But it surely bans ur Mac address

I may be wrong

how a hwid ban works is that it takes the id of your motherboard or any element in your device and uses it to blacklist your machine from communicating with the servers

Ye so a Mac ban right

Are you joking or is this true

it is true

alot of big companies use that method to avoid hackers

gaming companies especially

That is bonkers altough i thought it was more "complicated"

it isn't hard locating a hwid btw

it's a serial identifier for a device

and it can't be changed

So how does the browser check my hardware id tho

And i even used vpn

you can type that in your cmd to find out what's your hwid

wmic csproduct get uuid

vpn has nothing to do with your hardware id

you can't evade a hardware id ban

that's why companies use it

But thats not the same as browser fingerprinting right

Thats a different type of ban

oh yeah you're right actually

browsers can't really directly obtain that

they make a profile based off of your browser prefs

it could also be many other factors too

point is you can't really know what they are basing their banning system off of

Ye it could even be silly stuff

Like just let Machine learning decide which patterns wre most recognizable

yup

U can but would destroy ur os kinda

ye

Does very old hardware have ids too

That can be recognized

Doesnt solve the issue just curious

Yes

Ok well then thats settled

No

Mac addresses are local btw

So I was wong

ooooof I've never worked with wsl

(I'm still not at that part in network fundamentals)

Yes

How are u today btw kV

Better ?

Mac addresses are only local

Ehhhhhh

Not rly

I'll go to the doctor if it doesn't grt better by friday

Okay hope u get better soon

No clue why in so irresponsible with my health lol but

yeahh just don't wanna be spending my holidays going hospital to hospital

rather skip class

my start menu (w10) just stopped working from yesterday, it just switches to a loading cursor for a few seconds and doesnt do anything

try going to your taskmanager and restart windows explorer

https://support-leagueoflegends.riotgames.com/hc/en-us/articles/115013815928-Understanding-Hardware-ID-HWID-Bans If you're interested in reading on it

https://support-leagueoflegends.riotgames.com/hc/en-us/articles/115013815928-Understanding-Hardware-ID-HWID-Bans

i will and thank you for sharing appreciate it

This is RIOT's team talking about how they work

thanks mate

Keep in mind HWID bans are generally considered a rare form of ban.

in reddit they seem to be quite common

it's not the same technology as your said before

hwid and browser fingerprinting are two different methods

ah yes yes you are right

i dont even know what i got

probably browser

most likely browser since websites cannot directly get your hwid

Depends on the game. League (as of the date of writing that article) alleged they have only given out a handful of Bans. now That is in contrast to their playerbase which is 150M registered accounts. Lets say 0.001% of accounts are HWID banned that's still 1500 people who can yell on reddit. But that's only for 1 game

already did

still not working

do you think it might be something to do with ram?

i have been having a lot of bsods during boot recently

you might have to look for troubles in your operating systems, when you get the bsods what does the error appear to be at the bottom left?

also try and run this command sfc /scannow

i cant remember but i do know i saw "memory" and etc.

searched the codes up a while ago

oh i see

and they were ram related

how much memory does your computer have

16gb

ddr4

maybe faulty stick?

oh then it shouldn't be problematic but

i am not sure

i need the specific error

can't assume things off the air

alr

Have you done anything at all in bios

for the system

uhh no

also i found em

uh

oops

oh nw

avoid caps

i see it

bot hates it

yea my bad

try and run the following commands via your cmd:
DISM /Online /Cleanup-Image /CheckHealth
DISM /Online /Cleanup-Image /RestoreHealth
sfc /scannow (run this one twice one after another)

run one by one

start with the first line and move on slowly until the third one

uhh

issue

yeah?

i need to open an admin cmd

yup

is there any way to do that using windows + r

as i said

ohh ok

i cant open start

so i cant open an admin cmd

oh before you start the cmd in windows+r
make sure to press ctrl+shift+enter

ahh

ty

yw!

No component store corruption detected.
The operation completed successfully.

wdym, was it the first command?

ye

the output for the first one that is

oh ok

move to the second

i did

its a progressbar now

mhm

ill reply when something fun happens

in the meantime

np

ill go custom rom my tablet for fun

err

is it supposed to be stuck at 26.6

%

yup

sometimes it happens

let it work it's magic

k

regardless of them i'll also recommend that you'll preform a chkdsk

but that'll come after the commands i've provided

okaysies

hold on

theoretically, what would happen if i closed the cmd

then the operation would stop

it's not very good

no i mean

would it break anything

most likely

aw shucks

i swear if it doesnt get past 26%

because it's mid rewriting some of the system files

ah

it will dw

it just takes time

speaking of

its on 55% and going!

yup there you go

i was REALLY close to closing it

lol dw

patience is key

aight

im gonna crash out if it doesnt go to fastboot

one more freaking time

lol

aight managed to boot it into twrp

wait did you finish the commands i gave you?

no

oh just make sure you don't brick the system or anything

just started last command

ohh np np

run it twice so when one finishes, just run another one

sometimes windows doesn't find the problems in the first scan

had an experience with that

it found corrupt ones

anyways

whats the chkdsk one

is it just that

ohh ok

chkdsk like that

but you'll have to restart

in order for it to start working

just type in this command chkdsk /f /r

uhh ok

whats /f for

it'll ask you if you want to restart now or later

let me check because i myself don't remember lol

real

i think it has something to do with fixing the broken fragments

oh

ohh ok i was partially right

it fixes errors on the disk

cannot lock current drive

aka the hard drive

wdym

is that the output you're getting?

Chkdsk cannot run because the volume is in use by another
process. Would you like to schedule this volume to be
checked the next time the system restarts? (Y/N)

ohh ok type in Y

k

now when you restart your computer a disk scan will run

it'll take some time

i forgot

just let it run fully is what's important

how do you restart using cmd

ohh you have to do it like that let me check

ik its shutdown /r something

shutdown /r /t 0

but theres more

yes

alr thanx

do you just have a really fast web browser or some large book full of windows stuff

how do you find this all out by "checking"

xd

no i just have chatgpt for the stuff i don't remember lmfao

sometimes

ah alr

but sometimes i actually search the internet for solutions

for example your error

this explains more the costumer side of things rather than the technical stuff tho i understand y the technical side is not explained

Correct, All the other documentation i have found is about circumventing HWID bans which we do not provide

I know that

sorry i left without an answer, it worked! thanx

yw!

does your pc feel different?

Guys, anyone here a front end and a back end developer? And does anyone know how to integrate crypto getaways in a website?

It's not hard

Not much of an answer

If you want help, you're better off asking a direct question that applies to your situation, as opposed to looking for a specific person.

Question guys, i have a lenovo legion 5 with an rtx 3070 and ryzen 7 5800h, i really dont know how many monitors it can support?

I need help

Is there anyone?

Pretty sure they got banned

But also is anyone proficient in ducky script?

Hello brothers, can someone help me out with an isue

I want to extract a person's phone number from snapchat

Hi guys (need help)

I made this web app where you can search if a number’s been breached. I’m hosting it locally using localhost and exposing it with Cloudflared, which works great. But since it runs on my own PC, I don’t want my real IP exposed people can trace where the tunnel’s coming from. I looked into VPS options but don’t wanna pay. Is there a way to keep it running from my PC while hiding my IP?

well you run it through your isp network address i assume if you're exposing it publicly, unfortunately you have to pay for firewalls, etc

doing that without exposing your own network address would be to stick to cloudflare

you can try and pentest your own website yourself and see if you can find anything related to your real network address

if you have any functions that could lead to it, etc

will try, Thanks

congratulations on level 1, you can now talk in voice channels and send gifs

With?

Also can send food too

Yayyyyyy 💀

sure, whats your address (joke)

It’s actually Mount X, Mars, 01101 im near the exit Jupiter planet

Hey ik im not too active of a member but looking for opinions on this offer i got. For context, I am a graduating senior computer science student who is current in a small town where rent is fairly low (500-750 for 1-2 bedrooms). I got an offer from this manufacturer I am interning at where they want me to come in as a contractor working for $20/hr for the summer, and in the winter allow me to make 55k a year moving forward. Is this a good offer? My first reaction was disappointment but looking for some other ppls opinions. Anything helps.

I don’t work for no company but 55k a year sounds pretty low

That’s what I was thinking

I thought atleast 60k bare minimum

Yea sure 20$H ok we can work with that

How many hours you would be working?

Full time 40hr/week

It comes out to around 41k/year

41k is pretty low tbh

But then again your area it’s cheap so that’s not bad

For you

But if you ask anyone else that’s pretty cheap for your yearly

@radiant stone what you think mb for ping but that’s low right?

straight out of school this is nice

Ok so it’s not bad

Thanks for replying

Yup

This is your first gig yea?

I also started as a contractor but I was at 16$ an hour later bumped to 19$. I was offered a FT position after my year of contracting which brought me to 55$ and hour

So as long as benefits are included and you're making 55k a year that is not bad for your first job. See if there is movement internally, if not then get the 2-3 years of experience and apply other places that offer more.

First gig is always the hardest and a lot of times you take it on the nose for what you're paid since you lack industry experience.

Yea my first real position

They said benefits come include but I still have to wait and see what’s all included

Shouldn't look for reasons since they can be falsified. Instead go off the general premise

you'll trust a stranger on the internet over their intentions? :0

"Should i help someone find information on someone else over shady terms?"

Just giving something to think about while i'm on

I have a question

Do you know a method to increase the fps of a game code in python

I've been working on installing Kali Linux on a Chromebook but I want to install more tools, is there a quick way to do so?

Aren't Chromebooks really prone to crashing?

how effective kali on chrome book is it worth it or do i need decent book to start that. they are very cheap here

Hi

I feel it's better to go for a better pc/laptop

the thing i use linux over VM, cause most my work require windows i wish MS make copy of 365 compatible with linux else i can start switching

Yeah it's better to get a better quality laptop because VMs can often lag

Are you talking as the developer?

it never lags my desktop have 128gb of memory and dual xeon cpus

but doesnt feel as good as when i installed its as main OS there

@radiant stone kinda but it’s just a little a game with friends

Desktops are wayy better compared to Chromebooks

There is some documentation on it.
https://www.kali.org/docs/development/custom-chromebook-kernel-image/

another question is it me or it feels AMD way supprior to intel now adays

So some basic fps correcting settings you can do are:
Have raycasts only fire when a player enters a "container" square. This will reduce unneeded raycasting processing.
Unload things when the user cannot see them.

Depends on the use case

as for laptop its basicly i have its 4800H cpu and 32gb rams i can run several VMs there while doing other tasks

@radiant stone ok but don’t you have advice more for game on 2D

sudo apt install <too>

tool*

Thank you @spiral notch

Where are you seeing fps drops. Because there are some generalized best practices you can find on Google. If you can identify what triggers fps drops you just need to optimize that trigger event.

I-

Anyone here an actual pen tester?

Hi dudes, my Wolf Puppy says hello

👀

@abstract ridge with the way im setting it up it won't crash so easily

Dudes….

What happened? I got transported to this room

this is NOT #💬・old-gen-chat

Intel does still hold dominance in single core performance. NPU AI acceleration and more stability in drivers and bios (relatively compared to AMD)

AMD is better in multi core at cost. Power efficiency and longer platform support

Did I get soft booted? lol

A large chunk are

What happen to the other red people….

What’s the best way to get started?

They probably turned blue. Or were culled

#👥・new-member-guide

That’s dang-… my chat was flooded then boom it’s all gone 😭

Is something wrong with the chat

Thanks!

Chat is my name red

I'm all red

Yes

Yup

Anyone who knows about bug bounty ??

How to remove the red name?

Yesssss

So since we are all here.

10-30 messages ^_^ about 200 xp

🔥

But I can't spam right 🫨

Is the CEH worth getting??

Yep! Be sure to talk with other members! It helps! Others was spamming before I dunno where they went tho! (Dyslexic ash mb)

Brrr

What is the best platform to learn programming?

There are a lot out there buh I recommend Alison.com

This was a test

To practice i guess gfg or w3 ??

Is the hack the box cert worth getting?

What is gfg and w3?

Yh I guess

#chat has been resolved. Please migrate back unless you are here to ask questions.

Ohkay Milky

Geeks for geeks(gfg) it is a website it helps you for practicing code and you can learn from there also

Sounds good.

Same goes for w3school, it is also same website but as i listen from others that, gfg is for someone who knows a little bit or have a basics of coding

Help guys I'm low on data🥲

Anyone know any bug hunter ?

I’ll try GeeksForGeeks soon. I did use W3Schools way back in the day to learn html and css. Just didn’t remember about that one.

Ohh good thats nice

All the best for your journey 👍🏼

Thanks a bunch.

Hi I have this dell xps 13 that is giving me 3 orange flash of light then 1 flash of white light on the mousepad led. The screen doesn’t turn on and it allegedly needs a bios recovery

What should I do

Try changing out the CMOS

Where would it be on a 9350

I’m looking on Amazon for the cmos replacement battery

They're a standard watch battery. Can get them at gas stations usually

Check online for documentation

I need the connector piece no?

Generally you slide the battery out of a metal housing and just put a new one in

Mine needs the thin connector

Disregard ya you'll need to buy it

Forgot they have a unique cmos

Yup np found one for just 7 bucks

Wait

I think you just open it

It’s like glued tight

Does the white cover come off

If not buy a replacement that let's you switch them out for easier maintenance

Well from the motherboard yes, but the wires no

Ah ok then yea replace the whole thing then

Yup thx for the support🫠

Np

If you're not getting any display also you can try checking the screen connections to the mobo. They can come loose or fray from the joints. But CMOS will be the best first check

Hi...
By any chance any ones used a dark web escrow service 🤔

Hey guys. I want to build software by myself. Mainly web apps. I am currently a fullstack developer (know just very basic safety measures), but i want to learn a bit of everything inluding cybersecurity, because i want to create my apps as safe as possible. I already took 3 udemy courses on ethical hacking and network security(the bestsellers) and i plan to complete coursera google cybersecurity course. If i just want to work for myself and build safe software, is this enough, or you have any other suggestion? Should i obtain any certifications, or study elsewhere? Thank you in advance!

google course does not teach you much

network security is good to just get to know the basics

to make sure your data is encrypted well

against man in the middle attacks and other network snooping techniques

considering youd like to learn web security

its a good idea to learn CTFs (capture the flag)

those often require exploitation of web services

to get a flag

capture it basically

you can get started on some good beginner friendly services that explain well

like https://tryhackme.com

another one thats very popular is https://hackthebox.com

tryhackme is very beginner friendly, especialyl for those that just know the basics of computing (like literally holding a mouse)

if you're past that, you might find hackthebox better, however u might find the first one too easy while the second one too hard

so its okay to also mix both

sorry for the long textwall, hope this helps

Thank you so much! @spiral notch ☺️

no worries!! feel free to ask any more questions

Hi everyone,

I'm pretty new to hacking and really want to get better at it. I’ve installed Kali Linux on a virtual machine, but I’m not exactly sure what to do next. I was thinking of checking out some tools on GitHub, studying how they work, and memorizing Linux commands and tools like a kind of vocabulary book.

I’ve seen previous posts mentioning platforms like TryHackMe and Hack The Box do you think I should start using those as a beginner? Also, should I learn some programming languages as part of the journey?

I know this kind of question has probably been asked many times before, so I’m really sorry if I’m repeating something you’ve all heard a lot. I just want to make sure I’m on the right path and learning in the most effective way.

Any advice or tips would mean a lot. Thanks in advance (and im sorry for such Long Text) 😞

tryhackme and hackthebox!!

Oh Ty😭

sorry if its a vague answer, both just have very good and beginner friendly

tutorials

its more than just a little tutorial, it is massive in the amount of knowledge it gives

No Worries you good i'll Check it Out immediately Ty for the answer👍

no worries, as i said in the previous textwall that tryhackme will be better if youre completely clueless

Guys i need your help
I have a final project
Our e-commerce project is about designing an online store.

Right now, there are still a few things we need to figure out — like how to separate the website from Visual Studio, and how we can add a new product without having to write its code manually.

Also, we added the feature to add products to the cart, but we didn’t finish what comes after that. So we’re thinking: how do we complete the order process? Like adding delivery info and payment options.

The main problem we’re stuck on is how to secure financial transactions — especially when it comes to bank cards.

By the way, does anyone have a ready-made online store we can look at?

ok so what is DOM based XSS used for because i don't really see a vulnerbility in self XSS

Yo I need help with my apple account

what happened to your apple account?

dom based xss is url based xss
it rests usually within a website's document object model

I can’t update my apps and when I change my iCloud it’s still the same

did you make sure that you're connected to the wifi?

What use is it tho for phishing or something?

less for phishing

more so for affecting someone's browser

stealing session ids etc

but nowadays browsers have protection against xss

https://youtu.be/_3Wgx1FabIo

watch this

should give you a good understanding

Yea I did

restarted the device?

also check your storage

My apple phone

i know

restart your iphone

Discord’s website says go to privacy and safety in user settings, then select the violation but I can’t find anything but data and privacy, then when I click on it, it doesn’t let me select the violation.

It just says how it uses my data

I’ve already reached out to discord with an appeal to update my age information though

Or should I have appealed something different?

It’s says my account has been disabled from iTunes so I can’t use AppStore

It’s more like I reported DOM based xss a couple times without really knowing what it’s used for

it can be used on a user's browser in order to manipulate it

the reason why it's of interest to the company to fix such a security flaw is their trust

if users are getting affected by a hacker manipulating an element inside of their website and sends the url around social media for example, and a user gets hurt: he would immediately suspect the website 100%

bad reputation = big womp womp L bozo company

that's why companies usually fix xss vulnerabilities in their webapps

Ah so reputation

And a safety piece but mostly reputation?

imagine i come to you, send you a link like google.com
but google.com is a trusted website! BEEP, let's pretend that's not the case and google has a dom xss vulnerability, meaning i as a hacker can manipulate an element within their webapp client side and send you that same link with the edited element

and that edited element has a script that steals your cookies

and sends them directly to me

Sounds a bit like I forgot the name something with redirect

Where you can modify the link of a legitimate website to redirect to yours

you can see how bad it is from here if you understand what i'm saying lol

Yeah

that can also happen

I forgot the name of it

in your case that would either be Iframe injection or something else

Clickjacking?

open redirect i think

I found that when I was doing a bug bounty on nasa

Open redirect is the thing where you modify the link

I forgot the name of that

yup

Iframe is where you can overlay for example a fake login button and use open redirect to have it redirect to your domain

exactly

I couldn’t find a open redirect vulnerability so it became a P5

Otherwise it would stay a p4 and I would get a LOR

☹️

Still searching for stuff tho and I might have found something

Kinda

Just have to get it work out the way I want it to

hey my google acc just got hacked

pls help?

you can contact google's support team

https://support.google.com/user-security/answer/10242244?hl=en

thanks

yw, good luck

ty

Iv been hearing people’s stories on discord about the abuse from other people who in my opinion have no right to be in any type of platform especially if they are all age platforms Im not asking for anything but maybe a point in the right direction to get the justice for those who are still trying to get by day to day and not be another statistic in a file somewhere. Im in ILF and have been trying to be a supportive friend for the ones who have opened up to me but I want to do so much more for them and I am trying I understand if you want to talk in my dm they are open for anyone who can help thank you

report them directly to discord

discord does an amazing job in banning such people, terminating their accs, and/or even contacting higher authorities when needed

Yes I know thank you

So for someone that has no experience in Cybersecurity and Linux and knows a little bit of python is it worth getting the THM premium and following their "Cyber Security Learning Roadmap"?

absolutely
before you do that i may suggest learning networking a bit just to have a grasp at that

i am not sure what's included in the 101 path but

if thm has networking fundamentals in it you should totally take it as a starter

So I should learn Network+ before staring with THM?

yes i feel like that would help in terms of network understanding, since hacking is mostly all about that internet connection might as well learn how things travel

i can say for certain that it helps further on when actively hacking machines

So I was watching NetworkChuck's video where he gave a roadmap and he said to start with A+ and I stared that. Would you recommend finishing that and then start with Network+ or shall I drop A+ and start with Network+ ?

What would be the best way to start ethical hacking (is it even called ethical hacking)

#👥・new-member-guide

Thannkskn

Thanks *

ok so coming back at you with an answer: yes
it would be very essential

after a+ of course

so a+, either network+ or whichever path you may choose to proceed with

and then i'd say it's safe to move forward to thm

Thank you

You is a life saver I was so confused on what to do.

Hello everyone
Greetings to you all
Please I need ur help on something

Is there any one that can help me with a Windows activation key please
I want to activate mine
Or anything I can do to sort out the problem
Thanks

yo

whats a good siem tool to use and learn

Are you just starting out, or have you been using windows with the watermark?

Isn't that sht so dumb? They watermark your monitor

https://www.snort.org/
Or
https://wazuh.com/

thank you man

ill look into snort

Not too sure if it’s allowed to asked here but I have a Sha1 hash 183b6e32604fca6bf44459883d5dc6f804f3bf18. I’ve had a look some of those “decyptors” sites, but they don’t have the hash stored. Gonna try hashcat next but thought I’d ask here first

https://hashes.com/en/tools/hash_identifier
This site does identify it as sha-1

I tried 2. Best to use hashcat

i just tried for a sec. it's probably best not to try

Well if the person/organization created the hash in order for you to dehash it then go ahead but if you don't have permission it'll be best left like that

Hypothetically speaking, if your country's govt wanted access to your devices and go through all your info any time they, how would you go about protecting your privacy?

VPNs, proxy’s, and using minimum os that cycles off ram

Most of the time that’ll be good enough for anyone. Unless the gov has your device

They will just raid your home or where you are and take your device.

If they’re a high profile criminal yeah but if just wanting to protect their self from spying and data harvesting then not hard to do

Ah thank you🫂

But yeah if criminal then they’ll take your device and do forensics. So can’t really do anything for that

which is still easy to evade

Pray tell please I’m curious

That's what Ross Ulbricht also thought

@lofty temple a live os is what youre looking for. its an operating system that works entirely on the usb stick, and loads into the ram. an example would be tails, which has everything made for privacy, including onion routing and so on, but its a pain to work with if you need other apps downloaded, etc, so i like to use arch as a live os and just harden it.

you said it yourselv

Lmao I’m stupid

dw, live os's are really good to evade forensics

no trace left unless dropped into liquid nitrogen

or the BIOS modified

^^

hi guys, can someone pls help me, there's a suspicious number that is always auto verifying in all of my 3 google personal accounts, and I don't know who's the person uses the number, and even I remove it several times, it always coming back no matter what, but for now I removed it again to check if its gonna be back again, i have my screenshot of the suspicious number, and can you guys track what device is the number connected to ?, thanks in advance

change your password

and add 2 factor authentication

we dont perform cybercrimes or track people for you

already did it yesterday, but it still popping up

then your device could be compromised

consider running antiviruses, or reinstalling your system

thanks, I'll be inform you again if something happened

Without proper cause they can’t legally

And if they pass a bill for it?

well it all depends on where are you from

every country's law varies

the way things are done as well

protecting your data from the government is an insanely hard task

not that it's not doable, it's just that it's almost impossible if they are onto you

so i'd say, just be careful with the things you do so that you'll have nothing to worry about

legality doesnt matter if suspicion is present

atleast for feds

not lower tier LE

can we automated the nessus scans with scripting?

Word feds do not care at all

no?

it depends on the severity of the crime youve done

Yeah. Like if you’ve done anything to the gov especially

Well even if they thing

Think*

you can with it's api

🤔

Erm idk if this is illegal or now but if so it’s against the servers rules

whats that

🧢

got sniped

But I meant for the laws placed on them

They spy on you all the time

Bro I'm just worried about my illegally downloaded books

oh lol

they aren't after anything as minor as that

i mean sure it's illegal, but it's also overlooked

Yeah lmao. Unless you’re in like North Korea or sum. Other than that ur chilling

Lol okay 💀

So I have had my last account hack off a pressed link . Does anyone know the tool ?

Its called phishing, if you want to avoid it try using virustotal

I would like to see the process

That or don’t press untrusted links

I understand that part . I had a young mod who took care of my server.

Im sorry, what do you mean?

I would like to trace the proccess

?

Like understand how it’s done?

If so there’s vids on YouTube

Ok .

But if you mean being able to trace back who created the link or whatever it’s prob whoever sent you the link

basic social engineering

Yeah

That’s the thing . It’s gone so I should bother but thanks to you all

No problem

Im able to stream to you what the hacker sees behind the scenes if you'd like

Not going to teach the entire process and/or setup

Can someone help me

I have bsod

And my pc won’t restart

When I restart it it goes there

it goes where?

does it blue screen when you boot it?

Yah

I turn it off then turn it on

Safe mode doesn’t work

what brand is your laptop

I have a pc

pc i mean

what brand

Radeon

so you can try to boot into bios

then win recovery

Ik how to boot in bios

But I can’t

what does it do

I try to

just a black screen?

No it is in bsod

But I have 4 options

Esc

To go into bios

Are

Go into options were it shows safe mode and stuff

but isnt that in windows recovery?

it might be a hardware issue if you keep blue screening

you can either try to:

1. boot into recovery and run diagnostics if any issues are present
2. run memory diagnostics in bios
3. factory reset if you cant get past the booting sequence into windows

reasons why I use Linux

just bought thm premium last night and i am doing the cyber security 101 and prescurity learning paths, are these a good place to start as a beginner, if so what should i progress onto next?

id say go with their roadmap

i had heard previously that it wasnt the best off some fella on yt so i was just wondering

thanks man

best off ??

0-0

sorry i had heard it wasnt the best and it was a fella on yt that said that if that makes sense

ahh

check this channel tho #👥・new-member-guide

you may get more ideas

i appreciate it man

; )

Does anyone have the fix for Kali to detect my Alfa wifi card? I am running a VM.

Were is that

Memory diagnostic

It depends on the brand , look it up on where you can run diagnostics from your brand’s BIOS

google

Mines gigabyte

Imma look it up rn

I can’t seem to find it

You’re going to need to run troubleshooting options from Windows recovery. Needing to find the root of the problem will help you figure out why u keep blue screening

Otherwise it might be a hardware problem

K

Guys, i read the guide but i not know how start lol, if i become with HTTP/HTTPS/IP/DNS/NETWORK/PYTHON and after C++ is a good plan?

a friend told me to do it like this

it looks more like a salad to me, try and stick to this path over here #👥・new-member-guide
i didn't take this road from here but that was exactly how i followed it up in the cyber industry

that seems pretty alright to me but a bit uhh

yk

Yep

thats solid

just make sure you know your network stuff

Just make sure you learn networking basics before going too deep

HAHA

Said the same thing

we both said the same thing cause its the best thing

the most important

And umm just please dont worry too much about C++ because its gonna sort of eat your brain if you take it too fast

if your a beginner then Its gonna be hard for you

gonna take your a few months or even an year

so dont rush it

Correct

oh ok men

yeah make sure you really know python before jumping to c++

Yep

python is easier to learn and is sorta like the introduction to programming

after this what is plan? tryhackme/ctf?

you can learn the network stuff on thm

ok

Yeah, C++ or C# is like some deep scripting language

Yeah and one more thing, if your like an absulute freshman to this just watch a video or 2 before jumping to thm

what do you mean, random videos on the subject?

Not random, I mean i guess you couldent learn from thm sure

I understand bro

thx

Wait are you talking about

Do it on my main pc

Good afternoon guys someone up my TikTok page and take my TikTok. Can someone help me to get back my TikTok please I use it to connect with my friends and my family members.

can someone get tracked down , even if he's using Qubes OS ?

yes, all depends

treat privacy as a tool against real hackers
at the end the government has more advanced technology to get what they need

like what are the specific conditions or scenarios . could u please explain more

well, let's say that you have done something illegal using qubes, you've used a vpn service, you've used it along with some proxies but here are questions that can be asked:

1. what was done
2. how was done
3. and what's left behind

these answers can be a lead to alot of small pieces that could point back at you

privacy and anonimity is myth 😿

not really
as long as you don't do anything bad

i mean of course if you're gonna hurt someone and try to hide it eventually when a group of big people are after you you're gonna somehow slip and lose

definately no matter how much they tries to hide but the authorities gonna catch them up somehow in the end

yup

i mean it's not a 100% guarantee right?

but it's enough percentage to make you not take the risk

and there's isnt any law that they gonna keep an eye on us only n only if we did some any sort of mistake . they still must be having an edge in the absence of our other side

only if something has happened that of interest to them, and it ends up somehow leading them to you

even when it has nothing to do with you sometimes

as in: even if you didn't do anything

it can tie you up by a simple mention of something

but it has to be very specific as well

not that they will arrest you or anything

but they will keep watch

and they have the tools to do that

all that shi can turn scary sometimes yeah

heard of someone in my country that police was actively monitoring their internet connection while also letting them know that they are being monitored so

OSINT is enough right

government agencies use more than just osint

sounds sus

they have specially crafted exploits for many vulnerabilities and 0days that we may not have heard of before

0days ? end of debate huhh

no option left

not much no lol

Sure but I doubt they will use a million-dollar 0day for some guy trying to hide his privacy

unless it's someone of interest to them
you know they might have hacked a bank in the country for all we know

it doesn't cost them money using those exploits

they are their own founders

some may i mention again-

Yeah it's moreover used for government conflicts

while we r trynna use tech n tools to perform attacks which are totally out of date, they r palying smart

I haven't heard any "regular" person experiencing a 0day attack

i see those who are mostly tailed are those who are breaching big companies

which makes sense

I mean @red tundra you could use tor bridges to disguise your activity

When you aren't it shows the tor browser I believe on your ISP

but when doing a tor bridge, it masks it with regular websites (Facebook, Insta, etc)

tor isn't as reliable

but yeah

that's why people combine it with a vpn

but you also gotta make sure that you change specific browser preferences

I heard that's something you shouldn't do

that you're also not vulnerable to any exploits as well

browser exploitations specifically

What'd you recommend?

Yeah disabling javascript

yeah . and we surely gonna end up having left something for them to get the clues

tor is good but some tor nodes are being held by people who track whatever traffic is going on in there

we don't actively know who they are and they can come from every angle

when you communicate with the first node without using a vpn your traffic is exposed to them

but isnt tor open source

tor the browser is open source

but the nodes aren't

lol

Does anyone know how to properly use kali linux on an iphone, and Set it up so it will work properly, Without jailbreaking my phone, Cause im new.

and also you gotta trust your vpn provider

so it wouldn't be just any vpn

has to be reliable

also your isp that is initiating the connection as well

It's all about trust lmao

yeah

it's the same with emails

might be someone from big authorities whos just trynna catch the fish

the provider can see everything you do, you just trust them that they wont

it's almost impossible to do that

UTM

oh without jailbreaking

yeah UTM

Install Altstore on PC and iPhone, install UTM

Cons: Have to refresh cert every 7 days

Dang ok, So i gotta get a computer or something

it will be better for practicing purposes

exactly that

ok

either that or just generally malicious people that are looking for creds or

any private information passing through the network insecurely

well often times they act like ppls who are desperate to buy services over there but yeah theyre imposters

full of Skammers

Gys Just wanna know which should I use kali or parrot

thanks

kali is more offensive
parrot is a combo of offense and privacy

if you want it to be that is